Running out of IP- How to Create a VLAN for Wifi Users

[anwarmanha]

Hi

I am desperately looking for a solution to create a VLAN for Wifi users on a different subnet, all the device connecting to the network has the IP range from 192.168.5.1 to 254 supplied by DHCP Server(Windows server 2012), now we have more device in the network, so we need all the device connecting to Cisco Access point get the IP from 192.168.6.1 to 254 and able browse the internet and access printers

My Environment has below

1. Sonicwall TZ 210 firewall -ISP Modem Connected

2.Cisco Catalyst Switch - Sonicwall LAN connected

3.Cisco SFP 300 Switch - Connected to Catalyst Switch

4.Cisco Aironet 2600 Access Point - Connected Csico SFP Switch

5. DHCP Server

What we completed the below steps but not sure this is correct

1.Created a VLAN(VLAN 10) in Cisco SFP switch and assigned port number 24 to VLAN 10

2. Created VLAN(VLAN 10) in cisco access point and assigned the SSID to VLAN 10

what is the next steps? how do i configure the scope in DHCP Server? or any other alternate way

 

[bill001g]

Although you can run vlans on the AP it just makes thing more complex. As long as the AP is plugged into port 24 on your switch all traffic coming from the AP will be on vlan 10 with no configuration in the AP.

You have done the easy part. to make this work is going to be much more complex. Could you not just change the mask to 255.255.254.0, Note this would give you ip range 192.168.4.0-192.168.5.255 not the 192.168.6.x subnet.

So to run multiple vlans you need a router to connect them. Lets assume your sonicwall can do that. What you need to do is create a tagged port between the 2 cisco switchs. Likely with vlan 1 untagged (cisco calls it native) and vlan 10 tagged. You would then do the same between the cisco switch and the sonicwall. This just gets the vlans done you still need a router.

On the sonic wall you are going to have to create virtual routed interfaces one for your default vlan 1 and one for vlan 10 and assign it the ip 192.168.6.1.

This gets the basic stuff done but I suspect you will have to change the sonic wall to accept the new ip block for NAT and you have to get the server to give out DHCP ip for this new block. This takes a special configuration in the server but you also must put a DHCP/Bootp helper in the sonic so it knows to send the requests for the new vlan to the server.