Cisco Wireless :: DHCP Error With WLC 2504 And Aironet 2600 Setup Across Subnets
Apr 2, 2013
I have just setup a new WLC 2504 controller to manage a WiFi service that will span 6 geographic locations. The local networks at each location are on different subnets (all 192.168.x.x) and are linked up via IPSEC VPN links, and there is Active Directory spanning the sites, with DNS and DHCP servers running at each location.
I tested the WLC at our main office with a single AP, and it worked fine. The AP set itself up, and wireless devices connect with no probs. Great! Yesterday I headed out to one of our remote sites, and connected an AP to their network - and that seemed to work fine too. Within a few minutes I was able to see the WiFi network I'd setup, and my smartphone connected to it straight away (as I'd rpeviously connected at the main office), so I was pretty happy that all was working well.
This morning however I've had notification that wifi performance at the remote site isn't great. I've got someone to check their ip address, and I've found that their IP address and default gateway match the LAN at the main office where the WLC is based - NOT the LAN where the wireless client is. Obvioulsy this is not ideal!
(I guess I HAVE done something wrong!?). And how can I get wireless clients at remote sites to pick up an IP from the DHCP server at THEIR site?
View 3 Replies
ADVERTISEMENT
Mar 19, 2013
I've recently purchased a 2504 Wireless controller, and I have 10 2600 APs to deploy. I think I've set up the wireless controller OK - there doesn't seem to be much that needs to be done! But I just can't seem to register an AP onto the system.
Just to briefly outline what I have done, I have connected to the Wireless Controller via terminal emulator and run through the setup, then I have connected OK to the web interface, and I am able to view and amend the controller's configuration. So I have setup a WLAN and thats about it.
Next up I have powered on one of my 2600 APs, and I am able to view it working via terminal emulator again. But I am seeing it continually running the same routine to connect to a controller, and all the time it just fails. Below is what I am seeing.
One thing that I am unsure about is that I am unable to connect to the AP config pages via web browser, using the IP 192.168.0.97 (although it does ping okay). Is that odd?
And the main question - why doesn't the AP connect to the wireless controller? Do the APs need to be authroized on the controller first? If I check the controller's web interface, under Monitor - Statistics - AP Join, I can see the AP listed with Status "Not Joined" but I don't know what I need to do to make it join!
*Mar 1 02:28:54.579: %CAPWAP-3-DHCP_RENEW: Could not discover WLC using DHCP IP. Renewing DHCP IP.*Mar 1 02:28:57.583: %CAPWAP-3-ERRORLOG: Invalid event 38 & state 2 combination.*Mar 1 02:28:57.651: %DHCP-6-ADDRESS_ASSIGN: Interface BVI1 assigned DHCP address 192.168.0.97, mask 255.255.255.0, hostname APb0fa.eb56.5abf(code)
View 12 Replies
View Related
Jan 24, 2013
I have a 2504 controller and 2 2602 access points. I have managed to get them connected ok to the controller. Now I'm in the home stretch here trying to figure out how to authenticate clients to active directory 2003.I have followed a really good guide on setting up the windows 2003 CA server and have got my certificates installed ok on the controller.It looks as though I have to install the client certificate on each client laptop?? Is there a method other than client certificates with active directory?
View 26 Replies
View Related
Apr 16, 2013
we have some (2) HP Notebooks with a Broadcon 4313 b/g/n WLAN Chip and use the latest drivers (2012). This Chip can provide up to 72 mbit/s with 2,4 ghz.
If we connect this notebooks to a Aironet 2600 AP (10 feet distance) the Windows 7 WLAN Dialog shows 72 Mbit/s for 3 seconds and than only 5.5 Mbit. Others (newer) Laptops show 450 Mbit. The WLAN works with WPA2/AES and PSK. The speed doesn't go up, if we copy a big file to the laptop.
Here is the Linktest from the AP to Client (from the WLC 2504 Webinterface):
View 12 Replies
View Related
Feb 24, 2013
Was just wondering if we can segregate users using subnets and not vlans in cisco switches? We have few groups we want to segregate onto different subnets, but don't want to use Vlans. Apparently I have been told that vlans do way too much packet processing and slows the network.
we are working on a school network. Want to segregate staff/students/admin.Further segregate students by year levels. This means if we were to use vlans we would have around 15 vlans. will it slow the network? (thats what I have been told and i dont agree to it). How to implement this topology without vlans and by just using subnets.PS: we use Juniper EX4200 (layer3), Juniper EX2200 x15,H3C 3100 x16 and cisco 2600 x1 switches on campus.
View 1 Replies
View Related
Mar 20, 2013
Does Aironet Autonomous/Standalone 2602 support WDS (Wireless Domain Service)?
I noticed that Aironet Controller-based 2602 does not support WDS. I would like to use 1242AG series but it will be going EOS soon.
View 3 Replies
View Related
Feb 18, 2013
I have to set up the AP in a standalone mode to support voice and data traffic through the wireless network. for this, i was trying to look for the config guide so i know how to go about it, but all the doc was refering to controller based setup. i followed this link URL
I have never worked on wireless in a standalone mode, so this is the first time i will be doing it.
View 22 Replies
View Related
Jan 27, 2013
I purchased the AP wrongly, instead of getting the "Standalone/Autonomous" (AIR-SAP2602E) version but I purchased the controller-based version (AIR-CAP2602E); my question is can I use "ap3g2-k9w7-tar.152-2.JB.tar" too flash it to a "Standalone/Autonomous" version?
View 21 Replies
View Related
Feb 4, 2013
Aironet 2600 and 3600 series. I need to know their maximum distance (at least theoretically, in Line of sight, eliminating all other factors...) in order to choose the right number of AP to provide enough coverage for a specific area. If an exact number is not available then can you show me how to determine it?
View 8 Replies
View Related
Feb 22, 2013
I am evaluating a Cisco wireless solution for our building. The building is occupied by two separate but related companies, which share some basic network infrastructure (some switches, an Internet connection, a DMZ environment), but which have two completely separate "Windows networks" with separate Active Directories. Each of these two networks are placed behind separate Microsoft TMG firewalls, each of whose external NIC are connected to the same DMZ network.
a) Acquire a set of Aironet 2600 APs and a controller, b) establish a BYOD SSID to be share between the two companies and guests, connected to the shared DMZ network, c) establish two additional separate SSIDs - one for each company’s staff, each authenticating against the appropriate AD-environment (incidentally, one is a straight Windows Server 2008 R2 environment with a TMG 2010 firewall and the other uses Windows Essential Business Server, so based on Window Server 2008).
Is that even possible with a single WLC?We are on 3 floors and about 60 people total. I am thinking that we can make do with 5 or 6 APs. Without having looked into it much, the 2500 controller looks good. Agree?
View 2 Replies
View Related
Jul 29, 2012
Is it possible to use a 2504 wifi controller to manage compatible AP's across different subnets ?
View 2 Replies
View Related
Mar 16, 2013
I have installed/setup a cisco 2504 wireless controller and 3 aironet 1142 access points using the basic config on a windows sbs 2008 domain, the problem is that the clients that are connected to the 2504 aint getting the there ip addr from the AD but from the wireless controller, and there cant reach the clients on wifi from the clients that are connected to lan, is there anyway that i cant change this so that a client on lan can see the client on wlan and vice versa.
View 5 Replies
View Related
Apr 3, 2012
Can I configure Multiple SSID (Guest/Corporative) on Cisco Aironet 3600i AP via Cisco 2504 Wireless controller?
View 1 Replies
View Related
May 21, 2013
I have a 2504 WLC and 1042 ap's. Everything worked great in my test enviroment (of course). Now when I want to deploy the wireless, the ap's are not getting and ip for the windows dhcp server.
I have option 43 configured in dhcp, sub option 241>ip address of the controller
I have my A record in dns, cisco-capwap-controller.
*Mar 1 00:03:17.050: %CAPWAP-3-ERRORLOG: Not sending discovery request AP does not have an Ip !!
Not in Bound state.
*Mar 1 00:03:27.050: %CAPWAP-3-ERRORLOG: Not sending discovery request AP does not have an Ip !!
*Mar 1 00:03:27.054: %CAPWAP-3-DHCP_RENEW: Could not discover WLC using DHCP IP. Renewing DHCP IP.
*Mar 1 00:03:37.054: %CAPWAP-3-ERRORLOG: Not sending discovery request AP does not have an Ip !!
*Mar 1 00:03:47.054: %CAPWAP-3-ERRORLOG: Not sending discovery request AP does not have an Ip !!
*Mar 1 00:03:57.054: %CAPWAP-3-ERRORLOG: Not sending discovery request AP does not have an Ip !!
*Mar 1 00:04:07.054: %CAPWAP-3-ERRORLOG: Not sending discovery request AP does not have an Ip !!
Not in Bound state.
View 3 Replies
View Related
Dec 19, 2012
When I get the web authentication dialog from 1.1.1.1 it starts of with a certificate error. Is there a way to prevent this certificate error while using the self signed certificate? I have not been successful installing certificates on my WLC - problems with OpenSSL and others. Want to get this deployed but don't want users to have to encouter that error.
View 1 Replies
View Related
Nov 25, 2012
I am wondering if the folowing is a valid configuration:
WLC2504
AP2600
I need 3 SSID/VLAN, 1 for corporate devices, 1 for coporate smartphones, 1 for guest.
Port 1 on the 2504 should be used for management and corporate devices and connect to the corp network. Port 2 is for smartphones/guest and will be connected to a Cisco ASA 5515 that is connected to a second ISP.
Corp devices should get IP from an Windows DHCP. Smartphones/guest should get IP from the WLC. Is this possilbe? I read this in a document "To use the WLC as a dhcp, you need to enable DHCP proxy as it is required." Some how I am imagining that this will mess with the Windows DHCP. Is it better to use the ASA as DHCP for smartphones/guest?
View 4 Replies
View Related
Aug 25, 2012
i have configured wlc 2504 .in that i have configured two interfaces.one is guest, 2nd is internal user, the pblm when user try to connect with that contain ssid user not getting ip address,
i have connected only one link between core to wlc on port 1.for guest interface i used port 4.but no physical link.
View 3 Replies
View Related
Aug 8, 2012
My problem, in a nutshell, is that clients do not get an IP from an external DHCP server when connected to a guest VLAN.
My current setup is:
Native VLAN 1 (192.168.2.x)
2008 DHCP Servers
2504 WLC
[Code].....
The guest WLAN just uses WPA and a PSK and is set to interface vlan101 There rest of the 2504 config is default.
The ports that the WLC and APs are connected to are tagged on the correct VLANs. (is that even necessary for the AP now?)
Ive changed the interface config around a hundred times now with no luck. No matter what a client will not get an IP.
Could this be due to the 2504 and ASA both acting as DHCP relays? Ive tried setting the IP of the DHCP on the dynamic interface to many different things with no luck.
View 10 Replies
View Related
Jan 7, 2013
I have a Cisco Wlan Controller 2504 with 1042N AP (3-nos) every thing was working fine from past 2 months. Now i am getting a issue with clients which are connected to the wireless AP, they are not able to get an dhcp IP address from the 2960 Switch (DHCP Server). The clients are getting IP address as 0.0.0.0. [code]
View 36 Replies
View Related
Apr 17, 2013
I am looking to enable the internal DHCP on my WLC. I have enabled it and it seems to be operating correctly but I think my routing and or settings allowing me to access anything beyond the private network is wrong.
DHCP is handing out correct IP info and DNS info.How do I route the new private network (10.1.9.*) out to our existing 10.1.4.1. (management IP is 10.1.4.253) Can this be done within the WLC ?
View 3 Replies
View Related
Feb 18, 2013
i have currently a 2504 WLC and some 1602i AP's.Basically so far i have configured the WLC as per the guidelines on the startup and now i want to join the AP's (which i haven't managed to do yet) and the setup the wireless network.I can get the AP to join and pickup an ip address and that is it. It comes up with different error messages from the WLC, and through hyper terminal, none of which i understand but the main jist is the following:
*spamApTask4: Feb 19 15:05:56.171: #CAPWAP-3-DECODE_ERR: capwap_ac_sm.c:3844 Error decoding Join request from AP 6c:20:56:0e:23:e0
AND
0Tue Feb 19 15:06:19 2013AP with MAC 6c:20:56:0e:23:e0 (AIR-CAP1602I-E-K9 ) is unknown.
AND
View 8 Replies
View Related
Oct 21, 2012
1552 E Ap with a 2504 WLC. Single Root Ap with Mesh the Mesh has the problem. Both Power Injector and AP has been replaced . How do you turn on the 802.11 B Radio? No other problems at 40 other sites with identical installation.
View 1 Replies
View Related
Nov 7, 2012
All controllers are in version 7.2.111.3.C1 is a 5508, it is ou anchor controller.C2 is a 5508, it is a big site controller.C3 is a 2504, it is a small site controller. C2 and C3 are in the same mobility group than C1 (and all is up up in mobilty managment). When "DHCP Addr. Assignment" is enable on C1 : Clients on C2 received their IP address by our external DHCP server via C1 and the guest tunneling betwenn C1 and C2 and all is working fine. Clients on C3 don't received their IP address by our external DHCP server via C1 and the guest tunneling betwenn C1 and C3, so nothing work.
View 4 Replies
View Related
Apr 17, 2013
I am looking to enable the internal DHCP on my WLC. I have enabled it and it seems to be operating correctly but I think my routing and or settings allowing me to access anything beyond the private network is wrong.
DHCP is handing out correct IP info and DNS info. How do I route the new private network (10.1.9.*) out to our existing 10.1.4.1. (management IP is 10.1.4.253) Can this be done within the WLC ?
View 3 Replies
View Related
Mar 25, 2013
setup a DHCP server on a WLC 2504. I'll try to resume my configuration:
I have 2 networks: inside users (vlan 1) and external users (vlan)
My controller uses the port 1 to connect to the switch, which has a trunk with WLC.
I have two routers, one using vlan 1 (192.168.3.0/24) and one using vlan 10 (200.X.X.X). All ports to these routers are access ports on their respective vlans.
I have 2 SSID, one for inside, other to outside. Inside is working very well.
To the outside I created a DHCP escope and already set the IP of the management interface 192.168.3.119.
Managemente interface (vlan 1 inside): 192.168.3.119/24
Outside interface (vlan 10): 200.X.X.195 - Default gateway 200.X.X.X.193
I alredy checked the DHCP Proxy in Advanced option.
See the output of the debug client:
(Cisco Controller) >
(Cisco Controller) >
(Cisco Controller) >
[Code].....
View 3 Replies
View Related
May 22, 2013
I have a WLC 2504 with 5 AP licenses for which I have installed an adder license via GUI. The installation completed successfully, but I still cannot view the new license. The maximum number of APs is still showing as 5 and in fact I cannot add more that 5 APs. I tried installing the license file again, but now I get a "duplicate" error.
View 4 Replies
View Related
Jun 11, 2012
an Aironet 1252 which is failing on boot. When power on the access-point shows the error below.
WARNING: A memory error occurred during the system start-up self-test. The device must be serviced if the error persists.
The following commands can, optionally, be used to initialize the flash file system and the TFTP file transfer system:
But when this happen, I can start the IOS manually doing flash_init and boot in ROMMON. After do this commands, the access-point starts and works normally.
How can I check and correct the memory and solve this issue?
View 3 Replies
View Related
Dec 16, 2012
We have 6 aironet 1140's throughout the office I have them all configed as one ssid but I would like the DHCP to come from our Windows server. Right now I have set them up with ip dhcp pools. So what is the secret to get them to send dhcp requests to the Windows server?
View 3 Replies
View Related
Jun 6, 2013
I have to configure DHCP on Aironet 1100 WAP so wireless client will get IP address through WAP. I tried all the option mentioned in Document but nothing is working.
View 1 Replies
View Related
Jul 1, 2012
We have 12 - AP-1231G access points in our warehouse with 2 SSID's, both on different VLAN's. We would like to set one of the VLAN/SSID 's to use DHCP from a windows DHCP server.Is this possible to do with option 43 or is that only for lightweight AP's ? Sho ver: Cisco IOS Software, C1200 Software (C1200-K9W7-M), Version 12.3(8).
View 2 Replies
View Related
Dec 27, 2011
I've been using this setting for clients in small offices and what not, and since all they wanted was to give another nutch of security to their network, we've been intalling cisco routers 2600 series still outhere for their internet connections and we had no issues what so ever, not until we run into cable isp provider, and their dhcp wont be able to assign our interface a dynamic IP, this is the setting aplied to the router interface;
interface fastethernet0/0
ip address dhcp
ip nat outside
no ip redirects
no ip unreachables
no ip proxy-arp
Why it wont be seen or assigned an ip by their dhcp, I talked to their isp and they assigned a static ip (private one) and we still have the same issue, if i connect a pix 506e interface with the ip add dhcp assigned to it gets a dynamic ip right away...
View 8 Replies
View Related
Jul 12, 2012
We have enabled web Auth for our public access on Cisco WLC 2504. It works fine. However, if a wireless user opens his email with download pictures website, he can’t get the picture download until he accept the web policy. Our users complaint about that.
"Our application makes requests to the internet to check for and download pictures, etc. The problem is that web requests are not permitted until a user has opened his/her web browser and attempted to go somewhere (e.g. google) so that your security system can redirect them to the authorization form where they must click the “accept” button. If the user has not done this yet, any functionality in our app that requires an internet connection won’t work because the security system is blocking the requests. Unfortunately, since they’re not in a web browser at the time, it doesn’t redirect them to the authorization page - the request simply fails since a redirect doesn’t have an effect on the application like it would a web browser. My remedy would be, if possible, to whitelist web requests to the server(s) where our code and/or images will live and let them get around that restriction. Otherwise, users won’t understand why the app isn’t working unless they try and open a web browser first – which is probably not something I’d expect them to do. With this solution, you could still ensure that nobody is accessing the internet at large without accepting your terms – but they could access your website as well as our application’s functionality seamlessly."
Can we setup whitelist or something like that on WLC?
View 9 Replies
View Related
Jun 4, 2012
I have setup guest access on the controller and this is not working at the moment.
DHCP server setup on the controller for the Guest users.
You are able to connect (get ip address from controller) and the browser gets redirected to 1.1.1.1 but then page can not be displayed instead of the login page.
View 2 Replies
View Related
