Cisco Wireless :: 4402 And 5508 Controller Installation
Oct 30, 2012
My client has on cisco 4402 controller running with 48 AP on this. Client requires to add another 25 AP but licence on the current controller is not supported client bought another controller 5508 with 25 AP.
I have been tasked to installe 5508 with conjestion of 4402. I have make the software version on both of them as below
To match the same IOS version on both the controller. I have following challenges with me.
- 5508 will registered 25 AP while .. 4408 will continue with 48 AP.
- 5508 is going to be in DC and it will be directly connected to firewall as default gateway for guest SSID. 4402 is going to be on another building.
- How can I make sure that Users connected to AP registered with 4402 will have the same deafult gateway as 5508. Thre is no layer 2 connectivity between this two controllers.
- There is no romaing going to happen between this two controller as both are two different locations and user will leave one location will disconnect and it joines bak when it reach to another controller.
- Is there any way to configure 5508 as master and 4402 as slave kind of connections?
I am running 5508 wireless controllers. I pass along another agency's WLAN across my wireless network that is anchored to their older 4402 controller.
I wish to run the new 3600 series APs and am planning on migrating to NCS and the new 7.2 code.
I know that the older 4400 series controllers will not handle the newer 7.1 or 7.2 code. However, i still wish to maintain this anchor relatiosnhip with the older 4402 controller. I need to know if this will work or not.
I'd like to replace my 4402 Wireless controller with a new 5508. I have migrated the exact configuration from my 4404 controller to the 5508 and they are both running the same version of code. I'm worried that if I replace the 4402 with the 5508 controller, the Access Points will not rejoin to the new controller or they will join but will have lost their configuration e.g. AP Name/location etc etc. AP models registered to the existing controller are 1131, 1142 and 3502. I am also using Cisco WCS.
As long as the new controller has the exact same configuration, is it possible to replace the 4404 with the 5508? Will the existing Access Points join the new controller? Is there any other configuration required? I have read about doing this using mobility groups however would rather not if possible.
When I connect the access-Point to the network, the AP associate only one time but i go to wireless for see the AP, i can see downloading of IOS, but the ios is 3.0.59, the ap don not nothing. I can not change any parameters.
We currently have all of our foreign AP controllers on software version 7.0.116. This consists of a mixture of 4400 and 5508 WLC's. Our guest anchor is a 4402 on version 7.0.116. We are replacing the guest anchor with a 5508. We are also upgrading our 5508 wireless controllers to version 7.2 to support the 3600 series AP's. My question is what is the recommeded code that the anchor controller should be on? Should it also be upgraded to 7.2? If we upgrade the anchor controller to version 7.2, will this affect anchoring to 4400 series foreign controllers still on7.0.116?
I know that the 3600 series APs are not supported on the 4404 WLC. However, would the following scenario be supported? I would like to use the 4404 (software rel. 7.0) as a guest anchor with a 5508 (software release 7.2) as the foreign controller supporting series 3600 APs. I ask because the APs do not need to join the guest anchor.
We have a customer that have 2 5508 as primary and backup controller and a 4400 as an anchor controller. We plan to upgrade the 5508 to 7.3.112.0 and the 4400 is already 7.0.116.0. Will there be any issue if the anchor controller is not the same code as the foreign controller? Do I also have to upgrade the acnhor controller to 7.0.240.0?
I have a client that needs to update a certificate on their 2125 controller. They have created a .pfx cert that does not work because of file type. I wanted to see what the best pratice would be for me to follow installing this cert and do I need any additional cert like a CA. I found a document but am not so sure that it is exactly what I need.
AIR-WLC2125-K9 : JMX1248K0EL System Information Manufacturer's Name.............................. Cisco Systems Inc. Product Name..................................... Cisco Controller Product Version.................................. 6.0.188.0 RTOS Version..................................... 6.0.188.0
I'm trying to install a webauth certificate -- it works fine when unchained, however once I add the additional information the installation fails. I am using the same root and intermediate certificate information as last year, and it worked fine then. I can recreate last year's pem file with the chained information and it installs fine, so it's only when I include the new device certificate information that it fails. The certificate installs fine when it's not chained, I'm not receiving any openssl errors, and I'm not using openssl 1.0.
We Have a WLC-4402 controller with LWAPPs and different VLANs and SSIDs. I've configured a Linksys WET200 to associate to one of the SSIDs.On the WLC I can see, that the WET200 is associated to one Wlan.Then I connect one computer with a static IP address and works fine.But when I connect a second one, everythiing goes down. It does not connect.I can only connect one computer to the WET200.Do I need other seetings on the WLC to allow pass traffic through the WET200?
1) AP was originally running a standalone image. I booted it into a so-called ROMMON or AP mode (ESC is the right key to make it boot into this mode).
I found a recovery image in its flash - c1140-rcvk9w8-mx. I made the AP boot from it by using "set" command and I see that it start booting using this recovery image. Here goes the question. Do all AP settings matter ? E.g. when I run "set" command from AP I see the following:
ap: set ?= DEFAULT_ROUTER=10.0.0.1 Default_router=10.9.99.1 ENABLE_BREAK=yes
I have a wireless printer on an internal wireless network. I have a laptop connected wirelessly on the same internal network. When both devices are connected to the same network I cannot connect to the printer. If I change my laptop over to the guest wireless or to a wired lan, I can see the printer. I vendor stated that within the 4402 wireless controller there is a setting to allow wifi to wifi connections on the same internal network. I am trying to figure out what that setting is called and where I might look for the setting within the wireless controller.
Is it possible to set an Aironet 1232AG-A-K9 as a repeater while still using a 4402 controller? I have some wireless security cameras in our parking lots that I need to extend wireless to and I have a handful of 1232 points that I am not using. I have some omni antennas and a yagi directional that I was planning on using.Everything I am reading talks about configuring the AP while in automous mode, not while running the lightweight image.
I have several controllers, including a 4402 running 6.0.188.0 software and I need to modify the Radius servers that it uses. Currently I have three servers listed;
I would like to delete server 1 which is being retired and replace it with a new server 1. I suspect, once i get servwe 1 deleted, the server 1 option would become available when I create a new server. I went into the controller and disabled server one, but every time I try and delete it, I get the "Server in use either on a specific WLAN or Mesh Radius Server Configuration" error. I can't find anywhere this server is still in service and being used, either by a WLAN or a Mesh. I've tried several different variances to modify this. What I hope to avoid is the need to reset the controller. I have a total of seven controllers that I need to make this modification to, and It will be ugly if I have to reboot these units. Hospital mission critical stuff.
I am in the midst of trying to update the controller firmware of a cisco wireless lan contoller 4402, and having some issues getting the file to transfer to the controller. i am currently running verison 5.0.148 on the controller and attempting to upgrade to the latest version of 7.0.230 and for whatever reason it continues to not transfer. I have tried all 3 methods of cli, gui and using wcs software. all the no avail , I have tried tftp32 and 3cdaemon with the same results.
The error that i am getting from 3cdaemon is got socket timeout aborting code 10054, failing at 66MB transfered. I increased the timeouts both on the wlc and the tftp client to no avail
the error i get on the wlc is Code file transfer failed - Error while writing output file
I have 3 WLC 4402 controller connected to an ACS Server and Cisco 1252G AP. Previously the wireless networks works fine but for two weeks now most of the clients experiencing reauthentication frequently, Some experience it every 5 mins even if they are browsing or idle and not moving. I've check the session time out settings in the wlc and it was configured for 30 mins as default. I have around 900 student clients connecting every day.
I am trying to setup a guest vlan. I set up an interface for the guest vlan on my 4402 controller. I assigned the guest vlan interface an IP of 192.168.2.10 with a 24 bit subnet mask.
This vlan will go to my DMZ where there is no DHCP server so I need to setup the internal DHCP server. I created a new scope but I'm having trouble with what to put in the Network field for the DHCP scope. The pool addresses are 192.168.2.100-200. with a 24 bit subnet mask.
Every time I try to apply the configuration I get an "error in setting DHCP scope network and netmask".
I've tried using:
192.168.2.10 192.168.2.255 192.168.2.254
as entries for the Network setting but no go. The docs say to enter the IP address used by the management interface with subnet mask applied.
I was assuming they meant the interface for the guest vlan.
we use wlc 4402 (Software Version 7.0.98.0) and want to allow only several wlan nic vendors to connect to a wlan ssid.According to this, is it possible to configure MAC Filtering with wildcards, e.g. aa:bb:cc:* ?
We have Cisco 4402 Wireless Lan Controller with Software Version 3.2.171.6 and we want to upgrade it to latest version.
What is the latest version to upgrade the WLC?
Also since WLC is running on very lower version is it possible to upgrade to the latest version directly or we have to move it step by step to upgrade this to latest version?
I need to install one 5508 and a 4402 together to bring redundancy to a wireless environment.Can I do this?. What are the neccesary steps to perform this?, the idea behind this is to bring redundancy is the primary WLC falls for any reason.
My customer has a 4402-25-K9 and need a backup (failover) controller to avoid data transmision break when primary controller goes down.4402 are end of sale so I have a question can I use 5508 to get Controller Failover Protection with 4402 ?
We are currently looking to upgrade (re-design) our wireless network at our college. Any experience going from a local, controller-based wireless network to a cloud-based controller? If so, what have you found the pros and cons to be?
If you thought about going to a “cloud solution”, what stopped you?
We are currently running wireless at our 3 primary campus locations, and looking to add it to our 3 satellite locations. We use 4402 WLCs at our primary locations with a mix of 1140 and 1240 APs.
We currently run six 4402 Wireless lan controllers - these are managed by a WCS server - soon to be replaced by Cisco Prime. We run a mixture of LAP1242 and LAP1142 wireless access points. I need to add more but have been told by my supplier that the both these AP's are now end of sale and cannot be purchased.
The replacement AP's are the 2600 series - but I have been told that these are not compatible with my existing 4402 controllers.
To make matters worse I was then advised that if I purchase the new 5580 controllers the older LAP1242 access points will not work with it and require replacing - this, for me, is a lot of access points.
What I need to know is:
What access points, if any, are currently available that are compatible with my 4402 controllers and a future 5508 installation?
I ssem to be in a situation now where I cannot buy any access points that will work with my 4402's but if I upgrade all my current 1242's will not funtion with the new 5508 controller!
We have got a WLC 4402 as an anchor that provides guest internet access to our visitors. Our wan sites have 4402's running a tunnel to this anchor for guest traffic. We have got a new site coming up that will have a 5508 as its WLC. I am trying to determine if the 5508 will successfully form a tunnel with the existing 4402 anchor. I am assuming that it will be ok or maybe the 4402 will require an ios upgrade. Our AP's everywhere are 1131's but the new site will have the later versions which can work with the CAPWAP based 5508.
will the tunnel between the 4402 and 5508 work well or will it require an ios + bootstrap upgrade on the 4402 and subsequently the rest of the 4402's or it will not work altogetherwill the CAPWAP AP's at the new site work well with the 4402 LWAPP anchor - I am assuming that they will since the CAPWAP compatibility requirements are really between the AP and its local WLC. Our 4402's are on 4.2.61.0 and I am proposing to management that we should upgrade these to 7.0.116.0 to prepare the infrastructure for any potential issues.
I have cisco 4402 Wireless LAN Controller with Cisco Access Point (AIR-LAP1252G-E-K9), everything is running smoothly.How come i use my Access Points without Wireless LAN Controller, is there any possibility then which AP model would be suitable?
I am currently running a Cisco 4402 Lan controller, I have a Wlan that is running unsecured and i wanted to add a simple web policy log in, so i set up an NPS server on a local DC. I have the two talking . when i go to login at the web login page I get the Error Login Error. When i look at the NPS logs it says: "Network Policy Server granted full access to a user because the host met the defined health policy" . So it has to be in my Cisco set up somewhere seems pretty simple
Recently (within the past 2 months) I've been having some issues with my 4402 wLAN controller.
The issue is thus:
1) New wireless clients (those without exsisting DHCP leases) are unable to properly connect to our wireless network.
2) Those same systems (and other systems) have no issue getting online via a wired connection (where available).
3) Devices like iPad, tablets, laptops partially connect but do not get a valid IP address.
Our config:
1) DHCP is handled by a seperate server (NOT the 4402 - it's DHCP setting is disabled)
2) Our wLan is not on a seperate network than our wired LAN
3) Wireless devices attempting to connect include iPads and laptops mostly.
4) We're a school with about 300 systems (primarily Windows XP machines).
5) 25 access points controlled by the 4402 (our only wLAN controller)
Important Notes:
1) No configuration changes have been made to DHCP or the 4402 device in a couple years.
2) 4402 Software Version = 4.0.217.0
The problem first showed up a bit over a month ago. I first thought the issue was DHCP server related , so I started there and didn't find any obvious issues. I did restart the DHCP server (which at that point had an uptime of somewhere over 700 days).
I then also checked the web interface of the 4402 to see what it was reporting. I noticed a somthing:A) As shown in the "WLAN_Issue_EDIT.png" the client count on the controller is showing 628 current clients. We don't have many devices in our entire campus.
I rebooted the controller after hours and that seemed to allievete the issue. Since then, the current client count hasn't ever gone above 60.
Now today I'm having the same issue regarding new clients getting IP addresses. The client count isn't real high on the WLAN controller and I don't see any other obvious issues. I'm torn between this being a DHCP issue or the controller issue (or a combination of the two).
The reason I don't think it's directly DHCP related is that all wired clients seem to be getting address fine.Plus, I've set my tablet device to a static address and it still cannot connect via wifi.
**Update** I've now rebooted the controller and the problem persists (at least on the nearby iPad - Will confirm other devices shortly).
I am enabling our wireless controllers to use 802.1x authentication for our wireless clients. Both computer and user are provided with certificate from CA server.I have 9 APs and 2 controllers installed in my infrastucture, one of the controllers is working fine with setting specified above but the other one is not.Both has same configuration and both seems identical with same model and IOS.
I have a Cisco 4402 Wireless LAN Controller and 4 x AIR-LAP1131AG-A-K9 access points.We run a combination of [WPA +WPA2]Auth(802.1x) as well as [WPA2]Auth(PSK), most people have their own login credentials...The primary client devices are MacBooks and iPhones, with some Windows and other mobile manufacturer being the minority.
The Issue I have one user (using a recent MacBook Air, latest OS, using Auth(802.1X) ), that keeps getting disconnected for no apparent reason, the user account has been setup exactly the same as every other user and his laptop doesn't have this issue when connected to other WiFi networks.It's worth noting: I noticed this particular user has a lot of "Decrypt Failed" (currently 213) associated with his MAC address, no other user on our network has a single "Decrypt Failed" associated with their MAC...
