Cisco Wireless :: WLC 5508 WGBs And HREAP On LAN
Mar 1, 2012
I have a wireless network with two WLC 5508 controllers and 220 LWAPs in the same location as the controllers. All APs are currently in local mode. I run a few guest networks as well as some other client networks. One client in particular uses their network to connect mobile machines to their VLAN. The only issue is that the machines do not have wireless adapters. Instead, the manufacturer put inside the chassis, a D-Link WGB, which has an ethernet cable, you then have to plug into the ethernet port. These devices cannot seem to connect to the network. I have found, the WGBs do associate on the network, but the wired client behind it cannot pass traffic onto the VLAN. I have also tried connecting PCs with different SOHO style WGBs from different manufacturers with the same result.
After going through Cisco's documentation, I found that using 1230s in WGB mode can resolve this issue since they use IAPP to communicate the MAC table of the wired side clients they service back to the controller. I have configured a 1230, and used it as the WGB for the client machine instead of the D-Link and it does seem to work, but this would mean configuring a considerable number of 1230s to hand over to the client.
The first question would be, Is there something I am missing that I would need to do in order to allow SOHO style WGBs to forward wired side client traffic onto the network while LWAPs are in local mode? Or would the WGB NEED to support IAPP?
The second question is that, I may have found another solution to this already, but would like some input prior to committing.
This client also uses these same machines with the same WGBs inside the chassis at another location where the client operates the network themselves. They also use the same WLC model with the same version, and same APs. The only difference is that they use H-REAP mode with local switching.
I also tested this idea, and it seemed to work. With the AP in H-REAP mode, and the client's WLAN set to local switching, the machine and WGB connected with no problem.
So the question with this, would be; would there be any disadvantages in running all 220 APs at this location in H-REAP mode? What would I be losing if anything? Also, I would like to keep all other WLANs centrally switched.
I understand what the difference would be for this client's WLAN if I ran in H-REAP mode with local switching, but what would the difference be in the other guest WLANs if I set them to be centrally switched? (Is there any difference between running APs in local mode vs running APs in H-REAP with central switching?)
View 2 Replies
ADVERTISEMENT
May 22, 2013
I have been having an issue with random AP3602I's in HREAP mode disassociating from the 5508 controller. These AP's are in remote offices with 70Mb WAN back to the controller. Randomly one or two AP's disassociate from the controller and I have to bounce the switchport to bring them back online. The WLC is running 7.2. Again this only occurs to one or two AP's not all of the AP's.
View 8 Replies
View Related
Jul 30, 2012
I have a Cisco 5508 setup at a host site with 3 other sites connected using hreap on 1252APs. When doing testing of network speed I find that the throughput from the wireless to wired network is at about 18mbps yet the same test on wired side is 85-100mbps and wireless to wireless is 18mbps
View 4 Replies
View Related
Nov 20, 2011
I have a new deployment of 44 3502i AP's in 3 buildings at one of my campus'.The 5508 wlc is running latest 7.0.116.0 code.I have some users who take their work with them as they go from location to location on this campus.They need to be able to smoothly switch from AP to AP without having to reauthenticate each time the next AP takes over in the handoff.On the ssid in question we run 802.1x back to 1 auth server; there is no failover auth server.All APs are in one AP Group.My thought is to add all 44 of the APs to one HREAP Group.
View 4 Replies
View Related
Aug 9, 2011
How many AP in h-reap mode recommend with WAN link 512k ?,i have read in document it show h-reap mode must requirement minimum link is 128k for connect to wlc but i don't know this requirement for 1 ap or all ap to connect across WAN to register and send traffic across WAN. Because now i have 2 site HQ -> Branch (link 512k) it can use for this solution.
View 4 Replies
View Related
Apr 8, 2013
I have quick question about wlc software version upgrade : currect version of 5500 WLC : 7.0.220.0,However i am planning to upgrade to version 7.2.110.0,currectly all remote site AP's are connected to this WLC , nearly 150 AP's all are in H-reap mode however once i upgrade to 7.2.110.0 version , all default should come into Flexconnect mode.Do i need to make any configuration or any changes in AP's to get Flexconnect mode or will it be default mode as Flexconnect mode in new version of WLC ?
View 1 Replies
View Related
Feb 23, 2012
We have standart wireless deployment with 24 APs (1240G model) and wireless controller 4402-25 placed on same site.Most of clients (WMS RF terminals ) works with one WLAN (WPA2-PSK) and constantly roam over warehouse , and that works great.
But for better survivability(when controller dies) we are trying to configure HREAP on our APs with local swicthed local auth WLAN. And that also work , but client roaming occur much more slowly and RDP connection to WMS APP server sometimes stuck for 2-5 sec.Disabling "local switching" checkbox for WLAN make roaming almost momental.
And slow roaming are price for controllerless HREAP design ? And for fast roaming and survivability we must use N+1 wlc?
View 3 Replies
View Related
Nov 23, 2009
I have a tale of woe for you who may be considering Hybrid REAP with local switching.
My client has a varied configuration, but the requirements basically screamed HREAP with local switching. They have 15 sites, had already purchased a single WLC 4404 and they needed between 4 and 24 APs at each of the sites. Each of these locations are connected by a WAN link of good quality, but only a single link so there is no assurance of availability; the client has local resources so it would be useful if wireless stayed working during an outage.
So I setup the WLC for HREAP local switching. I setup AP Groups VLANs, but I noticed it had no effect on the VLAN allocation for HREAP. This was unfortunate, because not every site has the same VLAN configuration - some sites had a L3 switch and others only a L2 switch. But I suffered through this and configured each AP manually with the appropriate VLAN mappings.
The infuriating thing, is now that they have bought a second WLC 4404 (they expect to increase the number of APs beyond 100) all these VLAN mappings are messed up when APs connect to the second WLC. I've been going through them one by one again - it is really unfortunate that the AP Groups VLAN mappings don't apply to HREAP local switching.
I'm going to get back to the next 80 APs - but if some of you have a system for handling the VLAN mappings of a large number of APs.
View 4 Replies
View Related
Aug 8, 2012
I'm configuring AP in Hreap mode. Objective for me is th have a "plug & play" installation method for HREAP. I configure on HREAP AP, Native VLAN set to 1 and the WLAN and Vlan mapping for the current wlan is set to 1 too. WLC version is 7.0.230.0 and AP version is 12.4(23c)JA4
on my cisco switch (WS-C3560-24PS with 12.2(55)SE1), the port configuration is as below:
switchport trunk encapsulation dot1q
switchport trunk native vlan 45
switchport trunk allowed vlan 45,74
switchport mode trunk
no logging event link-status
no logging event power-inline-status
no snmp trap link-status
spanning-tree portfast trunk
spanning-tree bpduguard enable
AP receives a DHCP IP in Vlan 45 and users connected in vlan 45 too. I would like to undestand why the AP is working properly because normally vlan 1 is not configured as allowed vlan on my switch and the native vlan is dedicated only to untagged ethernet packet.
View 1 Replies
View Related
May 22, 2013
I have one cisco wlc 2112 with ios 7.0.230.0 with license to support 12 access points. My access points are nine (9) lap1231ag and one (1) lap1310.I just have one wlan (ssid). My scenario of deployment is in layer 3. I have one interface management and ap manager in the WLC. All my Access Points have differents ip address that WLC. I need to configure a unique ssid to associate my six (6) dynamics interfaces (each dymanic interface with different vlan subnet).Each wlan profile (ssid) should have the same security in phase 2 (wpa2/psk). My cisco access points don't support hreap. My wlc support only (4) interface into an interface group, and i need six (6) dynamics interfaces.
View 6 Replies
View Related
Oct 4, 2012
I have a T1 connection to one of my sites, I am running HREAP with 4 AP's. I have been noticing a spike in traffic from my AP's to the WLC. Even when no one is on the wireless. When you use encryption (DTLS) should this cause spikes on the T1 ?
View 2 Replies
View Related
Jun 28, 2010
I have this Wireless deployment :
Main Site: WLC AIR-CT5508-50-K9
WCS 6.x for 50 APs
(32 ) AP 1140
02 Remote Sites : 03 AP 1140 using H-REAP
Now, my company is considering to implement a wIPS solution, so i planned to install in the Main Site a MSE3300 and (01) AP 3500e as a wIPS AP Monitor in the remote sites,
Need to confirm:
A) Can an AP3500 work with HREAP and as wIPS monitor AP at the same time? or in other words, if it is possible to have an AP wIPS monitor far away from the WLC (over the WAN)?
B) What are the requirements of WAN link if I want to install a Centralized MSE 330 Engine,which perform the wIPS solution in all the network.
View 2 Replies
View Related
Mar 20, 2011
I have two sites.Main site (local) has two Vlans: Vlan1 and Vlan2. Each has its own IP address range.VLAN 1 is the default Vlan and is used for CORPorate traffic. IP range 10.33.4.*VLAN 2 is for guest access to the internet IP range 10.10.10.*I have a WLC4402 on the this site with 2 WLANs: CORP on Vlan1 and GUEST on Vlan2.
Branch site (remote) which has 2 Vlans: Vlan1 and Vlan2. Each has its own IP address range.VLAN 1 is the default Vlan and is used for CORPorate traffic. IP range 10.125.15.*VLAN 2 is for guest access to the internet IP range 10.10.11.*I have an 1141 on this site using HREAP.
Locally, if you connect to CORP, you get a CORP ip address and access to CORP network. If you connect to GUEST, you get a guest ip address and guest access to the guest network. Simple so far....
Remotely, if you connect to CORP, you get a CORP ip address 10.125.15.x and access to CORP network (great). If you connect to GUEST, you get a CORP ip address 10.125.15.x and access to CORP network (not great). This is with the HREAP native vlan ID for the access point set to 2 on the controller.If I set the native vlan ID to 1 on the controller, I can not get an IP address at all.If I do not set the native vlan ID on the controller, I can not get an IP address at all.
View 2 Replies
View Related
Dec 6, 2011
Trying to implement HREAP over WAN between main and remote site. The WLC4402 is on main site. There will be a secondary DHCP at the remote site. Does the switch at the remote site any preparation?
View 4 Replies
View Related
Nov 6, 2012
output are here
*Mar 1 01:28:21.018: %CAPWAP-5-CHANGED: CAPWAP changed state to DISCOVERY
*Mar 1 01:28:21.022: %LWAPP-3-CLIENTERRORLOG: bsnSetCurrentBHRate : fail to set
radio control and data rate
*Mar 1 01:28:21.179: %CDP_PD-2-POWER_LOW: All radios disabled - AC_ADAPTOR (00
00.0000.0000)
*Mar 1 01:28:21.984: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEth
ernet0, changed state to up
*Mar 1 01:28:34.341: %DHCP-6-ADDRESS_ASSIGN: Interface GigabitEthernet0 assigne
d DHCP address 192.168.10.244, mask 255.255.255.0, hostname AP2c54.2d0d.c3c4
View 1 Replies
View Related
May 1, 2012
I have a WLC 5508, AIR-LAP1142N APs and a SSID for students to connect to who bring their own device. I am still testing this and it has not been rolled out but I am running into some serious issues with joining the network. I am authenticating them through a RADIUS server (2008 R2). Problem: many of them cannot connect because they are lacking the certificate.
1. What is a good setup for authentication in a BYOD environment
2. If my setup is good what can I do to allow kids to use their computers on the wireless either without the certificate (which I know is unlikely) or what do I need to have them do to connect. I am hoping it does not involve hard wiring and getting the certificate from the server.
View 1 Replies
View Related
Oct 24, 2011
have a Cisco 5508 controller (version 6.0.199.4) that when I enable global multicast mode it will work for an hour or two and then it will kill the network. All internet both wired and wireless, access to server everything dead. I then have to directly connect to the service port and disable the global multicast mode. Then two reasons for enabling it are Docs2Go and LanSchool both require multicast to be enabled. I have it enabled on our wired network and it works OK there. ted.
View 10 Replies
View Related
Oct 23, 2012
I just turned on 2 Wirelless LAN Controllers 5508 and I am getting this message on both of them:
Loading primary image (Image not found)
** Unable to read "linux.pri.img" from ide 0:2 **
Loading backup image (Image not found)
** Unable to read "linux.bak.img" from ide 0:2 **
And it is taking me to the BootMenu. I selected option 4 to Clear Configuration and the controller seems to restart the system but I still get the same error. I checked the LEDs status and Sys is Amber and Alarm is OFF which according to the documentation is a System Crash.
View 1 Replies
View Related
Apr 4, 2013
I have a WLC5508 with around 70 AP's (LAP1042N) connecting over an MPLS WAN network. WLC and AP's are running 7.4.100
From time to time I have an AP which disassociates from the WLC with the logging beneath. This is a problem with the AP, or is this due to network saturation between the AP and the WLC ?
And if so, should I change the default retransmit values ?
View 1 Replies
View Related
Apr 25, 2013
I am planning to upgrade WLC from 7.2.103.0 to 7.2.110.0 due to some bug, but I wanted to know if it is compatible with WCS - 7.0.240.0 and NAC Guest server version 2.1.0, I am made some search but I couldn't get to proper conclusion.
View 8 Replies
View Related
May 26, 2013
I have a wlc 5508 running version 7.0.116.0 that I need to uppgrade to use the CAP2602I AP. I understand that I need to upgrade it to version 7.0.240 before 7.4.100 to avoid loosing HREAP VLAN mappings, and I have also read that i need to install the FUS image [URL]. In what order should this be done? Shlod the FUS image be installed before new firmware ore after firmware or after 7.0.240 but before 7.4?
View 1 Replies
View Related
Apr 24, 2013
since few weeks i configure my APs on the new WLC5508, and then, the lights are off on the AP, is it normal? however they seems to work fine. What does this light means? FW version: 7.0.22,Is it important?
View 2 Replies
View Related
Mar 25, 2013
In order to enbale HA SSO on our two 5008 WLC's, I plan to upgrade them to 7.3 / 7.4 (currently 7.2)Right now 7.3.112.0 is the latest release. We do not have any 1600 series AP's, which requires 7.4.any reason going for 7.4 directly..or not going for it?
View 5 Replies
View Related
Jun 4, 2013
I am trying to setup SSO between my primary and secondary 5508 controller, and it doesn't appear to be working. I lose connection to both devices after the reboot and then have to console in and disable redundancy manually to regain connectivity. Is there something special required for this to work that isn't apparent?
View 4 Replies
View Related
Sep 13, 2011
I've just gotten in two new 5508 controllers that have come preinstalled with code version 7.0.116.0. My issue is that when I go to downgrade these to 7.0.98.218 I get an error after the Image version check is passed stating the following:ERROR: Incompatible SW image. ERROR: Please install the Data Payload Encryption licensed image.I've tried multiple times to no avail, I've also gone as far as installing the LDPE image of 7.0.116.0 thinking it needed that before downgrading but it still didn't work.
View 5 Replies
View Related
Dec 3, 2012
I am planing to upgrade 2 of my 5508 series WLC from 7.0.116 to version 7.2.111.3. I understand that legacy AP's are no longer supported. Is the upgrade straight-forward just like other code upgrades?
View 19 Replies
View Related
Feb 9, 2012
We have two WLC 5508 and i want to know if it is possible to get an accesspoint ( eg. 1131) to connect to a controller over internet, without VPN-connection. I have read documents about HREAP but that needs, if I understands it correcly, a VPN tunnel or a dedicated WAN-link. I know that ARUBA has this function, but I cant find it with CISCO.
View 2 Replies
View Related
Nov 13, 2012
I am very interested in the new 7.3 feature HA.Also I can read that it is recommended to connect the two WLCs directly. How to use a L2-VLAN between them, in fact to bridge a distance between two data centres?
View 3 Replies
View Related
Mar 4, 2013
I have a Controller 5508, CAP 3501E.I have a problem, all client who connect in 802.11n connect only in Bn and not in Gn.When I diseable the n, the same client connect in 802.11g.
View 4 Replies
View Related
Sep 12, 2012
WLC 5508 product version: 6.0.199.4
AP: AIR-LAP1142N-S-K9
The connection can reach up to 144Mbps when using WPA2 with AES (Layer 2 security), WMM allowed (QOS). But when I use 802.1X (Layer 2 security), can only reach up to 54Mbps. Any special setting when using 802.1X to reach 144Mbps? Or do I need to upgrade?
View 2 Replies
View Related
Nov 27, 2012
We have WLC 5508 installed in our premises to which 80 1242AG APs are connected. Few days ago, all the APs all of a sudden disconnected from Controller and rejoined after 12 to 15 hours. when we try to investigate, there was regulatory domain conflict occur. But we didn't understand that those APs were configured with the same config before. How come they got diconnected and now rejoined without changing any configration in WLC?
Logs for both AP and WLC has been attahched here.
View 3 Replies
View Related
Sep 30, 2012
I've got a deployment of 1142N APs using a pair of 5508 controllers running 7.3.101.0. We're in the United States and the country is set to "US". I've added the UNII-2 channels to Auto-RF on the controllers via "config advanced 802.11a channel add 100" and so forth. According to the output of "
show advanced 802.11a channel", I've enabled every 5 GHz channel that's legal for use in the US:
802.11a 5 GHz Auto-RF Channel List
Allowed Channel List......................... 36,40,44,48,52,56,60,64,100, 104,108,112,116,132,136,140, 149,153,157,161,165
My confusion comes because the automatic assignment of 5 GHz channels is heavily biased toward just a few of them, with most of the available space being ignored. Here are the 5 GHz channel assignments from a large, single-story building with 31 APs:
(qty 2) 36
(qty 6) 40
(qty 5) 44
[ code].....
A total of nine channels are used (two of them only once) while twelve other channels are ignored completely. Many of these APs are close enough to hear one another, so assigning seven of them to ch. 48 makes no sense.
Looking at my campus as a whole, I've got numerous APs using channels 36, 40, 44, 48, 149, 153, 157, 161, and 165. I've got at least one each using channels 52, 56, 60, 64, 112, 116, and 132. Nothing at all is on 100, 104, 108, 136, and 140. I am using 20 MHz wide channels, between, so all are independent.
Can anyone shed light on A) why my distribution is so heavily skewed toward the first nine channels, and B) how I can learn whether certain channels are being avoided due to the presence of radar, etc, on the frequency? I'd like to take full advantage of 5 GHz by having as little channel re-use as possible.
View 9 Replies
View Related
Feb 20, 2013
I have a pair of WLC 5508's. I am installing 7.4.100 on them and they are properly licensed. I am looking to preconfigure these and ship them to our site. My questions are:
1) How much configuration do I need to setup on the secondary controller (ie. same SSID, interaces, ap group, etc...)?
2) Do I need to configure Mobility groups for this HA Cluster?
View 6 Replies
View Related
