I current have 20 x cisco AP 1142 with WLC 4400 series, I'm looking for newer/latest Cisco AP for expansion. I was looking at Cisco 3500 series but not sure how good/flexible they are when comparing to 1142 and other AP series.
I have to upgrade a couple of 4400s to support 1142 APs. The controllers currently support 1131s, and are on version 4.0.179.11. (I know, way back there...)
Seeing this huge gap between the level we're on and the most current version, thought I'd better find out what's recommended.
The available MD versions are 4.2 and 6.0 The available 4.2 versions are: 4.2.209.0(md) [code]....
(eth ports routing only) and a layer 2 switch into a cluster of two layer 3 switch clustered. I have looked at Cisco 3550 EMIs with HSRP but I would like to implement based on newer models of Cisco switches.
I've been experiencing a problem with my existing 3845's that may mean I may have to upgrade to a newer faster platform.Currently I have ISP links to 2 providers and run BGP. Each ISP link plugs into a separate 3845 NM-1GE fiber port. Both links are 100Mb ethernet handoff. There is an average of 50 - 60Mbps traversing each link during peak times. I am experiencing a large number of Input errors on both ISP links almost all of the errors are ignored. I opened a TAC case and I'm told that the 3845 can not handle this much traffic along with an ACL on the ISP interface and BGP. TAC engineer tells me that the RX ring of the interface is being overrun and tuning buffers will not make any difference. CPU util never goes above 25%.
I have run into a problem replacing an old Linksys BEFVP41 with a SA520. The BEFVP41 had an address on the LAN defined as a DMZ. That address was another router. It is in the same subnet as the local LAN and I am not sure what ports it uses. It is controlled by an outside group and requires much delay and paperwork to change the address. The new SA520 will only support a DMZ if it is in a different subnet than the LAN. Any way to simulate the old DMZ function on the newer router? I have not yet been able to obtain a list of all ports that should go to the second router. Didn't know if there was a way to forward all ports like the old BEFVP41 does by setting a DMZ address.
trying to upgrade home network and found a dual-band 2.4Ghz and 5Ghz router. Appears that none of out newer Toshiba laptops and neither of our brand new Asus laptops recognize the 5Ghz network sitgnal. Only PC in entire house that sees the 5Ghz signal is the old PC in the house running Win XP.
One of our locations recently upgraded their VPN router from a Netgear FVS318 to the Cisco Small Business Router RV042
My location uses the Linksys RV042v1.2. We can't get the VPN to connect. The VPN set up screens are similar, but there some parameters that we had to adjust. The SA Lifetime parameter for the Cisco Router defaulted to 86400 Secs (Phase 1 & 2) The SA Lifetime parameter for the Linksys only goes to 28800. So we adjusted the Cisco RV042 to match out Linksys RV042.
That's the only difference in the screens that I see. The Cisco has additional paramters under "Advanced", but they're all unchecked by default.
When they shipped the Netgear FVS318 over to us, we get the VPN to function, however, the Netgear has a max throughput of 10Mbps. (we get 4-5Mbps on Speedtest.net). The RV042 gives me over 40Mbps (Optimum Business w/Ultimate)
I tried both firmware updates on the RV042v1.2 RV042 v1.3.12.19 RV042 v1.3.13.02
Any compatibility issues between the different versions of the RV042?
I have a cisco wireless environment running NCS with a wism, two 4400's, and now two 5500's. The bulk of our AP's are 1131's, however we are now ordering and using 1142's and 3602's. We just added the 5500 controllers in preperation for a large deployment of 1142's. What I would like to do is have the system setup so that the the 1142's will default to the 5500 controllers. Since the wism and 4400 wont support the 3602's its not really an issue for them. I'm trying to find the best way to accomplish this. I've already heard one suggestion of manually going through and setting all the AP's to a primary and secondary controller but I was hoping to find a way to have the system do this for me.
Is there a newer tool for current versions of Checkpoint to ASA 8.4? I notice a lot of similarity between checkpoint and 8.4 now, but I still have to do it all line by line which has become a PITA.
A newer router that I got from a friend, a CISCO Linksys WRT310N, is not connecting to my XP computer via a CAT5e cable. It willconnect for about 5 to15 mins, then lose connectivity. Ihaven't tried with a faster CAT6, since my dog chewed through my other one,and I have yet to get a new one. I used an older NETGEAR B/G router and it worked fine.
We have a centralized Cisco 5508 WLC with 84 APs(1142N) in branches (slow WAN links), Current WLC IOS version is 7.0.220.0.Recently we bought new Aps Air CAP36021-N. These APs are not compatible with existing WLC IOS. If I upgrade WLC, then can I stop propagating newer firmware for old Aps? Because it kills all WAN.
I have an N300 (F9K1002v2) and I'd like to know if there are any firmware updates newer than 2.00.08, I've tried flashing firmwares 3, 4, and 5 but they all fail.
For many years we've had the following vlan and port security config on our 3560s: [code] This has worked great on 12.2(37)SE1, 12.2(40)SE and 12.2(46)SE. However since 12.2(50)SE, and I've tried all the versions since then, we have a problem with 7900 phones and ATA186s taking upwards of 20 minutes before they can get a valid IP number.The problem on the newer IOSes seems to be related to the inactivity aging.On the older IOS versions the mac address of the voice device appears on the voice vlan straight away.
On the newer IOS versions the mac address of the voice device appears on the DATA vlan and seems to be stuck there until the inactivity aging removes it. It then gets re-learned, sometimes on the voice vlan, and sometimes on the data vlan. If you're unlucky and it gets re-learned on the data vlan you've got to wait until the inactivity time ages the address out again. Repeat until the mac address eventually gets learned on the voice vlan. I don't want to be stuck on 12.2(46)SE forever.
From an older manual it describes how to configure this. I installed the oldest firmware available for download and this feature is there. Was this just simply moved somewhere else in the newer firmware?
Configuring Port VLANs You can associate VLANS on the Cisco RV220W to the LAN ports on the device. By default, all 4 ports belong to VLAN1. You can edit these ports to associate them
I'm looking at a dual-channel wireless-N router that transmitts at 2.4Ghz and 5Ghz, but none of our newer laptops even recognize the 5Ghz channel. Is there a configuration setting to change what frequency laptops can recognize? Looking to put 2 newer modle Toshiba loptops on the 5Ghz channel and leave two other...older systems on the 2.4Ghz channel.
I found [URL] that it's possible to create IPSec between WLC and MS IAS server. Is it possible to use ACS 5.2 instead of IAS and establish IPsec between WLC and ACS?
We have a Cisco 4400 series WLAN controller.When I go to the clients and view who is connected; I can also filter it. However it only lets me filter by mac address, ap, wlan profile, etc.
It does not have IP filtering. Is there a way to filter using IP? Basically I want to find a particular client with a certain IP that's connected to our WLAN.Also how do we block the client? If we deemed that person should not get access.
We have a single 4404 that was setup long before I arrived with Guest networks that timeout and other such tweaks. Is there a document somewhere that shows a way to migrate the old settings to a new 5508 that we are purchasing? By the time the 5508 arrives I will have a very small window to setup the unit before a new wing goes live. I need the new unit as we have reached our limit of licensed AP's on the old 4404. It seems like everyone keeps talking about an easy way but no one says how to do it.
I have never setup one of these units before from scratch so I don't know how long it will take.
I am configuring an old WLC4400 with V4.2.130.0. I added a new sub-interface for VLAN 50 with proper IP for the subnet and then add the Radius server(Windows server 2008 with NPS) onto WLC4400. I then created new WLAN with WPA+WPA2 Encryption and 802.1x key management and selected the Radius server under AAA for authentication.
Configured the test XP with WPA-Enterprise and PEAP as EAP method. I purposely configured computer to prompt for username and password.
When I try to connect, I did get prompt for username and password. However after that nothing happens. It seems like laptop just keep trying to authenticate.
I checked windows event log and do not see anything under NPS. I know this windows server NPS setup works as it is also the authentication server for our remotevpn.
is there any special option I need to turn on for WLC in order for Radius authentication work? Or is there any known bug with V4.2.130.
I am replacing an old 4400 series WLC running version 4.0.179.11 to a new 5508 WLC running version 7.2.110.0.
We currently have 70 x 1131 Access points on the 4400 WLC.
With this upgrade, do i need to upgrade the old 4400 to version 6.0 so the AP's get an up to date IOS or can i directly migrate all AP's over to the new 5508 without any version incompatabilities on the AP's?
I am abit worried that the AP's are running a very old IOS on the 4400 v.4.0.179.11 to go straight to the new 5508 v.7.2.110.0.
l need change a wlc 4400 to 5500, but l don´t know what l need back up, and how can I do to join the H Reap APs in the new 5500 WLC because all H Reap APs that l have, are not in the same city , and I understand if l want join AP in the new WLC l need to connect in the same network segment, is it rigth ?
I have some problems integrating WLC 4400 with AD using ldap. The the WLC LDAP Server and W LAN for Web Authentication are configured according to [URL].
when I connect to SSID the laptop is given the ip address, then I can see the web-page with lo gin and password - it seems to be OK, but when I enter lo gin and pass it tells me, that it's incorrect.
The attributes of the LDAP server:
Server Address *.*.*.* Port Number 389 User Base DN ou=ORG,dc=domain,dc=local User Attribute userPrincipalName User Object Type Person
the test user is located in AD folder ORG, but this folder also contains a lot of sub trees
There are some questions:
1) Is it obligatory to use value "Authenticated" in the Simple Bind option or it can be Anonymous? 2) Is the Controller capable for searching the users located in User Base DN sub trees?
Here is some debug from the controller:
667: LDAP_CLIENT: UID Search (base=..... 669: LDAP_CLIENT: ldap_search_ext_s returns 0 85 669: LDAP_CLIENT: Returned 1 msgs including 0 references [Code]....
I have a 4400 WLC for 100APs running the 7.0.98.0software version. Now, only 48 APs are joined, and the WLC dont accept new joins. The log below are from my WLC but appear for all others APs:
%LOG-6-Q_IND: spam_lrad.c:1440 Discarding discovery request in LWAPP from AP 00:3a:98:ae:e3:f0 supporting CAPWAP%LWAPP-6-CAPWAP_SUPP_VER: spam_lrad.c:1440 Discarding discovery request in LWAPP from AP 00:3a:98:ae:e3:f0 supporting CAPWAP%CAPWAP-3-TX_ERR: capwap_ac_sm.c:1966 Failed to transmit discovery response to AP 00:3a:98:ae:e3:f0%CAPWAP-3-ENCODE_ERR: capwap_ac_sm.c:2269 Failed to encode Discovery (code)
i have a problem using my usb to serial cable connection, i can connect to one router on my work, but i can't connect to AP 1142, (i have tested also con AP 1231).i have a laptop running windows 7 64 bits, before i use a win xp 32 bits, and i didn't have problems.i am using putty, and have installed tera term 4.74 but the same.connection details, 9600, 8, 1, N, N.
I am in the process of deploying an additional Cisco 1142 AP into my network. I would like to set it up to be the same SSID as the first one, and be able to have laptops roam from AP to AP. I am simply trying to expand the current coverage of my wireless network. I have both APs mounted and access to both.
-CISCOAP01 - 192.168.2.2 -CISCOAP02 - 192.168.2.3
What do I need to do (configre) to make this happen? I am rather new with Cicso. I am using the web interface to setup the APs. The first one has been up and running for about a year now with no problems. [code]
i have a existing wireless network setup in my office existing wlc in 4402 and LAPs are 1130 & 1242 all are working fine but we are now planning to use new 5500 series controllers for the same access points,i want to ask that how i can done this job with very minore downtime and users disconnectivity + zero error results??