Cisco :: Design Will Include 5508WLC And 3600 Series Access Points?
Apr 11, 2013
We are re-designing our wireless network and are navigating the security options.Are design will include a 5508 WLC and 3600 series APs. We plan on breaking our wireless out into four VLANS.Is 802.1x the standard for wireless authentication?What EAP flavor would you recommend for wireless? We will be supporting an environment with a variety of mobile devices (iPhone, iPad, HP tablets, Dell laptops, etc.). We will also be supporting wireless Cisco VoIP phones. Someone suggested choosing between EAP-Fast or EAP-PEAP, does this seem reasonable? Also, if we want to authenticate users using their AD account, we need to have NPS running on the AD server and use the radius protocol from client to server, is that right?
View 1 Replies
ADVERTISEMENT
Apr 3, 2013
I am trying to build a bridge between two of my access points. Both the access points connected to the wireless controller. I have changed the AP mode to "Bridge" after changing the power to custom.
The access points have both rebooted - but never "joined" the controller again. I have checked on the following pdf.
[URL]
One thing I can see - if I run a ping to the last IP.. every now and again I get a single response then it drops again. Via the console on the access point I can see it's getting to the controller, getting its name then reading something that caught my eye
"
*Apr 4 11:41:24.451: %CAPWAP-3-ERRORLOG: Go join a capwap controller
*Apr 4 11:41:19.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 57.24.10.53 peer_port: 5246
[Code]......
View 9 Replies
View Related
Apr 11, 2013
We have an MPLS (layer 3) network 4 offices and a Data center. We are planning to install about 10 Access Points(3600 series) per office and have a controller(5508 series) in the Data center.
Questions:
1- Is this design possible, in other words, just one controller centralizing all Access point traffic in one controller in the Data center?
2- We would like to accomplish this in two phases:
A- install access points without controller handling authentication thru Microsoft IAS servers (current configuration with 1200 series)
B- Deploy wireless Controller in Data center and start migrating orphan AP to Controllers one office at a time.
View 7 Replies
View Related
Oct 12, 2012
I know that the deployment guide for 2600/3600 access points states that if you have surveyed for a 3600 deployment, you don't need to survey again for a 2600 deployment. As the the 3600 is the higher specification model, is it safe to assume the reverse? I.e. a site survey carried out using 2600 access points is valid for a 3600 deployment, or is this too simplistic?
View 5 Replies
View Related
Oct 23, 2012
I noticed that the 3600 access point series will get an add-on module to support 802.11ac. This standard will support more than 1 GBit/s.But the 3600 series still do only have got one GBit port. Any extended information about 802.11ac in the upcoming Cisco portfolio?
View 8 Replies
View Related
Mar 12, 2013
We are planning to upgrade our current wireless access points (1200 series) to 3600 series. We would also like to add a wireless access controller to the design to centrally managed those Access Points.
Which Cisco Controller model support those 3600 APs efficiently?
View 4 Replies
View Related
Mar 6, 2012
Can Controller 4400 series work with Aironet 3600 series?
View 5 Replies
View Related
Oct 7, 2011
I am recently engaged by a client to convert his network to wireless network. My client operates in an office with 8 floors and also concrete walls. On making my research i came about your product Cisco AP500 Series Wireless Access Points.I will like to know if this product can work for my client perfectly or I will need to get other enhancement to make it work at its optimum.
View 2 Replies
View Related
Jul 14, 2011
I have a customer who bought Cisco Aironet 3500 Series. Currently 4404 WISM Controllers are installed with 1142 Access-Points. The WLC-Version is 6.0.199.
Will the 3500 Series Access-Points work? (Of course without the spectrum intelligence feature)?
The Q&A says the following: Are there any concerns with supporting the new Cisco Aironet 3500 Series Access Points with the older Cisco 2000, 2100, 4100, or 4400 Series Wireless LAN Controllers?
View 2 Replies
View Related
Sep 25, 2012
I have some Cisco Aironet 1100-series, 1040 series, 1240 series, 1130 series and 1200series and i would like to upgrade them to the newest ios software.
The IOS that are present in my access points are 12.3(8)AJ and 12.3(11)JX.
View 2 Replies
View Related
May 7, 2013
We are having a hard time to console into to the APs using the serial connection (USB to serial converter).We have tried the recommended settings (9600, 8 bits, no parity, 1 stop bit, no flow control (also tried XON/XOFF)) without any success.We are able to connect to 3560 series switches and 5508 WLCs using the same cables, notebook and application (putty, hyperterminal & secureCRT).
View 4 Replies
View Related
Mar 4, 2013
If the 2600 series access points are compatible with a 4404 controller running 7.0.235.3 code? I was looking for a compatibilty matrix for the AP to controller to code comparison but couldn't find one.
View 1 Replies
View Related
Jun 19, 2012
I'm working designing a switch system for our core/data center.
We have 5 esx hosts, 2 sans with 3 nodes each. We have voice servers, a couple of routers and a few odds and ends. There are 7 other locations aggregating into this data center via 1-2gbps fiber connections. The bandwidth usage on these links is minimal, but there is a total of about 3000 devices aggregating into the system. My main concern right now is the 3560G's are seeing many output drops, due to the small buffer size on those switches. I have been looking at couple of options to resolve this issue, including the 4948E, 4507E, and 3750X switches.
Budget being the biggest factor, I am finding that the 4507 might be out of the price range. So I was leaning towards the 4948E switches for connecting the servers and iscsi san's as the 3750X is not recommended for iscsi. Redundancy is important so I would like to have two. The second concern is that I need to aggregate the fiber connections and for that I was looking at the ME-3600X or possibly the WS-C3750X-12S-E. I'm running eigrp, so this switch would need to have full routing, as it would also serve as the core switch for the 4948E's.
So in the end I was thinking that two 4948E switches up linked to the ME-3600X which would do full routing for the fiber aggregation and any routing needed for the servers and sans.
Servers and Sans_________4948E________ME-3600X_________7 fiber connections
|____________4948E_____________|
I would look at a second ME-3600X in the future for redundancy. This is the lowest cost biggest buffer solution that I could find.
View 2 Replies
View Related
Jul 22, 2012
I have an AP group on a Cisco 5508 WLAN controller. Currently, it is populated with 13 Cisco 1142 lightweight access points. When I try to add a Cisco 3602i access point to the group, I get the following error in NCS: Error: OfficeExtend requires primary, secondary, or tertiary controller management IP to be set.I am using DNS to allow my AP's to find the controller and they work just fine. Is there a reason I can't add the 3600 series AP's to the AP group?
View 13 Replies
View Related
Mar 26, 2013
I have a 5508 controller with a bunch of 3600 Series APs. I did all the basic config on the controller and added all the APs through distribution port #1. Now I was trying to config a second interface ( port #2) and use it for the Guest SSID on a separate VLAN. After I rebooted the controller, it dumped all the APs. I would like to know if this is normal, If I need to enroll the APs everytime I reboot the controller.
View 1 Replies
View Related
Jun 3, 2012
I've got a client who purchased numerous 3600 series AP's (3602i to be exact) and would like to add them into their WLAN 4404 controller. They're currently on 5.x system code so I plan on getting them upgraded to the latest 7 code.
They currently have a number of AP's adding and working fine. Once the WLAN controller is upgraded, does anything specific need to be done within the WLAN gui to add in these new 3600 series AP's?
View 3 Replies
View Related
May 9, 2013
We have;
3 - 5508WLC
1 - 4402 WLC
Cisco Prime 1.3
25 - 3502i
We have 25 remote sites that use MPLS back to the company HQ that has one connection to the internet.Also at the HQ we have a seperate ISP connection.The remote sites and HQ have AP's which provide internal company access. We would like to have a seperate Guest WLAN at these remote sites to provide access to the ISP connection at the HQ's. Do we need to have an anchor controller? From documentation I have been reading it looks like anchor controllers are mostly used for networks that have a single connection to the internet and they use the FW to control/ secure the guest and company network from each other. Is there a differnt way of seperating the guest wireless and company wireless network securely from each other but use the same WLC's and AP's??
View 6 Replies
View Related
Aug 18, 2011
Is it possible to allow certain websites to bypass the web authentication pages, so that they do not need to authenticate to get to our own website, but do have to if they wish to go anywhere else?Looking at a 5508 model at the moment
View 4 Replies
View Related
Jun 14, 2011
Does AIR-CT2504-25-K9 spupports AIR-LAP1262N-E-K9 Access Point? How can I check this?
View 1 Replies
View Related
Nov 24, 2011
I am trying to find an effective way to extend the wireless signal across our home. I have tried various different solutions. Currently, I have an e4200 primary router that is cascaded with two additional e1500 routers that have been configured as access points. The Linksys support team hosted my computer and configured the devices. The e1500 routers are connected via ethernet wires running through the walls. And, this seems to be working well. Here's my question. The e1500 routers are configured with different SSID names, which Linksys advised was required to avoid conflicts in communications from the three router devices. Is there any way to configure this set up or something similar so that the entire wireless network has the same SSID and is seamless. In the current configuration, I have to specifically connect to the primary router or one of the two access points.
View 3 Replies
View Related
Mar 7, 2011
Is there any documents that I can use to design an IPSEC remote access solution using 2 data centers . One data center is primary and other one is secondary. The VPN is terminated in ASA 5520. End users using cisco client.
View 6 Replies
View Related
Nov 27, 2012
We have a small office and already have a firewall in place that uses content filtering. I am looking for a low cost wireless access point that I can place behind my firewall that will allow me to control access by a username and password list, not just the passkey.
Does this exist without having to go to an Aruba or Ruckus type enterprise WIFI product?
View 1 Replies
View Related
Dec 13, 2012
Here is my setup:
Netgear WNDR3700 - Main router, DHCP turned on
4x Netgear WNR2000 - Setup as Access Points (DHCP turned off), connected to main router via LAN ports
I only want the guest network to have internet access. I have the guest network enabled on the router and access points with the option to "Allow Guest network to access main network" disabled. My problem is that since the access points aren't hooked directly to my modem via the WAN port, the guest network broadcasted from the access points does not have internet access.I have read up on setting up a separate subnet for the guest network using DD-WRT but was curious if there was a way to get the desired result with the stock Netgear firmware.
View 9 Replies
View Related
May 22, 2013
We are looking to setup a guest WLAN, and I have a dedicated port connected to our backup cable modem. On our old 4400 WLC I had specific ports assigned to interfaces. We upgraded to a 5508, and for the life of me I cannot figure out where to do this. On the 5508, under interfaces, there is no option to list a port under Physical Information. Our 5508 is running 7.2.111.3 software.
View 2 Replies
View Related
Aug 13, 2011
I am proposing Remote access VPN solution to my client as per the attached diagram. However they are required IPS solution as well.
So in this case i dont think i can implement the IPS with outside interface in inline mode because of the encrypted traffic. Is it feasible if i enable IPS with inside interfce ?
View 1 Replies
View Related
Jun 23, 2011
How many WLCs 5508 can you add to the mobility group?
View 1 Replies
View Related
Mar 28, 2013
I recently installed a couple of Cisco Aironet 3600 Series Wireless Access Points at a remote site. While I was at the site everything seemed OK, The clients were able to get connected to the access points, the guest network worked fine, I could SSH into the access points, and I could ping them. The problem is when I went back to my home site I tried to SSH into the access points through an ASA IPSec VPN Tunnel and it couldn’t find it. When I try to ping the access points they “time out”. I can ping and connect all other addresses (via RDP, HTTP, etc..) on the same subnet which should rule out an access list problem. A couple of notes to be aware of:
The WAP’s have the Autonomous IOS installed (Version 15.2(2)JB) The WAP’s are connected to Dell PowerConnect 5724 (Not by choice.. We are a Cisco shop, these were already there and have plans this year to replace)
I can ping and SSH with Putty to the WAP’s from the local subnet I cannot ping or SSH from a remote subnet to the WAP’s. I can access all other IP’s and Computers from a remote subnet.
View 12 Replies
View Related
Sep 10, 2012
We are currently designing a complete Layer 3 to the edge solution for our customers. The network design is a combination of a collapsed core (Core to access) as well as a three layer model (Core/Distro/Access) for connectivity to the Data Centre, Internet and Wireless Blocks.
The core of the network contains two 6509E switches interconnected on a Layer 3 Port channel (no VSS). Access Layer switches (3750 Stacks) connect to the core switches over p2p routed links (Collapsed core part of the design). Distribution layer switches provide connectivity to the Data centre, Internet and Wireless Blocks.(three layer model.
All IP addressing is being planned for assignment from the private RFC 1918 address block(10.0.0.0/8) for both Infrastructure and Access layer VLANs for users.
Clarifications required for the following:
[code]...
View 17 Replies
View Related
Jun 17, 2012
One of our customers wants to update the firmware of a 5508 wlc, but always gets the following error message: Error Message %UPDATE-3-INV_FILE_SIGN: Error! Invalid image signature!. Image may be corrupt.but the same image works fine on another 5508. The update was downloaded via a smartnet for the wlc, on which the update works fine. does the customer has to download another image for the second controller, or should the image work on both wlc?
View 1 Replies
View Related
Mar 15, 2011
I am looking being able to control one computer at 6 stations. Each station will contain a keyboard, monitor, and mouse.They do not all need to be able to control or access the computer all at once. I would use a reverse kvm switch but I am looking at distances of 200-500ft between the stations/cpu.My last resort was to buy some cheap dells or build some low end computers and set up remote desktop but we would really like just having the keyboard, mouse and monitor.
View 10 Replies
View Related
Jan 7, 2013
Currently the guest wireless users are maintained by WCS 7.0.172.0. I'm having a project to set up another 5508WLC in one location to replace the WLC in use in different location. My concern is regarding the guest user accounts. Can I use the feature of "Save Guest Accounts on Device" in WCS to save all the guest accounts on another WLC? I tried this feature and I got the message of "Successfully saved Guest users to the following respective controller(s) where they were applied". I don't know if it is because there is currently only one WLC in the WCS or the account can only be saved on the original controller where it was created.
View 1 Replies
View Related
Feb 21, 2013
I have some network devices that are connected to a 110v power source that goes through a 110v/5v power converter.The Access points keep going back to factory default settings and losing their configuration. I have the same access points installed in the same situation but on a different site that work fine.have changed both the configuration and firmware to be be identical to the working Access Points and still the others default.They do not do this at a specific time of day and out of the 6, they do this at random and not at the same time. Sometimes they will go 24 hours + without defaulting, sometimes they'll go just 4 hours.
View 2 Replies
View Related
Dec 5, 2012
I would like to know how to delete a connection from my network. When I connect to the Wii it automatically chooses the right connection. What I have noticed though is that there is a third connection for a printer that is not secured and I have no idea why it is there or has an option to connect to the internet.
View 4 Replies
View Related
