Cisco Wireless :: Configuration For WLC5508 To Be Used For Site
Jun 6, 2012
looking at doing the site survey before detailed implementation. we plan to use a wlc5508, AP3602, a good tripod/stand, PoE switch and AirMagnet to conduct the site survey. i'm inclined to use a single AP and just a guest SSID and let AirMagnet merge the readings on where i 'locate' the AP (on 1 VLAN)
In one week I need to import the config from my 4404 WLC to my new 5508, then I just want to change the mgnt IP address of the 5508 and then bring it into the same mobility group.How do I import the config when the 5508 is straight out of the box?
I have WLC 5508 with 6.0 software and kept in main office and 10 sites are connected . I created Group and hreap for the sites AP.Now customer wants the secondary WLC to keep on one another site. And the customer is asking all the configuration like ap group and all should come to secondary wlc automatically . In future also if he create any new group in primary it should come in secondary wlc.And if primary goes down the secondary should controll all the sites and when comes up primary should taken care.Active standbye mode.
I have on my desk a WLC-5508 that I need to setup to ship to a remote location. Normally we configure 4402 model and this model/version appears to be much different. I am trying to configure just enough via the command line to access the GUI via a laptop directly connected to the device. I’ve gone through the Wizard Configuration Tool where you set the hostname, admin account, and management interface (among other things). We use LAG and tagged VLAN on the management interface. I’ve been told in the past this is how we configured the 4402 models via laptop directly connected once the GUI is accessible, but with LAG enabled I don’t understand how a laptop could communicate via trunk, so I've disabled LAG and set the VLAN to untagged. In either case the laptop does not communicate with the WLC. Skipping ahead to my current setup I see the following information via the CLI:
I want to start implementing a small outdoor mesh network of 3 APs Aironet 1550 in order to grow afterward with more APs. Is there any way to configure those 3 APs in an outdoor mesh configuration (for example, only one RAP and two MAPs) without a Wireless LAN Controller or I have to have at least, one WLC? My idea is to have a WLC 5508, but at the very beginning I don't know if my budget is gonna allow me to cost the WLC.
is there a way on a WLC5508 to push the same configuration on multiple APs in 1 shot?I need to change the High Availability settings on most of the APs (not all). And the only solution i find is to do 1 by 1...
i have one asa 5505 that have classic remote access vpn set-up and now i need to add site-to-site tunnel on top of the existing configuration. Is that possible with asa 5505 and do i need some special IOS bundle for that? May i use vpn wizard for that or do i need to go through cli since remote access vpn is setup using wizard.
Site A - headquarters 192.168.1.x Site B - remote office 192.168.20.x Site C - remote office 192.168.30.x
Site A - ASA 5510 Site B - ASA 5505 Site C - ASA 5505
Site-to-site VPN is established and works between A and B, A and C. Users would like to establish a tunnel between B and C to work on a common project and the data is on Site B.
I tried configuring the S2S VPN with pre-shared keys on both firewalls at sites B and C but in the end it is not established (I cannot ping either side). I used the Wizard interface multiple times and one time the CLI. I generally followed the settings chosen between the headquarter and the individual remote sites and tried to replicate them. Obviously I have made a mistake somewhere.
Could there be any limitation on the ASA 5505 in terms of licensing and the number of S2S tunnels?
I am attempting to establish a Site To Site VPN between our SA540 and 2911 routers and somewhere I have a misconfiguration that eludes me. I suspect maybe in the 2911 Transform Set? Here is the output from the SA540. [code]
I have a problem with a Site to Site VPN configuration between an ASA 5505 and a 1941 ISR. I can get tunnels without NAT up without any difficulty, but there are several remote sites with the same inside network which need NAT to traverse the tunnel from those ASAs to the ISR, which is acting as a hub.
The tunnel from ASA (1) to the ISR vpn router is working perfectly, but the tunnel to ASA (2) is not working. From what I can see in an ASA packet trace that tunnel is sending the NAT traffic out to the internet, rather than across the tunnel. I have tried using the NAT subnet as the interesting traffic for the tunnel, the LAN subnet as the interesting traffic for the tunnel, static NAT entries, policy NAT entries, but all have failed. [code]
How do I get the tunnel to see the NAT IP addresses?
I configured every thing in both site, there is a connection between my sites BUT I can't access my resources from Site B with it has RV042. It also shows that it connected to my ASA in Site A but there is no traffic between sites !!! I don't know what should I do now ?
We are attempting to implement a VPN configuration using an ASA 8.02 at a Central site which terminates remote site VPN connections from IOS routers (12.4), using static crypto maps. We have a functional configuration, but looking to implement a backup site-site configuration on the ASA, using different service providers. The observation is that as soon as i add the 'connection-type originate-only' to the crypto map on the ASA, the tunnel is fatally broken. As soon as statement is removed the tunnel comes is restored. just wanted to confirm that the 'connection-type originate-only' configuration on the Central ASA is supported with the Cisco IOS peer. Documentation seems to indicate there is some sort of proprietary exchange that is supported only between ASA peers.
Currently we have 20 remote sites, each with 2-5 AP's each. They all connect back to our Main Data Site in the US and register on a single WLC5508.
We do not have a backup WLC, but are looking to purchase one. What I would like to know is, are there any problems with the secondary WLC being installed in our Main Data Site in Europe? These two main sites are connected via a 10M MPLS WAN.
So all the remote sites could still connect to the WLC in the US, but in the event of a WLC failure in the US, they would need to fail over to the site in Europe
I'm using WLC5508 /w 7.0..My client do not get its IP. Status shown "DHCP_REQD".I found in (Cisco Live) Troubleshooting Wireless LANs with Centralized Controllers This related with Enable/Disable DHCP Proxy checkbox. I solved. with Enabling this.But,
1) Why this box have been working correctly for longtime? No one did diable/enable this feature on my box.
2) I guest, ver7.0 Disables this chechbox by default. Or not? I also have others two 7.2 boxes. Those are all Enabled.
I just installed a new RV 120W to replace my dlink router.The problem is i cant display the configuration site (192.168.1.1). My internet is working fine and when i go to 192.168.1.1 i can logon (with the password i set using the installation disk) but then i see the top of the config site (blue) but where the config panel should be i see `site cannot be displayed`.
I have some problem about dhcp via VMware 7.1. My client connect the wifi and get ip address well, then, i turn on VMware (inside my computer) and set as the bridge mode. I found that my VM cannot get the ip-address from dhcp server and I using WLC5508 version 7.2. I try to connect via Switch, my VM get the ip address well.
A customer have a bad coverage in a corner of his branch office. He like to add a mesh AP (MAP) in the near of that corner.
I checked allready the documention about Mesh but i'm not sure if Flexconnect and Mesh works togheter. This MAP is in a branch office and the WLC is in the head quarter therefore he likes to uses Flexconnect togheter with Mesh.
I have a customer who is going to deploy a WLC HA AP SSO setup. I have recommended them to have 4 Gigabit SFP modules in each WLC5508.The customer now asks if it is possible to only have one or two SFP modules in the standby unit ? As he says it is properly not going to go in service one time within the next five years if he is unlucky.
We have five cisco WLC 5508 and one WCS .The WLC is running on 126.96.36.199 version at present but we want to upgrade it to 188.8.131.52 but on cisco site at download location , the below thing is mentioned...
WLC Version 184.108.40.206 will need Prime Infrastructure Version 1.3 to be managed, Version 1.3 is not yet available to download at this point of time
Access Point Model----Cisco 3501i Series
So i want to know, can i upgrade it to this version when we are having the WCS in our network ?
I had set an admin password and user's password. It was not same password. In this setting, there was no problem. Sure, no problem at connect from private IP, internet IP or just reboot and anywhere. The problem is the next.
If you got an electronic timer-switch and apply the DIR-615 then you cannot obtain an admin privilege from a remote. It just general user's permission even if I put the admin password.
I have been DIr-615 E4 hardware and 5.10 firmware. It does not happens at local IP address(i.e. 192.168.0.1) but it happen as trying connect from a remote IP address after AC plug re-powered.
I am doing use the AC timer for the remote internet managing at every day. It useful things for the router and IP camera. I need a admin privilege from a internet for the router managing.
I have been asked to setup wireless and we have purchased WLC 5508 and 1142 APs.We have several remote sites and a centralized WLC. The requirement are to have a common SSID (Corporate) advertised across all the remote sites and have that SSID locally switched, and have another two SSID Guest and Mobile tunneled back to the central site (WLC).I want all the wireless (Corporate) clients to use the same subnet as the wired clients at each remote site, the IP assigment will be done by a DHCP server at the central site. The Guest and Mobile users will use a common subnet each across all the site and this will also be handled by the DHCP server at the central site.
I have enabled H-REAP with Centralized Authentication and Local switching but I'm not sure about the second part which is to have a common SSID (Corporate) across the remote sites and localy switched whilst having the other two SSIDs tunneled back to the WLC. Cisco TAC told me to configure dynamic interfaces for each of the remote site but then he said I still wouldn't be able to switch the Corporate traffic localy if I use a different subnet to the wired subnet for the wireless clients.
My problem ist that i have 4 air-cap-1552e APs witch are powerde trugh Power Injectors. They worked fine for a few days but then the controller (220.127.116.11) lose connection to them. Right now i have only one Joined AP. The other 3 are status not joined. I can Ping all 4 Aps and wifi clients are connected through them.
I tried to implement WLC5508 in my network but when I came to connect it to the switch core which is a Catalyst 4000 the link didn't get up. This switch module is a fastethernet, I wonder if that might be the problem since I also tried connecting my laptop to the WLC and the link got up.
If that might be the cause, is it possible to get WLC to 100 Mbps?
we have a cisco WLC 5508 on which few SSIDs are configured, and two kinds of APs: AIR-LAP1142N-E-K9 and converted AIR-AP1141N-E-K9.
When in WLAN settings we leave WPA2 policy and AES encryption, iPads2 can connect without any problems to AIR-LAP1142N-E-K9, but there is no connection to converted AIR-AP1141N-E-K9. MacBooks, iPhones are connecting without questions.
When we set WPA2+TKIP everything is cool, but other Apple devices can't rich 802.11n speeds((
With only WPA2+AES or both WPA2+AES+TKIP enabled on a WLAN the WLC gets such messages :
Decrypt errors occurred for client xx:xx:xx:xx:xx:xx using WPA2 key on 802.11b/g interface of AP xx:xx:xx:xx:xx:xx
But I know that it can happen when you offer funny encryption combinations that client doesn't like (wpa1+aes, wpa2+tkip). But the advise to try to only enable wpa2/aes for some reason doesn't work.
how to set up support 802.11n on WLC4404 or WLC5508 in the 2.4Ghz? WLC4404 supports 802.11n? or support this protocol only in the brochures? I spent a few days, but did not get the result. I'm connected at speeds 65/130Mbit, but the real speed tests never exceeded 45Mbit. The AP from the test laptop is 7-10 meters.I tested the laptops with a Linksys AP E1200-EE ( 40Mhz, FastEthernet uplink port...)and received nearly 100Mbit!
At WLC5508 able to connect at speeds 150/300Mbit/c but only in the 5GHz band, but real speed tests never exceeded 70Mbit.In 2.4Ghz range I connected at speeds of 130/144Mbit/c, but actual measurements showed no more than the 45Mbit.
All tested with iperf and with site speedtest.net. iperf -w64K -s iperf -w64K -i 2 -t 300 -c x.x.x.x
Laptops: Asus (Atheros AR9002WB-1NG) and Sony (Advanced-N 6230).
My tests AP: 3501I-E and 1252AG-A SW on WLC5508 18.104.22.168
AP tested in different variants - open system and WPA2+AES.
I have two WLC5508 controllers running 22.214.171.124, which having the two of them probably is inconsequential because all the APs are added to only one controller. The problem I'm facing is that I have several LAP1552E's deployed throughout my facility, and I have several that are doing Ethernet bridging to some Cisco switches using G0. In this, I have a PC at the end of one of these switches, and using Iperf and PingPlotter to get some metrics, and what I'm seeing is >400ms latency with <3 Mbit throughput to the PC. On the 802.11a radios I have 18 Mbit set as mandatory, with everything below disabled and everything above Supported, with all MCS indexes under 802.11n enabled.
My channel is set to 161 with a 40 MHz channel-width, and a power of 3 configured.After many days of trying different power settings, channel settings, and such, I can't get better results than above and my channel utilization stays > 75% at all times. I do have video cameras attached to the other bridges switches, and have video QoS set to Bronze and the cameras configured to ~ 1 Mbit bandwidth maximum. Also, average RAP-MAP distance is ~ 1100 ft and average MAP-MAP distance is 400 ft, with the longest RAP-MAP being 1400 ft and MAP-MAP distance being 875 ft.