Cisco Wireless :: 4402 Adding New Subnet To Existing WLAN
Nov 23, 2012
Moblie WLAN range 192.168.1.0/24.Default Gateway: 192.168.1.1 - Firewall..Next available range to add more addresses are 192.168.11.0/24..Current range is having IP address issues..I have seen a feature in 4402 controller that I can assigne second address range to exisgint SSID Mobile.What should I set the default gateway for 192.168.11.0/24 range?How can I point all mobile users traffic to the firewall as default gateway without creating additional interface on the firewall?I really do not want to create another vlan and interface in the network to just add another 255 addresses if tehre is any option?
Here's the deal. My internet provider provided me with a shitty router with a lot of settings locked. I can't change DHCP settings or add custom static IP addresses. This sucks. The wireless function on it sucks also.I added an extra router to the network so I have good Wifi in my living room. I turned off the NAT, firewall and DHCP on that one, so it's a simple switch with a wireless access point now.Now here's the deal. The DHCP server of the provider's router hands out IP's from 192.168.2.1 to 192.168.2.253 (192.168.2.254 is the router's own IP address).I gave the added switch/access point the IP address 192.168.1.1 in its own settings. The original router doesn't 'see' the switch now anymore because it's out of the DHCP's range. When I gave it an IP address within the DHCP's IP range, I got all kinds of conflicts (as expected).
I guess this is a solution since it works, but I'm open to other suggestions since it doesn't seem to be the best way of doing things. Besides, I can't access the access point's web interface anymore since it doesn't have an IP address within the network now. It isn't important because I don't need to change any settings anymore, but still.I'm going to add a second wireless router to replace the built-in wireless function of the provider's router. For some reason it sees its own wireless network as a separate network or something. When I roam from the new access point wifi to the provider router's wifi, everything gets confused because it tries to give the laptop a new IP address.
I currently have a wired network which starts with a cable router downstairs which is a virgin media netgear box with firewall and DHCP turned on. I have a NAS server and a smart tv which run off ethernet connections to this router.then have a cable run upstairs to a TPlink gigabit switch which is connected to a PC and a printer (in my study). All this works just fine, no configuration needed.I have a TPlink wireless router, a TL-WR743ND. I want to use this to connect to the switch upstairs (not downstairs - my stone walls limit any wireless access point) to provide wireless network coverage for my house.So I figured I should configure it with a dynamic IP address (ie it gets it from the netgear DHCP), turn off the TPLink's DHCP and firewall, and then any wireless devices attached to the TPLink by wireless should have access to printer and NAS
My ISP comes in via phone line to modem then to wireless router.I want to run 200' direct burial line to WAP so that I can access wireless internet at the far point. I have modem and wireless router. what do I need to do the create the distant wireless access?
My wife has a home office with her office computer connected to our modem via a cisco router. Our home computer is connected via this router as well. I want to add a wireless router (netgear) so I can use my laptop anywhere in the house.
What I am trying to do is I have one switch with say a 10.1.9.1 sub-net I need to have one of the ports to be trucked with two vlans one for DSL and the other for a local connection with the sub-net of 10.1.5.1 both of the sub-nets are configured in the core as 9 and 5 so I have port 0 set up as a trunk and it is set up as ge-0/0/0.0 vlan_5, vlan_192 on the 10.1.9.1 subnet switch. The DSL is working but the local is not pulling a 10.1.5.1 IP and has no connectivity. Everything looks as if it is configured correctly but still the DSl is working but not the Local connection.
ive got 2 laptops on my wireless network and have just bought a pc. it dosnt seem to be finding my connection so i cannot get it onto my wireless network?
I have a Airnet 1600 Series that I want to add as another repeater to our 1200 series 802.11g network. We already have 2 AP's running fine as Repeater and BR, I just need to a this 1600 AP to the existing wirelss. Everytime I try to change the 1600ap as a repeater, I get the below error.
cannot set role in radio network to when another radio is set to one of the above roles
Add wireless conection that can't see network. I have an existing working hard wired network. I want to add a wireless connection that has access to the internet, but not to the other devices on the original network.
Added a wireless router to our office here so that people with laptops could get on the net without having to physically plug in. Right now it is ok, but the router is acting as it's own DHCP server instead of our server here assigning out the IP's.
The main gripe I have is I can only login to the router through my phone and not through my computer. How can I achieve this. We have multiple offices that all connect through a VPN. I would like our sys admin to access the router at his location as well.
Do I just turn off DHCP on the router and thats it? The model is Netgear WNDR4500.
I've got a couple new 5508 controllers to replace my 4404's. Im wondering though if I throw them on the network to setup, will there be any conflict with the current access points? Will they try and join the new controllers for any reason automatically? Is there a better way, or a best practice to provision these new controllers?
we use wlc 4402 (Software Version 7.0.98.0) and want to allow only several wlan nic vendors to connect to a wlan ssid.According to this, is it possible to configure MAC Filtering with wildcards, e.g. aa:bb:cc:* ?
I have an existing wireless network using a Cisco/Linksys WRT400N wireless router (which in turn is connected to a cable internet provider). I need to extend my wireless coverage and so purchased a Cisco/Linksys E1000 to act as an additional access point. Purchased from BB, the local 'geek squad' rep instructed me to follow the users guide for the set up. After login into the admin service on my E1000, I followed the 'Advanced Routing' instructions and disabled the 'NAT' option and subsequently enabled the 'Dynamic Routing (RIP)' option. Everything worked like a charm to this point, but now I'm stuck. What steps do I need to follow to allow clients to log onto my wirelss network via the E1000 (secondary access point)? I've established WEP security keys on the WRT400N (primary access point) and want to use the same network security parameters on the E1000.
I've got a client who purchased numerous 3600 series AP's (3602i to be exact) and would like to add them into their WLAN 4404 controller. They're currently on 5.x system code so I plan on getting them upgraded to the latest 7 code.
They currently have a number of AP's adding and working fine. Once the WLAN controller is upgraded, does anything specific need to be done within the WLAN gui to add in these new 3600 series AP's?
We have a CISCO WLAN in place with several SSIDs including one on the Voice VLAN. We need to add an additional one using CCKM due to wireless phone roaming issues. Does adding a new SSID to the WLAN cause any outage whatsoever? We are in an environment where even a small amount down time is not acceptable.
We are using two 5500 controllers with hundreds of LAP1142N
We currently have out T1 attached to a 5505. We have IPsec site to site tunnels that also terminate on the outside interface of the 5505.
We are getting rid of the T1 and bringing in a manged MPLS circuit which will run off of a 1841 ISR. I would like the 5505 to pretty much work as is with little change. Whats the easiest way to accomplish this? Of course the MPLS will come with new external IP.
Current Design ---> T1<------>[asa5505]<------->[LAN] New design---------> Mpls<------->[1841]<------>[asa 5505]<------->[LAN]
Questions:
1. Whats the easiest way to drop in the 1841 without having to change all my ASA acl's.
2. How would I terminate my ipsec site to site tunnels on asa outside interface. Now that the WAN interface is on 1841 and not ASA how would I terminate the other side of tunnel? Can I leave my tunnel end points on ASA or do they now have to terminate on 1841?
3. How would I configue outside interface on ASA to communicate out 1841 MPLS?
I have a working 3800 router which runs on bgp pretty well. Existing setup has 2 serial ports for the bgp and 1 gigabit port for the LAN.Now, i want to add another 3800 as a standby router making it clustered - ACTIVE/STANDBY via hsrp protocol.
1.) What are the implications in adding another 3800. Do i need to reconfigure the ip addresses on my serial? or just the LAN
2.) Are there any additional requirements like firmware versions etc?
We have an ASA5520 version 8.3(1) We have an existing VPN tunnel between us and our partner site. We need to add a new vlan to our existing VPN tunnel.
Where do we need to add the new vlan to in ASDM interface? Looking through using ASDM, I found 3 places.
I need your input on how to appropriately introduce an N5K with Jumbo enanbled to a prexisting Core Network (Stack of Cisco 3750G Switches) without making any major alteration on the Core configs (everything is happy). The idea is to move two High I/O servers to the N5K during a transitional phase. I already have a fair understanding of what Jumbo-Frames are and what it does. Keep Jumbo-Frames within the N5K ONLY.
Conditions:
- Traffic is Data traffic, not storage/iSCSI - The servers host our ERP applications and MySQL that is accessed heavily by users - N5K to C3750G connectivity is a Port-Channel consisting of 4x1GB ports - The servers are to remain on VLAN 2 (Data VLAN) - The Core Switch is L3 and the boundaries reside here
we have 2xNexus model 7010 (let's call them Nexus1 and Nexus2) connected via VPC to a couple of catalyst 6509 switch.Trunking has been enabled on the port-channel defined on both Nexus allowing some vlans.Below the config applied on both port-channel interfaces on both Nexus which are members of the same VPC number: [code]
supposing I'd need to remove some vlans from that trunk (e.g. vlan 100,200 and 300) using command "switchport trunk allowed vlan remove 100,200,300" and that I'll run that command on Nexus at a time (that means there'll be a condition for a short period of time where Nexus1 has removed vlan 100,200 and 300 from the trunk, while Nexus2 is still carrying those 3 vlans on its port-channel which is a VPC member) , could it cause any VPC inconsistency condition suspending VPC interfaces and therefore affecting the service for all remaining Vlans or only Vlan 100, 200 and 300 will be suspended when that condition will be detected?
We have a Cisco 3845 router for Site 2 Site VPN tunnels to external business partners. The IOS is (C3845-ADVIPSERVICESK9-M), Version 12.4(15)T8.One of our partners is doing a DR test and needs to have us swing the VPN traffic to another peer in a test location temporarily. I plan on adding the test hosts to our existing encryption ACL, but instead of building another crypto map, I was wondering if I can add a secondary peer to the existing one?
I need to add two additional 2960S switches to my stack. I saw a diagram that showed how a 4 switch stack can be connected, but I couldn't find much detail on adding a switch to an existing stack (besides master election). The output below shows how the existing stack is connected and its state
SW#sh switch detail Switch/Stack Mac Address : 0011.2222.3333 H/W Current
[Code].....
I will need to break one of the stack rings between SW1 and SW2 in order to connect the new switches. Does it really matter which ring I break to connect the additional switches? Does one ring act as primary? If so, I'd rather not break that ring so this process is transparent as possible. Also, is there any benefit to disabling the stack port vs just disconnecting the cable?
I have a 3750 stack as our core switch. On the core switch I have 2 VLANs. One VLAN is for WAN and one is for LAN. The WAN VLAN has our internet router, and the outside interfaces of two ASA's set up as failover. The LAN VLAN has everything else, including our MPLS router for the remote offices. Execs are cheap and want to increase internet bandwidth by purchasing a local home internet service like COX or Time Warner cable to add to our Business internet service with TelePacific which is a bonded T1 at 3 meg. Execs dont seem to care about SLA's and simply will not spend big dollars to increase the pipe. I was looking at those Mushroom Networks appliances but its too expensive for us also. Any way to add additional low cost bandwidth with out current setup? Maybe prefer to keep important internet traffic to the SLA circuit, and then put low priority traffic to the cheap non SLA cable modem if possible.
I have an existing wireless working network with WIN 7 - 2 laptops, two desktop PC's. Can I add a security code/password without setting up a new network?
I am currently running a Cisco 4402 Lan controller, I have a Wlan that is running unsecured and i wanted to add a simple web policy log in, so i set up an NPS server on a local DC. I have the two talking . when i go to login at the web login page I get the Error Login Error. When i look at the NPS logs it says: "Network Policy Server granted full access to a user because the host met the defined health policy" . So it has to be in my Cisco set up somewhere seems pretty simple
We currently have a cisco 4402 with firmware version 6.0.182.0 and 4 WLANs currently running on it, we found the need to add an additional WLAN and after the configuration was completed and I tried to connect to it I found that we are not getting an address. If i connect a laptop to the VLAN I can get an IP and am able to browse. If i hard code an IP into a device and connect to the wireless i am able to connect and browse.
Recently (within the past 2 months) I've been having some issues with my 4402 wLAN controller.
The issue is thus:
1) New wireless clients (those without exsisting DHCP leases) are unable to properly connect to our wireless network.
2) Those same systems (and other systems) have no issue getting online via a wired connection (where available).
3) Devices like iPad, tablets, laptops partially connect but do not get a valid IP address.
Our config:
1) DHCP is handled by a seperate server (NOT the 4402 - it's DHCP setting is disabled)
2) Our wLan is not on a seperate network than our wired LAN
3) Wireless devices attempting to connect include iPads and laptops mostly.
4) We're a school with about 300 systems (primarily Windows XP machines).
5) 25 access points controlled by the 4402 (our only wLAN controller)
Important Notes:
1) No configuration changes have been made to DHCP or the 4402 device in a couple years.
2) 4402 Software Version = 4.0.217.0
The problem first showed up a bit over a month ago. I first thought the issue was DHCP server related , so I started there and didn't find any obvious issues. I did restart the DHCP server (which at that point had an uptime of somewhere over 700 days).
I then also checked the web interface of the 4402 to see what it was reporting. I noticed a somthing:A) As shown in the "WLAN_Issue_EDIT.png" the client count on the controller is showing 628 current clients. We don't have many devices in our entire campus.
I rebooted the controller after hours and that seemed to allievete the issue. Since then, the current client count hasn't ever gone above 60.
Now today I'm having the same issue regarding new clients getting IP addresses. The client count isn't real high on the WLAN controller and I don't see any other obvious issues. I'm torn between this being a DHCP issue or the controller issue (or a combination of the two).
The reason I don't think it's directly DHCP related is that all wired clients seem to be getting address fine.Plus, I've set my tablet device to a static address and it still cannot connect via wifi.
**Update** I've now rebooted the controller and the problem persists (at least on the nearby iPad - Will confirm other devices shortly).
in our network we were using three 3750-48-s switches with stacking one of the switch due to some hardware failure power problem,
now i want to add a new switch 3750-48-s in the existing Stack two switches , the old two switches ios version is = 12.2(25r)SEC the new Catalyst 3750 io verion is = 12.2(35)SE5
how to add this switch in the existing two stack switches , with documentation
I have looked on notes to add a switch to an existing stack and haven’t identified answers on how the IOS will be affected on the new switch – will it downgrade to the current stack version or will the current stack upgrade to its version. At this moment in time I would prefer if the new switch IOS downgraded to the current stack IOS version.The new switch is a 3750V2 – will this affect how it joins the stack?The new switch has the image of IPBASEK9-M – again will this affect how it joins the stack?
I have to add a 2960s PoE switch to an existing stack of two 2960s PoE switches. If The new switch has no configuration on it and the existing stack is broken by pulling te stack cables and then new cables are added and everything re-cabled correctly will the new switch assume the configuration from the stack without any issues?
