Cisco Wireless :: 5508 - Cannot Connect To Web Interface Of New AP
Mar 13, 2012
I am in the process of upgrading our wireless infrastructure from a series of APs centrally managing the infrastructure centrally with the WLC 5508 and new APs (1142). All seems to be going well, the APs see the controller and are downloading the latest information/changes and I can connect to a test network. The current issue I am having is that I cannot connect to the AP via the web interface.
The config for the management interface of the 5508 is:
interface GigabitEthernet4/0/20
description ** Connection to WLC-5508-01 **
Yesterday I was in one of our client premises configuring a WLC 5508 with software 7.2, went through the initial configuration wizard with no problem whatsoever, my issue began when trying to configure a ap-manager interface.In many WLC configuration guides cisco states that for 5508 it is not required to configure an ap-manager interface because the management will suffice, but then they put a side note recommending it's configuration for best practices and better performance. OK so I saw that in an earlier version document and now they do not make the recommendation but the still use the word required and for me that's still is not a limitation. I can't create the ap manager interface because when I put the VLAN ID it says the it is being used by another interface.
I'm setting up a new 5508. I've used the config from a 4402, have successfully connected to the Service port to manage the device, but for some reason cannot connect to the Management interface. In this case, port 1.
The service port is connected to a Catalyst switch and grabbed an ip address (10.2.x.x subnet) no problem. I can access the 5508 via https using the SP. However, port 1 is connected to the same Catalyst switch, but on a different vlan (subnet 10.20.x.x). Both ends show that the interfaces are up, I can ping the interface from any other host on the network, but when I try to manage the device via https I cannot connect. We are using WCS and I cannot add the device from the WCS. About all I can do is ping that interface.
at the moment we are using as default the manager interface as ap-manager interface.
Now I have to change the IP. I would like to change that very smooth with all our locations. My question, is it possible to add a ap-manager interface with a new vlan and IP Range, so that I can move the AP's to the second interface as as soon as it is planed with the location. Sometimes in special cases we have hard coded the WLC IP oder we just need to change the DHCP option but this needs to be planed and I see problem to do that in a hard cut.
After I've upgraded software to the v7.3 and applied AP-SSO it made imposible to access the controller's gui via Service-port. So we tried to access it by management-port, but there is some problem too. It is not working from another subnets. But default gateway on management vlan is set correctly and I even tried to turn of all acl's on switch. WLC is only accessible from the same network. But at the same time wlc is replying on ping fine.All other protocols cannot connect to the controller.
I am wondering if anyone has seen this before. We have about 50 AIR-LAP1242AG-E-K9 access points connected to a WLC5508 running 7.4.100.0. These were all being used as autonomous APs previously and were converted when the controller was installed. About 12 of these have a lovely feature where their radio interface goes down at random. The radio is still in enable mode but the opertational status is DOWN. It seems to happen particularly when there has been a power outage and the AP rejoins the controller. All of the other 1242s are fine and never sees this problem. The APs are all on power injectors.
Once the radio is down, the only way I can get the to come back online is by doing the following:
1. Set the radio admin status to "disable" and apply
2. Turn off CDP
3. Reboot the AP Wait until the AP is back online and registered on the controller
4. Enable the radio admin status and CDP.
If I do not remove the CDP setting I cannot bring the radio back to "UP". I know we had previous issues with autonomous 1242 APs that did not like CDP being enabled. Have I perhaps got a bunch that are like that? Despite these having operated as autonomous APs they are AIR-LAP1242 from the factory.
I have 2 x 5508 Wireless Controllers, 1 mgmt port on each as standard. I noticied something different between these controllers running the same code.I can bound a physical port to the mgmt interface on one controller but not the other (both interfaces are untagged)see below, this config appears on one controller but not the other? Is this something to do with the initial setup? How can I add Phyiscal information to the other controller mgmt interface, I cannot delete the mgmt interface. Physical InformationPort Number Backup Port Active Port Enable Dynamic AP Management?
I have got a wireless project with WLC main office and have 10 sites where ap's are there and ap's getting registerd .we need 4 ssid in all branches same .
ssid guest ssid scanner ssid user vlan 600 main office for scanner 192.168.1.0 in branch vlan 600 for scanner but ip is 172.16.1.0
and bgp is running . And customer is asking me not to edit the ip range or vlan or create new vlan . but in wlc am not able to create branch network 172.16.1.0 range interface and vlan 600 as vlan 600 i already created for scanner main office 192.168.1.0 So is there a way to do that .
Temprarly one site i did like created vlan 610 in branch no ip . And in main office interface vlan 610 given another ip range . and i created interface in wlc . from branch i can connect the ssid and getting ip . But they dont want to create any aditional vlan or another network . Customer dont have a smartnet contract . They recently baught 2 wlc 5508 and 40 ap 1142.
Since WLC5508 MGMT interface is configured a AP-Mgr at the same time, can I set a Backup Port to WLC5508 MGMT interface? Refer to WLC configuration Guide:
In the Backup Port text box, enter the number of the backup port assigned to the management interface. If the primary port for the management interface fails, the interface automatically moves to the backup port.
Note Do not define a backup port for an AP-manager interface. Port redundancy is not supported for AP-manager interfaces. If the AP-manager interface fails, all of the access points connected to the controller through that interface are evenly distributed among the other configured AP-manager interfaces
if I need to configure the backup port for MGMT interface, i need to remove the AP-manager on MGMT interface and create a network dynamic interface for AP-Manager ?
Im receving this error on my syslog server: capwap_ac_sm.c:1443 Ignoring Primary discovery request received on non-management interface (2) from APalready checked the configuration and everything seems ok. They are registered and with clients associated.What could be the cause?
I have a wireless controller 5508 and all my interfaces can be accessed via https or ssh from a wireless client. Management access from a wireless client is disabled so I don't understand why this is happening.
I have 2 WLCs (Cisco 5508) in my network. The primary has 16 Aironet 1261 APs connected. Secondary WLC is just staying there and no APs are associated with it. Everything works fine. I was accessing the controller via a wireless client all this time through the management interface 10.74.15.2 using https. It was working fine.But when I tried to access the primary using the wireled network, I can access the seconday but cannot access the primary. They are in the same subnet and I can ping both of them.
i have WLC 5508 showing the below Logs , which prevent the users from connecting to the SSIDs , also its disconnecting the associted users DHCP Socket Task: Jul 11 09:54:08.992: %SIM-3-DHCP_SERVER_NO_REPLY: sim_interface.c:1039 Failed to get DHCP response on interface 'interface-02'. Marking interface dirty.*mmListen: Jul 11 09:54:08.638: %MM-3-INVALID_PKT_RECVD: mm_listen.c:7671 Received an invalid packet from 10.21.1.25. Source member:0.0.0.0. source member unknown.it shows 3 to 4 times durring 1 hour ,
I'm trying to verify some behaviors I'm seeing with my 5508 controller setup, I've zero experience with this hardware and clueless on the best practices. With that said... out of the box I ran through the AutoInstall process.
I gave my service port an IP address on my subnet, 10.10.8.0/24 vlan 100 and gave the management interface the ip address 10.10.30.5/24 vlan 130
From my host I can ping the management interace 10.10.30.5 and the interface gateway 10.10.30.1 I cannot connect to the controller via 10.10.30.5 either through the web GUI or telnet I can connect to the controller via 10.10.8.200 both through the web interface and telnet while connected to the service port, I can ping the management port IP but I cannot ping the 10.10.30.1 gateway.
We have attached two test 3502I AP's and they found the controller and pulled correct ip addresses, clients can authenticate and access network resources as well as the Internet so for the most part, things are working but it concerns me that the management interface can't ping its own gateway.
I configure IP address on the management interface port 1 of 5508 controller when i connect it direct to my laptop i can't ping or access controller from my laptop even i connect through layer 2 switch still i can't not.
IP Address of management interface : 10.21.0.50 Laptop IP Address : 10.21.0,51
I have a Controller 5508, CAP 3501E.I have a problem, all client who connect in 802.11n connect only in Bn and not in Gn.When I diseable the n, the same client connect in 802.11g.
I need to install one 5508 and a 4402 together to bring redundancy to a wireless environment.Can I do this?. What are the neccesary steps to perform this?, the idea behind this is to bring redundancy is the primary WLC falls for any reason.
Before we were able to connecto to WIFI network when Cisco1231G APs were in Autonomous mode. After we connect all APs to Cisco 5508 WLC. And now we are not able to use our Wireless Cisco 7921G IP Phones.
I have a WAC CT5508. I can connect any devices wirless. I have Windows 8 Dell Latitude 10 laptop and I am not able to connect to the internet. Dell has a bullitin saying that Cisco-PEAP(GTC), LEAP, and EAP_FAST is not supported by the Cisco device. It supports all WPA security for the Latitude 10. How to check that my controller and access point is running WPA and not LAEP, PEAP?
We have a remote location with 1 LWAPP AP connecting to a 5508 WLC. We are doing 802.1x auth/wpa2 on 1 SSID for iPads to connect to. Now we want to simply connect a printer to print wireless using AirPrint from the iPads. The problem is how to get the printer connected to the wireless network specifically to the sane SSID? Will the printer need to support 802.1x or have the ability to do certificates? Is there a better way to do this.
Guestconnect SSID configured on 5508 WLC with Pass through athentication (NAC guest server). No issue with Laptops and Iphone/Ipad ver 4and 5. Only Iphone Ver 6 users unable to access Guest connect .
I have Cisco 5508 Wlan Controller and its having 6 Fiber Ports and I have AIR-LAP1131AG-E-K9 Access Point. Can this Access Point will work with this Lan Controller? Can i connect 3 switches to this wlan controller?
We have two SSID's Guest and Corp. We are using 5508 controllers.
The problem is that if an iPad user is connected to Guest SSID and then try to connect to Corp then it fails saying "Unable to connect to Corp". After 10-15 retires the same iPad connects successfully. The problem doesn't happen on windows PC. I have attached debug for one of the clients.
I have a wireless 5508 with license base to 50 aps, i use a deployment flex connect. I already registered all my access points, I use web authentication to authenticate users guest, and the service dhcp is in the central site.
My issue is the users in each remote site, can not get an ip address by dhcp from the central site, they can authenticate in the guest ssid, but any users can not get an ip. The request is passing by the wan in this way
Central Site DHCP - Router WAN - Remote Site - Users with notebooks. I use flex connect central deployment (all the traffic consulting to the wlc) .
perhaps i should use local deploy? The wireless is in the central site.
I have a 5508 WLC and 40+ LAP1142N APs spread across 19 locations that allows staff to connect to our private network via wireless. I recently deployed about 40 new laptops all identical make and model HP ProBook 4530's and all have the same client setup for the wireless. Out of those 40 laptops I have 4 that will not connect to the private network. However, these same laptops will connect to my public, open wireless network without issue. In addition to the 4 that will not connect all the others will prompt twice for network authentication.Now, I have about 10 other laptops that are not the HP model and all connect without issue and without dual propt. I don't think this is a wireless network issue but could be some type of issue with this model of laptop.
Has anyone come accross a problem whereby an SSID becomes unavailable when selecting a Radio Policy of '802.11g Only'? The SSID is configured identically accross multiple controllers, but only works on the WISM's. The same WLAN profile on a 5508 is unavailable unless I select a Radio Policy of 'All'.
All controllers (WISM's and 5508's are running 6.0.188.0)The WLAN profile is using MAC Filtering[WPA2][Auth(802.1X)] as the security policy.
We have implemented WLAN using Cisco WLAN controller (5508) and AP (AIR-CAP3502E-E-K9), i am trying to connect AP (which have gigabit port) with Layer 3 switch using UTP Cat-6 Cable having 24 AWG Wire Gauge.
What maximum length i can achieve by using above mentioned cable?
Is it possible to assign a single ssid to multiple interface groups by assigning the ssid to multiple AP groups?
I have buildings geographically dispersed that are configured with multiple vlans in interface groups so that I can maintain an addressing scheme of dhcp assigned addresses per building. Each building is also further grouped as AP groups. I'd like to know if by assigning the same wlan ssid to each of the AP groups, will I maintain addressing integrity for each building? I'm thinking it will work.
Do the buildings have to be outside AP range of each other to avoid problems?
I got a problem when I use WLC 5508 connect to LDAP for authentication, but no luck there, it's a simple config, but not easy to work on my job, I got the following messgae. [code]
For reasons I will explain in a separate thread, following a firmware upgrade to version 2.00.21, I am no longer able to connect to my WRT300N using the web interface. The device seems to be working fine (but for the lack of the web config access.) I'm loathe to leave it "inaccessible" and would like to use the Setup CD-ROM described in the manuals to connect directly to the device to see if I can fix the problem.
I have been through my "filing system" (read "junk room") to try to find the original device packaging, wherein I am sure I would find the original CD-ROM. Is there anywhere I can download an image of the original Linksys Setup CD-ROM for the WRT300N version 2.0 device?
I've updated the firmware to unofficial url... and since then I can't connect to router through web interface. What can I do? Is there any way to update firmware back to official without web interface?
