Backing up Cisco 2504 WLC

Hi Guys,
Could you plese advise me on how i can take backup of configuration from my WLC. I got ftp or tftp server but when i try to go under commands and upload file its not working.. please help..

In the upload file from controller, you would put under the server details, file path..

Similar Messages

  • Power adapter for cisco 2504 WLC

    Hi all ,
    Is there any other part numbers for cisco 2504 WLC power adpater other than
    PWR-2504-AC= ?
    Thanks,
    Regards,
    Vijay.

    No "PWR-2504-AC=" is the only power adapter option for 2504.
    Please check the datasheet:-
    http://www.cisco.com/en/US/prod/collateral/wireless/ps6302/ps8322/ps11630/data_sheet_c78-645111.html

  • Help required to implement Cisco 2504 WLC and 1042 Access Points

    Hi,
    My name is Vidya Sagar. I am new to Wireless technology. We are planning to implement Wireless in our office. I have given the requirements below. Kindly go through the details and let me know how to start.
    We have purchased Cisco 2504 Wireless Controller (One) and Ciscon 1042 Access Points (Five). At present I am going to use 3 access points only.
    I have attached a simple diagram of our office network. We have more than 30 VLANs configured in Core Switch, we are planning to give wifi access to only 3 VLANs.
    1. VLAN 121 ( IP Segment - 10.52.121.0 /24)
    2. VLAN 116 ( IP Segment - 10.52.116.0 /24)
    3. VLAN 100 ( IP Segment - 192.168.100.0 /24) (Guest)
    Please give me a implementation plan to do this. I would like to use LDAP or ACS for authentication purpose.
    Regards,
    Vidya Sagar

    Lets just do this simple first before you start using ACS as that will require a certificate installed on the ACS for using PEAP.
    So first off, the WLC we will say is in vlan 10. When you are going through the startup wizard, make sure you define the vlan tag to 10 on the management interface. Make sure your virtual interface is an IP address that is not routed in your network, like an out of band IP.
    Make sure the WLC time is correct or use NTP!!!!
    Now you should be able to http or https to the WLC. I would upgrade the code to v7.4 and install the FUS image. Please reference this link for the upgrade procedure. You don't have to upgrade now... I would wait till you get everything working first.
    http://www.cisco.com/en/US/docs/wireless/controller/release/notes/crn74.html
    Now I would connect the APs on the same vlan as the WLC for now. Make sure there is dhcp on that subnet. Once the APs have joined, then you can move them to any subnet you want. Since you don't have many APs it would be okay to leave them in the same vlan as the WLC management or out them on any other vlan you choose. The APs will be connected to an access port NOT a trunk port!!!!
    The WLC will need to be connected on a dot1q trunk port only allowing vlans 10,100,116,121. The 2504 running v7.4 will support LAG (etherchannel). Any ways, your switch port should look like this for example only
    Interface gigabit1/0/1
    description WLC2504
    switch port trunk encapsulation dot1q
    switchoort mode trunk
    switch trunk allowed vlans 10,100,116,121
    spanning-tree portfast trunk
    channel-mode group 10 mode on << only for v7.4 if you use lag
    Don't connect all four ports right now, just port one!!!!
    Your Guest vlan, you will need to create an ACL to block traffic from accessing the internal network. You might want to allow dhcp and DNS bit I would leave it open first until you can verify everything is working.
    Now on the WLC you need to create a dynamic interface for vlan 100, 116, and 121. If you click on the Controller tab in the GUI and click on interfaces on the left hand side, that will take you to where you can add/delete/modify your interfaces. When creating these interfaces, make sure you add the dhcp server IP address for the primary and or backup.
    Now that you have your dynamic interfaces created, its time I create your SSID. Now click on the WLAN tab on the GUI and click on WLAN and then on the too right select Create New and then click go. Select WLAN on the drop down menu and then for the profile name I would use the SSID name also for simplicity.lean e the WLAN id to 1 for this and 2 for the next and so on. After defining these and clicking Apply you can now define your SSID. On the General tab, enable the status and leave the radio policy to all for now, you can decide later what you want to use. Choose your interface you wan to place this SSID on and enable Broadcast SSID for now and leave everything else alone. Now click on the Security tab and on the layer 2 Security, leave it at WPA + WPA2, only check WPA2 Policy and for WPA2 encryption choose AES only. Now go to the bottom of that screen and choose PSk. We will do pre shared key for now so you get to understand the setup and make sure everything is working first. Now on the PSK format, choose ASCII and put your pre shared key in the input box. Make this simple to for testing. You don't want to put in symbols or anything like that. When you are don with that, check apply on the top right and test.
    Now you can repeat this with your other SSIDs just to test. Your guest network you can leave open for now to test open authentication.
    Here are some links for the WebAuth feature:
    https://supportforums.cisco.com/docs/DOC-13954
    http://www.cisco.com/en/US/products/ps6366/products_tech_note09186a0080b1a506.shtml
    Now if you want to use ACS with PEAP, here is some links for that:
    https://supportforums.cisco.com/videos/2499
    http://www.cisco.com/en/US/products/ps10315/products_configuration_example09186a0080bd1100.shtml
    https://www.google.com/url?sa=t&source=web&cd=8&ved=0CFQQtwIwBw&url=http%3A%2F%2Fwww.youtube.com%2Fwatch%3Fv%3DWk_bRdmsQlA&ei=_BEyUeCYM8TdqAHHsICAAw&usg=AFQjCNF8PiVBQK1Kipb4j8AzD153bKtmgA&sig2=smHhNVmCr2of2NzbnDhGmw
    Well that is it, hopefully you can get the wireless up for testing and verifying everything works!
    Sent from Cisco Technical Support iPhone App

  • Cisco 2504 WLC client VPN Access

    Hi,
    I was reading couple of posts related to Cisco WLC + Client VPN passthrough .. and got  a query.
    https://supportforums.cisco.com/thread/2183687
    https://supportforums.cisco.com/thread/2219356
    The second link says that "Remote Acces VPN connections through the WLC work out of the box". Is this True? No need to configure Layer 3 VPN-Pass though for the SSID?
    They are using WPA2+PSK as Layer 2 Security. Here WPA2-PSK + VPN Passthrough is the right combination for WLAN Layer2 + Layer 3 Security?
    Thanks,
    Jagan

    It works out of the box... you don't need to configure any passthrough.. just connect to the ssid and VPN away.
    Thanks,
    Scott
    Help out other by using the rating system and marking answered questions as "Answered"

  • Using Auto-Install with Cisco 2504 WLC

    I have a config file that would like to deploy to multiple 2504 controllers.
    I am trying to get Auto-Install to upload my config file but I keep getting the 'no interfaces registered' message.
    I have my config file on  the root of the tftpd32 folder and have TFTP and DHCP servers enabled.
    Any ideas what could be causing this?
    Thanks

    Did you configure DHCP option 150, so that the WLC knows where to find the TFTP server? This should be possible in tftp32.
    See for more info this document, it is kinda aged but still accurate.

  • Cisco 2504 WLC - Facebook WI-FI service

    Hi All,
    Any one know if a standard Cisco WLC 2500 +  a few 1242's Cisco  install can support Facebook WI-FI service without the need for an MSE, bit  like what Cisco Meraki offer for free?
    https://meraki.cisco.com/blog/2013/05/youll-like-this-cisco-meraki-wifi-with-facebook-login/
    Thanks for any replies.
    Jay 

    Thanks Saurav,
    Question - Could I not introduce a compliant router (Facebook WI-FI service) then associate a WLAN and port to that service?
    E.G. Introduce new router/ISP- Cisco ISR G2 and ASR 1000 Series routers (enable Facebook WI-FI service), uplink to WLC port via layer 2 VLAN (E.G. port 4) associate new WLAN with port 4, DHCP, DNS services etc delivered from the new router/ISP.
    Cheers,

  • Wi-Fi Installation in large property W/Cisco 2504

    Hi,
    I have an interesting job where i am having to fit a wifi network through a large property. I was advised to use the Cisco 2504 WLC and 9 x Cisco AIR-AP1142N access points.
    I know that out of the box the AP's (in standalone versions) have the GUI enabled.
    Not being completley up with CLI etc, is the WLC GUI enabled straight out of the box? if not, is it complicated to get it up and running? I'm pretty good at learning/understanding these things just as long as i have a rough idea of what to do!
    Thanks in advance,
    Josh                  

    Thats great, Thanks steve.
    I have the Controller (although AP's are still on order - out of stock ) but i have one final question before i start to set it up!
    I'm looking at this guide: http://www.cisco.com/en/US/docs/wireless/controller/2500/quick/guide/ctr2504_q_s.html#wp34023 and it talks about Management interface. I presume the management IP address would be the fixed ip of the controller if you like.
    So if i had a network with a DHCP server. The Router/Server was 192.168.2.1 and the DHCP range started from .10, i could set this to be 192.168.2.2 with the router of the management interface to be .2.1. I then could set the VLAN id to be 0 as i don't need a seperate managment lan (it's only for a house afterall, and if i lock it down with passwords it should be fine).
    With the Management Port, i presume that can be the port that connects into the main PoE Switch, similalry the Management DHCP server would be 192.168.2.1?
    Virtual Gateway IP address i guess is irelevant as there will be no mobility group?
    And DHCP bridging, like on any other wifi system/AP would be 'No' as the Router will be dealing with all DHCP requests?
    Thanks again for your fantastic help so far!
    Josh

  • Cisco 2504 Local radius configuration, is their any ways for backing up the user db? In case the WLC dies

    Cisco 2504 Local radius configuration, is their any ways for backing up the user db?  In case the WLC dies

    Please find the guide to keep the backup:-
    http://www.cisco.com/en/US/partner/docs/wireless/controller/7.0/configuration/guide/c70mfw.html#wp1063850

  • How-do-i-configure-guest-wifi-access-using-2504-wlc-fortigate-utm-l3-device

    Dear All
    I have a 2504 Wireless Controller with multiple radios attached. I currently have a "private" WLAN configured (taking ip from windows server based DHCP of Range 192.1681.0/24 ) and working, but I need to add a Guest/Public WLAN which should take the IP from Other DHCP Configured on Fortigate UTM of range 172.16.0.0/24.
    We have one SG300 switch in the office and the rest are basic switches.
    Our firewall/router is a Fortigate UTM 240D
    Find the attached network diagram for the issue.
    Is there a SIMPLE way to enabling guest access that doesn't require VLANS (or are VLANS easier than I'm making them)? 
    Thanks.
    - See more at: https://supportforums.cisco.com/discussion/12473186/how-do-i-configure-guest-wifi-access-using-2504-wlc-fortigate-utm-l3-device#sthash.aj1XcWI0.dpuf

    Complete these steps in order to configure the devices for this network setup:
    http://www.cisco.com/c/en/us/support/docs/wireless-mobility/wireless-vlan/70937-guest-internal-wlan.html
    Configure Dynamic Interfaces on the WLC for the Guest and Internal Users
    Create WLANs for the Guest and Internal Users
    Configure the Layer 2 Switch Port that Connects to the WLC as Trunk Port

  • Please help me to configure 2504 WLC as secondary in N+1 HA mode. My primary WLC is 5508 and both have 50 AP license.

    Please help me to configure 2504 WLC as secondary in N+1 HA mode. My primary WLC is 5508 and both have 50 AP license. I want to deploy the AP in the same location.

    Go HERE:  https://supportforums.cisco.com/discussion/12219106/high-availibility-2500

  • OOB Management of Cisco 2504

    Hello,
    I am wondering if this is possible, and how to execute. 
    We have a separate physical network for guest wireless access that we will be using a cisco 2504 controller and AP's. I wanted to manage the WLC from the corporate network, and wanted to have a management interface on our DMZ to allow 443 management from inside our corporate network.
    I tried making the built in management interface on our corporate DMZ network, and another interface for the Guest Network, but I am unsuccessful:
    Management port 1: 192.168.x.x
    Dynamic interface port 2: 10.5.x.x
    Once I enable Dynmaic AP management on the Guest network, I cant ping any devices on that network.
    I also tried making a VLAN for the management network and another vlan for the Guest network and mapping them to the single built in management port, but I have been unsuccessful in that.

    Hi,
    ip http server
    ip http authentication local
    ip http secure-server
    username cisco password cisco.
    HTH,
    Bjornarsb

  • Cisco 2504 as Anchor not passing TCP 8443

    Hello,
    I have a very strange scenario with 2504 WLC. It is deployed as an Anchor with 5508 as the foreign. In summary, my set up is as follows:
    2504 - Anchor (version 7.6.120), Port 1- MGT, Port 2 - Guest subnet, No AAA Server, Internal DHCP server
    5508 - Foreign (version 7.6.101.1, Guest interface (dummy, non-routable and no vlan on switch), MAC filtering, ACL-redirect, AAA with Radius NAC.
    The mobility tunnels are up and FW rule also allows DNS and TCP/8443 from the guest subnet. The guest client receives its DHCP address and queries external DNS on the DMZ, but after that nothing happens. The web redirect URL times out.
    I can see hits on the FW ACL for the DNS query and response but none for TCP/8443. The client browser times out. From wireshark, I can see the client query the DNS for the ISE hostname and the DNS replies with the IP address, but I don't see the guest send a packet to ISE. It's as if the DNS packet flows through the Guest interface, but the TCP/8443 packet doesn't flow out of the Anchor WLC to the Foreign to be sent to ISE.
    Please does anyone understand this very strange occurrence.

    After contacting Cisco TAC without a successful resolution, I discovered that Policy Set was the problem. This was very strange as the Policy set was evaluated and the correct Authz policy applied. 
    I had a policy set with Radius conditions equal 802.11 AND Wireless_MAB. This was to separate it from another policy set for 802.1X. The Wireless_MAB policy set was evaluated and the web redirect ACL was applied by ISE, but after that ISE didn't respond with the Guest Portal page. 
    As soon as I removed the condition Wireless_MAB from the policy set  definition, the Guest portal worked.
    I think Cisco should either evaluate the Policy set functionality and fix it or release a statement that Policy set can't work with 2 conditions defined, which I think doesn't make sense as why would I use Policy set for Radius Nas_Port_type 802.11. This means the 802.1X Policy set would be checked first (if it is first in the order) before the Wireless_MAB Policy as both use NAS_port_type of 802.11.

  • 2504 WLC on edge network for guest wifi

    I have a 2504 WLC with a 1042 AP and I have it placed on my edge Cisco 3750 switch.
    I have the management interface of the WLC set on my WAN IP 71.x.x.x subnet range, and I have the WLC doing DHCP duties with a DHCP scope of 192.168.X.0. I have my DNS servers set on external DNS servers out on the Internet.
    I have two Cisco 3845 Routers on my edge network - one for each ISP with BGP protocol.
    Since my native VLAN is 71.x.x.x, I added a sub interface on my main core router and gave it a 192.168.x.1 255.255.255.0 address for the gateway. Also, I added ip prefix-list iBGP seq 10 permit 192.168.x.0/24 le 32 to my main core router. On my secondary ISP router I added
    ip prefix-list iBGP seq 10 permit 192.168.X.0/24 le 32, and ip prefix-list OUT seq 10 permit 192.168.x.0/24 statements.
    I added VLAN 10 to my edge switch and gave it IP 192.168.x.2 255.255.255.0, and the switchports that my core router and my WLC are connected to the edge switch, are in trunk mode with encapsulation dot1q 10. The switchport on my edge switch that the AP is connected to is in switchport access mode.
    I can connect to the wifi with a 192.168.x.x IP address on my laptop, but I cannot get any Internet access.
    Is it possible to have the DHCP scope be in a different subnet than my WAN IP subnet, and allow guests to get to the external Internet only? Do I need to put the WLC somewhere internal on my network i.e. the DMZ and then tunnel the traffic out to the Internet with no Internal network access?
    Thanks for any help you can provide.

    right, and how does a 'normal/current' user access the internet?  Somwhere going to your ISP there should be some sort of NAT statement when you send interwebs traffic.
    if your ISP is taking care of all of that for you, you probably need to let them know you added the subnet so they can do the NAT.
    HTH,
    Steve
    Please remember to rate useful posts, and mark questions as answered

  • Configuring 2504 WLC for LanSchool/AppleTV

    Good Day to All,
    Recently my small elementary schools have upgraded to Cisco Air-Cap2600 series AP's and a 2504 WLC. Very much a sweet step up from 10 year old Apple Airport Extremes.
    My question is what would be the best pratice to enable Multicast via the GUI for the needs of those platforms and any other future P2P services?
    Thanks in advance from a newbie,
    GEP

    What is the WLC software version running on your 2504 ?
    If it is 7.4.x follow the below reference guide
    http://www.cisco.com/en/US/docs/wireless/technology/bonjour/Bonjour_Deployment.html
    If it is 7.5.x following config guide should help
    http://www.cisco.com/en/US/docs/wireless/controller/7.5/config_guide/b_cg75_chapter_01011.html
    HTH
    Rasika

  • Cisco 2504 Capability Question

    Hello,
    I need to replace a 4402 with a 2504 controller and put a 2504 controller in the DMZ for guest access.  This would be the setup:
    The 4402 would be replaced at a remote site (not hreap) and support a couple of wlans, one of those would not be local and would be anchored back to the 2504 in the DMZ for the guest services.  All of my 5508's also would be hitting the 2504-DMZ to anchor the guest service as well.  Is this still feesable in the 2504 series?  I ask because I saw somewhere (albiet I cant find it again) that said you could not do anchors on the 2504 series?
    Thanks,
    Raun

    Looks like the answer about 2500 series being used as a guest anchor has changed:
    Q.   Can the Cisco 2100/2500 Series Wireless LAN Controller be used as a guest   anchor controller in the unsecured network area?
    A. Yes, starting Cisco Unified Wireless Network Software Release 7.4, the       Cisco 2500 Series Wireless LAN Controller can terminate (up to 15 EoIP tunnels)       guest traffic outside the firewall. The Cisco 2000 Series Wireless LAN       Controller can only originate guest tunnels.
    Reference: http://tiny.cc/d8ejcw

Maybe you are looking for

  • Workflow BOR

    Hi Experts, I have created a subclass for BOR = IDOCORDRSP like ZDOCORDRSP for using in my workflow. In my worflow i have to process my IDOC based on some condition I have calculated the status , if its 'A', i process the IDOC and update my Purchase

  • How to declare and read a variable more than 255 characters

    Hi Friends,       Actually i want to declare a variable which can accepts more than 255 characters as input and the same manner i want to read the data and pass the data as a output length more than 255 characters.   So how can i delcare the data as

  • What is a DBA??

    Hi, Could I have a dfeinition of what a DBA is. Throughout my career, I was lead to believe that a DBA facilitated a business in the storage of business information. However, in the contract I'm on now, the DBA believes that he should tell the busine

  • How to make a 'select .... where id in VARRAY' ?

    Hi all, Someone knows how to create a select using a varray? Like this: declare type arrayNumber is varray(20) of number; lista arrayNumber; v number; begin lista := arrayNumber(1,2,3); select 1 into v from dual where 1 in lista; end; If some one cou

  • About layout in netbeans

    Hii, I'm using Netbeans IDE for developing swing gui. which layout should be choosen, could anyone please suggest me!!! thanks Dev.