ARP cache not adding MAC address

Similar Messages

• ARP table not populating mac address for previously reachable IP address

  Router has been online and working fine with one BGP neighbor for almost 2 years and no downtime.  2 weeks ago, added a 2nd BGP peer.  Everything worked fine for 2 weeks, then all of a sudden yesterday the 2nd BGP peer is disconnected and does not come back.  ISP checks and sees everything looks fine on their end.  We cannot even ping each other now.
  Upon investigation, the ARP table is not even populating the MAC address for the BGP peer IP anymore (same local subnet).  Stays "incomplete" in the table no matter what we do, including clearing arp table, changing IP address, etc.
  Plug a laptop directly into the 2nd BGP peer FE port and replicate the IP addressing.  Laptop cannot ping Router, but Router CAN ping laptop.  Check ARP table, but STILL no mac address assigned and now not even the ARP table showing "incomplete".
  Thinking it could be the FE interface, switch to the 2nd FE interface and perform same laptop test, this time with arbitrary IP addressing.  Now cannot ping each other, no MAC in ARP table.
  End up rebooting the router and lo-and-behold, everything is working normally again.  2nd BGP peer peers up instantly.
  I should also mention that the 1st BGP peer worked flawlessly throughout, taking all the Internet load and having no issues throughout.
  Also, the FE ports for the 2nd BGP peer are on an HWIC FE card plugged into the router.  The 1st BGP peer is plugged into the built-in GE interface.  2901 running: c2900-universalk9-mz.SPA.151-4.M4.bin
  Lastly, no router resource issues, no error messages, no logs.  Just the BGP peer disconnecting.
  I have never, in 20 years working with Cisco routers seen something like this before.  This is the most fundamental aspect of IP and Ethernet that was not working.
  Has anyone ever seen this behavior before??
  Here is the router config (IP's changed):
  version 15.1
  service timestamps debug datetime msec localtime show-timezone
  service timestamps log datetime msec localtime show-timezone
  service password-encryption
  service internal
  service sequence-numbers
  boot-start-marker
  boot-end-marker
  logging buffered 150000
  aaa new-model
  aaa authentication login LAUTHEN local
  aaa authentication login TAUTHEN local group tacacs+ enable
  aaa authorization console
  aaa authorization exec LAUTHOR local if-authenticated
  aaa authorization exec TAUTHOR local group tacacs+ if-authenticated
  aaa session-id common
  clock timezone PST -8 0
  clock summer-time PDT recurring
  no ipv6 cef
  no ip source-route
  ip cef
  no ip domain lookup
  multilink bundle-name authenticated
  username ubiadmin privilege 15 secret 4 .JbeuWXuZvchrG0OL.5BftFtqrrEyxcnVHn5rIuCnTk
  username umitsnoc01 privilege 15 secret 4 cUmoRUjey9O1x.wk9S.kleX.iAAhCwihupr6Z98p6OA
  redundancy
  ip ssh version 2
  track 1 interface GigabitEthernet0/0 line-protocol
  class-map match-any AutoQoS-VoIP-RTP-Trust
   match access-group name SIP-Media-INBOUND
  class-map match-any AutoQoS-VoIP-Control-Trust
   match ip dscp cs3
   match ip dscp af31
  class-map match-any Customer-Voice
   match access-group name Customer-VPNs
  class-map match-any media
   match access-group name SIP-Media
  class-map match-any signaling
   match access-group name SIP-Signaling
  policy-map AutoQoS-Policy-Trust
   class AutoQoS-VoIP-RTP-Trust
    priority percent 70
   class AutoQoS-VoIP-Control-Trust
    bandwidth percent 5
   class class-default
    fair-queue
  policy-map queue
   class signaling
    bandwidth percent 5
   class media
    priority percent 50
   class Customer-Voice
    priority percent 40
   class class-default
    fair-queue
  policy-map shape
   class class-default
    shape average 10000000
    service-policy queue
  interface Embedded-Service-Engine0/0
   no ip address
   shutdown
  interface GigabitEthernet0/0
   description BGP Peer 1
   ip address 2.2.2.2 255.255.255.252
   no ip redirects
   ip flow ingress
   ip flow egress
   duplex auto
   speed auto
   service-policy output shape
  interface GigabitEthernet0/1
   description LAN
   ip address 1.2.3.4 255.255.255.0
   no ip redirects
   ip flow ingress
   ip flow egress
   standby 255 ip 1.2.3.1
   standby 255 priority 105
   standby 255 preempt
   standby 255 mac-address 1a2b.3c4d.5e6f
   standby 255 track 1 decrement 10
   duplex auto
   speed auto
   service-policy output AutoQoS-Policy-Trust
  interface FastEthernet0/0/0
   description BGP Peer 2
   ip address 1.1.1.1 255.255.255.252
   ip flow ingress
   ip flow egress
   duplex full
   speed 100
   service-policy output shape
  interface FastEthernet0/0/1
   no ip address
   shutdown
   duplex auto
   speed auto
  router bgp 7777
   bgp router-id 2.2.2.2
   bgp log-neighbor-changes
   network 1.2.3.0 mask 255.255.255.0
   neighbor 1.1.1.2 remote-as 5555
   neighbor 1.1.1.2 update-source FastEthernet0/0/0
   neighbor 1.1.1.2 prefix-list L3-DEFGW in
   neighbor 1.1.1.2 route-map L3-LPREF-IN in
   neighbor 2.2.2.1 remote-as 6666
   neighbor 2.2.2.1 ebgp-multihop 2
   neighbor 2.2.2.1 update-source GigabitEthernet0/0
   neighbor 2.2.2.1 send-community
   neighbor 2.2.2.1 prefix-list COLO-DEFGW in
   neighbor 2.2.2.1 route-map COLO-LPREF-IN in
   neighbor 2.2.2.1 route-map COLO-OUT out
  ip forward-protocol nd
  ip bgp-community new-format
  ip as-path access-list 5 permit _5555_
  ip as-path access-list 5 deny .*
  ip as-path access-list 10 permit ^6666$
  no ip http server
  no ip http secure-server
  ip flow-top-talkers
   top 50
   sort-by bytes
  ip route 0.0.0.0 0.0.0.0 1.1.1.2 254 name L3
  ip route 0.0.0.0 0.0.0.0 2.2.2.1 255 name COLO1
  ip route 10.0.0.0 255.0.0.0 10.10.10.10 name FW_OUTSIDE
  ip tacacs source-interface GigabitEthernet0/1
  ip access-list standard SNMP_SOURCES
   permit 12.12.12.0 0.0.0.255
   deny   any log
  ip prefix-list L3-DEFGW seq 5 permit 0.0.0.0/0
  ip prefix-list COLO-DEFGW seq 5 permit 0.0.0.0/0
  ip prefix-list COLO-LPREF-OUT seq 5 permit 1.2.3.0/24
  route-map COLO-LPREF-IN permit 5
   match as-path 5
   set local-preference 250
  route-map COLO-LPREF-IN permit 10
   set local-preference 150
  route-map COLO-LPREF-IN permit 20
  route-map COLO-OUT permit 10
   match ip address prefix-list COLO-LPREF-OUT
   set as-path prepend 7777 7777 7777
   set community 29795:1004
  route-map COLO-OUT permit 20
  route-map L3-LPREF-IN permit 10
   match as-path 10
   set local-preference 200
  route-map L3-LPREF-IN permit 20
   set local-preference 150
  snmp-server enable traps snmp authentication linkdown linkup coldstart warmstart
  snmp-server enable traps vrrp
  snmp-server enable traps flowmon
  snmp-server enable traps transceiver all
  snmp-server enable traps ds1
  snmp-server enable traps call-home message-send-fail server-fail
  snmp-server enable traps tty
  snmp-server enable traps license
  snmp-server enable traps envmon
  snmp-server enable traps ethernet cfm cc mep-up mep-down cross-connect loop config
  snmp-server enable traps ethernet cfm crosscheck mep-missing mep-unknown service-up
  snmp-server enable traps flash insertion removal
  snmp-server enable traps mac-notification
  snmp-server enable traps aaa_server
  snmp-server enable traps cef resource-failure peer-state-change peer-fib-state-change inconsistency
  snmp-server enable traps memory bufferpeak
  snmp-server enable traps config-copy
  snmp-server enable traps config
  snmp-server enable traps config-ctid
  snmp-server enable traps event-manager
  snmp-server enable traps hsrp
  snmp-server enable traps cpu threshold
  snmp-server enable traps rsvp
  snmp-server enable traps syslog
  snmp-server enable traps vtp
  snmp-server enable traps ipsla

  When you were checking the ARP table was there an entry for Fast0/0/0?
  HTH
  Rick

• Sh arp does not show mac address of IP --- ASA

  Hi Everyone,
  I can ping the IP from the ASA but when i do sh arp it does not show me mac address od that IP.
  Need to know the reason behind this.
  Regards
  MAhesh

  So your ASA should have a route on the inside interface to internal networks. The address of that next hop in the routing table is the one you should have in your arp table allowing you to reach non-directly-connected (subnet-wise) hosts within the scope of that route statement.
  Think through the logic - ASA pings a host. It needs to determine proper egress interface. It checks and asks "Is it reachable via a directly connected interface (most preferred route)?" Answer no. "Do I have a route statement telling me how to get to it?" Answer yes (otherwise use default). OK - so ASA sends packet out egress interface defined in that route statement to the next hop as defined in route statement and waits for reply.

• RE1000 - Does not filter MAC ADDRESS

  I bought this to extend the range of my new Linksys 3200, thinking that they would be compatible. Silly me! After spending 3 plus hours screwing around with this, I got online and happened to stumble on a post from another user, that stated that this device DOES NOT FILTER MAC ADDRESSES! So, if you want to use mac filtering you can't use this! Ridiculous! Some basic instructions to inform users of this fact would be helpful. But it comes with no manual or instructions whatsoever. Save your money.

  I have a E2500 router, I was adding the Extender because of the size of the office.  I set my router up to "Permit only" Mac IDs', right there I should have questioned why nothing worked.  The Package & the base of the unit both had a matching MAC ID - to bad that the unit had a different one.  I don't remember how much time I spent but finally disable the MAC ID Filter on the router and got the real one.  From that point on, everything worked, I even was able to setup with the router internal security switch.  Just think how a little thing like an ID would make an IT Guy just a little more mis-trustful, not count the grey hair.

• Error in Adding Mac Address in WLAN

  Hi,
  We have multiple wlan's here in our Company.
  Im having trouble with  mac addresses which I registered BEFORE via mac filter
  and DELETED it after couple of days.
  Right now, I need to register this mac addresses again via MAC Filter but error appears below.
  ERROR: User name 'xx:xx:xx:xx:xx:xx' is already used as a Mac Filter.
  Need to specify unique MAC Address across Disabled Clients, AP auth,
  Management users, Network users and Mac Filters
  What can I do to be able to register the mac addresses that already removed to our WLC???
  Thanks in advance for any help you can offer.

  There are two spots that a mac filter is added.  You can only have a mac address in only one of these spots.  Verify that it is not in one of these spots.
  Thanks,
  Scott
  Help out other by using the rating system and marking answered questions as "Answered"

• IPv4 reservations check all of Option 61, not just MAC address

  I am trying to use Server 2012 R2 DHCP to assign IPv4 addresses in a mixed network.
  Most systems send a very brief Client Identifier (Option 61) which includes only hardware type and MAC address.  Some systems (most importantly Fedora 21 in my case) send more information including an IAID, DUID type, and time in addition to hardware
  type and MAC address.  MAC address still comes at the end of the option.
  I am attempting to use reservations to assign addresses to workstations, but DHCP doesn't seem to know what to do with the extended options sent by Fedora 21; it checks all of the client identifier against the MAC address and then rejects the request because
  the client identifier has additional information.  Has anyone found a server setting to resolve this?  Once a Fedora client is set up it can be configured to send only the MAC address and hardware type in Option 61, but I am looking for something
  that will work with the default options.  It seems odd to me that DHCP requires a MAC address to identify clients in a reservation, but compares the MAC address to all of the contents of Option 61.

  Hi,
  According to your description, my understanding is that DHCP server(Windows Server 2012) can’t reserve IP address to Fedora 21, due to extended options(61) sent by this client.
  Windows DHCP server, reservation is based on MAC address. as you mentioned that DHCP server will check the message sent from the client, if the matched MAC address has been detected, reserved IP address will assign to the client.
  As far as I know, there is no additional setting for Windows DHCP server to control the identifiable field of message sent from client.
  Configure the Fedora client to send only the MAC address and hardware type in Option 61, could be a better way to resolve this problem.
  Best Regards,
  Eve Wang
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Support, contact [email protected]

• Adding mac address manually

  Hi All,
  Can any one suggest, how to add mac address manuall, as I am unable to learn MAC in CAM.

  You can statically bind mac address to a switch port 
  by using command 
  mac-add-table static "mac-id" "vlan-id" "interface-port" 

• Dladm does not show mac address for aggr

  All,
  When I run dladm show-aggr for my two aggr interfaces, I have one not displaying its MAC. Anyone a clue how I can get this sorted?
  key: 2 (0x0002) policy: L2      address: 0:14:4f:da:13:e8 (auto)
             device       address                 speed           duplex  link    state
             nxge2        0:14:4f:da:13:e8          1000  Mbps    full    up      attached
             nxge3        <unknown>         1000  Mbps    full    up      attachedCheers,
  Davy
  Edited by: Davy_S on Apr 18, 2009 1:52 AM

  I had the same problem. SUN support recommends latest kernel patches. That solved my problem.

• Email Addresses Not Added To Address Book?

  Hello all!
  It seems to me that I have a different set of email addresses collections from the ones I have in Address Book. For example when I start typing an address in the "To:" field I have a ton of addresses that are no appearing in the Address Book!
  It is really cumbersome to add multiple email addresses by trying to search them from the "To:" field like this.
  Am I missing anything???
  Thanks,
  Gabstero

  When Mail is running, go to Window > Previous Recipients. In that window will be listed everyone you've sent email to in the past. You can select any or all of those addresses and click on "Add to Address Book" at the bottom right-hand side of that window.
  Mulder

• HT204088 My company purchased a macbook air with cash in march. I need the billing note for accounting but im not a 100% sure what store in New Jersey i bought it in. I have the Mac address of the computer, where can I send it to get an accounting note?

  The question pretty much says it all. What can be done?    

  The Apple Support Communities are an international user to user technical support forum. As a man from Mexico, Spanish is my native tongue. I do not speak English very well, however, I do write in English with the aid of the Mac OS X spelling and grammar checks. I also live in a culture perhaps very very different from your own. When offering advice in the ASC, my comments are not meant to be anything more than helpful and certainly not to be taken as insults.
  Take the Mac's serial number, not a MAC address, to one of the stores and perhaps they know how to find what you need on Apple's retail servers.

• IPMP / ARP Cache oddity - Solaris to Windows comm errors

  First - a qualification - I'm not an Solaris admin, so feel free to call me out for any blatant errors..
  I've got several Solaris 10 servers that are having intermittent network communication issues with Windows 2003 servers on the same subnet. All Solaris boxes are using two NICs and IPMP for their connections to the "primary" network. For example, one server (hostname bugbear) has two adapters ce0 and ce9:
  # ifconfig -a
  ce0: flags=1000843<UP,BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index 2
          inet 16.106.64.227 netmask fffff800 broadcast 16.106.71.255
          groupname shared0
  ce9: flags=1000843<UP,BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index 4
          inet 0.0.0.0 netmask ff000000 broadcast 0.255.255.255
          groupname shared0
  # cat /etc/hostname.ce0   
  bugbear netmask + broadcast + group shared0 up
  # cat /etc/hostname.ce9
  group shared0 upIf I look at the arp cache, (almost) every other server it talks to shows up twice - an entry for each of the NIC devices:
  # arp -a
  Net to Media Table: IPv4
  Device   IP Address               Mask      Flags      Phys Addr
  ce9    win2k3box.city.acme.com 255.255.255.255 o        00:50:56:ae:13:58
  ce0    win2k3box.city.acme.com 255.255.255.255 o        00:50:56:ae:13:58I guess that's as expected - again, I'm not a Solaris expert.
  Finally, here's the issue I've found. For any other UNIX/Solaris hosts listed in the arp cache, my server can ping/FTP/whatever to the other - no problem. Sometimes the ce0 interface is listed first in the output for the target server, sometimes the ce9 interface is listed first. Doesn't matter - my server can talk to the other just fine.
  HOWEVER - for Windows servers, the order of entry in the arp cache seems to have relevance. If the ce9 interface is listed first, I can't ping, can't FTP, can't connect to the other server. If the ce0 interface is listed first, then everything works fine.
  Eventually the arp cache entries age out and get deleted. Usually then my server can talk to the Windows server again. I also found that if I delete both arp cache entries for the target Windows server, my server can talk to it again (arp cache gets rebuilt with the ce0 interface). If left alone, the behavior seems to be that my server can talk to a Windows target for an hour or two, then it can't for another hour or two, then the cycle repeats.
  NOTE - The mac address in the arp cache is not getting poisoned, as with the Broadcom windows driver issue that hit some folks (myself included). All the mac addresses for the servers in the arp cache are consistent as best I can tell, so that's not the problem.
  Any input/suggestions greatly appreciated.

  Here are the codes:
  In the initializing stage,
       try {
            this.serialPort = (SerialPort) portId.open("SimpleReadApp", 2000);
       } catch (PortInUseException e) {
           e.printStackTrace();
       this.serialPort.notifyOnDataAvailable(false);
       try {
          this.serialPort.setSerialPortParams(9600, SerialPort.DATABITS_8, SerialPort.STOPBITS_1, SerialPort.PARITY_NONE);
          this.serialPort.setFlowControlMode(SerialPort.FLOWCONTROL_NONE);
          this.serialPort.enableReceiveTimeout(10);
  //this.serialPort.disableReceiveTimeout();
  //this.serialPort.enableReceiveThreshold(0);
          this.serialPort.enableReceiveThreshold(1*1024*1024);
          if (this.serialPort.getInputStream() != null)
                  this.inputStream = this.serialPort.getInputStream();
          else
                  System.out.print("can not get inpustream!\n");
        } catch (Exception e) {
                e.printStackTrace();
        }Then in the reading stage, we have:
      byte[] readBuffer = new byte[1 * 1024 * 10];
      while (true) {
            try {
                 int numBytes = inputStream.read(readBuffer);
                 System.out.print("There are " + numBytes + " bytes having been read.");
            } catch (Exception e) {
                e.printStackTrace();
            }The above codes do not have any problem using COMM API 2.0 on Windows. Or COMM API 3.0 on Solaris. But, on RedHat, it can run out of memory very quickly.
  Edited by: EJP on 13/05/2011 11:27: added { code } tags. Please use them.

• ARP cache entry of a switch

  Hello...
  I came across a particular question that got me a bit confused.
  Please see attached for the network topology. Question: After HostA pings HostB, which entry will be in the ARP cache of HostA to support this
  transmission?
  a) Interface address: 192.168.4.7; MAC: 000f.2480.8916
  b) Interface address: 192.168.4.7; MAC: 0010.5a0c.feae
  c) Interface address: 192.168.6.1; MAC: 0010.5a0c.feae
  e) Interface address: 192.168.6.1; MAC: 000f.2480.8916
  c) Interface address: 192.168.6.2; MAC: 0010.5a0c.feae
  e) Interface address: 192.168.6.2; MAC: 000f.2485.8918
  The correct answer is D.
  From my understanding, the source and destination IP doesn't change. If this is the case, why is the IP in the ARP cache not that of hostB?

  Hi Rajtilak,
  What switch are you using?
  If it is a small business switch, ie SG200, SG300 etc do you use the CLI or GUI?
  From CLI:
  From Web GUI:
  go to IP Configuration -> ARP then click add:
  Remember to save your config changes.  Hope that helps.
  Best,
  David
  Please rate helpful posts and identify correct answers.

• Re: Sh mac Address-table

  Does anyone remember the command to identify an ip address via mac on a host. I would like to be able to find the port and ip address information using the mac address on a 6513.
  thanks.

  Hi,
  As such there is not command to get the host IP address via its MAC. If you try to ping a host on the switch, only the host maintains the arp cache not the switch. On a windows host do arp -a to get the arp cache. There is no command on switch to get that.
  You can use a freeware tool "ccgetmacaddress ", whihc will give you the IP of teh host using the mac-address.
  regards,
  -amit singh

• Transparent ASA and Mac-Address's

  Experts,
      I’ve recently installed a pair of 5525X’s in transparent mode to protect some internal segments.  In reading about transparent mode I thought I read that the ASA will “proxy” the connection when going from the Layer 3 side (North) to the actual physical South side host.  For an “Outside/North” host (vlan 700) to talk to an “Inside/South) host (vlan 800) the ASA will pass it’s mac-address to the outside host (or gateway) as the destination to send the packet.  Prior to building this infrastructure I thought I would see all ARP entries on the Layer 3 (North) side to have a mac-address of the interface of the ASA for all protected hosts.  I do not see that on the SVI interface but do see the real mac-address of the “South” side protected machine. When looking on a protected machine I do see the default-gateway ARP entry to be the actual mac-address of the SVI on the switch and not the mac-address of the ASA which I thought would be the case as well.   Everything is working as advertised (or so I think) as removing or adding ACL’s does limit or allow traffic so it appears to be working.  I’m just checking that my initial assumption of the mac-address of the ASA being on every ARP entry was/is incorrect. From what I can tell the ASA passes the mac-address's from each side of the bridge-group to the other.
  Thanks,
  Ken

  Hi Ken
  Yes, this is correct. In transparent mode, the ASA is effectively a passive device in this perspective. The devices on either side of the ASA will see the "real" MAC addresses.
  Note this behaviour will change if you configure NAT on the ASA.
  HTH.
  Barry Hesk
  Intrinsic Network Solutions

• AP 2700 - 2 MAC addresses - problem with joining to the WLC

  Hi,
  I had a problem with joining my new AP 2700 to the controller. I've found workaround but I would like to ask you if you know if this behavior is a some kind of bug or maybe feature :)
  I have DHCP server which assigns IP address base on the binding MAC address with the IP address. Without binding, IP won't be assigned so I added MAC address from the AP sticker (MAC and SN number is on the sticker at the back of each AP) to the DHCP, connected AP to the switch port which was configured exactly the same way like other ports on this switch where older AP are working fine and.... nothing. IP address was not assigned. There was no DHCP request in the DHCP server logs.
  During the investigation I've found that AP present 2 MAC addresses on the switch interface:
  switch#sh mac address-table interface fa1/1
  Mac Address Table
  Vlan Mac Address Type Ports
  11 58f3.54c1.2cb3 DYNAMIC Fa1/1
  11 58f3.54c1.2cb4 DYNAMIC Fa1/1
  The first one (58f3.54c1.2cb3) is a "sticker" MAC address but the second one (58f3.54c1.2cb4) is something new. Looking in to the DHCP logs I've found log that this second MAC address (58f3.54c1.2cb4) tried to get IP address but it was not possible because this MAC was not binding with any IP address so DHCP server refuse. I added this second MAC (58f3.54c1.2cb4) to the DHCP server, AP get IP address, join to the WLC, download software, reboot and ... this MAC address disappear.
  switch#sh mac address-table interface fa1/1
  Mac Address Table
  Vlan Mac Address Type Ports
  11 58f3.54c1.2cb3 DYNAMIC Fa1/1
  Software I had on the AP before joining to the WLC was:
  Version :
  Cisco IOS Software, C2700 Software (AP3G2-RCVK9W8-M), Version 15.2(4)JB5, RELEASE SOFTWARE (fc1)
  now I have (after downloaded from the WLC)
  Version :
  Cisco IOS Software, C2700 Software (AP3G2-K9W8-M), Version 15.2(4)JB6, RELEASE SOFTWARE (fc1)
  Do anyone know what happen?

  (WLC1) >show sysinfo
  Manufacturer's Name.............................. Cisco Systems Inc.
  Product Name..................................... Cisco Controller
  Product Version.................................. 7.6.130.0
  Bootloader Version............................... 1.0.20
  Field Recovery Image Version..................... 7.6.95.16
  Firmware Version................................. FPGA 1.7, Env 1.8, USB console 2.2
  Build Type....................................... DATA + WPS
  System Name...................................... WLC1
  System Location..................................
  System Contact...................................
  System ObjectID.................................. 1.3.6.1.4.1.9.1.1069
  Redundancy Mode.................................. Disabled
  IP Address....................................... 10.10.10.10
  Last Reset....................................... Software reset
  System Up Time................................... 25 days 2 hrs 53 mins 5 secs
  System Timezone Location.........................
  System Stats Realtime Interval................... 5
  System Stats Normal Interval..................... 180
  Configured Country............................... US - United States
  Operating Environment............................ Commercial (0 to 40 C)
  Internal Temp Alarm Limits....................... 0 to 65 C
  Internal Temperature............................. +44 C
  External Temperature............................. +22 C
  Fan Status....................................... OK
  State of 802.11b Network......................... Enabled
  State of 802.11a Network......................... Disabled
  Number of WLANs.................................. 6
  Number of Active Clients......................... 25
  Burned-in MAC Address............................ XX:XX:XX:XX:XX:XX
  Power Supply 1................................... Present, OK
  Power Supply 2................................... Present, OK
  Maximum number of APs supported.................. 25
  (WLC1) >show time
  Time............................................. Thu Apr 9 13:51:00 2015
  Timezone delta................................... 0:0
  Timezone location................................
  NTP Servers
  NTP Polling Interval......................... 3600
  Index NTP Key Index NTP Server NTP Msg Auth Status
  1 0 10.10.10.11 AUTH DISABLED
  It's look like AP doesn't allow for console login or commands it just only show activity. After rebooting the WLC I get information:
  Cisco IOS Software, C2700 Software (AP3G2-RCVK9W8-M), Version 15.2(4)JB5, RELEASE SOFTWARE (fc1)