8510 WLC in HA mode over OTV

Hi
I am looking at installing some 8510s in High Availability mode. As the 8510s will be in different Data Centres I need to take into account the HA failover connectivity.
I can see on CCO some info on L2 connectivity been needed for WiSMs but cant find any info on 8510s.
http://www.cisco.com/c/en/us/td/docs/wireless/controller/technotes/7-5/High_Availability_DG.pdf
The Redundancy VLAN should be a non routable VLAN. In other words, no layer 3 interface should be
created for this VLAN and can be allowed on VSL Link to extend HA setup between multiple chassis
in VSS setup. It is important to make sure this VLAN is dedicated for the HA process and is not part of
any Data VLAN, or else it may result in unpredictable results.
The connectivity between the Data Centres uses Nexus 7k & 5k's, with Layer 2 provided by OTV.
Does or has anyone installed 8510s or other WLC appliances over a dedicated L2 VLAN between different switches using OTV and can it be configured ?
cheers
Hi
re this part of the response
5500/7500/8500 WLCs have a dedicated Redundancy Port which should be connected back to back in order to synchronize the configuration from the Active to the Standby WLC. Keep-alive packets are sent on the Redundancy Port from the Standby to the Active WLC every 100 msec (default timer) in order to check the health of the Active WLC.
can the dedicated redundancy Port be connected over an OTV link to mimic a back to back connection as we need to put the 8510s into 2 different Data Centres

Hi Vinod,
After reading your answer above, please correct me if i am wrong that for the HA to happen it has been connected back to back through the redundant port for checking its keep alive.
but as per cisco this is there statement.
High availability (HA): Client SSO
Enables client stateful switchover for 1:1 redundant controller deployments
Industry's first and only controller redundancy solution reduces client downtime to less than a second for business-critical applications, with no client reauthentication needed. The redundant controllers can be geographically distributed over a Layer 2 connection for data center level redundancy
so how is this possible? i have configured OTV for the Management port but question araises for the redundant port which uses link local address how we will get the layer 2 capabilities for that.

Similar Messages

  • Wlc ha maintenance mode

    We have 2 wlc 5508 with software  7.5.102.0, both wlc have 25 AP license.
    We try to setup HA SSO but 1 wlc in  maintenance mode: Maintenance cause= Incompatible Software license
    Could you help me ?
    thanks.
    ============== Primary controller===========================
    (Cisco Controller) >show redundancy summary
                Redundancy Mode = SSO ENABLED
                    Local State = ACTIVE
                     Peer State = UNKNOWN - Communication Down
                           Unit = Primary
                        Unit ID = BC:16:65:F9:19:60
               Redundancy State = Non Redundant
                   Mobility MAC = BC:16:65:F9:19:60
    Redundancy Management IP Address................. 192.168.11.11
    Peer Redundancy Management IP Address............ 192.168.11.12
    Redundancy Port IP Address....................... 169.254.11.11
    Peer Redundancy Port IP Address.................. 169.254.11.12
    (Cisco Controller) >
    (Cisco Controller) >show interface summary
    Number of Interfaces.......................... 5
    Interface Name                   Port Vlan Id  IP Address      Type    Ap Mgr Guest
    management                       LAG  30       192.168.11.9    Static  Yes    No  
    redundancy-management            LAG  30       192.168.11.11   Static  No     No  
    redundancy-port                  -    untagged 169.254.11.11   Static  No     No  
    service-port                     N/A  N/A      0.0.0.0         DHCP    No     No  
    virtual                          N/A  N/A      1.1.1.1         Static  No     No  
    ============== Secondary controller===========================
    (Cisco Controller) >show redundancy  summary
                Redundancy Mode = SSO ENABLED
                    Local State = MAINTENANCE
                     Peer State = UNKNOWN - Communication Down
                           Unit = Primary
                        Unit ID = F8:72:EA:EE:86:60
               Redundancy State = Non Redundant
                   Mobility MAC = F8:72:EA:EE:86:60
    Maintenance Mode = Enabled
    Maintenance cause= Incompatible Software license
    Redundancy Management IP Address................. 192.168.11.12
    Peer Redundancy Management IP Address............ 192.168.11.11
    Redundancy Port IP Address....................... 169.254.11.12
    Peer Redundancy Port IP Address.................. 169.254.11.11
    (Cisco Controller) >
    (Cisco Controller) >
    (Cisco Controller) >show interface sum
    Number of Interfaces.......................... 5
    Interface Name                   Port Vlan Id  IP Address      Type    Ap Mgr Guest
    management                       LAG  30       192.168.11.10   Static  Yes    No  
    redundancy-management            LAG  30       192.168.11.12   Static  No     No  
    redundancy-port                  -    untagged 169.254.11.12   Static  No     No  
    service-port                     N/A  N/A      0.0.0.0         DHCP    No     No  
    virtual                          N/A  N/A      1.1.1.1         Static  No     No  

    In order to use a WLC that has a license as an HA WLC, you need a minimum of a 50 AP license.
    http://www.cisco.com/en/US/products/ps10315/products_tech_note09186a0080bd3504.shtml
    If you want to convert any existing WLC as a Standby WLC, do so using the config redundancy unit secondary command in the CLI. This CLI command will only work if the WLC which is intended to work as Standby has some number of permanent license count. This condition is only valid for the 5500 WLC, where a minimum of 50 AP Permanent licenses are needed to be converted to Standby. There is no restriction for other WLCs such as the WiSM2, 7500, and 8500.
    Sent from Cisco Technical Support iPhone App

  • WLC with LAG mode enable connected to a switch HP in LACP mode

    I am trying to connect a WLC 4402 5.0.148.0 mode with an HP 2800 switch. The switch is configured thunk mode with LACP protocol.
    The WLC in LAG mode uses the protocol LACP? How can configure them switch HP?
    Thanks.
    Mirko Severi.

    not supported, Mirko. Refer to this for further detail:
    http://www.cisco.com/en/US/docs/wireless/controller/4.0/configuration/guide/c40mint.html#wp1186245

  • Screen saver mode over-night; Snow Leopard

    Can anyone discus the efficacy, if any, of allowing my Macbook (10.6.8) to go into screen saver mode over night?
    /Geo

    Welcome to Apple Support Communities
    There are maintenance scripts that are scheduled to run overnight daily, weekly, and monthly when the computer is awake. The computer remains awake when a screen-saver is running.
    Shutting down the computer completely means that in 10.6.8 these scripts run when the Mac is re-started.
    More details may be found here in the postings of the late James Pond a/k/a 'Pondini':
    http://pondini.org/OSX/Scripts.html
    This discussion, while posted in the OS X 10.8 'Mountain Lion' thread might also shed further light on maintenance scripts:
    https://discussions.apple.com/thread/4732174?tstart=0

  • 8510 WLC realase 8.1 New mobility?

    Hi,
    Does someone know when the release 8.1 for the 8510 WLC is coming? Does it going to support the New Mobility stuff? As far as I know, Cisco was planning to include this feature back again in version 8.1.
    Thank you.
    Joana.

    We have a 8510 WLC as a foreign controller and a 5760 as a mobility anchor in the DMZ. Will this be supported?
    Yes, Guest anchoring will be supported between 8510 with new mobility & 5760
    We have been advised to use 2504 WLCs as mobility anchors for smaller sites. Do you think they will interoperate fine with our core/foreign 8510 WLCs?
    I would think so. 2504 with new mobility, you should be able to peer it with 8510.
    HTH
    Rasika
    *** Pls rate all useful responses ****

  • Initial AP registration on a 8510 WLC HA-SKU and N+1 deployment

    Hi,
    We have several 8510 controllers and one of them needs to be configured as HA SKU for N+1 deployment. I am testing the scenario with two controllers right now, so I have the primary and the secondary controller configured as part of the same Mobility Group and they appear UP. Please, see the rest of the configuration below.
    When I power off the Primary controller, the APs don’t register to the HA SKU controller (secondary). These two controllers are in different parts of the network but they are members of the same mobility group.
    Do I need to specify the HA SKU controller in the DHCP scope for the APs? I am not sure what I am missing....
    Do you have any suggestions?
    Thank you.
    Primary Controller:
    (Cisco Controller) >show redundancy summary
     Redundancy Mode = SSO DISABLED
         Local State = ACTIVE
          Peer State = N/A
                Unit = Primary
             Unit ID = XX:XX:XX:XX:XX:XX
    Redundancy State = N/A
        Mobility MAC = XX:XX:XX:XX:XX:XX
    Redundancy Management IP Address................. 0.0.0.0
    Peer Redundancy Management IP Address............ 0.0.0.0
    Redundancy Port IP Address....................... 0.0.0.0
    Peer Redundancy Port IP Address.................. 169.254.0.0
    Wireless --> Access Points -->  Global Configuration:
    (Cisco Controller) >show redundancy summary
     Redundancy Mode = SSO DISABLED
         Local State = ACTIVE
          Peer State = N/A
                Unit = Secondary - HA SKU
             Unit ID = XX:XX:XX:XX:XX:XX
    Redundancy State = N/A
        Mobility MAC = XX:XX:XX:XX:XX:XX
    Redundancy Management IP Address................. 0.0.0.0
    Peer Redundancy Management IP Address............ 0.0.0.0
    Redundancy Port IP Address....................... 0.0.0.0
    Peer Redundancy Port IP Address.................. 169.254.0.0
    Controller--> General:

    Hi Scott,
    Yes, it is N+1 HA with HA-SKU what I need to implement.
    “6000 Access Points Supported” is shown in the main GUI page.
    I followed the guide you mentioned to do this configuration:
    1 - From the primary controller, configure the backup controller on the primary to point to the secondary controller:
    (Cisco Controller) >config advanced backup-controller primary Secondary 10.9.51.252
    (Cisco Controller) >show advanced backup-controller
    AP primary Backup Controller .................... Secondary 10.9.51.252
    AP secondary Backup Controller ..................  0.0.0.0
    2 - On the permanent AP count WLC, use the config redundancy unit secondary command to convert the controller into an HA-SKU secondary controller:
    (Cisco Controller) >config redundancy unit secondary
    (Cisco Controller) >
    3- On the CLI, use the show redundancy summary command to view the status of the primary and secondary controllers:
    Primary:
    (Cisco Controller) >show redundancy summary
     Redundancy Mode = SSO DISABLED
         Local State = ACTIVE
          Peer State = N/A
                Unit = Primary
             Unit ID = F8:72:EA:66:B8:A0
    Redundancy State = N/A
        Mobility MAC = F8:72:EA:66:B8:A0
    Redundancy Management IP Address................. 0.0.0.0
    Peer Redundancy Management IP Address............ 0.0.0.0
    Redundancy Port IP Address....................... 0.0.0.0
    Peer Redundancy Port IP Address.................. 169.254.0.0
    Secondary:
    (Cisco Controller) >show redundancy summary
     Redundancy Mode = SSO DISABLED
         Local State = ACTIVE
          Peer State = N/A
                Unit = Secondary - HA SKU
             Unit ID = F8:72:EA:66:E4:40
    Redundancy State = N/A
        Mobility MAC = F8:72:EA:66:E4:40
    Redundancy Management IP Address................. 0.0.0.0
    Peer Redundancy Management IP Address............ 0.0.0.0
    Redundancy Port IP Address....................... 0.0.0.0
    Peer Redundancy Port IP Address.................. 169.254.0.0
    As far as I can tell I have completed all the steps. In my configuration, “Redundancy Management IP Address” and “Peer Redundancy Management IP Address” are 0.0.0.0; these are the only differences I can find with the configuration in the Guide.
    Redundancy Management IP Address................. 0.0.0.0
    Peer Redundancy Management IP Address............ 0.0.0.0
    Thank you.
    Joana.

  • For some reason My Imac will not wake up with bluetooth Trackpad or keyboard from being in sleep mode over night.

    During the day it wakes up fine. this just happens on over night. I can press the power button on the Imac and screen wakes up but my trackpad or keyboard will not work. After I Restart my Imac by holding down the power button until it shuts down and then pressing to power back on it works right away. this starting happening about a week after Lion upgrade

    I've been dealing with the same issue of not waking up from sleep.  For a long while, I turned off the option entirely just so I wouldn't get mad at my computer.  The difference with my setup, however, is that I use a USB keyboard w/ a USB mouse.  I tried most the "solutions" that I've come across on these boards.  What upsets me the most is the vast number of similar posts without a clear answer.
    Anyways, since I use wired keyboard and mouse, I just turned bluetooth off on this computer and tried once more to wake it from sleep.  Surprisingly, it worked.  My suggestion, try a wired keyboard and mouse with Bluetooth disabled on the computer.
    Edit: I spoke too soon.  On the second attempt, it did not wake.  For reference, that one single time that it woke up was the only time I've ever had my computer's display wake from sleep mode (like many, the computer wakes, but the display won't).
    Here's to hoping that whatever is causing the problem is not around in Lion.

  • Cisco WLC in High Availability over WAN

    Hi my name is Ivan i have a trouble perhaps could you help me...
    I have two cisco wlc 5508. I wan to install them in two differents site. One WLC in the site A and the another WLC in the site B.
    Site B is the WAN of the site A. The site A is the headquarter.
    But i need to configure them in High Availability. For example if the Cisco WLC in site A goes down, the ap's have to registered in the WLC of the site B.
    Then the traffic LWAPP have to pass over the WAN between site A to site B.
    I have to configure two cisco wlc in HA over a WAN . Please could help me to do this?. Is ok configure the roamming L3 intercontroller?
    Thanks for your answers
    Regards
    Ivan,
    AP'S - WLC - SITE A ----WAN-----WLC - SITE B - AP'S
    WLC SITE A   DOWN = AP'S SITE A REGISTERED IN WLC SITE B

    Hi Surendra thanks for yoru answer.
    Surendra, if the ap in the site B (in the WAN) goes down then the traffic lwapp have to pass over the wan,
    what will should i do to ensure access point can register on to the cisco wlc in the WAN, moreover to configure the mobility groups in both wireless lan controllers?
    or i only have to configure in the wlc the mobility groups? Could you explain me what things have i to do to ensure this
    SITE A - (ACCESS POINT M)  - LWAPP -----PASS OVER WAN---- SITE B - CISCO WLC - (ACCESS POINT M)
    STATUS: REGISTERED IN SITE B
    Thanks for your answer
    IVAN
    Regards

  • Policy-map going into suspended mode over a GRE

    Hi
    I have a GRE tunnel over another GRE tunnel. When I apply a nested policy on the Child GRE the policy map does not attach, what is the cause. The sho policy-map int Tux/x showed that it is suspended I am not making a breakthrough here. The hard ware platform is ASR 1001
    Thanks
    Don

    Download RecBoot. You can kick it out of recovery mode with that. You may have an underlying issue though causing that. A restore may be in order.
    Check out the new remodeled MacOSG website! 24-hour Apple-related news & support.
     MacOSG: An Apple User Group  iTunes: MacOSG Podcast  Follow us on Twitter: MacOSG

  • CANNOT ADD WLC 5508 HA MODE IN PRIME INFRASTRUCTURE 2

    I have two 5508 7.5.102 in HA mode and i am trying to add theme in cisco prime infrastructure 2 but i am taking back unreachable. Controller can ping the prime. I adding the controller using the management ip address of controller. Have anyone meat thise issue ? I also have problem when adding switches in stack mode (WS-C2960S-48TD-L)

    Hello!
    Check, that the service-port of the wlc is not in the same subnet, as Prime ip address

  • 8510 WLC

    We're attempting to install an 8510.  We have the config to be what we believe to be correct, but we are unable to get the management port to connect.
    Is there something different that needs to be done for 8510?  Below is the managment interface config, and the switchport config.
    Interface Name................................... management
    MAC Address...................................... 70:81:05:cf:7c:e0
    IP Address....................................... 10.8.239.200
    IP Netmask....................................... 255.255.255.0
    IP Gateway....................................... 10.8.239.1
    External NAT IP State............................ Disabled
    External NAT IP Address.......................... 0.0.0.0
    VLAN............................................. 239
    Quarantine-vlan.................................. 0
    Active Physical Port............................. 1
    Primary Physical Port............................ 1
    Backup Physical Port............................. Unconfigured
    Primary DHCP Server.............................. 10.8.203.50
    Secondary DHCP Server............................ Unconfigured
    DHCP Option 82................................... Disabled
    ACL.............................................. Unconfigured
    AP Manager....................................... Yes
    Guest Interface.................................. No
    L2 Multicast..................................... Enabled
    interface GigabitEthernet5/1
    description Rack S56-13
    switchport trunk encapsulation dot1q
    switchport trunk native vlan 239
    switchport trunk allowed vlan 239
    switchport mode trunk

    Its better to tag it ... Starting in 7.x deployment guides it states tag.
    "Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin
    ‎"I'm in a serious relationship with my Wi-Fi. You could say we have a connection."

  • WLC 5760 centralized mode Flexconnect support?

    Hi all,
    I am currently digging through the documentation about the 5760 WLC and converged access mode and found one particular information, which I need more clarification for.
    This is the link
    http://www.cisco.com/en/US/prod/collateral/wireless/ps6302/ps8322/ps12598/qa_c67-726507.html
    And here the specific snippet:
    Q. What deployment modes can the Cisco 5760 WLC and Cisco Catalyst 3850 support?
    A. The Cisco 5760 WLC can operate in centralized mode (also known as local  mode) as well as converged access mode, whereas the Cisco Catalyst 3850  operates in converged access mode. At this time, there is no support  for office-extend access points, indoor or outdoor mesh, or FlexConnect  access points on the Cisco 5760 WLC and Cisco Catalyst 3850.
    Now my questions are:
    Does this apply to the converged access mode only or also centralized mode?
    Do 5508/WiSM2 WLCs still support APs in the specified modes even when using the new mobility architecture?
    When is it planned to add support for the new platforms, if at all?
    Hoping for some answers!
    Regards,
    Patrick

    Hi Patrick,
    Why not post your question here;
    https://supportforums.cisco.com/thread/2220448
    There's an open forum Converged Access Q&A session on the go direct with Cisco...
    Richard

  • RSA New Pin mode over PPP dialer

    I have an RSA v6.1 server running SecurID and Steel Belted RADIUS. This is performing authentication requests, via RADIUS, to a Cisco router at an ISP which hosts a PPP dial in service over PSTN.
    Currently I can dial successfully into the system using the standard windows ppp dialer over PSTN using my username and RSA pin+tokencode. However when the token is set to 'New Pin mode' or 'Next Token code' the connection fails to connect as it isn't prompting me for a new pin.
    The RSA website says in order to support Next Token mode & New Pin Mode require the RADIUS client to
    work in terminal mode before initiating ppp negotiation.
    Does this problem ring any bells with anyone out there? What command to use on the cisco device to forward new pin mode requests to the dialer?

    Andrew,
    For new pin mode to work, you will need to enable interactive AKA exec logins. To do this you need to have following configuration.
    interface Group-AsyncX
    ip unnumbered Loopback0
    encapsulation ppp
    async mode interactive ! watch for framed and exec connections
    peer default ip address pool dialin_pool
    no keepalive
    ppp authentication pap ! clear ok for one time pass
    group-range 1/00 1/59
    line x/x 1/x
    login authentication default ! default command doesn't show in config
    no flush-at-activation
    modem InOut
    autoselect during-login
    autoselect ppp
    autocommand ppp neg ! start ppp before giving exec prompt
    To explain. SecureID users will enable a post terminal dial window in DialUp Networking config. When they connect, they will be prompted for user/token and pin if configured for that. If the Exec authentication an
    authorization succeeds. The AS5350 will execute the ppp negotiate command,
    which starts PPP for the session. The user may see garbage text in terminal depending on what version of DialUp Networking or client software they are using. They will need to click on the close/done/continue button.
    The PC and AS5350 will then proceed with PPP.
    However, we are going to by pass ppp authentication because we have already
    authenticated for exec and we don't want the token to time out and cause a failure. PPP authorization should proceed as normal using the credentials provided for exec login.
    Please use CHAP as PAP does not work for interactive authentication.
    Regards,
    ~JG
    Do rate helpful posts

  • How to create a second Virtual Machine alongside my existing XP-Mode over Win7-Pro 64-bit

    At present I have XP-Mode installed over Windows 7 Professional 32-bit.
    I want to add another virtual machine to the same Virtual PC, so that I shall be able to use it to boot the second virtual machine from Acronis Bootable CD-ROM based on WindowsPE 3.1.
    I suppose I will not start both XP-Mode and the Acronis Bootable media simultaneously, to prevent overload of memory etc., but still I would like the two virtual machines to co-exist on the same Virtual PC over Win7-Pro 64-bit.
    So, how do I go about installing/configuring the second virtual machine?

    Hi joselso,
    You may take a look at the thread below:
    How to install multiple virtual pc's on Windows 7 Professional 64 bit?
    Follow the steps listed in the Answer.
    Best regards
    Michael Shao
    TechNet Community Support

  • Hello iphone users, I have a situation here.. I have an Iphone 4G that 2 days ago displayed the black screen with de apple logo, ive done the recovery mode over and over in diferente pcs(windoes, mac) and none seem to aknowledge the device, what to do???

    hello everyone, as I have stated above, I have an Iphone 4G realtively new, just 3 months of use. I've never dropped it, nor got it wet. The problem is that the screen just one day went black and displays the apple logo, when I do the recovery mode everyway possible the screen shows the itunes link but the pc doesn't acknowledge it.. I've tried on many pcs (windows and mac) and none respond because the device is not shown on itunes it just says "driver not found"
    please what to do???

    Call Apple Customer Relations - 1-800-275-2273.  Ask politely & firmly that you want to be transferred to Customer Relations.  Tell them exactly what you stated in your post.
    GOOD LUCK!
    These are user-to-user forums where everyday folk (volunteers) post questions and offer answers (technical support) to each other.  

Maybe you are looking for

  • How to forward the same ports for multiple IPs?

    Hi all, I just bought a Linksys WRT54GS router and I would like to forward the same set of ports for two different computers on my network (192.168.1.101 and 192.168.1.3) however when I try to, I get a "Port Overlap" error. Is there another way I can

  • Printing the Resource Profile in the Tracking View

    As above. Struggling to print the profile section of the Tracking View - there's a checkbox to print the profile, but it's greyed out. Any suggestions - or a "it's not possible" - appreciated Versiobn 6.2.1 - SP 3 David

  • Carriage Return

    Hi Friends, Few days back one of clients of my company had a problem with carriage Returns in the data.To make it simple we take column data from the tables and output it to a flat file like notepad onto the server.This process is repeated for a numb

  • Page Layout document

    I created a single page I want to use as a template ultimately. It is now a word processing document and I need it to be in a page layout document. How do I do that?

  • Scanner not showing up in Color Sync

    Trying to trouble shoot a slight color problem with my new scanner. I made a profile, but when I look in the Color Sync Utility, it doesn't show my scanner.