Cisco Wireless :: Aironet 3602i Not Working With SAP (NetWeaver) Client
Jul 16, 2012
Wireless client connected to a 3602i AP running on 2500 series WLC with a latest 7.2 code. Client will now connect to AT&T vpn client - success.Client will connect to SAP application using netweaver gui - failed.With the same scenario, except for the access point being used, client will connect to SAP application using netweaver gui
I need to configure a Cisco aironet 3602I-K9 because when I connect by the console I can do anything to change the p reconfiguration, this aironet is new and I want to change to autonomous AP, appear errors like:
Translating "CISCO-CAPWAP-CONTROLLER...domain server ()"
CAPWAP-3-ERRORLOG: Invalid event 38 & state 2 combination . Not in Bound state. I tried to enter to configuration mode but dont valid the configuration terminal command or set command, why happens that?
Installed a new 5508 WLC last week, and finished bringing 68 new 3602i access points online in our College Dorms. We are seeing a lot of "Client De-authenticated" errors "Reason: Unspecified Reason: Code 1. Years ago I asked about error code 1. The reply from Cisco was: "The programers put the code in. It basically means we don't know what the problem is."Got a call from one of the dorms stating that students were getting knocked off the network while going to sites. If a student is wired, network is solid.Walked the dorm in question and was getting full bars of signals at all times, and was able to stream a movie from my Ultraviolet account without any break or slowdown as I moved from access point to access point. So.. my device, an iPad, was fully mobile and did not experience any disconnects.Did observe one student using a MacBook Pro. This student was constantly loosing connection to the access point. Checked the controller for the MAC of the student's computer. I did find deauthentication errors. BUT... this student's error was the computer was receiving an IP address from the DHCP that was already in use. At the computer the error message was a timeout issue.I am just learning the ropes on the 5508. Have used 3 4404s for the past six years.
A Cisco RV220W router/firewall connects the local LAN to the internet. The router is connected to a new Cisco SG300-28P switch configured in Layer 2 mode. There are two new AIR-1142N wireless access points running in autonomous mode connected to 2 ports on the SG300 powered through PoE. The AIR-1142N access points are running the latest firmware version 15.2(2)JB. There are two VLANs defined: VLAN1 is the native on all devices, and VLAN2 is for wireless guest traffic to provide access to the internet only.Internal/staff traffic is on 192.168.100.x, and the wireless SSID is MYNetS.Guest traffic is on 192.168.200.x and the wireless SSID is MyNetG.IP addresses are being assigned by the RV220W.
All works well with one exception. Wireless clients on the internal SSID are able to ping/access the switch, router, and other clients on wired ports on the switch. The router, switch, and wired clients can ping wireless clients. However, wireless clients, on the same SSID and the same 1142N cannot ping/access one another. They are being isolated from each other. We absolutely need to have this capability.The SG300 does not have port security enabled on any port. none of the workstations/laptops have a firewall enabled. These laptops are all Macs btw. I have checked that neither of the 1142N access points have Public Secure Packet Forwarding enabled on either of the VLANs.I am at a loss as to why the wireless clients are being isolated.
I just installed an Aironet 1140 to replace a Netgear ProSafe access point that I had in my network prior. I'm having one issue that I can't figure out though. None of the client PCs can establish a connection to an external (over the internet) VPN server while on the Aironet wireless. If i unplug the AP and plug a PC into the same port that normall feeds the Aironet I can VPN just fine.
Is there any "VPN Passthrough" option that needs to be enabled somewhere on the 1140 that is blocking this traffic for some reason?
i'm running the following IOS BOOTLDR: C1140 Boot Loader (C1140-BOOT-M) Version 12.4(18a)JA3, RELEASE SOFTWARE (fc1) and I've included my running config below
Current configuration : 2092 bytes!version 12.4no service padservice timestamps debug datetime msecservice timestamps log datetime msecservice password-encryption!hostname ap!enable secret 5 [omitted]!no aaa new-model!!dot11 syslog!dot11 ssid MetroC authentication open authentication key-management wpa guest-mode mbssid guest-mode wpa-psk ascii 7 [omitted]!!!username Cisco password 7 [omitted]!!bridge irb!!interface Dot11Radio0 no ip address no ip route-cache ! encryption mode ciphers aes-ccm ! ssid MetroC ! antenna gain 0 speed basic-1.0 basic-2.0 basic-5.5 basic-11.0 basic-6.0 basic-9.0 basic-12.0 basic-18.0 basic-24.0 basic-36.0 basic-48.0 basic-54.0 m0. m1. m2. m3. m4. m5. m6. m7. m8. m9. m10. m11. m12. m13. m14. m15. station-role root bridge-group 1 bridge-group 1 subscriber-loop-control bridge-group 1 port-protected bridge-group 1 block-unknown-source no bridge-group 1 source-learning no bridge-group 1 unicast-flooding bridge-group 1 spanning-disabled!interface Dot11Radio1 no ip address no ip route-cache ! encryption mode ciphers aes-ccm ! ssid MetroC ! antenna gain 0 no dfs band block speed basic-6.0 basic-9.0 basic-12.0 basic-18.0 basic-24.0 basic-36.0 basic-48.0 basic-54.0 m0. m1. m2. m3. m4. m5. m6. m7. m8. m9. m10. m11. m12. m13. m14. m15. channel width 40-above channel dfs station-role root bridge-group 1 bridge-group 1 subscriber-loop-control bridge-group 1 port-protected bridge-group 1 block-unknown-source no bridge-group 1 source-learning no bridge-group 1 unicast-flooding bridge-group 1 spanning-disabled!interface GigabitEthernet0 no ip address no ip route-cache duplex auto speed auto no keepalive bridge-group 1 no bridge-group 1 source-learning bridge-group 1 spanning-disabled!interface BVI1 ip address 192.168.1.3 255.255.255.0 no ip route-cache!ip http serverno ip http secure-serverip http help-path [URL]
I have a Cisco Aironet 1100 series access point (AP1120B) that after resetting to factory defaults the default username and password (Cisco and Cisco) aren't working in the web GUI. I am able to telnet to the AP's IP and log in with Cisco and Cisco but don't know the ENABLE password. I have tried Cisco and cisco and everything else i could think of with no luck.
I also have a Cisco Aironet AP1242AG that is doing the same thing.
i've been looking for a way to isolate clients on a Cisco Aironet 1121 on a certain SSID, and i cant find anything, tried pretty much everything i coudl remember, but since im no expert on Cisco wireless.
Quote:
Cisco IOS Software, C1100 Software (C1100-K9W7-M), Version 12.3(7)JA1, RELEASE SOFTWARE (fc1) Technical Support: [URL] Copyright (c) 1986-2005 by Cisco Systems, Inc.
I upgraded WCS to 7.0.22 and the WLC to 7.1.91.0 so that I could add four 3602i's. Funny thing is that they all work fine except that none of their LED's are 'lit' up. They look dead.
On our conference floor, AP 1242AG already exist but I am going to add AP 3602i to increase wireless coverage. . Any issue or concern with this type of setting?
I have a problem configuring ClientLink on a FlexConnect local switching AP (3602i), the problem is that I can not see the clients that are using the ClientLink feature when entering the show interface dot11radio 1 lbf rbf command, the AP shows "Hardware beamforming stats not supported (radioid 0x3B00)" message instead of show the client information. I am using a 2504 Wireless LAN Controller running 7.3.101.0 software version, why is not working properly?
I am performing a new install of a WLC 5760 and 3602i APs. I have limited experience in setting up WLCs. I am hitting a brick wall in getting the AP to join my WLC. My primary document has been this deployment guide:url...I have also sifted through many of the relevant portions of these guides: url...
I went through the setup wizard and followed the instructions in Ch. 2 to the letter (or at least I think I did). I have DHCP options 43 and 60 configured per the 3600 series Getting Started Guide.I believe my AP discovery process is sound because I see activity when I power on the AP and perform debug capwap ap all from the WLC. I have highlighted lines that I think are relevant. I have attempted to find the answer on my own by searching the Internet for these phrases. [code]
I've been configuring hundreds of 3602i APs via Prime without incident, but I've encountered 2 APs that get to the ap: prompt and doesn't proceed further. If I type boot, then they'll complete the boot process.
How do I configure these 2 APs so they will automatically boot fully?
We have Cisco Aironet 1240AG Wireless AP's in out network. Now, we have some PC's, laptops and mobile phones connected with with this AP and all devices are working fine. Now suddenly from today when I am trying to associate some new devices to the AP it is not working means the devices are not associating.
We are evaluating the 5508 WLC Series controller. When trying to associate the 3602i/e wireless access points we have no success. However the 1131 and 1242 legacy AP's will associate.....LWAP Vs CAWAP ?
We've reloaded the 7.2.130 code and it didn't work.
Access point gives all junk vlaues in console. I am getting all outputs while booting up and executing commands. But To say, it is as simple as printing with spelling mistakes
when I did connect the AP to the switch and this is already connected to the WLAN 2500, I got this error message [code] And this AP is not joined to the WLAN 2500, but if I use one model of AP like LAP1120 it works, that mean, the wireless is able to see the Ip Address.How can I do to correct the problem with the AP 3600 series?
, I have ipsec vpn setup on an asa5505 at one of my office locations but when I try to log in to the vpn with the vpn client it just dont work but I have a Linux laptop with vpnc loaded and that connects just fine no problems there ? by the way on my windows system i Have vpn client 5.0.07 asa5505 8.0.(4) asdm 6.1.(3)
I have a situation here where after migrating from PIX 6.3 to ASA 8.4, VPN connection from window server 2003 and 2008 fail to connect. Strangely, win7 or win 8 works perfectly well.
It failed due to reason=DEL_REASON-IKE_NEG_FAILED
The diff we can see is win 7 is 32 bits and the server client version is 64bits.
I need implementation of the AirCap 3602i wireless access points. Is there a way to manually configure a AirCap 3602i to function without a WAN controller?, I have an older 4402 WAN controller that will upgrade to 7.0.235 firmware, since the AIrCap 3602i requires 7.2.X firmware, is there a workaround for this.
I can not get our 3602i AP's to register with our 5508 controller which is running 7.2.103.0 code. We keep seeing an error in the log on the WLC "AAA Authentication Failure for UserName:c46413c08e92 User Type: WLAN USER" and on the Access Point we are seeing [code]
I entered the CAPWAP ap controller ip address directly into the AP so it shouldn't be an option 43 DHCP issue
I have a couple 3600s that don't want to join. One i and one e that are both doing the something. It is able to find the controller via layer 3 discovery but it is acting like it is a mesh AP when it tries to join the controller.
From the 2500 controller (running 7.2) *spamApTask2: May 13 12:03:05.272: f0:f7:55:ae:xx:xx Mesh AP username f0f755aexx xx. *spamApTask2: May 13 12:03:10.739: f0:f7:55:ae:xx:xx spamProcessJoinRequest : RA P, Check MAC filter
From the 3602i flash:/mesh_start_cfg.txt: No such file or directory. The filesystem containing the variables may not be initialized yet.
I should note that 3500 APs are able to join this controller. The field guy is going to try to add the MAC address to the filter list when he gets back out on site to see if it allows it to join.
I installed on 2 different PCs (Win7 64-bit) the Cisco VPN Client 5.0.07 with the same VPN profile for 2 different users. We use an ASA5505 (8.0(5) sec plus license) as the VPN end point for the clients. The VPN Clients can connect simultaneously to the ASA, they receive the split tunnel infos but only ONE client can ping the internal network ip range. The other one has no access to the internal resources! When they separately try to connect, there is no problem. Each of them can reach the internal net.On other 2 PCs (Win 7 32-bit) the clients have no problem reaching the internal net (simultaneously connect).
I have installed the new version of DCNM Prime (Version: 6.2(1) and all installation process went well without any error or warning, DCNM SAN client works well I can loggin and manage my MDS and UCS, but I have big issue to run DCNM LAN client after successful logging I have window that freezing and nothing is displayed (see printscreen attachment) I reinstalled several time Java, installed four version different of Java, tried this client from three different PC and still have the same issue.
I've recently installed a Prime DCNM 6.1(2) to a Windows 2008 R2 SP1 64 bit version. It seems to be working fine, apart from the DCNM-LAN client.If I login with the Java client, I got the GUI, however it remains blank - I can see the menu, but no data at all. It seems it cannot cummunicate with the DCNM server. DCNM-SAN client, the WEB client and the Device manager works fine, but I just cannot make this work.Tested it from Win2k3 SP2, Windows 7, and the server itself, with Java 1.6.31, 1.6.37, 1.7.13.
I upgraded my 3602i survey ap the other day to the public image the other day and I have to say.. I've got it up and going of course, but I have a concern on the transmit power settings. Originally, the only option it gave me was MAX and -4, which I hadn't seen before, interesting.. -4 of what? 20? 17 probably or I though? At any rate, I went into the CLI to set the power manually, no issues there, though my options are not what I expected, maxing out at 25mw basically, which is fine but.. in setting it manually in CLI, the web interface reports an Error on transmit power. So.. does this work or not? Any survey with this image to verify it's power settings? 15.2(23c)
I recently upgraded from a WRT54G and am having issues with a Win7 PC with wireless-N. Initially I had it configured static at 192.168.100.100 and everything worked, but the speeds were miserable (I followed all the forum posts and recommended settings). I noticed in the Status section of the router pages that the system showed up with the correct MAC address, but the IP showed as 192.168.100.10, which is the same as the router. Assuming this might be causing issues, I set a reservation for the system at .100 and set the client to use DHCP. However, now it won't pull an IP address at all. The status pages show the client with the correct MAC address, but an IP of 0.0.0.0. I've verified the MAC address a dozen times and rebooted the router and the client dozens of times with no change. Even when I removed the reservation, the system won't pick up an IP. I have a wireless-G client that's pulling an IP fine, so I know it's sort of working. The wired LAN is working fine, too. There are no IP conflicts, either. I changed DHCP to 'Always Broadcast (compatibility for some DHCP clients), but no change there, either. The client sees the network and still has a good signal, but just won't grab an IP.
A customer of mine has two RV082 in different locations. The "main" router is providing a gateway-to-gateway VPN tunnel, and is also used by a few road warriors for VPN access. We've had some issues with the "main" router lately, so we've decided to exchange it for a brand new device (v3). The old RV082 was a hardware revision v2 device, so I had to manually rebuild the config on the new router. The new router is working fine so far - connectivity and gateway-to-gateway VPN are fine. IPsec Client VPN, however, doesn't work at all. The config of the new router is identical to the config of the old one, IPsec Client VPN used to work fine on the old router.
The router is running the latest firmware (v4.0.4.02-tm). I've been trying to make IPsec VPN work with "QuickVPNplus ver: 1.0.6" and the "Cisco QuickVPN Client v1.4.2.1". From what I understand, both programs first connect to the routers external IP and download some sort of VPN config file. The info in that file is then used to create the actual connection. The problem is that the config file is invalid. It contains HTML code instead of config data. This is the code: "<HTML><HEAD><meta http-equiv="refresh" content="0; URL=/cgi-bin/welcome.cgi"></HEAD><BODY></BODY></HTML>". The URL is the same I see when logging in to the admin interface of the router. The Cisco client tells me in its "wget_error.txt": "rwConnStart message=All 1 wget requests did not return a valid vpnserver.conf". Both clients connect to the router fine, and the config download itself is working - only the returned data is invalid.
I've already tried lots of stuff to make the problem go away - enabling/disabling the firewall, VPN passthrough options, and other things. I'm beginning to think that there may be a bug in the firmware I'm using, or that the way Client VPN works has changed in a way that makes connecting with a client implementing the "old" method impossible. By the way, PPTP is working fine, so we're using it as a temporary workaround. My client, however, isn't happy with this workaround - he bought a relatively expensive router so he can make use of its advanced features, after all.
I have a user using windows 7 64 bit. I tried vpnclient-winx64-msi-5.0.07.0290-k9.exe and vpnclient-winx64-msi-5.0.07.0440-k9.exe. Installation is fine. Connecting is fine. But no traffic goes through.The remote end cisco is 1811 VPN Server split tunnel. User get authenticated by Radius server.
After connected, user get the correct IP address. In router, sh crypto session, it has SA, etc. But sh ip route, can't find the Static route point back to the client IP like other connections.
At user end, windows show the IP address but no gateway. Windows route print shows the VPN network via gateway xxx.xxx.xxx.1 which is not available.Other 32bit users have no issues with VPN.
Attempts to run remote desktop client a laptop on a tower using a CAT 5 Crossover isn't working. After starting the remote desktop on the laptop, I'm asked to identify the other computer, which I do, and a remote desktop window with a black background pops up, as expected. But I expect an opportunity to login will be displayed after a second or so. That never happens. After about a minute this pops up:Remote Desktop Disconnected?Your Remote Desktop session has ended.The connection to the remote computer was lost, possibly due to network connectivity problems. Try connecting to the remote computer again. If the problem continues, contact your network administrator or technical support.
My clients are impressed with my ability to setup their networks, Linksys routers with WIFI. But toss something unfamiliar into the mix, like this situation, and I'm pretty lost, pretty quick.
Environment: Hospital's WIFI. Laptop running XP Home with WIFI and Ethernet. Tower running Win 7 Ultra with Ethernet. Cat 5 crossover cable.
Goal:Configure laptop to access Hospital's WIFI. This is successful, I'm using it to post this. Configure laptop run a remote desktop with the tower as the server. The tower, running Win 7, has no monitor. I don't have a flat screen monitor, and didn't feel like dragging an 80 pound 24 inch Nokia into the hospital.After reading some sites while trying to figure this out, I gave the laptop the same group name, workgroup, as the tower.In my experience, starting the tower has been, turn it on, and it boots to Win 7. But I can't watch that happen without a monitor. I can't configure the the tower's network connections without a monitor either.I purchased the CAT 5 crossover cable yesterday, for this occasion. The label on the plastic bag it was packaged in had the word "Crossover" on it. I connect the CAT 5 to the laptop's single ethernet connection, and to the tower's Intel pro card. At home the laptop is on WIFI, the tower connects to the router.
