Current environment is Cisco 2125 WLC managing ~12 3502E AP's for a single location. Client is looking to provide HA for the single 2125 WLC. With the 2125 now EO-Sale is it possible to go with one additional 2504 WLC and leverage the existing 2125 or would it require going with just (2) 2504's?
One of my customer wants to upgrade their Cisco ACS version from 4.0 to 5.3. The client has existing ACS version 4.0 windows on VM with two instance and need to upgrade to 5.3 Linux.As per my understanding following version are supporter to upgrade ACS to version 5.3 ACS 18.104.22.168ACS 4.1.4ACS 22.214.171.124ACS 4.2.1 but unfortunatlly there is running 4.0.I suggested to my client the upgradation for ACS and proposed this Upgrade lisence L-CSACS-53VMUP-K9 and CON-SAS-CSACS3V? how I can do the smooth deployment / Migration from 4.0 to 5.3 with (A/P)high availability.
I am upgrading the Wireless Infrastructure with two 5508 WLC.I am setting up High Availability, but I think is not quite working.
Primary Controller = WLC1 Secondary Controller = WLC2 LAP = LAP1 LAP1 has WLC2 as the primary controller for HA LAP1 has WLC1 as the secondary controller for HA
While connected to LAP1, I shutdown WLC2. After ~ 20 seconds, LAP1 move to WLC1.I lost connection from LAP1 Don't LAP1 should move with all its clients to WLC1?Am I missing something in my configuration?
I have to install and configure two 2901 routers at different location with high availability. These 2 routers would be connected through WAN, now I would like to configure high availability bwtween two routers.
I have attached a small diagram of the placement of 2 routers.
how do I configure high availability between these 2 links or routers.
I just want to know if i need to support High Availability in Cisco Secure ACS 5.1 appliance, will the base license suffice or do i need to buy Security Group Access System License/ Large deployment License. Again, do we require license for each appliance or just one is enough?
I Suppose the licensing rules are same for the Vmware version also.
One of my remote sites acquires Internet connectivity via a cable modem service. This goes down intermittently, of course. I would like to purchase DSL service from the local telco and configure the edge ASA (currently a 5505) to use the cable modem path normally ... and fall back to the DSL path if necessary.
These seems hard to do. The edge box would need to evaluate the viability of a WAN path using some set of tests ... perhaps pings to a handful of major Internet sites. If all those pings start failing, it would stall for a minute, to give the WAN service provider time to recover ... then cut over to the second path. Cutting to the second path might mean pushing new DNS server addresses to clients (or perhaps the edge box would hand out both sets of DNS servers all the time and rely on the clients to try them all.) Once the cable modem provider restored service, the edge box would stall for a while (ten minutes? an hour?) and then cut back.
I'm willing to replace the edge box with something fancier (a bigger ASA or something sold as a router or whatever), although I'd like to stay under 10K (list) for such a replacement.
I will install next week at a customers side a new Pair of 5508 Controller. They have at the moment one old 4404 with about 70 APs.So the bought the new 5508 with HA Pair.For the HA i will need 7.3 i read in the High Availability (AP SSO) Deployment Guide.There are now two 7.3 Versions, or i can choose the new 7.4 Version.
I am new to Cisco firewalls. We are moving from a different vendor to Cisco ASA 5520s.I have two ASA 5520s running ASA 8.2(5). I am managing them with ASDM 6.4(5).I am trying to setup Active/Standby using the High Availability Wizard. I have interfaces on each device setup with just an IP address and subnet mask. Primary is 10.1.70.1/24 and secondary is 10.1.70.2/24. The interfaces are connected to a switch and these interfaces are the only nodes on this switch. When I run the Wizard on the primary, configure for Active/Standby, enter the peer IP of 10.1.70.2 and I get an error message saying that the peer test failed, followed by an error saying ASDM is temporarily unable to connect to the firewall.
I have set up a zone-based policy firewall with HA on two 2911 routers as per the Cisco security configuration guide, for an active/passive LAN-LAN cluster. All works as expected, but there is one problem I find: when the control link between the two devices fails, they go into an active/active state as each member assumes it's the last surviving member. The ARP entries for the Virtual IPs on the neighboring devices point to the device that last claimed the active role (usually the standby device). This works in a way, just sessions don't get synched anymore (control link is the same as data link). Now when the link comes back up, the preemtion works and the active, former standby device goes back to standby. But the ARP entries on the neighboring devices still point to the standby device and nothing goes (also sessions established during the active/active state are lost due to resync with the now active member).
This is a single point of failure and what I need is a way to mitigate that. Under:
redundancy application redundancy group 1 control <interface> protocol 1
only one control interface is allowed. Other manufacturers with similar functionality provide for the possibilty of a backup control link, for example the internal LAN interface or a dedicated backup link.
How would I go about that? Maybe use a port-channel for the control/data link (but I'm out of interfaces)?
What consequences could i have if i install a WiSM-2 module into a pair of 6500 configured in VSS and another WiSM-2 module into other pair of 6500 configured in VSS for serving a 300 APs??...in this case, do i need to configure mobility groups for guarantee a high availability and also redundancy of controllers?Under the best practices, is much better having the two WiSM-2 modules into a single pair of 6500 configured in VSS??
We have two 4400 WLC's. We have around 20 access points in our network.If we assign controller1 as primary for half of the access points and controller 2 as primary for the other half, does this mean the association of the ap's indicate load balancing by the controllers. Does this mean wlc does load balancing as different ap's associate on different controllers. or does it only server as active-standby wlc.
I'm having problem joining a AP802 access-point in a Cisco 887VAM-W router to a WLC2125 running 126.96.36.199. I get the following messages pasted below from the AP console. The AP connects to the WLC over a EZVpn tunnel with a ASA on the other end, and can't see any error messages there. [code]
I am quite new to WCS and preparing a demo for a client. I am also using WLC2125 with LAP1252s for this setup. Is it possible to modify the shape of the heatmaps of the APs? I know how to regulate TX power of the radios and all works great but how can I controll RF leakage outside the perimiter of the building? Is it possible to controll the RF so that it will not be going outside and same time giving a good coverage inside?
We have cisco wlc 2125 with 13 AP 1131g. All works good. But after power failure one AP can not join to controller, only reset work to recover connection AP to WLC. Additionally, we don't have access to rs-232 port on AP. In this moment on WLC we can see DISCOVERY request from AP and response from WLC to AP, but AP don't send JOIN to controller.
I have a Cisco 2125 Wireless Lan Controller and I have problem with hold coverage errors and I had tri different solutions with different antenna, the resume is:The antena gain 10*0,5 Dbi(Using a 5 Dbi antenna or 10 Dbi antenna) with Tx power 1 and the antenna gain 20*0,5 Dbi (using 10Dbi antenna) with Tx power 3 the coverage is the same.
If I try the configuration 20*0,5 gain antenna and Tx power 1 the controller show me one error and the controller don't permit this configuration. Why don't permit this configuration?
I have WLC 2125 on version 188.8.131.52 and AP's on version 12.4(21a)JA.I also have a load more AP's (newones) 1041's with IOS version 15.2.
So i have to upgrade my WLC because the newones are not compatable with the old WLC version.What will happen to the old AP's ?I was told they will automatically update the IOS version.These AP's (oldones) are not on site, they are in a differnet LAN.
I have this issue regarding the 1131 Access Points. These access points were fat access points from the factory and were applied with LAP ios so that they can join our controller. We have 2 controllers 5108 for Internal network office use and a seperate 2125 for Guest internet both these are physically seperate networks. These AP's have been working fine since say like 8-9 months and suddenly they started giving problems. The status light keeps changing colour and the AP does not join the controller 2125. Whenever i am connecting this ap to our internal network it joins the controller 5508 and works fine but somehow does not register with our 2125 guest controller. This issue is being faced by one of our client. Could this be an issue due to the ap being loaded with lap ios or does it have anything to do with the different software version fo the controllers as i could not find any things regarding this.
I have cisco wlc 2125 and external web autherthation was configured on it. When user disable the java script in browser cisco wlc do not redirect on my external page instead of wlc show page http://184.108.40.206/login.html with cisco logo. How can i resolve this problem? How to configure wlc redirect to external web auth site with disabled java in users browser?
Today I've received reports of slow internet access/activity and have noticed myself that it seems a bit slow today. On the dashboard of our asa 5510 the "outside interface" traffic usage is running constantly high. It's at the top of the graph. How can I tell what is causing the spike in utilization. It usually runs at about 1500-2000 Kbps, and now it's up over 10,000.
I have more than 20 Cisco switches in my office which is basically a soap manufacturing factory. The switches include Cisco 2950, 2960, 3560, 3750 etc. We have routers also which include 2821, 2951 etc. We also have Cisco WLC 2125 and LAP 1262 series. Sometimes all these devices management comes very tough to us.
We need to log on to different devices for troubleshooting/network management which sometimes becomes very tough to us. So I wonder if there any Cisco applications or tools by which we can centrally manage all these devices.
We installed a solution with 2 Cisco 2801, BGP multihomed failover.
1) The router which is currently getting all the traffic gets to 55% to 60% of CPU usage when handling 40 SIP/RTP streams . This equals 10Mbit up/10Mbit down and it showed around 5800 packets TX and around 5800 packets RX, with a majority of them CEF switched. As those figures are way less than the performance figures published by Cisco, we wonder if we made any mistake in setting up our router, or if we can do something to improve the router setup.
2) Does it have an impact on router performance if we increase/decrease RTP packet size, thus increasing or decreasing the pps relative to the consumed bandwidth?
3) If it is not possible to improve router configuration, we also wonder about possible replacement units for those routers. Would a 2901 do a good job? By how much would it rise the capacity? What other models would you recommend if we plan to rise the number of concurrent calls by a factor of 4 or even 8 times of what we have now (so up to 48000 pps and 80Mbit).
Here is what we tried:
- ip route-cache same-interface does not seem to improve anything
- ip flow ingress on or off makes no difference
- disabling the inbound ACL on fa0/0 seems to reduce load by 10%, although I don't understand why - a very high percentage is CPU interrupts, and ACLs are process switched, or not?
- we tried following the Cisco guide for high CPU due to high interrupts, with no success
Here are some usage statistics:
The graphs that we plot via SNMP show a propotional growth/increase of CPU and bandwidth (and thus pps) At the highest loads, we had a bit more than 55% CPU utilization with more than 50% interrupt CPU.
CPU utilization for five seconds: 36%/30%; one minute: 30%; five minutes: 30% PID Runtime(ms) Invoked uSecs 5Sec 1Min 5Min TTY Process 127 13140 954 13773 2.00% 0.29% 0.07% 194 SSH Process
what fields of IT increase internet availability. I have lived in South Korea for the last six months. I can't say how much better life is because there seems to be universal high-speed internet access, even at 24/7 fast food places like Dunkin' Donuts, McDonalds, etc.).
My father purchase an Inspiron 17R (he knows nothing about computers and I'm just a low level user). He has wireless internet thru Comcast and there was never a problem.He downloaded some scam program, and I reformatted the hard drive. Used the recovery disk, windows installed and remained connected thru the whole reformat process.This recovery disk was the operating system only- no other recovery disk was included.After the reformat, the computer now has no wireless capability. After checking the forums I went to the service center, entered the service tag, and downloaded/installed every driver in the "chipset" and "network" categories. (Downloaded to a different computer and transferred with CD)Still no wireless. When I click on the "bars" in the lower right corner, it doesn't even give me an option for wireless networks (which it used to- now it only says "dial up and VPN")I went to the device manager, the "Wireless LAN mini card" is ok, but there are 4 things underneath showing the yellow exclamation point of death:
ETHERNET CONTROLER PCI SIMPLE COMMUNICATIONS CENTER SM BUS CONTROLLER UNIVERSAL SERIAL BUS
we plan to implement VSS on our datacenters (C6509/Sup720), in order to remove L2 loops (currently, access layer are C3750 stacks, which could evoluate for N5K/N2K). I would like to have some feedbacks about VSS stability. Some years ago, I have seen some bugs with this technology in another company, so I am still not totally comfortable to use it in the datacenter.