Cisco Wireless :: 3502i - Max Number Of WLANs / SSIDs Configured On H-REAP AP
Sep 7, 2011
What is the maximum number of WLANs/SSIDs that can be configured on a H-REAP access point? I have a network with 3502i AP's, centralised WLC's in the data centre running 7.0.116.0, and WCS version 7.0.172.0.
I was successfully running 2 SSID's at a remote site, one SSID was configured for H-REAP local switching, dropping out to the local site VLAN X, and the other SSID was a central switching guest WLAN anchored to a WLC in a DMZ.I configured a third SSID at the local site running H-REAP local switching, and now I cannot see the guest SSID anymore, it does not appear to be broadcasting.Is there a maximum of 2 WLANs/SSIDs when operating in H-REAP mode?
View 5 Replies
ADVERTISEMENT
Dec 11, 2011
We have a Cisco 2505 WLC which can support 5 Ap's based on license. Is there any limitation on the no. of ssid's that can be configured on a wlc, how to determine that detail.
View 5 Replies
View Related
May 20, 2012
I have a question regarding to the maximmum number of active SSID's on a WLC 5500 with 3500i, it's my understanding that the 3500i can support 16 active SSID's is it the same when connected to the WLC? Also, if possible would the WLC shutdown un-used Radios or maybe after hours?
View 1 Replies
View Related
Mar 1, 2012
I look after 5 sites in total.All sites are connected together via MPLS. Two of the sites, HQ1 and HQ2 are also connected together via 1Gb Metro so traffic is just switched between the 2 networks.EIGRP is fed into BGP to pass the routes between the sites with all sites in the same EIGRP AS.
All sites are configured with the same AS number (55555) and connect into the same service provider network so each site is connecting to a neighbor in the same AS (444).
I want all incoming traffic from the 3 sites to come in through HQ1 always. Can I influence the service provider's network to make sure this happens? Is this done via "set local-preference 20" on my side or do I have to get the service provider to make changes on their side too.
View 16 Replies
View Related
Mar 2, 2013
Is there is is any posibility to run WLC4402 and 104x family in H-REAP mode.
View 8 Replies
View Related
Sep 4, 2012
I'm running 3 WLC 5508, 2 of them running image AIR-CT5500-K9-7-0-116-0.aes, one AIR-CT5500-LDPE-K9-7-0-116-0.aes.
On the 5508 running the LDPE-image, I have 9 WLANs (170,171,180,181,190,191,281,282,283), all defined with admin status "ENABLED".
WLANs 180,181,281 belong to a defined AP-group, WLAN 190,191,282 belong to a different AP-group.
WLANs 180,181,190,191 are defined as H-REAP. The H-REAP APs registers without any problems at the backup WLC and switches back successfully to the primary controller after recovering from reboot. Unfortunately the WLANs 180,181,190,191 show status "DISABLED" every time the primary controller comes back and I have to enable them manually.
Doing exactly the same procedure with one of the other WLC, running AIR-CT5500-K9-7-0-116-0, I never face this problem.
View 5 Replies
View Related
Sep 3, 2012
I didn't design the job, but is pretty straight forward, except the following, the design has a single wlc 5508 with 2 physical connection between two non cisco switches. There are 2 initial WLANs to be created. I am ok with most of the wlc config execpt the following:
Now from my understanding of everything I have read recently, you can't use LAG on the 2 physical connections if they connect to 2 seperate switches, unless, although not offically supported, the 2 connections are on either 2 3750s in the same stack or a pair of 6500s running VSS. So I believe that in my case 2 seperate connections from the wlc to 2 non cisco switches will not work with LAG. Is my understanding of this correct?
Is there a way to maintain the 2 physical connections from the wlc to the 2 non cisco switches to maintain redundancy?The wlc will have a management interface obviously, but from what I have read, the 2 WLANs that are going to be created have to have their own interface on the WLC. Which I understand as the managment int and each of the 2 WLANs are on different subnets.
If I don't use a single uplink to one of the non cisco switches (either 1 or 2 physical connections) using LAG, it appears to me that each of the interfaces ( management, wlan1 and wlan2) need to have a physical connection from the WLC to the switch, with each interface mapped to a physical port on the WLC, so correct me please if I am wrong, but this would mean I need 3 physical connections between the wlc and the swtich?
View 3 Replies
View Related
Oct 11, 2011
I'm reading up on H-REAP in the Deploying and troubleshooting Cisco Wireless LAN Controllers book (Chapter 13) and I would like some clarification on the except below.:"Also notice that, as part of the WLAN configuration, no mention was made of choosing and interface for the WLAN. Unless you will have APs in local mode servicing a WLAN configured for local switching in conjunction with H-REAP APs, the controller interface is irrelevant because the controller will not bridge the client traffic on the network.The H-REAP performs that function. Even if you will not be using any local mode APs, you must choose an interface to be associated with your WLAN. In this case, you could use the management interface or create a quarantine VLAN interface, for example if you do not want client traffic to be bridged by the controller if the client traffic is no longer locally switched."Our corporate office has 2 5508 controllers and 150+ APs in local mode. I'm preparing to deploy a couple of H-REAP APs to a remote site to test. Is this saying you have to choose an interface when creating a WLAN, but if the WLAN will only be used by H-REAP APs w/ local switching it does not matter which interface is used when creating the WLAN. If there are APs in local mode using the same WLAN, the interface the WLAN associates with needs to be on the same subnet as the devices connecting the the WLAN?
View 3 Replies
View Related
Feb 29, 2012
Im configuring a WLC 5508 ( version 7 ) with h-reap local switching.All is working , yet i wonder if the vlan mapping can be done better.Currently i need to go into each Lightweight Access point , enable h-reap, then set the native vlan , with the final step to map the vlan. This needs to be done for each AP. In an environment of 100's of APs i would take forever. ( i thought one of the main points of the WLC is centralized management).
View 1 Replies
View Related
Jan 11, 2012
Just trying to figure out how LAP manage clients in a h-reap setup.Have a setup with native vlan on 144 (switch and AP) and ssid tagging in other vlan... Got this on switch:
Jan 12 10:31:43.121: %PORT_SECURITY-2-PSECURE_VIOLATION: Security violation occurred, caused by MAC address 0811.9695.9b04 on port FastEthernet0/42.
Jan 12 10:31:43.121: %PORT_SECURITY-2-PSECURE_VIOLATION_VLAN: Security violation on port FastEthernet0/42 due to MAC address 0811.9695.9b04 on VLAN 144
Jan 12 10:37:42.770: %PORT_SECURITY-2-PSECURE_VIOLATION: Security violation occurred, caused by MAC address 0811.9695.9b04 on port FastEthernet0/42.
Jan 12 10:37:42.770: %PORT_SECURITY-2-PSECURE_VIOLATION_VLAN: Security violation on port FastEthernet0/42 due to MAC address 0811.9695.9b04 on VLAN 144
Wonder why clients MAC is seen on native vlan (and ofcourse also on taged vlan) ...?
View 4 Replies
View Related
Feb 15, 2013
I have a WLC 2106 which is configured and working as follows: [code] how do i get the AP at Site B to use the local server (10.0.28.x) to hand out DHCP leases?
View 3 Replies
View Related
Jan 2, 2013
We created a VLAN interface and a WLAN on the wireless controller (5508) and using it for Guest Wireless (Web auth), can we use the same VLAN and WLAN s for Wired Guests also?
View 5 Replies
View Related
Sep 4, 2012
We have a customer who is evaluating a Cisco Vs. Motorla wirless solution. He says that a Motorola AP can only work in standalone mode for 48 hrs. after it lost communication to the controller. Is there any limitation like this with a 2500 controller and 1140 series access points solution?. Is there any reference to show?
View 3 Replies
View Related
Oct 14, 2012
i have configured cisco LAP1240 in H-Reap Mode for multiple branch offices with Local switching and central authentication. one of the branch's AP does not join the controller in HQ while the others are all ok. i have firewall only in HQ, i did priming first for all APs like let them join the controller and configure controller IP in high availbility, and H-Reap config and assign SSID to map with the branch local vlan. when i faced this issue first time i brought back ap and configure a static IP address for AP than recheck them again but the problem still same. since i have only one firewall in the network and also other branches joined the controller through that firewall and no issues.
View 3 Replies
View Related
Apr 23, 2012
I'm trying to figure out if it is possible to configure in one site a wireless setup that goes like this:
One WLC (5508), multiple LAP's in H-REAP mode.
AP's will be splitted in multiple VLAN's belonging to different departments but with the same SSID.Each VLAN will have it's own DHCP scope. All AP's are located in the same site and I need to know if it is possible to roam between AP's that belong to different departments?
View 3 Replies
View Related
Jul 21, 2011
I am testing rogue on wire using 5508 WLC and , I have a dedicated AP configured as rogue detector and configured the switch port where the Rogue detector is connected as trunk. I have plugged in an autonomous AP with open authentication to the same switch so that it can act as a rogue. On the WLC, I can see that Autonomous AP as rogue on Wire. But along with that I am seeing another AP as rogue on wire, even though i have plugged in only one Autonomous AP to the switch.
View 3 Replies
View Related
May 2, 2011
I have three 5508 WLCs, running code 7.0.98.0 supporting 100+ LWAPs in H-REAP mode. The LWAPs are servicing 2-3 WLANs each. Some are using central authentication and local switching, some are configured for central authentication and central switching. When the LWAPs fail from one WLC to another WLC, the LWAP's lose all of their VLAN mappings and pick up the VLAN of the management interface on the new WLC.
All WLANs are configured to use the management interface on the WLC and the VLAN mappings are configured per LWAP on the H-REAP properties tab. The WLAN ID numbers and all the WLAN settings are the same across all 3 WLC's. I have created AP groups on all 3 WLC's and the AP group config matches across the 3 WLCs.
I can get the LWAPs to keep their VLAN mapping by creating an interface on the WLC with the VLAN ID of the locally switched/remote site VLAN and then setting the interface for the WLAN to the new interface. However, then the WLAN doesn't work, because the centrally located WLC doesn't have the remote site VLAN. It also seems to keep the VLAN mapping if I create the locally switched/remote site VLAN interface on the WLC , and point the WLAN to the management interface. This shouldn't be a necessary step though... In H-REAP with local switching, the LWAPs aren't using the interface on the WLC.
I found a note in the 7.0 WLC config guide that explains why the VLANs are picking up the management interface VLAN, but that same note says the VLAN mappings can be changed per LWAP/WLAN!
From config guide: For hybrid-REAP access points, the interface mapping at the controller for WLANs that is configured for H-REAP Local Switching is inherited at the access point as the default VLAN tagging. This mapping can be easily changed per SSID, per hybrid-REAP access point
Using H-REAP and been able to get the LWAPs to keep the VLAN mapping when failing from one WLC to another?
View 9 Replies
View Related
Oct 17, 2012
I am in the process of deploying 3502i APs. This site has 2 - 5508 WLCs both running Software version 7.0.220.0 and 2 - 4402 WLCs both running the same version of software as the 5508s. All of the APs that I have installed so far have joined the controller and I can associate to them and access the network. When the APs first are connected to the switch they go through the 'normal' boot up with the LED changing colors - white, red, green, blue (not necessarily in that order). Once the AP has completed its boot sequence the LED goes out and remains NOT lit.
This is happening to most but not all of the APs. This is the first time I have deployed 3502s - previous experience is with 1142s and 1242s and the LED does not do this with them.
I can, through the CLI, turn the LED on but it is then ALWAYS blue, even if a device is NOT associated to it.
I do not want to leave them off because the account will believe they have a 'dead' AP and with them always blue they cannot properly troubleshoot using the LED.
View 5 Replies
View Related
Nov 4, 2012
In an idle situation how much area is covered by a cisco 3502i acceccpoint , I understand there are many factor that will effect this , thats why I am adking in idle situation , I am looking for a number is square feet.
View 1 Replies
View Related
Oct 1, 2012
Can a 3502i be downgraded to autonomous mode?
View 7 Replies
View Related
May 10, 2012
I have a customer with several older Aironet 1121G WAP's. In one area of the plant the noise levels from several large motors is preventing reliable connection to the WAP, even though it is located in the same conference room as the users. I am suggesting upgrading the 1121G to the 3502I to take advantage of the Clean Air technology. This raises two questions:
1) Will a single 3502I be able to effectively handle the RF noise, or does it require a network of WAPs to function properly?
2) Does the 3502I require the CT2504 controller for the Clean Air to work, or will it function in a stand alone mode?
View 8 Replies
View Related
Apr 28, 2013
how to convert a 3502 access point from Autonomous to Lightweight ? 3502 has a new IOS released back in Dec 2012 to work as staandalone mode. I need to convert this back to Lightweight mode.
I have been searching on web but have had no luck so far with anything. Tried converting it to lightweight in the same way as putting it on Autonomous IOS but errored out.
View 4 Replies
View Related
Oct 15, 2012
When we were installing some new APs, were plugged in to ports that were not configured on the WLC management VLAN.
This is the illustration
WLC management VLAN is VLAN 80 Management VLAN of infrastructure (Switches routers) is VLAN 10
The APs were plugged in to VLAN 10 and they were not able to associate themselves with the controllers.
Through research, those APs were getting a wrong IP address,
I did the Mode button, pressed for 30 secs, but this did not fix the problem, i thought it was going to clean the flash and bring the AP back to factory default I do not believe this happened.
We also added the cisco-capwap-controller.localdomain to our DNS servers, and then I rebotted the APs and still no luck.
What fixed the issue is we had to go to the DHCP server, release the IP addresses and we found those based on the macs of the APs. What is we do not have the mac addresses?
Now that I have the DNS entry created, if I plug in an AP on the wrong VLAN port will I be able to see it?
View 3 Replies
View Related
Jul 16, 2012
I have AP which is not connected to switch.I console it and it gives error unable to to get IP from WLC.Need to know is there any way that i can go to command prompt of this AP without getting IP from WLC? I tried control + c etc it does not go to command prompt.
View 8 Replies
View Related
Sep 25, 2012
I have a 3502i(AP_1) that will not join a 5508 WLC(WLC_1)(code 7.2.103). The 3502i(AP_1) will join 4402 WLC(WLC_2)(Code 7.0.230). I have another 3502i(AP_2) that will join the WLC_1 & WLC_2. I am using capwap discover through DNS and hard coding the primiary WLC to AP_1 & AP_2. When I debug capwap events and errors, I see the static capwap messages and replies. Both of the WLC are on the same subnet. I have defauted the AP_1 and it joins the CISCO-CAPWAP-CONTROLLER as expected. When I change the Primiary WLC to WLC_1 it goes back to the CISCO-CAPWAP-CONTROLLER. If i change the primiary WLC to WLC_2 it joins. If I change the primiary back to WLC_1 it joins WLC_2 even though it is not a secondary. I know the previous joined WLC are stored in NVRAM, so that might be why it is doing that. I can join other ap to WLC_1 just not this one.
[code]....
View 4 Replies
View Related
Jan 25, 2011
I am using Cisco Wireless LAN software revision 7 on an AIR5508. I am sure that I read somewhere that the controller will not allow 2 w lans to talk to each other but trawling back through my books I can't find the information again. Essentially, I am looking to find out if there is a feature (other than on the default gateway which is a layer 3 switch) that will say that if WLAN1 tries to talk to WLAN2 via the default gateway, the controller will not allow it.
I remember from what I read that I think this is the case but just cant find where I read it.
View 2 Replies
View Related
Oct 12, 2011
We use LAP 1042's as our main AP's, and we set those in H-REAP (with Local Switching) in order to let them work properly. This is because our WLC is not located in the AP's local network. This is something that, sadly, cannot change, so this has to stay the way it is now.We also use a freeradius server to authenticate users on our wireless network. In our previous situation, before using Cisco appliances, we would just set our web auth page to a certain URL and make sure that the URL was granted access before authentication. We obviously found out that Cisco implemented this by using a Pre-Auth ACL. As a result we've added the IP adres of that web login page to a ACL and added that ACL to the pre-auth for the WLAN that will use Radius Web Auth. The WLAN also has the Radius servers added to the AAA page, so those are in place.
Now comes the problem though. When I connect to the WLAN that will have to use Radius, and try to open a page it will start trying to load the virtual interface (1.1.1.1) and then it will try to redirect to the web-page that I defined in the External Server. Like I stated, I've added the webpage's IP adres (after resolving it) to the pre-Auth ACL, and when I look at the counters I see that go up every time I try to load a page. Yet the browser on the computer gives me a time-out trying to load the external web-server web auth page.
When I disable Web-Auth all-together, I get internet straight away, so the problem obviously is located in the web-auth settings or ACL settings somewhere, but at this point I just don't know where to look anymore.
View 6 Replies
View Related
Sep 7, 2011
I would like to create multi-WLAN for personal communications, and gaming purposes. Each WLAN (is located in seperate house) and consists of a wireless AP wirely- connected to wireless router. The computers in each of these WLANs are connected wirelessly to the router. The houses (containing the WLANs) are locates within the region of a central wireless internet AP tower antenna.
I managed to utilize this central AP to make the connection, and make multiplayer gaming on two computers (in different houses and without using the internet services), each computer is connected to the central AP by a USB witrless adapter.My question is what are the necessary configurations that I need to make on the routers and APs? I have a number of different TP-Link routers (wr1043, wr743, wr543), micronet APs. Wr743 and 543 have AP client mode that can be used to simultaneously connecting wirelessly to central AP and to attaced computers.
View 2 Replies
View Related
Nov 27, 2012
I am having a Wism on 6500 chassis with software code 7.2.103.0 Now......... I use to have 7.2.111.3 on the Wism before but for some reason I had to downgrade the code to an older version (some compatibility issues with the NCS)......
Now before all the APs were having 7.2.111.3 version running as soon as I downgraded the controller IOS most of them downgraded the code but a few still did not show up...... so I picked one of them and did a factory reset on the AP and was guessing that it might get the new code from the controller this way but unfortunately since than I have tried a lot of things but no luck. I have switches configured on layer 3..... other APs connected to this switch are working fine,........ when I reset the AP to factory default it doesnot take an IP obviously so I manually define the IP,,, you would find that configuration below too.... but than after a while it trys to locate the controller and could not find it.... where as, as i said other APs on teh same switch works fine......
the only thing i notice is that it does not release the IOS .. it is still having 7.2.111.3.....
using MCNG ddr static values from serial eeprom
ddr init done
Running Normal Memtest...
Passed.
IOS Bootloader - Starting system.
[Code].....
View 4 Replies
View Related
Jan 17, 2013
This problem only seems to affect one of our sites. Every once in a while, several APs would lose link to the 5508 and get stranded. The only way to fix the issue is either to power cycle, or better yet SSH into the APs and use the command "capwap ap controller ip address x.x.x.x", and then they'd automatically rejoin the controller. At first, I thought network hiccups caused the APs to lose connectivity, but there's none that I could find. I have the primary/secondary controller IPs configured in them as well. See log below:
[previous log entries show AP working as intended, then...]
*Jan 18 05:29:29.632: %CAPWAP-3-ERRORLOG: Retransmission count for packet exceeded max(CAPWAP_ECHO_REQUEST
., 1)
*Jan 18 05:29:29.632: %LWAPP-3-CLIENTEVENTLOG: Switching to Standalone mode
*Jan 18 05:29:29.645: %CAPWAP-3-ERRORLOG: GOING BACK TO DISCOVER MODE
*Jan 18 05:29:29.645: %DTLS-5-SEND_ALERT: Send FATAL : Close notify Alert to [ommitted due to security reason]:5246
*Jan 18 05:29:29.704: %WIDS-6-DISABLED: IDS Signature is removed and disabled.
[code]....
View 2 Replies
View Related
Jul 18, 2012
The ap 3502i has been registered to the wireless controller, but now want to restore the factory settings, repeated after the upgrade or will appear before the registration information of the wireless controller,
View 3 Replies
View Related
Dec 4, 2012
We have a 2504 WLC and 8 352l AP. All AP are working and can be seen in the WLC except 1. It can grab an ip address but cannot see on the WLC. the show AP join...only shows that it is trying to join but no error indicated. A debug cap swap events didn't show the ip add.
View 7 Replies
View Related
Dec 15, 2012
My 3502i suddently shutdown it's Radio interface and when I connect to it, I cans ee that the interface is shutdown. So tryign to enable it but the "configure terminal" command is not available. Is there any hidden command to go the priveledge mode?
______________
interface Dot11Radio0
no ip route-cache
shutdown
antenna gain 0
beamform ofdm
mbssid(code)
View 10 Replies
View Related
