Dynamic VLAN with 2 LAN Ports

  • 1
  • Question
  • Updated 6 days ago
  • (Edited)
Hi,

I have tested dynamic vlan using R500 with Microsoft NPS and works perfectly fine. 
So new we are planing to add few more APs from R710. with R710 we are gong to connect both the LAN ports for better performance.

I have few questions to verify.

1) Can we use R710 and R500 together in single cluster ?

2) on Microsoft NPS do we need to add all the APs as clients or only Master AP would enough ?

3) When connect both the AP LAN ports is there any additional configuration need to be done ? or both will act as a same ? (meaning does LAN2 also need an IP address ? and is it working as another port or its an addition to LAN1(POE port) / on switch side do i have to configure both the ports as truck and vlan tagging ? )  

Is there best practice documentation for this requirement and configuration.

All we need is Dynamic vlan with single SSID.

Photo of RosMen

RosMen

  • 3 Posts
  • 0 Reply Likes
  • Confused

Posted 6 days ago

  • 1
Photo of Phil Coverdale

Phil Coverdale, Principal Technical Support Engineer

  • 8 Posts
  • 4 Reply Likes
Hi!

1. Yes, both the R710 and R500 can be part of the same Ruckus Unleashed network.


2. Depends if a manegement interface has been configured for the network. See page 194 of the 200.6 user guide here: https://support.ruckuswireless.com/documents/2288-ruckus-unleashed-200-6-ga-refresh-user-guide

Configuring a Management Interface
The Management IP address can be configured to allow an administrator to manage the Unleashed network from a single IP address, regardless of which Unleashed AP is currently the Unleashed Master AP. The Management IP can be reached from anywhere on the network as long as it is routable via the default Gateway configured in Device IP Settings. Then, you only have to remember one IP address.

To configure a Management Interface:

a. Go to Admin & Services > System > Device IP Settings, and click the Management Interface tab.
b. Select the check box next to Enable IPv4 Management Interface.
c. Enter an IP Address and Netmask.
d. Optionally, enable the check box next to Use for RADIUS services to use this IP address for communication with a RADIUS authentication/accounting server. If enabled, the Master AP will send RADIUS packets through this management interface, and the RADIUS server only needs to record one IP address for the Unleashed network. Otherwise, it will record the addresses of all AP's.
e. The Use for SNMP services check box is automatically enabled when a Management Interface is enabled, and this address will be used for SNMP communications, if enabled.


3. I assume that the you're hoping to achieve a 2GB link back to the wired infrastructure from the APs? Are you using Gateway Mode on the master AP?

Photo of RosMen

RosMen

  • 3 Posts
  • 0 Reply Likes
Hi,

Thank you so much for the instructions.

for Q3) Yes. I want to use 2GB on the backbone. is it possible.

In my testing environment i did with one R500 AP and it's not on the gateway mode.

What is gateway mode and will it support dynamic VLAN ?  
Photo of Phil Coverdale

Phil Coverdale, Principal Technical Support Engineer

  • 8 Posts
  • 4 Reply Likes
Hi,

Please see page 188 and 189 of the user guide shared in the previous response.

Gateway Mode
An Unleashed AP must have at least two Ethernet ports to support Gateway mode.

Gateway mode can only be configured during the initial Unleashed Master AP setup wizard process. Once enabled, it cannot be disabled without factory resetting the Master AP.
Gateway mode provides a solution for SMB customers who need to provide private addresses for clients and do not have an existing gateway router, or who connect to their ISP over PPPoE. Enable Gateway mode to provide Network Address Translation (NAT) and DHCP functionality to assign private IP addresses to member APs and clients.



Photo of Phil Coverdale

Phil Coverdale, Principal Technical Support Engineer

  • 8 Posts
  • 4 Reply Likes
I'll find the answers to your remaining questions and respond back shortly.
Photo of RosMen

RosMen

  • 3 Posts
  • 0 Reply Likes
Hi ,

Thanks for this.

I just red the gateway mode limitations.

in my case my firewall is the gateway for clients and it act as a dhcp server for each vlan. 

Again thank you so much for the information.
Waiting for your feedback.