Avoiding huge broadcast domains
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-17-2014 11:09 PM
hello,
For avoiding huge broadcast domains will be great if Ruckus has the feature "vlan range" or "vlan pooling" (it has different naming depending on vendor). with that feature you can configure one SSID and bind to it Vlan ranges. in such way each time when user connects to that SSID it will get an IP address from the different vlan.
One of our costumer has about 5k user in one building. they used above mentioned feature with previous vendor AP's. After migrating to Ruckus wireless we sew that there no such feature, with ruckus you have two options to avoid huge broadcast domains : 1) configure different ssid with the different VLAN , with causes clients to reconnect when they change location in the same building(NOT good idea ) , 2) create wlan groups and bind different vlan to the same SSID, which causes disconnections when roaming occurs, clients sometimes have to disconnect and reconnect(NOT good).
So if there anyone interested in that feature ,please give a support and may be w'll see it in near releases.
regards
For avoiding huge broadcast domains will be great if Ruckus has the feature "vlan range" or "vlan pooling" (it has different naming depending on vendor). with that feature you can configure one SSID and bind to it Vlan ranges. in such way each time when user connects to that SSID it will get an IP address from the different vlan.
One of our costumer has about 5k user in one building. they used above mentioned feature with previous vendor AP's. After migrating to Ruckus wireless we sew that there no such feature, with ruckus you have two options to avoid huge broadcast domains : 1) configure different ssid with the different VLAN , with causes clients to reconnect when they change location in the same building(NOT good idea ) , 2) create wlan groups and bind different vlan to the same SSID, which causes disconnections when roaming occurs, clients sometimes have to disconnect and reconnect(NOT good).
So if there anyone interested in that feature ,please give a support and may be w'll see it in near releases.
regards
22 REPLIES 22
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-18-2014 12:48 AM
Could you elaborate on the point?
You can Isolate wireless client traffic from all hosts on the same VLAN/subnet and you can use Proxy ARP now.
You can Isolate wireless client traffic from all hosts on the same VLAN/subnet and you can use Proxy ARP now.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-19-2014 01:02 AM
hello,
these two options client isolation and proxy ARP are good way to avoid huge broadcasts, but dividing client network e.g in several /24 sub nets is better way to avoid broadcast storms, also this is more secure. also client isolation is not always good solution, because some customers need connections between clients, sometimes there are applications which is used by users, there might be not only ARP broadcast in the network , etc
these two options client isolation and proxy ARP are good way to avoid huge broadcasts, but dividing client network e.g in several /24 sub nets is better way to avoid broadcast storms, also this is more secure. also client isolation is not always good solution, because some customers need connections between clients, sometimes there are applications which is used by users, there might be not only ARP broadcast in the network , etc
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-19-2014 11:17 PM
You also have the option of L3 and L4 ACLs. Something can be done with that.
You also have the option of dynamic VLANs. So if you're using an auth server of some sort you can have users assigned to a specific vlan from the data in the server.
You also have the option of dynamic VLANs. So if you're using an auth server of some sort you can have users assigned to a specific vlan from the data in the server.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-19-2014 11:46 PM
we cant use dynamic vlan option, because there is one open ssid , no authentication needed.
In my opinion ruckus should have such option as vlan range per ssid. this will be a really great solution.
In my opinion ruckus should have such option as vlan range per ssid. this will be a really great solution.
