Cisco Wireless :: WLC5508 - Backup WLC Across A WAN?
Jan 29, 2013
Currently we have 20 remote sites, each with 2-5 AP's each. They all connect back to our Main Data Site in the US and register on a single WLC5508.
We do not have a backup WLC, but are looking to purchase one. What I would like to know is, are there any problems with the secondary WLC being installed in our Main Data Site in Europe? These two main sites are connected via a 10M MPLS WAN.
So all the remote sites could still connect to the WLC in the US, but in the event of a WLC failure in the US, they would need to fail over to the site in Europe
I'm using WLC5508 /w 7.0..My client do not get its IP. Status shown "DHCP_REQD".I found in (Cisco Live) Troubleshooting Wireless LANs with Centralized Controllers This related with Enable/Disable DHCP Proxy checkbox. I solved. with Enabling this.But,
1) Why this box have been working correctly for longtime? No one did diable/enable this feature on my box.
2) I guest, ver7.0 Disables this chechbox by default. Or not? I also have others two 7.2 boxes. Those are all Enabled.
I have some problem about dhcp via VMware 7.1. My client connect the wifi and get ip address well, then, i turn on VMware (inside my computer) and set as the bridge mode. I found that my VM cannot get the ip-address from dhcp server and I using WLC5508 version 7.2. I try to connect via Switch, my VM get the ip address well.
looking at doing the site survey before detailed implementation. we plan to use a wlc5508, AP3602, a good tripod/stand, PoE switch and AirMagnet to conduct the site survey. i'm inclined to use a single AP and just a guest SSID and let AirMagnet merge the readings on where i 'locate' the AP (on 1 VLAN)
A customer have a bad coverage in a corner of his branch office. He like to add a mesh AP (MAP) in the near of that corner.
I checked allready the documention about Mesh but i'm not sure if Flexconnect and Mesh works togheter. This MAP is in a branch office and the WLC is in the head quarter therefore he likes to uses Flexconnect togheter with Mesh.
I have a customer who is going to deploy a WLC HA AP SSO setup. I have recommended them to have 4 Gigabit SFP modules in each WLC5508.The customer now asks if it is possible to only have one or two SFP modules in the standby unit ? As he says it is properly not going to go in service one time within the next five years if he is unlucky.
We have five cisco WLC 5508 and one WCS .The WLC is running on 184.108.40.206 version at present but we want to upgrade it to 220.127.116.11 but on cisco site at download location , the below thing is mentioned...
WLC Version 18.104.22.168 will need Prime Infrastructure Version 1.3 to be managed, Version 1.3 is not yet available to download at this point of time
Access Point Model----Cisco 3501i Series
So i want to know, can i upgrade it to this version when we are having the WCS in our network ?
In one week I need to import the config from my 4404 WLC to my new 5508, then I just want to change the mgnt IP address of the 5508 and then bring it into the same mobility group.How do I import the config when the 5508 is straight out of the box?
I have WLC 5508 with 6.0 software and kept in main office and 10 sites are connected . I created Group and hreap for the sites AP.Now customer wants the secondary WLC to keep on one another site. And the customer is asking all the configuration like ap group and all should come to secondary wlc automatically . In future also if he create any new group in primary it should come in secondary wlc.And if primary goes down the secondary should controll all the sites and when comes up primary should taken care.Active standbye mode.
I have been asked to setup wireless and we have purchased WLC 5508 and 1142 APs.We have several remote sites and a centralized WLC. The requirement are to have a common SSID (Corporate) advertised across all the remote sites and have that SSID locally switched, and have another two SSID Guest and Mobile tunneled back to the central site (WLC).I want all the wireless (Corporate) clients to use the same subnet as the wired clients at each remote site, the IP assigment will be done by a DHCP server at the central site. The Guest and Mobile users will use a common subnet each across all the site and this will also be handled by the DHCP server at the central site.
I have enabled H-REAP with Centralized Authentication and Local switching but I'm not sure about the second part which is to have a common SSID (Corporate) across the remote sites and localy switched whilst having the other two SSIDs tunneled back to the WLC. Cisco TAC told me to configure dynamic interfaces for each of the remote site but then he said I still wouldn't be able to switch the Corporate traffic localy if I use a different subnet to the wired subnet for the wireless clients.
My problem ist that i have 4 air-cap-1552e APs witch are powerde trugh Power Injectors. They worked fine for a few days but then the controller (22.214.171.124) lose connection to them. Right now i have only one Joined AP. The other 3 are status not joined. I can Ping all 4 Aps and wifi clients are connected through them.
I tried to implement WLC5508 in my network but when I came to connect it to the switch core which is a Catalyst 4000 the link didn't get up. This switch module is a fastethernet, I wonder if that might be the problem since I also tried connecting my laptop to the WLC and the link got up.
If that might be the cause, is it possible to get WLC to 100 Mbps?
I have on my desk a WLC-5508 that I need to setup to ship to a remote location. Normally we configure 4402 model and this model/version appears to be much different. I am trying to configure just enough via the command line to access the GUI via a laptop directly connected to the device. I’ve gone through the Wizard Configuration Tool where you set the hostname, admin account, and management interface (among other things). We use LAG and tagged VLAN on the management interface. I’ve been told in the past this is how we configured the 4402 models via laptop directly connected once the GUI is accessible, but with LAG enabled I don’t understand how a laptop could communicate via trunk, so I've disabled LAG and set the VLAN to untagged. In either case the laptop does not communicate with the WLC. Skipping ahead to my current setup I see the following information via the CLI:
we have a cisco WLC 5508 on which few SSIDs are configured, and two kinds of APs: AIR-LAP1142N-E-K9 and converted AIR-AP1141N-E-K9.
When in WLAN settings we leave WPA2 policy and AES encryption, iPads2 can connect without any problems to AIR-LAP1142N-E-K9, but there is no connection to converted AIR-AP1141N-E-K9. MacBooks, iPhones are connecting without questions.
When we set WPA2+TKIP everything is cool, but other Apple devices can't rich 802.11n speeds((
With only WPA2+AES or both WPA2+AES+TKIP enabled on a WLAN the WLC gets such messages :
Decrypt errors occurred for client xx:xx:xx:xx:xx:xx using WPA2 key on 802.11b/g interface of AP xx:xx:xx:xx:xx:xx
But I know that it can happen when you offer funny encryption combinations that client doesn't like (wpa1+aes, wpa2+tkip). But the advise to try to only enable wpa2/aes for some reason doesn't work.
how to set up support 802.11n on WLC4404 or WLC5508 in the 2.4Ghz? WLC4404 supports 802.11n? or support this protocol only in the brochures? I spent a few days, but did not get the result. I'm connected at speeds 65/130Mbit, but the real speed tests never exceeded 45Mbit. The AP from the test laptop is 7-10 meters.I tested the laptops with a Linksys AP E1200-EE ( 40Mhz, FastEthernet uplink port...)and received nearly 100Mbit!
At WLC5508 able to connect at speeds 150/300Mbit/c but only in the 5GHz band, but real speed tests never exceeded 70Mbit.In 2.4Ghz range I connected at speeds of 130/144Mbit/c, but actual measurements showed no more than the 45Mbit.
All tested with iperf and with site speedtest.net. iperf -w64K -s iperf -w64K -i 2 -t 300 -c x.x.x.x
Laptops: Asus (Atheros AR9002WB-1NG) and Sony (Advanced-N 6230).
My tests AP: 3501I-E and 1252AG-A SW on WLC5508 126.96.36.199
AP tested in different variants - open system and WPA2+AES.
I have two WLC5508 controllers running 188.8.131.52, which having the two of them probably is inconsequential because all the APs are added to only one controller. The problem I'm facing is that I have several LAP1552E's deployed throughout my facility, and I have several that are doing Ethernet bridging to some Cisco switches using G0. In this, I have a PC at the end of one of these switches, and using Iperf and PingPlotter to get some metrics, and what I'm seeing is >400ms latency with <3 Mbit throughput to the PC. On the 802.11a radios I have 18 Mbit set as mandatory, with everything below disabled and everything above Supported, with all MCS indexes under 802.11n enabled.
My channel is set to 161 with a 40 MHz channel-width, and a power of 3 configured.After many days of trying different power settings, channel settings, and such, I can't get better results than above and my channel utilization stays > 75% at all times. I do have video cameras attached to the other bridges switches, and have video QoS set to Bronze and the cameras configured to ~ 1 Mbit bandwidth maximum. Also, average RAP-MAP distance is ~ 1100 ft and average MAP-MAP distance is 400 ft, with the longest RAP-MAP being 1400 ft and MAP-MAP distance being 875 ft.
I have the attached diagram and I followed the instructions from another posts / forum cases and the Apple TV is still not working.
My questions are:
1.-The WLC controller and AP must be in the same subnet?. This is not my case, the AP 3500 is operating in a remote location and I have a centralized WLC 5508. 2.- I already configured the Controller --- > General --- > Broadcast forwarding (enable) + AP Multicast Mode (Multicast / IP: 184.108.40.206). 3.-I already configured the Controller --- > Multicast ---- > Enable Global Multicast Mode (selected) + Enable IGMP Snooping (selected) + Enable MLD Snooping (selected). Please see the attachment. 4.-Do I have to configure something in the Mobility Management --- > Multicast Messaging --- > (Enable Multicast Messaging + Local Group Multicast IP Address) ?????
The Apple TV Device and Ipad are authenticated in the ISE using certificates with no issues and both got IP's from the DHCP for the WLAN Vlan assigned to the SSID activated (see pictures attached).
I want to start implementing a small outdoor mesh network of 3 APs Aironet 1550 in order to grow afterward with more APs. Is there any way to configure those 3 APs in an outdoor mesh configuration (for example, only one RAP and two MAPs) without a Wireless LAN Controller or I have to have at least, one WLC? My idea is to have a WLC 5508, but at the very beginning I don't know if my budget is gonna allow me to cost the WLC.
In an enviroment with WCS and a WLC5508 with 40 AP's (WAPs are either 1262's and 1252's), I have noticed that the bulk of users are infact operating on 802.11g although most operating notebooks are running 802.11n capable NICs (including my own laptops NIC - but yet when I connect I connect at 54Mbps.). Only a small portion of registered clients are using 802.11n. All my WAPs have both radios enabled?My question is how does a client notebook select a "prefered" band of 802.11n. I know in some cases the wireless NICs themselves have an option to select the "Prefered Band", but there are many notebooks out there that dont have this option. What would make a client connect at 802.11n over 802.11g? Who makes that call ?
We're running two 5508 WLCs running 220.127.116.11 pushing out 7 WLANs. They are both live. Each WLC is connected to the same stack of 3750G running 12.2(44)SE6 via Etherchannels.I'm getting tons of MAC flapping errors similar to this:9373213: Feb 19 10:53:54.564 CST: %SW_MATM-4-MACFLAP_NOTIF: Host 843a.4b3c.4cec in vlan 752 is flapping between port Po12 and port Po11Each portchannel consists of ports on each of the two switches in the 3750 stack. Only VLAN 752 shows the flapping activity. LAG is enabled on the each of the WLCs. The portchannel and interface configs are identical, minus the channel-group command of course.Maybe completely unrelated....looking at CDP neighbors from the switch is incorrect:
WLC1 Gig 2/0/44 157 H AIR-CT550 Gig 0/0/1 WLC1 Gig 1/0/21 157 H AIR-CT550 Gig 0/0/2 WLC1 Gig 1/0/20 157 H AIR-CT550 Gig 0/0/3
how can i replace my wlc2504 to a WLC5508 without disconnecting everybody, i have 3 SSID, on different VLAN.. I want the WLC5508 to be the main WLC, so i can remove the 2504 from the network. On the WLC5508, it will be the same configuration of the 2504. Is there a procedure or a wiki on such operation?
is there a way on a WLC5508 to push the same configuration on multiple APs in 1 shot?I need to change the High Availability settings on most of the APs (not all). And the only solution i find is to do 1 by 1...
Two months ago I installed a WLC5508 with sw r18.104.22.168 and we installed 8 AP1142 as a start.
10 days the customer calls and says that the wlc logs error messages that says there is an IP-conflict with the management-interface. The conflict source is its own ip-adress!!! He reboots the WLC but the error message keeps coming. After a short while he notices that there are No APs on the WLC...!!!...
After some discussion I suggested that he should disconnect one of the two gig-ports of the WLC (LAG was enabled and in use). He did so and rebooted the WLC for good measure ... The IP-conflict disappeared but still no APs.....
In the DHCP-server (MS Win2003 server), in the AP-scope we also see that the "leased adresses" fills up with "BAD_IP_ADDRESS" (or the sort ... :-/ )
The setup is like this:
- WLC5508 running r22.214.171.124 - WLC has LAG activated and is connected to two different Cat3750G that are stacked - The management if of the WLC is on the same subnet as the AP1142s, no other hosts on this subnet - WLC management interface on own subnet as the only host (+ def gwy...) - APs on their own subnet, no other hosts - When the APs gets a IP-adress it is possible to ping them from the WLC! - All VLANs/interfaces on the WLC is tagged, ie a "pure" trunk between WLC and 3750-stack - Option 43 configured on the AP-scope - All APs is connected via Power-injector (PWR-INJ4)
WLC5508 => LAG => 2x Cat3750G => TRUNK => Cat2960 with 1x AP1142 => TRUNK => Cat2960 with 6x AP1142
What we have done so far: - Made sure the port-channel on the 3750-stack was configured: port-channel load-balance src-dest-ip - Physically disonnected on port of the WLC - Do "shutdown"on port gig-ports on the 3750-stack and "no shut" on only the one that is still physically connected to WLC - Do "shutdown" on all AP-ports in the 2960-switches. Clear the lease-pool of the DHCP-server, Deactivate scope, Reactivate Scope and finally "no shut" on all AP-ports
Nothing worked, still no APs on the WLC.
I the connected my PC to the consloe of an AP that was easily accessible and powercycled it. The output can be seen below, the most peculiar was the line : " *Mar 1 00:15:53.351: %CAPWAP-3-ERRORLOG: Invalid event 38 & state 2 combination"
1. It worked initially but after the ip-address confilct and reboot of WLC no APs associate to the WLC. Why?? 2. The error message on the AP console: "*Mar 1 00:15:53.351: %CAPWAP-3-ERRORLOG: Invalid event 38 & state 2 combination" What does this mean? 3. Since the AP gets an IP-address an it is possible to ping WLC -> AP, is there some freakish ogre in the Cat2960 that eats up the CAPWAP-packets??
Having setup several WLC4402's in the past, I am posed with a new implementation that I have never tried before. I will be setting up a new 5508 that will ONLY be used for remote access-points in H-REAP mode. It is going into a data center and there will be no local LWAPP's.Is it still required to setup a dynamic interface on a network that will essentially only have the controller IP? Or can I serve all the AP's out of the single, untagged management interface (which I believe is also the old ap-manager interface now?)
I need to integrate Cisco ISE and WLC5508 with FlexConnect (local switching) using EAP-TLS security for wireless clients across multiple floors (dynamic VLAN assignments based on floor level). The AP model used is 3602.
- What RADIUS Attribute can be used for dynamic VLAN assignments based on floor level? Is there an option where I can group all LWAPs in same floor for getting certain VLAN from ISE?
- I intend to use WLC software version 7.2 since 7.3 is latest version. Has someone use WLC software version 7.3 without any major bugs/issues pertaining to FlexConnect and EAP-TLS?
- I read some documents saying L3 roaminig is where the associated WLC has changed. However if user move to different subnet but still associated to the same WLC, would this be consider as L3 roaming too?