i received access point types AIR-LAP1252AG-E-K9, which i want to connect to my wlan controller AIR-CT5508-K9. Update from IOS etc. is working fine. Also all access points are recognized by the controller.We got the AIR-LAP1252AG-E-K9 with two antenna versions.
View 1 RepliesI’m having a problem of joining new Aps( Ari-ap1242G-E-k9 ) to the following wireless LAN controller. WLC details as follows,
Model No - AIR-CT5508-K9
Software Version - 7.0.116.0
AP Model - ARI-AP1242G-E-K9
AP console logs attached in Error.jpg file
I want to confirm if the access point (AIR-AP1141N-E-K9) can work with the Wireless LAN Controller (AIR-CT5508-25-k9)
View 2 Replies View RelatedI am running big wireless network, with 20no of 5500 with 7.0.116.0 version. I have more than 20,000 AP's. If i add some config in primary controller or do some changes or reboot all the AP's are moving to backup controller. this doesn’t have any problem, but many AP's which moved to backup controller are losing VLAN mapping. This happens every time. Primary --> backup, backup --> primary. Both controllers have same vern...same config etc..
AP model: AIR-LAP1252AG-A-K9
Controler model: AIR-CT5508-K9
Whether we can configure HA between AIR-CT5508-100-K9 and AIR-CT5508-25-K9. Or we should require this AIR-CT5508-HA-K9 ?
View 6 Replies View RelatedI have a 5508 controller at our headquarters and am installing some 3502 AP's at a remote branch. Unfortunatly, the remote branch has a different Vlan setup for some reason and the vlan that is used for the WLC (90) is designated for telephony at this branch. Can I put the AP's on a different VLAN (10) without having any issues? I will still use DHCP option 43 to point them back to the controller. Below are the configs for the WLC interfaces and what I am proposing for the AP interfaces:
WLC Config
interface GigabitEthernet1/1/38
description WLC01
switchport
switchport trunk encapsulation dot1q
switchport trunk native vlan 90
switchport trunk allowed vlan 1,10,50,90,91,390,410-413,610-613,800,810,811
switchport mode trunk
[code]......
In our test set up, we have two WLC 5508 Controllers connected via Checkpoint UTM-1 firewall Inside and DMZ Interfaces. Both the WLC controllers are connected to the firewall via Cisco 3750 switch. On the Local (Inside) Controller, guest SSID is enabled and attached to the wireless management Interface. On the remote anchor controller, guest SSID is enabled and attached to the Management Interface as well. The following configs are replicated on both the Controllers.
SSID Name - guest
Interface - Management ( VLAN 10 on Local and VLAN 20 on remote) -
Mobility Group: Same configs at both ends
SSID Anchor : Anchor SSID on local and local SSID on Anchor.
AP: CAPWAP 3502 Management Subnet
[code]....
Is there any thing missing in the wireless configs and or the firewall rules as i could not see DHCP request back from the Anchor Controller. Also, after DHCP is obtained, the web authentication request will be redirected to an Amigopod device for authentication. In this case is the redirect URL congiguration to be performed only on the Anchor Controller or is this to be replicated on both the Local and Anchor Controllers.
Is it possible to have a license loaded on an AIR-CT5508-HA-K9 in order to have it working as a stand alone controller?
View 4 Replies View Relatedwe do have a site where we need to deploy AIR-LAP1142N-E-K9 and AIR-LAP1242G-E-K9 APs. We have two AIR-CT5508-K9 controllers with SW version 6.0.188.0.AIR-LAP1142N-E-K9s work okay, as expected, we do not have any problems with them.However AIR-LAP1242G-E-K9s do not, there is a problem with establishing CAPWAP tunnel with the controller.The AP is seen on the controller for a while, with 0 time up-time, cannot change any settings on the AP via controller, and after a while it disapears from the controller, apears again and this repeats.
The APs and controllers are connected to the LAN campus.Controllers via two 1G links configured as Etherchannel to WS-C6506-E VSS switch with s72033-ipservicesk9_wan-z.122-33.SXI1.bin on it.APs to WS-C3750G-48PS with c3750-ipbasek9-mz.122-50.SE2.bin on it. 3750 is connected to the C6505 via two 1G links configured as Etherchannel.Below I copied the log I captured on 1242 and the controller. Highlighted ones are the ones which I think might bring a clue.
I performed some troubleshooting steps.
- As we have some other controllers available over WAN, I tested the 1242 AP with 2100, 4400 and also with the same model AIR-CT5508-K9 with SW version 6.0.188.0 over WAN and this worked always okay.
- I wanted to be sure that I eliminate any kind of out of sequence packet issue, so I brought down all redundancy L2 links so that the L2 path from the AP to the controller was only through one leg links.
- I also brought the second controller down to eliminate potential issue with having two of them up.
- The AP gets its IP from DHCP configured on the C6506 switch, I am always able to ssh to AP, so the IP connectivity does not seem to be an issue.
- I have more 1242s, all behave in the same way. I also connected them to some other 3750 switches we have in the campus, always the same.
- As this seems to be maybe a kind of ssl issue, I tried to play with controller settings, like enabling Accept... options under Security/AP Policy,but this did not work.
- I also tried to reboot the controller, no improvement.
- The APs came from the factory, so in the beginning everything was factory default in them. They were always able to download the image from the controller in the very initial phase. I still do have some of them untouched, so I can perform any troubleshooting steps with the fresh one.I can reproduce this, can also send debugging logs if needed.
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
This Discussion has been converted into document:- [URL]
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
AIR-LAP1242G-E-K9 10.0.13.28 log
*Mar 1 00:00:05.922: %SOAP_FIPS-2-SELF_TEST_IOS_SUCCESS: IOS crypto FIPS self test passed
*Mar 1 00:00:07.536: %SOAP_FIPS-2-SELF_TEST_RAD_SUCCESS: RADIO crypto FIPS self test passed on interface Dot1 1Radio 0
*Mar 1 00:00:07.672: %LWAPP-3-CLIENTEVENTLOG: Read and initialized AP event log (contains, 304 messages)
[code]....
I've two wlc model CT5508 version 7.0.116.0. They are working fine except for the RF grouping part. When I look at the RF Group members part in the configuration, I can see only one wlc (the one I'm connected to). If I connect to the second one, in the same part, I've just one controller (so the second one..). I tried to restart the algorithm but no change. Each controller is configured with Group Mode set to auto, and their respective role are auto-leader...I tried to change the RF group name on both wlcs, but it didn't fix the problem. When I look at the logs, there is one which appear quite often:
*emWeb: Nov 29 10:32:07.764: %LOG-6-Q_IND: dtl_arp.c:2581 ARP input q exceeds limit. Current val = 50 [...It occurred 38 times.!]
I have issue about Wireless controler , i have 2x WS-C3750G-24WS and 1x AIR-CT5508-50-K9 , i have max 50 access point license and i can't upgrading because WS-C3750G-24WS is and of life , can i use AIR-CT5508-50-K9 with 3750G to work together? , mobility and everything....
View 1 Replies View RelatedWhat is the operating and/or peak power consumption (in kW) of a 5508 WLC with redundant power supplies?
The below power details are from the 5508 datasheet which lists 115 W as the maximum draw (0.115 kW) however this seems a bit low, is this right?
Input power: 100 to 240 VAC; 50/60 Hz; 1.05 A at 110 VAC, 115 W Maximum; 0.523 A at 220 VAC, 115 W Maximum; Test Conditions: Redundant Power Supplies, 40C, Full Traffic. Heat Dissipation: 392 BTU/hour at 110/220 VAC Maximum Cisco 5500 Series Wireless Controllers Data Sheet: [URL]
Basically I need to upgrade the license for Base-AP count to add 100 more AP's however my vendor has provided hardcopy of license as below:
-LIC-CT5508-UPG
-AIR-CAS-3KC-K9
-AIR-WIPS-AP-5
-L-NCS-1.0-100-ADD
My understanding is rigister LIC-CT5508-UPG/PAK number on cisco site and get .lic file however what is the use of other PAK where do i register this files with? Moreover , we do have NCS , MSE in place which is centralised devices.
i have setup of following AIR-CT5508-K9 controller and around 20 AP spread all over the place, two SSID one guest and one for my employees.
the one for guest has web authentication, using Iphone every 2 to 3 minutes it time out and i have to reenter the credentails for web authentication.
I get the following error message at startup.
---
Error (2048) found in fsck check - attempt to repair.---
What is the implication of the error message 106007? Do I have no problem continuing to be left out of this error?
When a client connecting to a specific AP (example AP01), after every 1800 sec uptime it will reconnect and join other unit AP (example AP02)Both AP physically installed distance is around 6 meters from each other. I conduct the testing where i get myself sitting in middle between these two APs.
01. If i disable settsion timeout this feature, or setting the seconds become higher value, what's the performance and security impact? Is it recomend to change the default 1800 seconds session timeout?
02. Is there anyway i can tweak on WLC controller to prevent the client after session timeout then associate with another AP. This will lead major performance impact as the client woudl possibility connect to the weak signal AP and effect on the performance.
These are the details for reference:Client detail
- Dell DW1520 wireless-N WLAN card, with firmware version 5.100.235.12
- CCX version 4 supported
- Layer 2 security is WPA2 personal with PSK.
- wireless radio an
Controller detail:
model is AIR-CT5508-K9
software version is 7.2.110.0
I have a problem with AIR-LAP1131G-E-K9 (Boot version 12.3.8.0) access point. It can't connect to controller (WLC on SRE v.7.0.240.0) with error: *spamReceiveTask: Feb 26 07:32:31.197: %LWAPP-3-PAYLOAD_MISSING: spam_lrad.c:5516 Join request does not contain BOARD_DATA payload. do i need to do something manually with this access points? I have 10 AIR-CAP3502I-R-K9, and they are working fine with controller.
View 26 Replies View Relatedi have lwapp 1130 in internal network , i already configure dhcp with option 43, in my switch connected to ap i set vlan 1424 for management AP and the ap got ip addres from dhcp server. The wlc controller is in DMZ with ip 10.222.5.3, from switch connected to ap i can ping 10.222.5.3 , it aslo seperated by cisco asa firewall, i already set allow from 0.0.0.0 to 10.222.5.3 udp port 5246-5247 and 12222-12223.
View 4 Replies View RelatedI want to change the management IP of our wireless controller, I have 5 LAP1142N connected to this controller.
I have a few questions before I will do this task.
1. If I change the management IP, will the controller need a reboot?
2. Will the AP's automatically sync with the new management IP?
3. Do I need additional configuration on the AP's?
4. What else do I need to consider.
Can I connect various Aironet 1242 to Wireless controller 2500?
View 4 Replies View RelatedI have Cisco 5508 Wlan Controller and its having 6 Fiber Ports and I have AIR-LAP1131AG-E-K9 Access Point. Can this Access Point will work with this Lan Controller? Can i connect 3 switches to this wlan controller?
View 1 Replies View RelatedQ: a client has a network with 60 AP's controlled by a AIR-CT5508-50-K9 (+ L-LIC-CT5508-25A) with a redundant power supply. Can he get full redundancy by purchasing a second controller? If he purchases one, can he bring it into the network? What about the extra license for 25 extra AP's installed on the first controller?
View 4 Replies View RelatedI have this Wireless deployment :
Main Site: WLC AIR-CT5508-50-K9
WCS 6.x for 50 APs
(32 ) AP 1140
02 Remote Sites : 03 AP 1140 using H-REAP
Now, my company is considering to implement a wIPS solution, so i planned to install in the Main Site a MSE3300 and (01) AP 3500e as a wIPS AP Monitor in the remote sites,
Need to confirm:
A) Can an AP3500 work with HREAP and as wIPS monitor AP at the same time? or in other words, if it is possible to have an AP wIPS monitor far away from the WLC (over the WAN)?
B) What are the requirements of WAN link if I want to install a Centralized MSE 330 Engine,which perform the wIPS solution in all the network.
I know that the 3600 series APs are not supported on the 4404 WLC. However, would the following scenario be supported? I would like to use the 4404 (software rel. 7.0) as a guest anchor with a 5508 (software release 7.2) as the foreign controller supporting series 3600 APs. I ask because the APs do not need to join the guest anchor.
View 7 Replies View RelatedWe have a customer that have 2 5508 as primary and backup controller and a 4400 as an anchor controller. We plan to upgrade the 5508 to 7.3.112.0 and the 4400 is already 7.0.116.0. Will there be any issue if the anchor controller is not the same code as the foreign controller? Do I also have to upgrade the acnhor controller to 7.0.240.0?
View 2 Replies View RelatedWe are trying to navigate the waters in choosing between a in-house, controller-based, wireless network solution or a cloud-based solution. We have been presented with the usual suspects in cloud-based (Aerohive, Meracki, etc) and with Cisco (5500) and Aruba on the other side. We are a multi-campus organization with approx. 200 APs.Any hard reasons why go with a controller-based vs. cloud-based solution? If we must keep the conversation limited to Cisco, why go Meracki over Cisco's WLC solutions or vise versa?
View 1 Replies View RelatedI am looking to configure a wired and wireless guest network. I have industrial barcode scanners that connect to one SSID and then there is the business network on the office SSID (no vlan seperation for these devices just different SSIDs). There is not really a need to seperate the business network from the scanners in any case. However, there are needs for a guest network and this needs to be seperated. At the bare minumum I would like to have the wireless guest network. Here is what I have: 2125 Wireless LAN controller managing 18 LAPs (1 indoor and 17 outdoors)Cisco Cat 2950 switches (2 x 24 port and soon to be replaced with 2 x 48 port 2960's with 802.1x capability) Sonicwall TZ210 firewallOne existing wired and trunked vlan for PLC infrastructure. One ESXi hosting Windows server guests (soon to be 2 with vMotion) The reason for the wired guest access network is tp prevent anyone from plugging into the wall jack in the office with thier home laptops or anyone else from being on the same subnet as our domain machines. Granted they would be unathenticaed but there would be no layer 2 seperation and that is what I think would be best.
How would I go about doing this on the wireless controller without an anchor controller just using my existing hardware? I would like to have the Guest SSID only availible in the front office. Is it possible to offer a guest network while still servicing the business network SSID on the same access point? Then might I be able to have the guest network be treated as it should at the controller? However this might present another issue altogether as the guest traffic will be over the same wire as the business SSID until it hits the controller for management.
Some of my Lightweight Access Points lose connection every 10 minutes now, it worked without problems before.
I'm using an AIR-CT5508-K9 Controller with Version 7.0.116.0 and AP are all AIR-LAP1242AG-E-K9.
In the log I find informations about my node changing his parent and then reseting the radio interface.
I checked my configuration, but perhaps I missed something.
7Mon Oct 31 14:35:11 2011AP's Interface:0(802.11b) Operation State Up: Base Radio MAC:00:3a:99:90:55:c0 Cause=Radio interface reset. Status:NA8Mon Oct 31 14:35:11 2011AP's Interface:0(802.11b) Operation State Down: Base Radio
[Code]......
I recently upgraded our controllers to the latest version 7 software, as I read this was one of the requirements to get them to connect. But I am not having any luck getting into a controller. Normally I plug them in to the network, they pop into the controller listed as something like AP5057.a844.xxxx and then I can finish configuring them, but a static IP on them, etc. This is the first of this model AP I have tried to deploy, so I am wondering what is different with these. or what I might be missing in the default config in the WLAN controllers. Niether of which are set to "Master" either.
View 10 Replies View RelatedI have one cisco wlc 2112 with ios 7.0.230.0 with license to support 12 access points. My access points are nine (9) lap1231ag and one (1) lap1310.I just have one wlan (ssid). My scenario of deployment is in layer 3. I have one interface management and ap manager in the WLC. All my Access Points have differents ip address that WLC. I need to configure a unique ssid to associate my six (6) dynamics interfaces (each dymanic interface with different vlan subnet).Each wlan profile (ssid) should have the same security in phase 2 (wpa2/psk). My cisco access points don't support hreap. My wlc support only (4) interface into an interface group, and i need six (6) dynamics interfaces.
View 6 Replies View RelatedI can't connect to the internet. I'm currently using a USB internet, but the problem still exists. So it's not working with either cable or USB internet. It just won't connect. I've thought for a long time that there is probably something wrong with my network card, but I've run some tests that I saw on the internet, and it appears as if the network card is fine. I've also thought that there might have been a program or something that I installed that could have caused this problem, but I can't find the problem. When I go to the device manager, I can find one network card called: "Realtek PCIe GBE Family Controller". I've tried to reinstall the card, but it doesn't work. I can't find any software on the internet for this card either.
View 15 Replies View Relatedso i can not connect to net on my desktop but my wifi works fine, the error is the realtek PCIe FE family controller (code 31) i have tried updating the drivers but nothing i have verizion fios.
View 2 Replies View RelatedI am an intern and do not want to compromise the network. I was asked to prepare a step by step guide to connecting to a server from 2 different VLAN's. I am using a Trendnet TEG-2248WS B1.0R switch. that is all of the information that I was given.
View 1 Replies View Related