Cisco :: Dual SSID (with Dual VLAN) On AiroNet 1130?
Dec 17, 2012
how to change our wireless setup. Currently, we have 2 Cisco AiroNet 1130 WAP's in the office that go directly into the 2 POE ports on our Cisco ASA 5500. These WAP's have 1 SSID and are using WEP for security. After demonstrating the flaws of WEP to my boss, he has agreed that we should use something more secure and I've suggested WPA. We want visitors to our office to be able to hop on our wireless but on a separate guest SSID with WEP.
I'd like the internal SSID to route to the ASA and take the default route to the internet (it will be our new fiber connection once it's installed in a couple weeks). The default route is whichever connection is working since our ASA 5500 will fail over when it detects an outage.
I'd like the guest SSID to route to the ASA and then go over our existing cable connection. This connection will be our backup once the fiber connection is installed. Since we won't be using it very often, but will be paying for it, I advised that we send all guest wireless traffic over this connection since 50/5 is plenty for guests.
The current SSID (which will be the internal SSID) has no VLAN. We do currently have a few VLANS on our network, one for voice (.42) and one for data (.100) and the default (.0). What device to I create the VLAN on (Cisco 5500?) and how to I setup the WAP? I need very basic instructions to start and I'm also trying to do this without causing downtime if possible.
I've attached a diagram of what it should look like. Red indicates our internal network and Blue indicates the guest network. I can send screenshots as well.
View 2 Replies
ADVERTISEMENT
Dec 14, 2011
We have a Cisco Aironet 1130AG Wireless AP (firmware 12.4) and have a guest wireless network (internet only) and corporate wireless network configured on it. They are kept separate by having different VLANs assigned to them. When a laptop connects to the guest network I see the DHCP request go out and it is tagged with the correct VLAN. The problem is when a laptop connects to the corporate network I see the DHCP request go out but there is no VLAN tagged on the packets. This causes a problem because both of our DHCP servers (on VLAN 1 and 3, remote DHCP servers no DHCP running on the Aironet [Doesn't seem like this version has a DHCP server]) are sending responses and sometimes the corporate user will get an IP address on the Guest subnet.
Our corporate network is setup on VLAN 1 which is configured as the Native VLAN on the Aironet. Will this cause the Aironet not to tag these packets with any VLAN information? Any other thoughts as to why it isn’t tagging these packets to a VLAN?
View 3 Replies
View Related
Dec 26, 2012
we have several AP1040 in the office, but the latter is a Dual Band 2.4 GHz and 5 GHz. And we have problems with all workstations MAC OS X gets a lot of disconnections during the day, the strangest thing is that the OS X community is aware of the problem, and their only recommendation is to buy the external Aironport has better hardware.
View 3 Replies
View Related
Feb 19, 2012
I would like to make a design with 4 Nexus 5596UP. 2 of them equipped with Layer 3 Expansion Module so they can serve as core layer and the other 2 Nexus used as Layer 2 for aggregation server layer.The 2 Nexus in the core layer will run HSRP and will peer with ISP via BGP for Internet connection The 2 Nexus in the aggregation layer will be configured as layer 2 device and have FEX and switches connected to them.What I am ensure of is how the vpc and port-channel configuration should look like between the 4 nexus. What I was thinking is to run vpc between the 2 Nexus in the aggregation layer and between the 2 Nexus in the core layer. Than I was thinking of connecting each Nexus in the aggragtion layer to both Nexus in the core layer using port-channel and vice-versa.
View 3 Replies
View Related
Mar 29, 2012
I wanted to ask a question about the diagram I have included. We are bringing up 2 MPLS WAN connections and would like some specifics on the best design. We are using BGP to the providers. From there we have big questions. We can run BGP internal and are licensed to do so on the N5K's. The N5Ks are currently using HSRP for inside LAN clients as default gateway. We want to load balance and provide redundant routes using a dynamic approach. Should we use BGP internal utilizing the connections between the routers? Should we use HSRP on the routers? How best to get the routes to the N5K and should we be considering this?
View 5 Replies
View Related
May 9, 2012
I have a cisco 877 configured foir lan to lan between sites A and B. I have used vlan 1 but looks like i have to bvi1 if i need to use the wireless,what is the difference between bvi and vlan. if i wanted users on the same vlan and wireless what would be the base config ? at the moment all corporate traffic goes to site A and other traffic goes to internet. now would i be able to create two ssid, one for corporate to access corporate subnets and the other for guest access alone where the traffic goes out to the internet.
View 1 Replies
View Related
Feb 21, 2013
I run 2 RV042 V1 for home and office with Gateway to Gateway VPN connection with single WAN connection in use. Everything works like a charm!
I was even able to create VPN connection with 2 WAN connection on one Router and 1 WAN connection on another with Smart link failover and VPN Tunel Backup.
I got problem though when i tried more complex connection diagram. [URL]
So basically I now have 2 ISP connections on each point with Static IPs and I'd like VPN Connection to be alive for ALL 4 options automatically with failovers (smart links) And tunel backups but i'm not sure if that's ever possible with my equipment.
View 2 Replies
View Related
Aug 20, 2011
I changed the 5 GHZ SSID name using Cisco connect on my E3200 router as was expecting to see 2 available wireless networks on my laptop, but it seems that only the 2.4 GHZ is still broadcasting as it was before. When I connect to it with my laptop it shows it connecting with 802.11n, so I would think that my laptop would see the 5 GHz SSID if it was broadcasting. I am trying to take advantage of the dual band feature and connect the 5 GHZ to my blue ray player for real time video streaming.
View 9 Replies
View Related
Jul 21, 2011
I need to configure SNMP on our company Aironet 1130. I am told there is a tool we can use that will allow us do the configuration from a PC vs connecting directly to the device.. If that is true, where can I download it?
View 5 Replies
View Related
Aug 13, 2012
I have the problem that the AP1130 can not join to WLC2504.
Console Messages of AP1130:
*Aug 14 09:34:54.029: %CAPWAP-3-ERRORLOG: Go join a capwap controller
*Aug 14 09:34:54.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 192.168.x.251 peer_port: 5246
[Code].....
View 10 Replies
View Related
Feb 17, 2013
i' ve got 2 cisco 1130 AG AP's , i want both of them to broadcast 2 ssid's per AP, i've done so far but my clients cannot get a ip adress from the dhcp server.
View 19 Replies
View Related
Jun 12, 2011
I have CISCO Aironet access point C1130 , but not able to connect by users, I can see below logs from access point.
Jun 13 17:50:10.686: RADIUS: no sg in radius-timers: ctx 0x10653F8 sg 0x0000
Jun 13 17:50:10.686: RADIUS: Retransmit to (20.33.100.11:1645,1646) for id 1645/247
Jun 13 17:50:15.678: RADIUS: no sg in radius-timers: ctx 0x10653F8 sg 0x0000
Jun 13 17:50:15.678: RADIUS: Retransmit to (20.33.100.11:1645,1646) for id 1645/247
[Code] .....
View 0 Replies
View Related
Sep 14, 2011
I just received a Cisco Aironet 1130 AG wi-fi router to configure and when I entered the router through console, I am not able to get into config mode. It says:
AP588d.09a7.93e4#conf t
^
% Invalid input detected at '^' marker.
Also,
AP588d.09a7.93e4#sh start
startup-config is not present
Also, this is what I see in my flash:
AP588d.09a7.93e4#sh flash:
Directory of flash:/
3 -rwx 217 Mar 01 2002 00:07:10 +00:00 env_vars
4 drwx 128 Jan 01 1970 00:02:03 +00:00 c1130-rcvk9w8-mx.bin
I need to configure this device and set up for wi-fi access in my organisation network.
View 2 Replies
View Related
Feb 26, 2013
Region : Malaysia
Model : TL-WDR4300
Hardware Version : V1
Firmware Version :
ISP : Maxis
I bought the TL-WDR4300 almost 6 months ago using it on my TM Streamyx broadband service, it worked perfectly and this is indeed a very good product very reasonably priced too Kudos to TP-Link. The thing is shortly after purchasing it, I moved to Maxis Home Fibre Internet (more bandwidth). Following the ISP change the router has since went back into the box and had been there for 5 months now. This is because without the VLAN tagging feature or a Maxis mode, it is currently incompatible with Maxis Home Fibre Internet and will stay that way.I understand this is by no mean TP-Link's fault but I and many other WDR4300 owners on Maxis, if TP-Link could look into ENABLING VLAN TAGGING FEATURE/MAXIS MODE on this device. This I am sure would work with TP-Link sales as there are not many routers out there with this feature set and price range that could work with Maxis Home Fibre Internet.
View 1 Replies
View Related
May 27, 2012
I find much document, but not found information about whether those support for IPv6 e.g. dual-stack like newer series.
View 3 Replies
View Related
Sep 14, 2011
I just received a Cisco Aironet 1130 AG wi-fi router to configure and when I entered the router through console, I am not able to get into config mode. It says:
[code]....
View 9 Replies
View Related
Jul 13, 2012
My wireless users are loosing the internet(http and https) connection many times per day. I just check the ports configuration in the switch, but The problem persist. The device is a Cisco Aironet 1130 AG.
View 4 Replies
View Related
Sep 27, 2011
We have an aironet 1130ag in a remote office connected to the data centre over MPLS. The Radius server is based on server 2003.We have hundreds of these points set up exactly the same but this is the only one giving me issues, I even stripped the config and rebuilt it and then swapped with a new access point
The issue is that clients can't authenticate when connecting to the access point but provides nothing in event viewer. Checking the RADIUs server provides nothing either.The access point error logs just state station: authentication failed
On looking deeper into the problem I enabled RADIUS debugging on the access point and got some interesting results, in particular is the line:
no sg in radius-timers: ctx 0x12EF0A4 sg 0x0000.I can't find out what no SG in Radius-timers actually means, but after that line appears I just see more retransmits and no sg fails.
I inspected the packets on the RADIUs server and found lots access requests coming from my access point and lots of access-challenges returning back from my RADIUS server - I'm not sure how often that's supposed to happen or if it's a one time occurance. I did however see directly after the first access-request that the RADIUS server returns with UDP and is fragmented, length is 1514...... could this be the problem? If so why cannot it hanlde fragmented packets?
View 2 Replies
View Related
Jun 26, 2011
I have some 1130AG access point and I'd like to have :
- Multiple broadcasted SSIDs (because most of my clients are OSX and OSX doesn't deal with hidden SSID at all ! the clients have to enter the data each time which for WPA2 enterprise is really annoying)
- Dynamic VLAN assignement (so my clients don't have to know to which VLAN they belong and so I can easily change them from one to another).
As it turns out, it's apparently not supported to have both. But I can't understand WHY ? What exactly is the relation between those features ? What's the underlying technical constraint ?
I can understand the cipher suite must match between all the dynamic vlan because of the way wlan works, but for this, I really don't see what the problem is ... (Especially since I only have one of the SSID that needs dynamic assignement, the other is really the 'guest' one).
View 4 Replies
View Related
May 12, 2012
I convert IOS Cisco AP 1130 LAP to 1130 Autonomous mode. Well, the periphericals - clients connect to SSID AP no recieved I.P Adress, I think that is not possible active option DHCP server in AP 1130 dispositive. In mode I.P static clients the connection is established successfully.
View 1 Replies
View Related
Jan 31, 2012
I have a "standart" settings of Cisco Aironet 1240AG with ENABLED broadcasting SSID, encryption is WPA2 (AES). I can see the wifi network (ssid) with windows system but with MAC OS 10.5 and MAC OS 10.7 also with iPhone the wifi is acting like hidden. But If I manually enter the wifi ssid and set the proper encryption the connection work normally. Also I have a separete windows partition on one MACbook and this windows 7 have no problem to see the SSID of my network. But If i Boot to the MAC OS the WIFI is "hidden" until the manually connection. (same problem on iphone, manuall connect with manually entered SSID is working well).
View 2 Replies
View Related
Mar 4, 2013
I am working on setting up a new WLAN infrastructure. I have set up different SSIDs connected to different VLANs, in the AP. I also want to use Windows NPS for authenticating users on the different SSIDs, with different authentication methods based on which SSID the user/device is connecting to. To do that, NPS needs to get the SSID, but the Aironet 1240 only sends its MAC address in the Called-Station-Id. I have read a bit about this, and found out that if I have a WLC, it will add the SSID to to the Called-Station-Id. But since we do not have a WLC, I am trying to get this to work anyway. Is it possible to modify the Called-Station-Id to include the SSID on an Aironet 1240? If not, is it possible to send the SSID as a separate attribute that can be read by the NPS?
View 10 Replies
View Related
Sep 19, 2011
I wonder if there is a way to rename an existing SSID on aironet 1142 without destroying/recreating. I tried downloading configuration/ changing name/ re-uploading however that didn't have desired effect. There doesn't seem to be a way via web-GUI.
View 3 Replies
View Related
Mar 28, 2013
We have three Access Points, two Cisco Aironet 1260 and one 1240AG. Originally, the SSID was hidden on all three AP's and users had to go to Other Networks and type in the SSID and password to access the WAN. About a few months ago, the network started broadcasting to the public. I am trying to make the SSID hidden again. I have tried going to the Security tab, choosing the SSID Manager and setting single guest mode to none but it has not worked.
View 4 Replies
View Related
Nov 18, 2012
I am using a Aironet 1100 series access point (AIR-AP1142N-N-K9) with IOS version c1140-k9w7-tar.124-21a.JA1. I want to create two seperate SSID's on the access point with WEP encryption. There is no VLAN configured and i want it to be like it. Also I need to broadcast both the SSID's at the same time, so the some of my users need to login with the first SSID and the others to login through the other.
View 2 Replies
View Related
Apr 22, 2013
I have configure my AP with to SSID (11 & 12), but I cannot connect to 12. It authenticates, and while trying to acquire IP address from 12, it fails and connects me to 11 (if I have already saved the SSID connection).
The following is my AP status:Product/Model Number:AIR-AP1231G-A-K9 System Software Filename:c1200-k9w7-tar.123-8.JEE System Software Version:12.3(8)JEE Bootloader Version:12.3(2)JA4
The SSID 12 already have 4 clients connected, And I am tring to connect a 5th one (smart phone), but cannot connect to 12, instead coneected to 11. Also tried with a laptop, but cant get the IP address, and give Limited Connectivity error.
View 3 Replies
View Related
Sep 28, 2012
I configured the device manually, not even using Express Setup or Express Security setup so... it is possible I missed something.Anyway, here's the problem. Although the SSID is configured as "AP1", this SSID does not appear among available networks on the client laptop.
The connection, configured in Group Policy for the client, should actually happen automatically, based on the SSID, but since the SSID is not being broadcast, that connection is failing as well.
The Aironet does appear among the available networks as "Other Network" and if I click on "connect" I am prompted to enter the SSID -> AP1
Although, unexplicably, an error message displays (Windows cannot connect to the network, or something to that effect), the laptop *does* connect once I close that window. Network access is complete and functional - I can ping other hosts, etc..
I'd post screenshots but not knowing what setting is missing or incorrect, I'd have to print dozens. So here's the sh run output of the AP obtained via telnet (just below). This is a test network so all information is "real" (nothing changed for privacy):
Note: I even changed the hostname to "AP1" (it's still LAB1 below) but that did not resolve the problem (did not think it would).
LAB1#sh runBuilding configuration...
Current configuration : 2321 bytes!version 12.4no service padservice timestamps debug datetime msecservice timestamps log datetime msecservice password-encryption!hostname LAB1!logging rate-limit console 9enable secret 5 $1$9EWD$kxrbg8KxikRFypOieKiZh/!aaa new-model!!
[Code]....
View 5 Replies
View Related
Jan 25, 2012
I'd like to change the SSID name on Aironet 1200 which is currenty used by my wireless network.
View 3 Replies
View Related
Dec 22, 2009
We have multiple Cisco Aironet 1131AG devices, all wired on one Cisco L2 switch(2560) who is connected to L3 switch (3550). We assigned one VLAN for access point in L3 switch who acts as vtp server (L2 switch is vtp client). All ap's will have static ip address and all will have same SSID and no security and they will be using multiple channels (ex. 1,6,11). They will operate in 3 floor building for roaming wireless client. We won't using any wireless controller.
How to configure APs-all the same with different ip's, can we use L3 switch to create dhcp server for access points VLAN (pool for clients, and the rest for static ip for ap's)?
View 2 Replies
View Related
Feb 2, 2011
i've been looking for a way to isolate clients on a Cisco Aironet 1121 on a certain SSID, and i cant find anything, tried pretty much everything i coudl remember, but since im no expert on Cisco wireless.
Quote:
Cisco IOS Software, C1100 Software (C1100-K9W7-M), Version 12.3(7)JA1, RELEASE SOFTWARE (fc1)
Technical Support: [URL]
Copyright (c) 1986-2005 by Cisco Systems, Inc.
[Code].....
View 3 Replies
View Related
Apr 3, 2012
Can I configure Multiple SSID (Guest/Corporative) on Cisco Aironet 3600i AP via Cisco 2504 Wireless controller?
View 1 Replies
View Related
Feb 20, 2013
Basically, he has an office he's supporting on a contract basis, they have a cable modem uplink. They move very large (100MB or so) EXCEL files to/from a server "somewhere out there"...The place has 19 users on cable modem (presumably commercial level). They're having "severe latency due to all the users". They're also using VOIP (not sure what product, shouldn't really matter)this doesn't pass the sniff test to me- I have 70+ users on 4 T1s and don't have the problems they claim to be having. Suspect they should be doing some packet sniffing to see who's camping on Youtube, but this is not an option....They're adding in a second cable modem line and want to bind both together. I immediately figured they should do QOS, dedicate the mission-critical traffic to 1 line and let it bleed over onto the other and take precedence if necessary. They have a Cisco 1811 router. I haven't messed with those before, but what I am seeing is they are a "fixed-configuration router". Obviously there has to be SOME config changeable- if for nothing other than IP assignment to interface and such. So what does Cisco mean by "fixed-config"? Is this basically a dumbed-down Linksys router?
View 19 Replies
View Related
Dec 13, 2012
i am trying to configure Dual NAT (source and destination) with multiple subnets in the source, i am trying to figure out how to accomplish this with 8.2 ASA ,
Original source
172.21.113.0/24
10.233.0.0/24
[Code].....
View 6 Replies
View Related
