Add a FastEthernet interface to mobility group

I admit I don't completely understand mobility groups. I need to add a server on one of the wireless networks. I can't seem to figure out if there is a way to configure a port on a 6509 to be in the same wireless mobility group.
Thanks.
Edited: No need to respond. Just talked to TAC and found out this is not possible at this time.

i am quite new too. but i don't think you can. mobility group is for wireless part of the network, assigned to tunnel and ssid in the aps only.

Similar Messages

  • Unable to add new WLC to the Mobility Group

    Hi,
    Any help will be very welcome.
    I recently add a second CT5508 to the network, but when I tried to add the first 5508 to the mobilty group I received a message like this:
    "error in creating member"
    I've tried different mobility names, via GUI, via CLI and always the same error.
    I've verified twice or more than twice connectivity issues or any error on the entering the MAC and IP of the controllers, everything is fine.
    Any idea?
    I'm using version 7.0.116.0
    Thanks

    Hello Moises,
    Did you load a configuration backup from your first WLC to the new second WLC? If so, it's possible we have a stale duplicate entry from loading a configuration.
    On the WLC where you cannot add the member, let's try clearing out the stale entry from the CLI:
    config mobility group member delete 00:00:00:00:00:00
    Then, try to add the member and see if it works.
    -Pat

  • WLC mobility group between 4404 and 5508 controllers

    Mobility 'Control and Data Path Down' between 4404 and 5508 WLC's.
    Hello, we have 5 x 4404 WLC's running 7.0.240.0 with mobility configured fine between them.
    We have installed a 5508 with HA running 7.4.110.0, and have tried to add it to the mobility group, however we see 'Control and Data Path Down' between the new 5508 and all the 4404 controllers.
    All controllers have:
    The same virtual address
    Management interfaces are in the same VLAN, and indeed all the controllers connect via the same pair of 3750X stacked switches.
    The default mobility domain name is the same
    4404 output when issung the command 'show mobility summary'
    Symmetric Mobility Tunneling (current) .......... Enabled
    Symmetric Mobility Tunneling (after reboot) ..... Enabled
    Mobility Protocol Port........................... 16666
    Default Mobility Domain.......................... SGH-Mobility
    Multicast Mode .................................. Disabled
    Mobility Domain ID for 802.11r................... 0xe209
    Mobility Keepalive Interval...................... 10
    Mobility Keepalive Count......................... 3
    Mobility Group Members Configured................ 6
    Mobility Control Message DSCP Value.............. 0
    5508 ouput when issueing the command 'show mobility summary'
    Mobility Architecture ........................... Flat
    Mobility Protocol Port........................... 16666
    Default Mobility Domain.......................... SGH-Mobility
    Multicast Mode .................................. Disabled
    Mobility Domain ID for 802.11r................... 0xe209
    Mobility Keepalive Interval...................... 10
    Mobility Keepalive Count......................... 3
    Mobility Group Members Configured................ 6
    Mobility Control Message DSCP Value.............. 0
    I've spent quite some time double checking all the configurations to no avail.
    Has anybody seen this problem before?
    Kind regards
    Dave Bell

    Thanks Sandeep.
    I am well versed with WLC's and mobility, however trying to add a 5508 to a mobility group with 4404's has come up with a bit of a curve ball.
    All the 4404 controllers all joined the mobility group fine, no problems at all - its only the 5508 I am struggling with.
    In theory its simple, populate the IP address, and MAC addres of the management interface of the remote WLC, as long as the management interfaces are in the same VLAN, and the Default Mobility Domain Name are the same it should come up.
    Interestingly I have found the 5508 reports its own management interface MAC address incorrectly when viewing the Mobility Groups:
    For example:
    {Screen shot WLC1.jpg}
    5508 management address is 10.95.x.x and when viewing the Mobility Management screen it shows its own MAC address as bc:16:65:f9:37:60.
    however!
    From our router is I do an sh arp | i 10.95.x.x (controller management address), I see:f872.eaee.becf.
    {Screen shot wlc2.jpg}
    Hence the WLC reports as: bc:16:65:f9:37:60
    and
    The network reports as: f872.eaee.becf for the same IP address.
    I have changed the other WLC's to the MAC adress seen on the network for the new controller, aka changed from
    bc:16:65:f9:37:60
    to
    f8:72:ea:ee:be:cf
    I now see the controllers reporting the mobility with the new controller as 'Control Path Down', however I am at a loss as to what may be causing this?
    Kind regards
    Dave Bell

  • Multiple Ports & Mobility Groups

    On our wireless network we have two 6509-E switches each with a WiSM and a 5508 WLC. The 5508 WLC only had one port connected to one of the 6509 units then we added another port on the 5508 to the other 6509. Do I need to add the IP and MAC address of the the second port of the 5508 to the existing Mobility Group?
    Thanks for any help.
    Jeff

    When you adding mobility member you need to configure the Controller IP address  & its MAC address (NOT the interface MAC address WLC connect to). Therefore in any connection type (LAG enabled or NOT) it has to be your 5508 controller IP address & its own MAC address.
    If you type "show sysinfo" or "show mobility summary" on your 5508 you can get this information as shown below. Then you can add that onto your exisiting mobility group configuration of WiSM (you have to add WiSM detail on your 5508 mobility config as well)
    (5508) >show sysinfo
    Manufacturer's Name.............................. Cisco Systems Inc.
    Product Name..................................... Cisco Controller
    Product Version.................................. 7.5.102.0
    System Name...................................... 5508
    IP Address....................................... 10.10.10.10
    Burned-in MAC Address............................ 64:00:F1:F5:B0:80
    Power Supply 1................................... Present, OK
    Power Supply 2................................... Present, OK
    (5508) >show mobility summary
    Mobility Protocol Port........................... 16666
    Default Mobility Domain.......................... dmz
    Multicast Mode .................................. Disabled
    Mobility Domain ID for 802.11r................... 0xe49d
    Mobility Keepalive Interval...................... 10
    Mobility Keepalive Count......................... 3
    Mobility Group Members Configured................ 9
    Mobility Control Message DSCP Value.............. 0
    Controllers configured in the Mobility Group
    MAC Address        IP Address                                       Group Name                        Multicast IP                                     Status
    64:00:f1:f5:b0:80  10.10.10.10                                     dmz                               0.0.0.0  
    HTH
    Rasika
    ***** Pls rate all useful responses ****

  • Mobility groups with multicast - 7.4.100.60

    Hello all,
    I am not sure if this is a bug, but here we go. I configured 2 controllers in a mobility group using multicast signalling.
    I expect that from the moment i enable multicast, the controller joins this group AND STAYS IN THIS GROUP so he will get messages from all other controllers.
    On the first hop router, i can see the join:
    #sh ip igmp mem 239.194.248.10
    Flags: A  - aggregate, T - tracked
           L  - Local, S - static, V - virtual, R - Reported through v3
           I - v3lite, U - Urd, M - SSM (S,G) channel
           1,2,3 - The version of IGMP, the group is in
    Channel/Group-Flags:
           / - Filtering entry (Exclude mode (S,G), Include mode (G))
    Reporter:
           <mac-or-ip-address> - last reporter if group is not explicitly tracked
           <n>/<m>      - <n> reporter in include mode, <m> reporter in exclude
    Channel/Group                  Reporter        Uptime   Exp.  Flags  Interface
    *,239.194.248.10               10.102.78.98    00:00:05 02:54 2A     Vl350
    However, this entry does not get refreshed. I have the impression that the controller does not reply to the IGMP general queries:
    IGMP(0): Send v2 general Query on Vlan350 -> no replies
    #sh ip igmp mem 239.194.248.10
    Flags: A  - aggregate, T - tracked
           L  - Local, S - static, V - virtual, R - Reported through v3
           I - v3lite, U - Urd, M - SSM (S,G) channel
           1,2,3 - The version of IGMP, the group is in
    Channel/Group-Flags:
           / - Filtering entry (Exclude mode (S,G), Include mode (G))
    Reporter:
           <mac-or-ip-address> - last reporter if group is not explicitly tracked
           <n>/<m>      - <n> reporter in include mode, <m> reporter in exclude
    Channel/Group                  Reporter        Uptime   Exp.  Flags  Interface
    *,239.194.248.10               10.102.78.98    00:02:35 00:24 2A     Vl350
    >> 20 seconds from expiry.
    #sh ip igmp mem 239.194.248.10
    Flags: A  - aggregate, T - tracked
           L  - Local, S - static, V - virtual, R - Reported through v3
           I - v3lite, U - Urd, M - SSM (S,G) channel
           1,2,3 - The version of IGMP, the group is in
    Channel/Group-Flags:
           / - Filtering entry (Exclude mode (S,G), Include mode (G))
    Reporter:
           <mac-or-ip-address> - last reporter if group is not explicitly tracked
           <n>/<m>      - <n> reporter in include mode, <m> reporter in exclude
    Channel/Group                  Reporter        Uptime   Exp.  Flags  Interface
    >> 20 seconds later, gone
    >> At this moment the controller doesn't receive any messages anymore from remote controllers:
    >>sh ip mroute 239.194.248.10 
    IP Multicast Routing Table
    Flags: D - Dense, S - Sparse, B - Bidir Group, s - SSM Group, C - Connected,
           L - Local, P - Pruned, R - RP-bit set, F - Register flag,
           T - SPT-bit set, J - Join SPT, M - MSDP created entry, E - Extranet,
           X - Proxy Join Timer Running, A - Candidate for MSDP Advertisement,
           U - URD, I - Received Source Specific Host Report,
           Z - Multicast Tunnel, z - MDT-data group sender,
           Y - Joined MDT-data group, y - Sending to MDT-data group
           V - RD & Vector, v - Vector
    Outgoing interface flags: H - Hardware switched, A - Assert winner
    Timers: Uptime/Expires
    Interface state: Interface, Next-Hop or VCD, State/Mode
    (*, 239.194.248.10), 00:05:38/00:00:21, RP 10.102.90.20, flags: SP
      Incoming interface: Port-channel30, RPF nbr 10.102.78.13, RPF-MFD
    Outgoing interface list: Null
    This is seen on 8500 platform running 7.4.100.60
    We have also WISMs running at 7.0.230.0, and there it can be seen that the entry refreshes every minute (like it should be)
    IGMP(0): Received v2 Report on Vlan950 from 10.96.9.67 for 239.194.240.1
    IGMP(0): Received Group record for group 239.194.240.1, mode 2 from 10.96.9.67 for 0 sources
    IGMP(0): Updating EXCLUDE group timer for 239.194.240.1
    IGMP(0): MRT Add/Update Vlan950 for (*,239.194.240.1) by 0
    Shouldn't the controller at all times stay joined in its mobiility group ?

    ok, some more debugging.
    I loaded up 7.4.100.60 on a 5500 controller and got the same result.
    NOTE: my global multicast settings are:
    Controller->General: AP Multicast Mode: UNICAST
    Controller->Multicast->Global Multicast is NOT enabled
    Controller->Mobility->Multicast Messaging: enabled and group is 239.194.240.3
    With this config, the IGMP entry is not retained, and i see on the controller the message (debug bcast all):
    >>processEthernetIGMPpacket Received IGMP Pkt from DS when either igmp snooping or global multicast is disabled.
    So, i then enabled Global Multicast  (Controller->Multicast->Global Multicast to enable), and then the  IGMP entry is refreshed:
    bcastReceiveTask: Sep 05 13:11:17.734:  IGMP packet received over vlanid = 102 from DS side
    *bcastReceiveTask: Sep 05 13:11:17.734:  received an IGMP query for multicast vlan = 102 address 0.0.0.0 intfnum = 3
    *bcastReceiveTask: Sep 05 13:11:17.734: IGMP report scheduled for grp=0xefc2f003, vlan=102, intf=3, slot=70, maxRespTime=100
    >>sh ip igmp membership 239.194.240.3                                     
    004586: Sep  5 15:11:50.710 CEST: IGMP(0): Send v2 general Query on Vlan101
    Flags: A  - aggregate, T - tracked
           L  - Local, S - static, V - virtual, R - Reported through v3
           I - v3lite, U - Urd, M - SSM (S,G) channel
           1,2,3 - The version of IGMP, the group is in
    Channel/Group-Flags:
           / - Filtering entry (Exclude mode (S,G), Include mode (G))
    Reporter:
           - last reporter if group is not explicitly tracked
           /      - reporter in include mode, reporter in exclude
    Channel/Group                  Reporter        Uptime   Exp.  Flags  Interface
    *,239.194.240.3                10.102.180.218  00:38:51 02:28 2A     Vl102
    Now, on the 5500 controller i can enable global multicast, while AP multicast mode is in UNICAST.
    However, on the 8500 controller, running the same firmware (7.4.100.60), when i try to enable "Global Multicast", i get:
    "Multicast-Unicast mode does not support IGMP/MLD snooping.  Config mode to multicast-multicast first". I did not get this message on  the 5500.
    So when switching to Multicast->Multicast mode, and  then enabled "Global Multicast", then it works.
    This means that in order to have mobility messaging working on 8500 in multicast, you MUST put the AP Multicast Mode to Multicast AND you must enabled "Global Multicast", otherwise it won't work.

  • Mobility Group Table *MUST* be populated in each WLC in same mobility group

    For what it's worth,
    I recently discovered that when you have multiple controllers and want to implement Mobility Groups, more is needed than simply entering the same Default Mobility Group Name for each controller within the mobility group. The following is required:
    a) The IP address of the "Virtual" interface on each controller must be identical on each controller within the mobility group.
    b) The Default Mobility Group Name must be identical on each controller within the mobility group (case sensitive).
    c) The mobility table must be populated with an entry for each controller within the mobility group.
    Otherwise, you will see some inexplicable behavior such as:
    * LWAP access points refusing to change to a different controller, even if their primary controller is explicitly set and the LWAP is rebooted.
    * LWAP access points unable to find any other wireless controller other than the one pointed to by the "CISCO-LWAPP-CONTROLLER" DNS entry (presumably, this would also be the case if DHCP Option 43 is used to point the LWAP to a controller). Once the first controller reaches its max. capacity of LWAPs, no more LWAPs can join.
    * Even MASTER CONTROLLER MODE has no effect.
    Cisco TAC was able to explain the great mystery of the Mobilty Group Table to me. However, unless you know your problem is related to mobility groups issues, you might not know to start there (I know I didn't).
    The least difficult method I have found for populating the mobility group table is as follows:
    Build a text file with one entry for each controller in the mobility group as follows:
    Log into the GUI for each controller and selecting: Controller -> Mobility Management -> Mobility Groups, click the "EDIT ALL" button and copy the MAC and IP address from the text box into a text file using NOTEPAD. Repeat this for each controller, creating a new line for each:
    The format for the entries is as follows:
    00:1a:6c:91:22:A0 192.168.20.44
    00:1a:6c:91:22:B4 192.168.20.45
    Once the text file is completed (one entry for each controller in the mobilit group), click the EDITALL button and copy the entire contents of the text file and paste it into the text box on the controller GUI, click the APPLY button and click Save Changes. Repeat for each controller.
    Again, make sure that the following settings are IDENTICAL in each of the controllers in the Mobility Group:
    * The IP address of the "virtual" interface ( Controller -> interfaces ) must be the same on all controllers.
    * The "Default Mobility Domain Name" ( Controller -> General ) must be identical on each controller in the mobility group (note: the Mobility Domain Name is case sensitive).
    After making changes directly to the controllers, a "refresh from controller" in the WCS might be needed to get the WCS to attempt to synchronize itself with the controllers.
    Here is a link to the 4.2 Wireless Controller Configuration Guide which discusses this in greater detail.
    http://www.cisco.com/en/US/products/ps6366/products_configuration_guide_chapter09186a00808e638b.html
    It is unfortunate that there are currently no mechanisms in the WCS 4.2 to make these changes in bulk (i.e.: The WCS has no Controller Template to do this).
    Also, if you ever need to replace a controller, you will need to update the Mobility Group Table in each controller in the Mobility Group (since the tables will have the MAC address of the old controller which will now be different in the new replacement controller).
    Despite having used the "unified" product for some time now, there are still surprises from time to time. I just thought that I would share my experience for those who may want avoid it and/or who may be encountering any of odd the behavior described above.
    - John

    Hi John,
    Nice work with this very relevant info! Please post a short reply here so that we can give this the nice rating it deserves :)
    Thanks again!
    Rob

  • WLC 5508 * 2 & Mobility Group

    What I am trying to configure is Mobility Groups.
    My understanding is that this will allow AP to successfully register and fail over over seamlessly if any of the WLC had to fail ?
    It could be I am confusing two things into one :( & I am totally confused and not understanding the benefits of mobility group mentioned above.
    Also when a AP starts up and registers with the WLC ......I click on a registered AP > High Availability ( Primary / Sec / Tertiary ) all fields are blank...
    Initially I also thought that once my SSO is all setup and working than those options "AP > High Availability" will get populated automatically but clearly not unless something is not working.
    My current config is as follows:-
    WLC 5508 * 2
    WLC 1 - Primary
    WLC 2 - HA SKU (Secondary )
    Redundancy = SSO (Both AP and Client SSO)
    =============
    (Cisco Controller) >show sysinfo
    Manufacturer's Name.............................. Cisco Systems Inc.
    Product Name..................................... Cisco Controller
    Product Version.................................. 7.6.130.0
    Bootloader Version............................... 1.0.20
    Field Recovery Image Version..................... 7.6.101.1
    Firmware Version................................. FPGA 1.7, Env 1.8, USB console 2.2
    Build Type....................................... DATA + WPS
    System Name...................................... WLC5508
    System Location..................................
    System Contact...................................
    System ObjectID.................................. 1.3.6.1.4.1.9.1.1069
    Redundancy Mode.................................. SSO (Both AP and Client SSO)
    IP Address....................................... 10.31.66.21
    Last Reset....................................... Software reset
    System Up Time................................... 0 days 22 hrs 39 mins 57 secs
    System Timezone Location......................... (GMT) London, Lisbon, Dublin, Edinburgh
    System Stats Realtime Interval................... 5
    System Stats Normal Interval..................... 180
    Configured Country............................... GB  - United Kingdom
    Operating Environment............................ Commercial (0 to 40 C)
    --More-- or (q)uit
    Internal Temp Alarm Limits....................... 0 to 65 C
    Internal Temperature............................. +38 C
    External Temperature............................. +21 C
    Fan Status....................................... OK
    State of 802.11b Network......................... Enabled
    State of 802.11a Network......................... Enabled
    Number of WLANs.................................. 1
    Number of Active Clients......................... 0
    Burned-in MAC Address............................ F8:72:EA:EE:5B:B2
    Power Supply 1................................... Present, OK
    Power Supply 2................................... Absent
    Maximum number of APs supported.................. 500
    ============================================
    TA

    TA,
    Mobility and mobility groups are used for the wireless users roaming. What we know that a wireless users can roam between different APs within the same WLC, but when the SSID is used within multiple WLCs, and the client wanted to roam to an AP joined to another WLC, you would need to configure WLC mobility to maintain seamless roaming. For more info:
    http://www.cisco.com/c/en/us/td/docs/wireless/controller/8-0/configuration-guide/b_cg80/b_cg80_chapter_010001101.html
    Now, I understand that your purpose is to have high availability for your APs. No this is done traditionally from the AP page, under HA tab, where you configure the WLCs names and IPs there. This can be done manually on each AP (you can use CLI to make it easier) or you can push a configuration template using a management server (WCS/NCS/CPI).
    Configuring HA on the AP:
    http://www.cisco.com/c/en/us/td/docs/wireless/controller/8-0/configuration-guide/b_cg80/b_cg80_chapter_01110000.html
    http://www.cisco.com/c/en/us/td/docs/wireless/controller/8-0/configuration-guide/b_cg80/b_cg80_chapter_01110001.html
    Using CPI to push AP configuration templates:
    http://www.cisco.com/c/en/us/td/docs/wireless/prime_infrastructure/2-0/configuration/guide/pi_20_cg/temp.html
    Now mobility may play a role in this, as if you have already configured mobility for your WLCs, then you won't need to configure a "name" for the WLCs when you add them under the HA tab in AP configuration page. That's it.
    BR, Ala

  • Mobility group between controller 4400 and virtual wlc

    Hello everybody...
    I read the configuration guide about the 7.3 release. And I figured out that you will need a hash key for establishing a mobility group relation between a controller and a virtual controller. The 7.3 release for the 5500 series works fine for me.
    But the latest release 7.0.235.0 for the wireless lan controller series 4400 does not have a functionality to add a hash key while creating a new mobility group member.
    The command "config mobility group member hash" is totally missing.
    Does anybody have an idea how to establish a mobility group between a 4400 controller and a virtual then?
    Best regards,
      Sebastian Wieseler

    The vWLC is out since yesterday.
    We installed it in our lab and the deployment guide is out now, too.
    Anyway... the hash is "god-given" in the vWLC. I can't change it to "none". So it is quite mandatory to enter a hash in the 4400 controller otherwise it just do not pair. So I am unable to establish a mobility group.
    Any other ideas?

  • Mobility Group Requirements for Guest Anchor WLC

    Hello -
    I've alway assumed you can't create a guest tunnel between a local WLC and an anchor WLC that are in different mobility groups.   However, I was told recently (without much detail) that this is possible.  So I have set out to test this.  
    I am trying to point one of my local WLCs guest SSIDs to a guest anchor WLC in a different mobility group.   I have a maintenance window coming up and I am looking to anchor the clients on one campus to the anchor WLC on the other campus so guest service does not go down.   Each campus is it's own mobility group.   In trying to set this up I went to the "mobility anchors" screen for the guest SSID on one of the local WLCs and I am unable to add the anchor WLC from the other campus because it's non in the drop-down menu.  This is because it's not in the same mobility group.   So my question is how do I anchor clients coming through a local WLC in one mobility group to an anchor WLC in another mobility group?
    To me it doesn't seem possible without significant configuration changes.   I don't want to reconfigure/recreate mobility groups. 
    Thanks
    Chuck

    Not only is it possible, I would recommend it. However, you may be confusing some concepts.
    The Mobility Group is different than the Mobility Domain.  I generally refer to the Mobility Group as those WLCs with the same Default Mobility Group Name, and the Mobility Domain as the entire Mobility List (where you can define up to 72 controllers from various mobility groups).
    The point is that if WLCs 1-10 are GroupA, and WLCs 11-20 are GroupB, for anchoring to work you at least need to add the anchor to the mobility list of the foreign wlc, and vice versa.
    If you notice, when you add a mobility entry to the list, it should ask you for mobility group. If you leave it blank, it should default to that of that WLC,  but on GroupA controllers, you could define GroupB controllers (and specific GroupB) and then you should now have mobility established between your controllers and the Anchor configuration will have your anchors in the drop-down....
    Does that make sense?

  • Mobility group same ssid multiple WLC

    I have a 4400 and a 5508 WLC in the same location
    We want to be able to roam between ap joined to both the 4400 and the 5508 using only one ssid
    Do I only need to create a mobility group and add both WLC
    then create only one WLAN on one of the controllers and it will be shared across bot WLC.
    Or something else?

    Resolution :
    Yes you are correct. Please follow this link for Mobility groups and Roaming :
    http://www.cisco.com/en/US/docs/wireless/controller/7.2/configuration/guide/cg_mobility.html

  • WLC 5500 mobility group failover

    Hey
    I have a Question i am testing  mobility group with
    Failover for redundend connection between 2
    Cisco 5500 Wlc.
    On both the controllers i got the mobility working
    And both the controllers have the same version
    And configuration.
    But when i unplug the main controller the access-
    Points don't convers to the second one
    The just keep on creaming can't find the main controller
    Also with this thus the second wlc need to have the same
    Interface ip address like managment..??
    Thanks

    What do you mean by "convers". An AP will only join one wlc and when that primary wlc is no longer available, should failover to the other/secondary wlc. Mobility is required for an AP to know about all the other APs in that mobility group. And if not configured correct, your AP will only be able to join that wlc.
    Thanks,
    Scott Fella
    Sent from my iPhone

  • Wlc mobility group

    HI,
    How many WLCs 5508 can you add to the mobility group?

    WLC code 5.1 and above we can add 24 WLC in a single mobility Group..
    http://www.cisco.com/en/US/docs/wireless/controller/7.0/configuration/guide/c70mobil.html#wp1093878
    Lemme know if this answered ur question and please dont forget to rate the usefull posts!!
    Regards
    Surendra

  • WLC Mobility Group problem

    Hi to all,
    we've two internal WLC which belong to the same MG (the default one), and one DMZ WLC which belongs to another MG.
    All are running OS 4.2.61
    After configuring Mobility Group using the "edit all" inserting the WLC IP address and MAC of the MGMT interface and the name of the MG which they belong, I notice a strange behaviour:
    - WLC1 has Data path UP with internal's WLC2 and DMZ WLC...but Control path is down.
    - WLC2 has Data path and Control path UP with DMZ WLC and only Data path UP with WLC1
    - DMZ WLC has Data path and Control path UP with DMZ WLC and only Data path UP with WLC1
    MG Secure Mode is disabled on all WLC's seeing the following bug CSCsk36683 (The mobility control path is down when secure mode is enabled).
    Reachability via ping is OK, via eping the same but mping are not working from WLC1 to WCL2 and from DMZ WLC to WLC2
    I've already restarted both controllers without success...what i've noticed is on WLC2 and DMZ WLC msglog there are a lot of these entries with a lot of RX errors ===>>>MM-3-INVALID_PKT_RECVD: Received an invalid packet from X.X.X.X. Source member:0.0.0.0. source member unknown.
    any idea?
    Tnx
    Omar

    Here is the URL for the configuration for the Mobility Group follow the URL which will help you :
    http://www.cisco.com/en/US/tech/tk722/tk809/technologies_configuration_example09186a00809817ca.shtml

  • WLC 5508 and mobility groups

    Hi,
    We are using 2 WLC 5508 running 7.0.98.0 sw (AP's are 1142) at our primary site. They are hosting 3 different WLAN/SSID's, one for guest and the
    other 2 are for corporate access. We have put the WLC's in a mobility group, say "AAAA".
    Now we have the need for our UK peer site to publish a corp WLAN that exists in UK - at our site, and when trying to configure for that (following the c70cg.pdf) - I put the WLC's for UK in a new mobility group, say "BBBB". But i can't add our WLC's into that mobilty group
    (i get a duplicate mac address message).
    What's the correct way of configuring this, does all WLCs need to be in the same mobility group?
    Is there some reason why we can't have 2 mobility groups? Is there any upside/downside to configuring 2 mob. groups?
    Any clearification would be greatly appreciated
    BR
    //Mikael

    I think you are misunderstanding , so far what you did on your local swedish site is correct. Your two swedish WLCs have to be in their own same mobility group so you can give seamless roaming to your wireless users across your swedish area without interruption.
    On a WLC mobility group config page, you can have only one entry  per WLC, this is why you are getting the duplicate error message.
    WEBGUI - CONTROLLER - MOBILITY MANAGEMENT - MOBILITY GROUPS
    If you want to put your 4 WLCs so they exchange mobility messages, the following has to happen on all 4 WLCs.
    xx:xx:xx:xx:xx:xx  192.168.1.1  uk
    yy:yy:yy:yy:yy:yy 192.168.1.2 uk
    zz:zz:zz:zz:zz:zz  172.17.1.1  sweden
    aa:aa:aa:aa:aa:aa  172.17.1.2  sweden
    Note when you add WLC on the mobility section, the WLC start sending messages to each like, hey i have this client and you have that client and so on. But this has nothing to do with what you are trying to achieve.
    With regards to the execs that are coming, yes, replicate the SSID and point it to the Radius Server they have in UK, add your swedish WLC(s) as a NAS on the Radius Server and it should work as if they were in UK. that should be enough and i advise you to do the following for mobility groups config.
    on the two UK WLCs
    xx:xx:xx:xx:xx:xx  192.168.1.1  uk
    yy:yy:yy:yy:yy:yy 192.168.1.2 uk
    on the two Swedish WLCs
    zz:zz:zz:zz:zz:zz  172.17.1.1  sweden
    aa:aa:aa:aa:aa:aa  172.17.1.2  sweden
    hope i cleared it out for you. greeting from cold Belgium tonight :-) and hope the execs will enjoy Sweden!

  • Mobility groups and MAC filtering

    We have a 4402 controller and we are doing MAC filtering. We have reached the default number of MAC addresses, 512. It has been recommended that we add an additional controller instead of increasing this past the default. Three questions:
    1. Is there an increased (enough to impact performance) load placed on the WLC if the limit of MACs is increased, say to the max of 2048?
    2. If we add an additional controller, configured in a mobility group, how do we configure the MAC filter to load balance? Or do we have to configure the same MAC table on both controllers? Which leads to....
    3. Is there a benefit to adding another controller as far as MAC filtering is concerned?

    As it stands, you would need to manually replicate internal mac filtering database between two controllers, so you're not gaining much with the second controller. As regards to increasing database size and what effects it will have, I don't have an educated answer for you, sorry.
    Regards,
    Roman

Maybe you are looking for

  • Please Help - Time Capsule and External hard drive Issues

    Recently, I switched from Comcast to AT&T uverse as my internet provider and I started experiencing problems. (1) I have a 4th generation Apple Time Capsule which I am using as my router. (2) Connected to the Apple Time Capsule - USB - is an external

  • Lost sync key

    Good Afternoon, I have lost my Firefox sync key. I am aware mozilla does not store the key. Can you please delete my email address from the firefox sync server where I can reapply using the same email address. [email protected]

  • Open Directory Storing AD information

    I am looking for documentation that explains that Open Directory does NOT house Active Directory account information (passwords specifically). It is my understanding that when a server is set up as an Open Directory master, it only references Active

  • Is it possible to convert/compare  a JUCtrlAttrsBinding to a number in EL?

    Using 10.1.2 JDev - I am trying to do the following in order to have a binding value control the max length of an input field in a JSP:           <c:choose>             <c:when test="${bindings.MyFieldMaxLength gt 60}">               <c:set var="txtL

  • How to run the form?

    Dear all, I also have another question about forms. Again, I am new to learning Forms. I have developed a form application and it runs in my PC. How do I make it available to the users? I read through the documentation and I see that I can make it av