Cisco Wireless :: WLC4112 Based WLAN Cannot Reach Any Host But Gateway
Oct 29, 2012
We use a WLC4112 controller with a number of AP1010s. My controller is uplinked to a 4500, which is then connected to a number of 2950s and 4000s, which are where the APs are connected. All switches, as well as the WLC, are connected together using gig fiber, configured as trunk, with no trunk allowed VLAN restrictions. We operate a guest network on VLAN 4 (192.168.14.0/24), which aside from the internet gateway (192.168.14.3), provides a couple other services:
dhcp (192.168.14.50)
print (192.168.14.49)
The gateway is connected to a copper port set to access vlan 4. The DHCP is provided via an Intel nic configured for vlan 4 (among others). The print is a Hyper-V virtual NIC set to vlan 4. There are also hard-wire ports that access this network in various parts of the building, all as "switchport access vlan 4." I have a "guest" network set up on the WLC, operating on dynamic port "Visitor", vlan 4 (192.168.14.48). My wireless clients get an IP from my DHCP server, but cannot ping (or otherwise communicate with) any hosts EXCEPT the gateway (192.168.14.3), so they can get on the Internet without issue. The WLC itself can ping any of the aforementioned wired hosts, and all of the wired hosts can ping each other and the WLC. It is only the wireless clients that refuse to communicate with anything except the gateway. There are no routers in this network apart from the default gateway, this is a basic /24. All hosts are masked at 255.255.255.0. The wireless clients get an IP from 192.168.14.50, though they cannot ping it (but again, everything wired can).My other wireless network, the "corporate" network, does not display this behavior, everything can ping everything.
I have created a connection gateway-to-gateway between RV220W and RVL200, is doing without any problems.For example, I can ping the gateway on the other side. But when I connect trough RV220W QuickVPN (or PPTP) I can not reach the gateway (RVL200) or any host behind it.
I am having problems accessing our internal network via VPN. We have an ASA at the perimeter that connects to a 3745 router and all of our networks come of that router. I can establish a VPN connection to the ASA but I can’t ping any of our internal host.
The internal network I need to access is 172.18.0.0. When I connect to the ASA I get a dhcp address from a pool created in the ASA, the pool is 172.200.1.x. I can’t ping from the ASA to the connected vpn host and I can’t ping from the host to the ASA ip address or to 3745 connected to it.
route inside 172.18.0.0 255.255.0.0 172.18.255.1 1 Route on the 3745 back to the ASA ip route 0.0.0.0 0.0.0.0 172.18.255.2 I can’t see anything on the internal network, I can’t even ping the dns servers and so on.
I recently bought and installed a WAP4410N access point (using PoE) and it's running stable. I was able to access the web-based configuration by using the IP address of the AP (something like 192.168.0.184, coming from the DHCP of my router). However, I'm unable to access the web-based configuration using the host name of the device (mentioned next to the device name in the basic setup section of the web-based configuration). I changed the host name several times, but I can't connect to the device using the host name. Accessing the device by its IP address works, but I have to check the logging of my router to find out which IP address I have to use. Is there a way to access the device using the host name?
(I think my WAP4410N has firmware version 2.0.2.1 installed)
I have recently separated a few sites that I operate, into multiple virtual machines, all with their own IP.Basically, site A is located on for instance www.siteA.com, Site B is located on blog.domain.com etc etc. So my question is, how do I (with the Cisco RV220W), forward port 80 based on host?[URL]
My customer requires the hostport on an access switch to be allocated to a specific Vlan based upon the AD Group that the user is a memeber of ? I am planning to setup NAC in a Real Gateway OOB deployment, using an ACS 5.2. I was initially thinking that the initial authentication server would be the ACS and then the AD, which using group mappings within the AD, I could then assign the user to a specific ACS group and then pass a Radius attribute back to the NAC manager for processing?
I am involved in a project that wants to implement location based services using the WLAN to track users has they move around the estate. I have been conducting a survey using ESS and Air Magnet and both have difficulty in placing APs when the ceiling height goes above 4.0m I am using cisco 1140n APs to get signal readings, but does location tracking start to breakdown once the AP is at a significant height of 4-6m
I have 2 SSIDs being broadcasted out in my campus, one for computers, macs etc and other for just cell phones, Is there a way we can restrict the cellphones from not connecting to the SSID used by computers. I do not have an identity management system like ISE. My controllers are WISM2 and I use 3502 APs.
Following is the detail from one of my controllers
Manufacturer's Name.............................. Cisco Systems Inc. Product Name..................................... Cisco Controller Product Version.................................. 7.2.110.0 Bootloader Version............................... 1.0.16 Field Recovery Image Version..................... 7.0.43.32 Firmware Version................................. FPGA 1.6, Env 0.0, USB console 2.2 Build Type....................................... DATA + WPS
I'm running a Windows Server 2008 R2 connected via cable to my RV220. The server is hosting several websites running in separate virtual machines. These websites are accessible through a reverse proxy set up on the 2008 R2. In addition the 2008 R2 provides access to storage over Windows file sharing (client backup, file sharing ...). Most of the clients are connected via wireless.My problem is that after some time (~24h) I lose the connection to the services provided by the 2008 R2 server as a result of (host) name resolution has stopped working. This only happens for wireless clients. Wired clients are not affected.To give more details: Network clients connected via wireless can't see clients connected via Ethernet and the network shares are not accessible anymore (even by putting in manually "\hostnameshare", but "\[IP address]share" still works). Being connected via Ethernet the communication between client and server works flawlessly - the server appears immediately on the network device list. The other way around is also not possible: the server can’t see clients connected via wireless. The reverse proxy is still accessible through wireless connection by putting in the IP address, e.g. "http://192.168.1.123/homepage" but "http://hostname/homepage" won't work.A restart of the router will fix things but only for the next couple of hours.
I'm running into what seems a basic ip routing config problem with a Catalyst 3750 (IP Base) switch. I have several VLANS configured on the switch with IP routing enabled, and the switch is connected to the inside interace of a new ASA 5520 as follows:
ASA5520 IP (Default gateway): 192.168.1.1Switchport Gi1/0/1 is configured as a routed port, IP address 192.168.1.3 255.255.255.0Example VLAN is VLAN 100, IP address 192.168.100.1 255.255.252.0 From the switch CLI, I can ping all VLAN addresses, as well as the ASA5520, and the client laptop I'm testing with from VLAN 100.
From the client laptop on VLAN 100, I can ping all switch interface and VLAN addresses (inter-VLAN routing is working), including 192.168.1.3, but I CANNOT ping the default gateway at 192.168.1.1.
Here is the relevant configuration information on the 3750:
! no aaa new-model switch 1 provision ws-c3750x-24 system mtu routing 1500
I set this up and I can ping all the gateways but never the hosts. I was hoping I could make these links between 6500's a mix of L2 and L3. Check it out. They are connected in a linear fashion R1--->R2--->R3. I can ping from R1 to R3's SVI4 gateway but I can never ping a host on that SVI4. I was hoping that I could use the port-channels between 6500's as routed links or as trunk links depending on the type of traffic....thought it would ease the migration. I suppose I could always get rid of the port-channels and just make separate L2 and L3 links between the 6500's.
I would like to setup a 2504 to have one Guest WLAN and one Staff WLAN with a controller port for each WLAN connected to different devices.
I would prefer to connect the WLC Guest port to an ASA 5510 and the WLC Staff port to an internal 2960S switch. Will this work? I haven't setup a 2500 series controller previously.
I have a host that can successfully connect to a PIX 515E (7.x OS) via VPN Client; however, I have no IP routing to the LAN from the remote host.The VPN IP pool works finem,The LAN default gateway is the inside interface on the PIX; the network is flat L2 behind it.The default route on the PIX points out; no other routes are defined,The VPN remote host can be pinged from LAN hosts, but the VPN remote host cannot ping any LAN host, not even the PIX inside interface.
We had setup a wired/wireless LAN using Cisco 881W router for one of our client. Wired lan works OK but we have issues with wireless. Users on wireless LAN can connect to the wireless network, but cannot browse the Internet. The wifi network does not give out an ip address to the client so client cannot get to the default gateway and Internet. Not sure what part of config does not work.
##### sh runn ##### 881WiFi#sh run Building configuration...
I have one WET200 Wireless Brigde, connected to internet router... I can't use the infraestructure mode to broadcast the ssid to wireless cliente like laptops,
Only can use the ad hoc mode, but the wireless clients dont reach the internet from adhoc connection trought WET200...The datasheet saids "client only" for WET200, what is the diference between client only and Access Point mode? ??
Recently i bought a new printer: Epson SX620FW, I've tried many things, but I can't connect it wireless to my network. Ive downloaded and installed the latest drivers and software from the internet. My PC is connected with a cable to my wireless router. When I connect the printer with a cable to my router everything works perfectly. But I want to connect my printer wireless. On the printer I disconnect the cable. I followed the wireless wizard setup on the printer and I connect to my wireless router. This is confirmed by an ip adress on the printer. Also in the menu of my router I find the ip adres of my printer in the DHCP clients list. So far so good. But from my PC I can not find the printer in my network. I also cant ping my printers ipadres. When I connect the UTP cable to my printer again, I can ping the ip of my printer.
I have a new EA4500 router and I cannot configure it to reach the 450 mbps that is supposed to get.
I have it configured as follows: Dual Band- 2,4 and 5 GHz 2,4 in 20MHz only - 5 GHz in 40 MHz only 2,4 Mixed - 5 Ghz only N WPA2 personal in both Channel - automatic (both)
I have checked that the 5 Ghz network can only use 4 channels: 36, 40, 44, 48. Where are the channels up to 100 (or more)? How to get all the power of the router?
I have DSL set up in a home network. I want it to be used in my barn. The signal won't reach wireless though. I have 2 older wireless routers not being used - Lynksys wrt54gx4. Can I add two of these in the path to the barn to extend the signal? I would put one in the back of the house and one halfway to the barn in the pool house. ZCan these routers connect wirelessly to the home network?
We have a Windows server based network (15 wired computers) and four wireless devices (more to come)We are using a CISCO SA520W appliance in the main building as the perimeter Internet gateway / firewall / wireless access. It all works well.We have a second building too far away for wireless devices to reach the SA520W radio in the main building.The second building is connected via fiber to the main building (switch to switch). Several wired computers are connected to the switch in the second building.We want to provide seamless wireless connectivity as wireless device users move between buildings.
We thought to mount and connect another simple B/G capable wireless access point, via ethernet wire, to the switch in the second building. But we're not sure of the best CISCO/Linksys model to choose for this. The choice should work well with the SA520W configuration and be relatively simple to configure in that environment.We're also unsure of the steps to configure a seamless wireless experience for the roving wireless device users.
I've just reset our WISM2 in the test lab back to factory default as I needed to reconfigure the 6500 and the WISM2 itself. Bearing in mind I had it working before.I've just renamed and re-addressed some of the vlans so things flow better and make it easier to add more WISM2s in the future.Now I've run through the initial configuration and it's rebooted ok and show WISM status is showing Oper-Up and there's a port channel 407 been created as I would expect. However, I am unable to get to the management interface via GUI or SSH. In fact from the 6500 I can't even ping the management interface (but I can the service port).The Vlans have been changed in the 6500 config so it knows the native-vlan and service vlan etc and all the vlans are up/up.
I am trying to access [URL] with a Linksys E3000 router. A few days ago it was working fine, and between then and now I made no changes to my network, it just stopped working one day, I assumed the website was down but it turns out that I am able to access the website fine on other networks or via proxies. I also hooked up my computer directly to my modem and I was able to connect to the website fine, but when I try my wired connection to the router I am unable to connect, I have tried Google DNS without success. I know this is a problem with my router, not my modem or computer or ISP.
it might be good to point out first that this was never a problem before i began fixing a completely irrelevant problem (screen broke) with my laptop, which took around three weeks. i could at that time use the internet a couple of rooms away from the router just fine, but now it's a no-go. .
the model is WRT54G, and the serial number is CDFD1F9CJ507.
We have a large house, with wired connections in every room. After the ISP just installed a new EA4500, the wireless signal does not reach the whole house.Is it possible to plugin the old X3000 into the wired connection upstairs and have it boost a wireless signal to that area?I know how to reset the unit and access the setup page.
I have a laptop with an Intel Centrino 6300 Ultimate-N wireless card. With the previous firmware I was able to reach 300mbps while on the 5GHz band. Since I updated my E3000 to the latest firmware (1.0.04) I can only reach speeds of 144mbps. I have done a factory reset on the router and stll get the same result. Is there any way I can get it to reach 300mbps again with the current firmware?
Also, yes I have uninstalled / updated the driver software for my wireless card. I have also changed the appropriate settings for the 5GHz band. (40MHz channel width, using WPA2 encryption)
i'm setting up a wireless network for a local B&B they currently have a Linksys WAG54GS ADSL router in one of the rooms but need the wireless signal to reach each guest room the house has thick brick walls and an upstairs.i was thinking of using 2 x repeaters, the WRE54G's, and to put one on the ground floor within range of the current ADSL router and to put another on the 1st floor within range of the repeater on the ground floor to receive the bounced signal.I don't know much about these repeaters and how they work exactly and so unsure if this would be a viable solution in my case.
I installed a wireless netopia usb adapter on my desktop, but I can't connect to my network, it says acquiring ip address, DHCP is enabled and started, but for some reason its not assigning this computer an ip address, I have two laptops also on my network and I don't have any problem connecting with them.
I've got two RV082's connected. Each has a dynamic IP (changes typically every few weeks). I've configured the tunnels on both ends with a local and remote "Remote/Local Security Gateway Type" of "Dynamic IP + Domain Name(FQDN) Authentication".If I look at the VPN Summary tunnel status, it shows an IP address of "mydomain.dyndns.org 0.0.0.0" under the "Remote Gateway" column heading. The Tunnel Test "Connect" button is N/A.I can resolve both of the mydomain.dyndns.org entries on both sides of each VPN using the Diagnostic DNS lookup tool within each router. If I hardwire a fixed IP address for the Local and Remote Gateway everything works just fine. VPN is good.
I just can't seem to get the "mydomain.dyndns.org" function to work. It appears the router can't resolve the dynamic IP from the domain names on each of the routers.
I replace our aging rv082 routers with wireless rv220w routers. The gateway to gateway vpn works great, however I am no longer able to manage our print servers port 80 management page. I can ping any host with success, and I can manage hosts that have a port 10000 or 8000 web interface - but no port 80 ones... I had no issues when using the old rv082 routers...
I picked up a pair of RV220W's and before I spent loads of time at a remote site, I figured I'd go through some VPN testing at home to make sure I could get it setup properly. What this means is I've plugged the Internet uplink into a switch, then from the switch into both routers & configured them (using unique static IP's for each) from there. For what its worth: While I have some IT experience, I don't have strong networking experience.
I setup several VLAN's on the local RV220W, and the end result is to make it so that an asset at the remote site with an IP in any of the ranges (192.168.121.0/24, 192.168.131.0/24, 192.168.141.0/24 and any future VLANs) can communicate with/access resouces at the local site. Likewise, an asset at the local site with an IP in any of the ranges (.121, .131, .141 + any future VLANs) should be able to reach the remote resources (currently just 192.168.181.0/24, but future VLANs as well).
This evening I tried to focus on the relevant VPN pages of the Administration Guide to get the VPN up. Leaving the defaults I got as far as establishing a link between both sites and it seems that things are working right: From the remote site (.181) I can access the local site (.121, .131, .141); and from the local site I can at least ping resources (a laptop) on the remote site. (Yay!)
However, when I physically connected an asset that had a 192.168.121.X, 192.168.131.X and 192.168.141.X IP addresses to the remote RV220W (which is 192.168.181.0/24), I couldn't see it from the remote or local sites.I assume this is expected. But I'm reaching out to the community to see what other possibilities might be available becuase networking is a weak area for me. I figured it might be something like a Static [or Dynamic] Route but I really am not 100% sure.
'TECHNICAL' SPECS
Local Router LAN/WAN Settings: LAN IP: 192.168.121.1 on default VLAN (1) VLAN 13 defined 192.168.131.1 with DHCP enabled; Reservations created outside of DHCP scope VLAN 14 defined 192.168.141.1 with DHCP enabled, Reservations created outside of DHCP scope Inter VLAN Routing enabled for all VLANs
