Cisco 1142 AP as a repeater
Hi,
I am a bit confused with the GUI configuration of an AP and repeater my concerns are:
I have 3 AP 1142 series i want two APs to be connected to the main AP(ethernet) while the others act as repeaters.
How do i go about creating an AP as a repeater to assoicate with the AP connected to a switch
Thanks
Hello Samson,
As per your query i can suggest you the following solution-
Configuring a Repeater Using the CLI
If you want to configure your AP as a repeater and use the command-line interface, the following is an example configuration setting. This example configures the AP with two parents:
ap1130# configure terminal
ap1130(config)# interface dot11radio 0
ap1130(config-if)# ssid qbranch
ap1130(config-ssid)# infrastructure-ssid
ap1130(config-ssid)# exit
ap1130(config-if)# station-role repeater
ap1130(config-if)# dot11 extensions aironet
ap1130(config-if)# parent 1 0012.7fc2.1bdc 1000
ap1130(config-if)# parent 2 0012.44b4.b250 1000
ap1130(config-if)# end
ao1130# copy running-config startup-config
Hope this will help you.
Similar Messages
-
Cisco 1142 WAP Connection Help
We have a Cisco 1142 WAP connected to a Cisco Wireless Controller in a remote office area. For meetings we wanted to have more hard wired connections in addition to Wifi access for attendee's / presentors etc..My question is if we purchased a Cisco 8 port POE mini switch and put that in the middle between the WAP and Controller would that work? Or is there another business grade solution for a mix of Ethernet ports and Wifi?
Yes, sir. This will work. The only "problem" I see is your 8 port PoE switch. Let me explain:
The good part about Cisco's 8-port PoE switches, the WS-C3560-8PC, is that it is FANLESS. So even if you stick the switch right inside this conference or meeting room, no one will notice it's there (unless of course, one steps on the hot surface or gives the appliance a good kick).
This model has a 1Gig SFP or RJ45 port uplink.
Now the downside is not really that significant, unless you want to be pedantic about it. The access ports are all 10/100BaseTX only.
By the way, I have no way of testing the "compact" series of the 2960C and the 3560C. The Data Sheet itself is a bit "grey" so I won't make a comment about these two models. -
Cisco 1142 Wireless access point intermittently will not authenticate
Hi all,
We have a Cisco 1142 standalone access point, and from time to time I will come into the office and it will not authenticate any users to either our guest or corporate networks. I then have to go in and reboot the access point. After that, it begins to work. Any advice? Here's my configuration below:
Current configuration : 6450 bytes
version 12.4
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
hostname cisco-chiap01
logging monitor errors
enable secret 5 $1$fsD8$CU42/3/Up5AAlL4hQWvvg0
aaa new-model
aaa group server radius rad_eap
server 172.17.16.12 auth-port 1645 acct-port 1646
server 172.17.21.10 auth-port 1812 acct-port 1813
aaa group server radius rad_mac
aaa group server radius rad_acct
aaa group server radius rad_admin
aaa group server tacacs+ tac_admin
aaa group server radius rad_pmip
aaa group server radius dummy
server 172.17.21.10 auth-port 1812 acct-port 1813
aaa group server radius rad_eap2
server 172.17.16.12 auth-port 1645 acct-port 1646
server 172.17.21.10 auth-port 1812 acct-port 1813
aaa authentication login eap_methods group rad_eap
aaa authentication login mac_methods local
aaa authentication login eap_methods2 group rad_eap2
aaa authorization exec default local
aaa accounting network acct_methods start-stop group rad_acct
aaa session-id common
login on-failure log
login on-success log
dot11 syslog
dot11 vlan-name Admin vlan 100
dot11 vlan-name DevNetwork vlan 20
dot11 vlan-name Guest vlan 150
dot11 vlan-name Network vlan 16
dot11 ssid DevNetwork
vlan 20
authentication open eap eap_methods2
authentication network-eap eap_methods2
authentication key-management wpa version 2
dot11 ssid Guest
vlan 150
authentication open
authentication key-management wpa version 2
guest-mode
mbssid guest-mode
wpa-psk ascii 7 142407060101380B013A3A2670435642
information-element ssidl advertisement
dot11 ssid Network
vlan 16
authentication open eap eap_methods2
authentication network-eap eap_methods2
authentication key-management wpa version 2
username monkeyman privilege 15 secret 5 $1$ZZ7C$rqimu2FNONdfeacMNGAD/.
bridge irb
interface Dot11Radio0
no ip address
ip helper-address 172.17.19.10
no ip route-cache
encryption mode ciphers aes-ccm
encryption vlan 16 mode ciphers aes-ccm
encryption vlan 150 mode ciphers aes-ccm
encryption vlan 20 mode ciphers aes-ccm
ssid DevNetwork
ssid Guest
ssid Network
antenna gain 0
parent timeout 120
speed 5.5 11.0 basic-6.0 9.0 12.0 36.0 48.0 54.0
packet retries 128 drop-packet
channel 2462
station-role root
rts threshold 512
rts retries 128
interface Dot11Radio0.11
encapsulation dot1Q 11
no ip route-cache
interface Dot11Radio0.16
encapsulation dot1Q 16 native
no ip route-cache
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
bridge-group 1 spanning-disabled
interface Dot11Radio0.20
encapsulation dot1Q 20
no ip route-cache
bridge-group 20
bridge-group 20 subscriber-loop-control
bridge-group 20 block-unknown-source
no bridge-group 20 source-learning
no bridge-group 20 unicast-flooding
bridge-group 20 spanning-disabled
interface Dot11Radio0.150
encapsulation dot1Q 150
no ip route-cache
bridge-group 150
bridge-group 150 subscriber-loop-control
bridge-group 150 block-unknown-source
no bridge-group 150 source-learning
no bridge-group 150 unicast-flooding
bridge-group 150 spanning-disabled
interface Dot11Radio1
no ip address
ip helper-address 172.17.19.10
no ip route-cache
encryption vlan 16 mode ciphers aes-ccm
encryption vlan 150 mode ciphers aes-ccm
encryption vlan 20 mode ciphers aes-ccm
ssid DevNetwork
ssid Guest
ssid Network
antenna gain 0
traffic-metrics aggregate-report
dfs band 3 block
mbssid
parent timeout 120
speed 6.0 12.0 basic-24.0 36.0 48.0 54.0
channel width 40-above
channel dfs
station-role root access-point
interface Dot11Radio1.11
encapsulation dot1Q 11
no ip route-cache
interface Dot11Radio1.16
encapsulation dot1Q 16 native
no ip route-cache
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
bridge-group 1 spanning-disabled
interface Dot11Radio1.20
encapsulation dot1Q 20
no ip route-cache
bridge-group 20
bridge-group 20 subscriber-loop-control
bridge-group 20 block-unknown-source
no bridge-group 20 source-learning
no bridge-group 20 unicast-flooding
bridge-group 20 spanning-disabled
interface Dot11Radio1.150
encapsulation dot1Q 150
no ip route-cache
bridge-group 150
bridge-group 150 subscriber-loop-control
bridge-group 150 block-unknown-source
no bridge-group 150 source-learning
no bridge-group 150 unicast-flooding
bridge-group 150 spanning-disabled
interface GigabitEthernet0
no ip address
no ip route-cache
duplex auto
speed auto
no keepalive
interface GigabitEthernet0.11
encapsulation dot1Q 11
no ip route-cache
interface GigabitEthernet0.16
encapsulation dot1Q 16 native
no ip route-cache
bridge-group 1
no bridge-group 1 source-learning
bridge-group 1 spanning-disabled
interface GigabitEthernet0.20
encapsulation dot1Q 20
no ip route-cache
bridge-group 20
no bridge-group 20 source-learning
bridge-group 20 spanning-disabled
interface GigabitEthernet0.100
encapsulation dot1Q 100
ip address 192.168.100.3 255.255.255.0
no ip route-cache
bridge-group 100
no bridge-group 100 source-learning
bridge-group 100 spanning-disabled
interface GigabitEthernet0.150
encapsulation dot1Q 150
no ip route-cache
bridge-group 150
no bridge-group 150 source-learning
bridge-group 150 spanning-disabled
interface BVI1
ip address 172.17.16.251 255.255.255.0
no ip route-cache
ip http server
no ip http secure-server
ip http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag
ip radius source-interface GigabitEthernet0
access-list 1 permit 172.17.16.1
access-list 1 remark Admin network access
access-list 1 permit 192.168.100.0 0.0.0.255
radius-server attribute 32 include-in-access-req format %h
radius-server host 172.17.21.10 auth-port 1812 acct-port 1813 key 7 047958071C3561410D4A44
radius-server host 172.17.16.12 auth-port 1645 acct-port 1646 key 7 08045E471A48574446
radius-server host 172.17.21.10 auth-port 1645 acct-port 1646 key 7 1320051B185D56797F
radius-server timeout 15
radius-server vsa send accounting
bridge 1 route ip
line con 0
line vty 0 4
access-class 1 in
endWhen the issue occurs does that affect both 2.4GHz & 5GHz devices ? I would see which band operating devices affected.
I noticed you have set CH11 under Radio 0 statically. I would prefer to configure it as below so AP can change the channel depend on the environment.
int d0
channel least-congested
HTH
Rasika
**** Pls rate all useful responses **** -
Wireless non-cisco router with aironet 1242 repeater.
Hello everyone. I'm a newbie here. I just started learning about cisco devices. Sorry if my question seems stupid.
I have a problem. A friend gave me an AP aironet 1242 and he wants to use it as a repeater for his wireless non cisco router.
Is this possible? And if it is how can i do it with simple steps.
Thanks in advance!Thanks for the quick response Scott. I 've read this quide before i post.
The problem is that i can't connect with serial to the ap. So i can't use commands.
I can connect with ethernet and see the ap interface. When i go and make the radio0 work as a repeater it shows interface down. What i want is simple steps of how to configure it from the interface.
Sorry again. -
I have a Cisco Aironet 1142 that keeps having issues with DotRadio0 going to a reset state. If I reload it seems to function for awhile and then it happens again shortly there after.
Apr 17 18:08:24.619: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to reset
Apr 17 18:08:25.619: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to down
ap# show int desc
Interface Status Protocol Description
BV1 up up
Do0 reset down
Do0.651 reset down
Do0.653 reset down
Do1 up up
Do1.651 up up
Do1.653 up up
Gi0 up up
Gi0.604 up up
Gi0.651 up up
Gi0.653 up up
ap# show version
Cisco IOS Software, C1140 Software (C1140-K9W7-M), Version 12.4(21a)JA1, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2009 by Cisco Systems, Inc.
Compiled Wed 16-Sep-09 18:09 by prod_rel_team
ROM: Bootstrap program is C1140 boot loader
BOOTLDR: C1140 Boot Loader (C1140-BOOT-M) Version 12.4(23c)JA3, RELEASE SOFTWARE (fc1)
ap uptime is 18 minutes
System returned to ROM by reload
System restarted at 14:15:15 -0400 Wed Apr 17 2013
System image file is "flash:/c1140-k9w7-mx.124-21a.JA1/c1140-k9w7-mx.124-21a.JA1"I believe the RF is good we have 8 access points through out the building and normally dont have any issues with connectivity. We have not done a site survey yet so that is probaby something we should look into next. Below is the current configuration. To reinterate the AP functions good for awhile and then resets. Upon a reload it works again fine for awhile and resets. I have 4 AP's that are doing the same thing and are placed in various points around the building.
version 12.4
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
hostname xxxxxxxx
aaa new-model
aaa group server radius rad_eap
server 10.38.10.33 auth-port 1645 acct-port 1646
server 10.38.10.34 auth-port 1645 acct-port 1646
aaa group server radius rad_mac
server 10.38.10.33 auth-port 1645 acct-port 1646
server 10.38.10.34 auth-port 1645 acct-port 1646
aaa group server radius rad_acct
server 10.38.10.33 auth-port 1645 acct-port 1646
server 10.38.10.34 auth-port 1645 acct-port 1646
aaa group server radius rad_admin
server 10.38.10.33 auth-port 1645 acct-port 1646
server 10.38.10.34 auth-port 1645 acct-port 1646
aaa group server tacacs+ tac_admin
aaa group server radius rad_pmip
aaa group server radius dummy
aaa authentication login default local
aaa authentication login eap_methods group rad_eap
aaa authentication login mac_methods local
aaa authorization exec default local
aaa accounting network acct_methods start-stop group rad_acct
aaa session-id common
clock timezone -0500 -5
clock summer-time -0400 recurring
ip domain name panther.com
ip name-server 10.38.10.33
ip name-server 10.38.10.34
dot11 syslog
dot11 vlan-name VLAN604 vlan 604
dot11 vlan-name VLAN651 vlan 651
dot11 vlan-name VLAN653 vlan 653
dot11 ssid PanGuest
vlan 653
authentication open
mbssid guest-mode
dot11 ssid PanWifi
vlan 651
authentication open eap eap_methods
authentication key-management wpa version 2
accounting acct_methods
mbssid guest-mode
username xxxxxxx privilege 15 password 7 xxxxxxxxxxxx
bridge irb
interface Dot11Radio0
no ip address
no ip route-cache
encryption vlan 651 mode ciphers aes-ccm
encryption vlan 653 key 1 size 40bit 7 xxxxxxxxxxx transmit-key
encryption vlan 653 mode ciphers wep40
ssid PanGuest
ssid PanWifi
antenna gain 0
mbssid
channel width 40-above
station-role root
bridge-group 1
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
bridge-group 1 spanning-disabled
interface Dot11Radio0.651
encapsulation dot1Q 651
no ip route-cache
bridge-group 255
bridge-group 255 subscriber-loop-control
bridge-group 255 block-unknown-source
no bridge-group 255 source-learning
no bridge-group 255 unicast-flooding
bridge-group 255 spanning-disabled
interface Dot11Radio0.653
encapsulation dot1Q 653
no ip route-cache
bridge-group 254
bridge-group 254 subscriber-loop-control
bridge-group 254 block-unknown-source
no bridge-group 254 source-learning
no bridge-group 254 unicast-flooding
bridge-group 254 spanning-disabled
interface Dot11Radio1
no ip address
no ip route-cache
encryption vlan 651 mode ciphers aes-ccm
encryption vlan 653 key 1 size 40bit 7 xxxxxxxxxxx transmit-key
encryption vlan 653 mode ciphers wep40
ssid PanGuest
ssid PanWifi
antenna gain 0
no dfs band block
mbssid
channel width 40-above
channel dfs
station-role root
bridge-group 1
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
bridge-group 1 spanning-disabled
interface Dot11Radio1.651
encapsulation dot1Q 651
no ip route-cache
bridge-group 255
bridge-group 255 subscriber-loop-control
bridge-group 255 block-unknown-source
no bridge-group 255 source-learning
no bridge-group 255 unicast-flooding
bridge-group 255 spanning-disabled
interface Dot11Radio1.653
encapsulation dot1Q 653
no ip route-cache
bridge-group 254
bridge-group 254 subscriber-loop-control
bridge-group 254 block-unknown-source
no bridge-group 254 source-learning
no bridge-group 254 unicast-flooding
bridge-group 254 spanning-disabled
interface GigabitEthernet0
no ip address
no ip route-cache
duplex auto
speed auto
no keepalive
interface GigabitEthernet0.604
encapsulation dot1Q 604 native
no ip route-cache
bridge-group 1
no bridge-group 1 source-learning
bridge-group 1 spanning-disabled
interface GigabitEthernet0.651
encapsulation dot1Q 651
no ip route-cache
bridge-group 255
no bridge-group 255 source-learning
bridge-group 255 spanning-disabled
interface GigabitEthernet0.653
encapsulation dot1Q 653
no ip route-cache
bridge-group 254
no bridge-group 254 source-learning
bridge-group 254 spanning-disabled
interface BVI1
ip address 10.38.4.18 255.255.255.0
no ip route-cache
ip default-gateway 10.38.4.1
ip http server
ip http authentication aaa
no ip http secure-server
ip http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag
ip radius source-interface BVI1
access-list 111 permit tcp any any neq telnet
radius-server attribute 32 include-in-access-req format %h
radius-server host 10.38.10.33 auth-port 1645 acct-port 1646 key 7 xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
radius-server host 10.38.10.34 auth-port 1645 acct-port 1646 key 7 xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
radius-server deadtime 60
radius-server vsa send accounting
bridge 1 route ip
line con 0
access-class 111 in
line vty 0 4
access-class 111 in
transport input ssh
sntp server 10.38.4.1
sntp broadcast client
end -
Cisco 1142 WGB in a controller based network
Hi,
I have trouble with Cisco AP1142 which is configured in WGB mode. I'm trying to get it work in a controller based network, where LAPs are configured in H-REAP. SSID where WGB should be associated drops it traffic to VLAN60. Security type is WPA2-PSK.
I've configured the WGB and it associates and gets IP from the correct network....but the problem is that laptop connected to WGB won't work. It gets no IP address and won't work with static IP.
At the moment I have no VLANs configured on the WGB - should I have?
AP IOS version is 12.4(25d)JA and WLC version is 7.0.98.0.
Please find config file attached and also a topology image. Hope these help.
Br,
PetriHi Petri,
WGB mode with HREAP is not supported:
http://tools.cisco.com/squish/dcAfC
http://tools.cisco.com/squish/CcFE6
You may want to test this with uWGB mode and static IP config.However, there is a new bug filed for uWGB mode as well:
CSCtl21683 uWGB needs official testing and support with h-reap
HTH,
Alex -
Require help to configure Cisco 1142 AP
Hi Team,
I'm new to Wireless. Recently I've configured a Wireless AP (Model:AIR-AP1142N-A-K9) with the help of a Youtube Video.
Please find the Below configuration details:
AP Configuration:
<REMOVED>#show run
Building configuration...
Current configuration : 4955 bytes
version 12.4
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
hostname <REMOVED>
enable secret 5 $1$nyT5$7naR21WqmWcPukAhSssAo/
no aaa new-model
ip domain name <REMOVED>
dot11 syslog
dot11 vlan-name MGMT_VLAN vlan 20
dot11 vlan-name WIRELESS_LAN vlan 30
dot11 ssid <REMOVED>
vlan 30
authentication open
guest-mode
crypto pki trustpoint TP-self-signed-<removed>
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-<removed>
revocation-check none
rsakeypair TP-self-signed-<removed>
crypto pki certificate chain TP-self-signed-<removed>
certificate self-signed 01
<removed>
quit
username <REMOVED> privilege 15 password 7 01100F175804
username <REMOVED> Privilege 15 secret 5 $1$Jeq0$SxvYfrDZkWNx5N3XITAab0
username <REMOVED> privilege 15 secret 5 $1$e9Mc$JwGalVaHjrFf4Gn4kj/VY1
username <REMOVED> privilege 0 secret 5 $1$0eRJ$OzYn1oU.1W8aDOVi27Fbt0
bridge irb
interface Dot11Radio0
no ip address
no ip route-cache
encryption mode ciphers aes-ccm
encryption vlan 30 key 1 size 40bit 7 <REMOVED> transmit-key
encryption vlan 30 mode wep mandatory
ssid <REMOVED>
antenna gain 0
channel 2412
station-role root
interface Dot11Radio0.20
encapsulation dot1Q 20 native
no ip route-cache
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
bridge-group 1 spanning-disabled
interface Dot11Radio0.30
encapsulation dot1Q 30
no ip route-cache
bridge-group 30
bridge-group 30 subscriber-loop-control
bridge-group 30 block-unknown-source
no bridge-group 30 source-learning
no bridge-group 30 unicast-flooding
bridge-group 30 spanning-disabled
interface Dot11Radio1
no ip address
no ip route-cache
shutdown
antenna gain 0
dfs band 3 block
channel dfs
station-role root
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
bridge-group 1 spanning-disabled
interface GigabitEthernet0
no ip address
no ip route-cache
duplex auto
speed auto
no keepalive
interface GigabitEthernet0.20
encapsulation dot1Q 20 native
no ip route-cache
bridge-group 1
no bridge-group 1 source-learning
bridge-group 1 spanning-disabled
interface GigabitEthernet0.30
encapsulation dot1Q 30
ip helper-address 192.168.30.1
no ip route-cache
bridge-group 30
no bridge-group 30 source-learning
bridge-group 30 spanning-disabled
interface BVI1
description <<< LAN INTERFACE >>>
ip address 192.168.20.202 255.255.255.0
no ip route-cache
ip default-gateway 192.168.20.2
no ip http server
ip http secure-server
ip http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag
access-list 115 remark <<< ACL-FOR-SSH-ACCESS >>>
access-list 115 permit tcp host 192.168.20.190 any eq 22
access-list 115 permit tcp host 192.168.20.191 any eq 22
access-list 115 permit tcp host 192.168.20.192 any eq 22
access-list 115 permit tcp host 192.168.20.193 any eq 22
access-list 115 permit tcp host 192.168.20.194 any eq 22
access-list 115 permit tcp host 192.168.20.195 any eq 22
access-list 115 deny tcp any any
bridge 1 route ip
line con 0
login local
stopbits 1
line vty 0 4
access-class 115 in
exec-timeout 5 0
login local
transport input ssh
transport output none
line vty 5 15
access-class 115 in
login local
transport input ssh
transport output none
end
Access Switch Configuration :
<REMOVED>#show run int gig 1/0/1
Building configuration...
Current configuration : 129 bytes
interface GigabitEthernet1/0/1
description ** Trunk to GF-AP1 **
switchport trunk native vlan 20
switchport mode trunk
end
Core Switch side Configuration:
ip dhcp excluded-address 192.168.30.1 192.168.30.10
ip dhcp pool WIRELESS_SCOPE
network 192.168.30.0 255.255.255.0
default-router 192.168.30.1
dns-server 192.168.20.66
With the above configuration the AP is working fine and it's getting DHCP ip address from the Core switch and the users are also able to access all the internal network resources and Internet too according to customer requirement.
But recently customer raised few concerns:
1. Customer is unable to login into AP by using WEBBROWSER
(error: The Server 192.168.20.202:443 requires a username and password. The server says: Lever_15_access.)
SSH to the AP is working fine.
2. Customer is asking to create 2 SSIDs in every access point.
a.) COMPANY SSID (Which should have full access to the local network as well as Internet too.)
b.) GUEST SSID (Which should only access internet but not internal network.)
3. Only few users should be able to access GUI of AP as I've done for SSH using ACL's
Kindly help with the above concerns as I've to answer the customer tomorrow.
Regards,
Vamsi Harish.T.
[email protected]Hi,
Same local credentials that you use for SSH can be used for http/https.
Make sure you provide correct credentials. If still not working provide a screenshot of the error and try to enable http server for testing purposes only and try if it works with http.
For multiple SSIDs with multiple VLANs try this config example:
https://supportforums.cisco.com/docs/DOC-14496
HTH
Amjad
Rating useful replies is more useful than saying "Thank you" -
WCS v7.0.164.0 + Cisco 1142 LWAP AP's
I have deployed a number of AIR-LAP1142N-E-K9 access points at a site, but I have an issue where all access point have defaulted to Channel 1. I have set the perameters on the Lightweight AP Template correctly to allow dinamic power and channel selection. The positioning of the AP's are as per the WCS planning tool. Any help would be welcome.....
It's also possible DCA is disabled on the WLC, check it under:
802.11a > RRM > Dynamic Channel Assignment (DCA)
Also check your power:
802.11a > RRM > Tx Power Control(TPC)
Nabil -
Can I use Cisco 521 AP as a repeater to another Cisco 521 AP that is working as a root?
Hello Samson,
As per your query i can suggest you the following solution-
Configuring a Repeater Using the CLI
If you want to configure your AP as a repeater and use the command-line interface, the following is an example configuration setting. This example configures the AP with two parents:
ap1130# configure terminal
ap1130(config)# interface dot11radio 0
ap1130(config-if)# ssid qbranch
ap1130(config-ssid)# infrastructure-ssid
ap1130(config-ssid)# exit
ap1130(config-if)# station-role repeater
ap1130(config-if)# dot11 extensions aironet
ap1130(config-if)# parent 1 0012.7fc2.1bdc 1000
ap1130(config-if)# parent 2 0012.44b4.b250 1000
ap1130(config-if)# end
ao1130# copy running-config startup-config
Hope this will help you. -
Cisco 2504 Domain Authentication for WIFI Clients
I got a question.
I have a 2504 controller, and a bunch of 3600 APs. (which now works, thanks to Scott Fella)
I want the WIFI users to be able to connect to the WIFI, If their computer is part of the domain. Otherwise, they connect to the guest WIFI.
How can I go about doing that? I tried searching the forums, but perhaps Im not searching for the right keywords.
I thought it was LDAP, but I could not find much info on it.
Thanks....I wouldn't look at LDAP. I would use a radius server and machine authentication. If your a Microsoft shop, then bring up IAS for 2003 or NPS for 2008. These can work as your radius server. To figure out how to configure machine auth, just search Google for NPS wireless machine authentication.
Here is one link
http://araihan.wordpress.com/2010/04/30/complete-guide-to-build-a-cisco-wireless-infrastructure-using-cisco-wlc-5500-cisco-1142-ap-and-microsoft-radius-server/
Sent from Cisco Technical Support iPhone App -
Cisco 1142AP Autonomous - Radio interface constantly reset and provides crash file
Hello All,
We have 10 Cisco 1142 Access Points currently configured as Autonomous and I'm experiecing very unusual behavior with the 2.4GHz radio interfaces on each of them. The IOS firmware is 15.2.2JB and they're connected to Cisco 2960 PoE switches. I'm not sure what could be causing this problem however it is service impacting and looks bad on me since I don't have a solution for it. One potential fix could be to upgrade the firmware to 15.2.4 but I'm sure if it is a firmware problem. Any advice would help. Here's an excerpt from the AP log:
Aug 18 14:40:16: Writing driver stats to flash:/ap_log_r0_0.log..
Aug 18 14:40:21:
Aug 18 14:40:21: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to reset
Aug 18 14:40:22: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to down
Aug 18 14:40:23: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to up
Aug 18 14:40:23: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to down
Thanks,
Ali IbrahimYou should be able to go in and view teh R0_0.log file.
there might be something in there that you can do a bug search for.
HTH,
Steve -
How to configure two Cisco WLC-5508-50
Hi everyone, last year we buy 1 wlc-5508-50 to use with cisco 1142 AP. This year we plan to add more APs and we just buy another WLC-5508-50 because it was cheaper than to buy 50 licences. We would like to know what is the best way to configure our second WLC so that we can distribute our 75 APs on each controller. Maybe someone can help us. Thanks!
Hi Bernard,
If you have WCS, you can use templates to synchronize your configurations on the WLCs.
Another possibility is you can upload your current configuration from your production WLC, and then open up the configuration file and edit the IP addresses to give new addresses to the new WLC. You will also want to change the system name to be unique as well. You can then download this config onto the new WLC, as long as the IP addresses and system name are different it should not interfere with your current WLC.
To have the WLCs operate together properly, you will want to make sure they are defined in a mobility group, see the following for instructions:
http://www.cisco.com/en/US/docs/wireless/controller/7.0/configuration/guide/c70mobil.html
-Patrick Croak
Wireless TAC -
Cisco Aironet 3502i and Virtual Wireless Controller- Question
Hello everyone,
As soon, I purchased two Cisco 3502i and Cisco 1142 however, two issue are that I don't have controller and smartnet. As my purpose, it using for Home Use but house with 2,500 Sq ft with two floor and new 24x24ft garage with two floor. I put two Cisco 3502i for garage and one cisco 1142 in house on second floor. Separated for multi media, gaming, streaming high resolution video, parts, and downloads programmings online. It will run with Cisco Catalyst Express 500 with 24 ports (4 POE) and two gigabit ports. In house, it have Dell Poweredge 2850, Cisco Catalyst Express 500 with 24 ports POE and 2 ports gigabit.
I thought to make my own developing with my first time using Wireless Controller. I wanted to try out with Virtual WLC on Dell Poweredge 2850 running ESXi 4.1.
Specs for Dell Poweredge 2850:
- 2x Intel Xeon Dual Core 3.8 GHz
- 4GB RAM (Will upgrade to 12GB soon)
- 2x 146GB and 2x 36GB SCSI
- 2x 1 Gbps built in and 4x 1 Gbps PCI-X
Developing with Untangle and pfSense to make it support with LADP and VLAN to both Cisco Express 500 using 4 gbps PCI-X. I have read the requipment list to use Virtual WLC but it seem met the requipment for my 2850. If someone offer me to get Virtual WLC and IOS from their, I accept to "borrow" it. I do go college which is Rochester Institute of Technology at New York and my major is Applied Computer Technology. I live here at Hampton Road, Virginia. Just in case if you might know about RIT. I just start to learning myself with Cisco books.
I have a question:
- Is there possible to get trial or full version of Virtual WLC?
- Is there possible to get Lightweight or Autonomous IOS for Cisco 1142 and 3502i?
- Does it supported Dell PowerEdge 2850?
- Does 3502i support Autonomous? (Not actually but I have researched around online about that it will work with 1262's IOS)
Thanks
GageAnswers in-line...
I have a question:
- Is there possible to get trial or full version of Virtual WLC?
No. You will need a SmartNet contract (or a freshly purchased device) to obtain software from cisco. Nobody will provide this to you.
- Is there possible to get Lightweight or Autonomous IOS for Cisco 1142 and 3502i?
No. You will need a SmartNet contract (or a freshly purchased device) to obtain software from cisco.
Nobody will provide this to you.
- Does it supported Dell PowerEdge 2850?
Cisco doesn't go in to great detail regarding the actual Hardware requirements of the vWLC (as far as ESX Host requirements). Primarily, making sure you are running ESX 4.x/5.x is necessary. The vWLC provisions 2Gb of RAM and 8GB of thick provisioned storage, so if your host can accomodate I don't see any reason it wouldn't work.
- Does 3502i support Autonomous? (Not actually but I have researched around online about that it will work with 1262's IOS)
Yes, with the latest versions of IOS 15.2(2)JB, full functionality in autonomous can be achieved on the 1550, 3500, and 3600 series APs
http://www.cisco.com/en/US/docs/wireless/access_point/ios/release/notes/15.2_2_JB.html#wp355587 -
Hi all and Merry Christmas to you.
So I have been off work for a few days now playing in my lab, I have configured a number of VLAN’s to separate Data, Voice, Servers, Games Consoles and Guest on my Cisco 1142, I know it may be a bit of an over kill but it’s just me doing a bit of lab work and learning
What I’m after doing now is setting up ACL’s to deny the Guest and Games Console VLAN from accessing my LAN and I’m not sure where to start, I want to consoles only to be able to connect to PSN and Xbox networks as well as my DHCP server, and the guest network to connect to the web but again not my LAN, this is for users who come round with phones and tablets.
My lab look like this:-
Broadband > Cisco RVS4000 (soon to be ASA) > WS-C3560 > 1142 AP.
My DHCP server is on VLAN 6 with an IP address of 192.168.6.241
VLANs are: -
interface Vlan5
description *****DATA VLAN*****
ip address 192.168.5.253 255.255.255.240
ip helper-address 192.168.6.241
interface Vlan6
description *****Servers*****
ip address 192.168.6.254 255.255.255.240
interface Vlan7
description *****VOICE*****
ip address 192.168.7.254 255.255.255.240
ip helper-address 192.168.6.241
interface Vlan8
description *****VOICE WIFI*****
ip address 192.168.8.254 255.255.255.240
ip helper-address 192.168.6.241
interface Vlan9
description *****WIFI CONSOLES*****
ip address 192.168.9.254 255.255.255.240
ip helper-address 192.168.6.241
interface Vlan10
description *****WiFi Home*****
ip address 192.168.10.254 255.255.255.240
ip helper-address 192.168.6.241
interface Vlan11
description *****WiFi Guest*****
ip address 192.168.11.254 255.255.255.240
ip helper-address 192.168.6.241
interface Vlan12
description *****Management*****
ip address 192.168.12.254 255.255.255.240
The AP config looks like:
dot11 ssid Console
vlan 9
authentication open
authentication key-management wpa
mbssid guest-mode
wpa-psk ascii 7 094F4107170A051103
dot11 ssid Home
vlan 10
authentication open eap eap_methods
authentication network-eap eap_methods
guest-mode
mbssid guest-mode
interface Dot11Radio0.9
encapsulation dot1Q 9
ip helper-address 192.168.6.241
no ip route-cache
bridge-group 9
bridge-group 9 subscriber-loop-control
bridge-group 9 block-unknown-source
no bridge-group 9 source-learning
no bridge-group 9 unicast-flooding
bridge-group 9 spanning-disabled
interface Dot11Radio0.10
encapsulation dot1Q 10
ip helper-address 192.168.6.241
no ip route-cache
bridge-group 10
bridge-group 10 subscriber-loop-control
bridge-group 10 block-unknown-source
no bridge-group 10 source-learning
no bridge-group 10 unicast-flooding
bridge-group 10 spanning-disabled
interface Dot11Radio0.12
encapsulation dot1Q 12 native
no ip route-cache
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
bridge-group 1 spanning-disabled
At the minutes I’m just trying to stop Console getting to the Home network before I move onto the rest
I have not got a clue where to start or where to place the ACL’s, would they be on the Switch or the AP itself?
Hope you can help me out.
Happy new year
MartynHere is a suport document in regards to autonomous ACL:
https://supportforums.cisco.com/docs/DOC-13768
Thanks,
Scott
Help out other by using the rating system and marking answered questions as "Answered" -
Cisco Wi-Fi location tracking solution
Hi , i've a customerthat has A.P. Cisco 1142 , 1240, 1242, with a WISM WLC 4400 series and a server with sw WCS.
He would like to use this infrastructure to implement a solution of Location trcking wth TAG RFID to locate person insde his site for safety reasons.
What i need to know is:
- Is it possible to do what he customer wants with his infrstructure ?
- Which other components he needs ?
- Which are the compatibles TAG RFID that hecanuse withhis infrastructure ?
- What kind of loction sw he can use or integrae with ?
Thanks
Best regards.Wi-Fi Location-Based Services 4.1 Design Guide
http://www.cisco.com/en/US/docs/solutions/Enterprise/Mobility/wifich3.html?referring_site=bodynav
Context Aware and Location FAQ
http://www.cisco.com/en/US/products/ps9806/products_qanda_item09186a0080af9513.shtml
Cisco Mobility Services Engine - Context Aware Mobility Solution Deployment Guide
http://www.cisco.com/en/US/products/ps9742/products_tech_note09186a00809d1529.shtml?referring_site=smartnavRD
Location Appliance to Mobility Services Engine (MSE) and Context-Aware Mobility Service Migration Guide
http://www.cisco.com/en/US/products/ps9806/products_white_paper09186a0080afd10f.shtml?referring_site=smartnavRD
http://www.cisco.com/en/US/docs/wireless/controller/7.0/configuration/guide/c70ccfg.html#wp1181157
http://www.cisco.com/en/US/products/ps6366/products_configuration_example09186a0080870349.shtml
Maybe you are looking for
-
Too much time to open a huge library
Hi, I have a huge 60Gig library set on an external SATA hard disk (on a DROBO machine. This is a USB2 connection). All my photos (almost 30 000) are externally referenced. Aperture works fine, i've removed all the previews to try to reduce the librar
-
Is CRM 5.0 compatible with SAP R/3 4.7?
Is CRM 5.0 compatible with SAP R/3 4.7? If so, what is minumum plug-in level required? Or where can I find this information? I've searched for it, but with no luck. Thank you JS
-
How do I get content back into itunes from ipod/iphone and ipad when old pc died and now have a blank itunes?
-
PDF email attachments got stripped when sending to Blackberry
Every time when I forward email with PDF file attachment from my Macbook Pro (IOS 10.6.8, Mail.app 4.5) to any Blackberry recipient it got stripped out! On the contrary, that same attachment can be found on other browser with no problem. I personal
-
External Harddrive ethernet vs Firewire 400/800
What would be better to invest in a ethernet harddrive or a firewire 400/800 I do need an external harddrive for video editing, mainly 1080i Hi-Def video as I have a Sony HVR A1 and am shooting hi-def. Thanks Justin Durban South Africa