Cisco :: 84404s Upgrade Procedure For Multiple WLCs Without N+1
Jan 25, 2012
I would like to discuss another method of a bulk controller upgrade and see what other engineers take on this upgrade path would be.Say I have an instance of 84404s with 50 APs each, In this case I have N+1 redundancy where I can follow the normal procedure.Normal Procedure.Move all APs to controllers 1-4Preload all APs with the new code versionUpgrade and reboot empty controllers 5-8 to new code versionMove all APs to 5-8 with new code versoinUpgrade empty 1-4Move all APs back home.Now take the same scenario only chage it to 80 APs per controller. I've now lost my N+1 and cannot do it quite as smoothly. As opposed to trying to follow the normal proceedure and have an extended window of "brown outs" How about doing it all at once.Black-out accelerated proceedure:Preload new code on all controllersPreload new image on all APs on all controllersReboot all 8 controllers at the same time.Allow time for APs to connect back and load the new image.I assume with this proceedure that I might see around 15-30 minutes of actual downtime to the site but it seems like that could be preferable to two-three hours of brown outs.
View 6 Replies
ADVERTISEMENT
Feb 14, 2013
We are in a warehouse type setting and have data centers on each side of warehouse with 5508 WLC's in each data center. Each side is on its own subnet with routing in between and a different set of SSID's for each set of WLC’s. Are goal is to have the ability to failover in the event that if one data center goes down AP’s will move to the controllers in the other DC and the clients will still be able to operate.
Our thought was to implement mobility groups between the controllers. While I saw documentation on setting this up when the controllers are on the same vlan, I didnt see any setup config when controllers are in different vlans. So I am wondering if mobility groups are even an option for what we want to accomplish. For the most part clients stay on their respected sides of the warehouse and so we are not necessarily needing roaming for clients between controllers in DC1 and DC2. But that does raise another question in that we do have a planned voice wlan that we would like to have the ability to roam between each side of the warehouse. But we have seen ip issues with this. In the past we have had both SSID's setup on each side and ran to issues with clients not renewing their IP address when moving to the controllers on the different subnets.
Can we setup mobility groups between controllers on different vlans/subnets? For failover purposes will mobility groups assist in our setup with 2 DC’s and different subnets/vlans? If the answer is yes we can setup mobility groups between different subnets, is there a way to setup the SSID's on all controllers and have the ability for clients to roam and renew their IP’s when moving to a different controller on a different subnet?
View 3 Replies
View Related
Mar 26, 2013
Why isn't a GUI upgrade possible instead of CLI initiated upgrade?Is this (GUI) only for patch upgrades or is it a valid upgrade path to use the Cisco Prime's GUI (Administarion; Software Update) in order to upload update file. Check for updates gives no results though successful login to [URL].
View 3 Replies
View Related
Jan 6, 2012
I'll be upgrading an HA pair of ASA 5520s next week, and wanted to clarify the procedure. I read "Upgrading an Active/Standby Failover Configuration" at [URL] which suggests placing the image on both units, updating boot statements, then issuing failover reload-standby. But I was wondering if there's a way to a way to be a bit safer. I'd like to modify the standby unit, without affecting the config on the active. So I'd like to modify the boot statement on the standby without modifying the active config. That way incase there's a problem and the active reboots, it won't upgrade.
Can I modify the config on the standby without affecting the active? Then I'd like to test the newly upgraded unit with our production traffic. Would that simply be no failover active, and then once the standby becomes active -- test traffic? Once everything is okay, I would upgrade the second unit, and fail traffic back.
View 3 Replies
View Related
Apr 23, 2013
I am looking few information on IOS up-gradation for the switch WS-C3750G-48TS-S . I loaded new Image on the flash and current flash and sh boot as below
Switch#sh flash
Directory of flash:/
2 -rwx 8859636 Mar 1 1993 00:08:14 +00:00 c3750-ipservicesk9-mz.122-37.SE.bin
3 -rwx 556 Mar 1 1993 00:02:38 +00:00 vlan.dat
4 drwx 64 Jan 9 2012 03:17:56 +00:00 crashinfo_ext
5 -rwx 5768 Apr 24 2013 04:25:28 +00:00 private-config.text
[code]...
1) I would like to set boot sytem parameter for the new IOS and secondary old IOS as well is below command works??? if IOS not coming up with new one 12.2.58 is it boots with old 12.2-35 ?
boot system flash:c3750-ipservicesk9-mz.122-58.SE2.bin;flash:c3750-ipbase-mz.122-35.SE5
2) If I set only boot system flash:c3750-ipservicesk9-mz.122-58 , if new image corrput swicth will check valid image and boot up with old image ?
3) If switch went to room1 switch mode and still I have valild running IOS c3750-ipservicesk9-mz.122-37.SE.bin at flash memory, how to restore with old image
View 2 Replies
View Related
Apr 22, 2012
We've been upgrading our WLCs to 7.0.230.0 but I've notifced after they have been upgraded they no longer appear in the controller section in License Center on the WCS. They still exist in the WCS and the audit the configuration jobs are working. I've also tried manually triggering the Controller License Status background tasks and this runs without reporting any errors.I thought it may be because the WCS was at a lower version but I've now upgraded this to 7.0.230.0 also but the WLCs are still missing.
View 1 Replies
View Related
Mar 17, 2013
have concern regarding the faiolver of 2 WLCs.
1. One Active_WLC(2504) have a full licence of 15 Access points.
2. 2nd Seconday_WLCs(2504) have a normal licenece (Without any AP licenece-Zero AP Count License).
Now my questions are:
1. If first WLCs goes down due to any kind of problem then can secondary WLCs comes up and takover of all APs.
2. if Yes, then How may days or hours...These APs will connect to the WLC.
3.If first WLCs comes up after some days, then can this WLC automaticall tak over the situation??
View 4 Replies
View Related
Feb 13, 2013
I'm using two 5500 WLCs with the version 7.2.110.0 When some AP with the part number AIR-CAP1552E-N-K9 associate with them, the 802.11g stays up and the 802.11a stays down.I saw the AP interfaces in Wireless --> All APs and the 802.11a is down and the regulatory domain show me not supported but the 802.11g is working normally.I follow this document from Cisco [URL] and i just have BR - Brazil to support this part number.
View 5 Replies
View Related
Apr 17, 2012
Possible to assign reslient WLCs to an OEAP 600?
The web GUI of the OEAP itself only has a single field to enter the address of a single controller.
But, I wonder if once the OEAP is talking to your WLC across the Internet, you can allocate HA settings to the OEAP so that it can fall back to a secondary WLC if your main WLC fails.
This is sort of hinted at in the docs I have read, but I have not been able to find it explicitly stated anywhere.
It would be nice to have 2 DMZ-based WLCs at two different data centres to allow remote users to have a fail-over solution, but I need to be sure that this is supported before implementing.
View 7 Replies
View Related
Apr 7, 2013
I've just been tasked with setting up 19 AIR-CT2504 WLCs with AIR-CAP3502E APs. The primary objective is to maximize throughput from clients uploading LARGE files over the air.
I need to make sure I config HT 802.11n properly with no support for legacy clients in the 5Ghz band.
View 22 Replies
View Related
Sep 5, 2012
I have a 10nos of cisco 2960 switches and 1no of cisco 3725 gigabit switch. all 2960 switches are parallaly connected to 3725 switch though fiber.
all the switches are having same vlan and public ips for management.
Now I want to upgrade IOS for all 2960 switches at a time, how to up grade IOS same time for all switches.
View 1 Replies
View Related
Oct 18, 2012
We are currently running WCS but have built a new Prime Infrastructure 1.3 system from scratch on a brand new server, we have sucessfully migrated the old WCS database on to the new Prime server and as a test I have pointed 1 anchor controller to it. Possible to point the WLC's to both WCS and Prime Infrastructure concurrently - I was thinking that it would be a quick fallback if we has any problems with Prime (I know there have been some!) We are not running MSE but we do have mobility groups, the WLC's are 5508 running 7.0.235.3 .
View 0 Replies
View Related
Oct 15, 2011
Is it possible for the wlc (5500) block wireless users attempting to login to the network more than 3 times?I have several devices trying to connect to the network automatically using rhe old password, after 3 attempts the account will lock out! Im running peap mschapv2 with radius and active directory.
View 1 Replies
View Related
Dec 9, 2012
Does the AP is able to configure 2 public ip address of the DMZ-WLCs?
like ip 1.1.1.1 in my US data center, whereas a second ip 2.2.2.2 in my EU data center?
View 5 Replies
View Related
May 2, 2011
I have three 5508 WLCs, running code 7.0.98.0 supporting 100+ LWAPs in H-REAP mode. The LWAPs are servicing 2-3 WLANs each. Some are using central authentication and local switching, some are configured for central authentication and central switching. When the LWAPs fail from one WLC to another WLC, the LWAP's lose all of their VLAN mappings and pick up the VLAN of the management interface on the new WLC.
All WLANs are configured to use the management interface on the WLC and the VLAN mappings are configured per LWAP on the H-REAP properties tab. The WLAN ID numbers and all the WLAN settings are the same across all 3 WLC's. I have created AP groups on all 3 WLC's and the AP group config matches across the 3 WLCs.
I can get the LWAPs to keep their VLAN mapping by creating an interface on the WLC with the VLAN ID of the locally switched/remote site VLAN and then setting the interface for the WLAN to the new interface. However, then the WLAN doesn't work, because the centrally located WLC doesn't have the remote site VLAN. It also seems to keep the VLAN mapping if I create the locally switched/remote site VLAN interface on the WLC , and point the WLAN to the management interface. This shouldn't be a necessary step though... In H-REAP with local switching, the LWAPs aren't using the interface on the WLC.
I found a note in the 7.0 WLC config guide that explains why the VLANs are picking up the management interface VLAN, but that same note says the VLAN mappings can be changed per LWAP/WLAN!
From config guide: For hybrid-REAP access points, the interface mapping at the controller for WLANs that is configured for H-REAP Local Switching is inherited at the access point as the default VLAN tagging. This mapping can be easily changed per SSID, per hybrid-REAP access point
Using H-REAP and been able to get the LWAPs to keep the VLAN mapping when failing from one WLC to another?
View 9 Replies
View Related
Oct 20, 2011
where I can find a CLI password recovery procedure for the administrator account?
View 1 Replies
View Related
Mar 17, 2011
We have ASA 5540. After setting up one-to-one nat, do I need to do anything else? static (Inside,Outside) public ip address private ip address netmask 255.255.255.255.
View 4 Replies
View Related
Dec 20, 2010
checked all the recovery doc, however, there is no one specific for 3900 series router
View 2 Replies
View Related
Oct 17, 2011
where I can find a CLI password recovery procedure for the administrator account?
View 2 Replies
View Related
May 4, 2011
procedure to apply the 5-2-0-26-4.tar.gpg patch. I don't know how to get the patch file into the ACS server.The procedure in the "Read me" for the patch does not indicate anything about how to this:
1. open CLI console2. define new repository in which the 5-2-0-26-4.tar.gpg resides3. issue: 'acs patch install 5-2-0-26-4.tar.gpg repository YOUR_REPOSITORY'4. verify installation by getting the following version information via CLI by issuing:#show application version acs I don't know how to put the patch file from my local machine to the repository created in the GUI (if there is where the actual place to creat the repository).
View 3 Replies
View Related
May 2, 2012
From PEC training - Cisco says to perform a proper ASR 1004 shutdown by executing 'reload' , then wait for bootstrap message to appear, then [before commencement of unpacking of the IOS] turn off the power switch. IS THIS ACCURATE. Anyone have any doc related to the recommended POWER DOWN process on the ASR 1004. We have a UPS cutover coming up and I want to be ready to power down and restart the new ASR 1004s we have - properly.
View 3 Replies
View Related
Oct 30, 2011
our company is going to change its´ ISP. The External Isp are going to obviously change too. We have an Active/Standby Firewall and we would like to make the change with at least connectivity downfall as possible. In our configuration we have nearly all features configured as in a normal Productive Firwall such as , NAT, Site-to Site VPN, Remote Access Webvpn, ACLs and also routing. I have looked up some information in this community and still I am not sure about the steps to be made so to reach our goal.
I have read that changing only the "names" from the old IP Range to the new Ip range would not really make the change. The old Ip range will still be configured in the features using the external Ip address. Therefore we have to first delete all the information (in the running config) connected to these Variables and then re insert them. My biggest worry is that this could be a little bit tricky during the implementation, if some config lines or objects could be left out during the deleting and inserting procedure.
How we could make this change with a low percentage of "copy and paste failures"? I was thinking about in changing the "names" to their new Ips and then afterwards reload the ASA. Will this workout? Primary ASA will be changed first with the secondary shutdown. ASA Firmware 8.2.2 (12).
View 4 Replies
View Related
Dec 3, 2011
we purchase only Cisco Supervisor Engine VS-S720-10G and use it in our old C6509-E chassis.Now the supervisor engine was dead,(means not working and no LED's are ON). How can i claim the RMA from cisco?
We purchase from one of our partner. We send it to them,they are not able to find the Serial number from the Supervisor Engine module (Because lot of serial numbers are on the board). Also the customer through the catoon.
Now how we can know which is exact serial number of sup? How to get RMA from the Cisco on which serial number?
View 4 Replies
View Related
Oct 24, 2011
I bought the dir-615 today and already have issues. I don't know much about networking and have an intermediate understanding of computers in general. When I run the CD Wizard the configuration says it has detected another router and asks if I want to replace it or add the new router with it. I do not and have never had a router previously. So, for whatever reason I can't use the wizard because of this. I followed the instruction perfectly and no dice. Installing it manually is a bit above my knowledge level.
View 1 Replies
View Related
Aug 8, 2011
Point to point wireless connectivity configuration procedure using 1410 bridges either using GUI/CLI .
We have setup this in one of our Client sites.
View 1 Replies
View Related
Feb 20, 2012
Am setting up Cisco 3750 for the first time via CLI
1. what is the procedure for configuring passwords on the device.
2. how can i stack 3 switches in a site .
View 1 Replies
View Related
Nov 19, 2010
Have a Linksys E-3000 router and a WAP-4410N which I wish to configure as a repeater to extend network coverage. E-3000 IP has been changed to 10.10.1.1. How do I do it ? What do I connect to what in order to configure the WAP-4410N to new settings? It will of course be located remotely from the router. At this time network consists of a main PC and 2 wireless laptops. I have read the manual and it doesn't answer the above described situation.
View 7 Replies
View Related
Apr 18, 2013
I am upgrading a Cisco 6506E VSS from 12.2(33)SXI5 to 12.2(33)SXJ5 during a maintenance window. So I have plenty of time to reboot the VSS. Confirm below is the correct procedure. I have manually copied the new IOS to both active and standby Sup720s.
no boot system
boot system flash sup-bootdisk:NEW_IOS.bin
boot system flash sup-bootdisk:OLD_IOS.bin
!
copy run start
reload
I was going through the below cisco document and there are a few more steps as below: Is it necessary?
[URL]
Router(config)# no boot system
View 2 Replies
View Related
Apr 27, 2011
My bussines have an old PIX 515e and im about to install it in a "testing" eviorment but no one can remeber the password for this old equipment. Is there a way to reset the password?
But when it reboots and I write "enable" in the console it asks for a password, and the password isn't "cisco" as factory default. I really need this firewall up and runing ASAP.
How to reset the "enable"-password?
View 3 Replies
View Related
Mar 20, 2012
We have existing AP 1132 with WLC 4404 controller implemented in a site. We started add on new AP 3502 with WLC 5508.Our customer has existing 10 of 4404 controllers and configured in the same mobility group, and the roaming is working fine(ap are 1131).
Curently we deployed 2 new 5508 controllers and replaced some 1131 AP to 3500 AP. And the controller created new IP scheme for the wireless client. But after migrate 2 APs, we found that the roaming is not working when the wireless client move from new AP to old AP.
When moving from new AP to old AP, the ip address for the client is unchange, but the ping will be droped, and will never come back. Until we do a ipconfig flush, and reconnect, the connection can back to normal, but the ip address als changed to the old IP scheme.
View 2 Replies
View Related
Jan 11, 2012
I have to migrate two appliances ACS SE 1112 under 4.0.1 to new two appliances ACS SE 1121 under 5.2 version.I would like to clarify the procedure to do it by minimizing down time impact.I saw there are Migration Utility and Import Tool but do I need an Intermediate Windows Server to do this migration ?
View 1 Replies
View Related
Apr 7, 2012
i just wanna know if it's possible to perform a router password recovery using the reload command and then issue the break sequence instead of doing an off/on on the power switch. i often find in the docs to use the latter.also, is there a way to retain the startup-config on a router when we re-enable the password recovery functionality (no service password-recovery). i've just tried this on one of our 877 and when i hit the break sequence, it went back to factory default setting.
View 7 Replies
View Related
Oct 15, 2012
Is there any shut down proceedure for cisco devices in data center cisco router,switches,firewalls ASA-5580-20,ace-4710 and IPS-4260 devices.
View 4 Replies
View Related
