Cisco Wireless :: WLC 4402 Multiple Clients Can Connect To AP But Only One Gets An IP
Nov 4, 2012
I have a 4402 which is connected to a 4506 Switch int Gig 3/1 via a trunk port. The Managment and AP-manger interfaces are on vlan 6 [code] I have a 1142N AP also connected to the switch and it pulls a DHCP IP Address and configs etc and registers to the WLC. It too is on Vlan 6 and it is connected to the 4506 on int gig 4/33 which is an access port. [code] I am doing local authentication, so i have added users to the WLC.. My problem is that the first client that connected was able to get an IP address and connect to anything internal and external.I then connected another client on another laptop and that client could connect but not get an IP address, it just self assigned.When i look at the clients i can see the MAC address of both Clients on the WLC, but doing a show mac address-table dynamic i only see the MAC of the client that works properly. The client that doesnt get an IP has no entry in the 4506 switch.I am stumped, from what I understand, is that the 2nd clients traffic is being trunked to the WLC , hence it has the MAC address. But I dont know why its not getting a DHCP assigned IP address.
I have 2 4402 WLC's and a central office and was trying to configure an H-Reap Ap but now the entire wireless network is down. Clients arent getting IP's. I cant see anything that is wrong but things are not working like they should.
I have a 4402 (version 7.0.235) working with 10 units of 1121 APs connected to it. The WLC is not configured to work in LAG mode. Physical portt #1 is connected to the Main Switch (trunk). I have 3 WLAN mapped to 3 Different VLAN and Everything (security and internal, external DHCP) is working swell...Now- I have connected Physical port #2 directly to an ADSL Router (giga port), Configured Port 2 as untaggedwith the proper IP details.I have configured this interface to receive DHCP from the ADSL Router and for some reason, Clients are not getting addresses.When I assign a Static address to my laptop I get internet access and all is nice. I tried configuring The WLC internal DHCP server (instead of the ADSL router) and that didn't work. It seems like a DHCP problem but I dont understand the source of the problem of think of the solution.When turning off the proxy settings I noticed that it worked. Is there anything to do with that? The problem was that after a while the other WLANs starting causing DHCP issues as well.
We have a controlled setup comprising of a 4402 WLC in our Data Centre and 1242AG LWAPs in our branches.The Wireless works well with a mixture of locally switched (h-reap) and centrally switched WLANs.I have a problem where Android devices don't seem to function as they should.I have been using an Android phone (HTC Desire, currently running 2.3.4 OS, but has been a persistant issue since 2.1) and it connects to my home wireless (and others) fine, but when connecting to the Wireless LAN at the office, it connects fine and gets assigned an IP address, but NO data flows. None, like there is no connection at all. I have just been using it on 3G. I figured it might have just been an issue with the hardware, so didn't bother too much.I have just purchase a new tablet (ASUS Transformer, Currently running 3.1 OS) and this does the same thing.I have tried publishing a new WLAN and have tried all types of encryption and authentication al the way down to open and still, no data flow. I have tried statically setting the IP details and still nothing.Interestingly, When I attended the last Cisco Live conference in Melbourne this year, I had my phone and it displayed the same behaviour on the Cisco supplied wireless, BUT, there was a second IPv6 enabled, when connected to that everything worked fine.
We have 2 WLCs, 4402 (main) and 5508 (backup). While we turn on both devices, 4402 have 10 APs, and 5508 have 10 APs as well. Total connected clients will be 120+, but when we turn off either 1 wlc, let's say only 4402 is power on, total 20 APs joined, but the total client will be 90+, never reach over 100 clients. The same happened on 5508, is there any maximum associated connection on WLC?
When on the management interface the clients can't get dhcp but the AP's can on the same vlan. I've tried enabling and disabling dhcp proxy, and using a remote dhcp server as well as the internal server. This same config works on the 4402 we're replacing with version 5.2.193 on it.
Recently (within the past 2 months) I've been having some issues with my 4402 wLAN controller.
The issue is thus:
1) New wireless clients (those without exsisting DHCP leases) are unable to properly connect to our wireless network.
2) Those same systems (and other systems) have no issue getting online via a wired connection (where available).
3) Devices like iPad, tablets, laptops partially connect but do not get a valid IP address.
Our config:
1) DHCP is handled by a seperate server (NOT the 4402 - it's DHCP setting is disabled)
2) Our wLan is not on a seperate network than our wired LAN
3) Wireless devices attempting to connect include iPads and laptops mostly.
4) We're a school with about 300 systems (primarily Windows XP machines).
5) 25 access points controlled by the 4402 (our only wLAN controller)
Important Notes:
1) No configuration changes have been made to DHCP or the 4402 device in a couple years.
2) 4402 Software Version = 4.0.217.0
The problem first showed up a bit over a month ago. I first thought the issue was DHCP server related , so I started there and didn't find any obvious issues. I did restart the DHCP server (which at that point had an uptime of somewhere over 700 days).
I then also checked the web interface of the 4402 to see what it was reporting. I noticed a somthing:A) As shown in the "WLAN_Issue_EDIT.png" the client count on the controller is showing 628 current clients. We don't have many devices in our entire campus.
I rebooted the controller after hours and that seemed to allievete the issue. Since then, the current client count hasn't ever gone above 60.
Now today I'm having the same issue regarding new clients getting IP addresses. The client count isn't real high on the WLAN controller and I don't see any other obvious issues. I'm torn between this being a DHCP issue or the controller issue (or a combination of the two).
The reason I don't think it's directly DHCP related is that all wired clients seem to be getting address fine.Plus, I've set my tablet device to a static address and it still cannot connect via wifi.
**Update** I've now rebooted the controller and the problem persists (at least on the nearby iPad - Will confirm other devices shortly).
On every floor there are 10 rooms which can have multiple clients (laptops, ipads, smart phones) so let's say 50 clients.how to set up whole thing so the users in every room have decent speed for surfing and watching videos online [code]...
Is it possible to set up a pppoe client on a VLAN interface, or a switch interface associated to an VLAN?. For example, in a 881 ethernet router, could I configure a pppoe client on any of the lan interfaces in addition to the pppoe client configured on the WAN interface?.
I've inherited some ACS appliances from another part of my organization. I need to keep most of the settings but want to remove all the AAA clients; and preferably not one-by-one. I don't see a way in the documentation and web searches have proven fruitless.
I just want to keep one PC as a server and one switch connect to it (For LAN). I want to connect multiple client/screen to that server, so I can use single servers for multiple screen/client.(Client machine will not have any CPU, they will utilize servers memory.)
I need to install one 5508 and a 4402 together to bring redundancy to a wireless environment.Can I do this?. What are the neccesary steps to perform this?, the idea behind this is to bring redundancy is the primary WLC falls for any reason.
I am setting up a new remote access VPN using the traditional IPSec client via ASA 5515-X runnning OS 8.6.1(5). We require to provide each client multiple DNS suffixes, but are only to provide a single DNS suffix in the group policy.I have tested using an external DHCP server, but using our Windows Server 2008 infrastructure and Option 119 the list is not provided to clients, and I have read that Windows 7 clients may ignore this option anyway.
All the SOHO routers I have used had a table which shows IP, MAC, Name, etc. In this table, I could easily put a check mark to a check box in a row that I would like to bind/reserve and IP would be reserved for that specific MAC.
In ISA570W, when I need to reserve/bind an IP to a MAC it asks me to fill out a table in which I have to manually type in the name, IP, and MAC.
Is there an easier way?Is there a way to do the reservation for multiple clients at once?If this is the only way, do I need to copy the mac address of each client somewhere and then reserve IPs for each one manually? This method looks very far from user friendly and efficient, unless there is a very logical reason that I cannot think of.
I am trying to make an application sharing software which shares multiple applications in windows to various clients. My idea is to modify VNC code and use it to share applications on different ports to different clients.
I have a WLC of 4402 and AP's of AIR-LAP1142N-E-K9 . Where am getting problem of that users are complaining that they cannot connect it some times and they used to get disconnected in between.
I have a WPA2/AES network with PEAP MsChapv2 authentication. I have 2 ACS servers for authentication. The problem I have is dropped clients. Both ACS servers are setup identical. The database replcation has been preformed.A series of 10 clients connects wirelessly and they are all successful. ACS server 1 is the primary and ACS server 2 is the backup. We verified that the 10 users authenticated to the primary ACS. My time out to reauth is 30 minutes on the WiSM. 10 minutes into the test we took down the Primary server. This should have had no impact on the clients. 5 minutes later the clients lost thier authentication and were dropped from the network. They were able to reconnect by shutting down thier wireless client and reconnecting. The authentications were seen on the Backup ACS server.on a test of falling back to the primary the same thing happened again to the clients.
In the company we have two SSIDs for corporate and guest networks respectively when I try to connect to any of the SSIDs it doesn't happen until 5 retries. The only log I get that seems to be related to it is the following:
*Jun 11 11:48:09.062: %APF-1-DISCONECT_MOBILE_DUE_TO_WLAN_SW: apf_policy.c:541 Disconnecting mobile 00:23:32:73:d7:15 due to switch of WLANs from 1(femsawl) to 2(visitas)
Here it shows a switch between SSIDs but if you just turned on an apple device and try to associate for the first time to any of the SSIDs the scenario is the same, several tries to connect.I am running a 4402 wlc with 6.0.202.0 software version.
We have WLC-4402 and LWAP-1510, we have issue when users trying to connect to pppoe server with pppoe connection from wireless network. On LAN, pppoe connection work properly and everything is normal. Also I enable broadcast fowarding on GUI but he problem still exist.
I just purchased a WAP 321 and followed the setup wizard. Its powered by a poe switch. The issue I have is no clients can connect to it. I updated the firmware. I reset to factory and tried setting it up manually till no one can connect. I dont understand what im doing wrong here. Unless its a bad unit. I will have about 10 to 15 clients connecting to it. Its the only ap in the building.
I have a WAP4410n which has been configured with a single SSID since implementation several weeks ago with no issues. I am now trying to add a second SSID and not having any success. Originally the second SSID was not being assigned a MAC address and thus not being broadcasted. After upgrading firmware to 2.0.4.2 I now see a MAC address associated with second SSID and it is being seen by clients, but they still cannot connect. I reset the AP to default settings and reconfigured from scratch but still no luck. I have two of these APs, the other one is still at FW rev 2.0.1.0 and has same issue (it does have MAC address associated with second SSID so I didn't bother upgrading firmware yet).
I have tried a few different authetication options, including disabling authentication, to no avail. Question - I do not see an IP address associated with the second SSID - is that the problem and if so, how do I fix that?
I have 4 desktops cat5 to Dlink DIR 615 router. All work fine. Any wireless clients, laptop or netbooks, see the desktop computers for a while then disconnect somehow. All machines can see the Internet through the router at all times. The desktops disappear from the laptop/netbooks but the wireless machines can be seen from the desktop computers but clicking on them gets 'Access Denied' message after a wait.3 desktops = XP, 1 98SE. All laptop/netbooks = XP
I have 19 locations, each with 1 or more LAP1142N AP's in FlexConnect mode, AP's are primed using CAPWAP to my 5508 WLC at the datacenter. The AP's join the WLC without issue every time. I have two WLAN's, one guest and one staff, the guest network is open and obtains DHCP from a WatchGuard XTM33 firewall at each of the remote locations. The staff side is WPA2/RADIUS and DHCP is assigned from the WLC. Each AP is assigned a static IP that is not in the DHCP scope. For example: DHCP scope on the branch firewall is 192.168.1.10-250 the AP will be assigned static IP of 192.168.1.1.. The AP's are connected to a HP procurve switch that has a untagged VLAN, the firewall is using the native vlan 1 and so is the AP.
I have been running this network for over a year and it has not had a single issue until the last two weeks. Nothing on the network has changed or has been upgraded.The issue I am seeing is that clients are no longer able to connect to the AP and do not get DHCP assigned to them. I am able to get it working, if I remove the static IP from the AP, the AP will reboot, join the controller, then begin working, users can connect and DHCP is assigned from the firewall as it should. However, If the AP then reboots, the AP will join back to the controller but no clients can connect nor do they get a DHCP address. So, I then reassign a static IP to the AP again and it reboots, connects to the controller and clients then can connect and get DHCP.i've found several posts on this topic, in fact the patch of unassigning or reassigning static IP is one that I found. I am also waiting on my SmartNet to start up and will be contacting Cisco support as well.
I am using two AIR-CT2504-K9 controllers Product Version.................................. 7.4.100.0 Bootloader Version............................... 1.0.16 Field Recovery Image Version..................... 1.0.0 Firmware Version................................. PIC 16.0
and 20 access points AIR-CAP2602I-E-K9 Cisco IOS Software, C2600 Software Version 15.2(2)JA, RELEASE SOFTWARE (fc1) LWAPP image version 7.4.100.0
I created 3 SSID: 1. [WPA2][Auth(PSK)] 2. Web-Passthrough 3. [WPA2][Auth(PSK)]
Configuration on controllers is identical. High Availability is configured on all APs. First controller controls only those APs witch have SSIDs with [WPA2][Auth(PSK)], second controller is basically for APs with Web-Passthrough SSID. From the start I have problem, some clients who try to connect to SSID with PSK are dropped or can’t connect entirely, but when they go to the next AP they connect successfully. For example I have Android smartphone and Lenovo laptop, smartphone connects successfully but laptop fails connection to the same AP, but when I take it to other AP it connects successfully. Sometimes smartphones can’t connect too. When devise can’t connect to one SSID it can’t connect to other SSID either. Sometimes there are up to 20 clients tying to connect to the same AP.
When I look into logs, I get these two messages:
Jun 3 08:58:58 192.168.224.1 WLC1: *dot1xMsgTask: Jun 03 08:58:51.176: #DOT1X-4-MAX_EAPOL_KEY_RETRANS: 1x_ptsm.c:456 Max EAPOL-key M1 retransmissions exceeded for client 7c:e9:d3:f4:74:4d
AP has static IP with 2 SSIDs setup, one for guest one for domain access(both have the same issue), tried with multiple devices, both win and MAC, all show "connected but with limited access", ipconfig on those devices, all show ip "169.254.X.X", but event log on AP indicates that "authentication has been completed sucessfully".
using RADIUS server for authentication. management VLAN ID "1", SSID VLAN ID "11"
I have a 5508 WLC and 40+ LAP1142N APs spread across 19 locations that allows staff to connect to our private network via wireless. I recently deployed about 40 new laptops all identical make and model HP ProBook 4530's and all have the same client setup for the wireless. Out of those 40 laptops I have 4 that will not connect to the private network. However, these same laptops will connect to my public, open wireless network without issue. In addition to the 4 that will not connect all the others will prompt twice for network authentication.Now, I have about 10 other laptops that are not the HP model and all connect without issue and without dual propt. I don't think this is a wireless network issue but could be some type of issue with this model of laptop.
While trying to connect to WiFi at remote sites APs, the connection is getting time out.User are getting error as 'Unable to connect to <WiFi-SSID>' The APs at corporate office are functioning properly and user are able to connect to the APs.
