Cisco Wireless :: 4402 / Clients Not Getting DHCP From External Server?
Jan 16, 2013
I have a 4402 (version 7.0.235) working with 10 units of 1121 APs connected to it. The WLC is not configured to work in LAG mode. Physical portt #1 is connected to the Main Switch (trunk). I have 3 WLAN mapped to 3 Different VLAN and Everything (security and internal, external DHCP) is working swell...Now- I have connected Physical port #2 directly to an ADSL Router (giga port), Configured Port 2 as untaggedwith the proper IP details.I have configured this interface to receive DHCP from the ADSL Router and for some reason, Clients are not getting addresses.When I assign a Static address to my laptop I get internet access and all is nice. I tried configuring The WLC internal DHCP server (instead of the ADSL router) and that didn't work. It seems like a DHCP problem but I dont understand the source of the problem of think of the solution.When turning off the proxy settings I noticed that it worked. Is there anything to do with that? The problem was that after a while the other WLANs starting causing DHCP issues as well.
View 7 Replies
ADVERTISEMENT
Sep 29, 2011
When on the management interface the clients can't get dhcp but the AP's can on the same vlan. I've tried enabling and disabling dhcp proxy, and using a remote dhcp server as well as the internal server. This same config works on the 4402 we're replacing with version 5.2.193 on it.
View 13 Replies
View Related
Apr 17, 2012
I have successfully implemented wireless guest access using 4402 WLC as the Anchor and 5508 as Foreign. The Anchor controller also provides dhcp services to guest clients. The 5508 is LAGged and there is no issue with the guests traffic separated from corporate. At a remote site, there is a 4402 WLC using LAG and also acting as a Foreign controller. But when a client connects to the guest WLAN, it obtains a corporate dhcp address instead of the dhcp address assigned from the Anchor controller. The guest WLAN setting is the same as with the 5508 controller i.e. DHCP server override is ticked and the management IP address of the Anchor controller is specfied. Also DHCP Addr required is ticked. Why the 4400 controller is not forwarding dhcp requests to the anchor controller and instead sending to the corporate dhcp server.
View 36 Replies
View Related
Apr 8, 2008
I am trying to setup a guest vlan. I set up an interface for the guest vlan on my 4402 controller. I assigned the guest vlan interface an IP of 192.168.2.10 with a 24 bit subnet mask.
This vlan will go to my DMZ where there is no DHCP server so I need to setup the internal DHCP server. I created a new scope but I'm having trouble with what to put in the Network field for the DHCP scope. The pool addresses are 192.168.2.100-200. with a 24 bit subnet mask.
Every time I try to apply the configuration I get an "error in setting DHCP scope network and netmask".
I've tried using:
192.168.2.10
192.168.2.255
192.168.2.254
as entries for the Network setting but no go. The docs say to enter the IP address used by the management interface with subnet mask applied.
I was assuming they meant the interface for the guest vlan.
View 3 Replies
View Related
Jul 3, 2007
I follow step by step the link bellow to configure web-auth with external RADIUS server but I receive a error on console debug of the WLC "Returning AAA Error No Server (-7) for mobile"My Radius Server is fine, because I can authenticate on WLC Web page with RADIUS user. WLC 4402 version 4.1.171.0 [URL]
View 2 Replies
View Related
Dec 27, 2012
Is there a way to get the E4200 to NOT provide itself as a dns server to the DHCP clients? I have the unit set up to provide two dns servers to the clients, but the 4200 always provides itself as a third and it uses my cable providers dns servers. I am using a dns based filtering service to prevent certain material from being accessed within my network as the first two resolvers. So long as both or one of the provided servers is working it doesn't fall back to the unfiltered third, but I would prefer to remove it entirely.
View 8 Replies
View Related
Nov 24, 2012
The router always inserts its’ own address as the primary DNS server for the all DHCP clients even though you have set the DHCP server on the router to assign manual external addresses?
Oh I have a
WRT310n v2
firmware v2.0.01 build 004
Let me elaborate a little so I am clear what I am saying. On the router setup page go to the section that is labeled “DHCP server settings” enter 3 static DNS servers. Say 2 Google and one open dns.
8.8.8.8
8.8.4.4
208.67.222.222
Apply your settings.
Release your ip on your workstation, then renew it. And look at your DNS, the routers address is still the first entry.
DNS Servers . . . . . . . . . . . : 192.168.1.1
I suspect this was probably a design decision so that they could allow a user to open their web browser and type something neat like [URL]. Which for the average user is fine and dandy. If my ISP didn’t suck and try to redirect everything to cached copies I probably wouldn’t have noticed it. But since I end up using the router for DNS and it picks up DNS from my ISP I end up getting Akamai IP addresses, and they have problems with SSL certs…. So you get errors.
I know I can go set the DNS server settings on the workstations. But I really don’t want to do this on all of my devices as they are mobile and switch networks, and on some networks not using the local dns breaks things. Like on the corporate network.
View 5 Replies
View Related
Nov 11, 2011
I was trying to find if it's possible to add the option for static routes for DHCP clients on Cisco IOS DHCP config mode. I'm looking to add a settings as defined on RFC 3442, like this one, set on ISC DHCPd server:
Global settings:
option rfc3442-classless-static-routes code 121 = array of integer 8;
option ms-classless-static-routes code 249 = array of integer 8;
And for the subnet declaration:
option rfc3442-classless-static-routes 24, 192, 168, 30, 192, 168, 10, 1;
option ms-classless-static-routes 24, 192, 168, 30, 92, 168, 10, 1;
View 5 Replies
View Related
Nov 4, 2012
I have a 4402 which is connected to a 4506 Switch int Gig 3/1 via a trunk port. The Managment and AP-manger interfaces are on vlan 6 [code] I have a 1142N AP also connected to the switch and it pulls a DHCP IP Address and configs etc and registers to the WLC. It too is on Vlan 6 and it is connected to the 4506 on int gig 4/33 which is an access port. [code] I am doing local authentication, so i have added users to the WLC.. My problem is that the first client that connected was able to get an IP address and connect to anything internal and external.I then connected another client on another laptop and that client could connect but not get an IP address, it just self assigned.When i look at the clients i can see the MAC address of both Clients on the WLC, but doing a show mac address-table dynamic i only see the MAC of the client that works properly. The client that doesnt get an IP has no entry in the 4506 switch.I am stumped, from what I understand, is that the 2nd clients traffic is being trunked to the WLC , hence it has the MAC address. But I dont know why its not getting a DHCP assigned IP address.
View 37 Replies
View Related
Nov 1, 2011
I have 2 4402 WLC's and a central office and was trying to configure an H-Reap Ap but now the entire wireless network is down. Clients arent getting IP's. I cant see anything that is wrong but things are not working like they should.
View 36 Replies
View Related
Jun 18, 2011
We have a controlled setup comprising of a 4402 WLC in our Data Centre and 1242AG LWAPs in our branches.The Wireless works well with a mixture of locally switched (h-reap) and centrally switched WLANs.I have a problem where Android devices don't seem to function as they should.I have been using an Android phone (HTC Desire, currently running 2.3.4 OS, but has been a persistant issue since 2.1) and it connects to my home wireless (and others) fine, but when connecting to the Wireless LAN at the office, it connects fine and gets assigned an IP address, but NO data flows. None, like there is no connection at all. I have just been using it on 3G. I figured it might have just been an issue with the hardware, so didn't bother too much.I have just purchase a new tablet (ASUS Transformer, Currently running 3.1 OS) and this does the same thing.I have tried publishing a new WLAN and have tried all types of encryption and authentication al the way down to open and still, no data flow. I have tried statically setting the IP details and still nothing.Interestingly, When I attended the last Cisco Live conference in Melbourne this year, I had my phone and it displayed the same behaviour on the Cisco supplied wireless, BUT, there was a second IPv6 enabled, when connected to that everything worked fine.
View 2 Replies
View Related
Aug 26, 2012
I have this guest wlan working with web authentication, as you may know in order to get authenticated you must have an IP address first then have a valid username and password. The problem is that if you don't have valid credentials you keep the IP address anyways.I'd like to know if there is a way to release the IPs that are not being used? The WLC is the DHCP server for this network.
-WLC4402
-6.0.202.0
View 6 Replies
View Related
Feb 6, 2013
i am using wlc 4402 with a mgt ip 172.26.150.x/24 and ap manager ip 172.26.150.x/24, my all ap get the ip address from dhcp . currently in dhcp server 172.26.150.3 to 254 dhcp scope is configured. at mysite some devices are configured like ipad,iphone or galaxy tab with mac binding in dhcp server. now this pool is almost full. i have a policy configured for these devices for mac binding is done in DHCP. to increase pool what are the changes i need to do in wlc. what are the changes i need to do in dhcp server . is policy made for mac binding in dhcp server will get affected by this ?
View 2 Replies
View Related
Jun 22, 2011
We have 2 WLCs, 4402 (main) and 5508 (backup). While we turn on both devices, 4402 have 10 APs, and 5508 have 10 APs as well. Total connected clients will be 120+, but when we turn off either 1 wlc, let's say only 4402 is power on, total 20 APs joined, but the total client will be 90+, never reach over 100 clients. The same happened on 5508, is there any maximum associated connection on WLC?
View 1 Replies
View Related
Oct 16, 2011
I am using wireless system with certificate athentication ( CA Server ) and RADIUS server.
I want to know if certificate is not installed and configured in wireless client laptop.
Do client get athenticate in wireless system and get access of wireless network ?
Also want to know any configuration required in WLC CISCO 4402 for authentication with CA server of client laptop.
View 2 Replies
View Related
Jan 14, 2013
Recently (within the past 2 months) I've been having some issues with my 4402 wLAN controller.
The issue is thus:
1) New wireless clients (those without exsisting DHCP leases) are unable to properly connect to our wireless network.
2) Those same systems (and other systems) have no issue getting online via a wired connection (where available).
3) Devices like iPad, tablets, laptops partially connect but do not get a valid IP address.
Our config:
1) DHCP is handled by a seperate server (NOT the 4402 - it's DHCP setting is disabled)
2) Our wLan is not on a seperate network than our wired LAN
3) Wireless devices attempting to connect include iPads and laptops mostly.
4) We're a school with about 300 systems (primarily Windows XP machines).
5) 25 access points controlled by the 4402 (our only wLAN controller)
Important Notes:
1) No configuration changes have been made to DHCP or the 4402 device in a couple years.
2) 4402 Software Version = 4.0.217.0
The problem first showed up a bit over a month ago. I first thought the issue was DHCP server related , so I started there and didn't find any obvious issues. I did restart the DHCP server (which at that point had an uptime of somewhere over 700 days).
I then also checked the web interface of the 4402 to see what it was reporting. I noticed a somthing:A) As shown in the "WLAN_Issue_EDIT.png" the client count on the controller is showing 628 current clients. We don't have many devices in our entire campus.
I rebooted the controller after hours and that seemed to allievete the issue. Since then, the current client count hasn't ever gone above 60.
Now today I'm having the same issue regarding new clients getting IP addresses. The client count isn't real high on the WLAN controller and I don't see any other obvious issues. I'm torn between this being a DHCP issue or the controller issue (or a combination of the two).
The reason I don't think it's directly DHCP related is that all wired clients seem to be getting address fine.Plus, I've set my tablet device to a static address and it still cannot connect via wifi.
**Update** I've now rebooted the controller and the problem persists (at least on the nearby iPad - Will confirm other devices shortly).
View 12 Replies
View Related
Mar 8, 2009
I'm monkeying around with an 881-W. Clients can associate and authenticate to ssid 'test', but they cannot get a DHCP address. Clients plugged into f 0 - 3 get DHCP addresses just fine.
I've looked at a lot of different guides, ran debugs etc. When wifi clients make DHCP requests the server never gets them. So there must be some IRB thing going on.
View 5 Replies
View Related
Mar 29, 2012
I have new 2504 WLC + 1041LAP. I configured the first DHCP scope on WLC and the first WLAN. Then I set WLC DHCP server in WLAN properties and tried to connect to WLAN with wireless clients.
My wireless clients are able to authenticate on WLAN, but not able to get IPs from DHCP. The only lease that DHCP shows is for 1041LAP.
If I set permanent IPs on my wireless clients, they can connect and ping WLC.
View 4 Replies
View Related
Nov 25, 2012
I am wondering if the folowing is a valid configuration:
WLC2504
AP2600
I need 3 SSID/VLAN, 1 for corporate devices, 1 for coporate smartphones, 1 for guest.
Port 1 on the 2504 should be used for management and corporate devices and connect to the corp network. Port 2 is for smartphones/guest and will be connected to a Cisco ASA 5515 that is connected to a second ISP.
Corp devices should get IP from an Windows DHCP. Smartphones/guest should get IP from the WLC. Is this possilbe? I read this in a document "To use the WLC as a dhcp, you need to enable DHCP proxy as it is required." Some how I am imagining that this will mess with the Windows DHCP. Is it better to use the ASA as DHCP for smartphones/guest?
View 4 Replies
View Related
May 27, 2012
My company AP 1231G is not passing the DHCP address to the client from the DHCP server, my config listed below basicly the AP is on its own VLAN 10.1.123.1 and the DHCP server is 10.1.10.2 -- trying to use iphelper to pass DHCP to clients and the AP is on static IP 10.1.123.2--
!
! Last configuration change at 13:15:56 +0800 Fri May 25 2012 by root
! NVRAM config last updated at 13:15:56 +0800 Fri May 25 2012 by root
!
[Code].....
View 1 Replies
View Related
Jan 27, 2009
I know this question was asked many times, but I'm still not able to finalize my configuration on 871w. LAN part works fine, but wireless clients do not get DHCP IP. here is the config:
Building configuration...
Current configuration : 2092 bytes
!
version 12.4
no service pad
service timestamps debug date time m sec
service timestamps log date time m sec
no service password-encryption
!
[ code ].....
I'd like to have LAN and WLAN clients in same 192.168.1.0 sub net.
View 3 Replies
View Related
Feb 5, 2013
I have 19 locations, each with 1 or more LAP1142N AP's in FlexConnect mode, AP's are primed using CAPWAP to my 5508 WLC at the datacenter. The AP's join the WLC without issue every time. I have two WLAN's, one guest and one staff, the guest network is open and obtains DHCP from a WatchGuard XTM33 firewall at each of the remote locations. The staff side is WPA2/RADIUS and DHCP is assigned from the WLC. Each AP is assigned a static IP that is not in the DHCP scope. For example: DHCP scope on the branch firewall is 192.168.1.10-250 the AP will be assigned static IP of 192.168.1.1.. The AP's are connected to a HP procurve switch that has a untagged VLAN, the firewall is using the native vlan 1 and so is the AP.
I have been running this network for over a year and it has not had a single issue until the last two weeks. Nothing on the network has changed or has been upgraded.The issue I am seeing is that clients are no longer able to connect to the AP and do not get DHCP assigned to them. I am able to get it working, if I remove the static IP from the AP, the AP will reboot, join the controller, then begin working, users can connect and DHCP is assigned from the firewall as it should. However, If the AP then reboots, the AP will join back to the controller but no clients can connect nor do they get a DHCP address. So, I then reassign a static IP to the AP again and it reboots, connects to the controller and clients then can connect and get DHCP.i've found several posts on this topic, in fact the patch of unassigning or reassigning static IP is one that I found. I am also waiting on my SmartNet to start up and will be contacting Cisco support as well.
View 15 Replies
View Related
Oct 9, 2012
I have a Cisco RV220W running the latest firmware (currently 1.0.4.17), and I have noticed that after about a week of use, wireless clients can no longer acquire IP addresses via DHCP.
I have used Network Monitor on both the DHCP server, and the WiFi client, and can see that the server is receiving the requests and sending a reply, but the client never sees the response from the server. So far the only way to resolve this is to reboot the router.
View 10 Replies
View Related
Nov 4, 2011
I've configured a 5505 but internal clients can't ping external ip. To test I've connect a pc with the ip of the default router on the Outside int the ASA can ping the PC and the PC can ping the ASA, but internal clients can't ping the PC
PC config 195.12.23.241/28
Here's the ASA config, so far I've wiped the ASA and started with a blank sonfig and built it up but still not working.
ASA Version 8.2(5)
!
!
interface Ethernet0/0
switchport access vlan 2
!
interface Ethernet0/1
!
interface Ethernet0/2
!
interface Ethernet0/3
!
interface Ethernet0/4
[Code] .....
View 2 Replies
View Related
Jun 15, 2011
Internet usage is very slow when initially opening a site from LAN clients. Once established it is OK. If I ping a site from an LAN client by either host name or IP address it takes about 5 seconds, drops the first packet then is fine after that. if I ping it again immediately afterwards it is fine. But if i wait 2 minutes and try again the problem returns. So I would conclude that seeing it is the same whether I use Host name or IP address it is not a DNS issue. Pinging from the router produces no fault at all. [code] I can ping the router internal and external interface or any internal ip or hostname from the LAN with no delay or hesitation so it is not a switch interface or network card problem.Some sort of NAT issue maybe? [Code]
View 7 Replies
View Related
Sep 9, 2012
Environment:
1. Core switch - Catalyst 6509e
vlans configured:
a. vlan 50 (wired clients)
[Code]....
here's the problem, wireless clients connected to WLAN guest keep getting DHCP leases from WLAN local 10.0.50.10 (scope 10.0.70.101 to 200)
View 11 Replies
View Related
Jun 24, 2007
Here at HQ we have a 4402 WLC. At our remote sites we have 1231G APs running in autonomous mode. I upgraded one of the APs -- IOS 12.4(3g)JA -- to run LWAPP. Per release notes I've read upgraded 1231's do not support REAP/HREAP mode, consequently, it's running in LOCAL mode.
The AP is managed by the WLC. I created a WLAN for the remote site and assigned it to the MGMT interface; the remote site subnet doesn't exist in HQ. The DHCP server for the remote site is presently at that site; AP and DHCP server reside at the same place.
Clients authenticate successfully to the remote site AP, however, they are not getting DHCP addresses assigned. Does the DHCP server for the remote site have to reside in HQ since the AP is running in local mode? If so, where is that specified, on the MGMT interface config?
View 4 Replies
View Related
Aug 17, 2011
I'm setting up a Cisco Aironet 1141 (standalone mode, AP) to handle wireless traffic in the office. It gives out 2 mbssids, one of which authenticates domain users through a RADIUS server and places them in an appropriate VLAN (RADIUS options 64, 65, and 81). The other is a guest ssid that uses WPA-PSK and places users in the restricted guest VLAN. Physically, the AP is connected to a 3750 PoE Catalyst, to which RADIUS and DHCP servers are also connected. AP, SSIDs, RADIUS and EAP authentication all work. The configuration given below is a working configuration. People do get authenticated and do get placed in the appropriate vlan. The problem is that, once authenticated, the "Obtaining IP Address" phase on the client hangs and most clients timeout without getting an IP address. Given that the DHCP server is on the same switch and a test simple ASUS Wi-Fi IP gives out the same scenario (except the multiple VLAN) at the speed of light, I don't think that it's a problem with the network connections between clients and the DHCP server. After reading some topics here, I realized that probably other communication will be extremely slow, as well, but haven't tested that for sure. Clients are all non-Cisco - smartphones, notebooks, etc. Most of them are 802.11G, not N.
View 4 Replies
View Related
Nov 27, 2012
We currently have a cisco 4402 with firmware version 6.0.182.0 and 4 WLANs currently running on it, we found the need to add an additional WLAN and after the configuration was completed and I tried to connect to it I found that we are not getting an address. If i connect a laptop to the VLAN I can get an IP and am able to browse. If i hard code an IP into a device and connect to the wireless i am able to connect and browse.
View 7 Replies
View Related
May 23, 2011
We have WLC-4402 and LWAP-1510, we have issue when users trying to connect to pppoe server with pppoe connection from wireless network. On LAN, pppoe connection work properly and everything is normal. Also I enable broadcast fowarding on GUI but he problem still exist.
View 1 Replies
View Related
Jun 9, 2010
I'm looking to setup AnyConnect VPN with no split tunneling. ASA 5505 v8.2. It seems this should be really easy. I must be missing something.
I can get the AnyConnect users to connect fine and they can access sites internal and at other IPSec-tunneled sites. But no access to the internet.
Internal is 10.1.1.x, VPN pool is 10.1.1.251-253 (Temp list for testing). I issued the following tracer: packet-tracer input outside tcp 10.1.1.253 12345 69.147.125.65 80 detailed
The last reported point (where it fails) is:
Phase: 7
Type: WEBVPN-SVC
Subtype: in
[Code].....
View 10 Replies
View Related
Jun 27, 2011
I have set up a remote access ipsec vpn on an asa 5520. I can connect, and ping internal ip addresses, however I cannot ping back out to the internet, nor can the internal network ping the vpn clients and dns resolution internal or external does not work. I am seeing nothing blocked in the logs on the asa.
View 3 Replies
View Related
Aug 24, 2011
I have a (single) client (it is a cisco IOS router) behind a wireless workgroup bridge (cisco1242).The client's IP address is obtained via DHCP from the wired network.Now, when roaming occurs, the Client will never have knowledge about this event,and hence will not renew its IP address until lease expiers. This is not a problem of course when Layer 2 roam occurs, but with Layer 3
roam it will interrupt the traffic.
The cisco's IP Mobile implementation does have this issue addressed in DCCoA scenario: the WGB is configured to send an SNMP trap on its dotradio state change;the cisco mobile router is configured with snmp-server manager to process this trap and start DHCP renew on the Down/Up event. Unfortunately, this works in Mobile IP scenario only because I cannot make it work without the mobile router registered with a home agent.
how to force DHCP renew on a client (cisco IOS router) in such a situation - event scripting, SLA, or ...?
View 5 Replies
View Related
