AP2600I - autonomous - intervlan issue
Hi all,
We are deploying an access point SAP2600I and we are facing a network communication issue.
2602I - software version : 15.2(2)JB
AP have a static IP address, mask and default gateway
LAN is configured properly
AP can ping and communication just in the same subnet
Intervlan communication is not working with any protocol
We have around 20 Access Point with the same behavior.
Workaround to AP2602: Upgrade to software version 15.3(3)JAB
Do you know if it is a bug ? Do you Know if have any other workaround without software upgrade ?
thanks
Hi Scott,
I tryed search any information about this issue but I not find. I just perform the upgrade and it resolved the problem.
Before upgrade, the AP can ping just layer 2
After upgrade, the AP can ping Layer3 interfaces
I would like to be if exist any bug reported, because I have around 200 Access Point in the remotes sites to be deployed.
thanks and regards,
Murilo
Similar Messages
-
Database Triggers - Autonomous Transaction Issue
Hi ,
I have a EMP table.
I wrote a AFTER ROWLEVEL Database Trigger for EMP table.
While Updating value in EMP table , my trigger is firing.
Issue:
My requirement is , I want to find the Count(1) in EMP table for the updated record.It is not including the updated record in my count.
If i execute the count(1) , outside the session , it is giving the correct value.But inside trigger i am not getting the exact count.
Can u pls help me.
Sample Coding:
While updating DEPT_CODE , the following trigger is firing.
CREATE OR REPLACE TRIGGER testing
AFTER UPDATE OF DEPT_CODE
ON EMP
REFERENCING NEW AS NEW OLD AS OLD
FOR EACH ROW
DECLARE
t_count number;
cursor c_emp
is
select count(1)
from emp
where dept_code = :NEW.DEPT_CODE;
PRAGMA AUTONOMOUS_TRANSACTION;
BEGIN
open c_emp;
fetch c_emp into t_count;
close c_emp;
dbms_output.put_line('t_count '||t_count);
END;
I got count as 5.
But if i execute the count in SQL , it is giving count as 4.
In the database trigger , it is not taking the record which was updated .why a trigger (... not even going to ask why an autonomous trigger... )
SQL> drop table t
2 /
Table dropped.
SQL>
SQL> create table t
2 as
3 select rownum id
4 from all_objects
5 where rownum <= 10
6 /
Table created.
SQL>
SQL>
SQL> var cnt_upd number
SQL>
SQL> update t
2 set id = id + 1
3 where id > 5
4 returning count(id) into :cnt_upd
5 /
5 rows updated.
SQL>
SQL> print
CNT_UPD
5
SQL> -
Convert from LAP to autonomous mode issue
I bought some after market 1242's for extended coverage in my warehouse. The current 1242's I have are all set up in autonomous mode.
When I console into the AP's I bought they are looking for a CAPWAP -Controller obviously from the previous environment. There is nothing on the AP or in the sh version showing LAP.
*Mar 1 00:46:37.102: %CAPWAP-3-ERRORLOG: Did not get log server settings from DHCP.
*Mar 1 00:46:38.104: %CAPWAP-3-ERRORLOG: Could Not resolve CISCO-CAPWAP-CONTROLLER.xxx
*Mar 1 00:46:38.106: %CAPWAP-3-ERRORLOG: Could Not resolve CISCO-LWAPP-CONTROLLER.xxx
*Mar 1 00:48:38.106: %CAPWAP-5-DHCP_RENEW: Could not discover WLC using DHCP IP. Renewing DHCP IP.
#sh version
#Version 12.4(21a)JA2
System image file is "flash:/c1240-rcvk9w8-mx/c1240-rcvk9w8-mx
I cant seem to be able to reset these to where they aren't looking for the Controller. I can login with the default username and password Cisco/Cisco but I cant do an erase. I get the privileged command prompt but cant do erase star or a config t??? Is there something I'm missing here that I need to to?
So far these commands have worked::
debug capwap console cli
debug capwap client no-reload
So can I downgrade or go back to autonomous mode or do I have to reload an IOS again? I don't have a license so my options there are limited.
Any ideas??? ThanksHI,
As pe your post:
System image file is "flash:/c1240-rcvk9w8-mx/c1240-rcvk9w8-mx
This is lightweight image. for this image you need controller.
If you want to use as autonomous AP. Then you must convert it to Autonomous mode.
Autonomous image code : k9w7
More about images:
http://rscciew.wordpress.com/2014/01/04/understand-access-point-ios-images/
Here is the procedure to convert to autonomous :
https://supportforums.cisco.com/document/57476/lwapp-autonomous-conversion-and-vice-versa-access-points
http://paulbeyer.wordpress.com/2010/01/16/converting-a-cisco-ap-from-lwapp-to-autonomous-mode/
http://www.youtube.com/watch?v=QQ_NuxdRhQ4
Regards
Dont forget to rate helpful posts -
Lan connectivity Issue on autonomous AP with throttles
Hello,
I encounter a strange problem on several AP 1242 in version 12.4(25d)JA1 of a customer :
He has 10 autonomous AP covering a factory and is using them for laptop connectivity and TOIP with mainly 7921 Cisco Wifi Phones.
The phones are configured to use only 802.11a.
The APs loose LAN connectivity randomly and therefore the clients don't work anymore.
The AP are connected on a 2960 and a 3560 wich are in turn connected on a 3750 wich route the trafic.
After checking spanning-tree no loops are present.
When I check the counters on the AP involved I see the "trhottles" and "ignored" counters incrementing on the fa0 link of the AP impacted wich mean I think it can't handle the incoming traffic. This incoming traffic seems not to be too big however. I can see drops on the switch interface connecting the AP.
There is a lot of roaming on the AP due to people walking in the factory with their wifi phones.
Here is a view of the fa0 counters :
AP1242-LOGIST#sh int fa0
FastEthernet0 is up, line protocol is up
Hardware is PowerPCElvis Ethernet, address is 001d.a1ce.26e2 (bia 001d.a1ce.26e2)
MTU 1500 bytes, BW 100000 Kbit/sec, DLY 100 usec,
reliability 255/255, txload 1/255, rxload 1/255
Encapsulation ARPA, loopback not set
Full-duplex, 100Mb/s, MII
ARP type: ARPA, ARP Timeout 04:00:00
Last input 00:00:00, output 00:00:00, output hang never
Last clearing of "show interface" counters never
Input queue: 0/160/0/0 (size/max/drops/flushes); Total output drops: 0
Queueing strategy: fifo
Output queue: 0/40 (size/max)
5 minute input rate 81000 bits/sec, 53 packets/sec
5 minute output rate 29000 bits/sec, 26 packets/sec
7447113 packets input, 674891974 bytes
Received 286839 broadcasts, 0 runts, 0 giants, 549631 throttles
0 input errors, 0 CRC, 0 frame, 0 overrun, 549631 ignored
0 watchdog
0 input packets with dribble condition detected
4422100 packets output, 609868806 bytes, 0 underruns
0 output errors, 0 collisions, 4 interface resets
1 unknown protocol drops
0 babbles, 0 late collision, 0 deferred
0 lost carrier, 0 no carrier
0 output buffer failures, 0 output buffers swapped out
Here is a small part of logs concerning roaming, i don't see errors or log indicating that something is wrong nor in the switches log :
Jun 6 12:57:27.007: %DOT11-6-ASSOC: Interface Dot11Radio1, Station SEP001E4A3EE15D 001e.4a3e.e15d Associated KEY_MGMT[WPAv2 PSK]
Jun 6 12:57:42.499: %DOT11-6-ASSOC: Interface Dot11Radio1, Station SEP588D09D3A92B 588d.09d3.a92b Reassociated KEY_MGMT[WPAv2 PSK]
Jun 6 12:58:02.620: %DOT11-6-DISASSOC: Interface Dot11Radio1, Deauthenticating Station 588d.09d3.a92b Reason: Sending station has left the BSS
Jun 6 12:58:03.653: %DOT11-6-ASSOC: Interface Dot11Radio1, Station SEP588D09D3A92B 588d.09d3.a92b Reassociated KEY_MGMT[WPAv2 PSK]
Jun 6 12:59:15.564: %DOT11-6-ROAMED: Station 588d.09d3.a92b Roamed to 001e.134c.5a50
Jun 6 12:59:15.564: %DOT11-6-DISASSOC: Interface Dot11Radio1, Deauthenticating Station 588d.09d3.a92b Reason: Sending station has left the BSS
Jun 6 12:59:41.905: %DOT11-6-DISASSOC: Interface Dot11Radio1, Deauthenticating Station 442b.0355.ab28 Reason: Previous authentication no longer valid
Jun 6 12:59:54.728: %DOT11-6-ASSOC: Interface Dot11Radio1, Station SEP442B0355AB28 442b.0355.ab28 Associated KEY_MGMT[WPAv2 PSK]
Jun 6 13:01:12.541: %DOT11-6-ASSOC: Interface Dot11Radio1, Station SEP588D09D3A92B 588d.09d3.a92b Reassociated KEY_MGMT[WPAv2 PSK]
Jun 6 13:02:35.841: %DOT11-6-DISASSOC: Interface Dot11Radio1, Deauthenticating Station 001e.4a3e.d875 Reason: Previous authentication no longer valid
Jun 6 13:02:36.489: %DOT11-6-ASSOC: Interface Dot11Radio0, Station ec85.2f7c.c837 Associated KEY_MGMT[WPAv2 PSK]
Jun 6 13:03:29.256: %DOT11-6-ROAMED: Station 588d.09d3.a92b Roamed to 001e.134c.5a50
Jun 6 13:03:29.256: %DOT11-6-DISASSOC: Interface Dot11Radio1, Deauthenticating Station 588d.09d3.a92b Reason: Sending station has left the BSS
Jun 6 13:04:32.754: %DOT11-6-ASSOC: Interface Dot11Radio1, Station SEP001E4A3ED875 001e.4a3e.d875 Associated KEY_MGMT[WPAv2 PSK]
Jun 6 13:06:47.858: %DOT11-6-DISASSOC: Interface Dot11Radio1, Deauthenticating Station 001e.4a3e.e15d Reason: Previous authentication no longer valid
Jun 6 13:07:18.107: %DOT11-6-ROAMED: Station 001f.6c7a.5101 Roamed to 001d.a2bb.15b0
Jun 6 13:07:18.107: %DOT11-6-DISASSOC: Interface Dot11Radio1, Deauthenticating Station 001f.6c7a.5101 Reason: Sending station has left the BSS
Jun 6 13:07:38.109: %DOT11-6-ASSOC: Interface Dot11Radio1, Station SEP588D09D3A92B 588d.09d3.a92b Reassociated KEY_MGMT[WPAv2 PSK]
Jun 6 13:07:42.031: %DOT11-6-ROAMED: Station 588d.09d3.a92b Roamed to 001e.134c.5a50
Jun 6 13:07:42.031: %DOT11-6-DISASSOC: Interface Dot11Radio1, Deauthenticating Station 588d.09d3.a92b Reason: Sending station has left the BSS
Jun 6 13:07:46.489: %DOT11-6-ASSOC: Interface Dot11Radio1, Station SEP001F6C7A5101 001f.6c7a.5101 Reassociated KEY_MGMT[WPAv2 PSK]
Jun 6 13:08:27.712: %DOT11-6-ASSOC: Interface Dot11Radio1, Station SEP588D09D3A92B 588d.09d3.a92b Reassociated KEY_MGMT[WPAv2 PSK]
Jun 6 13:08:44.502: %DOT11-6-DISASSOC: Interface Dot11Radio1, Deauthenticating Station 588d.09d3.a92b Reason: Sending station has left the BSS
Jun 6 13:08:44.572: %DOT11-6-ASSOC: Interface Dot11Radio1, Station SEP588D09D3A92B 588d.09d3.a92b Associated KEY_MGMT[WPAv2 PSK]
Jun 6 13:08:56.778: %DOT11-6-ROAMED: Station 588d.09d3.a92b Roamed to 001e.134c.5a50
Jun 6 13:08:56.779: %DOT11-6-DISASSOC: Interface Dot11Radio1, Deauthenticating Station 588d.09d3.a92b Reason: Sending station has left the BSS
Jun 6 13:09:17.874: %DOT11-6-ROAMED: Station 001f.6c7a.5101 Roamed to 003a.9a92.8d70
Jun 6 13:09:17.874: %DOT11-6-DISASSOC: Interface Dot11Radio1, Deauthenticating Station 001f.6c7a.5101 Reason: Sending station has left the BSS
The AP are configured as follow :
Current configuration : 5184 bytes
! No configuration change since last restart
version 12.4
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
hostname AP1242-LOGIST
logging rate-limit console 9
aaa new-model
aaa authentication login default local
aaa authorization exec default local
aaa session-id common
clock timezone gmt+1 1
clock summer-time gmt recurring last Sun Mar 2:00 last Sun Oct 3:00
dot11 syslog
dot11 vlan-name Data vlan 11
dot11 vlan-name Voix vlan 14
dot11 vlan-name Webguest vlan 5
dot11 ssid WLAN_data
vlan 11
authentication open
authentication key-management wpa
mbssid guest-mode
wpa-psk ascii 7 10600C0E261B173C252203797479633F371A29
dot11 ssid WLAN_voice
vlan 14
authentication open
authentication key-management wpa
mbssid guest-mode
wpa-psk ascii 7 080F49592A1500203B2D25567A7A7622263C0C
dot11 ssid Webguest
vlan 5
authentication open
mbssid guest-mode
dot11 wpa handshake timeout 1000
dot11 arp-cache
dot11 priority-map avvid
dot11 phone
power inline negotiation prestandard source
class-map match-all _class_voice0
match ip dscp ef
class-map match-all _class_voice1
match ip dscp cs3
policy-map voice
class _class_voice0
set cos 6
class _class_voice1
set cos 3
bridge irb
interface Dot11Radio0
no ip address
no ip route-cache
encryption vlan 11 mode ciphers aes-ccm
encryption vlan 14 mode ciphers aes-ccm
ssid WLAN_data
ssid WLAN_voice
ssid Webguest
mbssid
power client 17
channel 2472
station-role root
dot11 qos class voice local
admission-control
admit-traffic narrowband max-channel 75 roam-channel 6
dot11 qos class voice cell
admission-control
no cdp enable
infrastructure-client
interface Dot11Radio0.5
encapsulation dot1Q 5
no ip route-cache
no cdp enable
bridge-group 5
bridge-group 5 subscriber-loop-control
bridge-group 5 block-unknown-source
no bridge-group 5 source-learning
no bridge-group 5 unicast-flooding
bridge-group 5 spanning-disabled
interface Dot11Radio0.11
encapsulation dot1Q 11
no ip route-cache
no cdp enable
bridge-group 11
bridge-group 11 subscriber-loop-control
bridge-group 11 block-unknown-source
no bridge-group 11 source-learning
no bridge-group 11 unicast-flooding
bridge-group 11 spanning-disabled
interface Dot11Radio0.14
encapsulation dot1Q 14
no ip route-cache
no cdp enable
bridge-group 14
bridge-group 14 subscriber-loop-control
bridge-group 14 block-unknown-source
no bridge-group 14 source-learning
no bridge-group 14 unicast-flooding
bridge-group 14 spanning-disabled
interface Dot11Radio1
no ip address
no ip route-cache
encryption vlan 11 mode ciphers aes-ccm
encryption vlan 14 mode ciphers aes-ccm
ssid WLAN_data
ssid WLAN_voice
ssid Webguest
no dfs band block
mbssid
channel dfs
station-role root
interface Dot11Radio1.5
encapsulation dot1Q 5
no ip route-cache
no cdp enable
bridge-group 5
bridge-group 5 subscriber-loop-control
bridge-group 5 block-unknown-source
no bridge-group 5 source-learning
no bridge-group 5 unicast-flooding
bridge-group 5 spanning-disabled
interface Dot11Radio1.11
encapsulation dot1Q 11
no ip route-cache
no cdp enable
bridge-group 11
bridge-group 11 subscriber-loop-control
bridge-group 11 block-unknown-source
no bridge-group 11 source-learning
no bridge-group 11 unicast-flooding
bridge-group 11 spanning-disabled
interface Dot11Radio1.14
encapsulation dot1Q 14
no ip route-cache
no cdp enable
bridge-group 14
bridge-group 14 subscriber-loop-control
bridge-group 14 block-unknown-source
no bridge-group 14 source-learning
no bridge-group 14 unicast-flooding
bridge-group 14 spanning-disabled
interface FastEthernet0
no ip address
no ip route-cache
speed 100
full-duplex
no cdp enable
hold-queue 160 in
interface FastEthernet0.1
encapsulation dot1Q 1 native
no ip route-cache
no cdp enable
bridge-group 1
no bridge-group 1 source-learning
bridge-group 1 spanning-disabled
interface FastEthernet0.5
encapsulation dot1Q 5
no ip route-cache
no cdp enable
bridge-group 5
no bridge-group 5 source-learning
bridge-group 5 spanning-disabled
interface FastEthernet0.11
encapsulation dot1Q 11
no ip route-cache
no cdp enable
bridge-group 11
no bridge-group 11 source-learning
bridge-group 11 spanning-disabled
interface FastEthernet0.14
encapsulation dot1Q 14
no ip route-cache
no cdp enable
bridge-group 14
no bridge-group 14 source-learning
bridge-group 14 spanning-disabled
service-policy input voice
service-policy output voice
interface BVI1
ip address 10.17.10.5 255.255.255.0
no ip route-cache
ip default-gateway 10.17.10.254
ip http server
ip http authentication aaa
no ip http secure-server
ip http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag
logging trap warnings
logging 10.15.51.115
no cdp run
bridge 1 route ip
line con 0
line vty 0 4
sntp server 10.15.1.50
sntp broadcast client
end
Does someone ever experienced a similar problem ?
When I shut radio interfaces they're is no more problems on the LAN. Can this be an overlapping coverage issue ?
Can someone please give me advices on how to troubleshoot this issue ?
Thank you in advance as I'm a bit stuck.
Best Regards,Hi Scott,
Thanks for your reply.
Do you think this can be the origin of the issue my customer encounters or is it only to be standard ? As this change will have to be made on all clients, if there is a chance it solves the problem I will do it ASAP, if not I will delay it in a less busy period :-)
Can the constant roaming associations and dissasociations overload the AP and make it stop responding on the LAN or is it only a throuhput problem ?
Thanks in advance for your answer.
Best Regards, -
Trunking issue with autonomous AP
I was at a customers that wanted a new ssid configured on his 20 1252 AP's and to stand up a new one with the olds and new SSID on it. Added the vlans, trunked them down and configured the interfaces and SSID's on the existing AP's no biggie. The new AP(not really new been kicking around in a lab) is giving me some weird issues. I deleted the exisiting config from it and took one of the running configs fromm the others that are working, modified the name and ip and pasted it in. This should have worked just fine. However the trunk port on the 4507 will not come up. The radio's are up and so is the BVI, however I cannot ping to it since the trunk is down. I started looking at the config and the thing I notice is that the AP's are in vlan 2, and the native vlan is set for vlan 2 on all the working trunk ports on the switch. However the AP's do not have vlan 2 on them, and their native vlan is 1. This should not work! I always thought the native had to match on both sides?? In any case I am probably missing something stupid, I have been up since 4am it was a 4 hour drive to get here. Oh and I have to go back and make firewall changes at midnight. Here is the relavent configs please let me know if its something stupid I usually do a lot of controller based installs havnet done a autonomous one in years. Thanks!
Here is a port on the switch
interface GigabitEthernet3/9
description AP 1 - SMT
switchport access vlan 2
switchport trunk native vlan 2
switchport trunk allowed vlan 2,9,15
switchport mode trunk
end
Here is the AP hanging off that works fine
cstwap01#sh vlans
Virtual LAN ID: 1 (IEEE 802.1Q Encapsulation)
vLAN Trunk Interfaces: Dot11Radio0
Dot11Radio1
GigabitEthernet0
This is configured as native Vlan for the following interface(s) :
Dot11Radio0
Dot11Radio1
GigabitEthernet0
show run on the AP
dot11 mbssid
dot11 vlan-name VoIPVLan vlan 9
dot11 vlan-name Wireless-101-Legacy vlan 15
dot11 ssid 101
vlan 15
authentication open
mbssid guest-mode
dot11 ssid VoIPVLan
vlan 9
authentication open
mbssid guest-mod
bridge irb
interface Dot11Radio0
no ip address
no ip route-cache
ssid 101
ssid VoIPVLan
interface Dot11Radio0.9
encapsulation dot1Q 9
no ip route-cache
bridge-group 9
bridge-group 9 subscriber-loop-control
bridge-group 9 block-unknown-source
no bridge-group 9 source-learning
no bridge-group 9 unicast-flooding
bridge-group 9 spanning-disabled
interface Dot11Radio0.15
encapsulation dot1Q 15
no ip route-cache
bridge-group 15
bridge-group 15 subscriber-loop-control
bridge-group 15 block-unknown-source
no bridge-group 15 source-learning
no bridge-group 15 unicast-flooding
bridge-group 15 spanning-disabled
interface GigabitEthernet0
no ip address
no ip route-cache
duplex auto
speed auto
bridge-group 1
no bridge-group 1 source-learning
bridge-group 1 spanning-disabled
interface GigabitEthernet0.9
encapsulation dot1Q 9
no ip route-cache
bridge-group 9
no bridge-group 9 source-learning
bridge-group 9 spanning-disabled
interface GigabitEthernet0.15
encapsulation dot1Q 15
no ip route-cache
bridge-group 15
no bridge-group 15 source-learning
bridge-group 15 spanning-disabled
interface BVI1
ip address 10.190.2.51 255.255.255.0
no ip route-cache
ip default-gateway 10.190.2.1Hello Mike,
actually, native VLAN doesn't have to match on two sides of a trunk, in fact it's quite common with autonomous APs. Your BVI1 is usually tied to a native VLAN 1, but switch port native VLAN is usually configured for whatever VLAN you want AP's management IP to belong to, in your case VLAN 2.
When you connect two catalyst switches together with a trunk that has different native VLAN configured on two sides, you will keep getting logging messages warning you about it. It's not recommended, but some scenarios require such setup.
Something else is wrong, maybe a physical issue. When you say the trunk is down, do you mean the interface is down ? Can you paste config of bad switch port and bad AP?
Regards,
Roman -
Issues with Clients moving from Autonomous to LWAPP
I have a fairly large wireless rollout of access points at my hospital's main campus and then I have 41 remote sites that have approximately 3 to 10 access points at each location.
My problem is this, I just converted one site from 9 autonomous access point over to LWAPP. The site has a 10 meg metro Ethernet connection so I know its not the link back to me. We have 26 Motion Tablets with Atheros wireless clients at that location that utilize a Citrix application called Logician. We have been having some issues with the Motion tablets holding the Citrix connection, but once we converted this site, those clients have really been having issues.
There is a high density of access points so coverage is not an issue, but I didn't know if anyone else out there may have a similar scenario and could lend some advise as to why the LWAPP causes so many issues.
Thanks in advance.Hi. LWAPP itself should not cause service to be worse; because of the dynamic nature of its settings, it should actually improve connectivity.
Do these wireless clients have access to any services (e.g. internet) that do not require use of Citrix? If so, how is the performance there? If you're getting consistent, reasonably quick internet access, but your Citrix session keeps failing; it may not be a WLAN issue per se.
I have done several implementations of Citrix over WLAN for hospitals. Most of the time if there are connection interruptions, it boils down to one of two problems.
1.) Interference: Hospitals are very hostile environments for RF. Various building materials, large machinery, and irregular shapes in the floorplan make it difficult for RF to travel consistently.
2.) Citrix settings: Citrix is a highly configurable application. There are session timeout settings which can be tweaked which may make the system more tolerant to momentary lapses in connectivity.
My suggestion would be to see if the issue is limited to Citrix traffic only; and if it is, look at how Citrix is configured. If you're finding sub-par performance with all wireless traffic, then maybe it's an interference issue that keeps knocking you off the WLAN. If that is the case, I would suggest a professional wireless consultant should come in and decide on the best methods for giving you more consistent service.
Hope this helps! If so, please rate. -
1532 Autonomous Outdoor link DFS and vlans issue
Hi all,
I have a fresh installation of a Point to Point (1km distance) link using autonomous Aps 1532 and directional antennas 14dbi.
The regulatory domain is Europe and the only usable channels are 100 104 108 112 116 132 136 140 (DFS channels).
The link is near military area and DFS is triggered very often which causes frequent disconnections near every minute.
From the logs i see that there is no available channel:
%DOT11-6-DFS_TRIGGERED: DFS: triggered on frequency 5540 MHz
%DOT11-2-NO_CHAN_AVAIL_NON_OCCP: Interface Dot11Radio1, no channel available.
So if all channels are occupied by the radars why carrier busy test does show anything?
ROOT#dot11 dot11Radio 1 carr bu
Frequency Carrier Busy %
5500 0
5520 0
5540 0
5560 0
5580 0
5660 0
5680 0
5700 0
The second issue is regarding vlans.
3 Vlans: Data vlan 1 ,Voice vlan 2 , Management vlan 100 (native vlan for bridging).
After rebooting the non-root bridge data vlan 1 doesn't works even though management and voice are ok.
The workaround i found is to manually change the bridge group to different number.
After the change connectivity is comes back... (maybe bug???)
interface Dot11Radio1.2
encapsulation dot1Q 2
bridge-group 2
bridge-group 2 spanning-disabled
interface Dot11Radio1.4
encapsulation dot1Q 1
bridge-group 4
bridge-group 4 spanning-disabled
interface Dot11Radio1.100
encapsulation dot1Q 100 native
bridge-group 1
bridge-group 1 spanning-disabled
Any thoughts?
Best regards,
Christos.Below is the output from one of my APs in the -E regulatory domain:
Carrier Set: ETSI (OFDM) (EU) (-E)
Uniform Spreading Required: Yes
Configured Frequency: 0 MHz Channel 0
Allowed Frequencies: 5180(36) 5200(40) 5220(44) 5240(48) 5260(52) 5280(56) 5300(60) 5320(64) 5500(100) 5520(104) 5540(108) 5560(112) 5580(116) 5660(132) 5680(136) 5700(140)
Listen Frequencies: 5180(36) 5200(40) 5220(44) 5240(48) 5260(52) 5280(56) 5300(60) 5320(64) 5500(100) 5520(104) 5540(108) 5560(112) 5580(116) 5660(132) 5680(136) 5700(140) 5745(149) 5765(153) 5785(157) 5805(161) 5825(165)
It seems to be a limitation of the 1530 series:
http://www.cisco.com/c/en/us/products/collateral/wireless/aironet-1530-series/data_sheet_c78-728356.html
Frequency Band and 20-MHz Operating Channels
-E Domain:
● 2.401 to 2.4835 GHz; 13 channels
● 5.470 to 5.725 GHz; 8 channels
Regarding your issue with vlan 1, I can't see anything wrong in your configuration. This could indeed be a bug. I made a little research in the bug tool, but couldn't find anything related.
However, you should check the following before opening a case with the TAC:
check the logs from the AP immediately after a reboot
check your switch port status on each side
Is the bridge setting a loop in your network? I have worked on architectures with redundant wireless bridge uplinks using STP. A STP blocked port for vlan 1 could be a lead in that case.
Moreover, in your configuration, I can't see the usual bridge-group configuration under your subinterfaces. Not sure if this is of any use here as you have a 1532 AP, but I would try to add it for each subinterface:
interface GigabitEthernet0.100
encapsulation dot1Q 100 native
no ip route-cache
bridge-group 1
no bridge-group 1 source-learning
bridge-group 1 spanning-disabled
interface Dot11Radio0.100
encapsulation dot1Q 100 native
no ip route-cache
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
bridge-group 1 spanning-disabled -
Cisco Aironet 1200 LAP Issues - LAP to Autonomous Mode
Greetings! After purchasing 4 of the Cisco Aironet 1200 G Series WAPs, I'm now running into a slight issue with them.
I received these last week with the understanding that if I didn't have the Cisco controller device, I could convert them from being the Lightweight Access Point, back to Autonomous mode with an IOS.
With this, I checked the documentation that came with the device and found the "Upgrading Autonomous Cisco Aironet Access Points to Lightweight Mode" or http://forum.cisco.com/eforum/servlet/NetProf?page=netprof&forum=Wireless%20-%20Mobility&topic=Getting%20Started%20with%20Wireless&needs_authentication=yes&CommCmd=MB%3Fcmd%3Dadd_discussion%26mode%3Dshow%26needs_authentication%3Dyes%26location%3D.ee7c7c3.
From there, I followed the instructions listed under Converting a Lightweight Access Point Back to Autonomous Mode. Before the rename of the file, I checked the device and found AIR-LAP1242G-A-K9 for the Model No.
One of the Cisco Certified admins here was able to obtain the latest build for the IOS for the device or c1240-k9w7-tar.123-8.JEB1.tar. Per the instructions, I renamed the file to coincide with the model of the device.
I followed the instructions from there, and it looked as if everything was going well. However, after the upgrade, I'm running into an issue with the following:
File "flash:/c1200-k9w7-mx.123-8.JEB1/c1200-k9w7-mx.123-8.JEB1" uncompressed and installed, entry point: 0x3000
executing...
At this point, the device just locks up. All lights are lit green on the device. According do the documentation, it should reboot and from there, I should be able to access the web interface by IP.
I've tried to perform the upgrade again using the same IOS build, but the same thing happens with the lock up.
At this point, I'm assuming the issue is with the build of the IOS that I have and I may have to look at getting an older build. However, before doing so, I thought I would post something here to see if anyone had an idea.
I may have needed to refine my searching of the forums, but wasn't able to find anything in relation to my issue. If there is something out there, I do apologize for the post and will happily refer to any current information.
If you need any further information in relation to this, please let me know. Any assistance is greatly appreciated. Thank you!Hi Jeffrey,
Reverting the Access Point Back to Autonomous Mode
Have a look at Step 3
http://www.cisco.com/en/US/products/hw/wireless/ps430/prod_technical_reference09186a00804fc3dc.html#wp161272
You can convert an access point from lightweight mode back to autonomous mode by loading a Cisco IOS Release that supports autonomous mode (Cisco IOS release 12.3(7)JA or earlier). If the access point is associated to a controller, you can use the controller to load the Cisco IOS release. If the access point is not associated to a controller, you can load the Cisco IOS release using TFTP.
Using a TFTP Server to Return to a Previous Release
Follow these steps to revert from LWAPP mode to autonomous mode by loading a Cisco IOS release using a TFTP server:
Step 1 The static IP address of the PC on which your TFTP server software runs should be between 10.0.0.2 and 10.0.0.30.
Step 2 Make sure that the PC contains the access point image file (such as c1200-k9w7-tar.122-15.JA.tar for a 1200 series access point) in the TFTP server folder and that the TFTP server is activated.
Step 3 Rename the access point image file in the TFTP server folder to c1200-k9w7-tar.default for a 1200 series access point, c1130-k9w7-tar.default for an 1130 series access point, and c1240-k9w7-tar.default for a 1240 series access point.
Step 4 Connect the PC to the access point using a Category 5 (CAT5) Ethernet cable.
Step 5 Disconnect power from the access point.
Step 6 Press and hold MODE while you reconnect power to the access point.
Step 7 Hold the MODE button until the status LED turns red (approximately 20 to 30 seconds) and then release.
Step 8 Wait until the access point reboots, as indicated by all LEDs turning green followed by the Status LED blinking green.
Step 9 After the access point reboots, reconfigure it using the GUI or the CLI.
From this doc;
http://www.cisco.com/en/US/products/hw/wireless/ps430/prod_technical_reference09186a00804fc3dc.html#wp161272
Hope this helps!
Rob -
2602i lightweight to autonomous issue
I currently have a 2602i access point that I need to load autonomous image ap3g2-k9w7-tar.153-3.JAA.tar on to, with no WLC. I have already tried the steps from the following links...
http://www.cisco.com/c/en/us/td/docs/wireless/access_point/conversion/lwapp/upgrade/guide/lwapnote.html#wp160918
https://www.youtube.com/watch?v=QQ_NuxdRhQ4
https://supportforums.cisco.com/discussion/11875096/convert-2602i-lightweight-autonomous
Each time I have tried I am hooking my laptop running tftpd32 to the Ethernet interface on the AP. I have been using 10.0.0.5/24 and/or /27 as the IP for my laptop/tftp server. When doing the steps that say assign an address to g0 I have tried both 10.0.0.1 and 10.0.0.2/24 or /27.
I am at a loss and hoping that there is an answer out there that is specific to the 2602i that I have not found yet. Each time I go through any of the steps the connection to the tftp server times out. I have adjusted the time out setting in tftpd to 30, 45 and 100 seconds.
Thank you in advance
-DaveAn other way to get the correct image on the AP is to do it from rommon.
0. Configure IPv4 address "192.168.1.1" on your desktop / notebook LAN interface, connect the console and verify that no firewall is blocking the incoming tftp connections
1. Send the "break" signal on the console when the AP is booting so you are getting into rommon
2. Configure a static IPv4 address on the AP
ap: set IP_ADDR 192.168.1.2
3. Enable the ethernet interface on the AP
ap: ether_init
4. Start the tftp engine
ap: tftp_init
5. Download and extract the new .tar software
ap: tar -xtract tftp://192.168.1.1/ap3g2-k9wx-tar.xxxx.tar flash:
6. Set the new IOS image as boot image
ap: set BOOT flash:/ap3g2-k9w7-mx.152-2.JA/ap3g2-k9wx-xxxx.JA
7. Let the AP boot
ap: boot
That should do the trick :) -
Cisco 6500 switch does the intervlan routing. MS Windows Server 2003 is the DHCP server for all subnets and works just fine handing out addresses to normal DHCP clients. IP helper address on vlan interfaces point to the W2K3 server. We can ping the OSX server from all subnets. The problem is that we can only image clients when they are in the same vlan as the OSX server. I've seen several other posts, but no resolution other than calling Apple support.
Do we need to add anything else other than the ip helper address on the vlan interfaces of the 6500? Or does something need to change on the OSX server?
Thanks!
KevinIf someone has put another DHCP server out on your network it can (and will) intercept the packets returned from the client, thus convincing the server that the client did not respond to its offer of service.
If you can get the server and client on a closed network, this is easy enough to rule out.
Another thing you can do is to completely tear down and reset the NetBoot server. Stop AFP, NFS, and NetBoot, and restart them. Sometimes, if something is stuck on the server, this will reset it. -
Intervlan Routing Issues - Cannot Ping
I'm at a loss here folks and really need some help.
Looking for some obvious things I may be overseeing? Here is the situation quite simply. Turning up a new site in Mexico to connect to our network. They have their own carrier, modem, and we use one switch and a Sonicwall TZ215 with vpn tunnel. I configured it all in the US here and shipped it down there with a console cable. Now I'm finishing up some additional config. I'll post the config below.
Physical Layout:
Sonicwall XO --> Port 24 on Cisco 2960-X
Avaya IP Appliance --> Port 22 on Cisco 2960-X
Test Laptop --> Port 2 on Cisco 2960-X
I had them down there plug in the Avaya (10.30.21.253) to port 22 because I need to access it and check its config. The problem is, I can ping that IP from the switch itself, but from my laptop I can't ping it. Nor can I ping it over the WAN here in the US. The screwed up part is I can ping that gateway fine from any node on the network (10.30.21.254). I can also ping any of the vlan gateways ending in .245 on the switch. The tunnel networks work fine.
Now..if I put my laptop on vlan 121, I can ping the avaya appliance just fine. On the vlan111 network, I cannot. IP routing is enabled. I've also got the correct return route configured on the sonicwall (if that matters in this test scenario)
version 15.0
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
hostname SWMEXICO
boot-start-marker
boot-end-marker
enable secret 5
no aaa new-model
clock timezone UTC -6 0
clock summer-time UTC recurring
switch 1 provision ws-c2960x-24ps-l
ip routing
ip dhcp excluded-address 10.30.11.1 10.30.11.10
ip dhcp excluded-address 10.30.21.250 10.30.21.253
ip dhcp pool PC's
network 10.30.11.0 255.255.255.0
default-router 10.30.11.254
dns-server 200.33.148.202 200.33.148.196
lease 6
ip dhcp pool Phones
network 10.30.21.0 255.255.255.0
default-router 10.30.21.254
option 176 ascii "mcipadd=10.30.21.253,mcport=1719,tftpsrvr=10.30.21.253"
lease 6
vtp mode transparent
crypto pki trustpoint TP-self-signed-768520448
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-768520448
revocation-check none
rsakeypair TP-self-signed-768520448
crypto pki certificate chain TP-self-signed-768520448
certificate self-signed 01
30820229 30820192 A0030201 02020101 300D0609 2A864886 F70D0101 05050030
30312E30 2C060355 04031325 494F532D 53656C66 2D536967 6E65642D 43657274
69666963 6174652D 37363835 32303434 38301E17 0D313530 32303330 39303833
315A170D 32303031 30313030 30303030 5A303031 2E302C06 03550403 1325494F
532D5365 6C662D53 69676E65 642D4365 72746966 69636174 652D3736 38353230
34343830 819F300D 06092A86 4886F70D 01010105 0003818D 00308189 02818100
BBC0766E B4096302 C78534E0 B696E915 E16F419D 87089157 FD46E78D A024F11A
4B1F887B AB5907A7 36E924C2 D82B0992 0FE5E50D F924CBE3 00CC022C 5FB171BF
44333CD4 294CB9B6 CB817BAF 96319C2D F39A0862 587B2D93 D0FE1164 803AEBA5
E6272B11 205E7B9B 4966617F D3C85B85 1AE6A4B8 5F4AB109 EE588E95 D1F9838B
02030100 01A35330 51300F06 03551D13 0101FF04 05300301 01FF301F 0603551D
23041830 1680141A 266167F1 91A7542E 44F9E2C8 EE876903 9EAB1330 1D060355
1D0E0416 04141A26 6167F191 A7542E44 F9E2C8EE 8769039E AB13300D 06092A86
4886F70D 01010505 00038181 00B1B665 621AD0DA D837ED5F 95B58666 3FBF57F9
FFE660DE 3CD3332B 666B3445 1657898A E733D56F 18A93549 73F4CFD4 B6EA6A0C
E89EF404 4BDA652D 103DFA54 527A31A8 0DC44B59 1E3F61EA 55912C4C ECB24619
BD56A7EA 97A82939 7CFA329A BD72CA6B 1865DE28 FD511C8D 57574351 F53772B7
8B3A39DF 4A5690A1 DCAEA37B AF
quit
spanning-tree mode pvst
spanning-tree extend system-id
vlan internal allocation policy ascending
vlan 30
name Servers
vlan 99
name Sonicwall
vlan 101
name Management
vlan 111
name PC's
vlan 121
name Phones
vlan 145
name Printers
interface FastEthernet0
no ip address
no ip route-cache
interface GigabitEthernet1/0/1
switchport access vlan 111
switchport mode access
switchport voice vlan 121
spanning-tree portfast
interface GigabitEthernet1/0/2
switchport access vlan 111
switchport mode access
switchport voice vlan 121
spanning-tree portfast
interface GigabitEthernet1/0/3
switchport access vlan 111
switchport mode access
switchport voice vlan 121
spanning-tree portfast
interface GigabitEthernet1/0/4
switchport access vlan 111
switchport mode access
switchport voice vlan 121
spanning-tree portfast
interface GigabitEthernet1/0/5
switchport access vlan 111
switchport mode access
switchport voice vlan 121
spanning-tree portfast
interface GigabitEthernet1/0/6
switchport access vlan 111
switchport mode access
switchport voice vlan 121
spanning-tree portfast
interface GigabitEthernet1/0/7
switchport access vlan 111
switchport mode access
switchport voice vlan 121
spanning-tree portfast
interface GigabitEthernet1/0/8
switchport access vlan 111
switchport mode access
switchport voice vlan 121
spanning-tree portfast
interface GigabitEthernet1/0/9
switchport access vlan 111
switchport mode access
switchport voice vlan 121
spanning-tree portfast
interface GigabitEthernet1/0/10
switchport access vlan 111
switchport mode access
switchport voice vlan 121
spanning-tree portfast
interface GigabitEthernet1/0/11
switchport access vlan 111
switchport mode access
switchport voice vlan 121
spanning-tree portfast
interface GigabitEthernet1/0/12
switchport access vlan 111
switchport mode access
switchport voice vlan 121
spanning-tree portfast
interface GigabitEthernet1/0/13
switchport access vlan 111
switchport mode access
switchport voice vlan 121
spanning-tree portfast
interface GigabitEthernet1/0/14
switchport access vlan 111
switchport mode access
switchport voice vlan 121
spanning-tree portfast
interface GigabitEthernet1/0/15
switchport access vlan 111
switchport mode access
switchport voice vlan 121
spanning-tree portfast
interface GigabitEthernet1/0/16
switchport access vlan 111
switchport mode access
switchport voice vlan 121
spanning-tree portfast
interface GigabitEthernet1/0/17
switchport access vlan 111
switchport mode access
switchport voice vlan 121
spanning-tree portfast
interface GigabitEthernet1/0/18
switchport access vlan 111
switchport mode access
switchport voice vlan 121
spanning-tree portfast
interface GigabitEthernet1/0/19
switchport access vlan 111
switchport mode access
switchport voice vlan 121
spanning-tree portfast
interface GigabitEthernet1/0/20
switchport access vlan 111
switchport mode access
switchport voice vlan 121
spanning-tree portfast
interface GigabitEthernet1/0/21
switchport access vlan 111
switchport mode access
switchport voice vlan 121
spanning-tree portfast
interface GigabitEthernet1/0/22
description Avaya IP04
switchport access vlan 121
spanning-tree portfast
interface GigabitEthernet1/0/23
description Server
switchport access vlan 30
switchport mode access
spanning-tree portfast
interface GigabitEthernet1/0/24
description Link to Sonicwall
switchport trunk native vlan 99
switchport trunk allowed vlan 30,99,101,111,121,145
switchport mode trunk
interface GigabitEthernet1/0/25
interface GigabitEthernet1/0/26
interface GigabitEthernet1/0/27
interface GigabitEthernet1/0/28
interface Vlan1
no ip address
shutdown
interface Vlan30
description Servers
ip address 10.30.0.254 255.255.255.0
interface Vlan99
description Sonicwall
ip address 10.30.99.253 255.255.255.0
interface Vlan101
description Management
ip address 10.30.1.254 255.255.255.0
interface Vlan111
description PC's
ip address 10.30.11.254 255.255.255.0
interface Vlan121
description Phones
ip address 10.30.21.254 255.255.255.0
interface Vlan145
description Printers
ip address 10.30.45.254 255.255.255.0
ip http server
ip http secure-server
ip route 0.0.0.0 0.0.0.0 10.30.99.254
*********************************************************^C
line con 0
line vty 0 4
password
login
line vty 5 15
login
end
SWMEXICO#
Also, on the side, when I ping from a host for example, how does the traffic go..does it goto the sonicwall first because of the ip route statement, then the sonicwall returns the traffic back to the switch and the ping traffic to the host? Or does local traffic not even traverse the sonicwallHey Jon,
Here is the sh int vlan121 that you asked about.
SWME01#sh ip interface vlan 121
Vlan121 is up, line protocol is up
Internet address is 10.30.21.254/24
Broadcast address is 255.255.255.255
Address determined by non-volatile memory
MTU is 1500 bytes
Helper address is not set
Directed broadcast forwarding is disabled
Outgoing access list is not set
Inbound access list is not set
Proxy ARP is enabled
Local Proxy ARP is disabled
Security level is default
Split horizon is enabled
ICMP redirects are always sent
ICMP unreachables are always sent
ICMP mask replies are never sent
IP fast switching is enabled
IP Flow switching is disabled
IP CEF switching is enabled
IP CEF switching turbo vector
IP Null turbo vector
IP multicast fast switching is disabled
IP multicast distributed fast switching is disabled
IP route-cache flags are Fast, CEF
Router Discovery is disabled
IP output packet accounting is disabled
IP access violation accounting is disabled
TCP/IP header compression is disabled
RTP/IP header compression is disabled
Probe proxy name replies are disabled
Policy routing is disabled
Network address translation is disabled
BGP Policy Mapping is disabled
Input features: MCI Check
Output features: Input interface drop, Check hwidb
SWME01# -
6509 issues - intervlan switch management
Okay, so we did a recovery on our 6509 last night which appeared to go well. I currently have 10 vlans on the 6509 all with seperate dist switches on each subnet...Now traffic across all subnets work fine except I no longer seem to be able to access my switch IPs anymore. Unless I am local to that subnet.
We did reboot the 6509 several times but none of the subnet switches were touched.
I tested one switch by rebooting and it appeared to fix the problem. Possible Arp cache problem ? Any thoughts ? I can reboot them all tonight but would like to know the cause..From the active MSFC I can ping all switch IPs, but not from the 6509 switch console.Each floor is a Vlan which has a 3548 on it. The 3548 is trunked back to the 6509 via fiber and yes the uplink ports on the 6509 are trunked (isl).
The management IP of each 3548 is in the local subnet of the floor vlan..Ex.10.1.3.0 /24 is vlan 3 and the switch IP is 10.1.3.2. The trunk links back to the 6509 are working fine as all users per floor have connectivity out of their vlan. So each 3548 appears to be switching fine.
Thanks
Dave -
AP 1130 (Autonomous) is converted in to LWAP and it has go the recovery image of âc1130-rcvk9w8-tar.123-7JXâ
We tried to associate with WLC in L3 mode by enabling DHCL option 43, LAP is initially getting associated with WLC and downloading the latest software from WLC after that it's getting disconnected from the WLCVerify the time is set correctly on the wlc. Also, post the log when you are consoled into the ap, so we can see the error, unless the time setting fixes your issues. Check the country code on both the wlc and ap also.
-
Having an issue adding network to eigrp
I'm doing a class project using a network simulator and am asked to: Design and implement an network for company RoutersCourseMatters. The names of the department names at this company are Faculty, Staff, and Students. For security reasons, each department must be isolated from each other's broadcast domain on the network. The Faculty have 50 end devices that need to be connected to the network. Staff has 26 end devices and the Students have 100 end devices. The network spaced provided by the ISP is 192.168.0.0/24. The dynamic protocol used for this network must be for Cisco-only equipment. Test each department network with just one end device and ensure full connectivity across the entire network
So we have our network topology setup for the class project(see picture attached). We are using one router for faculty+staff. Faculty has ip/mask of 192.168.0.1/26 and staff is: 192.168.0.65/27. we have a seperate router for students which the IP subnet for students is 192.168.0.150/25. The routers are directly connected and are using ips 192.168.0.98/29 & 192.168.0.100/29 so since the two routers are directly connected on the same subnet they have no issue pinging each other. The problem is pinging hosts from a subnet to hosts on a different subnet. When I try and add ANY 192.168.0.* subnet to eigrp it instead adds 192.168.16.* network. For instance on the faculty/student router if i do a 'router eigrp 1' command followed by 'network 192.168.0.0 0.0.0.63' it shows network 192.168.16.0 has been added to eigrp under show run. here is show run command:
faculty/staff Con0 is now available
Press RETURN to get started!
faculty/staff>en
faculty/staff#show run
Building configuration...
Current configuration : 874 bytes
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
hostname faculty/staff
boot-start-marker
boot-end-marker
no aaa new-model
ip cef
ip subnet-zero
interface FastEthernet0/0
description blank
ip address 192.168.0.65 255.255.255.224
no ip directed-broadcast
interface FastEthernet0/1
description link to switch
ip address 192.168.0.1 255.255.255.192
no ip directed-broadcast
interface Serial0/0/0
ip address 192.168.20.2 255.255.255.0
no ip directed-broadcast
clockrate 2000000
interface Serial0/0/1
no ip address
no ip directed-broadcast
shutdown
clockrate 2000000
interface Serial0/1/0
no ip address
no ip directed-broadcast
shutdown
clockrate 2000000
interface Serial0/1/1
ip address 192.168.0.98 255.255.255.248
no ip directed-broadcast
router eigrp 1
network 0.0.0.0
network 192.168.1.1 0.0.0.0
network 192.168.16.0
network 192.168.20.0
no auto-summary
ip classless
no ip http server
no ip http secure-server
control-plane
line con 0
line aux 0
line vty 0 4
login
line vty 5 1180
login
scheduler allocate 20000 1000
end
faculty/staff#config t
Enter configuration commands, one per line. End with CNTL/Z
faculty/staff(config)#router eigrp 1
faculty/staff(config-router)#network 192.168.0.0 0.0.0.63
faculty/staff(config-router)#exit
faculty/staff(config)#exit
faculty/staff#show run
Building configuration...
Current configuration : 874 bytes
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
hostname faculty/staff
boot-start-marker
boot-end-marker
no aaa new-model
ip cef
ip subnet-zero
interface FastEthernet0/0
description blank
ip address 192.168.0.65 255.255.255.224
no ip directed-broadcast
interface FastEthernet0/1
description link to switch
ip address 192.168.0.1 255.255.255.192
no ip directed-broadcast
interface Serial0/0/0
ip address 192.168.20.2 255.255.255.0
no ip directed-broadcast
clockrate 2000000
interface Serial0/0/1
no ip address
no ip directed-broadcast
shutdown
clockrate 2000000
interface Serial0/1/0
no ip address
no ip directed-broadcast
shutdown
clockrate 2000000
interface Serial0/1/1
ip address 192.168.0.98 255.255.255.248
no ip directed-broadcast
router eigrp 1
network 0.0.0.0
network 192.168.1.1 0.0.0.0
network 192.168.16.0
network 192.168.20.0
no auto-summary
ip classless
no ip http server
no ip http secure-server
--More--
project.jpg
Reply Reply to Main Discussion
Cody Robinson
Cody Robinson
2:36pm
Here is 'show ip eigrp topology' on staff/faculty router:
faculty/staff Con0 is now available
Press RETURN to get started!
faculty/staff>en
faculty/staff#show ip interface
FastEthernet0/0 is up, line protocol is up
Internet address is 192.168.0.65/27
Broadcast address is 255.255.255.255
Address determined by setup command
MTU is 1514 bytes
Helper address is not set
Directed broadcast forwarding is disabled
Outgoing access list is not set
Inbound access list is not set
Proxy ARP is enabled
Local Proxy ARP is disabled
Security level is default
Split horizon is disabled
ICMP redirects are always sent
ICMP unreachables are always sent
ICMP mask replies are never sent
IP fast switching is enabled
IP fast switching on the same interface is enabled
IP Flow switching is disabled
IP CEF switching is enabled
IP CEF Fast switching turbo vector
IP multicast fast switching is enabled
IP multicast distributed fast switching is disabled
IP route-cache flags are Fast, CEF
Router Discovery is disabled
IP output packet accounting is disabled
IP access violation accounting is disabled
TCP/IP header compression is disabled
RTP/IP header compression is disabled
Policy routing is disabled
Network address translation is disabled
BGP Policy Mapping is disabled
WCCP Redirect outbound is disabled
WCCP Redirect inbound is disabled
WCCP Redirect exclude is disabled
FastEthernet0/1 is up, line protocol is up
Internet address is 192.168.0.1/26
Broadcast address is 255.255.255.255
Address determined by setup command
MTU is 1514 bytes
Helper address is not set
Directed broadcast forwarding is disabled
Outgoing access list is not set
Inbound access list is not set
Proxy ARP is enabled
Local Proxy ARP is disabled
Security level is default
Split horizon is disabled
ICMP redirects are always sent
ICMP unreachables are always sent
ICMP mask replies are never sent
IP fast switching is enabled
IP fast switching on the same interface is enabled
IP Flow switching is disabled
IP CEF switching is enabled
IP CEF Fast switching turbo vector
IP multicast fast switching is enabled
IP multicast distributed fast switching is disabled
IP route-cache flags are Fast, CEF
Router Discovery is disabled
IP output packet accounting is disabled
IP access violation accounting is disabled
TCP/IP header compression is disabled
RTP/IP header compression is disabled
Policy routing is disabled
Network address translation is disabled
BGP Policy Mapping is disabled
WCCP Redirect outbound is disabled
WCCP Redirect inbound is disabled
WCCP Redirect exclude is disabled
Serial0/0/0 is down, line protocol is down
Internet address is 192.168.20.2/24
Broadcast address is 255.255.255.255
Address determined by setup command
MTU is 1514 bytes
Helper address is not set
Directed broadcast forwarding is disabled
Outgoing access list is not set
Inbound access list is not set
Proxy ARP is enabled
Local Proxy ARP is disabled
Security level is default
Split horizon is disabled
ICMP redirects are always sent
ICMP unreachables are always sent
ICMP mask replies are never sent
IP fast switching is enabled
IP fast switching on the same interface is enabled
IP Flow switching is disabled
IP CEF switching is enabled
IP CEF Fast switching turbo vector
IP multicast fast switching is enabled
IP multicast distributed fast switching is disabled
IP route-cache flags are Fast, CEF
Router Discovery is disabled
IP output packet accounting is disabled
IP access violation accounting is disabled
TCP/IP header compression is disabled
RTP/IP header compression is disabled
Policy routing is disabled
Network address translation is disabled
BGP Policy Mapping is disabled
WCCP Redirect outbound is disabled
WCCP Redirect inbound is disabled
WCCP Redirect exclude is disabled
Serial0/0/1 is administratively down, line protocol is down
Internet protocol processing disabled
Serial0/1/0 is administratively down, line protocol is down
Internet protocol processing disabled
Serial0/1/1 is up, line protocol is up
Internet address is 192.168.0.98/29
Broadcast address is 255.255.255.255
Address determined by setup command
MTU is 1514 bytes
Helper address is not set
Directed broadcast forwarding is disabled
Outgoing access list is not set
Inbound access list is not set
Proxy ARP is enabled
Local Proxy ARP is disabled
Security level is default
Split horizon is disabled
ICMP redirects are always sent
ICMP unreachables are always sent
ICMP mask replies are never sent
IP fast switching is enabled
IP fast switching on the same interface is enabled
IP Flow switching is disabled
IP CEF switching is enabled
IP CEF Fast switching turbo vector
IP multicast fast switching is enabled
IP multicast distributed fast switching is disabled
IP route-cache flags are Fast, CEF
Router Discovery is disabled
IP output packet accounting is disabled
IP access violation accounting is disabled
TCP/IP header compression is disabled
RTP/IP header compression is disabled
Policy routing is disabled
Network address translation is disabled
BGP Policy Mapping is disabled
WCCP Redirect outbound is disabled
WCCP Redirect inbound is disabled
WCCP Redirect exclude is disabled
faculty/staff#show ip eigrp ?
<1-65535> Autonomous System
accounting IP-EIGRP Accounting
interfaces IP-EIGRP interfaces
neighbors IP-EIGRP neighbors
topology IP-EIGRP Topology Table
traffic IP-EIGRP Traffic Statistics
vrf Select a VPN Routing/Forwarding instance
faculty/staff#show ip eigrp topology
IP-EIGRP Topology Table for AS(1)/ID(192.168.20.2)
Codes: P - Passive, A - Active, U - Update, Q - Query, R - Reply,
r - reply Status, s - sia Status
P 192.168.0.0/26, 1 successors, FD is 2172416
via Connected, FastEthernet0/1
P 192.168.0.64/27, 1 successors, FD is 2172416
via Connected, FastEthernet0/0
P 192.168.0.96/29, 1 successors, FD is 2172416
via Connected, Serial0/1/1
faculty/staff#
Cody Robinson
Cody Robinson
2:37pm
Here is show run on students router:
Students Con0 is now available
Press RETURN to get started!
Students>sh run
^
% Invalid input detected at '^' marker.
Students>en
Students#sh run
Building configuration...
Current configuration : 874 bytes
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
hostname Students
boot-start-marker
boot-end-marker
no aaa new-model
ip cef
ip subnet-zero
interface FastEthernet0/0
no ip address
no ip directed-broadcast
shutdown
interface FastEthernet0/1
description link to switch
ip address 192.168.0.150 255.255.255.128
no ip directed-broadcast
interface Serial0/0/0
ip address 192.168.10.1 255.255.255.0
no ip directed-broadcast
clockrate 2000000
interface Serial0/0/1
no ip address
no ip directed-broadcast
shutdown
clockrate 2000000
interface Serial0/1/0
no ip address
no ip directed-broadcast
shutdown
clockrate 2000000
interface Serial0/1/1
ip address 192.168.0.100 255.255.255.248
no ip directed-broadcast
clockrate 2000000
router eigrp 1
network 0.0.0.0
network 192.168.1.1 0.0.0.0
network 192.168.10.0
ip classless
no ip http server
no ip http secure-server
control-plane
line con 0
line aux 0
line vty 0 4
login
line vty 5 1180
login
scheduler allocate 20000 1000
end
Students#Hello lolwar,
From your setup and description you provided I see some mismatch in IP subneting you calculated.
For instance in your diagram you have networks 192.168.0.0/26 (FACULTY), 192.168.0.64/27 (STAFF), 192.168.0.96/29 (point-to-point link between routers) and 192.168.0.128/25 (STUDENTS).
First, you're wasting IP addresses, because you have unused space between point-to-point link and STUDENTS subnet. It's a good practice, when calculating subnets first calculate the biggest, subnet, then smaller one until the smallest one (usually some point-to-point cross-connects). For more about this see this guide.
Now, the issue I see as the most important is, that you have in your diagram networks as I mentioned above, but into your EIGRP process you're adding completely different subnets (192.168.16.x, 192.168.20.x,...).
I entered following:
STUDENT ROUTER =------------>
router eigrp 1
network 192.168.0.96 0.0.0.7
network 192.168.0.128 0.0.0.127
FACULTY/STAFF ROUTER =------------->
router eigrp 1
network 192.168.0.0 0.0.0.63
network 192.168.0.64 0.0.0.31
network 192.168.0.96 0.0.0.7
And all works just fine, computer's are able to ping each other. Also although it's not necessary, it's good to includes network wildcard mask into the "network" command under EIGRP (or OSPF) configuration.
I hope this will help you (please rate if this is the case. Thanks.) -
Prime 1.3 Numerous Issues
We are having some issues with Prime 1.3.
We need some advice and tuning, a backup and rebuild/restore has not addressed these issues.
Specifically -
System resource usage. The server uses 100% of all four 2.6/3ghz turbo CPUs every 15 mins and runs unusably slow during this time. I can see various background tasks running at this time, but it does not appear to be getting stuck on one in particular.
Disk Space usage. Since upgrading from WCS which had an 80gb drive, we now have 250gb and it's constantly running out of disk space, despite doing cleans and reducing data retention periods which we didn't want to have to do.
Errors on a lot of pages. E.g. "There was an error while parsing and rendering the content. (undefined is not a function)" when you search for a client. But this works in Firefox and was previously working ok in Chrome.
Our System specs are
Vmware ESX 5.1
Running on a HP BL460c Gen 8 Blade Xeon e5-2670 (16x 2.6ghz)
4x vCPU
12GB ram
1x 250GB Disk (on Teir 1 fibre channel attached SAN, I could not tell you the IOPS)
1260 Access Points
Approx 3000 Clients and rising on an average day
27 controllers on 7.x code
1 MSE 3350
No switches/routers/autonomous APs or any other devices on Prime at present (due to a lack of licences).
To be honest the Prime VM has more than twice the resources of the Cisco WCS server it replaced and runs much slower and is more unreliable. We are not particularly happy with it at present. The disk space is an issue for us at the moment as we don't have a lot free on our SAN.
I have not gone to 2.x yet as i'm waiting for a release to bring it in parity with LMS and only need the wifi functionality at the moment.
ThanksI'm finding it very difficult to justify a business case for the system resources this product requires. It uses more resources than most of our business application servers! We have just a handful of network engineers using it. We are not asking it to do any more than WCS was which ran very well with a fraction of the resources. As a dedicated linux appliance, it seems to have more overheads than a Windows server which I find baffling.
At the moment I simply cannot give it more disk space, so will have to make do. I have extended the partitions by 50GB which has helped.
I need to work out what is maxing our the cpu and the errors with the web interface as a priority.
Can I look at CPU time and find the bad process?
Maybe you are looking for
-
Cannot connect to itunes/windows help please!!!
Hi, I have a 8gb ipod touch i brought it in australia and now im back in england, i cannot seem to connect to itunes, when i plug the cable in it makes the noise to say its connected and then the ipod camera window pops up but still doesnt connect to
-
Hi user the future we would like to use only the following payment blocks for blocking vendors: Skip account A Blocked for payment C Paid manually D Bank details missing Is it possible to deactivate the other paym
-
Hello Guys, iam migrating open standing sales order using LSMW standard object bapi_salesorder_createfromdata2.i just want to confirm from you experts whether iam using correct standard object and also i would like to know the difference between sale
-
IE is stopping browser upgrade to firefox or other like Safari. when you press download and save it does not appear caise IE prevent the download. my other comp is a Mac so it wont down load it cause its not correct for the machine. i was hoping to l
-
Inactive Profiles in Object - Table/Fields
Hi, Can you help please? I am trying to list all the Authorisation objects that have got an activity field of 01 or 02 for a specific role. I have pulled the following report which is fine. Some of the objects have got more than one profile set up an