I have recently deployed a wireless network using a WLC 2504 with 21 Light APs. All seems fine except that Apple Devices drop their connections every 15 minutes or so. A couple of minutes later they can reconnect but obviously something is wrong.
View 2 Replies
how to setup the wireless interface to forward multicast packets? Basically I cant get the ipads etc.. to see the AppleTV to control it. I connected an AP and it works fine so its got to be something with the way the router handles the packets from teh integrated wireless interface. I've been searching the forum for about 1hr and haven't founf anything other than a breif mention of broadcast forwarding and multicast setup.
View 1 Replies View RelatedI am setting up a new Guest network with a captive portal and it seems to all work fine except when Apple devices go to sleep. When they come back on it isn't just a case of logging in again as it just indicates to the client that it is still connected and won't present the login page again. The Controller will show the client as auth required. So far the quickest way has been for me to delete the network on iPads and re-enter my settings or create a new profile on a Macbook and join again. I have also had some success when doing a manual DHCP refresh on my Macbook which sometimes seems to kick the Controller into action so it presents the login page to the client again. Whether it is related to the timers on the Controller (5508 running code 7.0.235.3) or - as I just read in another post by Leo - the 20 minute timeout that all Apple devices have built in to conserve battery life
View 3 Replies View RelatedWe are experiencing some issues with the Apple TV and WLC. We currently have a Apple TV and iPhone same sub net connecting via Lightweight AP (different sub net) which connects to a Cisco3750 running IP Base. This connects to WAN routers managed by third party over a WAN and connects to far end Managed routers, these connect to other Cisco3750 IP Base and onto a 2504 Wireless LAN controller. We have used the the following document for WLC configuration; [URL]
We turn on Multicast globally, with IGMP snooping enabled also enable Multicast Multicast under controller (only option available on 2504) and give the device M Cast address 239.21.1.150 . The P2P blocking action is disabled. Going to Monitor Multicast we can see the Report for 224.0.0.251 and MGID. However the issue is at the Sender Receiver side the iPhone cannot see the Airplay on the iPhone that should be seen if the end to end stream is working. My focus is now on the Cisco3750's, although I do not totally understand why the device needs Multicast enabled as the Multicast Join and Group Traffic is encapsulated in the CAP WAP Tunnel is it not? Anyway I have enabled the only option "ip multicast routing distributed" and under the V LANs that connect to WLC and AP the only option available is the "ip pim passive" there is no "ip pim sparese-dense mode"
I am sure the WLC is configured correctly, but I suspect that this will not work due to the IP Base image on the 3750's not being able to run full multicast or we need to use uni cast for this solution that the 2504 does not support.
I'm seeing a problem with Apple IOS devices connecting from one SSID and then connecting immediately to another. I've tried to replicate this fault with non Apple IOS devices, but I'm unable.
Environment:
Single 5508 WLC running 7.2.110.0 AIR-LAP1142N-A-K9 AP's
WLC is in clients head office, MPLS to their branch sites. AP's are in Flex Connect mode, with AP and Flex Connect groups for the AP's at the branch. 3 x SSIDs; Corporate (802.1X), Guest (Web-Auth) & Non-Corp (PSK).
Scenario:
Client is connected to the Corporate SSID with his iPad (new model, running iOS 5.1.1). No problem with access, he is able to roam throughout the building with good SNR/RSSI. He wants to test the other SSID's, he attempts to connect directly to the Guest or Non-Corp and gets an error message on the client saying 'Unable to Connect' or 'Unable to Join'. Debugs on the WLC for the client shows no connection attempt, no errors. I can see the client disconnect from the Corporate SSID, but nothing for the Guest or Non-Corp SSID.
If the client then disconnects and forgets the Corporate SSID from the wireless profiles on their i Pad, waits 20-30 seconds (I can see the client disconnect cleanly from the WLC) and then attempts to connect to the Guest or Non-Corp SSID's - he doesn't have a problem. He immediately associates, and is able to connect. If he then tries to connect directly to another SSID, while still associated to another from the same WLC/AP – he gets the error again. Forget/wait 20-30 seconds, attempt to connect – no problem. We've tested with several i Phones (4 & 4S), i Pads (2 & new model) - all running the same Apple IOS (5.1.1).
I unfortunately can't do much troubleshooting with TAC on this as the client is no longer onsite, and I don't have a 5508 in our lab that I can currently test with. I've tried playing with beacon intervals, etc to no avail.
Had an E4200 for a couple of months now and have not been able to resolve an issue with the router dropping an Apple iPad 2 at random times.The E4200 is replacing a Cisco Aironet 1200, which never dropped any clients, iPad 2 or others, and never displayed any of the issues below.
TECH DETAILS:The E4200 is being used purely as an access point. All extras are not in use and are disabled.
Firmware 1.0.03
Hardware version 1.
BASIC ISSUE:The E4200 drops an Apple iPad 2 off the 2.4 Ghz Mixed (B, G, N) network. The user must then select the network to rejoin. Rejoining occurs without incident. The same issue occurs when the network is restricted to B, G. The drops occur at what appears to be random intervals - sometimes 10 minutes apart, sometimes hours apart. We can have as many as 6 drops in an hour. A ping to the apple ipad shows the device stops responding to pings about 10 seconds before the user is prompted to rejoin a network. Meanwhile, a ping to the E4200 itself from a laptop connected via the E4200 on the same radio as the ipad continues to work without fail during this incident.
1. The iPad 2's cannot connect to the 5Ghz radio. I believe iPad 2's are supposed to support 5Ghz.
2. Both our Apple TVs do not connect to the 5Ghz radio: they fail with a "There was an error connecting to the network. Check your settings and try again. (-3914)" error. Apple TV supports 5Ghz.
3. The admin interface for the E4200 is very slow sometimes. Probably over 20 seconds to render some pages when it gets really bad. As a comparison, Internet-based pages on fast sites that delivered via the E4200 itself load in less than 2 seconds.
4. The HTTPS version of the admin interface can only be connected to via Safari browers. Both Internet Explorer 9 and Chrome 16 fail to connect with a "Connection reset" error. In Chome, it says "Error 101 (net::ERR_CONNECTION_RESET): The connection was reset." This is across multiple devices. There is no issue with straight HTTP.
All other devices - including Macs and PCs - connect fine with the E4200 on both 5Ghz and 2.4 Ghz radios, even if they cannot access its admin interface via HTTPS.I've presented quite a few issues above, but the main one is the drop outs for the iPad 2 devices. I'd present logs on drops, but the thing doesn't record any useful logs.
Basic wireless config:
5Ghz:
Network Mode: Wireless-N Only
Channel width: Auto (20 or 40 Mhz)
Channel: Auto (DFS)
SSID Broadcast: Enabled
[URL]
In the company we have two SSIDs for corporate and guest networks respectively when I try to connect to any of the SSIDs it doesn't happen until 5 retries. The only log I get that seems to be related to it is the following:
*Jun 11 11:48:09.062: %APF-1-DISCONECT_MOBILE_DUE_TO_WLAN_SW: apf_policy.c:541 Disconnecting mobile 00:23:32:73:d7:15 due to switch of WLANs from 1(femsawl) to 2(visitas)
Here it shows a switch between SSIDs but if you just turned on an apple device and try to associate for the first time to any of the SSIDs the scenario is the same, several tries to connect.I am running a 4402 wlc with 6.0.202.0 software version.
I have two Cisco 1200AP.
I have it configured with two SSIDs, one corporate (802.1x) one using WPA2 Personal.
I have no issues on the corporate, but I have found that Apple devices appear to detect it as a WPA2 Enterprise, and request a username and password.
If I enter the network manualy as WPA2Personal the devices joins the network ok. Then ocasionaly the device looses its link to the network and fails to pass traffic.
Building configuration...
Current configuration : 5134 bytes
!
version 12.2
no service pad
[Code]....
we are running 1140's and 1130's in autonymous mode and seeing a TON of requests for passwords on IOS devices where we have an open network.
This typically happens when we things are busy in the space.
All other non IOS devices do connect, and most IOS devices connect after a considerable amount of time.
I have a mix of devices that all access the internet via a Deutches Telkom Speedport W 723v my windows devices, HTC phone and even the iPad 2 never have a problem, but my Macbook Pro (Unibody Late 2008 model) and my iMac (Probably 2007 / 2008) keep having a problem with the network dropping out. To fix it I have to switch off Airport and switch it back on again and it re-connects straight away.The Mac OSX software albeit now rather dated on both devices (The Macbook is 10.5.8) is kept up to date using Software Update.The problem amy also now be affecting my APPLE TV2 it never had a problem before but now I cannot connect to iTunes on my Macbook using Home Sharing it just does not want to connect!!!I did try before going into the Speedport and changing channels from AUTO to channel 1 but that did not resolve it. I am going to do it again and try a different channel but logging onto the Speedport is an absolute pain, I can only login using my Macbook Pro when it is booted into Windows XP and on Ethernet as we had all sorts of problems setting it up and could only do it using IE not SAFARI and now the Speedport login only recognises 1 x PC for logging in, if you try a different device it throws a wobbly and locks up!
View 7 Replies View RelatedRecently I've pulled a PIX 501 out of a closet (having never been used) and configured it for a VPN with my PIX 506e at an offsite location. This offsite location has a PC, Printer, Access Point, and remote VOIP phone. The VPN itself works great, but periodically the PIX just drops some network devices, specifically the Access Point and the Firewall. Both devices stay off until I reboot it (through an SSH connection) they then spring back to life.
PIX Version 6.3(5)
interface ethernet0 auto
interface ethernet1 100full
[Code].....
I recently upgraded my Linksys wrt120n router firmware & had to reconfigure settings. Subsequently, some (but not all) of my apple devices are having intermittent wireless connection problems. Specifically, my ipad1 & ipad2 never lose their connection but a mac book pro (~ 2 years old), iPhone 3g, iPhone 4, older iPod touch & very old i book g4 all work for a period of time (usually 1/2 day) & then lose their connection. When I attempt to reconnect these devices I receive the following error..."unable to join the network xxxxxx....". I also have a Dell laptop (1 1/2 yrs old) that generally does not have the connection problem. Finally, when the devices do lose their network connection all I have to do to reconnect is go to the Linkys router setup webpage & click on save & the wireless connection works again (almost like this is just refreshing the connection for these specific apple devices). I was not having any problem prior to the firmware upgrade & from what I have read the older firmware version is no longer available so going back to the old firmware does not appear to be an option.
View 1 Replies View RelatedWe have a Cisco 4400 controller and a mix of 1010 and 1131 access points.
We have been running out of IP's on our DHCP server because the apple devices are not releasing there IP's.
On my wireless network, I am running guest access that I want to have as authenticated. If I enable WLAN, security, layer 3 web policy, when an iPAD / iPhone connects, they get directed to the Web Auth splash page, on where they must enter username & password. My users do not want to be directed to this page everytime they login - just select the SSID and connect - is there a way of authenticating guests via a WLC4400 without going through the splash page everytime?
View 6 Replies View RelatedA customer of ours has the following access points and wireless lan controllers on site. They want to use the Apple Bonjour service with Apple TV's and iPads. I have enabled multicast feature of the 5508 globally and one the SSID.The Apple TV has an ethernet connection and the iPads connect over the wifi. The Apple tv is on the same subnet as the iPad's - the Bonjour features do work for approx 5/10 minutes then it stops working for some reason. The Access Points plug into a Cisco 2960 Layer 2 switch, the 5508 controllers plug are in LAG mode and plug into a Nortel Layer 3 stack which I have enabled IGMP snooping.I've read that the Apple Bonjour service isnt designed to work on a multi subnet network - but both the Apple TV and iPad are connected on the same subnet. Sounds like some kind of timeout but not too sure.
View 5 Replies View RelatedI've got 3 WLC 4402 controllers and the wireless is working perfectly except for 1 issue. We are trying to connect an apple tv, so we can stream picture, videos etc from ipads and Macbooks to a large display for media teaching.The setup works at home, but not at work.The apple TV is on the same network as the wireless apple devices, (we use a 10.6.4.x-10.6.5.254 range), both are dhcping the addresses (have tried fixing but that made no difference). I've enabled multicasting and igmp snooping and set the multicast address as 239.0.0.0 and it still doesn't work.
View 11 Replies View RelatedI am beginning to get many emails from users who have recently upgraded to OS6 and saying now they cannot connect to our open access wireless network. We use a separate server that users must agree to a user agreement page and they say they get it, but after agreeing, it goes blank and they cannot connect. I am using mostly Cisco 3502's with the 5508 controller using 7.0.112.0 IOS version. Nobody in our IT department has yet to test OS6 yet.
View 9 Replies View Relatedi have issue for Remote App to connect to the Apple TV using the Wireless network setup in my 180W.My wired Mac is able to connect to wireless connected Apple TV but my i phone (4, 4S and i Pad) are not able to connect to apple TV.
Do I have to enable some setting for this to work. It used to work in my very old Buffalo router with tomato firmware.
If I connect the Apple TV to wired network it works fine. Instantly it shows up in i Phone Remote app, but not if its on wireless network.
I've recently purchased an E4200, and while it works great, I'd like to use my Apple Airport Extreme (2nd generation) to extend my network to another part of the house that doesn't get as great of a signal. I've become very frustrated trying to accomplish it, and I'm not sure if the problem is more from the Linksys end, the Airport end, or if it's just me.
View 3 Replies View RelatedIs it possible to configure the apple airport express to extend a linksys wrt120N wireless network? if so how?
View 2 Replies View RelatedI have two WLC 2504 controllers. These controllers are for two different buildings. But they share a VLAN, and network address range. How can I control the access points to the register selected only at a specific controller.
Example:
AP 1 -> WLC 1
AP 2 -> WLC 2
AP 3 -> WLC 1
Since the buildings also broadcast in different SSID. The two controllers are in a mobility group.
Our current way of configuration for this is standalone ap's with multiple ssid's. The main network ssid's are on the 10.0.0.0 networks. The internet only ssid is on the 192.168.1.0 network. ( this is a wireless network only,no wired) They all get there dhcp address from a layer 3 switch. To prevent the wireless 192.168.1.0 intenet only network from getting to the 10.0.0.0 networks, we just put a simple source & destination deny acl on the in vlan interface of the 192.168.1.0 network on the layer 3 switch.Now that we are impementing a Cisco 2504 controller, the management and ap manger are both on the 10.0.0.0 network.( both on port 1 with dynamic ap manager enabled) I can setup as many ssid's on the 10.0.0.0 network and they all work fine. But when I setup the 192.168.1.0 internet only ssid it will not connect. I'm assuming that its because the 192.168.1.0 network or anyone trying to connect and use that network has to go through the controller located on the 10.0.0.0 network. I'm thinking that the acl on the vlan interafce is the problem.So, if I'm correct, what is the best way to setup a separate internet only network through the private networks?
View 7 Replies View RelatedCisco 2504 wlc, 1142n ap, windows radius server.
When I click on Network, the only computer that shows up is mine. If I am hardwired then everything shows up (Servers, other workstations). Is this a problem with the radius server or something on the controller?
I recently got my Cisco wireless system working a few days ago and am back with a guest network. Our wireless system includes one 2504 controller and 2 2602i access points. So, I want a wireless guest network completely isolated from the LAN.
Here is what I have done.
I have created a new internal network and assigned 192.168.2.1 to an unused port on the firewall and 2.2 to a new controller interface with vlan 10. I can ping both 2.1 and 2.2 from the firewall and the controller. Basic network connectivity is working. The DHCP server is setup on this same firewall and configured only for this port. This address is referenced in the controllers interface.
A new w lan was setup and enabled. The proper interface group was selected on the w lan. I have left the default layer2 security.
As far as AAA servers tab in this wlan, this is where I am a little confused. I wish to just have a single log in for this guest network. I wasn't sure what to do so I went over to the Security tab and created a "local net users" account. I do not know how to reference the use of this under wlan, security, aaa servers. Should I check the box that says "local eap authentication"?? If so, I don't have a profile name in the drop down. What I'm looking for is the username/password to be stored locally on the controller itself since there will be only 1 account.
Under wlan, advanced tab, I do not have "Allow AAA override" checked. Should I?
Lastly, when I try to connect the client, it is not pulling a dhcp address. I wasn't sure if authentication was required before dhcp or the other way around so I'm not sure what to trouble shoot first, authentication or dhcp.
Is there any way to configure a wired guest network with a combination of 5508 and 2504 wireless controllers? I am aware that the 2504 does not have wired guest functionality, however is it possible to set up a wired guest on the 5508 and using mobility anchors, transmit the l2 information through eoip to communicate with the remote vlan?Home built NAC solution, using 802.1x authentication on switchports for public areas. If user is an employee, communicates with the supplicant on their machine, and places them on an internal vlan.If user is a guest, user fails 802.1x check and is placed on a "guest" vlan with an ACL and external DNS.If placed on the guest vlan, the user has to accept a terms of use form.This is working currently with our 5508s without any issue, however we have some remote offices we'd like to roll this out to that are using 2504 controllers. I'm hoping there's a way that I can use the 5508 as an anchor or vice versa to make this work.
View 1 Replies View RelatedI can find the network OK but whenever I put in the password it just refreshes and tells me I need a password. My son has just got the applemac for his communication studies and neither of us are very bright with computers let alone apple. They are completely different.
View 1 Replies View RelatedI have an iPad 4 (6.1.3) that won't connect to our Cisco 1142 APs. Full Cisco network; 3560 POE switches on edge and Cisco 6509 at the core.At first we looked at it as a wireless issue. No settings changes on the APs would allow the iPad connect. About 125 other iPads of various models worked fine. Took the offending iPad to McDonalds and it connects fine. Took the offending iPad to another school in our District and it connected and worked fine. Went back to the home school, still won't connect. Contacted Apple since iPad was under warranty, sent it to them and they ran diagnostics and it is fine.Is there anyway that the core switch is blocking the iPad client?
View 1 Replies View RelatedAnyway, I am looking for a way to discover host names of Apple devices (namely iPods and iPhones) that are on our network. I've tried a number of programs like Nmap, Advanced IP Scanner, and LanSpy to name a few. All of them will report back the MAC address with no problem but no dice on resolving the host name.
My goal is to use the host name to identify the device, and ultimately the person with the device. Any thoughts on how I can go about this? Is there a setting in Nmap I'm missing or perhaps a better program to use?
Connection goes out from time to time. Especially when downloading and uploading. Ive posted here before and the problem fixed it self for a few days and now its back again. Drivers are up to date. Router firmware is up to date
View 13 Replies View RelatedPeriodically I will loose internet connection even though when I click on the wireless applet in the tray it says connected. If I disconnect and re-connect it will work fine for a few hours. Takes all of 20 seconds to do. Any problems with 1703 wireless card? Have installed the latest drivers.
View 3 Replies View RelatedI have two notebooks, one smartphone, and one blu-ray player that connects to my wireless network. My gaming PC is hard wired into the same router that broadcasts my wireless network. About 5-6 times, my wireless network will drop and everyone connected to it wirelessly will lose their connection for about 1-2 minutes. While my gaming PCs internet connection is undisturbed, all of my wireless devices can no longer "see" the network SSID and therefore connect to it. The problem has been happening consistently for many months.
View 1 Replies View RelatedI have a problem with MSE tracking client in my network.What we have:PI 1.3 with evaluation license (temporary)MSE 7.4.100 with 3k device licenses (hardware appliance 3355)WLC 5508 7.4.100.For now MSE is reacheble from PI and WLC, all setings are synchronized, NMSP status is active, mse assigned for maps and synchronized, on map we have 3 APs, but in Contex Aware tab we didnt see any tracking devices, all counts 0.
View 11 Replies View RelatedI'm facing a problem related to devices authenticating to our wireless network. Below are how it is setup:WLC 4404 pass authentication to ACS 5.3 (PEAP + MsChapV2) then to AD server.Client can get stock in this status and it keeps repeating from 1 to 20.
View 4 Replies View Related
