Cisco :: 4402 WLAN Controller - New Clients Not Getting IP?
Jan 14, 2013
Recently (within the past 2 months) I've been having some issues with my 4402 wLAN controller.
The issue is thus:
1) New wireless clients (those without exsisting DHCP leases) are unable to properly connect to our wireless network.
2) Those same systems (and other systems) have no issue getting online via a wired connection (where available).
3) Devices like iPad, tablets, laptops partially connect but do not get a valid IP address.
Our config:
1) DHCP is handled by a seperate server (NOT the 4402 - it's DHCP setting is disabled)
2) Our wLan is not on a seperate network than our wired LAN
3) Wireless devices attempting to connect include iPads and laptops mostly.
4) We're a school with about 300 systems (primarily Windows XP machines).
5) 25 access points controlled by the 4402 (our only wLAN controller)
Important Notes:
1) No configuration changes have been made to DHCP or the 4402 device in a couple years.
2) 4402 Software Version = 4.0.217.0
The problem first showed up a bit over a month ago. I first thought the issue was DHCP server related , so I started there and didn't find any obvious issues. I did restart the DHCP server (which at that point had an uptime of somewhere over 700 days).
I then also checked the web interface of the 4402 to see what it was reporting. I noticed a somthing:A) As shown in the "WLAN_Issue_EDIT.png" the client count on the controller is showing 628 current clients. We don't have many devices in our entire campus.
I rebooted the controller after hours and that seemed to allievete the issue. Since then, the current client count hasn't ever gone above 60.
Now today I'm having the same issue regarding new clients getting IP addresses. The client count isn't real high on the WLAN controller and I don't see any other obvious issues. I'm torn between this being a DHCP issue or the controller issue (or a combination of the two).
The reason I don't think it's directly DHCP related is that all wired clients seem to be getting address fine.Plus, I've set my tablet device to a static address and it still cannot connect via wifi.
**Update** I've now rebooted the controller and the problem persists (at least on the nearby iPad - Will confirm other devices shortly).
View 12 Replies
ADVERTISEMENT
Jul 4, 2011
I am currently running a Cisco 4402 Lan controller, I have a Wlan that is running unsecured and i wanted to add a simple web policy log in, so i set up an NPS server on a local DC. I have the two talking . when i go to login at the web login page I get the Error Login Error. When i look at the NPS logs it says: "Network Policy Server granted full access to a user because the host met the defined health policy" . So it has to be in my Cisco set up somewhere seems pretty simple
View 2 Replies
View Related
May 29, 2013
I have a Cisco 4402 Wireless LAN Controller and 4 x AIR-LAP1131AG-A-K9 access points.We run a combination of [WPA +WPA2]Auth(802.1x) as well as [WPA2]Auth(PSK), most people have their own login credentials...The primary client devices are MacBooks and iPhones, with some Windows and other mobile manufacturer being the minority.
The Issue I have one user (using a recent MacBook Air, latest OS, using Auth(802.1X) ), that keeps getting disconnected for no apparent reason, the user account has been setup exactly the same as every other user and his laptop doesn't have this issue when connected to other WiFi networks.It's worth noting: I noticed this particular user has a lot of "Decrypt Failed" (currently 213) associated with his MAC address, no other user on our network has a single "Decrypt Failed" associated with their MAC...
View 4 Replies
View Related
Aug 3, 2011
we use wlc 4402 (Software Version 7.0.98.0) and want to allow only several wlan nic vendors to connect to a wlan ssid.According to this, is it possible to configure MAC Filtering with wildcards, e.g. aa:bb:cc:* ?
View 1 Replies
View Related
Dec 15, 2011
I am struggling with the following issue. I have 6 1130 Accesspoints in lightweight mode connected to a 2106 wlan controller which runs software version 7.0.98.0. Everything seems to work fine. Clients can connect to the wifi network. However, they don't get an ip address from the dhcp server which is on the same subnet as the wlan controller. See attached screenshots for configuration. I have also tried the internal dhcp server of the wlan controller, but the same problem remains.
The logs says: Dropping primary discovery request from AP e8:b7:4x:xx:xx:xx - maximum APs joined 6/6 There are 6 AP's connected
View 4 Replies
View Related
Nov 27, 2012
We currently have a cisco 4402 with firmware version 6.0.182.0 and 4 WLANs currently running on it, we found the need to add an additional WLAN and after the configuration was completed and I tried to connect to it I found that we are not getting an address. If i connect a laptop to the VLAN I can get an IP and am able to browse. If i hard code an IP into a device and connect to the wireless i am able to connect and browse.
View 7 Replies
View Related
Jun 22, 2011
We have 2 WLCs, 4402 (main) and 5508 (backup). While we turn on both devices, 4402 have 10 APs, and 5508 have 10 APs as well. Total connected clients will be 120+, but when we turn off either 1 wlc, let's say only 4402 is power on, total 20 APs joined, but the total client will be 90+, never reach over 100 clients. The same happened on 5508, is there any maximum associated connection on WLC?
View 1 Replies
View Related
Sep 29, 2011
When on the management interface the clients can't get dhcp but the AP's can on the same vlan. I've tried enabling and disabling dhcp proxy, and using a remote dhcp server as well as the internal server. This same config works on the 4402 we're replacing with version 5.2.193 on it.
View 13 Replies
View Related
Oct 16, 2011
I am using wireless system with certificate athentication ( CA Server ) and RADIUS server.
I want to know if certificate is not installed and configured in wireless client laptop.
Do client get athenticate in wireless system and get access of wireless network ?
Also want to know any configuration required in WLC CISCO 4402 for authentication with CA server of client laptop.
View 2 Replies
View Related
Oct 2, 2011
Have a cisco 4402 manage. console and 1131AG WAPs I have a specific test LAN for one WAP but shows up on others WAPs too.
View 2 Replies
View Related
Nov 4, 2012
I have a 4402 which is connected to a 4506 Switch int Gig 3/1 via a trunk port. The Managment and AP-manger interfaces are on vlan 6 [code] I have a 1142N AP also connected to the switch and it pulls a DHCP IP Address and configs etc and registers to the WLC. It too is on Vlan 6 and it is connected to the 4506 on int gig 4/33 which is an access port. [code] I am doing local authentication, so i have added users to the WLC.. My problem is that the first client that connected was able to get an IP address and connect to anything internal and external.I then connected another client on another laptop and that client could connect but not get an IP address, it just self assigned.When i look at the clients i can see the MAC address of both Clients on the WLC, but doing a show mac address-table dynamic i only see the MAC of the client that works properly. The client that doesnt get an IP has no entry in the 4506 switch.I am stumped, from what I understand, is that the 2nd clients traffic is being trunked to the WLC , hence it has the MAC address. But I dont know why its not getting a DHCP assigned IP address.
View 37 Replies
View Related
Nov 1, 2011
I have 2 4402 WLC's and a central office and was trying to configure an H-Reap Ap but now the entire wireless network is down. Clients arent getting IP's. I cant see anything that is wrong but things are not working like they should.
View 36 Replies
View Related
Nov 23, 2012
Moblie WLAN range 192.168.1.0/24.Default Gateway: 192.168.1.1 - Firewall..Next available range to add more addresses are 192.168.11.0/24..Current range is having IP address issues..I have seen a feature in 4402 controller that I can assigne second address range to exisgint SSID Mobile.What should I set the default gateway for 192.168.11.0/24 range?How can I point all mobile users traffic to the firewall as default gateway without creating additional interface on the firewall?I really do not want to create another vlan and interface in the network to just add another 255 addresses if tehre is any option?
View 3 Replies
View Related
May 19, 2009
WLC Model
---------
WLC 4402
Software Version
----------------
5.2.178
Problem Statement
-----------------
Do we have any Cisco WLC MIB to get WLAN profile (Order in which WLAN profiles are added inside an AP Group) information present in an AP group?
View 3 Replies
View Related
Jan 16, 2013
I have a 4402 (version 7.0.235) working with 10 units of 1121 APs connected to it. The WLC is not configured to work in LAG mode. Physical portt #1 is connected to the Main Switch (trunk). I have 3 WLAN mapped to 3 Different VLAN and Everything (security and internal, external DHCP) is working swell...Now- I have connected Physical port #2 directly to an ADSL Router (giga port), Configured Port 2 as untaggedwith the proper IP details.I have configured this interface to receive DHCP from the ADSL Router and for some reason, Clients are not getting addresses.When I assign a Static address to my laptop I get internet access and all is nice. I tried configuring The WLC internal DHCP server (instead of the ADSL router) and that didn't work. It seems like a DHCP problem but I dont understand the source of the problem of think of the solution.When turning off the proxy settings I noticed that it worked. Is there anything to do with that? The problem was that after a while the other WLANs starting causing DHCP issues as well.
View 7 Replies
View Related
Jun 18, 2011
We have a controlled setup comprising of a 4402 WLC in our Data Centre and 1242AG LWAPs in our branches.The Wireless works well with a mixture of locally switched (h-reap) and centrally switched WLANs.I have a problem where Android devices don't seem to function as they should.I have been using an Android phone (HTC Desire, currently running 2.3.4 OS, but has been a persistant issue since 2.1) and it connects to my home wireless (and others) fine, but when connecting to the Wireless LAN at the office, it connects fine and gets assigned an IP address, but NO data flows. None, like there is no connection at all. I have just been using it on 3G. I figured it might have just been an issue with the hardware, so didn't bother too much.I have just purchase a new tablet (ASUS Transformer, Currently running 3.1 OS) and this does the same thing.I have tried publishing a new WLAN and have tried all types of encryption and authentication al the way down to open and still, no data flow. I have tried statically setting the IP details and still nothing.Interestingly, When I attended the last Cisco Live conference in Melbourne this year, I had my phone and it displayed the same behaviour on the Cisco supplied wireless, BUT, there was a second IPv6 enabled, when connected to that everything worked fine.
View 2 Replies
View Related
Jun 30, 2010
We Have a WLC-4402 controller with LWAPPs and different VLANs and SSIDs. I've configured a Linksys WET200 to associate to one of the SSIDs.On the WLC I can see, that the WET200 is associated to one Wlan.Then I connect one computer with a static IP address and works fine.But when I connect a second one, everythiing goes down. It does not connect.I can only connect one computer to the WET200.Do I need other seetings on the WLC to allow pass traffic through the WET200?
View 4 Replies
View Related
May 16, 2011
I am enabling our wireless controllers to use 802.1x authentication for our wireless clients. Both computer and user are provided with certificate from CA server.I have 9 APs and 2 controllers installed in my infrastucture, one of the controllers is working fine with setting specified above but the other one is not.Both has same configuration and both seems identical with same model and IOS.
View 3 Replies
View Related
Jul 20, 2008
how to password recovery Wireless LAN Controller 4402
View 3 Replies
View Related
Mar 11, 2012
I am running 5508 wireless controllers. I pass along another agency's WLAN across my wireless network that is anchored to their older 4402 controller.
I wish to run the new 3600 series APs and am planning on migrating to NCS and the new 7.2 code.
I know that the older 4400 series controllers will not handle the newer 7.1 or 7.2 code. However, i still wish to maintain this anchor relatiosnhip with the older 4402 controller. I need to know if this will work or not.
View 2 Replies
View Related
Apr 11, 2012
1) AP was originally running a standalone image. I booted it into a so-called ROMMON or AP mode (ESC is the right key to make it boot into this mode).
I found a recovery image in its flash - c1140-rcvk9w8-mx. I made the AP boot from it by using "set" command and I see that it start booting using this recovery image. Here goes the question. Do all AP settings matter ? E.g. when I run "set" command from AP I see the following:
ap: set
?=
DEFAULT_ROUTER=10.0.0.1
Default_router=10.9.99.1
ENABLE_BREAK=yes
[Code].....
View 27 Replies
View Related
Oct 6, 2012
I'd like to replace my 4402 Wireless controller with a new 5508. I have migrated the exact configuration from my 4404 controller to the 5508 and they are both running the same version of code. I'm worried that if I replace the 4402 with the 5508 controller, the Access Points will not rejoin to the new controller or they will join but will have lost their configuration e.g. AP Name/location etc etc. AP models registered to the existing controller are 1131, 1142 and 3502. I am also using Cisco WCS.
As long as the new controller has the exact same configuration, is it possible to replace the 4404 with the 5508? Will the existing Access Points join the new controller? Is there any other configuration required? I have read about doing this using mobility groups however would rather not if possible.
View 2 Replies
View Related
Apr 3, 2012
I have 2 4402 WLC running 7.x.x.x code. I also have some 1510 Mesh- L WAPs that require an old version of code. I need 4.1.192.22M for those. Is it possible to bring up a 3rd controller running this old code with the other 2 4402's running modern code? What will break? I know that anchoring and mobility might get messed up. What are the other caveats?
View 2 Replies
View Related
Oct 16, 2012
I have a wireless printer on an internal wireless network. I have a laptop connected wirelessly on the same internal network. When both devices are connected to the same network I cannot connect to the printer. If I change my laptop over to the guest wireless or to a wired lan, I can see the printer. I vendor stated that within the 4402 wireless controller there is a setting to allow wifi to wifi connections on the same internal network. I am trying to figure out what that setting is called and where I might look for the setting within the wireless controller.
View 1 Replies
View Related
Jan 27, 2013
I have a 4402-12-k9 controller and I need to upgrade to 25 APs Can I buy a 12 or 25 license upgrade to this controller?
View 7 Replies
View Related
Oct 30, 2012
My client has on cisco 4402 controller running with 48 AP on this. Client requires to add another 25 AP but licence on the current controller is not supported client bought another controller 5508 with 25 AP.
I have been tasked to installe 5508 with conjestion of 4402. I have make the software version on both of them as below
AIR-CT5500-K9-7-0-235-3.aes
AIR-WLC4400-K9-7-0-235-3.aes
To match the same IOS version on both the controller. I have following challenges with me.
- 5508 will registered 25 AP while .. 4408 will continue with 48 AP.
- 5508 is going to be in DC and it will be directly connected to firewall as default gateway for guest SSID. 4402 is going to be on another building.
- How can I make sure that Users connected to AP registered with 4402 will have the same deafult gateway as 5508. Thre is no layer 2 connectivity between this two controllers.
- There is no romaing going to happen between this two controller as both are two different locations and user will leave one location will disconnect and it joines bak when it reach to another controller.
- Is there any way to configure 5508 as master and 4402 as slave kind of connections?
View 1 Replies
View Related
Sep 17, 2012
we have the following situation:
- 2 x WLC 5508 with about 80 - 120 access points (Aironet 3500) each
- 7 x WLAN's with different security settings
- 2 x ACS 5.3
On one WLAN we have the problem, that the students with their own laptops have to enter their AD username about 4-5 time, until they get a successfull 802.1x authentication. The WLAN has the following configuration:
- Hidden SSID
- Only 802.11b/g
- Interface assigned via AP Groups
- WPA2 / AES with 802.1x or CCKM (here I could only allow 802.1x, the clients do not need fast secure roaming)
- Authentication via ACS 5.3 and PEAP
- for more details see screenshots below
Most of the time I can't see any 802.1x authentication attemps on the ACS View, but when there are entries, they are successfull. So in my opinion I think there has to be a problem on WLC side, but I don't know where to search further. We already deactivated the client load balancing in the WLAN, because at the beginning the customer wanted to activate that - but it was clear that there are a lot of clients which had to authenticate multiple times.I know there were some bugs in the 7.0 train, so I upgraded finaly to 7.0.235.0 to overcome this bug here: CSCty07036.To fix the other bug (CSCtt70290) I just disabled all the session timeouts on the different WLAN's.
View 5 Replies
View Related
Oct 8, 2012
Is it possible to set an Aironet 1232AG-A-K9 as a repeater while still using a 4402 controller? I have some wireless security cameras in our parking lots that I need to extend wireless to and I have a handful of 1232 points that I am not using. I have some omni antennas and a yagi directional that I was planning on using.Everything I am reading talks about configuring the AP while in automous mode, not while running the lightweight image.
View 2 Replies
View Related
Apr 18, 2013
I have 10 Access-Point model 1131 AG are new AP.
When I connect the access-Point to the network, the AP associate only one time but i go to wireless for see the AP, i can see downloading of IOS, but the ios is 3.0.59, the ap don not nothing. I can not change any parameters.
View 4 Replies
View Related
Jul 20, 2010
I have several controllers, including a 4402 running 6.0.188.0 software and I need to modify the Radius servers that it uses. Currently I have three servers listed;
1 - 10.246.194.16
2 - 10.200.31.78
3 - 10.247.50.56
I would like to delete server 1 which is being retired and replace it with a new server 1. I suspect, once i get servwe 1 deleted, the server 1 option would become available when I create a new server. I went into the controller and disabled server one, but every time I try and delete it, I get the "Server in use either on a specific WLAN or Mesh Radius Server Configuration" error. I can't find anywhere this server is still in service and being used, either by a WLAN or a Mesh. I've tried several different variances to modify this. What I hope to avoid is the need to reset the controller. I have a total of seven controllers that I need to make this modification to, and It will be ugly if I have to reboot these units. Hospital mission critical stuff.
View 4 Replies
View Related
Mar 1, 2012
I am in the midst of trying to update the controller firmware of a cisco wireless lan contoller 4402, and having some issues getting the file to transfer to the controller. i am currently running verison 5.0.148 on the controller and attempting to upgrade to the latest version of 7.0.230 and for whatever reason it continues to not transfer. I have tried all 3 methods of cli, gui and using wcs software. all the no avail , I have tried tftp32 and 3cdaemon with the same results.
The error that i am getting from 3cdaemon is got socket timeout aborting code 10054, failing at 66MB transfered. I increased the timeouts both on the wlc and the tftp client to no avail
the error i get on the wlc is Code file transfer failed - Error while writing output file
View 5 Replies
View Related
Mar 15, 2013
I have 3 WLC 4402 controller connected to an ACS Server and Cisco 1252G AP. Previously the wireless networks works fine but for two weeks now most of the clients experiencing reauthentication frequently, Some experience it every 5 mins even if they are browsing or idle and not moving. I've check the session time out settings in the wlc and it was configured for 30 mins as default. I have around 900 student clients connecting every day.
View 4 Replies
View Related
Apr 8, 2008
I am trying to setup a guest vlan. I set up an interface for the guest vlan on my 4402 controller. I assigned the guest vlan interface an IP of 192.168.2.10 with a 24 bit subnet mask.
This vlan will go to my DMZ where there is no DHCP server so I need to setup the internal DHCP server. I created a new scope but I'm having trouble with what to put in the Network field for the DHCP scope. The pool addresses are 192.168.2.100-200. with a 24 bit subnet mask.
Every time I try to apply the configuration I get an "error in setting DHCP scope network and netmask".
I've tried using:
192.168.2.10
192.168.2.255
192.168.2.254
as entries for the Network setting but no go. The docs say to enter the IP address used by the management interface with subnet mask applied.
I was assuming they meant the interface for the guest vlan.
View 3 Replies
View Related
