ACL mapping in flexconnect
Hi
Anyone can help me plz? I have a WLC 8.0 and i'm using flexconnect local switching.
I have 3 SSID's with diferent kind of security but all in same vlan. To apply acl's i can only apply to vlan Id, but i have differents acl's for each SSID.
Anyone can know a solution?
BR
Jorge Check the following
Restrictions for FlexConnect ACLs
FlexConnect ACLs can be applied only to FlexConnect access points. The configurations applied are per AP and per VLAN.
You can configure up to 512 ACLs on a controller.
Non-FlexConnect ACLs that are configured on the controller cannot be applied to a FlexConnect AP.
FlexConnect ACLs do not support direction per rule. Unlike normal ACLs, Flexconnect ACLs cannot be configured with a direction. An ACL as a whole needs to be applied to an interface as ingress or egress.
You can define up to 512 FlexConnect ACLs, each with up to 64 rules (or filters). Each rule has parameters that affect its action. When a packet matches all the parameters pertaining to a rule, the action set pertaining to that rule is applied to the packet.
ACLs in your network might have to be modified because Control and Provisioning of Wireless Access Points (CAPWAP) use ports that are different from the ones used by the Lightweight Access Point Protocol (LWAPP).
All ACLs have an implicit deny all rule as the last rule. If a packet does not match any of the rules, it is dropped by the corresponding access point.
ACLs mapping on the VLANs that are created on an AP using WLAN-VLAN mapping, should be performed on a per-AP basis only. VLANs can be created on a FlexConnect group for AAA override. These VLANs will not have any mapping for a WLAN.
ACLs for VLANs that are created on a FlexConnect group should be mapped only on the FlexConnect group. If the same VLAN is present on the corresponding AP as well as the FlexConnect group, AP VLAN will take priority. This means that if no ACL is mapped on the AP, the VLAN will not have any ACL, even if the ACL is mapped to the VLAN on the FlexConnect group.
Note: This will give you clear idea How and what kind of ACL can be applied in flex connect mode.
Ref: http://www.cisco.com/c/en/us/td/docs/wireless/controller/7-4/configuration/guides/consolidated/b_cg74_CONSOLIDATED/b_cg74_CONSOLIDATED_chapter_010001110.html
Similar Messages
-
Hi,
Has anyone gotten Flexconnect ACLs to work properly in 8.x? Here's my test setup:
One 3700 AP, in flexconnect mode, Part of an AP group that is only broadcasting one test SSID.
Primary goal of getting this flexconnect AP to drop users on different VLANs based on RADIUS parameters was successful (though I couldn't ever drop anyone on VLAN 1, no matter what the native vlan for the AP was).
In order for the AP to know the VLANs I had to create a Flexconnect Group and create "AAA VLAN ACL MAPPING"s for all the VLANs I wanted the AP to know about. As mentioned, that part worked fine.
Next I created a very simple Flexconnect ACL to block any traffic to 8.8.4.4. I applied it to one of the VLANs on the same tab (Wireless>FlexConnect Groups>ACL Mapping>AAA VLAN-ACL mapping). I tried all sorts of combinations of applying the ACL to ingress or egress, disassociating the client, moving client to a different vlan and back etc. I got it working once, on one of the VLANs, but couldn't repeat it. It might have been after removing the AP from the FlexConnect group and putting it back.
The only result all this had is that I lost web access to the WLC suddenly. As far as I can tell, the WLC ended up rebooting itself and the HA unit took over. A bit scary.
How are Flexconnect ACLs supposed to work, do they get applied the moment you apply them to the ingress /egress of the VLAN? Does the client have to disassociate and re-associate? Does something else have to happen to trigger the ACLs being applied?
From what I could tell in the Flexconnect ACL Debug, all the changes were being pushed to the AP as I made them. However, at one point when checking the VLAN Mappings on the AP, the vlans with ACLs in the Flexconnect group, showed no ACLs on the AP. Another time the VLANs that had the ACLs applied were no longer there at all.
As I'm writing this, I noticed that I can now crash the WLC, just by clicking the VLAN mappings on that AP....After two failovers that seemed to be triggered by me making changes in the Flexconnect Group config, one controller hung up completely (no response anywhere including console). I had to power cycle it.
After that, the flexconnect ACLs seemed to work just as expected. Changes in the ACLs would immediately reflect on the client connected to the AP without having to re-associate the client (something that definitely wasn't working before). -
Hi,
I have several APs where if they lose power and re-associate to the same WLC they would lose their VLAN mappings under the Flex connect tab.
I get the below error log from the AP:
*Mar 15 03:42:06.187: %LWAPP-4-CLIENTEVENTLOG: No Flex ACL map configuration file to load. Connect to controller to get configuration file
*Mar 15 03:42:06.188: %LWAPP-4-CLIENTEVENTLOG: No Flex ACL map configuration file to load. Connect to controller to get configuration file
*Mar 15 03:42:06.188: %LWAPP-4-CLIENTEVENTLOG: No LS Flex ACL map configuration file to load. Connect to controller to get configuration file
*Mar 15 03:42:06.189: %LWAPP-4-CLIENTEVENTLOG: No Central Dhcp map configuration file to load. Connect to controller to get configuration file
Any idea why the AP is losing its VLAN mapping?
ThanksPlease upgrade the WLC
-
FlexConnect & Interface Groups
I have a WLC 5508 running 7.4.121.0 where several sites have APs in FlexConnect mode.
For those sites I also have interface groups (this is just an example, i have more than one group)
Site 1 - Group 1 - vlan 110 (faculty) and vlan 112 (students)
Site 2 - Group 2 - vlan 210 (faculty) and vlan 212 (students)
Under WLAN -> Advanced -> AP Groups
I select Site 1 Group Name and add a new WLAN SSID to Interface/Interface Group mapping.
When I go to Wireless and select a FlexConnect AP from Site 1 and then go to the FlexConnect Tab -> VLAN Mappins the VLAN ID is wrong (neither 110 or 112). I can of course manually change it to 110 but then any clients on vlan 112 on that SSID can't connect to the network.
Is there a way to specific a VLAN ID when using Interface group and Flexconnect?Do you have configured local switching and use AAA overide to asign the VLAN for faculty and students? Else can you give some more information about the configuration.
With local switching and VLAN AAA overide you need to create sub-interfaces on the AP's. You can do this in the Flexconnect group (one per site). Then go tho VLAN-ACL mapping and add the VLAN's you need on this site . -
hello all,
I found a similar thread, but it didn't exactly answer my question:
https://supportforums.cisco.com/discussion/12114056/flex-connect-user-acl-aps-locally-switched
Should I configure a regular ACL, or Airespace ACL on ISE, to support FlexConnect mode AP's?
On the FlexConnect AP's (WLC), do I configure a regular ACL, or FlexConnect ACL?
The FlexConnect AP's are running a few SSID's, some are centrally switched, and some are locally switched.
Thanks,
KevinIt depends which version of WLC, v 7.4.110 has a bug (Unfortunately, I don't remember the bug Id). You need to create a regular and FlexConnect using the same name. With recent version (I'm using 7.6.130), you don't need the regular ACL, just a FlexConnect ACL. So, to answer your question, with FlexConnect, you must use FlexConnect ACL.
Good links:
http://www.cisco.com/c/en/us/td/docs/wireless/controller/7-4/configuration/guides/consolidated/b_cg74_CONSOLIDATED/b_cg74_CONSOLIDATED_chapter_010001110.html
http://www.cisco.com/c/en/us/support/docs/security/identity-services-engine/116143-config-cise-posture-00.html -
Flex Connect Groups - WLAN to VLAN mapping
I have a question about configuring WLAN to VLAN mapping on FlexConnect Groups.
Do the mappings that are configured in the FC Group get inherited by the APs when they are placed in the group?
It seems like they do not.
I am playing around in a lab with a virtual WLC running 7.5 and an old 1131 AP.
If I configure the WLAN to VLAN mapping on the individual AP, it works as expected.
If I configure the WLAN to VLAN mapping within the FC group and add the AP to the group, it does not.
The AP does not inherit the settings from the Group.
I am wondering how you would deploy a lot of APs without having to configure each AP individually.
ThanksYes, you are correct. It is not like normal AP groups where it will map WLAN to AP belong to that AP group.
Anyway since you have to convert each AP manually to FlexConnect mode, you should do the WLAN mapping at that point as additional step.
FlexConnect Group is mainly to give fast roaming feature for FC APs in brach deployment solution (typically not so many APs). Also keep in mind you can have maximum 25 APs in FlexConnect AP group for WiSM2 or 5508 & you can go upto 100 in 7500 WLC. (see table 7.3 in below link)
http://www.cisco.com/en/US/docs/solutions/Enterprise/Mobility/emob73dg/ch7_HREA.html#wp1108090
HTH
Rasika
**** Pls rate all useful responses ***** -
Possible to automatize the creation of ACL and subfolders in KM ?
Hi,
I would like to create following folder structure
/root
/subfolder elec/
/subfolder user1/
/subfolder user2/
/subfolder documents/
/subfolder LMS/
Subfolder user 1 : only user1 may have autorisations to this folder.
Subfolerd user 2 : only user2 may have autorisations to this folder
I can manage this autorisations by creating an ACL map -> details -> settings -> permissions
This is a good solution if therer were only a few subfolders to manage but I have to create +/- 9000 subfolders, for every user his own subfolder.
Does anybody knows if you there is a possibility to automatize the creation of those ACL and also the creation of the subfolder ?
Kind regards
Pascale ThysHi Pascale!
Here is a static method to create directories and provide them with permissions. It takes a resource residing in a directory called and creates new sub dirs for every iso language in the array languages. Then it copies the source resource into those new sub dirs.
It has everything you need to know about creation of dirs and files in km via API. Just adapt it to your needs.
private static void createLanguages(
IResource resource,
String[] languages)
throws ResourceException, WcmException {
// iterate through languages and create copies of the original document
// pattern is "com.xxx.<foldername><n>_<language id> with n >= 0
// Folder of newly created document
ICollection sourceDir = resource.getParentCollection();
RID sourceDirRID = sourceDir.getRID();
// Name (plus extension) of document
RID resourceRIDName = resource.getRID().name();
// Name of parent folder
RID sourceDirRIDName = sourceDirRID.name();
// source directory of new resource without language shortcut
String sourceDirRIDNameBase =
sourceDirRIDName.toString().substring(
0,
sourceDirRIDName.toString().length() - 2);
ICopyParameter copyParams = new CopyParameter();
RID destination = null;
for (int i = 0; i < languages.length; i++) {
String newDir = sourceDirRIDNameBase + languages<i>;
destination =
sourceDirRID.parent().addPathSegment(
sourceDirRIDNameBase + languages<i>);
// Create language dependend directory parallel to original, if not existing
ICollection newCollection = null;
try {
newCollection =
sourceDir.getParentCollection().createCollection(
newDir,
null);
} catch (NameAlreadyExistsException e) {
logger.info(
"directory "
+ newDir
+ " already exists.");
// Even if directory exists, add permissions
try {
if (newCollection == null) {
IResourceFactory resourceFactory =
ResourceFactory.getInstance();
newCollection =
(ICollection) resourceFactory.getResource(
destination,
sourceDir.getParentCollection().getContext());
newCollection.setProperty(
Property.createDisplaynameProp(
destination.name().toString()));
// Setting ACLs on newly created directory
ISecurityManager sm =
newCollection.getRepositoryManager().getSecurityManager(
newCollection);
if (sm != null && sm instanceof IAclSecurityManager) {
IAclSecurityManager asm = (IAclSecurityManager) sm;
IResourceAclManager ram = asm.getAclManager();
// Inheritance has to be broken to include new permissions
// Get a copy parent ACL
IResourceAcl ra = ram.getAcl(newCollection);
if (ra == null) {
ra = ram.getInheritedAcl(newCollection);
// Still no acl found? Permissions cannot be set
if (ra == null) {
logger.severe(
" - no ACL found for "
+ newCollection
+ " no permission has been set!");
} else {
// Remove old ACL
ram.removeAcl(newCollection);
// create new ACL for current directory
IResourceAcl raNew = ram.createAcl(newCollection);
// Copy all acl entries from inherited acl to new acl
IResourceAclEntryList rel = ra.getEntries();
IResourceAclEntryListIterator it = rel.iterator();
IResourceAclEntry aclEntry = null;
while (it.hasNext()) {
aclEntry = it.next();
raNew.addEntry(aclEntry);
IUMPrincipal allCountriesPrincipal =
WPUMFactory.getGroupFactory().getGroup(
"XXX_EDITOR_"
+ "ALL");
// Editor for specific country
IUMPrincipal thisCountryPrincipal =
WPUMFactory.getGroupFactory().getGroup(
"XXX_EDITOR_"
+ languages<i>.toUpperCase());
raNew.addEntry(
ram.createAclEntry(
allCountriesPrincipal,
false,
ram.getPermission(
IAclPermission.ACL_PERMISSION_READ),
0));
raNew.addEntry(
ram.createAclEntry(
thisCountryPrincipal,
false,
ram.getPermission(
IAclPermission.ACL_PERMISSION_READWRITE),
0));
// Now copy permission owners
IUMPrincipalList permissionOwners = ra.getOwners();
IUMPrincipalListIterator permissionOwnersIt = permissionOwners.iterator();
IUMPrincipal principal = null;
while (permissionOwnersIt.hasNext()) {
principal = permissionOwnersIt.next();
raNew.addOwner(principal);
} catch (AclPersistenceException e) {
logger.severe(
"I raised an AclPersistenceException @"
+ (new Date()).toString()
+ ": "
+ LoggingFormatter.extractCallstack(e));
} catch (ResourceException e) {
logger.severe(
"I raised a ResourceException @"
+ (new Date()).toString()
+ ": "
+ LoggingFormatter.extractCallstack(e));
} catch (NotAuthorizedException e) {
logger.severe(
"I raised a NotAuthorizedException @"
+ (new Date()).toString()
+ ": "
+ e.getMessage()
+ "**"
+ LoggingFormatter.extractCallstack(e));
// } catch (AclExistsException e) {
// logger.severe(
// "I raised an AclExistsException @"
// + (new Date()).toString()
// + ": "
// + LoggingFormatter.extractCallstack(e));
} catch (UserManagementException e) {
logger.severe(
"I raised a UserManagementException @"
+ (new Date()).toString()
+ ": "
+ LoggingFormatter.extractCallstack(e));
} catch (InvalidClassException e) {
logger.severe(
"I raised an InvalidClassException @"
+ (new Date()).toString()
+ ": "
+ LoggingFormatter.extractCallstack(e));
} catch (AlreadyAssignedToAclException e) {
logger.severe(
"I raised an AlreadyAssignedToAclException @"
+ (new Date()).toString()
+ ": "
+ LoggingFormatter.extractCallstack(e));
} catch (PermissionNotSupportedException e) {
logger.severe(
"I raised a PermissionNotSupportedException @"
+ (new Date()).toString()
+ ": "
+ LoggingFormatter.extractCallstack(e));
destination = destination.add(resourceRIDName);
try {
IResource newResouce = resource.copy(destination, copyParams);
} catch (NameAlreadyExistsException e) {
logger.info("file "
+ destination
+ " already exists.");
Imports needed:
import java.util.Date;
import com.sapportals.portal.prt.logger.ILogger;
import com.sapportals.portal.security.usermanagement.IUMPrincipal;
import com.sapportals.portal.security.usermanagement.UserManagementException;
import com.sapportals.wcm.WcmException;
import com.sapportals.wcm.repository.CopyParameter;
import com.sapportals.wcm.repository.ICollection;
import com.sapportals.wcm.repository.ICopyParameter;
import com.sapportals.wcm.repository.IResource;
import com.sapportals.wcm.repository.IResourceFactory;
import com.sapportals.wcm.repository.NameAlreadyExistsException;
import com.sapportals.wcm.repository.Property;
import com.sapportals.wcm.repository.ResourceException;
import com.sapportals.wcm.repository.ResourceFactory;
import com.sapportals.wcm.repository.manager.IAclSecurityManager;
import com.sapportals.wcm.repository.manager.ISecurityManager;
import com.sapportals.wcm.repository.security.IResourceAcl;
import com.sapportals.wcm.repository.security.IResourceAclEntry;
import com.sapportals.wcm.repository.security.IResourceAclEntryList;
import com.sapportals.wcm.repository.security.IResourceAclEntryListIterator;
import com.sapportals.wcm.repository.security.IResourceAclManager;
import com.sapportals.wcm.util.acl.AclPersistenceException;
import com.sapportals.wcm.util.acl.AlreadyAssignedToAclException;
import com.sapportals.wcm.util.acl.IAclPermission;
import com.sapportals.wcm.util.acl.IUMPrincipalList;
import com.sapportals.wcm.util.acl.IUMPrincipalListIterator;
import com.sapportals.wcm.util.acl.InvalidClassException;
import com.sapportals.wcm.util.acl.NotAuthorizedException;
import com.sapportals.wcm.util.acl.PermissionNotSupportedException;
import com.sapportals.wcm.util.logging.LoggingFormatter;
import com.sapportals.wcm.util.uri.RID;
import com.sapportals.wcm.util.usermanagement.WPUMFactory;
This is my .classpath variable for this projekt (for the necessary JARs):
<?xml version="1.0" encoding="UTF-8"?>
<classpath>
<classpathentry kind="src" path="src.api"></classpathentry>
<classpathentry kind="var" path="JRE_LIB" sourcepath="JRE_SRC"></classpathentry>
<classpathentry kind="src" path="src.core"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/prtapi.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/prttest.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/com.sap.portal.runtime.application.soap_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.tssap.ext.libs.j2ee_1.3.0/lib/activation.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.security_2.0.0/lib/com.sap.security.api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ext.libs.webservices_2.0.0/lib/jaxm-api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.tssap.ext.libs.j2ee_1.3.0/lib/mail.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ext.libs.webservices_2.0.0/lib/saaj-api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.tssap.sap.libs.xmltoolkit_2.0.0/lib/sapxmltoolkit.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.engine.webservices_2.0.0/lib/webservices_lib.jar"></classpathentry>
<classpathentry kind="var" path="KMC_LIBS/bc.crt_api.jar"></classpathentry>
<classpathentry kind="var" path="KMC_LIBS/prtapi.jar"></classpathentry>
<classpathentry kind="var" path="KMC_LIBS/logging.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.exception_2.0.0/lib/exception.jar"></classpathentry>
<classpathentry kind="var" path="KMC_LIBS/bc.rf.common_api.jar"></classpathentry>
<classpathentry kind="var" path="KMC_LIBS/com.sap.security.api.jar"></classpathentry>
<classpathentry kind="var" path="KMC_LIBS/com.sap.security.api.ep5.jar"></classpathentry>
<classpathentry kind="var" path="KMC_LIBS/bc.util.public_api.jar"></classpathentry>
<classpathentry kind="var" path="KMC_LIBS/bc.sf.framework_api.jar"></classpathentry>
<classpathentry kind="var" path="KMC_LIBS/bc.rf.util_api.jar"></classpathentry>
<classpathentry kind="var" path="KMC_LIBS/bc.rf.runtime_api.jar"></classpathentry>
<classpathentry kind="var" path="KMC_LIBS/bc.rf.repository.service.serviceacl_api.jar"></classpathentry>
<classpathentry kind="var" path="KMC_LIBS/bc.rf.mi_api.jar"></classpathentry>
<classpathentry kind="var" path="KMC_LIBS/bc.rf.global.service.urlgenerator_api.jar"></classpathentry>
<classpathentry kind="var" path="KMC_LIBS/bc.rf.global.service.urimapper_api.jar"></classpathentry>
<classpathentry kind="var" path="KMC_LIBS/bc.rf.global.service.rtr_api.jar"></classpathentry>
<classpathentry kind="var" path="KMC_LIBS/bc.rf.global.service.relation_api.jar"></classpathentry>
<classpathentry kind="var" path="KMC_LIBS/bc.rf.global.service.pipeline_api.jar"></classpathentry>
<classpathentry kind="var" path="KMC_LIBS/bc.rf.global.service.oth_api.jar"></classpathentry>
<classpathentry kind="var" path="KMC_LIBS/bc.rf.global.service.notificator_api.jar"></classpathentry>
<classpathentry kind="var" path="KMC_LIBS/bc.rf.global.service.mime_api.jar"></classpathentry>
<classpathentry kind="var" path="KMC_LIBS/bc.rf.global.service.appproperties_api.jar"></classpathentry>
<classpathentry kind="var" path="KMC_LIBS/bc.rf.framework_api.jar"></classpathentry>
<classpathentry kind="var" path="KMC_LIBS/bc.util.kmmonitor_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.netweaver.bc.uwl.plugin_1.0.0/lib/bc.uwl.service.api_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.tc.ap_2.0.0/comp/CAF/DCs/sap.com/caf/api/_comp/gen/default/public/default/lib/java/sap.com~caf~eu~gp~api~default.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.tc.ap_2.0.0/comp/CAF/DCs/sap.com/caf/api/wd/_comp/gen/default/public/default/lib/java/sap.com~caf~eu~gp~api~wd~default.jar"></classpathentry>
<classpathentry kind="var" path="KMC_LIBS/bc.wdf.ui.framework_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.ui.base_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.ui.enum_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.ui.event_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.ui.generic_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.ui.util_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/com.sap.portal.htmlb_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.command_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.ui.flex.base_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.ui.flex.screenflow_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.ui.flex.uicommand_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.ui.flex.util_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/htmlb.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/com.sap.workflow.wcm_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.service.actioninbox_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.service.cachecontrol_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.service.checkout_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.service.collaboration_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.service.crawler_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.service.efp_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.service.expimp_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.service.ice_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.service.indexmanagement_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.service.propertyconfig_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.service.propertystructure_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.service.quickpoll_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.service.reporting_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.service.resourcefilter_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.service.resourcelistfilter_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.service.template_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.service.xcrawler_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.service.xmlforms_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.acl_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.actioninbox_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.applog_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.cache_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.classification_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.classificationtest_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.collaboration_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.config_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.crawler_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.crawlerindexmon_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.demo_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.edit_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.flex.collaboration_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.flex.collection_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.flex.component_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.flex.config_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.flex.control_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.flex.detailsoverview_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.flex.detailsproperties_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.flex.expimp_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.flex.property_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.flex.resource_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.flex.uicommand_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.ice_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.indexadmin_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.layout_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.navigation_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.oth_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.quickpoll_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.reporting_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.scheduler_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.search_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.security_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.settings_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.statemanagement_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.subscription_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.user_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.websiteimport_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.xcrawler_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.appl.ui.xmlforms_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.rep.util.rfadapter_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.service.actioninbox_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.service.cachecontrol_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.service.checkout_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.service.collaboration_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.service.crawler_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.service.efp_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.service.expimp_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.service.ice_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.service.indexmanagement_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.service.propertyconfig_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.service.propertystructure_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.service.quickpoll_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.service.reporting_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.service.resourcefilter_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.service.resourcelistfilter_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.service.template_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.service.xcrawler_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.service.xmlforms_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.ui.fields_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.ui.flex.collection_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.ui.flex.control_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.ui.flex.detailsoverview_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.ui.flex.detailsproperties_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.ui.flex.enum_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.ui.flex.layout_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.ui.flex.property_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.ui.flex.readymades_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.ui.flex.resource_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.ui.released_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.ui.search_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/com.sap.portal.usermanagementapi.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/com.sap.security.api.ep5.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/org.eclipse.tomcat_4.0.6.2/servlet.jar"></classpathentry>
<classpathentry kind="lib" path="dist/PORTAL-INF/lib/commons-lang-2.4.jar"></classpathentry>
<classpathentry kind="var" path="KMC_LIBS/km.shared.ui.event_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.portal.runtime.config/lib/bc.cfg_api.jar"></classpathentry>
<classpathentry kind="var" path="KMC_LIBS/km.appl.ui.flex.control_api.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.km.cm.ui.flex/private/lib/km.appl.ui.flex.control_core.jar"></classpathentry>
<classpathentry kind="var" path="ECLIPSE_HOME/plugins/com.sap.ep.applicationDevelopment_7.00/libs/km.shared.repository.service.layout_api.jar"></classpathentry>
<classpathentry kind="output" path="classes.api"></classpathentry>
</classpath>
You probably don't need all of them.
Cheers,
Jürgen -
Deployment of WLC-5508 with 2702i-D have performance issue.
Hi Team,
We have centrally deployed WLC-5508 with 50 AP licence along with HA scenario. we have 3 locations.
1- HQ. have 26 AP with POWINJ5.
2- Branch location A- 8 AP with POWINJ5.
3. Branch location B have 8 AP with POWINJ4.
my exception is to achieve that single SSID with dynamic VLAN from group police (NPS). MY HO have 26 AP and those are working in local mode.
and branches are connected through flexconnect mode. and all are working with different-2 NPS.
Now i am facing a problem with this deployment are following.
1- branch A have performance issue.
2- HQ have performance issue.
3- i don't want to go with dedicated NPS for every location.
In order to achieve this deployment i want only single SSID with primary and secondary NPS at my HQ with dynamic VLAN for respective departmental users vlans..
above is my problem and concern. otherwise i am successfully achieving this solution with dedicated NPS with single group policy. but when i am going forward to achieve my expectation that time i am facing authentication issue at my HQ and sometimes am not able to get proper VLAN IPs. at my HQ.
kindly help me in that to understand where I am doing wrong things to achieve my expectation.
Thanks.
NalinI am facing 2 different problems.
1st issue- in existing setup we have throughput issue. (while downloading or uploading any data from the internet or Intranet, that time wireless clients are facing slowness of the Speed. and same time when i am trying from LAN i am not facing any issue)
2nd Issue- I want to achieve only single SSID with primary and secondary NPS (AD group is bind with vlan Attributes) with dynamic VLAN for respective departmental users.
for Issue no 2 i have created SSID to achieve the single ssid parameter for every location. in order to achieve i have change all access points mode local to Flexconnect mode after that i have created AP groups location wise and then create flexconnect Groups where i have mapped all the vlan through AAA VLAN-ACL mapping. created interface group and mapped all the vlans in that group.
for more understanding please go through the below mentioned CLI view.
Cisco Controller) >show wlan apgroups
Total Number of AP Groups........................ 4
Site Name........................................ GURGAON-AP-GROUP
Site Description................................. GURGAON-AP-GROUP
Venue Group Code................................. Unspecified
Venue Type Code.................................. Unspecified
NAS-identifier................................... Fractal-WLC1
Client Traffic QinQ Enable....................... FALSE
DHCPv4 QinQ Enable............................... FALSE
AP Operating Class............................... Not-configured
Capwap Prefer Mode............................... Not-configured
RF Profile
2.4 GHz band..................................... <none>
5 GHz band....................................... <none>
WLAN ID Interface Network Admission Control Radio Pol icy
3 gurgaon-interface Disabled None
--More-- or (q)uit
4 gurgaon-guest Disabled None
*AP3600 with 802.11ac Module will only advertise first 8 WLANs on 5GHz radios.
AP Name Slots AP Model Ethernet MAC Location Port Country Priority
GUR-AP-01 2 AIR-CAP2702I-D-K9 f4:4e:05:78:ae:e4 default location 1 IN 1
GUR-AP-05 2 AIR-CAP2702I-D-K9 f4:4e:05:80:b5:18 default location 1 IN 1
GUR-AP-03 2 AIR-CAP2702I-D-K9 bc:16:65:13:71:00 default location 1 IN 1
GUR-AP-07 2 AIR-CAP2702I-D-K9 f4:4e:05:80:b3:f8 default location 1 IN 1
GUR-AP-06 2 AIR-CAP2702I-D-K9 f4:4e:05:80:b3:e0 default location 1 IN 1
GUR-AP-08 2 AIR-CAP2702I-D-K9 f4:4e:05:45:78:98 default location 1 IN 1
GUR-AP-02 2 AIR-CAP2702I-D-K9 f4:4e:05:80:b3:2c default location 1 IN 1
GUR-AP-04 2 AIR-CAP2702I-D-K9 f4:4e:05:78:ae:64 default location 1 IN 1
GUR-AP-09 2 AIR-CAP2702I-D-K9 f4:4e:05:80:b4:44 default location 1 IN 1
Site Name........................................ MUMBAI-AP-GROUP
Site Description................................. MUMBAI-AP-GROUP
Venue Group Code................................. Unspecified
Venue Type Code.................................. Unspecified
--More-- or (q)uit
NAS-identifier................................... Fractal-WLC1
Client Traffic QinQ Enable....................... FALSE
DHCPv4 QinQ Enable............................... FALSE
AP Operating Class............................... Not-configured
Capwap Prefer Mode............................... Not-configured
RF Profile
2.4 GHz band..................................... <none>
5 GHz band....................................... <none>
WLAN ID Interface Network Admission Control Radio Policy
1 group for mumbai Disabled None
2 guest wifi Disabled None
*AP3600 with 802.11ac Module will only advertise first 8 WLANs on 5GHz radios.
AP Name Slots AP Model Ethernet MAC Location Port Country Priority
FAL-7-AP08 2 AIR-CAP2702I-D-K9 f0:7f:06:8d:24:d8 7th Floor 1 IN 3
--More-- or (q)uit
FAL-7-AP10 2 AIR-CAP2702I-D-K9 f0:7f:06:8d:25:18 7th Floor 1 IN 1
FAL-7-AP14 2 AIR-CAP2702I-D-K9 f0:7f:06:bf:ad:e8 7th Floor 1 IN 1
FAL-7-AP01 2 AIR-CAP2702I-D-K9 f0:7f:06:bf:b0:4c 7th Floor 1 IN 1
FAL-7-AP07 2 AIR-CAP2702I-D-K9 f0:7f:06:30:92:bc 7th Floor 1 IN 1
FAL-7-AP13 2 AIR-CAP2702I-D-K9 f0:7f:06:30:91:80 7th Floor 1 IN 1
FAL-7-AP02 2 AIR-CAP2702I-D-K9 f0:7f:06:30:91:94 7th Floor 1 IN 1
FAL-7-AP05 2 AIR-CAP2702I-D-K9 f0:7f:06:30:91:e8 7th Floor 1 IN 1
FAL-7-AP12 2 AIR-CAP2702I-D-K9 f0:7f:06:8d:25:f0 7th Floor 1 IN 3
FAL-7-AP03 2 AIR-CAP2702I-D-K9 f0:7f:06:8d:25:e4 7th Floor 1 IN 1
FAL-7-AP06 2 AIR-CAP2702I-D-K9 f0:7f:06:30:91:84 7th Floor 1 IN 3
FAL-7-AP04 2 AIR-CAP2702I-D-K9 f0:7f:06:bf:b0:14 7th Floor 1 IN 1
FAL-7-AP09 2 AIR-CAP2702I-D-K9 f0:7f:06:92:b4:c8 7th Floor 1 IN 3
FAL-7-AP11 2 AIR-CAP2702I-D-K9 f0:7f:06:30:93:08 7th Floor 1 IN 1
Site Name........................................ MUMBAI-THIRD-FLOOR-AP
Site Description................................. MUMBAI-THIRD-FLOOR-AP
Venue Group Code................................. Unspecified
Venue Type Code.................................. Unspecified
NAS-identifier................................... Fractal-WLC1
Client Traffic QinQ Enable....................... FALSE
--More-- or (q)uit
DHCPv4 QinQ Enable............................... FALSE
AP Operating Class............................... Not-configured
Capwap Prefer Mode............................... Not-configured
RF Profile
2.4 GHz band..................................... <none>
5 GHz band....................................... <none>
WLAN ID Interface Network Admission Control Radio Policy
1 group for mumbai Disabled None
2 guest wifi Disabled None
*AP3600 with 802.11ac Module will only advertise first 8 WLANs on 5GHz radios.
AP Name Slots AP Model Ethernet MAC Location Port Country Priority
FAL-3-AP07 2 AIR-CAP2702I-D-K9 f0:7f:06:30:91:a4 3rd Floor 1 IN 3
FAL-3-AP09 2 AIR-CAP2702I-D-K9 f0:7f:06:8d:25:94 3rd Floor 1 IN 3
FAL-3-AP11 2 AIR-CAP2702I-D-K9 f4:0f:1b:73:00:74 3rd Floor- Eurek 1 IN 3
FAL-3-AP06 2 AIR-CAP2702I-D-K9 f0:7f:06:bf:ae:d0 3rd Floor 1 IN 3
--More-- or (q)uit
FAL-3-AP10 2 AIR-CAP2702I-D-K9 f0:7f:06:92:b5:88 3rd Floor 1 IN 3
FAL-3-AP08 2 AIR-CAP2702I-D-K9 f0:7f:06:92:b4:9c 3rd Floor 1 IN 3
FAL-3-AP03 2 AIR-CAP2702I-D-K9 f0:7f:06:bf:af:a0 3rd Floor 1 IN 1
FAL-3-AP12 2 AIR-CAP2702I-D-K9 f0:7f:06:92:b3:fc 3rd Floor- Eurek 1 IN 3
FAL-3-AP02 2 AIR-CAP2702I-D-K9 f0:7f:06:8d:25:28 3rd Floor 1 IN 3
FAL-3-AP01 2 AIR-CAP2702I-D-K9 f0:7f:06:92:b4:f4 3rd Floor 1 IN 3
FAL-3-AP04 2 AIR-CAP2702I-D-K9 f0:7f:06:30:92:8c 3rd Floor 1 IN 2
FAL-3-AP05 2 AIR-CAP2702I-D-K9 f0:7f:06:30:91:f4 3rd Floor 1 IN 3
Site Name........................................ RAHEJA-AP-GROUP
Site Description................................. RAHEJA-AP-GROUP
Venue Group Code................................. Unspecified
Venue Type Code.................................. Unspecified
NAS-identifier................................... Fractal-WLC1
Client Traffic QinQ Enable....................... FALSE
DHCPv4 QinQ Enable............................... FALSE
AP Operating Class............................... Not-configured
Capwap Prefer Mode............................... Not-configured
RF Profile
--More-- or (q)uit
2.4 GHz band..................................... <none>
5 GHz band....................................... <none>
WLAN ID Interface Network Admission Control Radio Policy
5 raheja-interface Disabled None
2 raheja-guest Disabled None
*AP3600 with 802.11ac Module will only advertise first 8 WLANs on 5GHz radios.
AP Name Slots AP Model Ethernet MAC Location Port Country Priority
FAL-RAHEJA-AP04 2 AIR-CAP2702I-D-K9 f0:7f:06:8d:24:1c Near Meeting Roo 1 IN 3
FAL-RAHEJA-AP02 2 AIR-CAP2702I-D-K9 f0:7f:06:8d:37:3c Confrennce Room 1 IN 3
FAL-RAHEJA-AP03 2 AIR-CAP2702I-D-K9 f0:7f:06:30:93:48 Near Confrence R 1 IN 3
FAL-RAHEJA-AP05 2 AIR-CAP2702I-D-K9 f0:7f:06:bf:ae:c0 Near Meeting Roo 1 IN 3
FAL-RAHEJA-AP06 2 AIR-CAP2702I-D-K9 f0:7f:06:92:b3:a0 Near Server Room 1 IN 3
FAL-RAHEJA-AP01 2 AIR-CAP2702I-D-K9 f0:7f:06:92:b3:20 Reception Area 1 IN 3
FAL-RAHEJA-AP08 2 AIR-CAP2702I-D-K9 f0:7f:06:8d:25:68 USER BAY ROAD si 1 IN 1
FAL-RAHEJA-AP09 2 AIR-CAP2702I-D-K9 f0:7f:06:92:b4:d4 Training Room 1 IN 1
--More-- or (q)uit
Site Name........................................ default-group
Site Description................................. <none>
NAS-identifier................................... Fractal-WLC1
Client Traffic QinQ Enable....................... FALSE
DHCPv4 QinQ Enable............................... FALSE
AP Operating Class............................... Not-configured
Capwap Prefer Mode............................... Not-configured
RF Profile
2.4 GHz band..................................... <none>
5 GHz band....................................... <none>
WLAN ID Interface Network Admission Control Radio Policy
1 group for mumbai Disabled None
2 guest wifi Disabled None
3 gurgaon-interface Disabled None
4 gurgaon-guest Disabled None
5 raheja-interface Disabled None
6 test Disabled None
Cisco Controller) >show flexconnect group summary
FlexConnect Group Summary: Count: 4
Group Name # Aps
Gurgaon-AP 9
HQ-3RD-FLR-AP-GROUP 12
HQ-7THFLR-AP-GROUP 14
Raheja-AP-Group 8
(Cisco Controller) >show flexconnect group detail Gurgaon-AP
Number of AP's in Group: 9
bc:16:65:13:71:00 GUR-AP-03 Joined Flexconnect
f4:4e:05:45:78:98 GUR-AP-08 Joined Flexconnect
f4:4e:05:78:ae:64 GUR-AP-04 Joined Flexconnect
f4:4e:05:78:ae:e4 GUR-AP-01 Joined Flexconnect
f4:4e:05:80:b3:2c GUR-AP-02 Joined Flexconnect
f4:4e:05:80:b3:e0 GUR-AP-06 Joined Flexconnect
f4:4e:05:80:b3:f8 GUR-AP-07 Joined Flexconnect
f4:4e:05:80:b4:44 GUR-AP-09 Joined Flexconnect
f4:4e:05:80:b5:18 GUR-AP-05 Joined Flexconnect
Efficient AP Image Upgrade ..... Disabled
Master-AP-Mac Master-AP-Name Model Manual
Group Radius Servers Settings:
Type Server Address Port
Primary Unconfigured Unconfigured
Secondary Unconfigured Unconfigured
--More-- or (q)uit
Group Radius AP Settings:
AP RADIUS server............ Disabled
EAP-FAST Auth............... Disabled
LEAP Auth................... Disabled
EAP-TLS Auth................ Disabled
EAP-TLS CERT Download....... Disabled
PEAP Auth................... Disabled
Server Key Auto Generated... No
Server Key.................. <hidden>
Authority ID................ 436973636f0000000000000000000000
Authority Info.............. Cisco A_ID
PAC Timeout................. 0
Multicast on Overridden interface config: Disabled
DHCP Broadcast Overridden interface config: Disabled
Number of User's in Group: 0
Vlan :........................................... 203
Ingress ACL :................................... None
Egress ACL :.................................... None
Vlan :........................................... 205
Ingress ACL :................................... None
Egress ACL :.................................... None
Vlan :........................................... 204
--More-- or (q)uit
Ingress ACL :................................... None
Egress ACL :.................................... None
Vlan :........................................... 206
Ingress ACL :................................... None
Egress ACL :.................................... None
Vlan :........................................... 207
Ingress ACL :................................... None
Egress ACL :.................................... None
Vlan :........................................... 208
Ingress ACL :................................... None
Egress ACL :.................................... None
Vlan :........................................... 209
Ingress ACL :................................... None
Egress ACL :.................................... None
Vlan :........................................... 210
Ingress ACL :................................... None
Egress ACL :.................................... None
Vlan :........................................... 211
Ingress ACL :................................... None
Egress ACL :.................................... None
Vlan :........................................... 212
Ingress ACL :................................... None
Egress ACL :.................................... None
--More-- or (q)uit
Vlan :........................................... 216
Ingress ACL :................................... None
Egress ACL :.................................... None
Vlan :........................................... 217
Ingress ACL :................................... None
Egress ACL :.................................... None
Vlan :........................................... 218
Ingress ACL :................................... None
Egress ACL :.................................... None
Group-Specific FlexConnect Wlan-Vlan Mapping:
WLAN ID Vlan ID
WLAN ID SSID Central-Dhcp Dns-Override Nat-Pat
(Cisco Controller) >
(Cisco Controller) >show wlan summary
Number of WLANs.................................. 6
WLAN ID WLAN Profile Name / SSID Status Interface Name PMIPv6 Mobility
1 FRACTAL-EMP-MUMBAI / FRACTAL Enabled group for mumbai none
2 FRACTAL-GUEST / FRACTAL-GUEST Enabled guest wifi none
3 FRACTAL-EMP-GURGAON / FRACTAL-GURGAON Enabled gurgaon-interface none
4 GURGAON-GUEST / FRACTAL-GUEST-GURGAON Enabled gurgaon-guest none
5 RAHEJA-EMP-WIRELESS / FRACTAL-R Enabled raheja-interface none
6 TEST-SSID / TEST-SSID Enabled test none
hope this will give you proper understanding. -
How to extend wireless to Branch keeping it secure
Hello everyone
I would like to discuss an implementation scenario here.
Let me define my current wireless network scenario at Head Office first.
At Head Office
Access points 3600 series
WLC 5500 series
Cisco ISE 3415 K9
SSIDs = 2
1. Company wireless
2. BYOD wireless
Company wireless only runs on company provided (Domain Joined) machines.
Have implemented NAC 802.1X s that checks the devices and assigns the machine particular VLAN and IP address.
BYOD wireless is for non company (Non Domain Joined) devices but (For Company Employees only)
for that Cisco ISE is synced with Active Directory, user's credentials are checked then connected to the Internet (Not Company Network).
BYOD SSID is just used to provide internet service, machines joined with this SSID are not on our company network they are bypassed to connect to the internet.
THE QUESTION
Now have to implement wireless at branch office with approx. 40 - 50 users.
approx. 3 Access points will be used.
have to make 2 SSIDs
Company Wireless
BYOD Wireless
We don't have NAC 802.1X implemented there.
How to keep the network secure so that everyone cannot connect to the "Company Wireless" ? Just company (Domain Joined) devices should connect.
How and where the credentials be checked ?
How to use BYOD there just like Head Office, so that users may not get on to the corporate network but be bypassed and use Internet services ?
Highly thankful
Regards
AliHello,
How and where the credentials be checked ?
The credentials can continue being checked in the head office Cisco ISE and you can use local switching with vlan segmentations and VLAN-ACL in the AP in FlexConnect Mode or firewall to deny access to local networks comming from BYOD SSID.
How to use BYOD there just like Head Office, so that users may not get on to the corporate network but be bypassed and use Internet services ?
You can segment your SSIDs (BYOD and Corporate) in two differents networks (VLANs) using Local Switching and mapped it in the Access Point and apply the ACL in the firewall or gateway from these networks or directly in the Access Point using VLAN-ACL feature in FlexConnect Mode.
I have some cases below with this same solicitation :
Implementation 01 :
Central Authentication and Central Switching
If you have a MPLS Link to the branch office, you can work with central switching and central authentication using the Access Points in the remote office.
In this situation you can show the SSIDs in the branch office and the users will connect and will receive the same policies and IP address from the Head office and the traffic will be tunneled from the AP in the branch office to the WLC in the Head office and the client who need to access only internet (SSID BYOD) and corporate network (SSID Corporate) transparently receiveing the same policies as if was in the central site.
The Cisco ISE will apply the policies to both Corporate and BYOD transparently.
However if you lost communication with head office, the clients will be disconnect and it will be a problem and if you are thinking about 40-50 users using the wireless network in a MPLS link it can be a problem too thinking about the traffic passing inside this link. You can use a bandwidht control in the SSID configuration to help in this situation.
Implementation 02 :
Central Authentication and Local Switching
If you have a MPLS LINK, you can communicate AP in the branch office to the WLC in the head office and the AP will get the configurations and will make Local Switching and you need to have VLANs mappped and a network segmentation in the branch office to separate both SSIDs ( BYOD and Corporate ) and the Cisco ISE will authenticate the users and apply the policies to Local Switching APs.
Your traffic will be locally and you will not have a MPLS link passing all traffic (inclusive internet access) using only this link to communicate AP --> WLC --> Cisco ISE and your authentication will be centrally and in this situation if you lose communication with the central site you can't authenticate any new users.
Implementation 03 :
Local Switching and Local Authentication
The APs will communicate with the head office WLC, but will direct the authentications to Cisco ISE in the branch office and the authentications will be direct to this one to authenticate and validate the users, similar to the head office scenario.
If you lose WLC communication you will not have any problem because the AP is directing the authentication to the local ISE in the branch office. -
Trouble getting Cisco 2600 Series AP to stay joined to WLC 5508
Hi,
I have recently been tasked with upgrading our old Autonomous APs to LWAPs. We have a 5508 WLC at our Virtual Co-Lo and I am using Flexconnect to accomadate local switching and dhcp at our sites. I have upgraded over 50 APs and joined them to the controller. These include only 1130AG and 1240AG models. However they are working flawlessly and staying connected to the controller. The issue I'm having is with a new batch of 2600 series APs staying connected to the controller. I have attempted to do research into what may be causing the disconnects but have yet to find a solution. I am using DNS to resolve the CAPWAP & LWAPP queries from the APs to the controller accross our WAN. In reading other posts I thought it may be an issue with packets getting dropped but have had our Vendor who manages Sonicwalls at both ends of the WAN confirm for me there is no packet loss. Below are logs I gathered using puttty from the AP & WLC. Any help would be greatly appreciated.
AP I'm doing the testing on:
NAME: "AP2600", DESCR: "Cisco Aironet 2600 Series (IEEE 802.11n) Access Point"
PID: AIR-CAP2602I-A-K9 , VID: V01, SN: FTX1740J8V1
WLC in question:
Manufacturer's Name.............................. Cisco Systems Inc.
Product Name..................................... Cisco Controller
Product Version.................................. 7.3.112.0
Bootloader Version............................... 1.0.1
Field Recovery Image Version..................... 6.0.182.0
Firmware Version................................. FPGA 1.3, Env 1.6, USB console 1.27
Build Type....................................... DATA + WPS
System Name...................................... wificontroller
System Location.................................. Corp
System Contact................................... Net Engineer
System ObjectID.................................. 1.3.6.1.4.1.9.1.1069
Redundancy Mode.................................. Disabled
IP Address....................................... 10.250.32.8
Last Reset....................................... Software reset
System Up Time................................... 190 days 3 hrs 34 mins 24 secs
System Timezone Location......................... (GMT -5:00) Eastern Time (US and Canada)
Configured Country............................... US - United States
Operating Environment............................ Commercial (0 to 40 C)
Internal Temp Alarm Limits....................... 0 to 65 C
--More-- or (q)uit
Internal Temperature............................. +38 C
External Temperature............................. +20 C
Fan Status....................................... OK
State of 802.11b Network......................... Enabled
State of 802.11a Network......................... Enabled
Number of WLANs.................................. 14
Number of Active Clients......................... 71
Burned-in MAC Address............................ C8:9C:1D:8C:52:E0
Power Supply 1................................... Present, OK
Power Supply 2................................... Absent
Maximum number of APs supported.................. 100
Here is the output that keeps on occuring as the AP joins the WLC for a brief time and then changes to standalone mode
WT-4thFlr-AP3#
*Dec 14 15:42:04.419: %CAPWAP-3-ERRORLOG: Retransmission count for packet exceeded max(CAPWAP_WTP_EVENT_REQUEST
., 3)
*Dec 14 15:42:11.443: %EVT-4-WRN: Write of flash:/event.capwap done
*Dec 14 15:42:11.483: %LWAPP-3-CLIENTERRORLOG: Switching to Standalone mode
*Dec 14 15:42:11.487: %CAPWAP-3-ERRORLOG: GOING BACK TO DISCOVER MODE
*Dec 14 15:42:11.487: %DTLS-5-SEND_ALERT: Send FATAL : Close notify Alert to 10.250.32.8:5246
*Dec 14 15:42:11.571: %WIDS-6-DISABLED: IDS Signature is removed and disabled.
*Dec 14 15:42:21.575: %CAPWAP-3-ERRORLOG: Selected MWAR 'wificontroller'(index 0).
*Dec 14 15:42:21.575: %CAPWAP-3-ERRORLOG: Go join a capwap controller
*Dec 14 15:42:12.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 10.250.32.8 peer_port: 5246
*Dec 14 15:42:14.303: %CAPWAP-5-DTLSREQSUCC: DTLS connection created sucessfully peer_ip: 10.250.32.8 peer_port: 5246
*Dec 14 15:42:14.303: %CAPWAP-5-SENDJOIN: sending Join Request to 10.250.32.8
*Dec 14 15:42:15.127: Starting Ethernet promiscuous mode
*Dec 14 15:42:15.535: %LWAPP-4-CLIENTEVENTLOG: OfficeExtend Localssid saved in AP flash
*Dec 14 15:42:15.667: ac_first_hop_mac - IP:10.1.2.250 Hop IP:10.1.2.250 IDB:BVI1
*Dec 14 15:42:15.667: Setting AC first hop MAC: 0017.c575.a23c
*Dec 14 15:42:15.855: %CAPWAP-5-JOINEDCONTROLLER: AP has joined controller wificontroller
*Dec 14 15:42:15.911: %LWAPP-4-CLIENTEVENTLOG: No Flex ACL map configuration file to load. Connect to controller to get configuration file
*Dec 14 15:42:15.911: %LWAPP-4-CLIENTEVENTLOG: No Flex ACL map configuration file to load. Connect to controller to get configuration file
*Dec 14 15:42:15.911: %LWAPP-4-CLIENTEVENTLOG: No LS Flex ACL map configuration file to load. Connect to controller to get configuration file
*Dec 14 15:42:15.915: %LWAPP-4-CLIENTEVENTLOG: No Central Dhcp map configuration file to load. Connect to controller to get configuration file
*Dec 14 15:42:15.915: %LWAPP-3-CLIENTERRORLOG: Switching to Connected mode
*Dec 14 15:42:23.639: %WIDS-6-ENABLED: IDS Signature is loaded and enabled
*Dec 14 15:42:34.615: %CLEANAIR-6-STATE: Slot 0 disabled
*Dec 14 15:42:34.615: %CLEANAIR-6-STATE: Slot 1 disabled
*Dec 14 15:45:43.783: %CAPWAP-3-ERRORLOG: Retransmission count for packet exceeded max(CAPWAP_WTP_EVENT_REQUEST
., 11)
*Dec 14 15:45:43.787: %LWAPP-3-CLIENTERRORLOG: Switching to Standalone mode
*Dec 14 15:45:43.787: %CAPWAP-3-ERRORLOG: GOING BACK TO DISCOVER MODE
*Dec 14 15:45:43.787: %DTLS-5-SEND_ALERT: Send FATAL : Close notify Alert to 10.250.32.8:5246
*Dec 14 15:45:43.867: %WIDS-6-DISABLED: IDS Signature is removed and disabled.
*Dec 14 15:45:53.867: %CAPWAP-3-ERRORLOG: Selected MWAR 'wificontroller'(index 0).
*Dec 14 15:45:53.867: %CAPWAP-3-ERRORLOG: Go join a capwap controller
*Dec 14 15:45:44.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 10.250.32.8 peer_port: 5246
*Dec 14 15:45:46.315: %CAPWAP-5-DTLSREQSUCC: DTLS connection created sucessfully peer_ip: 10.250.32.8 peer_port: 5246
*Dec 14 15:45:46.315: %CAPWAP-5-SENDJOIN: sending Join Request to 10.250.32.8
*Dec 14 15:45:46.487: Starting Ethernet promiscuous mode
*Dec 14 15:45:49.903: %LWAPP-4-CLIENTEVENTLOG: OfficeExtend Localssid saved in AP flash
*Dec 14 15:45:50.031: ac_first_hop_mac - IP:10.1.2.250 Hop IP:10.1.2.250 IDB:BVI1
*Dec 14 15:45:50.031: Setting AC first hop MAC: 0017.c575.a23c
Here are the results of debug capwap client event on the AP:
WT-4thFlr-AP3#debug capwap client event
CAPWAP Client EVENT display debugging is on
WT-4thFlr-AP3#
*Dec 14 15:54:58.335: %CAPWAP-3-EVENTLOG: Echo Interval Expired.
*Dec 14 15:54:58.335: %CAPWAP-3-EVENTLOG: Sending packet to AC
*Dec 14 15:54:58.335: %CAPWAP-3-EVENTLOG: Echo Request sent to 10.250.32.8
*Dec 14 15:54:58.343: %CAPWAP-3-EVENTLOG: Resetting reTransmissionCnt to 0
*Dec 14 15:54:58.343: %CAPWAP-3-EVENTLOG: Queue Empty.
*Dec 14 15:54:58.343: %CAPWAP-3-EVENTLOG: Echo Response from 10.250.32.8
*Dec 14 15:55:08.000: %CAPWAP-3-EVENTLOG: Setting time to 15:55:08 UTC Dec 14 2013
*Dec 14 15:55:25.579: %CAPWAP-3-EVENTLOG: Sending packet to AC
*Dec 14 15:55:25.587: %CAPWAP-3-EVENTLOG: Resetting reTransmissionCnt to 0
*Dec 14 15:55:25.587: %CAPWAP-3-EVENTLOG: Queue Empty.
*Dec 14 15:55:25.587: %CAPWAP-3-EVENTLOG: Wtp Event Response from 10.250.32.8
*Dec 14 15:55:25.827: %CAPWAP-3-EVENTLOG: Sending packet to AC
*Dec 14 15:55:25.835: %CAPWAP-3-EVENTLOG: Resetting reTransmissionCnt to 0
*Dec 14 15:55:25.835: %CAPWAP-3-EVENTLOG: Queue Empty.
*Dec 14 15:55:25.835: %CAPWAP-3-EVENTLOG: Wtp Event Response from 10.250.32.8
*Dec 14 15:55:55.835: %CAPWAP-3-EVENTLOG: Echo Interval Expired.
*Dec 14 15:55:55.835: %CAPWAP-3-EVENTLOG: Sending packet to AC
*Dec 14 15:55:55.835: %CAPWAP-3-EVENTLOG: Echo Request sent to 10.250.32.8
*Dec 14 15:55:55.843: %CAPWAP-3-EVENTLOG: Resetting reTransmissionCnt to 0
*Dec 14 15:55:55.843: %CAPWAP-3-EVENTLOG: Queue Empty.
*Dec 14 15:55:55.843: %CAPWAP-3-EVENTLOG: Echo Response from 10.250.32.8
*Dec 14 15:55:56.000: %CAPWAP-3-EVENTLOG: Setting time to 15:55:56 UTC Dec 14 2013
*Dec 14 15:56:25.735: %CAPWAP-3-EVENTLOG: Sending packet to AC
*Dec 14 15:56:25.743: %CAPWAP-3-EVENTLOG: Resetting reTransmissionCnt to 0
*Dec 14 15:56:25.743: %CAPWAP-3-EVENTLOG: Queue Empty.
*Dec 14 15:56:25.743: %CAPWAP-3-EVENTLOG: Wtp Event Response from 10.250.32.8
*Dec 14 15:56:25.983: %CAPWAP-3-EVENTLOG: Sending packet to AC
*Dec 14 15:56:25.991: %CAPWAP-3-EVENTLOG: Resetting reTransmissionCnt to 0
*Dec 14 15:56:25.991: %CAPWAP-3-EVENTLOG: Queue Empty.
*Dec 14 15:56:25.991: %CAPWAP-3-EVENTLOG: Wtp Event Response from 10.250.32.8
*Dec 14 15:56:55.991: %CAPWAP-3-EVENTLOG: Echo Interval Expired.
*Dec 14 15:56:55.991: %CAPWAP-3-EVENTLOG: Sending packet to AC
*Dec 14 15:56:55.991: %CAPWAP-3-EVENTLOG: Echo Request sent to 10.250.32.8
*Dec 14 15:56:55.999: %CAPWAP-3-EVENTLOG: Resetting reTransmissionCnt to 0
*Dec 14 15:56:55.999: %CAPWAP-3-EVENTLOG: Queue Empty.
*Dec 14 15:56:55.999: %CAPWAP-3-EVENTLOG: Echo Response from 10.250.32.8
*Dec 14 15:56:56.000: %CAPWAP-3-EVENTLOG: Setting time to 15:56:56 UTC Dec 14 2013
Here are the results of debug capwap client packet detail:
WT-4thFlr-AP3#
*Dec 14 15:59:01.823: <<<< Start of CAPWAP Packet >>>>
*Dec 14 15:59:01.823: CAPWAP Control mesg Sent to 10.250.32.8, Port 5246
*Dec 14 15:59:01.823: Msg Type : CAPWAP_ECHO_REQUEST
*Dec 14 15:59:01.823: Msg Length : 0
*Dec 14 15:59:01.823: Msg SeqNum : 44
*Dec 14 15:59:01.823: <<<< End of CAPWAP Packet >>>>
*Dec 14 15:59:01.831: <<<< Start of CAPWAP Packet >>>>
*Dec 14 15:59:01.831: CAPWAP Control mesg Recd from 10.250.32.8, Port 5246
*Dec 14 15:59:01.831: HLEN 2, Radio ID 0, WBID 1
*Dec 14 15:59:01.831: Msg Type : CAPWAP_ECHO_RESPONSE
*Dec 14 15:59:01.831: Msg Length : 15
*Dec 14 15:59:01.831: Msg SeqNum : 44
*Dec 14 15:59:01.831:
*Dec 14 15:59:01.831: Type : CAPWAP_MSGELE_VENDOR_SPECIFIC_PAYLOAD, Length 11
*Dec 14 15:59:01.831: Vendor Identifier : 0x00409600
*Dec 14 15:59:01.831:
*Dec 14 15:59:01.831:
IE : UNKNOWN IE 151
*Dec 14 15:59:01.831: IE Length : 5
*Dec 14 15:59:01.831: Decode routine not available, Printing Hex Dump
*Dec 14 15:59:01.831:
52 AC 80 46 00
*Dec 14 15:59:01.831: <<<< End of CAPWAP Packet >>>>
*Dec 14 15:59:20.931: <<<< Start of CAPWAP Packet >>>>
*Dec 14 15:59:20.931: CAPWAP Control mesg Recd from 10.250.32.8, Port 5246
*Dec 14 15:59:20.931: HLEN 2, Radio ID 0, WBID 1
*Dec 14 15:59:20.931: Msg Type : CAPWAP_CONFIGURATION_UPDATE_REQUEST
*Dec 14 15:59:20.931: Msg Length : 93
*Dec 14 15:59:20.931: Msg SeqNum : 38
*Dec 14 15:59:20.931:
*Dec 14 15:59:20.931: Type : CAPWAP_MSGELE_VENDOR_SPECIFIC_PAYLOAD, Length 89
*Dec 14 15:59:20.931: Vendor Identifier : 0x00409600
*Dec 14 15:59:20.931:
*Dec 14 15:59:20.931:
IE : RRM_NEIGHBOR_CTRL_PAYLOAD
*Dec 14 15:59:20.931: IE Length : 83
*Dec 14 15:59:20.931: Decode routine not available, Printing Hex Dump
*Dec 14 15:59:20.931:
00 0A FA 20 08 01 F4 00 07 0A FA 20 08 03 00 01
01 00 3C 00 B4 2E 06 2E E7 B4 94 51 B2 C7 79 25
22 FD BE 04 F6 00 00 00 00 00 00 00 00 4F 50 52
53 2D 57 69 46 69 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00 00 00 00 00 00 00 01 06 0B
01 01 01
*Dec 14 15:59:20.931: <<<< End of CAPWAP Packet >>>>
*Dec 14 15:59:20.931: <<<< Start of CAPWAP Packet >>>>
*Dec 14 15:59:20.931: CAPWAP Control mesg Sent to 10.250.32.8, Port 5246
*Dec 14 15:59:20.931: Msg Type : CAPWAP_CONFIGURATION_UPDATE_RESPONSE
*Dec 14 15:59:20.931: Msg Length : 8
*Dec 14 15:59:20.931: Msg SeqNum : 38
*Dec 14 15:59:20.931:
*Dec 14 15:59:20.931: Type : CAPWAP_MSGELE_RESULT_CODE, Length 4
*Dec 14 15:59:20.931: Result Code : CAPWAP_SUCCESS
*Dec 14 15:59:20.931: <<<< End of CAPWAP Packet >>>>
*Dec 14 15:59:21.139: <<<< Start of CAPWAP Packet >>>>
*Dec 14 15:59:21.139: CAPWAP Control mesg Recd from 10.250.32.8, Port 5246
*Dec 14 15:59:21.139: HLEN 2, Radio ID 0, WBID 1
*Dec 14 15:59:21.139: Msg Type : CAPWAP_CONFIGURATION_UPDATE_REQUEST
*Dec 14 15:59:21.139: Msg Length : 111
*Dec 14 15:59:21.139: Msg SeqNum : 39
*Dec 14 15:59:21.139:
*Dec 14 15:59:21.139: Type : CAPWAP_MSGELE_VENDOR_SPECIFIC_PAYLOAD, Length 107
*Dec 14 15:59:21.139: Vendor Identifier : 0x00409600
*Dec 14 15:59:21.139:
*Dec 14 15:59:21.139:
IE : RRM_NEIGHBOR_CTRL_PAYLOAD
*Dec 14 15:59:21.139: IE Length : 101
*Dec 14 15:59:21.139: Decode routine not available, Printing Hex Dump
*Dec 14 15:59:21.143:
01 0A FA 20 08 01 F4 00 07 0A FA 20 08 0C 00 01
01 00 3C 00 B4 2E 06 2E E7 B4 94 51 B2 C7 79 25
22 FD BE 04 F6 00 00 00 00 00 00 00 00 4F 50 52
53 2D 57 69 46 69 00 00 00 00 00 00 00 00 00 00
00 00 00 00 00 00 00 00 00 00 00 00 00 24 28 2C
30 34 38 3C 40 95 99 9D A1 01 01 01 01 01 01 01
01 01 01 01 01
*Dec 14 15:59:21.143: <<<< End of CAPWAP Packet >>>>
*Dec 14 15:59:21.143: <<<< Start of CAPWAP Packet >>>>
*Dec 14 15:59:21.143: CAPWAP Control mesg Sent to 10.250.32.8, Port 5246
*Dec 14 15:59:21.143: Msg Type : CAPWAP_CONFIGURATION_UPDATE_RESPONSE
*Dec 14 15:59:21.143: Msg Length : 8
*Dec 14 15:59:21.143: Msg SeqNum : 39
*Dec 14 15:59:21.143:
*Dec 14 15:59:21.143: Type : CAPWAP_MSGELE_RESULT_CODE, Length 4
*Dec 14 15:59:21.143: Result Code : CAPWAP_SUCCESS
*Dec 14 15:59:21.143: <<<< End of CAPWAP Packet >>>>
*Dec 14 15:59:25.547: <<<< Start of CAPWAP Packet >>>>
*Dec 14 15:59:25.547: CAPWAP Control mesg Sent to 10.250.32.8, Port 5246
*Dec 14 15:59:25.547: Msg Type : CAPWAP_WTP_EVENT_REQUEST
*Dec 14 15:59:25.547: Msg Length : 14
*Dec 14 15:59:25.547: Msg SeqNum : 45
*Dec 14 15:59:25.547:
*Dec 14 15:59:25.547: Type : CAPWAP_MSGELE_VENDOR_SPECIFIC_PAYLOAD, Length 10
*Dec 14 15:59:25.547: Vendor Identifier : 0x00409600
*Dec 14 15:59:25.547:
*Dec 14 15:59:25.547:
IE : RRM_LOAD_DATA_PAYLOAD
*Dec 14 15:59:25.547: IE Length : 4
*Dec 14 15:59:25.547: slot 0 rxLoad 0 txLoad 0 ccaLoad 33
*Dec 14 15:59:25.547: <<<< End of CAPWAP Packet >>>>
*Dec 14 15:59:25.555: <<<< Start of CAPWAP Packet >>>>
*Dec 14 15:59:25.555: CAPWAP Control mesg Recd from 10.250.32.8, Port 5246
*Dec 14 15:59:25.555: HLEN 2, Radio ID 0, WBID 1
*Dec 14 15:59:25.555: Msg Type : CAPWAP_WTP_EVENT_RESPONSE
*Dec 14 15:59:25.555: Msg Length : 0
*Dec 14 15:59:25.555: Msg SeqNum : 45
*Dec 14 15:59:25.555: <<<< End of CAPWAP Packet >>>>
*Dec 14 15:59:25.795: <<<< Start of CAPWAP Packet >>>>
*Dec 14 15:59:25.795: CAPWAP Control mesg Sent to 10.250.32.8, Port 5246
*Dec 14 15:59:25.795: Msg Type : CAPWAP_WTP_EVENT_REQUEST
*Dec 14 15:59:25.795: Msg Length : 14
*Dec 14 15:59:25.795: Msg SeqNum : 46
*Dec 14 15:59:25.795:
*Dec 14 15:59:25.795: Type : CAPWAP_MSGELE_VENDOR_SPECIFIC_PAYLOAD, Length 10
*Dec 14 15:59:25.795: Vendor Identifier : 0x00409600
*Dec 14 15:59:25.795:
*Dec 14 15:59:25.795:
IE : RRM_LOAD_DATA_PAYLOAD
*Dec 14 15:59:25.795: IE Length : 4
*Dec 14 15:59:25.795: slot 1 rxLoad 0 txLoad 0 ccaLoad 0
*Dec 14 15:59:25.795: <<<< End of CAPWAP Packet >>>>
*Dec 14 15:59:25.803: <<<< Start of CAPWAP Packet >>>>
*Dec 14 15:59:25.803: CAPWAP Control mesg Recd from 10.250.32.8, Port 5246
*Dec 14 15:59:25.803: HLEN 2, Radio ID 0, WBID 1
*Dec 14 15:59:25.803: Msg Type : CAPWAP_WTP_EVENT_RESPONSE
*Dec 14 15:59:25.803: Msg Length : 0
*Dec 14 15:59:25.803: Msg SeqNum : 46
*Dec 14 15:59:25.803: <<<< End of CAPWAP Packet >>>>
*Dec 14 15:59:30.375: <<<< Start of CAPWAP Packet >>>>
*Dec 14 15:59:30.375: CAPWAP Control mesg Recd from 10.250.32.8, Port 5246
*Dec 14 15:59:30.375: HLEN 2, Radio ID 0, WBID 1
*Dec 14 15:59:30.375: Msg Type : CAPWAP_CONFIGURATION_UPDATE_REQUEST
*Dec 14 15:59:30.375: Msg Length : 17
*Dec 14 15:59:30.375: Msg SeqNum : 40
*Dec 14 15:59:30.375:
*Dec 14 15:59:30.375: Type : CAPWAP_MSGELE_VENDOR_SPECIFIC_PAYLOAD, Length 13
*Dec 14 15:59:30.375: Vendor Identifier : 0x00409600
SlotId : 0
Mobile Mac Addr : BC:52:B7:E3:17:CB
*Dec 14 15:59:30.375: <<<< End of CAPWAP Packet >>>>
*Dec 14 15:59:30.375: <<<< Start of CAPWAP Packet >>>>
*Dec 14 15:59:30.375: CAPWAP Control mesg Sent to 10.250.32.8, Port 5246
*Dec 14 15:59:30.375: Msg Type : CAPWAP_CONFIGURATION_UPDATE_RESPONSE
*Dec 14 15:59:30.379: Msg Length : 8
*Dec 14 15:59:30.379: Msg SeqNum : 40
*Dec 14 15:59:30.379:
*Dec 14 15:59:30.379: Type : CAPWAP_MSGELE_RESULT_CODE, Length 4
*Dec 14 15:59:30.379: Result Code : CAPWAP_SUCCESS
*Dec 14 15:59:30.379: <<<< End of CAPWAP Packet >>>>
*Dec 14 15:59:30.387: <<<< Start of CAPWAP Packet >>>>
*Dec 14 15:59:30.387: CAPWAP Control mesg Recd from 10.250.32.8, Port 5246
*Dec 14 15:59:30.387: HLEN 2, Radio ID 0, WBID 1
*Dec 14 15:59:30.387: Msg Type : CAPWAP_WTP_EVENT_RESPONSE
*Dec 14 15:59:30.387: Msg Length : 0
*Dec 14 15:59:30.387: Msg SeqNum : 47
*Dec 14 15:59:30.387: <<<< End of CAPWAP Packet >>>>
*Dec 14 16:00:00.387: <<<< Start of CAPWAP Packet >>>>
*Dec 14 16:00:00.387: CAPWAP Control mesg Sent to 10.250.32.8, Port 5246
*Dec 14 16:00:00.387: Msg Type : CAPWAP_ECHO_REQUEST
*Dec 14 16:00:00.387: Msg Length : 0
*Dec 14 16:00:00.387: Msg SeqNum : 48
*Dec 14 16:00:00.387: <<<< End of CAPWAP Packet >>>>
*Dec 14 16:00:00.395: <<<< Start of CAPWAP Packet >>>>
*Dec 14 16:00:00.395: CAPWAP Control mesg Recd from 10.250.32.8, Port 5246
*Dec 14 16:00:00.395: HLEN 2, Radio ID 0, WBID 1
*Dec 14 16:00:00.395: Msg Type : CAPWAP_ECHO_RESPONSE
*Dec 14 16:00:00.395: Msg Length : 15
*Dec 14 16:00:00.395: Msg SeqNum : 48
*Dec 14 16:00:00.395:
*Dec 14 16:00:00.395: Type : CAPWAP_MSGELE_VENDOR_SPECIFIC_PAYLOAD, Length 11
*Dec 14 16:00:00.395: Vendor Identifier : 0x00409600
*Dec 14 16:00:00.395:
*Dec 14 16:00:00.395:
IE : UNKNOWN IE 151
*Dec 14 16:00:00.395: IE Length : 5
*Dec 14 16:00:00.395: Decode routine not available, Printing Hex Dump
*Dec 14 16:00:00.395:
52 AC 80 81 00
*Dec 14 16:00:00.395: <<<< End of CAPWAP Packet >>>>Under my AP Policies I only have "Accept Manufactured Installed Certificate (MIC)" checked. I attempted to add the AP based on MAC Address (c0:67:af:6f:25:70) with this certificate type but still have the same issue. I then ran the following debug on my controller and this is the output I recieve regarding that MAC. I tried to cut the output short because it get's somewhat redundant but was unsure what exactly to look for in the output. Should I be selecting a different certificate type? I am somewhat new to wireless technologies but doing my best to pick things up so if this seems trivial please forgive my ignorance.
debug pm pki enable
*sshpmLscTask: Dec 14 20:42:56.450: sshpmLscTask: LSC Task received a message 4
*spamApTask6: Dec 14 20:42:58.840: sshpmGetIssuerHandles: locking ca cert table
*spamApTask6: Dec 14 20:42:58.841: sshpmGetIssuerHandles: calling x509_alloc() for user cert
*spamApTask6: Dec 14 20:42:58.841: sshpmGetIssuerHandles: calling x509_decode()
*spamApTask6: Dec 14 20:42:58.845: sshpmGetIssuerHandles: C=US, ST=California, L=San Jose, O=Cisco Systems, CN=AP3G2-c067af6f2570, [email protected]
*spamApTask6: Dec 14 20:42:58.845: sshpmGetIssuerHandles: O=Cisco Systems, CN=Cisco Manufacturing CA
*spamApTask6: Dec 14 20:42:58.845: sshpmGetIssuerHandles: Mac Address in subject is c0:67:af:6f:25:70
*spamApTask6: Dec 14 20:42:58.845: sshpmGetIssuerHandles: Cert Name in subject is AP3G2-c067af6f2570
*spamApTask6: Dec 14 20:42:58.845: sshpmGetIssuerHandles: Cert is issued by Cisco Systems.
*spamApTask6: Dec 14 20:42:58.845: sshpmGetCID: called to evaluate
*spamApTask6: Dec 14 20:42:58.845: sshpmGetCID: comparing to row 0, CA cert >bsnOldDefaultCaCert<
*spamApTask6: Dec 14 20:42:58.845: sshpmGetCID: comparing to row 1, CA cert >bsnDefaultRootCaCert<
*spamApTask6: Dec 14 20:42:58.845: sshpmGetCID: comparing to row 2, CA cert >bsnDefaultCaCert<
*spamApTask6: Dec 14 20:42:58.845: sshpmGetCID: comparing to row 3, CA cert >bsnDefaultBuildCert<
*spamApTask6: Dec 14 20:42:58.845: sshpmGetCID: comparing to row 4, CA cert >cscoDefaultNewRootCaCert<
*spamApTask6: Dec 14 20:42:58.845: sshpmGetCID: comparing to row 5, CA cert >cscoDefaultMfgCaCert<
*spamApTask6: Dec 14 20:42:58.845: sshpmGetCertFromCID: called to get cert for CID 282aef7e
*spamApTask6: Dec 14 20:42:58.845: sshpmGetCertFromCID: comparing to row 0, certname >bsnOldDefaultCaCert<
*spamApTask6: Dec 14 20:42:58.845: sshpmGetCertFromCID: comparing to row 1, certname >bsnDefaultRootCaCert<
*spamApTask6: Dec 14 20:42:58.845: sshpmGetCertFromCID: comparing to row 2, certname >bsnDefaultCaCert<
*spamApTask6: Dec 14 20:42:58.845: sshpmGetCertFromCID: comparing to row 3, certname >bsnDefaultBuildCert<
*spamApTask6: Dec 14 20:42:58.845: sshpmGetCertFromCID: comparing to row 4, certname >cscoDefaultNewRootCaCert<
*spamApTask6: Dec 14 20:42:58.845: sshpmGetCertFromCID: comparing to row 5, certname >cscoDefaultMfgCaCert<
*spamApTask6: Dec 14 20:42:58.845: ssphmUserCertVerify: calling x509_decode()
*spamApTask6: Dec 14 20:42:58.856: ssphmUserCertVerify: user cert verfied using >cscoDefaultMfgCaCert<
*spamApTask6: Dec 14 20:42:58.856: sshpmGetIssuerHandles: ValidityString (current): 2013/12/15/01:42:58
*spamApTask6: Dec 14 20:42:58.856: sshpmGetIssuerHandles: ValidityString (NotBefore): 2013/08/25/13:01:22
*spamApTask6: Dec 14 20:42:58.856: sshpmGetIssuerHandles: ValidityString (NotAfter): 2023/08/25/13:11:22
*spamApTask6: Dec 14 20:42:58.856: sshpmGetIssuerHandles: getting cisco ID cert handle...
*spamApTask6: Dec 14 20:42:58.856: sshpmGetCID: called to evaluate
*spamApTask6: Dec 14 20:42:58.856: sshpmGetCID: comparing to row 0, CA cert >bsnOldDefaultCaCert<
*spamApTask6: Dec 14 20:42:58.856: sshpmGetCID: comparing to row 1, CA cert >bsnDefaultRootCaCert<
*spamApTask6: Dec 14 20:42:58.856: sshpmGetCID: comparing to row 2, CA cert >bsnDefaultCaCert<
*spamApTask6: Dec 14 20:42:58.856: sshpmGetCID: comparing to row 3, CA cert >bsnDefaultBuildCert<
*spamApTask6: Dec 14 20:42:58.856: sshpmGetCID: comparing to row 4, CA cert >cscoDefaultNewRootCaCert<
*spamApTask6: Dec 14 20:42:58.856: sshpmGetCID: comparing to row 5, CA cert >cscoDefaultMfgCaCert<
*spamApTask6: Dec 14 20:42:58.856: sshpmGetCID: comparing to row 0, ID cert >bsnOldDefaultIdCert<
*spamApTask6: Dec 14 20:42:58.856: sshpmGetCID: comparing to row 1, ID cert >bsnDefaultIdCert<
*spamApTask6: Dec 14 20:42:58.856: sshpmGetCID: comparing to row 2, ID cert >cscoDefaultIdCert<
*spamApTask6: Dec 14 20:42:58.857: sshpmFreePublicKeyHandle: called with 0x2c5f0cb8
*spamApTask6: Dec 14 20:42:58.857: sshpmFreePublicKeyHandle: freeing public key
*spamApTask0: Dec 14 20:43:17.451: sshpmGetCID: called to evaluate
*spamApTask0: Dec 14 20:43:17.451: sshpmGetCID: comparing to row 0, CA cert >bsnOldDefaultCaCert<
*spamApTask0: Dec 14 20:43:17.451: sshpmGetCID: comparing to row 1, CA cert >bsnDefaultRootCaCert<
*spamApTask0: Dec 14 20:43:17.451: sshpmGetCID: comparing to row 2, CA cert >bsnDefaultCaCert<
*spamApTask0: Dec 14 20:43:17.451: sshpmGetCID: comparing to row 3, CA cert >bsnDefaultBuildCert<
*spamApTask0: Dec 14 20:43:17.451: sshpmGetCID: comparing to row 4, CA cert >cscoDefaultNewRootCaCert<
*spamApTask0: Dec 14 20:43:17.451: sshpmGetCID: comparing to row 5, CA cert >cscoDefaultMfgCaCert<
*spamApTask0: Dec 14 20:43:17.451: sshpmGetCID: comparing to row 0, ID cert >bsnOldDefaultIdCert<
*spamApTask0: Dec 14 20:43:17.451: sshpmGetCID: comparing to row 1, ID cert >bsnDefaultIdCert<
*spamApTask0: Dec 14 20:43:17.451: sshpmGetCID: comparing to row 2, ID cert >cscoDefaultIdCert<
*spamApTask0: Dec 14 20:43:17.451: sshpmGetCertFromCID: called to get cert for CID 183fd2b6
*spamApTask0: Dec 14 20:43:17.451: sshpmGetCertFromCID: comparing to row 0, certname >bsnOldDefaultCaCert<
*spamApTask0: Dec 14 20:43:17.451: sshpmGetCertFromCID: comparing to row 1, certname >bsnDefaultRootCaCert<
*spamApTask0: Dec 14 20:43:17.451: sshpmGetCertFromCID: comparing to row 2, certname >bsnDefaultCaCert<
*spamApTask0: Dec 14 20:43:17.451: sshpmGetCertFromCID: comparing to row 3, certname >bsnDefaultBuildCert<
*spamApTask0: Dec 14 20:43:17.451: sshpmGetCertFromCID: comparing to row 4, certname >cscoDefaultNewRootCaCert<
*spamApTask0: Dec 14 20:43:17.451: sshpmGetCertFromCID: comparing to row 5, certname >cscoDefaultMfgCaCert<
*spamApTask0: Dec 14 20:43:17.451: sshpmGetCertFromCID: comparing to row 0, certname >bsnOldDefaultIdCert<
*spamApTask0: Dec 14 20:43:17.451: sshpmGetCertFromCID: comparing to row 1, certname >bsnDefaultIdCert<
*spamApTask0: Dec 14 20:43:17.451: sshpmGetCertFromCID: comparing to row 2, certname >cscoDefaultIdCert<
*spamApTask0: Dec 14 20:43:17.451: sshpmGetCID: called to evaluate -
Cisco WLC5508 Dynamic VLAN assignment error
Hi All,
We have a HA (SSO) WLC controller pair in two DC's with the Management Interface managing the AP's. The AP's are located in the Campus LAN and the Campus and DC networks are seperated by a L3 boundary.
The plan is for one of the WLAN's to provide Dynamic VLAN Assignment via radius as a test I wanted to use the existing Management interface to bind to the WLAN, but since working through the following Document ID: 71683 one thing I noticed whilst working through the the document states that "it is required that the VLAN-ID configured under the IETF 81 (Tunnel-Private-Group-ID) field of the RADIUS server exist on the WLC"
If the above statement is true and we don't stretch VLAN's between the Campus LAN and the DC network due to the L3 boundary does this mean that Dynamic VLAN assignment won't be achievable? When testing a client connection and debugging the result I receive the following:-
*radiusTransportThread: Jan 15 13:26:23.115: [PA] 10:40:f3:84:a2:2a [BE-resp] AAA response 'Success'
*radiusTransportThread: Jan 15 13:26:23.115: [PA] 10:40:f3:84:a2:2a [BE-resp] Returning AAA response
*radiusTransportThread: Jan 15 13:26:23.115: [PA] 10:40:f3:84:a2:2a AAA Message 'Success' received for mobile 10:40:f3:84:a2:2a
*Dot1x_NW_MsgTask_2: Jan 15 13:26:23.115: [PA] 10:40:f3:84:a2:2a processing avps[0]: attribute 11, vendorId 0, valueLen 11
*Dot1x_NW_MsgTask_2: Jan 15 13:26:23.115: [PA] 10:40:f3:84:a2:2a processing avps[1]: attribute 64, vendorId 0, valueLen 4
*Dot1x_NW_MsgTask_2: Jan 15 13:26:23.115: [PA] 10:40:f3:84:a2:2a processing avps[2]: attribute 65, vendorId 0, valueLen 4
*Dot1x_NW_MsgTask_2: Jan 15 13:26:23.115: [PA] 10:40:f3:84:a2:2a processing avps[3]: attribute 81, vendorId 0, valueLen 2
*Dot1x_NW_MsgTask_2: Jan 15 13:26:23.115: [PA] 10:40:f3:84:a2:2a processing avps[4]: attribute 8, vendorId 0, valueLen 4
*Dot1x_NW_MsgTask_2: Jan 15 13:26:23.115: [PA] 10:40:f3:84:a2:2a processing avps[5]: attribute 79, vendorId 0, valueLen 40
*Dot1x_NW_MsgTask_2: Jan 15 13:26:23.115: [PA] 10:40:f3:84:a2:2a Received EAP Attribute (code=2, length=40,id=64) for mobile 10:40:f3:84:a2:2a
*Dot1x_NW_MsgTask_2: Jan 15 13:26:23.115: [PA] 00000000: xxxxxx
*Dot1x_NW_MsgTask_2: Jan 15 13:26:23.115: [PA] 00000010: xxxxxx
*Dot1x_NW_MsgTask_2: Jan 15 13:26:23.115: [PA] 00000020: xxxxxx
*Dot1x_NW_MsgTask_2: Jan 15 13:26:23.115: [PA] 10:40:f3:84:a2:2a processing avps[6]: attribute 1, vendorId 9, valueLen 16
*Dot1x_NW_MsgTask_2: Jan 15 13:26:23.115: [PA] 10:40:f3:84:a2:2a processing avps[7]: attribute 25, vendorId 0, valueLen 25
*Dot1x_NW_MsgTask_2: Jan 15 13:26:23.115: [PA] 10:40:f3:84:a2:2a processing avps[8]: attribute 80, vendorId 0, valueLen 16
*Dot1x_NW_MsgTask_2: Jan 15 13:26:23.115: [PA] 10:40:f3:84:a2:2a AAA override: Dot1x Authentication PMIP Client AAA Override Enable
*Dot1x_NW_MsgTask_2: Jan 15 13:26:23.115: [PA] 10:40:f3:84:a2:2a AAA override: Dot1x Authentication, default MPC configuration
*Dot1x_NW_MsgTask_2: Jan 15 13:26:23.115: [PA] 10:40:f3:84:a2:2a Tunnel-Type 16777229 should be 13 for STA 10:40:f3:84:a2:2a
*Dot1x_NW_MsgTask_2: Jan 15 13:26:23.116: [PA] 10:40:f3:84:a2:2a Tunnel-Group-Id 9 is not a valid VLAN ID for STA 10:40:f3:84:a2:2a
*Dot1x_NW_MsgTask_2: Jan 15 13:26:23.116: [PA] 10:40:f3:84:a2:2a Received Session Key from AAA Server for STA 10:40:f3:84:a2:2a.
I've sanitised some of the debug output to protect the username but the net result is no IP address assigned to the client and unable to connect to the network.
Would appreciate any guidance as to whether the Wireless Client VLAN's need to be interfaces on the WLC in order to work or whether the likes of Flexconnect could alleviate the L3 boundary?
Thanks in advance.
Kind regards,
MarkHi All,
After playing with Flexconnect I managed to get the dynamic vlan assignment working.
Need to create the Flexconnect Group add in the AP's to the gorup and then select the ACL Mapping tab > AAA VLAN-ACL mapping and added in the VLAN of my VLAN that my Tunnel-Group-ID (VLAN ID) had assigned to me.
Client connected and received the correct IP configuration.
Thanks
Mark -
AP Admin Status Getting Disabled Automatically After Upgrade to 7.4
Hi,
We were using wlan controller 5508 firmware 7.0.235 and decided to upgrade our firmware because we wanted to use some new AP models. We upgraded the controller to the 7.4.110.0 and after that a problem started. Some of the AP are becoming ADMIN DISABLED and they are getting down, this is happening all day and random times. I need to manually getting them admin enabled so we can use them. What can cause this problem?
This happens in APs in Flexconnect mode.
Regards.
Wlan Cont
AIR-CT5508-K9Problem happens with these AP : AIR-LAP1041N-E-K9
We have many AP it is very difficult which AP to debug, everytime different AP is getting disabled. I've also configured syslog but also I do not receive any syslog message to my syslog server. Should I upgrade to 7.5?
Log from AP after disabled...
Console logging: level debugging, 39 messages logged, xml disabled,
filtering disabled
Monitor logging: level debugging, 0 messages logged, xml disabled,
filtering disabled
Buffer logging: level debugging, 39 messages logged, xml disabled,
filtering disabled
Exception Logging: size (4096 bytes)
Count and timestamp logging messages: disabled
Persistent logging: disabled
Trap logging: level emergencies, 12 message lines logged
Logging to 10.0.2.47 (udp port 514, audit disabled,
link down),
0 message lines logged,
0 message lines rate-limited,
0 message lines dropped-by-MD,
xml disabled, sequence number disabled
filtering disabled
Logging Source-Interface: VRF Name:
Log Buffer (1048576 bytes):
*Mar 1 00:00:10.770: %SOAP_FIPS-2-SELF_TEST_IOS_SUCCESS: IOS crypto FIPS self test passed
*Mar 1 00:00:10.773: *** CRASH_LOG = YES
*Mar 1 00:00:11.073: Port 1 is not presentSecurity Core found.
Base Ethernet MAC address: D8:67:D9:FC:00:D6
*Mar 1 00:00:12.424: %SOAP_FIPS-2-SELF_TEST_RAD_SUCCESS: RADIO crypto FIPS self test passed on interface Dot11Radio 0
*Mar 1 00:00:13.507: %LINK-6-UPDOWN: Interface GigabitEthernet0, changed state to up
*Mar 1 00:00:14.518: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0, changed state to up
*Mar 1 00:00:16.503: %SYS-5-RESTART: System restarted --
Cisco IOS Software, C1040 Software (C1140-K9W8-M), Version 15.2(2)JB2, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2013 by Cisco Systems, Inc.
Compiled Mon 29-Jul-13 12:06 by prod_rel_team
*Mar 1 00:00:16.503: %SNMP-5-COLDSTART: SNMP agent on host Antalya is undergoing a cold start
*Mar 1 00:00:16.570: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to reset
*Mar 1 00:00:17.567: %LINEPROTO-5-UPDOWN: Line protocol on Interface BVI1, changed state to up
*Mar 1 00:00:28.630: %CAPWAP-3-ERRORLOG: Could Not resolve CISCO-CAPWAP-CONTROLLER
*Mar 1 00:00:28.632: %LWAPP-3-CLIENTERRORLOG: LWAPP LED Init: incorrect led state 255
*Mar 1 00:00:28.633: bsnInitRcbSlot: slot 1 has NO radio
*Mar 1 00:00:28.657: %CAPWAP-3-ERRORLOG: Binding Config Initialization failed for binding 1
*Mar 1 00:00:29.190: Starting Ethernet promiscuous mode
*Mar 1 00:00:29.396: %SSH-5-ENABLED: SSH 2.0 has been enabledlwapp_crypto_init: MIC Present and Parsed Successfully
*Mar 1 00:00:44.681: Logging LWAPP message to 10.0.2.47.
*Mar 1 00:01:03.711: %CAPWAP-3-ERRORLOG: Could Not resolve CISCO-CAPWAP-CONTROLLER
*Mar 1 00:01:13.713: %CAPWAP-3-ERRORLOG: Selected MWAR 'COLINS-WLC'(index 0).
*Mar 1 00:01:13.713: %CAPWAP-3-ERRORLOG: Go join a capwap controller
*Aug 21 08:32:29.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 10.10.10.10 peer_port: 5246
*Aug 21 08:32:30.063: %CAPWAP-5-DTLSREQSUCC: DTLS connection created sucessfully peer_ip: 10.10.10.10 peer_port: 5246
*Aug 21 08:32:30.063: %CAPWAP-5-SENDJOIN: sending Join Request to 10.10.10.10
*Aug 21 08:32:35.063: %CAPWAP-5-SENDJOIN: sending Join Request to 10.10.10.10
*Aug 21 08:32:35.154: Starting Ethernet promiscuous mode
*Aug 21 08:32:37.005: %LWAPP-4-CLIENTEVENTLOG: OfficeExtend Localssid saved in AP flash
*Aug 21 08:32:37.025: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to administratively down
*Aug 21 08:32:37.224: %CAPWAP-5-JOINEDCONTROLLER: AP has joined controller COLINS-WLC
*Aug 21 08:32:37.273: %LWAPP-4-CLIENTEVENTLOG: No Flex ACL map configuration file to load. Connect to controller to get configuration file
*Aug 21 08:32:37.275: %LWAPP-4-CLIENTEVENTLOG: No Flex ACL map configuration file to load. Connect to controller to get configuration file
*Aug 21 08:32:37.275: %LWAPP-4-CLIENTEVENTLOG: No LS Flex ACL map configuration file to load. Connect to controller to get configuration file
*Aug 21 08:32:37.276: %LWAPP-4-CLIENTEVENTLOG: No Central Dhcp map configuration file to load. Connect to controller to get configuration file
*Aug 21 08:32:37.279: ac_first_hop_mac - IP:192.168.31.1 Hop IP:192.168.31.1 IDB:BVI1
*Aug 21 08:32:37.279: Setting AC first hop MAC: 0024.14d9.f118
*Aug 21 08:32:37.965: %WIDS-6-ENABLED: IDS Signature is loaded and enabled
*Aug 21 08:32:47.905: %CDP_PD-4-POWER_OK: Full power - LOW_POWER_CLASSIC_NO_INJECTOR_CONFIGURED inline power source -
RAP Running flex+bridge back haul A radio will not turn on
Hardware: WLC 5508 running latest Software Version 8.0.100.0
AP Code : c1550-k9w8-xx.153-3.JA
Description :Whilst running in flex+bridge mode and configured as a Root AP, the RAP back-haul A radio will not change to operationally UP.
If the AP is changed to be configured as a MAP, the A radio back haul will go operationally UP.
Debug of the AP below and screenshot of the WLC has been attached.
flashfs[0]: 38 files, 3 directories
flashfs[0]: 0 orphaned files, 0 orphaned directories
flashfs[0]: Total bytes: 31868928
flashfs[0]: Bytes used: 10195456
flashfs[0]: Bytes available: 21673472
flashfs[0]: flashfs fsck took 17 seconds.
Reading cookie from flash parameter block...done.
Base Ethernet MAC address: b0:00:b4:61:a2:20
Loading "flash:/c1550-k9w8-mx.153-3.JA/c1550-k9w8-mx.153-3.JA"...############
File "flash:/c1550-k9w8-mx.153-3.JA/c1550-k9w8-mx.153-3.JA" uncompressed and installed, entry point: 0x3000
executing...
IOS Secondary Bootloader - Starting system.
Xmodem file system is available.
flashfs[0]: 38 files, 3 directories
flashfs[0]: 0 orphaned files, 0 orphaned directories
flashfs[0]: Total bytes: 31868928
flashfs[0]: Bytes used: 10195456
flashfs[0]: Bytes available: 21673472
flashfs[0]: flashfs fsck took 5 seconds.
Reading cookie from flash parameter block...done.
Base Ethernet MAC address: b0:00:b4:61:a2:20
Boot CMD: 'boot flash:/c1550-k9w8-mx.153-3.JA/c1550-k9w8-xx.153-3.JA;flash:/c1550-k9w8-mx.153-3.JA/c1550-k9w8-xx.153-3.JA'
Loading "flash:/c1550-k9w8-mx.153-3.JA/c1550-k9w8-xx.153-3.JA"...################################
File "flash:/c1550-k9w8-mx.153-3.JA/c1550-k9w8-xx.153-3.JA" uncompressed and installed, entry point: 0x3000
executing...
Restricted Rights Legend
Use, duplication, or disclosure by the Government is
subject to restrictions as set forth in subparagraph
(c) of the Commercial Computer Software - Restricted
Rights clause at FAR sec. 52.227-19 and subparagraph
(c) (1) (ii) of the Rights in Technical Data and Computer
Software clause at DFARS sec. 252.227-7013.
cisco Systems, Inc.
170 West Tasman Drive
San Jose, California 95134-1706
Cisco IOS Software, C1550 Software (C1520-K9W8-M), Version 15.3(3)JA, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2014 by Cisco Systems, Inc.
Compiled Fri 15-Aug-14 13:50 by prod_rel_team
Initializing flashfs...
flashfs[2]: 38 files, 3 directories
flashfs[2]: 0 orphaned files, 0 orphaned directories
flashfs[2]: Total bytes: 31610880
flashfs[2]: Bytes used: 10195456
flashfs[2]: Bytes available: 21415424
flashfs[2]: flashfs fsck took 6 seconds.
flashfs[2]: Initialization complete.
flashfs[4]: 0 files, 1 directories
flashfs[4]: 0 orphaned files, 0 orphaned directories
flashfs[4]: Total bytes: 5806080
flashfs[4]: Bytes used: 1024
flashfs[4]: Bytes available: 5805056
flashfs[4]: flashfs fsck took 1 seconds.
flashfs[4]: Initialization complete....done Initializing flashfs.
Radio0 present 8364B 8000 A8020000 0 A8030000 30
Rate table has 336 entries (20 legacy/64 11n/252 11ac)
POWER TABLE FILENAME = flash:/c1550-k9w8-mx.153-3.JA/J2.bin
Radio1 present 8364B 8000 B8020000 0 B8030000 13
POWER TABLE FILENAME = flash:/c1550-k9w8-mx.153-3.JA/J5.bin
Radio2 not present 0 0 0 0 0 11
This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.
A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html
If you require further assistance please contact us by sending email to
[email protected].
cisco AIR-CAP1552EU-N-K9 (PowerPC 8349) processor (revision A0) with 98294K/32768K bytes of memory.
Processor board ID FTX1824P030
PowerPC 8349 CPU at 533Mhz, revision number 0x0031
Last reset from unknown reload cause - ptr to non-ascii bytes 0x17
LWAPP image version 8.0.100.0
4 Gigabit Ethernet interfaces
2 802.11 Radios
32K bytes of flash-simulated non-volatile configuration memory.
Base ethernet MAC Address: B0:00:B4:61:A2:20
Part Number : 73-13538-02
PCA Assembly Number : 800-31224-01
PCA Revision Number : 03
PCB Serial Number : FOC18159782
Top Assembly Part Number : 800-38848-03
Top Assembly Serial Number : FTX1824P030
Top Revision Number : A0
Product/Model Number : AIR-CAP1552EU-N-K9
% Please define a domain-name first.
Spanning Tree protocol for Bridge Group 1 has not been configured.
Press RETURN to get started!
*Mar 1 00:00:08.551: %SOAP_FIPS-2-SELF_TEST_IOS_SUCCESS: IOS crypto FIPS self test passed (15)
*Mar 1 00:00:09.311: %SOAP_FIPS-2-SELF_TEST_HW_SUCCESS: HW crypto FIPS self test passed (1-6)
*Mar 1 00:00:09.311: Registering HW DTLS
*Mar 1 00:00:09.751: m8349_ether_enable: MACCFG1 sync timeout
*Mar 1 00:00:11.547: %LINK-6-UPDOWN: Interface Ethernet4, changed state to up
*Mar 1 00:00:12.415: %SOAP_FIPS-2-SELF_TEST_RAD_SUCCESS: RADIO crypto FIPS self test passed on interface Dot11Radio 0 (4)
*Mar 1 00:00:12.423: %LINK-6-UPDOWN: Interface GigabitEthernet0, changed state to up
*Mar 1 00:00:12.423: %LINK-6-UPDOWN: Interface GigabitEthernet1, changed state to up
*Mar 1 00:00:12.423: %LINK-6-UPDOWN: Interface GigabitEthernet2, changed state to up
*Mar 1 00:00:12.423: %LINK-6-UPDOWN: Interface GigabitEthernet3, changed state to up
*Mar 1 00:00:15.279: %SOAP_FIPS-2-SELF_TEST_RAD_SUCCESS: RADIO crypto FIPS self test passed on interface Dot11Radio 1 (4)
*Mar 1 00:00:15.471: AP Mesh platform identified (backhaul config:0x2, access:0xF)
*Mar 1 00:00:15.535: Starting Ethernet promiscuous mode
*Mar 1 00:00:18.103: %SYS-5-RESTART: System restarted --
Cisco IOS Software, C1550 Software (C1520-K9W8-M), Version 15.3(3)JA, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2014 by Cisco Systems, Inc.
Compiled Fri 15-Aug-14 13:50 by prod_rel_team
*Mar 1 00:00:18.103: %SNMP-5-COLDSTART: SNMP agent on host APb000.b461.a220 is undergoing a cold start
*Mar 1 00:00:19.443: %LINEPROTO-5-UPDOWN: Line protocol on Interface BVI1, changed state to up
*Mar 1 00:00:20.019: %CDP_PD-4-POWER_OK: Full power - INJECTOR_DETECTED inline power source
*Mar 1 00:00:20.323: %LINEPROTO-5-UPDOWN: Line protocol on Interface Ethernet4, changed state to up
*Mar 1 00:00:21.503: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0, changed state to up
*Mar 1 00:00:22.151: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to up
*Mar 1 00:00:22.191: Starting Ethernet promiscuous mode
*Mar 1 00:00:22.355: %SSH-5-ENABLED: SSH 2.0 has been enabled
*Mar 1 00:00:22.355: %LINK-6-UPDOWN: Interface Dot11Radio1, changed state to uplwapp_crypto_init: MIC Present and Parsed Successfully
*Mar 1 00:00:36.591: Currently running a Release Image
*Mar 1 00:00:36.603: Using SHA-1 signed certificate for image signing validation.
*Mar 1 00:00:41.019: %MESH-6-ADJACENCY_STATE_MACHINE_STARTED: Mesh adjacency state machine started
*Mar 1 00:00:41.023: Logging LWAPP message to 255.255.255.255.
*Mar 1 00:00:41.031: %SYS-6-LOGGINGHOST_STARTSTOP: Logging to host 255.255.255.255 port 514 CLI Request Triggered
*Mar 1 00:00:41.035: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to reset
*Mar 1 00:00:42.115: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to up
Not in Bound state.
*Mar 1 00:00:42.123: %LINK-5-CHANGED: Interface Dot11Radio1, changed state to reset
*Mar 1 00:00:43.031: %MESH-6-CAPWAP_RESTART: Mesh Capwap re-started
*Mar 1 00:00:43.115: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to up
*Mar 1 00:00:43.223: %LINK-6-UPDOWN: Interface Dot11Radio1, changed state to up
*Mar 1 00:00:44.223: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio1, changed state to up
*Mar 1 00:00:46.067: %LWAPP-3-LWAPP_INTERFACE_GOT_IP_ADDRESS: Interface BVI1 obtained IP from DHCP...
*Mar 1 00:00:46.067: %MESH-6-CAPWAP_RESTART: Mesh Capwap re-started
*Mar 1 00:00:46.103: %DHCP-6-ADDRESS_ASSIGN: Interface BVI1 assigned DHCP address 10.199.119.144, mask 255.255.255.192, hostname APb000.b461.a220
*Mar 1 00:00:46.103: %LWAPP-3-LWAPP_INTERFACE_GOT_IP_ADDRESS: Interface BVI1 obtained IP from DHCP...
*Mar 1 00:00:46.103: %MESH-6-CAPWAP_RESTART: Mesh Capwap re-started
*Mar 1 00:00:51.143: %LWAPP-3-CLIENTERRORLOG: LWAPP LED Init: incorrect led state 255
*Mar 1 00:00:51.211: %LWAPP-4-CLIENTEVENTLOG: Not sending change state post as the radio admin is down, lrad state = 5
Translating "CISCO-CAPWAP-CONTROLLER.bla"...domain server (10.207.15.11)
*Mar 1 00:00:51.211: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to administratively down
*Mar 1 00:00:52.207: %CAPWAP-5-DHCP_OPTION_43: Controller address 10.198.0.229 obtained through DHCP
*Mar 1 00:00:52.207: %CAPWAP-5-DHCP_OPTION_43: Controller address 10.198.0.230 obtained through DHCP
*Mar 1 00:00:52.211: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to down
*Mar 1 00:00:52.215: %LINK-6-UPDOWN: Interface Dot11Radio1, changed state to down
*Mar 1 00:00:52.223: %LINK-5-CHANGED: Interface Dot11Radio1, changed state to reset
*Mar 1 00:00:53.215: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio1, changed state to down
*Mar 1 00:00:53.243: %LINK-6-UPDOWN: Interface Dot11Radio1, changed state to up
*Mar 1 00:00:54.243: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio1, changed state to up
*Sep 16 02:13:35.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 10.207.15.23 peer_port: 5246
*Sep 16 02:13:37.055: %CAPWAP-5-DTLSREQSUCC: DTLS connection created sucessfully peer_ip: 10.207.15.23 peer_port: 5246
*Sep 16 02:13:37.055: %CAPWAP-5-SENDJOIN: sending Join Request to 10.207.15.23
*Sep 16 02:13:37.839: %LWAPP-4-CLIENTEVENTLOG:
Checksum required saved version = 8.0.100.0, file flash:/lwapp_reap.cfg
*Sep 16 02:13:38.951: %LINK-5-CHANGED: Interface Dot11Radio1, changed state to administratively down
*Sep 16 02:13:39.875: %LWAPP-4-CLIENTEVENTLOG: Not sending change state post as the radio admin is down, lrad state = 2
*Sep 16 02:13:40.151: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio1, changed state to down
*Sep 16 02:13:40.243: %CAPWAP-5-JOINEDCONTROLLER: AP has joined controller XVD-WLC-5508-02
*Sep 16 02:13:40.287: %LWAPP-4-CLIENTEVENTLOG: No Flex ACL map configuration file to load. Connect to controller to get configuration file
*Sep 16 02:13:40.287: %LWAPP-4-CLIENTEVENTLOG: No Flex ACL map configuration file to load. Connect to controller to get configuration file
*Sep 16 02:13:40.287: %LWAPP-4-CLIENTEVENTLOG: No LS Flex ACL map configuration file to load. Connect to controller to get configuration file
*Sep 16 02:13:40.287: %LWAPP-4-CLIENTEVENTLOG: No Central Dhcp map configuration file to load. Connect to controller to get configuration filecapwap_delete_all_l2Acls_in_nacl_list:336. Deleting all L2Acls in AP config
*Sep 16 02:13:41.895: %WIDS-6-ENABLED: IDS Signature is loaded and enabled
Writing out the event log to flash:/event.log ...
*Sep 16 02:20:51.675: %SYS-5-RELOAD: Reload requested by CAPWAP CLIENT. Reload Reason: Recvd RESET req from Controller.
*Sep 16 02:20:51.687: %LWAPP-5-CHANGED: CAPWAP changed state to DOWN
Write of event.log done
IOS Bootloader - Starting system.
Xmodem file system is available.
flashfs[0]: 36 files, 3 directories
flashfs[0]: 0 orphaned files, 0 orphaned directories
flashfs[0]: Total bytes: 31868928
flashfs[0]: Bytes used: 10009088
flashfs[0]: Bytes available: 21859840
flashfs[0]: flashfs fsck took 17 seconds.
Reading cookie from flash parameter block...done.
Base Ethernet MAC address: b0:00:b4:61:a2:20
Loading "flash:/c1550-k9w8-mx.153-3.JA/c1550-k9w8-mx.153-3.JA"...############
File "flash:/c1550-k9w8-mx.153-3.JA/c1550-k9w8-mx.153-3.JA" uncompressed and installed, entry point: 0x3000
executing...
IOS Secondary Bootloader - Starting system.
Xmodem file system is available.
flashfs[0]: 36 files, 3 directories
flashfs[0]: 0 orphaned files, 0 orphaned directories
flashfs[0]: Total bytes: 31868928
flashfs[0]: Bytes used: 10009088
flashfs[0]: Bytes available: 21859840
flashfs[0]: flashfs fsck took 5 seconds.
Reading cookie from flash parameter block...done.
Base Ethernet MAC address: b0:00:b4:61:a2:20
Boot CMD: 'boot flash:/c1550-k9w8-mx.153-3.JA/c1550-k9w8-xx.153-3.JA;flash:/c1550-k9w8-mx.153-3.JA/c1550-k9w8-xx.153-3.JA'
Loading "flash:/c1550-k9w8-mx.153-3.JA/c1550-k9w8-xx.153-3.JA"...################################
File "flash:/c1550-k9w8-mx.153-3.JA/c1550-k9w8-xx.153-3.JA" uncompressed and installed, entry point: 0x3000
executing...
Restricted Rights Legend
Use, duplication, or disclosure by the Government is
subject to restrictions as set forth in subparagraph
(c) of the Commercial Computer Software - Restricted
Rights clause at FAR sec. 52.227-19 and subparagraph
(c) (1) (ii) of the Rights in Technical Data and Computer
Software clause at DFARS sec. 252.227-7013.
cisco Systems, Inc.
170 West Tasman Drive
San Jose, California 95134-1706
Cisco IOS Software, C1550 Software (C1520-K9W8-M), Version 15.3(3)JA, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2014 by Cisco Systems, Inc.
Compiled Fri 15-Aug-14 13:50 by prod_rel_team
Initializing flashfs...
flashfs[2]: 36 files, 3 directories
flashfs[2]: 0 orphaned files, 0 orphaned directories
flashfs[2]: Total bytes: 31610880
flashfs[2]: Bytes used: 10009088
flashfs[2]: Bytes available: 21601792
flashfs[2]: flashfs fsck took 6 seconds.
flashfs[2]: Initialization complete.
flashfs[4]: 0 files, 1 directories
flashfs[4]: 0 orphaned files, 0 orphaned directories
flashfs[4]: Total bytes: 5806080
flashfs[4]: Bytes used: 1024
flashfs[4]: Bytes available: 5805056
flashfs[4]: flashfs fsck took 1 seconds.
flashfs[4]: Initialization complete....done Initializing flashfs.
Radio0 present 8364B 8000 A8020000 0 A8030000 30
Rate table has 336 entries (20 legacy/64 11n/252 11ac)
POWER TABLE FILENAME = flash:/c1550-k9w8-mx.153-3.JA/J2.bin
Radio1 present 8364B 8000 B8020000 0 B8030000 13
POWER TABLE FILENAME = flash:/c1550-k9w8-mx.153-3.JA/J5.bin
Radio2 not present 0 0 0 0 0 11
This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.
A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html
If you require further assistance please contact us by sending email to
[email protected].
cisco AIR-CAP1552EU-N-K9 (PowerPC 8349) processor (revision A0) with 98294K/32768K bytes of memory.
Processor board ID FTX1824P030
PowerPC 8349 CPU at 533Mhz, revision number 0x0031
Last reset from unknown reload cause - ptr to non-ascii bytes 0x18
LWAPP image version 8.0.100.0
4 Gigabit Ethernet interfaces
2 802.11 Radios
32K bytes of flash-simulated non-volatile configuration memory.
Base ethernet MAC Address: B0:00:B4:61:A2:20
Part Number : 73-13538-02
PCA Assembly Number : 800-31224-01
PCA Revision Number : 03
PCB Serial Number : FOC18159782
Top Assembly Part Number : 800-38848-03
Top Assembly Serial Number : FTX1824P030
Top Revision Number : A0
Product/Model Number : AIR-CAP1552EU-N-K9
% Please define a domain-name first.
Spanning Tree protocol for Bridge Group 1 has not been configured.
Press RETURN to get started!
*Mar 1 00:00:08.551: %SOAP_FIPS-2-SELF_TEST_IOS_SUCCESS: IOS crypto FIPS self test passed (15)
*Mar 1 00:00:09.311: %SOAP_FIPS-2-SELF_TEST_HW_SUCCESS: HW crypto FIPS self test passed (1-6)
*Mar 1 00:00:09.311: Registering HW DTLS
*Mar 1 00:00:09.747: m8349_ether_enable: MACCFG1 sync timeout
*Mar 1 00:00:11.547: %LINK-6-UPDOWN: Interface Ethernet4, changed state to up
*Mar 1 00:00:12.411: %SOAP_FIPS-2-SELF_TEST_RAD_SUCCESS: RADIO crypto FIPS self test passed on interface Dot11Radio 0 (4)
*Mar 1 00:00:12.423: %LINK-6-UPDOWN: Interface GigabitEthernet0, changed state to up
*Mar 1 00:00:12.423: %LINK-6-UPDOWN: Interface GigabitEthernet1, changed state to up
*Mar 1 00:00:12.423: %LINK-6-UPDOWN: Interface GigabitEthernet2, changed state to up
*Mar 1 00:00:12.423: %LINK-6-UPDOWN: Interface GigabitEthernet3, changed state to up
*Mar 1 00:00:15.279: %SOAP_FIPS-2-SELF_TEST_RAD_SUCCESS: RADIO crypto FIPS self test passed on interface Dot11Radio 1 (4)
*Mar 1 00:00:15.455: %LWAPP-3-CLIENTERRORLOG: Config load from flash failed. Initialising Cfg
*Mar 1 00:00:15.467: AP Mesh platform identified (backhaul config:0x2, access:0xF)
*Mar 1 00:00:15.535: Starting Ethernet promiscuous mode
*Mar 1 00:00:18.087: %SYS-5-RESTART: System restarted --
Cisco IOS Software, C1550 Software (C1520-K9W8-M), Version 15.3(3)JA, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2014 by Cisco Systems, Inc.
Compiled Fri 15-Aug-14 13:50 by prod_rel_team
*Mar 1 00:00:18.087: %SNMP-5-COLDSTART: SNMP agent on host ap is undergoing a cold start
*Mar 1 00:00:18.463: %LWAPP-3-CLIENTERRORLOG: Config load from flash failed. Initialising Cfg
*Mar 1 00:00:18.531: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to up
*Mar 1 00:00:18.735: %SSH-5-ENABLED: SSH 2.0 has been enabled
*Mar 1 00:00:18.739: %LINK-6-UPDOWN: Interface Dot11Radio1, changed state to uplwapp_crypto_init: MIC Present and Parsed Successfully
*Mar 1 00:00:19.431: %LINEPROTO-5-UPDOWN: Line protocol on Interface BVI1, changed state to up
*Mar 1 00:00:20.011: %CDP_PD-4-POWER_OK: Full power - INJECTOR_DETECTED inline power source
*Mar 1 00:00:20.323: %LINEPROTO-5-UPDOWN: Line protocol on Interface Ethernet4, changed state to up
*Mar 1 00:00:21.495: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0, changed state to up
*Mar 1 00:00:30.559: %DHCP-6-ADDRESS_ASSIGN: Interface BVI1 assigned DHCP address 10.199.119.147, mask 255.255.255.192, hostname APb000.b461.a220
*Mar 1 00:00:36.591: Currently running a Release Image
*Mar 1 00:00:36.603: Using SHA-1 signed certificate for image signing validation.%Default route without gateway, if not a point-to-point interface, may impact performance
*Mar 1 00:00:40.939: AP image integrity check PASSED
*Mar 1 00:00:40.947: %LWAPP-3-CLIENTERRORLOG: Config load from flash failed. Initialising Cfg
*Mar 1 00:00:41.027: %MESH-6-ADJACENCY_STATE_MACHINE_STARTED: Mesh adjacency state machine started
*Mar 1 00:00:41.035: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to reset
*Mar 1 00:00:42.127: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to up
*Mar 1 00:00:42.135: %LINK-5-CHANGED: Interface Dot11Radio1, changed state to reset
*Mar 1 00:00:43.127: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to up
*Mar 1 00:00:43.235: %LINK-6-UPDOWN: Interface Dot11Radio1, changed state to up
*Mar 1 00:00:44.235: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio1, changed state to up
%Error opening flash:/capwap-saved-config (No such file or directory)
*Mar 1 00:00:51.047: %SYS-6-LOGGINGHOST_STARTSTOP: Logging to host 255.255.255.255 port 514 CLI Request Triggered
*Mar 1 00:00:51.055: %MESH-6-CAPWAP_RESTART: Mesh Capwap re-started
*Mar 1 00:00:51.059: %MESH-6-CAPWAP_RESTART: Mesh Capwap re-started
*Mar 1 00:00:51.059: %MESH-6-CAPWAP_RESTART: Mesh Capwap re-started
*Mar 1 00:00:56.099: %LWAPP-3-CLIENTERRORLOG: LWAPP LED Init: incorrect led state 255
*Mar 1 00:00:56.115: %LWAPP-4-CLIENTEVENTLOG: Not sending change state post as the radio admin is down, lrad state = 5
*Mar 1 00:00:56.115: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to administratively down
*Mar 1 00:00:57.115: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to down
Translating "CISCO-CAPWAP-CONTROLLER."...domain server (10.207.15.11)
*Mar 1 00:00:59.831: Starting Ethernet promiscuous mode
*Mar 1 00:00:59.839: %CAPWAP-5-DHCP_OPTION_43: Controller address 10.198.0.229 obtained through DHCP
*Mar 1 00:00:59.839: %CAPWAP-5-DHCP_OPTION_43: Controller address 10.198.0.230 obtained through DHCP
*Mar 1 00:03:15.031: %MESH-3-TIMER_EXPIRED: Mesh Lwapp join timer expired
*Mar 1 00:03:15.031: %MESH-3-TIMER_EXPIRED: Mesh Lwapp join failed expired
*Mar 1 00:03:15.031: %MESH-6-LINK_UPDOWN: Mesh station b000.b461.a23c link Down
*Mar 1 00:03:34.151: %MESH-6-CAPWAP_RESTART: Mesh Capwap re-started
*Mar 1 00:03:39.191: %LWAPP-3-CLIENTERRORLOG: LWAPP LED Init: incorrect led state 255
*Mar 1 00:06:04.151: %MESH-3-TIMER_EXPIRED: Mesh Lwapp join timer expired
*Mar 1 00:06:04.151: %MESH-3-TIMER_EXPIRED: Mesh Lwapp join failed expired
*Mar 1 00:06:04.151: %MESH-6-LINK_UPDOWN: Mesh station b000.b461.a23c link Down
*Mar 1 00:06:23.271: %MESH-6-CAPWAP_RESTART: Mesh Capwap re-started
*Mar 1 00:06:28.311: %LWAPP-3-CLIENTERRORLOG: LWAPP LED Init: incorrect led state 255
IOS Bootloader - Starting system.
Xmodem file system is available.
flashfs[0]: 35 files, 3 directories
flashfs[0]: 0 orphaned files, 0 orphaned directories
flashfs[0]: Total bytes: 31868928
flashfs[0]: Bytes used: 10014208
flashfs[0]: Bytes available: 21854720
flashfs[0]: flashfs fsck took 17 seconds.
Reading cookie from flash parameter block...done.
Base Ethernet MAC address: b0:00:b4:61:a2:20
Loading "flash:/c1550-k9w8-mx.153-3.JA/c1550-k9w8-mx.153-3.JA"...############
File "flash:/c1550-k9w8-mx.153-3.JA/c1550-k9w8-mx.153-3.JA" uncompressed and installed, entry point: 0x3000
executing...
IOS Secondary Bootloader - Starting system.
Xmodem file system is available.
flashfs[0]: 35 files, 3 directories
flashfs[0]: 0 orphaned files, 0 orphaned directories
flashfs[0]: Total bytes: 31868928
flashfs[0]: Bytes used: 10014208
flashfs[0]: Bytes available: 21854720
flashfs[0]: flashfs fsck took 5 seconds.
Reading cookie from flash parameter block...done.
Base Ethernet MAC address: b0:00:b4:61:a2:20
Boot CMD: 'boot flash:/c1550-k9w8-mx.153-3.JA/c1550-k9w8-xx.153-3.JA;flash:/c1550-k9w8-mx.153-3.JA/c1550-k9w8-xx.153-3.JA'
Loading "flash:/c1550-k9w8-mx.153-3.JA/c1550-k9w8-xx.153-3.JA"...################################
File "flash:/c1550-k9w8-mx.153-3.JA/c1550-k9w8-xx.153-3.JA" uncompressed and installed, entry point: 0x3000
executing...
Restricted Rights Legend
Use, duplication, or disclosure by the Government is
subject to restrictions as set forth in subparagraph
(c) of the Commercial Computer Software - Restricted
Rights clause at FAR sec. 52.227-19 and subparagraph
(c) (1) (ii) of the Rights in Technical Data and Computer
Software clause at DFARS sec. 252.227-7013.
cisco Systems, Inc.
170 West Tasman Drive
San Jose, California 95134-1706
Cisco IOS Software, C1550 Software (C1520-K9W8-M), Version 15.3(3)JA, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2014 by Cisco Systems, Inc.
Compiled Fri 15-Aug-14 13:50 by prod_rel_team
Initializing flashfs...
flashfs[2]: 35 files, 3 directories
flashfs[2]: 0 orphaned files, 0 orphaned directories
flashfs[2]: Total bytes: 31610880
flashfs[2]: Bytes used: 10014208
flashfs[2]: Bytes available: 21596672
flashfs[2]: flashfs fsck took 6 seconds.
flashfs[2]: Initialization complete.
flashfs[4]: 0 files, 1 directories
flashfs[4]: 0 orphaned files, 0 orphaned directories
flashfs[4]: Total bytes: 5806080
flashfs[4]: Bytes used: 1024
flashfs[4]: Bytes available: 5805056
flashfs[4]: flashfs fsck took 1 seconds.
flashfs[4]: Initialization complete....done Initializing flashfs.
Radio0 present 8364B 8000 A8020000 0 A8030000 30
Rate table has 336 entries (20 legacy/64 11n/252 11ac)
POWER TABLE FILENAME = flash:/c1550-k9w8-mx.153-3.JA/J2.bin
Radio1 present 8364B 8000 B8020000 0 B8030000 13
POWER TABLE FILENAME = flash:/c1550-k9w8-mx.153-3.JA/J5.bin
Radio2 not present 0 0 0 0 0 11
This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.
A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html
If you require further assistance please contact us by sending email to
[email protected].
cisco AIR-CAP1552EU-N-K9 (PowerPC 8349) processor (revision A0) with 98294K/32768K bytes of memory.
Processor board ID FTX1824P030
PowerPC 8349 CPU at 533Mhz, revision number 0x0031
Last reset from unknown reload cause - ptr to non-ascii bytes 0x17
LWAPP image version 8.0.100.0
4 Gigabit Ethernet interfaces
2 802.11 Radios
32K bytes of flash-simulated non-volatile configuration memory.
Base ethernet MAC Address: B0:00:B4:61:A2:20
Part Number : 73-13538-02
PCA Assembly Number : 800-31224-01
PCA Revision Number : 03
PCB Serial Number : FOC18159782
Top Assembly Part Number : 800-38848-03
Top Assembly Serial Number : FTX1824P030
Top Revision Number : A0
Product/Model Number : AIR-CAP1552EU-N-K9
% Please define a domain-name first.
Spanning Tree protocol for Bridge Group 1 has not been configured.
Press RETURN to get started!
*Mar 1 00:00:08.539: %SOAP_FIPS-2-SELF_TEST_IOS_SUCCESS: IOS crypto FIPS self test passed (15)
*Mar 1 00:00:09.299: %SOAP_FIPS-2-SELF_TEST_HW_SUCCESS: HW crypto FIPS self test passed (1-6)
*Mar 1 00:00:09.299: Registering HW DTLS
*Mar 1 00:00:09.731: m8349_ether_enable: MACCFG1 sync timeout
*Mar 1 00:00:11.527: %LINK-6-UPDOWN: Interface Ethernet4, changed state to up
*Mar 1 00:00:12.395: %SOAP_FIPS-2-SELF_TEST_RAD_SUCCESS: RADIO crypto FIPS self test passed on interface Dot11Radio 0 (4)
*Mar 1 00:00:12.403: %LINK-6-UPDOWN: Interface GigabitEthernet0, changed state to up
*Mar 1 00:00:12.403: %LINK-6-UPDOWN: Interface GigabitEthernet1, changed state to up
*Mar 1 00:00:12.403: %LINK-6-UPDOWN: Interface GigabitEthernet2, changed state to up
*Mar 1 00:00:12.403: %LINK-6-UPDOWN: Interface GigabitEthernet3, changed state to up
*Mar 1 00:00:15.263: %SOAP_FIPS-2-SELF_TEST_RAD_SUCCESS: RADIO crypto FIPS self test passed on interface Dot11Radio 1 (4)
*Mar 1 00:00:15.451: AP Mesh platform identified (backhaul config:0x2, access:0xF)
*Mar 1 00:00:15.519: Starting Ethernet promiscuous mode
*Mar 1 00:00:18.083: %SYS-5-RESTART: System restarted --
Cisco IOS Software, C1550 Software (C1520-K9W8-M), Version 15.3(3)JA, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2014 by Cisco Systems, Inc.
Compiled Fri 15-Aug-14 13:50 by prod_rel_team
*Mar 1 00:00:18.083: %SNMP-5-COLDSTART: SNMP agent on host APb000.b461.a220 is undergoing a cold start
*Mar 1 00:00:18.503: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to up
*Mar 1 00:00:18.543: Starting Ethernet promiscuous mode
*Mar 1 00:00:18.707: %SSH-5-ENABLED: SSH 2.0 has been enabled
*Mar 1 00:00:18.707: %LINK-6-UPDOWN: Interface Dot11Radio1, changed state to uplwapp_crypto_init: MIC Present and Parsed Successfully
*Mar 1 00:00:19.431: %LINEPROTO-5-UPDOWN: Line protocol on Interface BVI1, changed state to up
*Mar 1 00:00:20.011: %CDP_PD-4-POWER_OK: Full power - INJECTOR_DETECTED inline power source
*Mar 1 00:00:20.311: %LINEPROTO-5-UPDOWN: Line protocol on Interface Ethernet4, changed state to up
*Mar 1 00:00:21.495: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0, changed state to up
*Mar 1 00:00:36.571: Currently running a Release Image
*Mar 1 00:00:36.583: Using SHA-1 signed certificate for image signing validation.
%Error opening flash:/capwap-saved-config (No such file or directory)
*Mar 1 00:00:41.003: %SYS-6-LOGGINGHOST_STARTSTOP: Logging to host 255.255.255.255 port 514 CLI Request Triggered
*Mar 1 00:00:41.011: %MESH-6-ADJACENCY_STATE_MACHINE_STARTED: Mesh adjacency state machine started
*Mar 1 00:00:41.015: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to reset
*Mar 1 00:00:42.107: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to up
Not in Bound state.
*Mar 1 00:00:42.115: %LINK-5-CHANGED: Interface Dot11Radio1, changed state to reset
*Mar 1 00:00:43.023: %MESH-6-CAPWAP_RESTART: Mesh Capwap re-started
*Mar 1 00:00:43.107: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to up
*Mar 1 00:00:43.215: %LINK-6-UPDOWN: Interface Dot11Radio1, changed state to up
*Mar 1 00:00:44.215: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio1, changed state to up
*Mar 1 00:00:46.043: %LWAPP-3-LWAPP_INTERFACE_GOT_IP_ADDRESS: Interface BVI1 obtained IP from DHCP...
*Mar 1 00:00:46.043: %MESH-6-CAPWAP_RESTART: Mesh Capwap re-started
*Mar 1 00:00:46.095: %DHCP-6-ADDRESS_ASSIGN: Interface BVI1 assigned DHCP address 10.199.119.147, mask 255.255.255.192, hostname APb000.b461.a220
*Mar 1 00:00:46.095: %LWAPP-3-LWAPP_INTERFACE_GOT_IP_ADDRESS: Interface BVI1 obtained IP from DHCP...
*Mar 1 00:00:46.095: %MESH-6-CAPWAP_RESTART: Mesh Capwap re-started
*Mar 1 00:00:51.135: %LWAPP-3-CLIENTERRORLOG: LWAPP LED Init: incorrect led state 255
*Mar 1 00:00:51.151: %LWAPP-4-CLIENTEVENTLOG: Not sending change state post as the radio admin is down, lrad state = 5
*Mar 1 00:00:51.151: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to administratively down
*Mar 1 00:00:52.151: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to down
Translating "CISCO-CAPWAP-CONTROLLER."...domain server (10.207.15.11)
*Mar 1 00:00:55.831: %CAPWAP-5-DHCP_OPTION_43: Controller address 10.207.15.23 obtained through DHCP
*Sep 16 02:30:49.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 10.207.15.23 peer_port: 5246
*Sep 16 02:30:49.559: %CAPWAP-5-DTLSREQSUCC: DTLS connection created sucessfully peer_ip: 10.207.15.23 peer_port: 5246
*Sep 16 02:30:49.559: %CAPWAP-5-SENDJOIN: sending Join Request to 10.207.15.23
*Sep 16 02:30:50.759: %LWAPP-3-CLIENTERRORLOG: Load Reap Cfg failed, trying backup...
*Sep 16 02:30:50.775: %LWAPP-4-CLIENTEVENTLOG:
Checksum required saved version = 8.0.100.0, file flash:/lwapp_reap.cfg
*Sep 16 02:30:50.779: %LWAPP-4-CLIENTEVENTLOG: No REAP non-ap specific configuration file to load. Connect to controller to get configuration file
*Sep 16 02:30:52.215: %LINK-6-UPDOWN: Interface Dot11Radio1, changed state to down
*Sep 16 02:30:52.223: %LINK-5-CHANGED: Interface Dot11Radio1, changed state to reset
*Sep 16 02:30:52.651: %CAPWAP-5-JOINEDCONTROLLER: AP has joined controller XVD-WLC-5508-02
*Sep 16 02:30:52.691: %LWAPP-4-CLIENTEVENTLOG: No Flex ACL map configuration file to load. Connect to controller to get configuration file
*Sep 16 02:30:52.695: %LWAPP-4-CLIENTEVENTLOG: No Flex ACL map configuration file to load. Connect to controller to get configuration file
*Sep 16 02:30:52.695: %LWAPP-4-CLIENTEVENTLOG: No LS Flex ACL map configuration file to load. Connect to controller to get configuration file
*Sep 16 02:30:52.695: %LWAPP-4-CLIENTEVENTLOG: No Central Dhcp map configuration file to load. Connect to controller to get configuration filecapwap_delete_all_l2Acls_in_nacl_list:336. Deleting all L2Acls in AP config
*Sep 16 02:30:53.215: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio1, changed state to down
*Sep 16 02:30:53.243: %LINK-6-UPDOWN: Interface Dot11Radio1, changed state to up
*Sep 16 02:30:53.867: %LWAPP-4-CLIENTEVENTLOG: Not sending change state post as the radio admin is down, lrad state = 2
*Sep 16 02:30:53.867: %LINK-5-CHANGED: Interface Dot11Radio1, changed state to administratively down
*Sep 16 02:30:54.127: %WIDS-6-ENABLED: IDS Signature is loaded and enabled
*Sep 16 02:30:54.871: %LINK-5-CHANGED: Interface Dot11Radio1, changed state to reset
*Sep 16 02:30:55.895: %LINK-6-UPDOWN: Interface Dot11Radio1, changed state to up
*Sep 16 02:30:56.895: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio1, changed state to upRename from flash:/lwapp_reap.cfg to flash:/lwapp_reap.cfg.bak failed, errorno = 2
*Sep 16 02:31:14.119: %CLEANAIR-6-STATE: Slot 1 disabled
*Sep 16 02:38:12.379: %LINK-6-UPDOWN: Interface Dot11Radio1, changed state to down
*Sep 16 02:38:12.387: %LINK-5-CHANGED: Interface Dot11Radio1, changed state to reset
*Sep 16 02:38:13.055: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio1, changed state to down
*Sep 16 02:38:13.407: %LINK-6-UPDOWN: Interface Dot11Radio1, changed state to up
*Sep 16 02:38:14.387: %LINK-5-CHANGED: Interface Dot11Radio1, changed state to administratively down
*Sep 16 02:38:15.339: %LWAPP-4-CLIENTEVENTLOG: Not sending change state post as the radio admin is down, lrad state = 2
Writing out the event log to flash:/event.log ...
*Sep 16 02:38:24.375: %SYS-5-RELOAD: Reload requested by CAPWAP CLIENT. Reload Reason: Recvd RESET req from Controller.
*Sep 16 02:38:24.387: %LWAPP-5-CHANGED: CAPWAP changed state to DOWN
Write of event.log done
IOS Bootloader - Starting system.
Xmodem file system is available.
flashfs[0]: 39 files, 3 directories
flashfs[0]: 0 orphaned files, 0 orphaned directories
flashfs[0]: Total bytes: 31868928
flashfs[0]: Bytes used: 10195456
flashfs[0]: Bytes available: 21673472
flashfs[0]: flashfs fsck took 17 seconds.
Reading cookie from flash parameter block...done.
Base Ethernet MAC address: b0:00:b4:61:a2:20
Loading "flash:/c1550-k9w8-mx.153-3.JA/c1550-k9w8-mx.153-3.JA"...############
File "flash:/c1550-k9w8-mx.153-3.JA/c1550-k9w8-mx.153-3.JA" uncompressed and installed, entry point: 0x3000
executing...
IOS Secondary Bootloader - Starting system.
Xmodem file system is available.
flashfs[0]: 39 files, 3 directories
flashfs[0]: 0 orphaned files, 0 orphaned directories
flashfs[0]: Total bytes: 31868928
flashfs[0]: Bytes used: 10195456
flashfs[0]: Bytes available: 21673472
flashfs[0]: flashfs fsck took 5 seconds.
Reading cookie from flash parameter block...done.
Base Ethernet MAC address: b0:00:b4:61:a2:20
Boot CMD: 'boot flash:/c1550-k9w8-mx.153-3.JA/c1550-k9w8-xx.153-3.JA;flash:/c1550-k9w8-mx.153-3.JA/c1550-k9w8-xx.153-3.JA'
Loading "flash:/c1550-k9w8-mx.153-3.JA/c1550-k9w8-xx.153-3.JA"...################################
File "flash:/c1550-k9w8-mx.153-3.JA/c1550-k9w8-xx.153-3.JA" uncompressed and installed, entry point: 0x3000
executing...
Restricted Rights Legend
Use, duplication, or disclosure by the Government is
subject to restrictions as set forth in subparagraph
(c) of the Commercial Computer Software - Restricted
Rights clause at FAR sec. 52.227-19 and subparagraph
(c) (1) (ii) of the Rights in Technical Data and Computer
Software clause at DFARS sec. 252.227-7013.
cisco Systems, Inc.
170 West Tasman Drive
San Jose, California 95134-1706
Cisco IOS Software, C1550 Software (C1520-K9W8-M), Version 15.3(3)JA, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2014 by Cisco Systems, Inc.
Compiled Fri 15-Aug-14 13:50 by prod_rel_team
Initializing flashfs...
flashfs[2]: 39 files, 3 directories
flashfs[2]: 0 orphaned files, 0 orphaned directories
flashfs[2]: Total bytes: 31610880
flashfs[2]: Bytes used: 10195456
flashfs[2]: Bytes available: 21415424
flashfs[2]: flashfs fsck took 6 seconds.
flashfs[2]: Initialization complete.
flashfs[4]: 0 files, 1 directories
flashfs[4]: 0 orphaned files, 0 orphaned directories
flashfs[4]: Total bytes: 5806080
flashfs[4]: Bytes used: 1024
flashfs[4]: Bytes available: 5805056
flashfs[4]: flashfs fsck took 1 seconds.
flashfs[4]: Initialization complete....done Initializing flashfs.
Radio0 present 8364B 8000 A8020000 0 A8030000 30
Rate table has 336 entries (20 legacy/64 11n/252 11ac)
POWER TABLE FILENAME = flash:/c1550-k9w8-mx.153-3.JA/J2.bin
Radio1 present 8364B 8000 B8020000 0 B8030000 13
POWER TABLE FILENAME = flash:/c1550-k9w8-mx.153-3.JA/J5.bin
Radio2 not present 0 0 0 0 0 11
This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.
A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html
If you require further assistance please contact us by sending email to
[email protected].
cisco AIR-CAP1552EU-N-K9 (PowerPC 8349) processor (revision A0) with 98294K/32768K bytes of memory.
Processor board ID FTX1824P030
PowerPC 8349 CPU at 533Mhz, revision number 0x0031
Last reset from unknown reload cause - ptr to non-ascii bytes 0x18
LWAPP image version 8.0.100.0
4 Gigabit Ethernet interfaces
2 802.11 Radios
32K bytes of flash-simulated non-volatile configuration memory.
Base ethernet MAC Address: B0:00:B4:61:A2:20
Part Number : 73-13538-02
PCA Assembly Number : 800-31224-01
PCA Revision Number : 03
PCB Serial Number : FOC18159782
Top Assembly Part Number : 800-38848-03
Top Assembly Serial Number : FTX1824P030
Top Revision Number : A0
Product/Model Number : AIR-CAP1552EU-N-K9
% Please define a domain-name first.
Spanning Tree protocol for Bridge Group 1 has not been configured.
Press RETURN to get started!
*Mar 1 00:00:08.563: %SOAP_FIPS-2-SELF_TEST_IOS_SUCCESS: IOS crypto FIPS self test passed (15)
*Mar 1 00:00:09.323: %SOAP_FIPS-2-SELF_TEST_HW_SUCCESS: HW crypto FIPS self test passed (1-6)
*Mar 1 00:00:09.323: Registering HW DTLS
*Mar 1 00:00:09.759: m8349_ether_enable: MACCFG1 sync timeout
*Mar 1 00:00:11.559: %LINK-6-UPDOWN: Interface Ethernet4, changed state to up
*Mar 1 00:00:12.423: %SOAP_FIPS-2-SELF_TEST_RAD_SUCCESS: RADIO crypto FIPS self test passed on interface Dot11Radio 0 (4)
*Mar 1 00:00:12.435: %LINK-6-UPDOWN: Interface GigabitEthernet0, changed state to up
*Mar 1 00:00:12.435: %LINK-6-UPDOWN: Interface GigabitEthernet1, changed state to up
*Mar 1 00:00:12.435: %LINK-6-UPDOWN: Interface GigabitEthernet2, changed state to up
*Mar 1 00:00:12.435: %LINK-6-UPDOWN: Interface GigabitEthernet3, changed state to up
*Mar 1 00:00:15.291: %SOAP_FIPS-2-SELF_TEST_RAD_SUCCESS: RADIO crypto FIPS self test passed on interface Dot11Radio 1 (4)
*Mar 1 00:00:15.479: AP Mesh platform identified (backhaul config:0x2, access:0xF)
*Mar 1 00:00:15.547: Starting Ethernet promiscuous mode
*Mar 1 00:00:18.119: %SYS-5-RESTART: System restarted --
Cisco IOS Software, C1550 Software (C1520-K9W8-M), Version 15.3(3)JA, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2014 by Cisco Systems, Inc.
Compiled Fri 15-Aug-14 13:50 by prod_rel_team
*Mar 1 00:00:18.119: %SNMP-5-COLDSTART: SNMP agent on host RAP is undergoing a cold start
*Mar 1 00:00:19.459: %LINEPROTO-5-UPDOWN: Line protocol on Interface BVI1, changed state to up
*Mar 1 00:00:20.035: %CDP_PD-4-POWER_OK: Full power - INJECTOR_DETECTED inline power source
*Mar 1 00:00:20.335: %LINEPROTO-5-UPDOWN: Line protocol on Interface Ethernet4, changed state to up
*Mar 1 00:00:21.519: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0, changed state to up
*Mar 1 00:00:22.163: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to up
*Mar 1 00:00:22.203: Starting Ethernet promiscuous mode
*Mar 1 00:00:22.367: %SSH-5-ENABLED: SSH 2.0 has been enabled
*Mar 1 00:00:22.367: %LINK-6-UPDOWN: Interface Dot11Radio1, changed state to uplwapp_crypto_init: MIC Present and Parsed Successfully
*Mar 1 00:00:36.603: Currently running a Release Image
*Mar 1 00:00:36.615: Using SHA-1 signed certificate for image signing validation.
*Mar 1 00:00:41.023: %MESH-6-ADJACENCY_STATE_MACHINE_STARTED: Mesh adjacency state machine started
*Mar 1 00:00:41.027: Logging LWAPP message to 255.255.255.255.
*Mar 1 00:00:41.035: %SYS-6-LOGGINGHOST_STARTSTOP: Logging to host 255.255.255.255 port 514 CLI Request Triggered
*Mar 1 00:00:41.043: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to reset
*Mar 1 00:00:42.119: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to up
Not in Bound state.
*Mar 1 00:00:42.127: %LINK-5-CHANGED: Interface Dot11Radio1, changed state to reset
*Mar 1 00:00:43.035: %MESH-6-CAPWAP_RESTART: Mesh Capwap re-started
*Mar 1 00:00:43.119: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to up
*Mar 1 00:00:43.227: %LINK-6-UPDOWN: Interface Dot11Radio1, changed state to up
*Mar 1 00:00:44.227: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio1, changed state to up
*Mar 1 00:00:46.051: %LWAPP-3-LWAPP_INTERFACE_GOT_IP_ADDRESS: Interface BVI1 obtained IP from DHCP...
*Mar 1 00:00:46.051: %MESH-6-CAPWAP_RESTART: Mesh Capwap re-started
*Mar 1 00:00:46.107: %DHCP-6-ADDRESS_ASSIGN: Interface BVI1 assigned DHCP address 10.199.119.149, mask 255.255.255.192, hostname RAP
*Mar 1 00:00:46.107: %LWAPP-3-LWAPP_INTERFACE_GOT_IP_ADDRESS: Interface BVI1 obtained IP from DHCP...
*Mar 1 00:00:46.107: %MESH-6-CAPWAP_RESTART: Mesh Capwap re-started
*Mar 1 00:00:51.147: %LWAPP-3-CLIENTERRORLOG: LWAPP LED Init: incorrect led state 255
*Mar 1 00:00:51.211: %LWAPP-4-CLIENTEVENTLOG: Not sending change state post as the radio admin is down, lrad state = 5
Translating "CISCO-CAPWAP-CONTROLLER."...domain server (10.207.15.11)
*Mar 1 00:00:51.215: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to administratively down
*Mar 1 00:00:52.211: %CAPWAP-5-DHCP_OPTION_43: Controller address 10.207.15.23 obtained through DHCP
*Mar 1 00:00:52.215: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to down
*Mar 1 00:00:52.219: %LINK-6-UPDOWN: Interface Dot11Radio1, changed state to down
*Mar 1 00:00:52.227: %LINK-5-CHANGED: Interface Dot11Radio1, changed state to reset
*Mar 1 00:00:53.219: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio1, changed state to down
*Mar 1 00:00:53.247: %LINK-6-UPDOWN: Interface Dot11Radio1, changed state to up
*Mar 1 00:00:54.247: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio1, changed state to up
*Sep 16 02:40:24.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 10.207.15.23 peer_port: 5246
*Sep 16 02:40:24.555: %CAPWAP-5-DTLSREQSUCC: DTLS connection created sucessfully peer_ip: 10.207.15.23 peer_port: 5246
*Sep 16 02:40:24.555: %CAPWAP-5-SENDJOIN: sending Join Request to 10.207.15.23
*Sep 16 02:40:24.771: %LWAPP-4-CLIENTEVENTLOG:
Checksum required saved version = 8.0.100.0, file flash:/lwapp_reap.cfg
*Sep 16 02:40:26.219: %LINK-6-UPDOWN: Interface Dot11Radio1, changed state to down
*Sep 16 02:40:26.227: %LINK-5-CHANGED: Interface Dot11Radio1, changed state to reset
*Sep 16 02:40:26.443: %LINK-5-CHANGED: Interface Dot11Radio1, changed state to administratively down
*Sep 16 02:40:26.595: %CAPWAP-5-JOINEDCONTROLLER: AP has joined controller XVD-WLC-5508-02
*Sep 16 02:40:26.639: %LWAPP-4-CLIENTEVENTLOG: No Flex ACL map configuration file to load. Connect to controller to get configuration file
*Sep 16 02:40:26.639: %LWAPP-4-CLIENTEVENTLOG: No Flex ACL map configuration file to load. Connect to controller to get configuration file
*Sep 16 02:40:26.639: %LWAPP-4-CLIENTEVENTLOG: No LS Flex ACL map configuration file to load. Connect to controller to get configuration file
*Sep 16 02:40:26.639: %LWAPP-4-CLIENTEVENTLOG: No Central Dhcp map configuration file to load. Connect to controller to get configuration filecapwap_delete_all_l2Acls_in_nacl_list:336. Deleting all L2Acls in AP config
*Sep 16 02:40:27.219: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio1, changed state to down
Regards,
WillAustralia and the AP seems to be in the correct country. The Operational Status is "REG" on both AP's.
-
Weblogic crash without a trace (core dump, hs_err_pid, stracktrace, logs)
We have a weblogic 9 cluster where a node crash/shutdown with no trace. Sometimes its node 2 and sometimes node 3, but not at the same time.
We can't find any core dump, hs_err_pid or any stracktrace in the logs or std out/err.
Specifying where hs_err files goes with -XX:ErrorFile should not be necessary as it should write in current directory or if not possible due to permissions etc, in the OS tmp dir.
Are there any Weblogic specific JVM or system property we can specify to force some kind of trace when the process just seem to crash?
We see this in the log from time to time, perhaps its related:
<2012-jun-08 kl 13:53 CEST> <Error> <Security> <BEA-090060> <The AccessDecision class "weblogic.security.providers.realmadapter.AuthorizationProviderImpl" returned an error: java.lang.SecurityException: Realm Adapter ACL Mapping Failed.>
Can the above hide a possible out of memory error trace to appear in the logs?
SERVER: Weblogic 9.2.3 with some additional patches (and compatibility mode)
OS: HP-UX B.11.23 U ia64
JAVA: Java(TM) 2 Runtime Environment, Standard Edition (build 1.5.0.20-_28_apr_2010_03_15)
Java HotSpot(TM) Server VM (build 1.5.0.20 jinteg:04.28.10-02:28 IA64, mixed mode)http://docs.oracle.com/cd/B28359_01/java.111/b31224/instclnt.htm gives some info about the used libraries (libocijdbc11.so)
Could you check the environment variable - http://docs.oracle.com/cd/B28359_01/java.111/b31224/getsta.htm#i1005378
"On Sun Solaris or Linux, set the LD_LIBRARY_PATH environment variable as follows:
ORACLE_HOME/lib
This directory contains the libocijdbc11.so shared object library.
Note:
If you are running a 32-bit Java Virtual Machine (JVM) against a 64-bit client or database, then you must also add ORACLE_HOME/lib32 to the LD_LIBRARY_PATH environment variable." -
AP 3602 is disconnected from WLC
This ap is disconnected from the WLC lately, he's doing more often.
someone has something similar happened?
*Jun 27 17:54:45.159: %CAPWAP-3-ERRORLOG: Retransmission count for packet exceeded max(CAPWAP_WTP_EVENT_REQUEST
., 2)
*Jun 27 17:54:51.203: %EVT-4-WRN: Write of flash:/event.capwap done
*Jun 27 17:54:51.227: %LWAPP-3-CLIENTERRORLOG: Switching to Standalone mode
*Jun 27 17:54:51.231: %CAPWAP-3-ERRORLOG: GOING BACK TO DISCOVER MODE
*Jun 27 17:54:51.231: %DTLS-5-SEND_ALERT: Send FATAL : Close notify Alert to 10.101.0.200:5246
*Jun 27 17:54:51.231: %CAPWAP-3-ERRORLOG: Dropping dtls packet since session is not established. 10.101.0.200, 147E, 10.104.0.219, 77B3, 0
*Jun 27 17:54:51.231: %CAPWAP-3-ERRORLOG: Dropping dtls packet since session is not established. 10.101.0.200, 147E, 10.104.0.219, 77B3, 0
*Jun 27 17:54:51.299: %WIDS-6-DISABLED: IDS Signature is removed and disabled.
*Jun 27 17:54:51.303: %CLEANAIR-6-STATE: Slot 0 down
*Jun 27 17:54:51.303: %CLEANAIR-6-STATE: Slot 1 down
*Jun 27 17:54:54.735: %DOT11-7-AUTH_FAILED: Station c473.1e14.e15a Authentication failed
*Jun 27 17:55:05.703: %DOT11-7-AUTH_FAILED: Station c473.1e14.e15a Authentication failed
*Jun 27 17:55:09.303: %CAPWAP-3-ERRORLOG: Could Not resolve CISCO-CAPWAP-CONTROLLER.interceramic.com
*Jun 27 17:55:16.571: %DOT11-7-AUTH_FAILED: Station c473.1e14.e15a Authentication failed
*Jun 27 17:55:19.303: %CAPWAP-3-ERRORLOG: Selected MWAR 'InterceramicWLC'(index 0).
*Jun 27 17:55:19.303: %CAPWAP-3-ERRORLOG: Go join a capwap controller
*Jun 27 17:55:09.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 10.101.0.200 peer_port: 5246
*Jun 27 17:55:09.575: %CAPWAP-5-DTLSREQSUCC: DTLS connection created sucessfully peer_ip: 10.101.0.200 peer_port: 5246
*Jun 27 17:55:09.579: %CAPWAP-5-SENDJOIN: sending Join Request to 10.101.0.200
*Jun 27 17:55:09.595: %CAPWAP-3-ERRORLOG: Invalid event 10 & state 5 combination.
*Jun 27 17:55:09.595: %CAPWAP-3-ERRORLOG: CAPWAP SM handler: Failed to process message type 10 state 5.
*Jun 27 17:55:09.595: %CAPWAP-3-ERRORLOG: Failed to handle capwap control message from controller
*Jun 27 17:55:09.595: %CAPWAP-3-ERRORLOG: Failed to process encrypted capwap packet from 10.101.0.200
*Jun 27 17:55:10.391: Starting Ethernet promiscuous mode
*Jun 27 17:55:10.775: %LWAPP-4-CLIENTEVENTLOG: OfficeExtend Localssid saved in AP flash
*Jun 27 17:55:11.083: %CAPWAP-5-JOINEDCONTROLLER: AP has joined controller InterceramicWLC
*Jun 27 17:55:11.131: %LWAPP-4-CLIENTEVENTLOG: No Flex ACL map configuration file to load. Connect to controller to get configuration file
*Jun 27 17:55:11.135: %LWAPP-4-CLIENTEVENTLOG: No Flex ACL map configuration file to load. Connect to controller to get configuration file
*Jun 27 17:55:11.135: %LWAPP-4-CLIENTEVENTLOG: No LS Flex ACL map configuration file to load. Connect to controller to get configuration file
*Jun 27 17:55:11.135: %LWAPP-4-CLIENTEVENTLOG: No Central Dhcp map configuration file to load. Connect to controller to get configuration fileWLAN id 1, SSID u5u4r105, L2ACL , L2ACL AP
WLAN id 10, SSID r0du((10))p, L2ACL , L2ACL AP
WLAN id 2, SSID 6u3575, L2ACL , L2ACL AP
WLAN id 3, SSID d1r3((10N)), L2ACL , L2ACL AP
WLAN id 4, SSID 4dm1n157r4(10n, L2ACL , L2ACL AP
WLAN id 5, SSID t)@b!3T(@5, L2ACL , L2ACL AP
WLAN id 6, SSID e3fB8L31Jt, L2ACL , L2ACL AP
WLAN id 7, SSID p1570L45d, L2ACL , L2ACL AP
WLAN id 8, SSID 58rvR3@pw!, L2ACL , L2ACL AP
WLAN id 9, SSID n1,#B3R$3r@W!q, L2ACL , L2ACL AP
*Jun 27 17:55:11.135: %LWAPP-3-CLIENTERRORLOG: Switching to Connected mode
*Jun 27 17:55:54.127: %WIDS-6-ENABLED: IDS Signature is loaded and enabled
*Jun 27 17:55:57.771: Certificate import is not completed yet, so not deleting the trustpoint
*Jun 27 17:56:39.271: %CLEANAIR-6-STATE: Slot 0 enabled
*Jun 27 17:56:41.331: %CLEANAIR-6-STATE: Slot 1 enabled
*Jun 27 18:56:00.603: 60be.b5f0.3cab-no legacy rates; default to lowest CCK/OFDM rate
*Jun 27 18:56:00.811: ac3c.0bec.a169-no legacy rates; default to lowest CCK/OFDM rate
*Jun 27 18:56:09.615: c0cb.3811.52f4-no legacy rates; default to lowest CCK/OFDM rate
*Jun 28 09:21:12.379: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to down
*Jun 28 09:21:12.471: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to reset
*Jun 28 09:21:13.395: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to down
*Jun 28 09:21:13.419: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to up
*Jun 28 09:21:14.419: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to up
*Jun 28 09:21:33.075: %CLEANAIR-6-STATE: Slot 0 down
*Jun 28 09:21:50.163: %CLEANAIR-6-STATE: Slot 0 enabled
*Jun 28 12:55:34.171: %WIDS-4-SIG_ALARM: Attack is detected on Sig:Standard Id:5 Channel:1 Source MAC:4859.29a1.ef2c
*Jun 28 13:15:34.987: %WIDS-6-SIG_ALARM_OFF: Attack is cleared on Sig:Standard Id:5 Channel:1
*Jun 28 23:04:58.399: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to down
*Jun 28 23:04:58.491: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to reset
*Jun 28 23:04:59.415: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to down
*Jun 28 23:04:59.439: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to up
*Jun 28 23:05:00.439: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to up
*Jun 28 23:05:15.535: %CLEANAIR-6-STATE: Slot 0 down
*Jun 28 23:05:32.379: %CLEANAIR-6-STATE: Slot 0 enabled
*Jun 29 02:18:14.903: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to down
*Jun 29 02:18:15.123: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to reset
*Jun 29 02:18:15.919: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to down
*Jun 29 02:18:15.943: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to up
*Jun 29 02:18:16.943: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to up
*Jun 29 02:18:32.459: %CLEANAIR-6-STATE: Slot 0 down
*Jun 29 02:18:49.907: %CLEANAIR-6-STATE: Slot 0 enabled
*Jun 29 05:31:39.339: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to down
*Jun 29 05:31:39.423: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to reset
*Jun 29 05:31:40.355: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to down
*Jun 29 05:31:40.383: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to up
*Jun 29 05:31:41.383: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to up
*Jun 29 05:32:00.631: %CLEANAIR-6-STATE: Slot 0 down
*Jun 29 05:32:17.411: %CLEANAIR-6-STATE: Slot 0 enabled
*Jun 29 10:46:56.275: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to down
*Jun 29 10:46:56.567: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to reset
*Jun 29 10:46:57.275: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to down
*Jun 29 10:46:57.519: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to up
*Jun 29 10:46:58.519: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to up
*Jun 29 10:47:17.511: %CLEANAIR-6-STATE: Slot 0 down
*Jun 29 10:47:34.287: %CLEANAIR-6-STATE: Slot 0 enabled
*Jun 30 09:50:00.819: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to down
*Jun 30 09:50:00.827: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to reset
*Jun 30 09:50:01.835: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to down
*Jun 30 09:50:01.859: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to up
*Jun 30 09:50:02.859: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to up
*Jun 30 09:50:21.751: %CLEANAIR-6-STATE: Slot 0 down
*Jun 30 09:50:38.691: %CLEANAIR-6-STATE: Slot 0 enabled
*Jun 30 14:25:06.259: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to down
*Jun 30 14:25:06.347: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to reset
*Jun 30 14:25:07.275: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to down
*Jun 30 14:25:07.299: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to up
*Jun 30 14:25:08.299: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to up
*Jun 30 14:25:23.847: %CLEANAIR-6-STATE: Slot 0 down
*Jun 30 14:25:40.623: %CLEANAIR-6-STATE: Slot 0 enabled
*Jun 30 14:45:26.663: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to down
*Jun 30 14:45:26.751: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to reset
*Jun 30 14:45:27.679: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to down
*Jun 30 14:45:27.707: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to up
*Jun 30 14:45:28.707: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to up
*Jun 30 14:45:45.635: %CLEANAIR-6-STATE: Slot 0 down
*Jun 30 14:46:02.415: %CLEANAIR-6-STATE: Slot 0 enabled
*Jun 30 16:57:38.759: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to down
*Jun 30 16:57:38.959: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to reset
*Jun 30 16:57:39.775: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to down
*Jun 30 16:57:39.799: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to up
*Jun 30 16:57:40.799: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to up
*Jun 30 16:57:57.003: %CLEANAIR-6-STATE: Slot 0 down
*Jun 30 16:58:14.351: %CLEANAIR-6-STATE: Slot 0 enabled
*Jul 1 14:42:26.991: %CAPWAP-3-ERRORLOG: Retransmission count for packet exceeded max(CAPWAP_WTP_EVENT_REQUEST
., 3)
*Jul 1 14:42:33.279: %EVT-4-WRN: Write of flash:/event.capwap done
*Jul 1 14:42:33.299: %LWAPP-3-CLIENTERRORLOG: Switching to Standalone mode
*Jul 1 14:42:33.303: %CAPWAP-3-ERRORLOG: GOING BACK TO DISCOVER MODE
*Jul 1 14:42:33.303: %DTLS-5-SEND_ALERT: Send FATAL : Close notify Alert to 10.101.0.200:5246
*Jul 1 14:42:33.371: %WIDS-6-DISABLED: IDS Signature is removed and disabled.
*Jul 1 14:42:33.375: %CLEANAIR-6-STATE: Slot 0 down
*Jul 1 14:42:33.375: %CLEANAIR-6-STATE: Slot 1 down
*Jul 1 14:42:33.495: %RADIUS-3-NOSERVERS: No Radius hosts configured or no valid server present in the server group radius
*Jul 1 14:42:33.495: %DOT11-7-AUTH_FAILED: Station c0cb.3811.52f4 Authentication failed
*Jul 1 14:42:38.775: %DOT11-7-AUTH_FAILED: Station 446d.57b3.0d94 Authentication failed
*Jul 1 14:42:45.579: %DOT11-7-AUTH_FAILED: Station c0cb.3811.52f4 Authentication failed
*Jul 1 14:42:51.367: %DOT11-7-AUTH_FAILED: Station 446d.57b3.0d94 Authentication failed
*Jul 1 14:42:51.375: %CAPWAP-3-ERRORLOG: Could Not resolve CISCO-CAPWAP-CONTROLLER.interceramic.com
*Jul 1 14:42:58.239: %DOT11-7-AUTH_FAILED: Station c0cb.3811.52f4 Authentication failed
*Jul 1 14:43:01.375: %CAPWAP-3-ERRORLOG: Selected MWAR 'InterceramicWLC'(index 0).
*Jul 1 14:43:01.375: %CAPWAP-3-ERRORLOG: Go join a capwap controller
*Jul 1 14:42:51.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 10.101.0.200 peer_port: 5246
*Jul 1 14:42:53.127: %DOT11-7-AUTH_FAILED: Station c0cb.3811.52f4 Authentication failed
*Jul 1 14:42:58.215: %DOT11-7-AUTH_FAILED: Station 446d.57b3.0d99 Authentication failed
*Jul 1 14:43:04.183: %DOT11-7-AUTH_FAILED: Station c473.1e14.e15a Authentication failed
*Jul 1 14:43:10.251: %DOT11-7-AUTH_FAILED: Station c0cb.3811.52f4 Authentication failed
*Jul 1 14:43:19.715: %DOT11-7-AUTH_FAILED: Station 68a8.6d4e.363e Authentication failed
*Jul 1 14:43:21.131: DTLS_CLIENT_ERROR: ../capwap/base_capwap/dtls/base_capwap_dtls_connection_db.c:2176 Max retransmission count reached!
*Jul 1 14:43:25.907: %DOT11-7-AUTH_FAILED: Station c473.1e14.e15a Authentication failed
*Jul 1 14:43:32.259: %DOT11-7-AUTH_FAILED: Station 68a8.6d4e.363e Authentication failed
*Jul 1 14:43:38.531: %DOT11-7-AUTH_FAILED: Station 68a8.6d4e.363e Authentication failed
*Jul 1 14:43:45.215: %DOT11-7-AUTH_FAILED: Station 68a8.6d4e.363e Authentication failed
*Jul 1 14:43:50.999: %DTLS-5-SEND_ALERT: Send FATAL : Close notify Alert to 10.101.0.200:5246
*Jul 1 14:43:51.487: %DOT11-7-AUTH_FAILED: Station 68a8.6d4e.363e Authentication failed
*Jul 1 14:43:58.175: %DOT11-7-AUTH_FAILED: Station 68a8.6d4e.363e Authentication failed
*Jul 1 14:44:04.823: %DOT11-7-AUTH_FAILED: Station c0cb.3811.52f4 Authentication failed
*Jul 1 14:44:09.047: %CAPWAP-3-ERRORLOG: Could Not resolve CISCO-CAPWAP-CONTROLLER.interceramic.com
*Jul 1 14:44:11.063: %DOT11-7-AUTH_FAILED: Station c0cb.3811.52f4 Authentication failed
*Jul 1 14:44:17.303: %DOT11-7-AUTH_FAILED: Station c0cb.3811.52f4 Authentication failed
*Jul 1 14:44:19.047: %CAPWAP-3-ERRORLOG: Selected MWAR 'InterceramicWLC'(index 0).
*Jul 1 14:44:19.047: %CAPWAP-3-ERRORLOG: Go join a capwap controller
*Jul 1 14:44:19.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 10.101.0.200 peer_port: 5246
*Jul 1 14:44:26.355: %DOT11-7-AUTH_FAILED: Station 446d.57b3.0d99 Authentication failed
*Jul 1 14:44:41.795: %DOT11-7-AUTH_FAILED: Station c473.1e14.e15a Authentication failed
*Jul 1 14:44:49.143: DTLS_CLIENT_ERROR: ../capwap/base_capwap/dtls/base_capwap_dtls_connection_db.c:2176 Max retransmission count reached!
*Jul 1 14:44:52.659: %DOT11-7-AUTH_FAILED: Station c473.1e14.e15a Authentication failed
*Jul 1 14:45:00.647: %DOT11-7-AUTH_FAILED: Station 446d.57b3.0d99 Authentication failed
*Jul 1 14:45:09.035: %DOT11-7-AUTH_FAILED: Station 446d.57b3.0d99 Authentication failed
*Jul 1 14:45:14.387: %DOT11-7-AUTH_FAILED: Station c473.1e14.e15a Authentication failed
*Jul 1 14:45:18.999: %DTLS-5-SEND_ALERT: Send FATAL : Close notify Alert to 10.101.0.200:5246
*Jul 1 14:45:25.251: %DOT11-7-AUTH_FAILED: Station c473.1e14.e15a Authentication failed
*Jul 1 14:45:33.839: %DOT11-7-AUTH_FAILED: Station 446d.57b3.0d99 Authentication failed
*Jul 1 14:45:37.047: %CAPWAP-3-ERRORLOG: Could Not resolve CISCO-CAPWAP-CONTROLLER.interceramic.com
*Jul 1 14:45:41.795: %DOT11-7-AUTH_FAILED: Station 446d.57b3.0d99 Authentication failed
*Jul 1 14:45:46.975: %DOT11-7-AUTH_FAILED: Station c473.1e14.e15a Authentication failed
*Jul 1 14:45:47.047: %CAPWAP-3-ERRORLOG: Selected MWAR 'InterceramicWLC'(index 0).
*Jul 1 14:45:47.047: %CAPWAP-3-ERRORLOG: Go join a capwap controller
*Jul 1 14:45:47.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 10.101.0.200 peer_port: 5246
*Jul 1 14:45:47.503: %CAPWAP-5-DTLSREQSUCC: DTLS connection created sucessfully peer_ip: 10.101.0.200 peer_port: 5246
*Jul 1 14:45:47.503: %CAPWAP-5-SENDJOIN: sending Join Request to 10.101.0.200
*Jul 1 14:45:47.519: %CAPWAP-3-ERRORLOG: Invalid event 10 & state 5 combination.
*Jul 1 14:45:47.519: %CAPWAP-3-ERRORLOG: CAPWAP SM handler: Failed to process message type 10 state 5.
*Jul 1 14:45:47.519: %CAPWAP-3-ERRORLOG: Failed to handle capwap control message from controller
*Jul 1 14:45:47.519: %CAPWAP-3-ERRORLOG: Failed to process encrypted capwap packet from 10.101.0.200
*Jul 1 14:45:47.615: Starting Ethernet promiscuous mode
*Jul 1 14:45:47.995: %LWAPP-4-CLIENTEVENTLOG: OfficeExtend Localssid saved in AP flash
*Jul 1 14:45:48.747: %CAPWAP-5-JOINEDCONTROLLER: AP has joined controller InterceramicWLC
*Jul 1 14:45:48.795: %LWAPP-4-CLIENTEVENTLOG: No Flex ACL map configuration file to load. Connect to controller to get configuration file
*Jul 1 14:45:48.795: %LWAPP-4-CLIENTEVENTLOG: No Flex ACL map configuration file to load. Connect to controller to get configuration file
*Jul 1 14:45:48.795: %LWAPP-4-CLIENTEVENTLOG: No LS Flex ACL map configuration file to load. Connect to controller to get configuration file
*Jul 1 14:45:48.795: %LWAPP-4-CLIENTEVENTLOG: No Central Dhcp map configuration file to load. Connect to controller to get configuration fileWLAN id 1, SSID u5u4r105, L2ACL , L2ACL AP
WLAN id 10, SSID r0du((10))p, L2ACL , L2ACL AP
WLAN id 2, SSID 6u3575, L2ACL , L2ACL AP
WLAN id 3, SSID d1r3((10N)), L2ACL , L2ACL AP
WLAN id 4, SSID 4dm1n157r4(10n, L2ACL , L2ACL AP
WLAN id 5, SSID t)@b!3T(@5, L2ACL , L2ACL AP
WLAN id 6, SSID e3fB8L31Jt, L2ACL , L2ACL AP
WLAN id 7, SSID p1570L45d, L2ACL , L2ACL AP
WLAN id 8, SSID 58rvR3@pw!, L2ACL , L2ACL AP
WLAN id 9, SSID n1,#B3R$3r@W!q, L2ACL , L2ACL AP
*Jul 1 14:45:48.795: %LWAPP-3-CLIENTERRORLOG: Switching to Connected mode
*Jul 1 14:46:24.287: %WIDS-6-ENABLED: IDS Signature is loaded and enabled
*Jul 1 14:46:24.615: Certificate import is not completed yet, so not deleting the trustpoint
capwap_central_auth_info_add_mn: Invalid client mac address 446d.57b3.0d99
*Jul 1 14:46:53.355: %CLEANAIR-6-STATE: Slot 0 enabled
*Jul 1 14:46:55.415: %CLEANAIR-6-STATE: Slot 1 enabled
ap_ITP4#Connection to 10.104.0.219 closed by remote host.hi leo,
this is log now.
*Jul 2 23:57:01.427: %CAPWAP-3-ERRORLOG: Retransmission count for packet exceeded max(CAPWAP_WTP_EVENT_REQUEST
., 6)
*Jul 2 23:57:01.431: %LWAPP-3-CLIENTERRORLOG: Switching to Standalone mode
*Jul 2 23:57:01.435: %CAPWAP-3-ERRORLOG: GOING BACK TO DISCOVER MODE
*Jul 2 23:57:01.435: %DTLS-5-SEND_ALERT: Send FATAL : Close notify Alert to 10.101.0.200:5246
*Jul 2 23:57:01.499: %WIDS-6-DISABLED: IDS Signature is removed and disabled.
*Jul 2 23:57:01.503: %CLEANAIR-6-STATE: Slot 0 down
*Jul 2 23:57:01.503: %CLEANAIR-6-STATE: Slot 1 down
*Jul 2 23:57:11.579: %CAPWAP-3-ERRORLOG: Selected MWAR 'InterceramicWLC'(index 0).
*Jul 2 23:57:11.579: %CAPWAP-3-ERRORLOG: Go join a capwap controller
*Jul 2 23:57:02.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 10.101.0.200 peer_port: 5246
*Jul 2 23:57:02.663: %CAPWAP-5-DTLSREQSUCC: DTLS connection created sucessfully peer_ip: 10.101.0.200 peer_port: 5246
*Jul 2 23:57:02.663: %CAPWAP-5-SENDJOIN: sending Join Request to 10.101.0.200
*Jul 2 23:57:02.683: %CAPWAP-3-ERRORLOG: Invalid event 10 & state 5 combination.
*Jul 2 23:57:02.683: %CAPWAP-3-ERRORLOG: CAPWAP SM handler: Failed to process message type 10 state 5.
*Jul 2 23:57:02.683: %CAPWAP-3-ERRORLOG: Failed to handle capwap control message from controller
*Jul 2 23:57:02.683: %CAPWAP-3-ERRORLOG: Failed to process encrypted capwap packet from 10.101.0.200
*Jul 2 23:57:03.223: Starting Ethernet promiscuous mode
*Jul 2 23:57:03.675: %LWAPP-4-CLIENTEVENTLOG: OfficeExtend Localssid saved in AP flash
*Jul 2 23:57:03.979: %CAPWAP-5-JOINEDCONTROLLER: AP has joined controller InterceramicWLC
*Jul 2 23:57:04.027: %LWAPP-4-CLIENTEVENTLOG: No Flex ACL map configuration file to load. Connect to controller to get configuration file
*Jul 2 23:57:04.027: %LWAPP-4-CLIENTEVENTLOG: No Flex ACL map configuration file to load. Connect to controller to get configuration file
*Jul 2 23:57:04.027: %LWAPP-4-CLIENTEVENTLOG: No LS Flex ACL map configuration file to load. Connect to controller to get configuration file
*Jul 2 23:57:04.027: %LWAPP-4-CLIENTEVENTLOG: No Central Dhcp map configuration file to load. Connect to controller to get configuration fileWLAN id 1, SSID u5u4r105, L2ACL , L2ACL AP
WLAN id 10, SSID r0du((10))p, L2ACL , L2ACL AP
WLAN id 2, SSID 6u3575, L2ACL , L2ACL AP
WLAN id 3, SSID d1r3((10N)), L2ACL , L2ACL AP
WLAN id 4, SSID 4dm1n157r4(10n, L2ACL , L2ACL AP
WLAN id 5, SSID t)@b!3T(@5, L2ACL , L2ACL AP
WLAN id 6, SSID e3fB8L31Jt, L2ACL , L2ACL AP
WLAN id 7, SSID p1570L45d, L2ACL , L2ACL AP
WLAN id 8, SSID 58rvR3@pw!, L2ACL , L2ACL AP
WLAN id 9, SSID n1,#B3R$3r@W!q, L2ACL , L2ACL AP
*Jul 2 23:57:04.031: %LWAPP-3-CLIENTERRORLOG: Switching to Connected mode
*Jul 2 23:57:16.955: %WIDS-6-ENABLED: IDS Signature is loaded and enabled
*Jul 2 23:57:20.851: Certificate import is not completed yet, so not deleting the trustpoint
capwap_central_auth_info_add_mn: Invalid client mac address 60be.b5f8.9719
*Jul 2 23:57:48.139: %CLEANAIR-6-STATE: Slot 0 enabled
*Jul 2 23:57:50.199: %CLEANAIR-6-STATE: Slot 1 enabledcapwap_central_auth_info_add_mn: Invalid client mac address c0cb.3811.52f4
capwap_central_auth_info_add_mn: Invalid client mac address 446d.57b3.0d94
gracias
Maybe you are looking for
-
Hi all, I have a question regarding the message size for the mapping: What is the size limit for messages when using the XSLT mapping methods? What are the maximum message sizes (if any) for the other methods like ABAP mapping, Graphical mapping, JAV
-
DUALphone 3088 extension numbers problem
Hi! We've bought DUALphone 3088 some days ago. We planned to use it in our virtual dial exchange (we have a virtual phone number that can be forwarded to landline phones, mobiles and SKYPE also). The main thing is that this device must be used as mai
-
My text message in a continuing conversation does not show up in conversation. why
When texting within an existing conversation, the text message coming in no longer shows up in the conversation but in the "message heading" area. Why
-
Hi, How to configure the Fail over DB. Thanks, Inguru
-
How can show dimension's attributes as BIBeans table's columns?
I want to create a table like that: customer...phone_no....address....money Jones........011010111...Washington..$120 Michal.......022010111...NewYork......$123 customer info is a dimension ,and money is a measure. customer dimension has three attrib