Remote LAN is a feature in specific Cisco APs which offers the ability to connect wired devices to wireless APs thus eliminating the requirement of having an additional switch. Typical use case for such APs is in hotels and university dorms wherein the wired ports on the AP can be used to connect TVs, IP phones in hotel rooms and Play stations in dorm rooms. Certain outdoor AP models also offer this capablity wherein the wired port can be used to connect a camera in most cases.
Following AP models offer RLAN capability in Cisco wireless portfolio- (Indoor- 9105WP AP (WiFi 6) and 9172H AP (WiFi 7), Outdoor- 9124 AP (WiFi 6))
How to configure RLAN on 9800 WLC?
RLAN primarily involves configuring RLAN profile and RLAN policy. RLAN profile and policy are mapped to port which can be defined in the policy tag. Each policy tag allows configuring 3 RLAN ports (9105WP and 9172H has 3 RLAN ports while 9124 AP has only 1 RLAN port). The RLAN configuration is pushed to the AP when the policy tag is mapped to the AP.
AP->Policy tag->RLAN policy Maps->RLAN profile/policy mapping to RLAN port.
RLAN profile– RLAN profile includes defining the following parameters- Client association limit, mDNS mode, security methods.
Things to know about RLAN profile–
- Max client association support per RLAN port is 4 (in case wired clients are connected behind a hub)
- Security methods supported- Open, 802.1x, MAB, WebAuth, WebAuth with pre-authentication, AAA override (ACL and VLAN) with 802.1x (only supported with flex mode)
RLAN policy– RLAN policy includes defining PoE capability, switching and DHCP method (central vs local), VLAN, host mode, ACLs, AAA parameters, split tunnel parameters etc.
Things to know about RLAN policy-
- Central switching/Local DHCP is not supported
- Max PoE support on RLAN port- 802.3 af
- RLAN host mode support-
- Single Host mode (Supported)- Each RLAN client has to be authenticated
- Multi Host mode (Unsupported)- When multiple clients connected behind hub, first client authenticates and opens the port for remaining clients to pass traffic
- Multi domain mode (Unsupported)- Separate VLAN assignment for data and voice device.
- Performance limitations- Even though each RLAN port is 1 Gbps capable, when multiple clients are sending traffic (RLAN+WLAN or RLAN+RLAN) simultaneously, the max combined throughput achieved will be 1 Gbps.
Related Blogs
blogscisco.com 