Backup WLC across a WAN

Currently we have 20 remote sites, each with 2-5 AP's each. They all connect back to our Main Data Site in the US and register on a single WLC5508.
We do not have a backup WLC, but are looking to purchase one.
What I would like to know is, are there any problems with the secondary WLC being installed in our Main Data Site in Europe?
These two main sites are connected via a 10M MPLS WAN.
So all the remote sites could still connect to the WLC in the US, but in the event of a WLC failure in the US, they would need to fail over to the site in Europe.
Are there any issues with having WLC's seperated across a WAN?                 

Normally Flexconnect is leveraged for remote office locations like you described. However, you can drive all the traffic back.
Based on your design, do you have layer 2 between the locations? If they are different when aps move from controller 1 to controller 2 with a different subnet clients can have issues.
"Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin
‎"I'm in a serious relationship with my Wi-Fi. You could say we have a connection."

Similar Messages

  • Use of 5508 WLC across the WAN as MC for unified access

    I came accross a remark that Cisco 5508 cannot be used for a MC role/functionality accross the WAN for Cisco 3850/3650 switches in the branch locations (acting as MA). The reason was some 10 ms transit time limits,..But i could not find any such mention in any of the documentation...Does any user have some link to this or perhaps a practical implemention experience.

    From CA design perspective, it is making no sense to put a MC at a central office for a branch MA switch stacks. Typically a branch you may have 1 SPG & you better off MA/MC functionality within the same SPG.
    If you have more than one SPG at your branch, then it is good idea to have a discrete controller at branch to do MC functionality (inter SPG roaming to be handled by MC). Instead,  if you keep MC at central office these user roaming decision will be taking un-acceptable amount of time depend on the WAN link propagation delays.
    Refer BRKCRS-2889-Converged Access System Architecture
    Here are two snapshots from above presentation to explain this
    HTH
    Rasika
    Pls rate all useful responses ****

  • How To create a new DAG across a WAN connection?

    In preparation to moving our mailbox/hub transport server from our local office to a data center, we would like to create a DAG, putting the second mailbox server into the data center
    What is the best way to start a DAG when the servers are across a WAN link?  There will be about 800GB data in the databases including primary mailboxes and archives.
    This is how the existing 2-server layout looks now (they are both Hyper-V VMs):
    There is a CAS-only Exchange 2010 server already in the data center as shown in the diagram.  Can we just add disk space and RAM to this CAS and enable the mailbox and hub transport roles on it and then sync the mailbox data to it over the course of
    several nights?  Can we restore the database from the previous day's backup of the other mailbox server to give it a head start?
    Once we have an up to date mail database working on in the data center and are able to use it, we would then like to disband the 2010 DAG, retire the original Exchange 2010 mailbox/hub transport server in our office and then migrate to Exchange 2013 with
    a new DAG in the data center.

    Hi ,
    As an additional info , database portability can be used on the following conditions.
    So we cannot swap the mailbox databases between the exchange 2010 and exchange 2013 and also we cannot make use that feature for public folder database.
    My suggestions : 
    First option : 
    Please install the MBX and HUB role on the server "exch 2010 CAS" and then use the database availability feature to mount the databases on the server "exch 2010 CAS" by using the restored .edb files and log files from backup.
    As Li
    Zhen mentioned you can use the database portability feature by referring the Paul's article.
    To have the up to date data availability we need an down time ,because you need to dismount the current databases once the full backup get completed to avoid creating of new logs.By doing so all the emails will get queued .Then we need to restore the .edb
    files and its respective logs on the server "exch 2010 CAS" .Then we need to create and mount the new database by using restored edb and log files by using the database portability method.Then we need to redirect the users from the old database to
    the new database on the server "exch 2010 CAS" .So till that time there would be an downtime for the users.
    Second option : 
    Please install the MBX and HUB role on the server "exch 2010 CAS" .Then create the new dag with both exchange 2010 as DAG members.
    Then on the server "exch 2010 CAS" , please do not seed the database by using the command update command.Instead you can follow the article to have the up to date passive copy but there will be a down time.
    https://social.technet.microsoft.com/Forums/exchange/en-US/bc6c739f-cbbb-4242-8d62-4182afd157b7/exhchange-2010-sp3-dag-pre-seed-with-arcserve-r15?forum=exchangesvravailabilityandisasterrecovery
    Then the final step would be to mount all the databases on the server "exch 2010 CAS" .Once your exchange 2013 environment is ready then you can start moving the mailboxes to the exchange 2013 servers from exchange 2010 server i.e "exch 2010
    CAS"
    Note : My suggestion would be to go with the second option.
    However on my side i am checking is there is any other way to avoid the downtime.If anyone knows about such kind of technologies please share with us.
    Thanks & Regards S.Nithyanandham

  • Can Windows Server Backup spread a single backup job across multiple disks if they are not set up as a virtual disk?

    This may be a dumb question, but I can't seem to find any definitive information after having done many, many searches.  Short question is - can Windows Server Backup spread a single backup job across multiple disks if they are not in a storage
    pool or some other RAID/JBOD structure?
    Background:
    I'm running Server 2012 Essentials with all Windows Updates installed.  I have been backing up approx 2.8TB of data (Bare Metal Recovery, C:, S: (shared folders), and system reserved) for the past year+ onto a storage pool made up of two-2TB external
    USB drives.  Backup is slow (takes approx 1.5 days to complete), but generally works.  Not surprisingly I was constantly getting capacity low messages so I decided to increase my backup storage pool by adding a 3TB drive and another spare 750GB drive
    for a total of 7.75TB.  Instead of having four separate external USB enclosures, I bot a 4-bay enclosure - Startech.com model #S3540BU33E to simplify this (or so I thought!).
    The first problem I had was adding the two new drives to the existing storage pool. I think that is because the Startech uses a JMicron USB controller that reports identical uniqueid's for all drives so only one shows up in the GUI interface for creating storage
    pools. After doing research on this, I set up a new storage pool and virtual disk using all four drives via Powershell and thought I was good. However, when the backup ran, it failed after filling the first drive, saying there was no remaining capacity. In
    reality there were three remaining empty drives and there storage pool reported almost 5TB of avail capacity. I assumed this was due to the identical uniqueid issue so I decided to try a different tactic.
    Instead of using a storage pool that combines all four disks into one virtual disk, I just added each of them to Windows Server Backup as individual drives thinking it would manage them collectively. I.e., when a drive filled up during a particular backup,
    it would just start using the next drive and so on. Apparently this was a foolish assumption because the backup failed again as soon as the first disk filled up.
    So now I don't know if this is still an issue with the identical uniqueid's or if Server Backup actually can't spread a single backup across multiple individual drives that aren't in a pool or other virtual disk implementation. Hence, my original question.
    My guess is that it does *not* spread them across individual disks, but I just wanted to get confirmation.
    Thanks

    Mandy,
    Thank you for following up on my question.
    Unfortunately the article you referenced doesn't address what I am trying to accomplish.
    The article focuses on saving the same backup job to multiple disks and rotating the disks between on and offsite for enhanced protection.  However, it still requires that an individual backup job fits on a single disk.
    What I am trying to determine is if a single backup job can span across more than one physical disk (during the backup process) without those physical disks being in some type of virtual disk implementation (e.g., storage pool, RAID, etc.).
    Thanks,
    Gerry

  • CWA redirect issue and access across the WAN

    Hello,
    I am trying to get CWA working on my wireless ISE setup and am having an issue where the guest portal redirect is pointing to the wrong port.  My setup is as follows:
    The PSN has two connections - Gig 0 is on our management VLAN 172.24.x.x  Gig 1 is on our guest network VLAN 10.190.x.x
    Using a laptop I connect to the guest ssid and guest portal times out as it is pointing to 172.24.x.x instead of the guest vlan 10.190.x.x
    We do not want guest traffic on the corp network for obvious reasons.
    One more question - Is it possible to have guest access work across the WAN?  For example, we have the admin box in Detroit and a PSN in Chicago.  Detroit's guest network is routed through a tunnel to Chicago currently.
    Some more info:
    Here is from the radius authentication details -
    cisco-av-pair=url-redirect=https://172.24.24.41:8443/guestportal/gateway?sessionId=ac18180a000024a45151d92d&action=cwa
    How do I force it to 10.190.x.x and how does ISE get 172.24.24.41 for the redirect address? DNS? I guess I am unfamiliar with how cisco-av-pair attribute is determined.  Any help will be greatly appreciated.

    Have you ran anything such as MTR on a Linux box (or WINMTR equivalent on PC)?  If so, can you find a trend in loss or high latency on a specific hop on the path? I would ensure you adjust the ICMP payload size to a higher size such as 1000Bytes and adjust the ping interval to every two seconds or so.  This ensures you are not running into an issue where the provider is rate limiting your pings, which is not uncommon for some providers, if the pings (ICMP messages) are terminating on their endpoints.
    Do you have QoS policies applied on interfaces on either end of these pings / traces?  If so, do you have assurance that ICMP messages will not be impacted by queue based dropping or shaping latency?  One solution is, move traffic from your ICMP traffic with the source or destination of your ICMP ping and trace endpoint in a priority queue with adequate bandwidth (should be a very low requirement).  This may not make sense since your bandwidth utilization is low, but shaping of busy flows can actually occur long before congestion, depending on your design. 
    Another item that may give you better insight is running and monitoring / graphing IP-SLA probes between your routers on each end.  You could then trend issues and give graphed evidence to your provider.  They could then compare your lossy  and high latency periods to their appliance interface, memory, and CPU loads to see if they can find a correlating trend.  It can be a hard battle to get ISPs to not only admit they have issues, but allocate resources to isolate and resolve these issues.  Good SLA probe data showing that their paths are not meeting delivery standards speak much louder that pings to them.

  • File syncronization across a WAN

    Does Snow Leopard server offer the feature of keeping files in sync? In an async manner across a WAN?
    I've been using Windows Server 2003 for file sharing. Two features are particularly useful, previous version, and Dynamic File Service Replication, are either of these supported in OS X server?
    The new Mac Mini as a server, with these features seems attractive.

    Search for information and discussion around the Unix command rsync, and around the installation and operation of a distributed version control system such as Mercurial (Hg) or git. There can also be replication services such as those available in various database packages.
    It is usually better to describe what requirement(s) or problem(s) you are solving here in a little more detail, and what sort of data is involved, rather than how you've solved the requirement(s) on another platform. Certainly how you've solved the problem on another platform can be very useful, but there can be alternative approaches and solutions that might not otherwise be considered; not without a problem statement.

  • LWAPP with WLC across VPN

    Hi,
    I have a few LWAPP model number: cap2602i-a-k9. I am tasked with registering these access points across a site to site VPN where the WLC is located.
    I am not sure how these access points should be configured, whether it should be done statically and using autonomous mode, or if possible with the H-REAP feature.
    The WLC is a 5508.
    Any input would be helpful.
    Thanks,
    Waqas

    Hi,
    Yes it can be configured as HREAP mode. You must create a DHCP pool for APs to get ip on remote location.
    There must be a way  configured for APs to search for WLC.
    H-REAP Modes of Operation Configuration Example
    http://www.cisco.com/c/en/us/support/docs/wireless-mobility/wireless-lan-wlan/81680-hreap-modes.html
    H-Reap Design and Deployment Guide
    http://www.cisco.com/c/en/us/support/docs/wireless/5500-series-wireless-controllers/71250-h-reap-design-deploy.html
    Regards
    Dont forget to rate helpful posts

  • Cisco Prime Infrastructure 1.3 - TFTP backup WLC not working

    I don;t get the the background task "Controller Configuration Backup" working. I want to use default TFTP.
    When i look in the logging i see 2 of three WLC's succesfully backuped there logging. Is their a log file where you can see what is happening?
    With kind regards,
    Martijn.

    Hi Martijn:
    If you go to the controller's GUI to Commands > Upload File and manually trigger the TFTP Configuration backup, does the process complete as expected?  If not, whatever's causing that problem needs to be addressed first.
    When someone wants to do a config backup from the command line, they give a series of commands
    transfer download datatype config
    transfer download mode tftp
    transfer download serverip x.x.x.x
    transfer download path ./
    transfer download filename myBackup.cfg
    transfer download start
    The Controller Config Backup background task is just the SNMP version of "transfer download filename " and "transfer download start".  If these other required settings aren't already there, the task isn't going to set them (the humans have to).  If there's a problem with writing out the file on the server, or packet routing issues to get to the server, the task isn't going to see those things, it just knows that the answer to "transfer download start" wasn't "Okay!"
    As for watching this processing in logs, go to Administration > Logging, and set the logging level to Trace for the modules SNMP and System, and click Save.  Then kick off your backup attempt, allowing it to fail.  When it does, return to Administration > Logging, and click the Download button to retrieve the logs.zip file.  The activity should be in the ncs-x-x.log file. 
    If you don't have the new Update-1 patch for Prime Infrastructure 1.3.0.20 (filename PI_1.3.0.20_Update_1-12.tar.gz) installed, I'd suggest you get it.  While it's not going to specifically address this issue, there are a lot of really good fixes in it.
    Release Notes for Update 1 for Cisco Prime Infrastructure 1.3.0.20

  • Anyone linking PBX E1 across a WAN ?

    Want to link a couple of Meridian exchanges across a low bit rate WAN using PRI - QSIG. Want to be able to send signalling channel uncompressed and associated voice timeslots using G.729 codec.
    Do i tunnel timeslot 15 or send as transparent ?
    Can anyone using this setup share their CFG or an example of this scenario ?
    Tks.

    I am using T1 PRI with Q.SIG. The other end could be any type of voice port such as E&M, FXS, or T1 PRI.
    This is basicly my config. The PBX adds 21 & 41 as an access code and so that I do not overlap dial-peers.
    hostname voice-rtr
    isdn switch-type primary-qsig
    controller T1 1/0
    framing esf
    linecode b8zs
    pri-group timeslots 1-24
    interface Loopback0
    ip address 10.16.53.241 255.255.255.255
    h323-gateway voip interface
    h323-gateway voip bind srcaddr 10.16.53.241
    interface FastEthernet0/0
    ip address 10.16.53.3 255.255.255.240
    speed 100
    full-duplex
    interface Serial1/0:23
    no ip address
    isdn switch-type primary-qsig
    isdn protocol-emulate network
    isdn incoming-voice voice
    isdn T203 20000
    no cdp enable
    voice-port 1/0:23
    input gain 2
    output attenuation 10
    description To PBX
    dial-peer voice 418000 pots
    description 8000-8999
    destination-pattern 418...
    direct-inward-dial
    port 1/0:23
    forward-digits 4
    dial-peer voice 211000 voip
    description 1000-1999
    max-conn 20
    destination-pattern 211...
    progress_ind connect enable 8
    session target ipv4:10.16.53.242
    codec g711ulaw <<<== change to G729
    expect-factor 0

  • Connecting to a wlc across subnets

    I have recently purchased a 4402 wireless controller to manage our access points. When I put the APs on the same subnet as the ap-manager subnet I get the ap to connect. When I put the ap on the wireless subnet, it will not connect. Does not even register.
    I read I need to do layer 3 routing on the 4502 for this to work. I am trying to do that now. Do I need to set up anything on my switches to make sure that the packets go through(sort of like defining where to find the DHCP server) or should it just work? Do I need to set up a WLAN ID that matches the WLAN ID that the switches use? I thought I tried that first and had no luck. Any ideas on this vague question?
    I am trying to dig through the documentation to see if I can find the answer but so far I have not found anything.
    Sent from Cisco Technical Support iPhone App

    You will want to make sure your APs can route from where ever you install them to the WLC managment address.
    How APs find the controller can happen a few different ways:
    1) DNS A record
    2) Layer 2 broadcast (which you seen already)
    3) IP Route Forward
    4) DHCP Option 43
    5) Manual Prime the AP
    Most folks lead with option 43.
    http://www.my80211.com/cisco-wlc-labs/2009/7/4/cisco-dhcp-option-43-configuration-nugget.html
    if you check the config guide you will explain the other processes.

  • LAP 1240 won't join WLC across subnets

    I am having a problem getting LAPs that are in other subnets to join our WLC. If I take the LAP and place it on the same VLAN/subnet as the WLC, it joins as expected. If I move it to another subnet, I get the following:
    *Mar 1 00:00:13.065: %SYS-5-RESTART: System restarted --
    Cisco IOS Software, C1200 Software (C1200-K9W8-M), Version 12.4(13d)JA, RELEASE SOFTWARE (fc2)
    Technical Support: http://www.cisco.com/techsupport
    Copyright (c) 1986-2008 by Cisco Systems, Inc.
    Compiled Fri 08-Feb-08 17:24 by prod_rel_team
    *Mar 1 00:00:13.119: %SSH-5-ENABLED: SSH 2.0 has been enabled
    *Mar 1 00:00:13.519: %LINK-5-CHANGED: Interface Dot11Radio1, changed state to reset
    *Mar 1 00:00:14.519: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio1, changed state to down
    *Mar 1 00:00:14.536: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to reset
    *Mar 1 00:00:14.545: %DOT11-6-FREQ_SCAN: Interface Dot11Radio0, Scanning frequencies for 24 seconds
    *Mar 1 00:00:15.536: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to down
    *Mar 1 00:00:28.133: %LWAPP-5-CHANGED: LWAPP changed state to DISCOVERY
    *Mar 1 00:00:28.171: %LINK-3-UPDOWN: Interface Dot11Radio0, changed state to up
    *Mar 1 00:00:28.177: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to reset
    *Mar 1 00:00:28.192: SSC Load Current Size crypto_mykey 120, offset 9389, Saved Size soap_cert_crypto_mykey 124
    *Mar 1 00:00:28.390: %LINK-3-UPDOWN: Interface Dot11Radio1, changed state to up
    *Mar 1 00:00:28.892: Logging LWAPP message to 255.255.255.255.
    %LINK-3-UPDOWN: Interface Dot11Radio0, changed state to up
    %SYS-6-LOGGINGHOST_STARTSTOP: Logging to host 255.255.255.255 started - CLI initiated
    %LINK-5-CHANGED: Interface Dot11Radio1, changed state to reset
    %LINK-3-UPDOWN: Interface Dot11Radio1, changed state to up
    %LINK-5-CHANGED: Interface Dot11Radio0, changed state to reset
    %LINK-3-UPDOWN: Interface Dot11Radio0, changed state to up
    %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to up
    %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio1, changed state to up
    %DHCP-6-ADDRESS_ASSIGN: Interface FastEthernet0 assigned DHCP address 192.168.115.75, mask 255.255.255.192, hostname AP0013.c3a7.bf97
    Translating "CISCO-LWAPP-CONTROLLER.mydomain.here"...domain server (X.X.X.X) [OK]
    %LWAPP-3-CLIENTEVENTLOG: Did not get vendor specific options from DHCP.
    %LWAPP-3-CLIENTEVENTLOG: Did not get log server settings from DHCP.
    %LWAPP-3-CLIENTEVENTLOG: Performing DNS resolution for CISCO-LWAPP-CONTROLLER.mydomain.here
    %LWAPP-3-CLIENTEVENTLOG: Controller address Y.Y.Y.Y obtained through DNS
    %LWAPP-5-CHANGED: LWAPP changed state to JOIN
    %LINK-5-CHANGED: Interface Dot11Radio0, changed state to administratively down
    %LINK-5-CHANGED: Interface Dot11Radio1, changed state to administratively down
    %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to down
    %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio1, changed state to down
    %LWAPP-3-CLIENTERRORLOG: Join Timer: did not recieve join response (controller - 2169-WLC4402-1)
    %LWAPP-3-CLIENTERRORLOG: Set Transport Address: no more AP manager IP addresses remain
    %SYS-5-RELOAD: Reload requested by LWAPP CLIENT. Reload Reason: DID NOT GET JOIN RESPONSE.
    %LWAPP-5-CHANGED: LWAPP changed state to DOWN
    I have checked the WLC for any messages that look like crypto or other problems, but I don't see anything that stands out. Any suggestions or pointers would be greatfully accepted.

    %LWAPP-3-CLIENTERRORLOG: Set Transport Address: no more AP manager IP addresses remain
    Can you provide more information such as:
    1. How many APs can the WLC4402 support and how many are currently joined?
    2. What is your WLC's firmware?
    3. Is there a possibility of a duplicate IP address in your network?
    Troubleshoot a Lightweight Access Point Not Joining a Wireless LAN Controller
    http://www.cisco.com/en/US/products/ps6366/products_tech_note09186a00808f8599.shtml

  • Do Time Machine backups carry across the OSX?

    Basically, I had a computer with Mavericks and the hard drive went crazy and I had to reinstall the OSX, yet the only thing I had around was a copy of Lion. So, what I'd like to know is if my Time Machine backup will also install Mavericks on top of Lion, or if I need to update to Mavericks FIRST and THEN do a Time Machine restore.
    Any help will be greatly appreciated.
    Thanks!

    OS X Mavericks: Recover your entire system

  • Do encrypted Time Machine backups work across a network?

    I see that Lion offers the option of encrypting TIme Machine backup volumes, which seems like a Good Thing.  After reading up a bit on this, it seems clear that it will handle the situation where the backup volume is physically attached to the machine being backed up.  However, I've gotten mixed signals about whether this will work with networked clients.  I have a server with a TM volume, and a number of machines on my network use that server and its disk for TM backups.  Can I encrypt the TM volume in this situation, and will Time Machine be able to back up from those clients to the server?  I can't think of any reason why it shouldn't work, but, like I said, the overall story isn't completely clear.  Thanks for any advice!

    There's nothing in the Help or other documentation I can find.
    Just that OSX can't do it from the Mac that's doing the backup. 
    There was a similar post the other day; I asked the poster to let us know whether it worked, but haven't gotten an answer yet.  So if you try it, please post back with your results.
    I do agree with coocoo, though -- if you want to do this, keep "secondary" backups, not encrypted, just in case.  See #27 in Time Machine - Frequently Asked Questions for some suggestions.

  • Backup/restore across Enterprise & Standard Editions?

    With the exception of incremental backups, are there any impediments to backing up from an Enterprise & restoring in a Standard edition??

    The restores via RMAN from EE to Standard should just work. Limitiation of the RMAN Standard edition are:
    Parallelization
    Duplexed backups
    TSPITR via RMAN
    Incrementals
    The other issue that you have to be concerned with is the features and functions that you have implemented in the EE version vs. the Standard version of the database.
    Thanks, Tammy

  • Backup Fotos across multiple DVDs

    Hi
    What is the easiest way to backup all my iPhoto Pictures to several DVDs?
    I don't want to manually distribute the pictures an the DVDs.
    Thanks for the help.

    You have a big problem, a very big problem and you need to deal with it first.
    Your disk is seriously overcrowded. You are in serious risk of major dataloss.
    OS X needs about 10 gigs of hard drive space for normal OS operations - things like virtual memory, temporary files and so on. (Much more if you regularly work with large files like video or uncompresse photos.)
    Without this space your Mac will slow down as the OS hunts for space on the disk, files will be fragmented, also slowing things down, apps will crash and the risk of data corruption - that is damage to your files, photos, music - increases exponentially.
    Your first priority is to make more space on that HD. Nothing else can be done until you do.
    Purchase an external HD and move your Photos and Music to it. Both iPhoto and iTunes can run perfectly well with the Library on an external disk.
    I can't stress enough how serious the situation is. While the Finder may report 7 gigs available it may be considerably less. Why? Because with an overcrowded disk you can't rely on the Finder to accurately report the situation.
    FIx that and your burning issue will go away, I'll bet.
    Regards
    TD

Maybe you are looking for