Reaching Others University at Buffalo - The State University of New York
Skip to Content

NAP VLAN Installation Notes

Dear UBIT Technician,

I put these notes together for you. They're not a "brief" but they do explain what I think you would need to consider when changing devices. I added things not knowing if you had any other writeups/ documentation, so if anything is redundant, I apologize. While I know that the majority of people reading this would be somewhat technical, I didn't want to assume the knowledge behind the person reading this either, so some things may or may not need to be here.

- Robert Schulz, EIS Client Technologies Technician

Before You Begin

The device needs to be on its own port, or, if it shares a switch, all other devices on the switch will need to be on the NAP VLAN, and those devices will all need to be switched over at the same time.

Installation steps

  1. Analyze how the device is currently used and how users connect to it.
    • A printer connected to a print server via IP or DNS name, and then shared to otherusers through that print server is a simple change. You make the one change on the print server and within minutes, users connected through the print server are printing to the new IP/DNS.
    • If you have local-computer connections, where each user makes its own direct connection to the device, you have to analyze how much effort it will take to change that connection. If users are using the static IP, you will have to make a change at each connection. If users are using a DNS name, you may not have to make any changes at the connection, but that depends on another factor described later on.
    • If you have local-computer connections from off-campus, the NAP VLAN is out of the question for the device, unless you set up an intermediary device/machine/computer to make the jump from public address/internet (WAN) to private network (LAN).
  2. Once you analyze how the connections are made, you must then analyze what needs to stay the same and what can change.
    • First and foremost, the IP address must change.
    • Second, the DNS name. There cannot be duplicate names in DNS. Therefore, you must decide between a few options:
      • Create the new entry with a different DNS name, then switch everyone over to the new DNS name (difficult if you have multiple local connections, easy if you only have one connection through a print server).
      • Create the new entry with a different DNS name, but once you switch the device to the new IP address on the NAP VLAN, have the old DNS name point to the new DNS name (slightly longer of an outage, but reduces changes needed if you use the DNS name for connections
      • Create the new IP address/DNS name with a different DNS name, but once you switch the device to the new IP address on the NAP VLAN, delete the old DNS name and change the new IP address' DNS name to match the old one, (even longer of an outage, but still reduces the changes needed if you use the DNS name for connections, this also reduces confusion with multiple DNS names, but it is more work and more possibility for issues/longer outages).
  3. Now you must plan when to make the change. You obviously don't want to change a printer's IP address during peak printing times. That being said, the IP change does not take very long, so scheduling when to do it with users should not be difficult.
    • As described above, you need the static IP/DNS entry created before you can continue
    • You must schedule with NCS on when to have the port VLAN switched over
    • Make sure you are not rusty with how the IP change will proceed on the device, whether you must do it locally, or via the web, and what administrative passwords you may need.
    • Make sure you know where to find the IP settings on the device. Ensure you have the correct settings, as both the subnet mask and default gateway must change with the IP address (if you are configuring static IPs, which you most likely are).
    • Issues you may find:
      • Local software firewalls must allow traffic via this private address space and any hardware firewalls (mostly extremely locked-down firewalls) must also allow this traffic.
      • DNS caches might not clear/change right away if you change DNS names, depending on how the client machine accesses DNS.
      • The device most likely should be rebooted after the change, ESPECIALLY if the device is older or has been known to have network issues in the past. Error on the side ofcaution. A simple reboot is not as bad as the clock ticking trying to figure out why the device isn't talking to the network properly.
    • Like any change, if you can test the changeover with a low-use or test device, test using that device. Make a mistake on a printer with low use instead of the printer that everyone uses multiple times a day.

Did This Page Answer Your Question?

(Required)
 
Email, UBITName or phone number
(Required)
Enter the letters or numbers you see below in the space provided. Click "Get a new challenge" if they are not readable.