Cisco 1142 WGB in a controller based network

Hi,
I have trouble with Cisco AP1142 which is configured in WGB mode. I'm trying to get it work in a controller based network, where LAPs are configured in H-REAP. SSID where WGB should be associated drops it traffic to VLAN60. Security type is WPA2-PSK.
I've configured the WGB and it associates and gets IP from the correct network....but the problem is that laptop connected to WGB won't work. It gets no IP address and won't work with static IP.
At the moment I have no VLANs configured on the WGB - should I have?
AP IOS version is 12.4(25d)JA and WLC version is 7.0.98.0.
Please find config file attached and also a topology image. Hope these help.
Br,
Petri

Hi Petri,
WGB mode with HREAP is not supported:
http://tools.cisco.com/squish/dcAfC
http://tools.cisco.com/squish/CcFE6
You may want to test this with uWGB mode and static IP config.However, there is a new bug filed for uWGB mode as well:
CSCtl21683    uWGB needs official testing and support with h-reap
HTH,
Alex

Similar Messages

  • Cisco Outdoor Controller Based Access Point

    Hi,
    I am looking for Cisco Outdoor Controller Based access point model. The WLC is Cisco 2500 Series.
    I have checked couple of outdoor models but all are mesh access point. I am looking for  normal controller based outdoor access point ( just like controller based indoor access point models )
    Thanks.

    adding to Leo...
    Cisco Aironet 1300 Series
    http://www.cisco.com/en/US/products/ps5861/index.html
    Cisco Aironet 1550 Series
    http://www.cisco.com/en/US/products/ps11451/index.html
    Cisco Aironet 1520 Series
    http://www.cisco.com/en/US/products/ps8368/index.html
    these all are Cisco OUTdoor APs.
    Now u can choose as per ur req.
    Regards
    Dont forget to rate helpful posts

  • Dual Radio WGB and LWAPP Controller

    Hallo everyone,
    I have a wireless network managed by a 4402 controller with this sw version : 5.2.178.0
    The client wants to add a stand alone wgb (cisco 1242 with an ios 12.4(21) ). The standalone ap associate to an LWAPP AP using the 5Ghz interface and propagate the same ssid at 2.4Ghz (I've also tried using a different ssid ). Actually the WGB is the only AP using that SSID at 2.4Ghz. As for the wired clients of the WGB I have no problems but if the client associate to the 2.4 Ghz SSID, I see it associated on the controller but no traffic from or to the client is allowed.
    If for any case, the 5Ghz interface is resetted and the association betweeen the WGB and the controller is reformed, the 2.4Ghz client starts receiving and receiving traffic.
    Any idea how to set things up from the the first association?
    The wgb ssid is not set as infrastructure-client and the controller correclty identify it as a WGB client. In the same way the controller correclty see the 2.Ghz client like a wired client of the WGB but unless the association b.t.w the WGB and the controller is reset, no traffic reach the client.
    I think that may be a problem related to how the IAPP protocol notify the presence of a client to WGB but I don't know how to work things out.. any idea?
    Thank you in advance!

    The 3600 series Access Points can have either internal or external antennae.  You can tell by looking at the top of the AP.  If there are 4 antenna connections (one in each corner) then they are external antennae. 
    If you cannot get to the AP to check them physically, the antenna type is also denoted by the part number.
    AIR-CAP3602I-x-K9 has internal antennae
    AIR-CAP3602E-x-K9 has external antennae
    The 3600 does have dual radios built in, operating in the 2.4GHz and 5GHz frequency ranges.  However, for them to show up as such, you have to enable both radios on the AP.  You can do this either through the WebUI or the CLI.
    The 802.11ac option is an external module that is attached to the underside of the 3600 AP.  Please find the datasheet for the module here:
    http://www.cisco.com/en/US/prod/collateral/modules/ps12859/ps13128/data_sheet_c78-727794.html
    The 1552c Series access points are also dual-radio systems and should also have both radios turned on through the WebUI or CLI.  Note the quote " The Cisco Aironet 1552C/1552CU Outdoor Mesh Access Points are dual-radio systems with DOCSIS 3.0/EuroDOCSIS 3.0 (8x4 HFC) compliant cable modem for power and backhaul." taken from the datasheet for these APs found here:
    http://www.cisco.com/en/US/prod/collateral/wireless/ps5679/ps11451/data_sheet_c78-641373.html
    Cisco ships the APs with one Radio enabled and if you want the dual-radio functionality, you have to turn that on.  Once that is done, you should see the APs show up correctly in the WLC 5508.
    +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

  • Config mesh range command - controller based mesh configuration

    Hello,
    I have to install a wireless mesh network shortly using Cisco 1552 APs.  This will be controller based using 5508 controllers.  The controllers currently have some 1262 APs configured in a mesh and bridging configuration so happy that it all basically works. 
    My question is - what is the "config mesh range' command doing on the controller ( or setting the Range(RootAP to MeshAP) setting on the controller mesh GUI.  The default setting is 12000feet and I have left it at default at present.  Just interested in what this is used for - I assume it alters the mesh protocol parameters somehow ( or the RF parameters perhaps ) as it suggests in the guide that mesh APs will reboot following this command being changed.
    Thanks in advance.
    Regards,

    Hi r.brooks
    config mesh range is solely being used on outdoor mesh devices (1520, 1550) in order to fine tune the timeout of the bridging function (if applicable). It is actually a number that dictates to the outdoor mesh access points (MAPs only) the "distance" of two consequtive MAPs that are bridging traffic. When tuning this one, use the longest distance on any MAP-MAP that are doing mesh bridging. If not sure about the distance, keep the default value.
    I hope this helped.
    best regards,
    George

  • Transition from Windows-based network to Linux-based

    I am looking to make the switch from a Windows based network to a Linux based one. Currently the network includes a Windows 2003 server which acts as a domain controller and file server, a network shared printer (Canon 2300N) and 7 clients running Windows. Several other Windows-based clients connect remotely via RDP.
    I would like to setup a server to act as a domain controller, file server, and (if possible) terminal server. The clients should be authenticated via the server and have access to the files stored on it (via ssh?).
    Here are several points that I was wondering about:
    All the clients use Outlook, some of the clients run Quickbooks Pro and another program called Tentant File Pro. I was thinking about replacing Outlook with Thunderbird (I contact, calendar, and tasks) and I know that Wine can't run Quickbooks and Tenant File Pro so I may have to use VirtualBox/VMWare because these applications can't be replaced by native Linux versions.
    I need an adequate backup solution for the files on the server running as a daily backup.
    Should I use webmin to administer the server?
    What antivirus / firewall solution should I use for the server and the clients?
    How can I allow remote clients the login to the server to be able to run applications (Outlook, Browser, Tenant File Pro, etc.) remotely on the server?
    What is the best solution for this? And what would be the least painful way of making the transition for the users?
    I know this is a lot, but any feedback would be appreciated.
    Thanks.

    larynx wrote:What is the best solution for this? And what would be the least painful way of making the transition for the users?
    Probably not Arch if you just want to dump all these questions on the community rather than research it all individually yourself.
    Perhaps Turnkey Linux would be suitable to get you up and running:
    http://www.turnkeylinux.org/
    (NB: Arch is the COMPLETE opposite of Turnkey Linux)

  • ACL on controller-based wireless

    We're trying to put an ACL on our wireless guest subnets on a controller-based wireless system. We're using 2 of the WiSMs. The ACL I used to use in WLSM allowed the guest subnet to the dhcp servers and out to the internet and dropped everything else, but I don't know where I would apply that list now for it to work with all the different vlans and addresses for the WiSMs.

    Hi Brian,
    Perhaps this doc will help;
    ACLs on Wireless LAN Controller Configuration Example
    From this doc;
    http://www.cisco.com/en/US/tech/tk722/tk809/technologies_configuration_example09186a00807810d1.shtml
    Hope this helps!
    Rob

  • How to do .1x port based network access authentication through ACS

    How to do .1x port based network access authentication through ACS.

    Hi,
    802.1x can authenticate hosts either through the username/password or either via the MAC address of the clients (PC's, Printers etc.). This process is called Agentless Network Access which can be done through Mac Auth Bypass.
    In this process the 802.1x switchport would send the MAC address of the connected PC to the radius server for authentication. If the radius server has the MAC address in it's database, the authentication would be successful and the PC would be granted network access.
    To check the configuration on the ACS 4.x, you can go to http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_windows/4.1/configuration/guide/noagent.html
    To check the configuration on an ACS 5.x, you can go to http://www.cisco.com/c/en/us/td/docs/net_mgmt/cisco_secure_access_control_system/5-2/user/guide/acsuserguide/common_scenarios.html#wp1053005
    Regards,
    Kush

  • Cisco 1142 WAP Connection Help

    We have a Cisco 1142 WAP connected to a Cisco Wireless Controller in a remote office area.  For meetings we wanted to have more hard wired connections in addition to Wifi access for attendee's / presentors etc..My question is if we purchased a Cisco 8 port POE mini switch and put that in the middle between the WAP and Controller would that work?  Or is there another business grade solution for a mix of Ethernet ports and Wifi?

    Yes, sir.  This will work.  The only "problem" I see is your 8 port PoE switch.  Let me explain:
    The good part about Cisco's 8-port PoE switches, the WS-C3560-8PC, is that it is FANLESS.  So even if you stick the switch right inside this conference or meeting room, no one will notice it's there (unless of course, one steps on the hot surface or gives the appliance a good kick).
    This model has a 1Gig SFP or RJ45 port uplink.
    Now the downside is not really that significant, unless you want to be pedantic about it.  The access ports are all 10/100BaseTX only.  
    By the way, I have no way of testing the "compact" series of the 2960C and the 3560C.  The Data Sheet itself is a bit "grey" so I won't make a comment about these two models.

  • Cisco 1142 Wireless access point intermittently will not authenticate

    Hi all,
    We have a Cisco 1142 standalone access point, and from time to time I will come into the office and it will not authenticate any users to either our guest or corporate networks. I then have to go in and reboot the access point. After that, it begins to work. Any advice? Here's my configuration below:
    Current configuration : 6450 bytes
    version 12.4
    no service pad
    service timestamps debug datetime msec
    service timestamps log datetime msec
    service password-encryption
    hostname cisco-chiap01
    logging monitor errors
    enable secret 5 $1$fsD8$CU42/3/Up5AAlL4hQWvvg0
    aaa new-model
    aaa group server radius rad_eap
     server 172.17.16.12 auth-port 1645 acct-port 1646
     server 172.17.21.10 auth-port 1812 acct-port 1813
    aaa group server radius rad_mac
    aaa group server radius rad_acct
    aaa group server radius rad_admin
    aaa group server tacacs+ tac_admin
    aaa group server radius rad_pmip
    aaa group server radius dummy
     server 172.17.21.10 auth-port 1812 acct-port 1813
    aaa group server radius rad_eap2
     server 172.17.16.12 auth-port 1645 acct-port 1646
     server 172.17.21.10 auth-port 1812 acct-port 1813
    aaa authentication login eap_methods group rad_eap
    aaa authentication login mac_methods local
    aaa authentication login eap_methods2 group rad_eap2
    aaa authorization exec default local 
    aaa accounting network acct_methods start-stop group rad_acct
    aaa session-id common
    login on-failure log
    login on-success log
    dot11 syslog
    dot11 vlan-name Admin vlan 100
    dot11 vlan-name DevNetwork vlan 20
    dot11 vlan-name Guest vlan 150
    dot11 vlan-name Network vlan 16
    dot11 ssid DevNetwork
       vlan 20
       authentication open eap eap_methods2 
       authentication network-eap eap_methods2 
       authentication key-management wpa version 2
    dot11 ssid Guest
       vlan 150
       authentication open 
       authentication key-management wpa version 2
       guest-mode
       mbssid guest-mode
       wpa-psk ascii 7 142407060101380B013A3A2670435642
       information-element ssidl advertisement
    dot11 ssid Network
       vlan 16
       authentication open eap eap_methods2 
       authentication network-eap eap_methods2 
       authentication key-management wpa version 2
    username monkeyman privilege 15 secret 5 $1$ZZ7C$rqimu2FNONdfeacMNGAD/.
    bridge irb
    interface Dot11Radio0
     no ip address
     ip helper-address 172.17.19.10
     no ip route-cache
     encryption mode ciphers aes-ccm 
     encryption vlan 16 mode ciphers aes-ccm 
     encryption vlan 150 mode ciphers aes-ccm 
     encryption vlan 20 mode ciphers aes-ccm 
     ssid DevNetwork
     ssid Guest
     ssid Network
     antenna gain 0
     parent timeout 120
     speed  5.5 11.0 basic-6.0 9.0 12.0 36.0 48.0 54.0
     packet retries 128 drop-packet
     channel 2462
     station-role root
     rts threshold 512
     rts retries 128
    interface Dot11Radio0.11
     encapsulation dot1Q 11
     no ip route-cache
    interface Dot11Radio0.16
     encapsulation dot1Q 16 native
     no ip route-cache
     bridge-group 1
     bridge-group 1 subscriber-loop-control
     bridge-group 1 block-unknown-source
     no bridge-group 1 source-learning
     no bridge-group 1 unicast-flooding
     bridge-group 1 spanning-disabled
    interface Dot11Radio0.20
     encapsulation dot1Q 20
     no ip route-cache
     bridge-group 20
     bridge-group 20 subscriber-loop-control
     bridge-group 20 block-unknown-source
     no bridge-group 20 source-learning
     no bridge-group 20 unicast-flooding
     bridge-group 20 spanning-disabled
    interface Dot11Radio0.150
     encapsulation dot1Q 150
     no ip route-cache
     bridge-group 150
     bridge-group 150 subscriber-loop-control
     bridge-group 150 block-unknown-source
     no bridge-group 150 source-learning
     no bridge-group 150 unicast-flooding
     bridge-group 150 spanning-disabled
    interface Dot11Radio1
     no ip address
     ip helper-address 172.17.19.10
     no ip route-cache
     encryption vlan 16 mode ciphers aes-ccm 
     encryption vlan 150 mode ciphers aes-ccm 
     encryption vlan 20 mode ciphers aes-ccm 
     ssid DevNetwork
     ssid Guest
     ssid Network
     antenna gain 0
     traffic-metrics aggregate-report
     dfs band 3 block
     mbssid
     parent timeout 120
     speed  6.0 12.0 basic-24.0 36.0 48.0 54.0
     channel width 40-above
     channel dfs
     station-role root access-point
    interface Dot11Radio1.11
     encapsulation dot1Q 11
     no ip route-cache
    interface Dot11Radio1.16
     encapsulation dot1Q 16 native
     no ip route-cache
     bridge-group 1
     bridge-group 1 subscriber-loop-control
     bridge-group 1 block-unknown-source
     no bridge-group 1 source-learning
     no bridge-group 1 unicast-flooding
     bridge-group 1 spanning-disabled
    interface Dot11Radio1.20
     encapsulation dot1Q 20
     no ip route-cache
     bridge-group 20
     bridge-group 20 subscriber-loop-control
     bridge-group 20 block-unknown-source
     no bridge-group 20 source-learning
     no bridge-group 20 unicast-flooding
     bridge-group 20 spanning-disabled
    interface Dot11Radio1.150
     encapsulation dot1Q 150
     no ip route-cache
     bridge-group 150
     bridge-group 150 subscriber-loop-control
     bridge-group 150 block-unknown-source
     no bridge-group 150 source-learning
     no bridge-group 150 unicast-flooding
     bridge-group 150 spanning-disabled
    interface GigabitEthernet0
     no ip address
     no ip route-cache
     duplex auto
     speed auto
     no keepalive
    interface GigabitEthernet0.11
     encapsulation dot1Q 11
     no ip route-cache
    interface GigabitEthernet0.16
     encapsulation dot1Q 16 native
     no ip route-cache
     bridge-group 1
     no bridge-group 1 source-learning
     bridge-group 1 spanning-disabled
    interface GigabitEthernet0.20
     encapsulation dot1Q 20
     no ip route-cache
     bridge-group 20
     no bridge-group 20 source-learning
     bridge-group 20 spanning-disabled
    interface GigabitEthernet0.100
     encapsulation dot1Q 100
     ip address 192.168.100.3 255.255.255.0
     no ip route-cache
     bridge-group 100
     no bridge-group 100 source-learning
     bridge-group 100 spanning-disabled
    interface GigabitEthernet0.150
     encapsulation dot1Q 150
     no ip route-cache
     bridge-group 150
     no bridge-group 150 source-learning
     bridge-group 150 spanning-disabled
    interface BVI1
     ip address 172.17.16.251 255.255.255.0
     no ip route-cache
    ip http server
    no ip http secure-server
    ip http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag
    ip radius source-interface GigabitEthernet0 
    access-list 1 permit 172.17.16.1
    access-list 1 remark Admin network access
    access-list 1 permit 192.168.100.0 0.0.0.255
    radius-server attribute 32 include-in-access-req format %h
    radius-server host 172.17.21.10 auth-port 1812 acct-port 1813 key 7 047958071C3561410D4A44
    radius-server host 172.17.16.12 auth-port 1645 acct-port 1646 key 7 08045E471A48574446
    radius-server host 172.17.21.10 auth-port 1645 acct-port 1646 key 7 1320051B185D56797F
    radius-server timeout 15
    radius-server vsa send accounting
    bridge 1 route ip
    line con 0
    line vty 0 4
     access-class 1 in
    end

    When the issue occurs does that affect both 2.4GHz & 5GHz devices ? I would see which band operating devices affected.
    I noticed you have set CH11 under Radio 0 statically.  I would prefer to configure it as below so AP can change the channel depend on the environment.
    int d0
    channel least-congested
    HTH
    Rasika
    **** Pls rate all useful responses ****

  • Best networked printer for a MAC based network?

    I may regret asking this :"), but what is the best network printer to use on a MAC based network? I have been the victim on the bloatware HP drivers for years, and am really sick of them. But what do I purge this nightmare for? Canon (like the MX860) looks interesting and is multifunction (a requirement). Lexmark seems to making a comeback, and Brother as well. Epson has seemed to do OK as well. Who has the most reliable drivers for the OSX platform, updates them the most regularly, and seems to actually care about Apple (as opposed to pandering to the Windows crowd almost exclusively).?
    Comments?
    Dan O

    I did my homework for network printer/scanner/fax and came up with the Brother Color Laser MFC-9840 CDW. It's got every button and whistle, and they all work on a Mac or PC network. You can scan from the machine and pick which Mac to send the scan to, or scan from a Mac. Sheet feeder works for fax and scan, real duplex printing. All works on Leopard. They have lower models which will also work, but without the Color, or Wireless (which we don't use).
    I've seen great on-going driver development with the latest operating systems...

  • Any fix for the PC based network printer communication issue with Mavericks?

    Any fix for the PC based network printer communication issue with Mavericks?

    I just signed up for FIOS and am not experiencing your problem (had enough other ones instead).
    Go to mail preferences ~ click on a mail account ~ click on the advanced tab. The only settings that worked for me were: port 110 SSL OFF, authentication: Authenticated POP (APOP). If I remember correctly when I first set this up another window opened and I typed in my password and never had to do that again.
    Hope this helps.

  • What is java-based networking system?

    good night everbody;
    can u explain how to proposed Java-Based networking system / distributed networking system?actually what is both?
    thanks!

    thanks for reply.
    actully , i want ask : what meaning for JavaBased
    Networking System and Distributed NetworkingSystem?
    Where did you see these terms? Have you triedusing
    google? It's a great resource when you want toanswer
    "What is X?"But his baboon has leprosy! Therfore his google
    doesn't work. For precedence on this see Colorado v
    ChewbaccaBut C v. C was rendered impotent by the great wallaby scandal of '02. (Did you scotchguard your canoe?)

  • How can we link the Apple iPad or any Apple device to window's based network/server?

    how can we link the Apple iPad or any Apple device to window's based network/server?
    we are software development company !
    how to use apache developed web site from windows pc in aaple i-pad
    and testing that perticuller web site on windows network !
    ipad software version 5.0.1 !
    How We Open developed web site in safari browser from i-pad !

    No ... won't work.
    If this is iPad is a first generation, the iOS should be 5.1.1.

  • How Convert AIR-AP1262-C-K9 standalone AP to controller based AP?

    How Convert AIR-AP1262-C-K9  standalone AP to controller based AP? Is that possibe ? how?

    Hi,
    First follow these steps to convert to LAP:
    http://rscciew.wordpress.com/2014/05/07/access-point-conversion-lap-to-aap-and-vice-versa/
    WLC Model: Its all depneds on your requirement.
    Its a small enterprize then go for 2500 series otherwise go for 5500 series.
    Regards
    Dont forget to rate helpful posts

  • Can AIR-SAP2602E/I-C-K9 convert to controller based AP?

     Can AIR-SAP2602E/I-C-K9  convert to controller based AP?
    both S2G1K9W7-15202JA/ JB available?

    here are the procedure:
    https://www.youtube.com/watch?v=wWDrFjwVNb0
    http://rscciew.wordpress.com/2014/05/07/access-point-conversion-lap-to-aap-and-vice-versa/
    Regards

Maybe you are looking for

  • How can i unlock my ipod touch without restoring when i don't know my word passcode?

    Can I call Apple and prove that im the owner, then they unlock it for me? I dont want to restore it, because i have made many purchases since the last time a backed it up. I havent synced it to the cpu since November or December. Plzz help me.

  • Imovie keeps showing -43 error

    need some help i am working on a project but it will not let me use idvd or save it keep showing reror -43 i dont understand alot of mac talk need a simple solutuion

  • DV to WMV

    Hello, I have a series of DV files that I'd like to export to WMV so that they can be viewed on a PC. Can anyone give me some advice as to the best settings to use? I'm doing some experiments with Compressor - but I would greatly appreciate the input

  • Prevent adding udo by bubbleevent

    hi, i want to prevent to add the udo document by using bubbleevent=true Private Sub moSboApplication_FormDataEvent(ByRef BusinessObjectInfo As SAPbouiCOM.BusinessObjectInfo, ByRef BubbleEvent As Boolean) Handles moSboApplication.FormDataEvent        

  • PPoE on Airport with OS X Tiger

    Hi, I have OS X 10.3.6 and I need to connect to ADSL modem (not router) using Airport and an Access Point (Dlink). When I look into Airport properties I don't see the PPoE setting and so possibility to specify ADSL username and password like in PPoE