Aironet 1140 dhcp service
Hi,
I've set up an Aironet 1140 with 2 SSID's, but I am having trouble getting dhcp service working for these.
I've tried googling for answers, but can't really find anything.
The AP is set up with 3 vlan's and 3 BVI¨s. Vlan1 is the native Vlan, and the BVI1 interface is configured with an IP for management.
I've configured the two SSID's with seperate Vlan's and WPA2 PSK.
I've configured the BVI interface for each SSID Vlan with an IP, and created dhcp pools.
I have no trouble authenticating to each SSID, but I can't seem to retrieve an IP address.
Anyone got a sample configuration, or some tips as how this problem can be resolved.
Any help is much appreciated.
/Jeppe
You're going to need sub-interfaces for both the radio and the gi0 interface.
I don't think you need different BVI's, but you do need different bridge-groups.
So something like:
do0.1
encapsulation dot1q 1 native
bridge group 1
do0.2
encapsulation dot1q 2
bridge group 2
gi0.1
encapsulation dot1q 1 native
bridge group 1
gi0.2
encapsulation dot1q 2
bridge group 2....
If you don't have the gi0 subinterfaces, then nothing is bridging to the wired network..... Just post your config when you get it.
Similar Messages
-
We have 6 aironet 1140's throughout the office I have them all configed as one ssid but I would like the DHCP to come from our Windows server. Right now I have set them up with ip dhcp pools. So what is the secret to get them to send dhcp requests to the Windows server?
ThanksNope...
All you have to do is configure ip helpder address on L3 device and remove the dhcp pool configuration from AP's. This will ensure that devices pick ip from your wondws dhcp scope.
Hope that helps.
Regards
Najaf
Please rate when applicable or helpful !!! -
Config DHCP service on AIRONET 1040 autonomous
Hello,
I tried to configure DHCP service that will supply addresses for the wifi users.
I configured:
ip dhcp pool sefi
network 192.168.42.0 255.255.255.0
dns-server 8.8.8.8
default-router 192.168.42.1
How can I connect this DHCP service to the Dot11Radio0 interface or to the dot11 SSID??
ThanksConfiguring DHCP
WLANs can be configured to use the same or different Dynamic Host Configuration Protocol (DHCP) servers or no DHCP server. Two types of DHCP servers are available: internal and external.
Internal DHCP Server
The controllers contain an internal DHCP server. This server is typically used in branch offices that do not already have a DHCP server. The wireless network generally contains 10 access points or fewer, with the access points on the same IP subnet as the controller. The internal server provides DHCP addresses to wireless clients, direct-connect access points, appliance-mode access points on the management interface, and DHCP requests that are relayed from access points. Only lightweight access points are supported. When you want to use the internal DHCP server, you must set the management interface IP address of the controller as the DHCP server IP address.
DHCP option 43 is not supported on the internal server. Therefore, the access point must use an alternative method to locate the management interface IP address of the controller, such as local subnet broadcast, DNS, priming, or over-the-air discovery.
Note See the Chapter 8 "Controlling Lightweight Access Points," or the Controller Deployment Guide at this URL for more information on how access points find controllers:
http://www.cisco.com/en/US/products/ps6366/prod_technical_reference_list.html
Note A internal DHCP server pool will only serve the wireless clients of that controller, not clients of other controllers. Also, internal DHCP server can only serve wireless clients and not wired clients.
Note DHCP required state can cause traffic to not be forwarded properly if a client is deauthenticated or removed. To overcome this, ensure that DHCP required state is always in disabled state.
External DHCP Servers
The operating system is designed to appear as a DHCP Relay to the network and as a DHCP server to clients with industry-standard external DHCP servers that support DHCP Relay, which means that each controller appears as a DHCP Relay agent to the DHCP server and as a DHCP server at the virtual IP address to wireless clients.
Because the controller captures the client IP address obtained from a DHCP server, it maintains the same IP address for that client during intra-controller, inter-controller, and inter-subnet client roaming.
DHCP Assignment
You can configure DHCP on a per-interface or per-WLAN basis. The preferred method is to use the primary DHCP server address assigned to a particular interface.
Per-Interface Assignment
You can assign DHCP servers for individual interfaces. The management interface, AP-manager interface, and dynamic interfaces can be configured for a primary and secondary DHCP server, and the service-port interface can be configured to enable or disable DHCP servers.
Note See the Chapter 10 "Managing Controller Software and Configurations," for information on configuring the controller's interfaces.
Per-WLAN Assignment
You can also define a DHCP server on a WLAN. This server will override the DHCP server address on the interface assigned to the WLAN.
Security Considerations
For enhanced security, we recommend that you require all clients to obtain their IP addresses from a DHCP server. To enforce this requirement, all WLANs can be configured with a DHCP Addr. Assignment Required setting, which disallows client static IP addresses. If DHCP Addr. Assignment Required is selected, clients must obtain an IP address via DHCP. Any client with a static IP address is not be allowed on the network. The controller monitors DHCP traffic because it acts as a DHCP proxy for the clients.
Note WLANs that support management over wireless must allow management (device-servicing) clients to obtain an IP address from a DHCP server. See the "Using Management over Wireless" section for instructions on configuring management over wireless.
If slightly less security is tolerable, you can create WLANs with DHCP Addr. Assignment Required disabled. Clients then have the option of using a static IP address or obtaining an IP address from a designated DHCP server.
Note DHCP Addr. Assignment Required is not supported for wired guest LANs.
You are also allowed to create separate WLANs with DHCP Addr. Assignment Required disabled; then define the primary / secondary DHCP server as 0.0.0.0 on the interface assigned to the WLAN. These WLANs drop all DHCP requests and force clients to use a static IP address. Note that these WLANs do not support management over wireless connections.
Note See Chapter 4 "Configuring Controller Settings," for instructions on globally configuring DHCP proxy.
Note If you want to specify a static IP address for an access point rather than having one assigned automatically by a DHCP server, see the "Configuring a Static IP Address on a Lightweight Access Point" section for more information.
This section provides both GUI and CLI instructions for configuring DHCP.
Using the GUI to Configure DHCP
To configure DHCP using the GUI, follow these steps:
Step 1 Follow the instructions in the "Using the GUI to Configure the Management, AP-Manager, Virtual, and Service-Port Interfaces" section or "Using the GUI to Configure Dynamic Interfaces" section to configure a primary DHCP server for a management, AP-manager, or dynamic interface that will be assigned to the WLAN.
Note When you want to use the internal DHCP server, you must set the management interface IP address of the controller as the DHCP server IP address.
Step 2 Choose WLANs to open the WLANs page.
Step 3 Click the ID number of the WLAN for which you wish to assign an interface. The WLANs > Edit (General) page appears.
Step 4 On the General tab, unselect the Status check box and click Apply to disable the WLAN.
Step 5 Re-click the ID number of the WLAN.
Step 6 On the General tab, choose the interface for which you configured a primary DHCP server to be used with this WLAN from the Interface drop-down list.
Step 7 Choose the Advanced tab to open the WLANs > Edit (Advanced) page.
Step 8 If you want to define a DHCP server on the WLAN that will override the DHCP server address on the interface assigned to the WLAN, select the DHCP Server Override check box and enter the IP address of the desired DHCP server in the DHCP Server IP Addr text box. The default value for the check box is disabled.
Note The preferred method for configuring DHCP is to use the primary DHCP address assigned to a particular interface instead of the DHCP server override.
Note DHCP Server override is applicable only for the default group.
Step 9 If you want to require all clients to obtain their IP addresses from a DHCP server, select the DHCP Addr. Assignment Required check box. When this feature is enabled, any client with a static IP address is not allowed on the network. The default value is disabled.
Note DHCP Addr. Assignment Required is not supported for wired guest LANs.
Step 10 Click Apply to commit your changes.
Step 11 On the General tab, select the Status check box and click Apply to reenable the WLAN.
Step 12 Click Save Configuration to save your changes.
Using the CLI to Configure DHCP
To configure DHCP using the CLI, follow these steps:
Step 1 Follow the instructions in the "Using the GUI to Configure the Management, AP-Manager, Virtual, and Service-Port Interfaces" section or "Using the GUI to Configure Dynamic Interfaces" section to configure a primary DHCP server for a management, AP-manager, or dynamic interface that will be assigned to the WLAN.
Step 2 Disable the WLAN by entering this command:
config wlan disable wlan_id
Step 3 Specify the interface for which you configured a primary DHCP server to be used with this WLAN by entering this command:
config wlan interface wlan_id interface_name
Step 4 If you want to define a DHCP server on the WLAN that will override the DHCP server address on the interface assigned to the WLAN, enter this command:
config wlan dhcp_server wlan_id dhcp_server_ip_address
Note The preferred method for configuring DHCP is to use the primary DHCP address assigned to a particular interface instead of the DHCP server override. If you enable the override, you can use the show wlan command to verify that the DHCP server has been assigned to the WLAN.
Step 5 Reenable the WLAN by entering this command:
config wlan enable wlan_id -
Cannot get Windows 7 x64 laptop to connect to AIRONET 1140 WAP
I recently changed the configuration of my Aironet 1140 from WEP to WAP2-Enterprise to make it more secure. I am using the WAP as the radius server. After making the change I connected my Blackberry to the wap as well as a Samsung Chromebook. However when I tried to connect my HP laptop it is unable to connect. Watching from the Aironet's console I see that it is processing the association and windows ask me to enter my uid and password. When I do this I get an authentication error. I have tried several times adjusting parameters on windows but it always fails. Here is the configuration of the WAP:
version 12.4
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
hostname ap.acrtek-lab.com
logging rate-limit console 9
aaa new-model
aaa group server radius rad_eap
server 10.53.55.127 auth-port 1812 acct-port 1813
aaa group server radius rad_mac
aaa group server radius rad_acct
aaa group server radius rad_admin
aaa group server tacacs+ tac_admin
aaa group server radius rad_pmip
aaa group server radius dummy
aaa authentication login default local
aaa authentication login eap_methods group rad_eap
aaa authentication login mac_methods local
aaa authorization exec default local
aaa accounting network acct_methods start-stop group rad_acct
aaa session-id common
dot11 syslog
dot11 ssid Acrtek-WPA2
authentication open eap eap_methods
authentication network-eap eap_methods
authentication key-management wpa
username XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
username XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
bridge irb
interface Dot11Radio0
no ip address
no ip route-cache
encryption mode ciphers aes-ccm tkip
ssid Acrtek-WPA2
antenna gain 0
station-role root
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
bridge-group 1 spanning-disabled
interface Dot11Radio1
no ip address
no ip route-cache
shutdown
encryption mode ciphers aes-ccm tkip
ssid Acrtek-WPA2
antenna gain 0
dfs band 3 block
channel dfs
station-role root
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
bridge-group 1 spanning-disabled
interface GigabitEthernet0
no ip address
no ip route-cache
duplex auto
speed auto
no keepalive
bridge-group 1
no bridge-group 1 source-learning
bridge-group 1 spanning-disabled
interface BVI1
ip address dhcp client-id GigabitEthernet0
no ip route-cache
ip http server
ip http authentication aaa
no ip http secure-server
ip http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag
ip radius source-interface BVI1
radius-server local
no authentication eapfast
no authentication mac
nas 10.53.55.127 key 7 xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
user xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
radius-server attribute 32 include-in-access-req format %h
radius-server host 10.53.55.127 auth-port 1812 acct-port 1813 key 7 xxxxxxxxxxxxxxxxxxxxxxxxxxxx
radius-server vsa send accounting
bridge 1 route ip
line con 0
line vty 0 4
end
Windows Configuration:
Details about network adapter diagnosis:
Network adapter Wireless Network Connection driver information:
Description . . . . . . . . . . : Broadcom 4313GN 802.11b/g/n 1x1 Wi-Fi Adapter
Manufacturer . . . . . . . . . : Broadcom
Provider . . . . . . . . . . . : Broadcom
Version . . . . . . . . . . . : 5.100.82.139
Inf File Name . . . . . . . . . : C:\Windows\INF\oem29.inf
Inf File Date . . . . . . . . . : Tuesday, September 18, 2012 5:42:34 PM
Section Name . . . . . . . . . : BCM43XNG2022_NT61
Hardware ID . . . . . . . . . . : pci\ven_14e4&dev_4727&subsys_1795103c
Instance Status Flags . . . . . : 0x180200a
Device Manager Status Code . . : 0
IfType . . . . . . . . . . . . : 71
Physical Media Type . . . . . . : 9
Diagnostics Information (Wireless Connectivity)
Details about wireless connectivity diagnosis:
Information for connection being diagnosed
Interface GUID: 5bab8bfe-12d7-4e0c-a46b-efc490047802
Interface name: Broadcom 4313GN 802.11b/g/n 1x1 Wi-Fi Adapter
Interface type: Native WiFi
Profile: Acrtek-WPA2
SSID: Acrtek-WPA2
SSID length: 11
Connection mode: Infra
Security: Yes
Connect even if network is not broadcasting: No
Connection incident diagnosed
Auto Configuration ID: 2
Connection ID: 3
Connection status summary
Connection started at: 2012-09-18 14:49:56-586
Profile match: Success
Pre-Association: Success
Association: Success
Security and Authentication: Fail
List of visible access point(s): 43 item(s) total, 43 item(s) displayed
BSSID BSS Type PHY Signal(dB) Chnl/freq SSID
00-1C-10-07-38-76 Infra <unknown> -79 11 linksys
70-56-81-CB-A2-7D Infra <unknown> -55 10 MRB LLC
08-86-3B-95-3B-E1 Infra <unknown> -77 11 belkin.be1
C0-C1-C0-52-FD-5F Infra <unknown> -75 11 AquaDeer-guest
70-73-CB-BB-9D-43 Infra <unknown> -60 1 the ridge by apple
00-17-C5-A5-5A-73 Infra <unknown> -67 2 MsPub
00-22-B0-BA-C7-E6 Infra g -72 1 mercer
E0-91-F5-D6-DF-76 Infra <unknown> -78 1 Chick-Fil-A
04-C5-A4-80-FC-50 Infra <unknown> -38 4 (Unnamed Network)
C8-3A-35-5D-AE-18 Infra <unknown> -82 4 medialink
00-23-69-1B-73-C9 Infra g -78 6 Matt and Heather
94-44-52-68-24-2B Infra <unknown> -73 5 Belkin.442B
68-7F-74-7E-50-74 Infra g -77 6 sjslinksys
00-1D-7E-49-E2-65 Infra g -75 6 Cubs
00-12-17-4B-4E-0D Infra g -41 8 (Unnamed Network)
C0-C1-C0-E4-3F-55 Infra <unknown> -78 6 SG Roi
C0-C1-C0-66-9F-CA Infra <unknown> -75 7 Heliman
66-33-4B-E1-47-27 Infra <unknown> -80 8 Jenny lake's Guest Network
00-1C-DF-A4-59-FB Infra <unknown> -60 10 radiofinger
C0-C1-C0-52-FD-5E Infra <unknown> -76 11 AquaDeer
08-86-3B-61-B0-BC Infra <unknown> -76 11 belkin.0bc
00-23-69-00-52-20 Infra g -70 11 670term
58-6D-8F-24-FC-21 Infra <unknown> -80 11 Bluejay1
04-C5-A4-80-FC-50 Infra <unknown> -36 4 Acrtek-WPA2
70-73-CB-BB-B3-49 Infra <unknown> -73 1 LeWonderment Inc.
E6-51-E4-A6-B1-25 Ad hoc g -78 4 megahoc.v24
00-17-C5-A5-5A-A9 Infra <unknown> -79 5 Vivaces
00-23-69-B4-5D-3E Infra g -81 6 Tanda
D0-66-7B-06-C7-45 Infra <unknown> -81 7 SEC_LinkShare_e70ac7
00-24-7B-5D-65-FA Infra g -80 6 myqwest0953
60-33-4B-E1-47-27 Infra <unknown> -81 8 Jenny Lake
00-25-9C-23-73-A6 Infra g -80 1 milehigh
00-24-01-DC-A4-3F Infra <unknown> -81 3 newwoman
C4-3D-C7-83-CE-74 Infra <unknown> -85 3 Desilets
08-86-3B-25-A7-CE Infra <unknown> -86 11 belkin.7ce
00-18-39-78-8F-92 Infra g -88 11 paul landow
98-FC-11-6E-E7-52 Infra <unknown> -80 11 China
28-CF-DA-B1-5F-03 Infra <unknown> -78 1 DeSanti
00-15-6D-D6-04-47 Infra g -69 1 (Unnamed Network)
00-21-91-10-1A-05 Infra g -81 1 dlink
1C-7E-E5-30-AE-66 Infra <unknown> -79 5 dlink
00-15-FF-26-47-98 Infra <unknown> -85 10 Verizon MIFI4510L 4798 Secure
00-23-69-38-2C-D2 Infra <unknown> -82 1 linksys
Connection History
Information for Auto Configuration ID 3
List of visible networks: 41 item(s) total, 41 item(s) displayed
BSS Type PHY Security Signal(RSSI) Compatible SSID
Infra <unknown> No 22 Yes linksys
Infra <unknown> Yes 82 Yes MRB LLC
Infra <unknown> Yes 26 Yes belkin.be1
Infra <unknown> No 30 Yes AquaDeer-guest
Infra <unknown> Yes 76 Yes the ridge by apple
Infra <unknown> No 62 Yes MsPub
Infra g Yes 36 Yes mercer
Infra <unknown> Yes 24 Yes Chick-Fil-A
Infra <unknown> Yes 94 Yes (Unnamed Network)
Infra <unknown> Yes 16 Yes medialink
Infra g Yes 24 Yes Matt and Heather
Infra <unknown> Yes 34 Yes Belkin.442B
Infra g Yes 26 Yes sjslinksys
Infra g Yes 30 Yes Cubs
Infra g Yes 92 Yes (Unnamed Network)
Infra <unknown> Yes 24 Yes SG Roi
Infra <unknown> Yes 30 Yes Heliman
Infra <unknown> Yes 20 Yes Jenny lake's Guest Network
Infra <unknown> Yes 76 Yes radiofinger
Infra <unknown> Yes 28 Yes AquaDeer
Infra <unknown> Yes 28 Yes belkin.0bc
Infra g Yes 40 Yes 670term
Infra <unknown> Yes 20 Yes Bluejay1
Infra <unknown> Yes 95 Yes Acrtek-WPA2
Infra <unknown> Yes 34 Yes LeWonderment Inc.
Ad hoc g No 24 Yes megahoc.v24
Infra <unknown> No 22 Yes Vivaces
Infra g Yes 18 Yes Tanda
Infra <unknown> Yes 18 Yes SEC_LinkShare_e70ac7
Infra g Yes 20 Yes myqwest0953
Infra <unknown> Yes 18 Yes Jenny Lake
Infra g Yes 20 Yes milehigh
Infra <unknown> Yes 18 Yes newwoman
Infra <unknown> Yes 10 Yes Desilets
Infra <unknown> Yes 8 Yes belkin.7ce
Infra g Yes 4 Yes paul landow
Infra <unknown> Yes 20 Yes China
Infra <unknown> Yes 24 Yes DeSanti
Infra g No 50 Yes (Unnamed Network)
Infra g No 22 Yes dlink
Infra <unknown> Yes 10 Yes Verizon MIFI4510L 4798 Secure
List of preferred networks: 5 item(s)
Profile: Acrtek-WPA2
SSID: Acrtek-WPA2
SSID length: 11
Connection mode: Infra
Security: Yes
Set by group policy: No
Connect even if network is not broadcasting: No
Connectable: Yes
Profile: ZRDD2
SSID: ZRDD2
SSID length: 5
Connection mode: Infra
Security: Yes
Set by group policy: No
Connect even if network is not broadcasting: No
Connectable: No
Reason: 0x00028002
Profile: GMANNET
SSID: GMANNET
SSID length: 7
Connection mode: Infra
Security: Yes
Set by group policy: No
Connect even if network is not broadcasting: No
Connectable: No
Reason: 0x00028002
Profile: Conference Rm
SSID: Conference Rm
SSID length: 13
Connection mode: Infra
Security: Yes
Set by group policy: No
Connect even if network is not broadcasting: No
Connectable: No
Reason: 0x00028002
Profile: rntdnet
SSID: rntdnet
SSID length: 7
Connection mode: Infra
Security: Yes
Set by group policy: No
Connect even if network is not broadcasting: No
Connectable: No
Reason: 0x00028002
Information for Connection ID 4
Connection started at: 2012-09-18 14:50:08-279
Auto Configuration ID: 3
Profile: Acrtek-WPA2
SSID: Acrtek-WPA2
SSID length: 11
Connection mode: Infra
Security: Yes
Pre-Association and Association
Connectivity settings provided by hardware manufacturer (IHV): Yes
Security settings provided by hardware manufacturer (IHV): No
Profile matches network requirements: Success
Pre-association status: Success
Association status: Success
Last AP: 04-c5-a4-80-fc-50
Security and Authentication
Configured security type: WPA2-802.1X
Configured encryption type: CCMP(AES)
802.1X protocol: Yes
Authentication mode: Invalid (5)
Number of 802.1X restarts: 1
Number of 802.1X failures: 0
Key exchange initiated: No
Number of security packets received: 2
Number of security packets sent: 1
Security attempt status: Success
Information for Auto Configuration ID 2
List of visible networks: 40 item(s) total, 40 item(s) displayed
BSS Type PHY Security Signal(RSSI) Compatible SSID
Infra <unknown> No 22 Yes linksys
Infra <unknown> Yes 85 Yes MRB LLC
Infra <unknown> Yes 22 Yes belkin.be1
Infra <unknown> No 32 Yes AquaDeer-guest
Infra <unknown> Yes 64 Yes the ridge by apple
Infra <unknown> No 74 Yes MsPub
Infra g Yes 60 Yes mercer
Infra <unknown> Yes 24 Yes Chick-Fil-A
Infra <unknown> Yes 86 Yes (Unnamed Network)
Infra <unknown> Yes 38 Yes medialink
Infra g Yes 36 Yes Matt and Heather
Infra <unknown> Yes 40 Yes Belkin.442B
Infra g Yes 62 Yes sjslinksys
Infra g Yes 30 Yes Cubs
Infra g Yes 95 Yes (Unnamed Network)
Infra <unknown> Yes 24 Yes SG Roi
Infra <unknown> Yes 28 Yes Heliman
Infra <unknown> Yes 20 Yes Jenny lake's Guest Network
Infra <unknown> Yes 81 Yes radiofinger
Infra <unknown> Yes 10 Yes AquaDeer
Infra <unknown> Yes 32
Diagnostics Information (Wireless Connectivity)
Details about wireless connectivity diagnosis:
For complete information about this session see the wireless connectivity information event.
Helper Class: Auto Configuration
Initialize status: Success
Information for connection being diagnosed
Interface GUID: 5bab8bfe-12d7-4e0c-a46b-efc490047802
Interface name: Broadcom 4313GN 802.11b/g/n 1x1 Wi-Fi Adapter
Interface type: Native WiFi
Profile: Acrtek-WPA2
SSID: Acrtek-WPA2
SSID length: 11
Connection mode: Infra
Security: Yes
Connect even if network is not broadcasting: No
Result of diagnosis: Problem found
Issue referred to: L2Sec Helper Class
Root cause:
Windows could not connect to "Acrtek-WPA2"
You can try to connect again.
Repair option:
Reset your wireless network adapter
This will disable and then enable the network adapter "Wireless Network Connection" on this computer.
Diagnostics Information (L2sec Helper Class)
Details about L2Sec Helper Class diagnosis:
For complete information about this session see the Wireless Diagnostic Informational Event.
Helper Class: Layer2 Security
Initialize Status: Success
Result of diagnosis: Problem found
Issue referred to: EAP Helper Class
Root cause (EAP):
Network authentication failed\nWindows doesn't have the required authentication method to connect to this network.
Detailed root cause:
EAP failed
Workaround for hypothesis: Contact the network administrator for "Acrtek-WPA2"
EAP workaround: Contact your network administrator\nWindows needs to be configured to use the authentication method required for this network.
Information for connection being diagnosed
Interface GUID: {5bab8bfe-12d7-4e0c-a46b-efc490047802}
Interface name: Broadcom 4313GN 802.11b/g/n 1x1 Wi-Fi Adapter
Interface type: Native WiFi
Profile: Acrtek-WPA2
SSID: Acrtek-WPA2
SSID length: 11
Connection mode: Infra
Security enabled: Yes
Connection ID: 3
Security settings provided by hardware manufacturer (IHV): No
Profile matches network requirements: Yes
Pre-Association and association status: Success
Security and Authentication:
Configured security type: Robust Secure Network (RSN / WPA2) with 802.1X
Configured Encryption type: CCMP (AES)
Security connect status: Fail 0x00050005
Number of security packets received: 4
Number of security packets sent: 3
802.1X protocol: Yes
Authentication Identity: User only
IAS Server engaged: Yes
EAP Method supported by IAS Server: Unknown
EAP type: 25
EAP Error: 0x40420016
Number of 802.1X restarts: 1
Number of 802.1X failures: 1
802.1X status: Fail 0x00050005
Key exchange initiated: No
Unicast keys received: No
Multicast keys received: No
Network Diagnostics Log
File Name: A20D3467-8AD4-483E-91F4-9EC5E18AA1F9.Diagnose.0.etl
Other Networking Configuration and Logs
File Name: NetworkConfiguration.cab
Collection information
Computer Name: ACCRETIVE-SW
Windows Version: 6.1
Architecture: amd64
Time: Tuesday, September 18, 2012 2:50:09 PM
Any help would be greatly appreciated.Hello Mr. Wells,
Thank you for your question.
However, the Small Business Support Community is limited to Cisco Small Business Products, and the Aironet products are considered as a Enterprise level devices.
I recommend you to post this question on the on the correct forum, in order to get a better response.
You can move your post using the Actions panel on the right.
Best regards,
Diego Rodriguez
Cisco Small Business Community Engineer -
Cisco Aironet 1140: 3 of our 4 are always hanging
Our office has 4 Cisco Aironet 1140 access points mounted on the ceiling. They are all powered via PoE. Every few days 3 of the 4 access points hang and have to be rebooted. When they hang I am not able to connect to their web interface to check the logs. The fourth, for some reason, always seems to stay alive.
I checked the configuration for all AP's and "Hot Standby" is disabled
They are all using static IP addresses. I've tried 2 different banks of static IP addresses and 3 of 4 still hange so I don't think this is an IP conflict
I have saved the configurations and compared them and they are all identical, where possible.
They all have software version: 12.4(21a)JA1
They all have bootloader version: 12.4(23c)JA1
I have tried to download the latest software/firmware, but unfortunately I do not have a valid service contract in place with Cisco and therefore can't download the latest version. All of our CISCO hardware was purchased from Amazon resellers and they can't seem to help me with this. I have also tried to contact Cisco and they can't seem to help either. If anyone has a suggestion on how I can get a valid service contract that information would also be very helpful!!!
Does anyone have any ideas why 3 of our 4 access points would hang? When they hang, I can't login to the web interface and the logs seem to reset when I reset each access point. I have also set up an rsyslog server and I don't see a log entry that would indicate a problem.
Any ideas?
Thank youHere is the config for one of the AP's that keeps hanging:
! Last configuration change at 09:18:05 -1000 Mon Jan 30 2012 by admin
! NVRAM config last updated at 09:18:05 -1000 Mon Jan 30 2012 by admin
version 12.4
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
hostname XXX2
aaa new-model
aaa authentication login default local
aaa authorization exec default local
aaa session-id common
clock timezone -1000 -10
ip name-server 8.8.8.8
ip name-server 8.8.4.4
dot11 syslog
dot11 ssid XXX2
authentication open
authentication key-management wpa version 2
guest-mode
wpa-psk ascii 7 01234567890123456789012
username admin privilege 15 password 7 01234567890123456789012
bridge irb
interface Dot11Radio0
no ip address
no ip route-cache
encryption mode ciphers aes-ccm
ssid XXX2
antenna gain 0
station-role root
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
bridge-group 1 spanning-disabled
interface GigabitEthernet0
no ip address
no ip route-cache
duplex auto
speed auto
no keepalive
bridge-group 1
no bridge-group 1 source-learning
bridge-group 1 spanning-disabled
interface BVI1
ip address 192.168.100.252 255.255.255.0
no ip route-cache
ip default-gateway 192.168.100.1
ip http server
ip http authentication aaa
no ip http secure-server
ip http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag
snmp-server community MyCommunity RO
bridge 1 route ip
line con 0
line vty 0 4
sntp server 192.43.244.18
sntp broadcast client
end -
Aironet 1140 connection and log questions
Hi Cisco gurus,
Recently we decided to change the name of one of our Aironet 1140 AP's. Everything was great for a few days then, for some reason, nobody was able to connect to it. They would all recieve timeout messages when they would connect. A quick reset solved the problem, but I'm curious if there was an actual reason to why it didn't allow users to connect in case it happens again.
Which brings me to my next question, how do you set the AP clock so that the event logs display the proper date and time? I'm sure I overlooked something, but I can't find out how to set the proper date and time.
Thank you in advance.conf t
serv time d d s l
serv time l d s l
sntp service
! Set the timezone
clock timezone WORD
clock summer-time WORD recurring -
AiroNet 1140 Authentication Issues Windows Server 2008 NPS
Hello,
We have an AiroNet 1140 AP that we are trying to configure RADIUS authentication. Our RADIUS server is a Microsoft Windows Server 2008 NPS server. Unfortunately, our Wi-Fi clients are unable to authenticate. We appear to have everything configured on the AP and RADIUS server correctly, but we receive the following errors from the debug on the AP. Doug
*Mar 14 05:46:58.413: RADIUS/DECODE: No response from radius-server; parse response; FAIL
*Mar 14 05:46:58.413: RADIUS/DECODE: Case error(no response/ bad packet/ op decode);parse response;
FAIL
*Mar 14 05:46:58.413: RADIUS/DECODE: No response from radius-server; parse response; FAIL
*Mar 14 05:46:58.413: RADIUS/DECODE: Case error(no response/ bad packet/ op decode);parse response;
FAILHi Steve, Here is the config for the AP. Some screenshots of the NPS config are below, too. Please let me know if you need more information from our NPS server. Thanks, Doug
ap#sh run
Building configuration...
Current configuration : 2971 bytes
version 12.4
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
hostname ap
logging rate-limit console 9
enable secret 5 $1$1IPZ$WkdzqdeeGvEPvQLCHfGXU.
aaa new-model
aaa group server radius rad_eap
server 10.20.2.96 auth-port 1645 acct-port 1646
aaa group server radius rad_mac
aaa group server radius rad_acct
aaa group server radius rad_admin
server 10.20.2.96 auth-port 1645 acct-port 1646
aaa group server tacacs+ tac_admin
aaa group server radius rad_pmip
aaa group server radius dummy
aaa authentication login eap_methods group rad_eap
aaa authentication login mac_methods local
aaa authorization exec default local
aaa accounting network acct_methods start-stop group rad_acct
aaa session-id common
dot11 syslog
dot11 ssid wifi
authentication open eap eap_methods
authentication network-eap eap_methods
authentication key-management wpa
username pg_ap privilege 15 secret 5 $1$rg0/$hTYIn.lysNUfxhzxqXonl/
bridge irb
interface Dot11Radio0
no ip address
no ip route-cache
encryption mode ciphers aes-ccm
ssid wifi
antenna gain 0
speed basic-1.0 2.0 5.5 11.0 6.0 9.0 12.0 18.0 24.0 36.0 48.0 54.0 m0. m1. m2. m3. m4. m5. m6. m7.
m8. m9. m10. m11. m12. m13. m14. m15.
station-role root
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
bridge-group 1 spanning-disabled
interface Dot11Radio1
no ip address
no ip route-cache
encryption mode ciphers aes-ccm
ssid wifi
antenna gain 0
dfs band 3 block
speed basic-6.0 9.0 12.0 18.0 24.0 36.0 48.0 54.0 m0. m1. m2. m3. m4. m5. m6. m7. m8. m9. m10. m11
. m12. m13. m14. m15.
channel dfs
station-role root access-point
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
bridge-group 1 spanning-disabled
interface GigabitEthernet0
no ip address
no ip route-cache
duplex auto
speed auto
no keepalive
bridge-group 1
no bridge-group 1 source-learning
bridge-group 1 spanning-disabled
interface BVI1
ip address 10.40.0.200 255.255.0.0
no ip route-cache
ip default-gateway 10.40.0.1
ip http server
no ip http secure-server
ip http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag
ip radius source-interface BVI1
radius-server local
no authentication mac
nas 10.20.2.96 key 7 003555402B5F012F3D007B16062C46430759550B3A232F7E0A1636472C01402573
radius-server attribute 32 include-in-access-req format %h
radius-server host 10.20.2.96 auth-port 1645 acct-port 1646 key 7 08100A08261D0F3E202A3B5C251E677C26
677B1C171E08576F7A4C077F19403C337F0C7C7D035B172550305F756934172E327A1B13250C154D4C3F1319305C3514
radius-server vsa send accounting
bridge 1 route ip
line con 0
line vty 0 4
end
ap# -
How do I access router setup page if the router DHCP service is disabled?
When I had DSL, my WRT54G was my DHCP master for my home network. When I got AT&T U-Verse, their "gateway" became the DHCP master and also the wireless access point. But the signal was not strong enough where I wanted to use it, so I hooked up the WRT54G again. I discovered that if I connected the U-Verse gateway to the "Internet" port on the WRT54G Linksys, then my home network was split in two, which I did not want. The WRT54G access point is physically somewhat distant from my wired computer, so I wanted to keep the U-Verse gateway as the DHCP master. (The U-Verse gateway is a router with four "computer" ports but no "Internet" port.)
I followed instructions on the Linksys web site, and using my wi-fi connected computer I re-programmed the WRT54G to be "Disabled" as a DHCP server. Then I powered down and physically connected the U-Verse gateway to a "Computer" port on the WRT54G. This solved my problem: my distant wi-fi computer now has a good signal, and both computers "see" each other.
However, now I seem to have lost access to the WRT54G setup "web page." Is it possible to access the innards of the WRT54G when its DHCP service is disabled? Or would I have to reset the device to factory configuration and start all over if I wanted to make any tweaks?You can still access the router's web configuration pages even if the internal DHCP server is disabled and it is connected via a LAN Ethernet port to your upstream router.
Did you reserve and IP addresses on the Uverse router for static IPs?
If you did, assign one of these to the Linksys router (LAN) and you will be able to access it from your LAN. Since you are not using the WAN port, the Linksys router will not pull an IP from the Uverse router. You are using the device as a switch. -
Android 4.1 tablet not connecting to Aironet 1140
Hello community, I am having an issue with my Android Tablet running 4.1 (Jelly Bean). It is able to the SSID, but when I try to connect - it stays connecting and then says saved, and never connects, as it does not pick up an IP address. I updated the firmware on the Aironet 1140 due to my Windows 8 pc's not connecting as well, it solved my Windows 8 problem, just not my Android Tablet problem. My Ipads do work. Just any android device I connect...
Anyone, ran into this issue that can assist?
Thanks in advance.Hello William,
What is the security used on your wireless LAN?
Can you apply this command on your WLC CLI:
show wlan
and post us the output right here?
Reards,
Amjad
Rating useful replies is more useful than saying "Thank you" -
How to load a boot image to cisco aironet 1140 series after missing boot image
Hi all,
I need a solution for this. When i switch my cisco aironet 1140 , it s blinking with red light .and gives a message "no boot image to load".
When i tried next time, by pressing escape it shows this message that i have mentioned below.
ap:
ap:
using eeprom values
WRDTR,CLKTR: 0x83000800 0x40000000
RQDC ,RFDC : 0x80000035 0x00000208
using ÿÿÿÿ ddr static values from serial eeprom
ddr init done
Running Normal Memtest...
Passed.
IOS Bootloader - Starting system.
FLASH CHIP: Numonyx P33
Checking for Over Erased blocks
Xmodem file system is available.
DDR values used from system serial eeprom.
WRDTR,CLKTR: 0x83000800, 0x40000000
RQDC, RFDC : 0x80000035, 0x00000208
PCIE0: link is up.
PCIE0: VC0 is active
PCIE1: link is NOT up.
PCIE1 port 1 not initialized
PCIEx: initialization done
flashfs[0]: 1 files, 1 directories
flashfs[0]: 0 orphaned files, 0 orphaned directories
flashfs[0]: Total bytes: 32385024
flashfs[0]: Bytes used: 1536
flashfs[0]: Bytes available: 32383488
flashfs[0]: flashfs fsck took 16 seconds.
Reading cookie from system serial eeprom...Done
Base Ethernet MAC address: 28:94:0f:d6:c8:62
Ethernet speed is 100 Mb - FULL duplex
The system is unable to boot automatically because there
are no bootable files.
C1140 Boot Loader (C1140-BOOT-M) Version 12.4(23c)JA3, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Compiled Tue 18-Oct-11 14:51 by prod_rel_team
ap:
So , now my question is how to load the boot image ? From where will we get this ? OR
I m also having another Cisco aironet 1140 , Can i get bootimage from that . Kindly let me know the solution from genius ?Take a look at this link as it should have the info you need
https://supportforums.cisco.com/docs/DOC-14636
Sent from Cisco Technical Support iPhone App -
How can I make DHCP Service automatically assign IP addresses?
We decided on using OS X Server's DHCP service rather than depend on our router to dole out IPs. Here's the size and shape of our local subnet:
Range: 192.168.0.0 to 192.168.7.255
Mask: 255.255.248.0
Router: 192.168.1.1
DNS: ....etc...
We're trying to have the DHCP block managed as 192.168.2.0 through 192.168.2.255. Maybe I'm missing something, but shouldn't DHCP automatiScally assign IPs in that range every time someone plugs in a computer? Right now we're having to enter MAC + IP static maps manually into Server Admin, which is a major pain. How can we fix that so it becomes automatic?
Here's how DHCP service is set on our quad-Ethernet Xserve Xeon. en0 / en1 / en2 / en3 are all set up the same, but only en0 is checked:
GENERAL:
Subnet Name: Our LAN (en0)
Starting IP Address: 192.168.2.0
Ending IP Address: 192.168.2.255
Subnet Mask: 255.255.248.0
Network Interface: en0
Router: 192.168.1.1
Lease Time: 4 hours
DNS Servers:
192.168.1.100.... etc.
Default Search Domain: ourdomain.private
LDAP:
Server Name: (blank)
Search Base: (blank)
Port: (Leave blank to use the default port)
[ ] LDAP over SSL
URL:
WINS:
WINS/NBNS Primary Server: 10.0.1.20
WINS/NBNS Secondary Server: 10.0.1.21
NBDD Server: 1.0.1.22
NBT Node Type: Not Set
NetBIOS Scope ID: (blank)
I'm stuck.... I thought all I'd have to do is define a suitable range, like the 256 addresses in the middle of our DHCP block, but it's not enough. Your help is certainly appreciated.
- BertThis morning I stumbled onto the solution (at least a partial solution). I noticed in /var/log/system.log that there were warnings to the effect of "Hey -- you've got disabled DHCP ports that have conflicting ranges with your enabled DHCP port." Previously, I hadn't thought this was a major error, but when I deleted the three disabled ports from DHCP (en1, en2, and en3) and restarted DHCP then everything started working correctly. Hosts that were previously not getting IP addresses assigned because they weren't listed in Static Maps are now getting addresses.
The log entries looked basically like this:
Apr 19 09:54:38 myserver servermgrd[50]: servermgr_dhcp:bootp config:Error:Subnets 'My LAN (en2)' and 'My LAN (en0)' have overlapping ranges: '1\
92.168.2.0-192.168.2.255' overlaps '192.168.2.0-192.168.2.255'
Apr 19 09:54:38 myserver servermgrd[50]: servermgr_dhcp:bootp config:Error:Subnets 'My LAN (en2)' and 'My LAN (en3)' have overlapping ranges: '1\
92.168.2.0-192.168.2.255' overlaps '192.168.2.0-192.168.2.255' - 'My LAN (en3)' is not active
Apr 19 09:54:38 myserver servermgrd[50]: servermgr_dhcp:bootp config:Error:Subnets 'My LAN (en2)' and 'My LAN (en1)' have overlapping ranges: '1\
92.168.2.0-192.168.2.255' overlaps '192.168.2.0-192.168.2.255' - 'My LAN (en1)' is not active
Apr 19 09:54:38 myserver servermgrd[50]: servermgr_dhcp:bootp config:Error:Subnets 'My LAN (en0)' and 'My LAN (en2)' have overlapping ranges: '1\
92.168.2.0-192.168.2.255' overlaps '192.168.2.0-192.168.2.255' - 'My LAN (en2)' is not active
Apr 19 09:54:38 myserver servermgrd[50]: servermgr_dhcp:bootp config:Error:Subnets 'My LAN (en0)' and 'My LAN (en3)' have overlapping ranges: '1\
92.168.2.0-192.168.2.255' overlaps '192.168.2.0-192.168.2.255' - 'My LAN (en3)' is not active
: and so on
The next problem I need to work through is why there's huge amounts of DHCP-related traffic in the logs. It's clogging up with stuff like this:
Apr 19 10:33:40 fannxfile bootpd[54475]: DHCP DISCOVER [en3]: 1,0:e:8:eb:47:90 <SipuraSPA>
Apr 19 10:33:40 fannxfile bootpd[54475]: replying to 192.168.2.44
Apr 19 10:33:40 fannxfile bootpd[54475]: OFFER sent <no hostname> 192.168.2.44 pktsize 303
Apr 19 10:33:40 fannxfile bootpd[54475]: service time 0.000404 seconds
Apr 19 10:33:40 fannxfile bootpd[54475]: DHCP DISCOVER [en0]: 1,0:e:8:eb:47:90 <SipuraSPA>
Apr 19 10:33:40 fannxfile bootpd[54475]: replying to 192.168.2.44
Apr 19 10:33:40 fannxfile bootpd[54475]: OFFER sent <no hostname> 192.168.2.44 pktsize 303
Apr 19 10:33:40 fannxfile bootpd[54475]: service time 0.000385 seconds
Apr 19 10:33:40 fannxfile bootpd[54475]: DHCP DISCOVER [en1]: 1,0:e:8:eb:47:90 <SipuraSPA>
Apr 19 10:33:40 fannxfile bootpd[54475]: replying to 192.168.2.44
Apr 19 10:33:40 fannxfile bootpd[54475]: OFFER sent <no hostname> 192.168.2.44 pktsize 303
Apr 19 10:33:40 fannxfile bootpd[54475]: service time 0.000363 seconds
Apr 19 10:33:40 fannxfile bootpd[54475]: DHCP REQUEST [en2]: 1,0:e:8:eb:47:90 <SipuraSPA>
Apr 19 10:33:40 fannxfile bootpd[54475]: replying to 192.168.2.44
Apr 19 10:33:40 fannxfile bootpd[54475]: ACK sent <no hostname> 192.168.2.44 pktsize 303
Apr 19 10:33:40 fannxfile bootpd[54475]: service time 0.000597 seconds
Apr 19 10:33:40 fannxfile bootpd[54475]: DHCP REQUEST [en3]: 1,0:e:8:eb:47:90 <SipuraSPA>
Apr 19 10:33:40 fannxfile bootpd[54475]: service time 0.000103 seconds
Apr 19 10:33:40 fannxfile bootpd[54475]: DHCP REQUEST [en0]: 1,0:e:8:eb:47:90 <SipuraSPA>
Apr 19 10:33:40 fannxfile bootpd[54475]: service time 0.000298 seconds
Apr 19 10:33:40 fannxfile bootpd[54475]: DHCP REQUEST [en1]: 1,0:e:8:eb:47:90 <SipuraSPA>
Apr 19 10:33:40 fannxfile bootpd[54475]: service time 0.000153 seconds
Apr 19 10:33:40 fannxfile bootpd[54475]: DHCP REQUEST [en2]: 1,0:e:8:eb:47:90 <SipuraSPA>
Apr 19 10:33:40 fannxfile bootpd[54475]: service time 0.000134 seconds
Apr 19 10:33:40 fannxfile bootpd[54475]: DHCP REQUEST [en3]: 1,0:e:8:eb:47:90 <SipuraSPA>
Apr 19 10:33:40 fannxfile bootpd[54475]: service time 0.000139 seconds
Apr 19 10:33:40 fannxfile bootpd[54475]: DHCP REQUEST [en0]: 1,0:e:8:eb:47:90 <SipuraSPA>
Apr 19 10:33:40 fannxfile bootpd[54475]: service time 0.000125 seconds
Apr 19 10:33:40 fannxfile bootpd[54475]: DHCP REQUEST [en1]: 1,0:e:8:eb:47:90 <SipuraSPA>
Apr 19 10:33:40 fannxfile bootpd[54475]: service time 0.000174 seconds
This is happening REALLY fast. Every second there's a block of log entries like the above. I don't get it because I've set the lease times to 4 hours. I'll reset the leases back to 12 hours, but I don't understand what's causing the rapid fire log entries.
Perhaps the smart thing to do at this point is to reboot the server.
To answer some of your specific questions:
Q: Have you tried specifying the range as 192.168.0.1 - 192.168.7.254 instead? Please don't take this the wrong way but is the service actually running?
A: Yes, definitely up and running. Hosts that are in the static map were getting addresses. After deleting the three disabled Ethernet ports with conflicting ranges, I'm also seeing hosts that have not been entered into static maps appearing with dynamic IP addresses, which is what we wanted.
Regarding the suggestion to set the network range to 192.168.0.1 - 192.168.7.254: That's the range the way it was originally set, but I thought what the range was supposed to be was the smaller block of addresses you wanted DHCP to draw from out of your total subnet. I may be wrong, but doesn't DHCP service already know your total network size from the network mask? [255.255.248.0 in our case] This implies that our subnet ranges from 192.168.0.0 to 192.168.7.255 (including base and broadcast addresses at both ends).
My thought was that the "Starting IIP Address" and "Ending IP Address" wanted to be the range of addresses in that that I wanted to use as a pool for DHCP. Hence 192.168.2.0 through 192.168.2.255. We have devices with static IP addresses on our network (servers, printers, and our VoIP phone system, mostly) on 192.168.0.xxx, 192.168.1.xxx and 192.168.3.xxx, and if DHCP doubly assigns addresses in these ranges to our workstations, then we're in big trouble.
Q: sudo serveradmin fullstatus dhcp
A: ...that produces the following output now following deletion of the DHCP ports with conflicting ranges:
fannxfile:log root# serveradmin fullstatus dhcp
dhcp:setStateVersion = 1
dhcp:servicePortsAreRestricted = "NO"
dhcp:numConfiguredStaticMaps = 43
dhcp:dhcpLeasesArray:arrayindex:0:timeLeft = 12201
dhcp:dhcpLeasesArray:arrayindex:0:clientID = ""
dhcp:dhcpLeasesArray:arrayindex:0:computerName = ""
dhcp:dhcpLeasesArray:arrayindex:0:macAddress = "00:1b:63:17:a3:bd"
dhcp:dhcpLeasesArray:arrayindex:0:ipAddress = "192.168.2.21"
dhcp:dhcpLeasesArray:arrayindex:1:timeLeft = 12168
dhcp:dhcpLeasesArray:arrayindex:1:clientID = ""
dhcp:dhcpLeasesArray:arrayindex:1:computerName = ""
dhcp:dhcpLeasesArray:arrayindex:1:macAddress = "00:1b:63:17:a3:bd"
dhcp:dhcpLeasesArray:arrayindex:1:ipAddress = "192.168.2.9"
dhcp:state = "RUNNING"
dhcp:logPaths:systemLog = "/var/log/system.log"
dhcp:backendVersion = "10.5"
dhcp:timeOfModification = "2009-04-19 10:05:46 -0700"
dhcp:numDHCPActiveClients = 2
dhcp:numDHCPLeases = 2
dhcp:timeOfSnapShot = "2009-04-19 10:43:09 -0700"
dhcp:timeServiceStarted = "2009-04-19 10:05:46 -0700"
dhcp:readWriteSettingsVersion = 1
dhcp:servicePortsRestrictionInfo = emptyarray
-- Bert Sierra -
DHCP service randomly stopping, when restarted scopes disappear
I have DHCP and DNS running on two OS X 10.5.7 servers; one is a G5 dual 1.8 Ghz PPC and the other is a 2.8 Ghz quad-core Intel Xserve. This summer I've added VLAN scopes (staff and student wired & wireless) with half the available addresses in each subnet on one server and the other half on the other. An odd thing has happened several times now. The DHCP service will randomly shut down and when I restart it, the new scopes have all disappeared and the old scope is back as the only choice on the list, but not enabled. When I go to check the other server I find the same thing. I thought it was just a fluke the first time it happened and just imported the DHCP settings back in from a backup. It has happened two more times since then, about once a week. If anyone can shed some light on this I'd appreciate it.
I too am having this issue.
DHCP service will crash (after investigation I found that it was servermgrd that crashes) all the scopes are still there, then when I restart the service it wipes out all my scopes except the default one that is in there when you initially configure the service.
Everything goes haywire, DNS seems to go down halfway, then I put the scopes back in, and at least DHCP rights itself.
This is a serious issue, I have 5 scopes in this server. I also have one other server that only has one scope, but does not have this issue.
All running 10.5.6 Server on Intel Xserves.
Here is part of my crash log:
Process: servermgrd [41823]
Path: /usr/sbin/servermgrd
Identifier: servermgrd
Version: ??? (???)
Code Type: X86 (Native)
Parent Process: launchd [1]
Date/Time: 2009-08-08 13:29:02.314 -0700
OS Version: Mac OS X Server 10.5.6 (9G71)
Report Version: 6
Exception Type: EXCBADACCESS (SIGSEGV)
Exception Codes: KERNINVALIDADDRESS at 0x00000000dc45897b
Crashed Thread: 7
Thread 0:
0 libSystem.B.dylib 0x937851c6 machmsgtrap + 10
1 libSystem.B.dylib 0x9378c9bc mach_msg + 72
2 com.apple.CoreFoundation 0x940960ae CFRunLoopRunSpecific + 1790
3 com.apple.CoreFoundation 0x94096cd8 CFRunLoopRunInMode + 88
4 com.apple.Foundation 0x960e5d75 -[NSRunLoop(NSRunLoop) runMode:beforeDate:] + 213
5 com.apple.Foundation 0x9616434d -[NSRunLoop(NSRunLoop) runUntilDate:] + 93
6 libservermgrcommon.dylib 0x0007b251 __XSCopyIGDDescriptor + 660
7 libservermgrcommon.dylib 0x0007b4ca XSUpdateIGDCache + 238
8 libservermgrcommon.dylib 0x0007b587 PortmapMaintenance + 84
9 ...rverAdmin.servermgr_network 0x0044d814 doProcessArgs + 84
10 libservermgrcommon.dylib 0x0007981e -[BundleManager doIdle] + 649
11 com.apple.Foundation 0x960e5e23 __NSFireTimer + 147
12 com.apple.CoreFoundation 0x94096b25 CFRunLoopRunSpecific + 4469
13 com.apple.CoreFoundation 0x94096cd8 CFRunLoopRunInMode + 88
14 com.apple.Foundation 0x960e5d75 -[NSRunLoop(NSRunLoop) runMode:beforeDate:] + 213
15 com.apple.Foundation 0x960f1e94 -[NSRunLoop(NSRunLoop) run] + 84
16 servermgrd 0x00005937 0x1000 + 18743
17 servermgrd 0x00002b2a 0x1000 + 6954
Thread 1:
0 libSystem.B.dylib 0x937d46f2 select$DARWIN_EXTSN + 10
1 libSystem.B.dylib 0x937b6095 pthreadstart + 321
2 libSystem.B.dylib 0x937b5f52 thread_start + 34
Thread 2:
0 libSystem.B.dylib 0x937851c6 machmsgtrap + 10
1 libSystem.B.dylib 0x9378c9bc mach_msg + 72
2 com.apple.CoreFoundation 0x940960ae CFRunLoopRunSpecific + 1790
3 com.apple.CoreFoundation 0x94096cd8 CFRunLoopRunInMode + 88
4 com.apple.Foundation 0x96114d40 +[NSURLConnection(NSURLConnectionReallyInternal) _resourceLoadLoop:] + 320
5 com.apple.Foundation 0x960b17ed -[NSThread main] + 45
6 com.apple.Foundation 0x960b1394 _NSThread__main_ + 308
7 libSystem.B.dylib 0x937b6095 pthreadstart + 321
8 libSystem.B.dylib 0x937b5f52 thread_start + 34
Thread 3:
0 libSystem.B.dylib 0x9378c3ae _semwaitsignal + 10
1 libSystem.B.dylib 0x937e1e71 sleep$UNIX2003 + 63
2 servermgrd 0x00005d4f 0x1000 + 19791
3 com.apple.Foundation 0x960b17ed -[NSThread main] + 45
4 com.apple.Foundation 0x960b1394 _NSThread__main_ + 308
5 libSystem.B.dylib 0x937b6095 pthreadstart + 321
6 libSystem.B.dylib 0x937b5f52 thread_start + 34
Thread 4:
0 libSystem.B.dylib 0x93785226 semaphoretimedwait_signaltrap + 10
1 libSystem.B.dylib 0x937b71ef pthread_condwait + 1244
2 libSystem.B.dylib 0x937b8a73 pthreadcond_timedwait_relativenp + 47
3 com.apple.Foundation 0x960f775c -[NSCondition waitUntilDate:] + 236
4 com.apple.Foundation 0x960f7570 -[NSConditionLock lockWhenCondition:beforeDate:] + 144
5 libservermgrcommon.dylib 0x00078953 -[BundleManager doBatchCommand:forUser:] + 715
6 servermgrd 0x00007b42 0x1000 + 27458
7 servermgrd 0x00006ebd 0x1000 + 24253
8 servermgrd 0x00006213 0x1000 + 21011
9 com.apple.Foundation 0x960b17ed -[NSThread main] + 45
10 com.apple.Foundation 0x960b1394 _NSThread__main_ + 308
11 libSystem.B.dylib 0x937b6095 pthreadstart + 321
12 libSystem.B.dylib 0x937b5f52 thread_start + 34
Thread 5:
0 com.apple.CoreFoundation 0x94099009 CFEqual + 25
1 com.apple.CoreFoundation 0x9409aa65 __CFSetFindBuckets2 + 293
2 com.apple.CoreFoundation 0x9409be18 CFSetAddValue + 360
3 com.apple.CoreFoundation 0x94089e71 _uniqueStringForCharacters + 417
4 com.apple.CoreFoundation 0x9408a289 getString + 825
5 com.apple.CoreFoundation 0x9408e4bb parseXMLElement + 5515
6 com.apple.CoreFoundation 0x9408f653 parseDictTag + 147
7 com.apple.CoreFoundation 0x9408dcb5 parseXMLElement + 3461
8 com.apple.CoreFoundation 0x9408d8f0 parseXMLElement + 2496
9 com.apple.CoreFoundation 0x9408eea2 _CFPropertyListCreateFromXMLData + 2402
10 com.apple.Foundation 0x96102fb2 +[NSPropertyListSerialization propertyListFromData:mutabilityOption:format:errorDescription:] + 66
11 com.apple.servermgr_dhcp 0x0024563f -[DHCPRequestHandler writeConfigurationFile] + 320
12 com.apple.servermgr_dhcp 0x002454f4 -[DHCPRequestHandler readConfigurationFile] + 3447
13 com.apple.servermgr_dhcp 0x00241f7c -[DHCPRequestHandler getStateWithRequest:] + 244
14 libservermgrcommon.dylib 0x00077414 -[PluginRequestHandler doProcessInputWithRequest:context:lockFileFD:] + 315
15 libservermgrcommon.dylib 0x000791c0 -[BundleManager doCommand:withModule:forUser:] + 905
16 libservermgrcommon.dylib 0x00078ba7 -[BundleManager doOneBatchCommand:] + 448
17 com.apple.Foundation 0x960b17ed -[NSThread main] + 45
18 com.apple.Foundation 0x960b1394 _NSThread__main_ + 308
19 libSystem.B.dylib 0x937b6095 pthreadstart + 321
20 libSystem.B.dylib 0x937b5f52 thread_start + 34
Thread 6:
0 com.apple.CoreFoundation 0x940c6e3e __CFStrConvertBytesToUnicode + 62
1 com.apple.CoreFoundation 0x940b7397 CFStringFindCharacterFromSet + 743
2 com.apple.Foundation 0x960f249c -[NSString rangeOfCharacterFromSet:options:range:] + 108
3 com.apple.Foundation 0x96135ae9 -[NSScanner scanCharactersFromSet:intoString:] + 297
4 ...e.ServerAdmin.servermgr_web 0x01dddb40 doProcessArgs + 4517
5 ...e.ServerAdmin.servermgr_web 0x01dddda4 doProcessArgs + 5129
6 ...e.ServerAdmin.servermgr_web 0x01dfaccf doProcessArgs + 123700
7 libservermgrcommon.dylib 0x000582e0 -[ConfigurationParser initWithFile:typesFile:defaultsFile:populateDefaults:] + 174
8 ...e.ServerAdmin.servermgr_web 0x01dfa0b5 doProcessArgs + 120602
9 ...e.ServerAdmin.servermgr_web 0x01dfdab7 doProcessArgs + 135452
10 ...e.ServerAdmin.servermgr_web 0x01dfd8c1 doProcessArgs + 134950
11 ...e.ServerAdmin.servermgr_web 0x01dd2edc getservicestate + 322
12 ...e.ServerAdmin.servermgr_web 0x01ddb81b doProcessInput + 560
13 ...e.ServerAdmin.servermgr_web 0x01ddccaa doProcessArgs + 783
14 libservermgrcommon.dylib 0x000791c0 -[BundleManager doCommand:withModule:forUser:] + 905
15 libservermgrcommon.dylib 0x00078ba7 -[BundleManager doOneBatchCommand:] + 448
16 com.apple.Foundation 0x960b17ed -[NSThread main] + 45
17 com.apple.Foundation 0x960b1394 _NSThread__main_ + 308
18 libSystem.B.dylib 0x937b6095 pthreadstart + 321
19 libSystem.B.dylib 0x937b5f52 thread_start + 34
Thread 7 Crashed:
0 libobjc.A.dylib 0x9512f688 objc_msgSend + 24
1 ....ServerAdmin.servermgr_info 0x0038465e 0x37d000 + 30302
2 ....ServerAdmin.servermgr_info 0x0037e431 0x37d000 + 5169
3 libservermgrcommon.dylib 0x000791c0 -[BundleManager doCommand:withModule:forUser:] + 905
4 libservermgrcommon.dylib 0x00078ba7 -[BundleManager doOneBatchCommand:] + 448
5 com.apple.Foundation 0x960b17ed -[NSThread main] + 45
6 com.apple.Foundation 0x960b1394 _NSThread__main_ + 308
7 libSystem.B.dylib 0x937b6095 pthreadstart + 321
8 libSystem.B.dylib 0x937b5f52 thread_start + 34
Thread 7 crashed with X86 Thread State (32-bit):
eax: 0x9511e861 ebx: 0x00380c61 ecx: 0x951aaa64 edx: 0xdc45895b
edi: 0x00000000 esi: 0xa016e180 ebp: 0xb06dc958 esp: 0xb06dc7f8
ss: 0x0000001f efl: 0x00010282 eip: 0x9512f688 cs: 0x00000017
ds: 0x0000001f es: 0x0000001f fs: 0x0000001f gs: 0x00000037
cr2: 0xdc45897b
Binary Images:
0x1000 - 0x10ff7 +servermgrd ??? (???) <6d1e5419c0bf1ad43ef3c5189228f0ad> /usr/sbin/servermgrd
0x51000 - 0x84ff7 libservermgrcommon.dylib ??? (???) <ee8fb2c333b268482f4fc7b7b79634fc> /usr/lib/libservermgrcommon.dylib
0xa2000 - 0xc5ff7 com.apple.frameworks.server.core 1.0 (1.0) <352102e4e062c441fd0be0d6d4bc7305> /System/Library/PrivateFrameworks/CoreServer.framework/Versions/A/CoreServer
0xd3000 - 0xe5ffd com.apple.servermgr_accounts 10.5.3 (10.5.3) /usr/share/servermgrd/bundles/servermgraccounts.bundle/Contents/MacOS/servermgraccounts
0xef000 - 0xf6fff com.apple.ServerAdmin.servermgr_afp 10.5 (2.0) <a27c4a92067e344cedd93dd2ff7b6231> /usr/share/servermgrd/bundles/servermgrafp.bundle/Contents/MacOS/servermgrafp
0x200000 - 0x20ffff com.apple.frameworks.server.foundation 1.0.2 (1.0.2) <0acc9dd1e8a8e9f694a431b609bc2225> /System/Library/PrivateFrameworks/ServerFoundation.framework/Versions/A/ServerF oundation
0x22a000 - 0x22fffd com.apple.servermgr_backup 10.5 (10.5) /usr/share/servermgrd/bundles/servermgrbackup.bundle/Contents/MacOS/servermgrbackup
0x236000 - 0x23afff com.apple.ServerAdmin.servermgr_calendar 10.5 (10.5) <389fb095464da73d3023f9136ce3be04> /usr/share/servermgrd/bundles/servermgrcalendar.bundle/Contents/MacOS/servermgrcalendar
0x241000 - 0x24affc com.apple.servermgr_dhcp 10.5.3 (10.5.3) <268b1327d65be8ef780416f8396f3f1c> /usr/share/servermgrd/bundles/servermgrdhcp.bundle/Contents/MacOS/servermgrdhcp -
Urgent! DHCP service stop, server lose its IP...
Hi all,
I have a serious problem:
My Macmini Server (late 2010) firstly suddened stop lease IPs event I restart Macmini, restart DHCP service... OK, I set clients (Mac, window) to use static IP, its work for a day and now the server even lose its IP. It is mean I can not ping to server, cannot have Internet, can not share file... just a nice, deadly box!
At home I can still use SSH to connect to that server and when I use ipconfig:
server-001:~ Xadmin$ ipconfig getifaddr en2
get if addr en2 failed, (os/kern) failure
server-001:~ Xadmin$ ipconfig getifaddr en0
10.0.0.10
server-001:~ Xadmin$ ipconfig getoption en0 2
ipconfig_get_option failed, (os/kern) failure
server-001:~ Xadmin$ ipconfig getoption en2 2
ipconfig_get_option failed, (os/kern) failure
server-001:~ Xadmin$ ipconfig getoption en2 3
ipconfig_get_option failed, (os/kern) failure
server-001:~ Xadmin$ ifconfig en2
en2: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
ether 10:9a:ad:41:c6:10
media: autoselect (none)
status: inactive
server-001:~ vidagisadmin$ ifconfig en0
en0: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
ether c4:1c:03:4a:eb:d4
inet6 fe80::c12c:1ff:fe3a:ebd4%en0 prefixlen 64 scopeid 0x8
inet 10.0.0.10 netmask 0xffffff00 broadcast 10.0.0.255
media: autoselect (100baseTX <full-duplex>)
status: active
Do you have this before?
How can I active the en2 network interface?
Any clue is very appriciate and this is very URGENT!!!!!
Thanks for your time!
Please note that:
- I use Macmini server as a gateway, and use an USBEthernet (en2) to sharering that internet connection.
- hostname appear is OK when I check it through ssh
Please help!!!Hi Esther, I use DHCP for server.
Actually I found that we have problem with the network cable only! Anyway thanks!
If this forum have a moderator I hope, please delete this discussion, thanks! -
DHCP Services migration using tool
I am trying to migrate DHCP services from NW65 to OES2 using the migration tool.
when I create the project in the tool , I am setting it up to do a Server level migration. It does not find the DHCP locator / Group Object when I browse to the context of the locator.
It was suggested to me that it might be an ldap class mapping issue. i tried to go into iManage to create an ldap class mapping for DNIP:Locator to DNIPLocator. iManager is not doing anything when I click on the + button to add the class mapping !!!!
I have had a look at the ldapmodify command to do this but it's a bit complicated.
All I want is the DHCP to move off the netware server and onto the OES server.
Please can someone help meOriginally Posted by Marcel_Cox
You have to pay attention to not mix NetWare and Linux DHCP locator and group objects. The DHCP server for OES2/Linux is not a port of the NetWare version, but a completely different piece of software that uses different types of objects in eDirectory. As such, the locator and group objects for NetWare and Linux are different objects using different classes and they have to be separate. You should never have to use class mappings or ldap tools. The Linux objects should have been created for you at the moment you configured DHCP for OES2/Linux. Let's just hope that during the OES2/Linux installation you did not point the DHCP configuration screen to the NetWare objects or else you probably will have a bit of a mess by now.
Thanks for that.. I think the DHCP service did not install coreectly on the Linux server that is why i am having problems doing the migration.
I think I will have to rebuild that server and get it all going again. -
DHCP Service errors in Publisher
We have thousand of the same DHCP Service errors below on the Publisher, but the DHCP service is disbled. Don't know if that is a bug in Window 2000. It is running on OS 2000.2.7sr8. Thanks.
Event ID: 1008 Source: Perflib
The Open Procedure for service "DHCPServer" in DLL "C:\WINNT\system32\perfctrs.dll" failed. Performance data for this service will not be available. Status code returned is data DWORD 0.Hi Binh,
Have a look at this thread from January of this year. The excellent answers from Aaron and Steven from Cisco systems address this exact problem.
http://forum.cisco.com/eforum/servlet/NetProf?page=netprof&forum=IP%20Communications%20and%20Video&topic=IP%20Telephony&CommCmd=MB%3Fcmd%3Dpass_through%26location%3Doutline%40%5E1%40%40.1dda5362/2#selected_message
Hope this helps!
Rob
Please remember to rate helpful posts..........
Maybe you are looking for
-
Several SSL-Certificates in STRUST
Hello, I'm not sure, if this is right place for my question, but I will try it. On one SAP WAS 7.0 we have two BSP-Applications. Each application uses an seperate URL, for example shopa.test.com shopb.test.com Access should be realized over two SAP w
-
Can i keep my purchased music if i restore to factory settings?
Windows XP
-
I am using (per Sun rep suggestion) IDsync 1.1 beta (testing environment). When trying to link users, I can not use "-o Sun" and -f options at the same time. The tool just reports that these are not allowed. So, essentially, I can not use Sun as the
-
Search Complaints: wrong Statuses are displayed
Hello Experts. I am working with SAP CRM 7.0 and I have an issue when it comes to searching for Complaints. When I search for all Complaints, I see statuses 'open', 'completed', etc...but I do not see my statuses 'pending', 'concluded' and 'responded
-
Dreamweaver MX 2004 crashes with one of my sites
I have been using Dreamweaver MX 2004 for a number of different websites over the past few years, but now, one new site which I have recently imported, causes DW to crash as soon as I try and open it. This is also happening on my second pc. The site