If we use inter-vlan routing in our network, do the AP's have to be on the same vlan?

  • 1
  • Question
  • Updated 4 years ago
  • Answered
If we use inter-vlan routing in our network, do the AP's have to be on the same vlan? Let's say we have several data vlans, 40-50, due to the size of our network. I have an AP plugged into vlan 40 on one switch and another AP plugged into vlan 50 on another switch.

Assuming our vlan routing is configured correctly, our AP's should be able to communicate even though they are on different vlans?
Note: This topic was created from a reply on the Aerohive Ap141 settings for trunk connection with Cisco Catalyst switch topic.
Photo of MistaWu


  • 17 Posts
  • 1 Reply Like

Posted 4 years ago

  • 1
Photo of Andrew MacTaggart

Andrew MacTaggart, Champ

  • 483 Posts
  • 86 Reply Likes
you can place the APs into any vlan you like.

but you must match the mgmt and native vlans in the Aerohive config with the Switchport.

so let's say you have AP plugged into switch 1 port.
you create a trunk port
set the encapsulation
set the native vlan
set switch port mode
set the allowed vlans { these would include the mgmt vlan, native vlan and all user vlans}

let's say you use vlan 40 as an AP vlan for switch 1
then the aerohive policy must be for configured APs plugged into switch 1 for mgnt vlan 40 and native vlan can be a non routable vlan let's say 60

***Important to remember 1 network policy will equal 1 hive***

according to the aerohive help file
You also define the native (untagged VLAN), where to tunnel user traffic, and various additional settings pertaining to network management and monitoring.

it is usually best practice to have a native vlan use an unused vlan other then vlan 1 for all trunk ports, and a management vlan that is separate from user traffic.

So now let's say you have another switch - switch 2

and you plug and AP into a switchport configured as native vlan 60 and management vlan of 50
and let's say that the switches are trunked together and vlan 60 is allowed on the trunk and is the native vlan for both sides of the trunk

then untagged traffic will reach AP2 on Switch 2 from AP1 on Switch 1 if it had a need to

Let's say that the switches are not trunked but instead have a layer 3 boundary between them.
in this case untagged traffic would not pass from AP1 on SW1 to AP2 on SW2

Cooperative control: a set of control-plane protocols that provides dynamic layer 2 (MAC-based) routing, automatic radio channel and power selection, and fast/secure roaming without requiring controllers.

Since CC protocols appear to be layer 2 protocol APs most likely use the native vlan to communicate with one another, as well as the beacons on the wifi side.{ I could be wrong here - would love to know} but If you read David's Blog you can get an understanding of how cooperative control works across subnets which requires a static neighbor entry.


here is more info on CC


and this white paper is about cooperative control