Cisco AIR-AP1242AG setup and authentication
I have one of these and I'm needing to set it up to use our dhcp server and authenticate off an IAS Radius server.
Can anyone provide some direction? I have it in default mode.
Our local network 10.10.50.0 and our VPN is 10.10.20.0 on a Cisco ASA 5210. Our DHCP / DNS server and Radius server are 10.10.50.90
Do I have to setup the AIR as a bridge?
Cisco IOS Software, C1240 Software (C1240-K9W7-M), Version 12.3(7)JA5, RELEASE SOFTWARE (fc3)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2007 by Cisco Systems, Inc.
Compiled Fri 27-Jul-07 14:03 by kehsiao
ROM: Bootstrap program is C1240 boot loader
BOOTLDR: C1240 Boot Loader (C1240-BOOT-M) Version 12.4(13d)JA, RELEASE SOFTWARE (fc2)
ap uptime is 21 minutes
System returned to ROM by power-on
System image file is "flash:/c1240-k9w7-mx.123-7.JA5/c1240-k9w7-mx.123-7.JA5"
The IOS seems old, do I need to upgrade this as well?
Many thanks!
Troy
Thank you Surendra, that was extremely helpful.
I've upgraded and at the latest IOS version. We are able to see the WAP and get prompted for uname and pass but still can't authenticate.
I have added EAP to the IAS Radius server policy however am getting an error stating:
Authentication-Type = EAP
EAP-Type =
Reason-Code = 22
Reason = The client could not be authenticated because the Extensible Authentication Protocol (EAP) Type cannot be processed by the server.
In a nutshell, I'd like for our users to be able to authenticate with their Windows AD unames and passes. I'd also like for people to be able to connect without it though and then be prompted with a webpage explaining that this is our network and ask guest for credentials.
Cheers,
Troy
pp-wap#sh run
Building configuration...
Current configuration : 4338 bytes
version 12.4
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
hostname pp-wap
logging rate-limit console 9
enable secret 5 $1$G097$3nd1cBPeq7VZYF1IZHAts.
aaa new-model
aaa group server radius rad_eap
server 10.10.50.90 auth-port 1645 acct-port 1646
aaa group server radius rad_mac
aaa group server radius rad_acct
aaa group server radius rad_admin
aaa group server tacacs+ tac_admin
aaa group server radius rad_pmip
aaa group server radius dummy
aaa authentication login eap_methods group rad_eap
aaa authentication login mac_methods local
aaa authorization exec default local
aaa accounting network acct_methods start-stop group rad_acct
aaa session-id common
ip domain name personalizedprevention.com
ip name-server 10.10.50.90
dot11 syslog
dot11 ssid wp-wap
authentication open eap eap_methods
authentication network-eap eap_methods
guest-mode
dot11 ids mfp distributor
dot11 ids mfp detector
dot11 ids mfp generator
power inline negotiation prestandard source
crypto pki trustpoint TP-self-signed-3298881700
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-3298881700
revocation-check none
rsakeypair TP-self-signed-3298881700
crypto pki certificate chain TP-self-signed-3298881700
certificate self-signed 01
3082025A 308201C3 A0030201 02020101 300D0609 2A864886 F70D0101 04050030
31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
69666963 6174652D 33323938 38383137 3030301E 170D3032 30333031 30313135
32335A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649
4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D33 32393838
38313730 3030819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281
8100ADC6 CCC03F50 44F76E05 182B9F1B A9F6BA38 E7AD1922 A31C5D13 B65EDB34
0F1360F9 25183C64 7F365DCE 9FA80E6E EB6E4D39 C450FB77 6F2D76A5 59035091
F4EA57D3 312DEC55 443DC6B4 0754EA95 0BEB57A5 E6C8BA7B 5D68AA1C D97F54AF
5EF0D7C0 8552A635 65B55A2F 2A7AEAA0 FE710AA0 9A47AF59 9DC64443 FF410BD9
B0F70203 010001A3 8181307F 300F0603 551D1301 01FF0405 30030101 FF302C06
03551D11 04253023 82217070 2D776170 2E706572 736F6E61 6C697A65 64707265
76656E74 696F6E2E 636F6D30 1F060355 1D230418 30168014 A2859BDF 3B23A662
6C68591A E1C371B7 C3C0C0DD 301D0603 551D0E04 160414A2 859BDF3B 23A6626C
68591AE1 C371B7C3 C0C0DD30 0D06092A 864886F7 0D010104 05000381 81002CBB
92394427 4D53003D A6166FB4 A324A7D0 F4A24F60 AC30B3B1 F95A1F9D 863B081D
54D31232 DF2FC5A5 991B1ACC C6371066 B75FEF64 320C1672 8C5005F4 A18B9C44
0407748A D28E5575 E4882C34 D4D9397D 0841F3E0 37F27AB1 386C9540 C20FCC2F
3F881502 EF20B17C A0D052CC 556C4E1B E7CBC3FC DADF5C82 FF4D8AA2 730F
quit
username Cisco password 7 106D000A0618
bridge irb
interface Dot11Radio0
no ip address
no ip route-cache
encryption mode wep mandatory
ssid wp-wap
station-role root
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
bridge-group 1 spanning-disabled
interface Dot11Radio1
no ip address
no ip route-cache
shutdown
encryption mode wep mandatory
ssid wp-wap
dfs band 3 block
channel dfs
station-role root
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
bridge-group 1 spanning-disabled
interface FastEthernet0
no ip address
no ip route-cache
duplex auto
speed auto
bridge-group 1
no bridge-group 1 source-learning
bridge-group 1 spanning-disabled
interface BVI1
ip address 10.10.50.20 255.255.255.0
no ip route-cache
ip default-gateway 10.10.50.1
no ip http server
ip http secure-server
ip http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag
ip radius source-interface BVI1
radius-server attribute 32 include-in-access-req format %h
radius-server host 10.10.50.90 auth-port 1645 acct-port 1646 key 7 100F0C0B02181D0F550A2B3F2720
radius-server vsa send accounting
bridge 1 route ip
line con 0
transport output all
line vty 0 4
transport input all
transport output all
line vty 5 15
transport input all
transport output all
end
pp-wap#sh ver
Cisco IOS Software, C1240 Software (C1240-K9W7-M), Version 12.4(25d)JA, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2010 by Cisco Systems, Inc.
Compiled Thu 09-Dec-10 15:39 by prod_rel_team
ROM: Bootstrap program is C1240 boot loader
BOOTLDR: C1240 Boot Loader (C1240-BOOT-M) Version 12.4(13d)JA, RELEASE SOFTWARE (fc2)
pp-wap uptime is 1 hour, 53 minutes
System returned to ROM by power-on
System image file is "flash:/c1240-k9w7-mx.124-25d.JA/c1240-k9w7-mx.124-25d.JA"
This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.
A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html
If you require further assistance please contact us by sending email to
[email protected].
cisco AIR-AP1242AG-A-K9 (PowerPCElvis) processor (revision A0) with 25590K/7168K bytes of memory.
Processor board ID FTX1330B4GD
PowerPCElvis CPU at 262Mhz, revision number 0x0950
Last reset from power-on
1 FastEthernet interface
2 802.11 Radio(s)
32K bytes of flash-simulated non-volatile configuration memory.
Base ethernet MAC Address: 00:24:C4:A0:F0:A4
Part Number : 73-9925-07
PCA Assembly Number : 800-26579-06
PCA Revision Number : A0
PCB Serial Number : FOC132605LV
Top Assembly Part Number : 800-29232-02
Top Assembly Serial Number : FTX1330B4GD
Top Revision Number : A0
Product/Model Number : AIR-AP1242AG-A-K9
Configuration register is 0xF
Similar Messages
-
Cisco AIR-AP1242AG-A-K9 Vs AIR-LAP1131AG-N-K9 Which AP is best
Dear All,
I am confused between AIR-AP1242AG-A-K9 and AIR-LAP1131AG-N-K9, we have WLC 4400 which supports both, which one will be the best.
and what are the adv. adn disadv. of both.
Thanks,
Almas...Almas,
Depends on what you are looking to do. Both are good for any standard deployment, i.e. office space, hallways.
The 1242 is a bit more flexible as it has external antenna that can be articulated. So you can mount it on a wall, or on the ceiling. The down side, is they will be visible.
The 1131 has built-in antenna, and is designed to be mounted horizontally, on a ceiling for example.
So depending on where you can mount, that will determine the type of AP you need to use -
How to disable stream service in Cisco AIR-AP1242AG-N-K9
I am struggling to disable stream service in few Access points. from service manager. any suggestions..
well... I am running 12.4(21a)ja1 on my 1240 and Iam able to enable and to disable any of the stream options..
as a matter of fact, I dont see any of that configuration on the config.txt that you attached... we should be seen this under that radio interface...
packet max-retries 3 0 fail-threshold 100 500 priority 0 drop-packet
packet max-retries 3 0 fail-threshold 100 500 priority 1 drop-packet
packet max-retries 3 0 fail-threshold 100 500 priority 2 drop-packet
packet max-retries 3 0 fail-threshold 100 500 priority 3 drop-packet
packet max-retries 3 0 fail-threshold 100 500 priority 4 drop-packet
packet max-retries 3 0 fail-threshold 100 500 priority 5 drop-packet
packet max-retries 3 0 fail-threshold 100 500 priority 6 drop-packet
packet max-retries 3 0 fail-threshold 100 500 priority 7 drop-packet
packet speed 5.5 11.0 6.0 12.0 24.0 priority 6
Are you totally sure you are using Internet Explorer and not firefox perhaps??
GUI hasnt designed for firefox... -
Have an older iMac and am contemplating adding a new MacBook Air and a 2TB Airport Time Capsule to increase WiFi speeds. My question is (a) is this a compatable setup and (b) will the older iMac slow the WiFi speeds?
ThanksBe careful about mixing Time Machine backups and other data on the TC's disk. That will cause conflicts, sooner or later. See #Q3 in Using Time Machine with a Time Capsule for an explanation and some possible workarounds.
-
Cisco AIR-LAP 1131 reboot in loop
Hi Everyone
I recently had to deploy about 4 cisco 1131 AP's to one of our branch location. When configuring them on the controller, i needed to put them in HREAP mode. As soon as i do that and the AP needs to reboot, it will continue to reboot in a loop and indicate the following:
Unexpected exception to CPUvector 1100, PC = 5A9048
-Traceback= 0x5A9048 0x48A8A0 0x4361FC 0x42E078 0x44880C 0x42A280 0x42AA68 0x18A990
Exception (1100)! Data TLB Miss
SRR0 = 0x005A9048 SRR1 = 0x00029230 SRR2 = 0x0028007C SRR3 = 0x00021230
ESR = 0x00000000 DEAR = 0x025BFB94 TSR = 0x84000000 DBSR = 0x00000000
CPU Register Context:
Vector = 0x00001100 PC = 0x005A9048 MSR = 0x00029230 CR = 0x53000035
LR = 0x0048A8A0 CTR = 0x00000072 XER = 0xA0000040
R0 = 0x00000072 R1 = 0x00CD9790 R2 = 0x00000000 R3 = 0x025CBFF8
R4 = 0x025BFB94 R5 = 0x00000000 R6 = 0x00000001 R7 = 0x000000C3
R8 = 0x000001C8 R9 = 0x00000000 R10 = 0x025CBFF8 R11 = 0x00000000
R12 = 0x00CDB580 R13 = 0x00000000 R14 = 0x00000000 R15 = 0x00000000
R16 = 0x0184C8AA R17 = 0x0184C71B R18 = 0x00CDB760 R19 = 0x00000007
R20 = 0x00000001 R21 = 0x00000000 R22 = 0x00000007 R23 = 0x00000001
R24 = 0x0093BA68 R25 = 0x00000000 R26 = 0x00000001 R27 = 0x00000001
R28 = 0x00001FA8 R29 = 0x0094A200 R30 = 0x01C7FE38 R31 = 0x00003D80
Stack trace:
PC = 0x005A9048, SP = 0x00CD9790
Frame 00: SP = 0x00CD97D0 PC = 0x0048A6A8
Frame 01: SP = 0x00CDB728 PC = 0x004361FC
Frame 02: SP = 0x00CDB740 PC = 0x0042E078
Frame 03: SP = 0x00CDB758 PC = 0x0044880C
Frame 04: SP = 0x00CDB798 PC = 0x0042A280
Frame 05: SP = 0x00CDB7C0 PC = 0x0042AA68
Frame 06: SP = 0x00000000 PC = 0x0018A990
Cisco IOS Software, C1130 Software (C1130-K9W8-M), Version 12.4(3g)JA2, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2007 by Cisco Systems, Inc.
Compiled Fri 10-Aug-07 20:44 by kehsiao
St-John-AP1 uptime is 1 minute,
cisco AIR-LAP1131G-A-K9 (PowerPCElvis) processor (revision B0) with 24566K/8192K bytes of memory.
Processor board ID FTX1632N00D
PowerPCElvis CPU at 262Mhz, revision number 0x0950
And this is all it does, and keep loading the image. I already know the recovery procedure to reset it, but i wanted to know how i can put these AP in HREAP without having these issues. In the setup we need, we cannot have those AP be in local mode.
Thanks for any help and consideration .
RegardsHi Scott
Thanks for replying
here is the full output between loops :
Press RETURN to get started!
*Mar 1 00:00:06.552: %SOAP_FIPS-2-SELF_TEST_IOS_SUCCESS: IOS crypto FIPS self test passed
*Mar 1 00:00:07.962: %SOAP_FIPS-2-SELF_TEST_RAD_SUCCESS: RADIO crypto FIPS self test passed on interface Dot11Radio 0
*Mar 1 00:00:09.281: %SYS-5-RESTART: System restarted --
Cisco IOS Software, C1130 Software (C1130-K9W8-M), Version 12.4(3g)JA2, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2007 by Cisco Systems, Inc.
Compiled Fri 10-Aug-07 20:44 by kehsiao
*Mar 1 00:00:09.281: %SNMP-5-COLDSTART: SNMP agent on host St-John-AP1 is undergoing a cold start
*Mar 1 00:00:09.303: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to reset
*Mar 1 00:00:10.027: %LINK-3-UPDOWN: Interface FastEthernet0, changed state to up
*Mar 1 00:00:10.303: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to down
*Mar 1 00:00:11.027: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0, changed state to up
*Mar 1 00:00:28.301: %LWAPP-5-CHANGED: LWAPP changed state to DISCOVERY
*Mar 1 00:00:28.301: bsnInitRcbSlot: slot 1 has NO radio
*Mar 1 00:00:28.323: bsnUnlockDevice: not bring radio up: radio 1 is in admin disable state
*Mar 1 00:00:29.049: %CDP_PD-4-POWER_OK: Full power - NEGOTIATED inline power source
*Mar 1 00:00:29.087: %LINK-3-UPDOWN: Interface Dot11Radio0, changed state to up
*Mar 1 00:00:29.442: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to up
*Mar 1 00:00:37.564: %DHCP-6-ADDRESS_ASSIGN: Interface FastEthernet0 assigned DHCP address 10.1.3.48, mask 255.255.0.0, hostname St-John-AP1
Translating "CISCO-LWAPP-CONTROLLER.aimfire.net"...domain server (10.1.10.100) [OK]
*Mar 1 00:00:50.821: %LWAPP-5-CHANGED: LWAPP changed state to JOIN
*Mar 1 00:00:50.822: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to administratively down
*Mar 1 15:49:20.913: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to down
*Mar 1 15:49:21.306: %LWAPP-5-CHANGED: LWAPP changed state to CFG
*Mar 1 15:49:21.351: %LWAPP-5-CHANGED: LWAPP changed state to DOWN
*Mar 1 15:52:11.000: %LWAPP-5-CHANGED: LWAPP changed sta
15:52:12 UTC Fri Mar 1 2013: Unexpected exception to CPUvector 1100, PC = 0x5A9048 , LR = 0x48A8A0
-Traceback= 0x5A9048 0x48A8A0 0x4361FC 0x42E078 0x44880C 0x42A280 0x42AA68 0x18A990
CPU Register Context:
MSR = 0x00029230 CR = 0x53000035 CTR = 0x00000072 XER = 0xA0000040
R0 = 0x00000072 R1 = 0x00D1EC18 R2 = 0x00000000 R3 = 0x025CBFF8
R4 = 0x025BFB94 R5 = 0x00000000 R6 = 0x00000001 R7 = 0x000000CA
R8 = 0x000001C8 R9 = 0x00000000 R10 = 0x025CBFF8 R11 = 0x00000000
R12 = 0x00D20A08 R13 = 0x00000000 R14 = 0x00000000 R15 = 0x00000000
R16 = 0x01851A6A R17 = 0x018518DB R18 = 0x00D20BE8 R19 = 0x00000007
R20 = 0x00000001 R21 = 0x00000000 R22 = 0x00000007 R23 = 0x00000001
R24 = 0x0093BA68 R25 = 0x00000000 R26 = 0x00000001 R27 = 0x00000001
R28 = 0x00001FA8 R29 = 0x0094A200 R30 = 0x01C7FE38 R31 = 0x00003D80
Writing crashinfo to flash:/crashinfo_20130301-155213
=== Flushing messages (15:52:20 UTC Fri Mar 1 2013) ===
Buffered messages:
*Mar 1 00:00:06.552: %SOAP_FIPS-2-SELF_TEST_IOS_SUCCESS: IOS crypto FIPS self test passed
*Mar 1 00:00:07.962: %SOAP_FIPS-2-SELF_TEST_RAD_SUCCESS: RADIO crypto FIPS self test passed on interface Dot11Radio 0
*Mar 1 00:00:09.281: %SYS-5-RESTART: System restarted --
Cisco IOS Software, C1130 Software (C1130-K9W8-M), Version 12.4(3g)JA2, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2007 by Cisco Systems, Inc.
Compiled Fri 10-Aug-07 20:44 by kehsiao
*Mar 1 00:00:09.281: %SNMP-5-COLDSTART: SNMP agent on host St-John-AP1 is undergoing a cold start
*Mar 1 00:00:09.303: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to reset
*Mar 1 00:00:10.027: %LINK-3-UPDOWN: Interface FastEthernet0, changed state to up
*Mar 1 00:00:10.303: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to down
*Mar 1 00:00:11.027: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0, changed state to up
*Mar 1 00:00:28.301: %LWAPP-5-CHANGED: LWAPP changed state to DISCOVERY
*Mar 1 00:00:28.301: bsnInitRcbSlot: slot 1 has NO radio
*Mar 1 00:00:28.323: bsnUnlockDevice: not bring radio up: radio 1 is in admin disable state
*Mar 1 00:00:29.049: %CDP_PD-4-POWER_OK: Full power - NEGOTIATED inline power source
*Mar 1 00:00:29.087: %LINK-3-UPDOWN: Interface Dot11Radio0, changed state to up
*Mar 1 00:00:29.442: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to up
*Mar 1 00:00:37.564: %DHCP-6-ADDRESS_ASSIGN: Interface FastEthernet0 assigned DHCP address 10.1.3.48, mask 255.255.0.0, hostname St-John-AP1
*Mar 1 00:00:50.821: %LWAPP-5-CHANGED: LWAPP changed state to JOIN
*Mar 1 00:00:50.822: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to administratively down
*Mar 1 15:49:20.913: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to down
*Mar 1 15:49:21.306: %LWAPP-5-CHANGED: LWAPP changed state to CFG
*Mar 1 15:49:21.351: %LWAPP-5-CHANGED: LWAPP changed state to DOWN
*Mar 1 15:52:11.000: %LWAPP-5-CHANGED: LWAPP changed state to UP
*Mar 1 15:52:11.055: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to reset
Queued messages:
*Mar 1 15:52:23.534: %SYS-3-LOGGER_FLUSHING: System pausing to ensure console debugging output.
*Mar 1 15:52:11.414: %LINK-3-UPDOWN: Interface Dot11Radio0, changed state to up
Nested exception_rom_monitor call (2 times)
Unexpected exception to CPUvector 1100, PC = 5A9048
-Traceback= 0x5A9048 0x48A8A0 0x4361FC 0x42E078 0x44880C 0x42A280 0x42AA68 0x18A990
Exception (1100)! Data TLB Miss
SRR0 = 0x005A9048 SRR1 = 0x00029230 SRR2 = 0x0028007C SRR3 = 0x00021230
ESR = 0x00000000 DEAR = 0x025BFB94 TSR = 0x84000000 DBSR = 0x00000000
CPU Register Context:
Vector = 0x00001100 PC = 0x005A9048 MSR = 0x00029230 CR = 0x53000035
LR = 0x0048A8A0 CTR = 0x00000072 XER = 0xA0000040
R0 = 0x00000072 R1 = 0x00D1EC18 R2 = 0x00000000 R3 = 0x025CBFF8
R4 = 0x025BFB94 R5 = 0x00000000 R6 = 0x00000001 R7 = 0x000000CA
R8 = 0x000001C8 R9 = 0x00000000 R10 = 0x025CBFF8 R11 = 0x00000000
R12 = 0x00D20A08 R13 = 0x00000000 R14 = 0x00000000 R15 = 0x00000000
R16 = 0x01851A6A R17 = 0x018518DB R18 = 0x00D20BE8 R19 = 0x00000007
R20 = 0x00000001 R21 = 0x00000000 R22 = 0x00000007 R23 = 0x00000001
R24 = 0x0093BA68 R25 = 0x00000000 R26 = 0x00000001 R27 = 0x00000001
R28 = 0x00001FA8 R29 = 0x0094A200 R30 = 0x01C7FE38 R31 = 0x00003D80
Stack trace:
PC = 0x005A9048, SP = 0x00D1EC18
Frame 00: SP = 0x00D1EC58 PC = 0x0048A6A8
Frame 01: SP = 0x00D20BB0 PC = 0x004361FC
Frame 02: SP = 0x00D20BC8 PC = 0x0042E078
Frame 03: SP = 0x00D20BE0 PC = 0x0044880C
Frame 04: SP = 0x00D20C20 PC = 0x0042A280
Frame 05: SP = 0x00D20C48 PC = 0x0042AA68
Frame 06: SP = 0x00000000 PC = 0x0018A990
Cisco IOS Software, C1130 Software (C1130-K9W8-M), Version 12.4(3g)JA2, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2007 by Cisco Systems, Inc.
Compiled Fri 10-Aug-07 20:44 by kehsiao
St-John-AP1 uptime is 1 minute, 7 seconds
cisco AIR-LAP1131G-A-K9 (PowerPCElvis) processor (revision B0) with 24566K/8192K bytes of memory.
Processor board ID FTX1632N00D
PowerPCElvis CPU at 262Mhz, revision number 0x0950
flashfs[0]: 40 files, 3 directories
flashfs[0]: 0 orphaned files, 0 orphaned directories
flashfs[0]: Total bytes: 15998976
flashfs[0]: Bytes used: 15129600
flashfs[0]: Bytes available: 869376
flashfs[0]: flashfs fsck took 41 seconds.
Base ethernet MAC Address: d8:67:d9:ba:9f:2e
Initializing ethernet port 0...
Reset ethernet port 0...
Reset done!
ethernet link up, 100 mbps, full-duplex
Ethernet port 0 initialized: link is up
Loading "flash:/c1130-k9w8-mx.124-3g.JA2/c1130-k9w8-mx.124-3g.JA2"...###############################################
File "flash:/c1130-k9w8-mx.124-3g.JA2/c1130-k9w8-mx.124-3g.JA2" uncompressed and installed, entry point: 0x3000
executing...
Restricted Rights Legend
Use, duplication, or disclosure by the Government is
subject to restrictions as set forth in subparagraph
(c) of the Commercial Computer Software - Restricted
Rights clause at FAR sec. 52.227-19 and subparagraph
(c) (1) (ii) of the Rights in Technical Data and Computer
Software clause at DFARS sec. 252.227-7013.
cisco Systems, Inc.
170 West Tasman Drive
San Jose, California 95134-1706
Cisco IOS Software, C1130 Software (C1130-K9W8-M), Version 12.4(3g)JA2, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2007 by Cisco Systems, Inc.
Compiled Fri 10-Aug-07 20:44 by kehsiao
Image text-base: 0x00003000, data-base: 0x005AEE20
Initializing flashfs...
flashfs[1]: 40 files, 3 directories
flashfs[1]: 0 orphaned files, 0 orphaned directories
flashfs[1]: Total bytes: 15998976
flashfs[1]: Bytes used: 15129600
flashfs[1]: Bytes available: 869376
flashfs[1]: flashfs fsck took 5 seconds.
flashfs[1]: Initialization complete....done Initializing flashfs.
Radio 1 A506 7100 E8000000 A0000000 80000000 3
Radio 0 0 0 0 0 0 2
cisco AIR-LAP1131G-A-K9 (PowerPCElvis) processor (revision B0) with 24566K/8192K bytes of memory.
Processor board ID FTX1632N00D
PowerPCElvis CPU at 262Mhz, revision number 0x0950
Last reset from unknown reload cause - reason ptr 0xF, PC 0x5A9048, address 0x0
LWAPP image version 4.1.192.35
1 FastEthernet interface
1 802.11 Radio(s)
32K bytes of flash-simulated non-volatile configuration memory.
Base ethernet MAC Address: D8:67:D9:BA:9F:2E
Part Number : 73-13304-02
PCA Assembly Number : 800-36409-01
PCA Revision Number : B0
PCB Serial Number : FOC16304BZJ
Top Assembly Part Number : 800-29582-03
Top Assembly Serial Number : FTX1632N00D
Top Revision Number : A0
Product/Model Number : AIR-LAP1131G-A-K9
Press RETURN to get started!
Also , the switchport is a trunk port, i can definitely try it an access port . -
Cisco Wireless AP 2602 - Web Authentication/Pass NOT working?
Product/Model Number:
AIR-CAP2602E-A-K9
Top Assembly Serial Number:
System Software Filename:
ap3g2-k9w7-xx.152-4.JB3a
System Software Version:
15.2(4)JB3a
Bootloader Version:
BOOTLDR: C2600 Boot Loader (AP3G2-BOOT-M) LoaderVersion 12.4(25e)JA1, RELEASE SOFTWARE (fc1)
When "Web Authentication/Pass" option checked, it is totally unaccessible to internal or external network, any clue/advice?
Thanks in advance.Thanks, seems I missed the RADIUS part; after I done that it's still no luck, here are some tech support info, are you able to help?
------------------ show version ------------------
Cisco IOS Software, C2600 Software (AP3G2-K9W7-M), Version 15.2(4)JB3a, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2013 by Cisco Systems, Inc.
Compiled Mon 23-Dec-13 08:11 by prod_rel_team
ROM: Bootstrap program is C2600 boot loader
BOOTLDR: C2600 Boot Loader (AP3G2-BOOT-M) LoaderVersion 12.4(25e)JA1, RELEASE SOFTWARE (fc1)
WuGa-CiscoAP uptime is 3 days, 19 minutes
System returned to ROM by power-on
System restarted at 23:18:39 +0800 Mon Feb 10 2014
System image file is "flash:/ap3g2-k9w7-mx.152-4.JB3a/ap3g2-k9w7-xx.152-4.JB3a"
Last reload reason:
This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.
A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html
If you require further assistance please contact us by sending email to
[email protected].
cisco AIR-SAP2602E-A-K9 (PowerPC) processor (revision A0) with 204790K/57344K bytes of memory.
Processor board ID FGL1650Z5X3
PowerPC CPU at 800Mhz, revision number 0x2151
Last reset from power-on
1 Gigabit Ethernet interface
2 802.11 Radios
32K bytes of flash-simulated non-volatile configuration memory.
Base ethernet MAC Address: E0:2F:6D:A3:4D:0B
Part Number : 73-14511-02
PCA Assembly Number : 800-37898-01
PCA Revision Number : A0
PCB Serial Number : FOC164889AN
Top Assembly Part Number : 800-38357-01
Top Assembly Serial Number : FGL1650Z5X3
Top Revision Number : A0
Product/Model Number : AIR-CAP2602E-A-K9
Configuration register is 0xF
------------------ show running-config ------------------
Building configuration...
Current configuration : 5276 bytes
! Last configuration change at 23:36:14 +0800 Thu Feb 13 2014
! NVRAM config last updated at 23:36:14 +0800 Thu Feb 13 2014
! NVRAM config last updated at 23:36:14 +0800 Thu Feb 13 2014
version 15.2
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec localtime show-timezone
service password-encryption
hostname WuGa-CiscoAP
logging rate-limit console 9
enable secret 5
aaa new-model
aaa group server tacacs+ tac_admin
aaa group server radius rad_eap
aaa group server radius rad_mac
aaa group server radius rad_acct
aaa group server radius rad_admin
aaa group server radius rad_pmip
aaa group server radius dummy
aaa authentication login webauth group radius
aaa authentication login eap_methods group rad_eap
aaa authentication login mac_methods local
aaa authentication login web_list group radius
aaa authorization exec default local
aaa accounting network acct_methods start-stop group rad_acct
aaa session-id common
clock timezone +0800 8 0
no ip cef
ip admission name webpass consent
ip admission name webauth proxy http
ip admission name webauth method-list authentication web_list
ip admission name web_auth proxy http
ip admission name web_auth method-list authentication web_list
ip admission name web-auth proxy http
ip admission name web-auth method-list authentication web_list
ip name-server 8.8.8.8
dot11 syslog
dot11 vlan-name GuestVLAN vlan 2
dot11 vlan-name InternalVLAN vlan 1
dot11 ssid Guest
vlan 2
web-auth
authentication open
mbssid guest-mode
dot11 ssid WuGa-6
vlan 1
authentication open
authentication key-management wpa
mbssid guest-mode
wpa-psk ascii 7 0211115C0A555C721F1D5A4A5644
dot11 ssid WuGa-60
vlan 1
authentication open
authentication key-management wpa
guest-mode
wpa-psk ascii 7 03084C070900721F1D5A4A56444158
dot11 guest
username wuga lifetime 360 password 7 030D5704100A36594908
username Cisco privilege 15 password 7
bridge irb
interface Dot11Radio0
no ip address
encryption mode ciphers aes-ccm
encryption vlan 1 mode ciphers aes-ccm
ssid Guest
ssid WuGa-6
antenna gain 2
stbc
mbssid
speed basic-12.0 basic-18.0 basic-24.0 basic-36.0 basic-48.0 basic-54.0 m0. m1. m2. m3. m4. m5. m6. m7. m8. m9. m10. m11. m12. m13. m14. m15. m16. m17. m18. m19. m20. m21. m22. m23.
channel 2452
station-role root
dot11 dot11r pre-authentication over-air
dot11 dot11r reassociation-time value 500
ip admission web-auth
interface Dot11Radio0.1
encapsulation dot1Q 1 native
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 spanning-disabled
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
interface Dot11Radio0.2
encapsulation dot1Q 2
bridge-group 2
bridge-group 2 subscriber-loop-control
bridge-group 2 spanning-disabled
bridge-group 2 block-unknown-source
no bridge-group 2 source-learning
no bridge-group 2 unicast-flooding
ip admission webauth
interface Dot11Radio1
no ip address
encryption mode ciphers aes-ccm
encryption vlan 1 mode ciphers aes-ccm
ssid WuGa-60
antenna gain 4
peakdetect
no dfs band block
stbc
speed basic-12.0 basic-18.0 basic-24.0 basic-36.0 basic-48.0 basic-54.0 m0. m1. m2. m3. m4. m5. m6. m7. m8. m9. m10. m11. m12. m13. m14. m15. m16. m17. m18. m19. m20. m21. m22. m23.
power local 5
channel width 40-above
channel dfs
station-role root
dot11 dot11r pre-authentication over-air
dot11 dot11r reassociation-time value 500
interface Dot11Radio1.1
encapsulation dot1Q 1 native
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 spanning-disabled
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
interface GigabitEthernet0
no ip address
duplex auto
speed 1000
interface GigabitEthernet0.1
encapsulation dot1Q 1 native
bridge-group 1
bridge-group 1 spanning-disabled
no bridge-group 1 source-learning
interface GigabitEthernet0.2
encapsulation dot1Q 2
bridge-group 2
bridge-group 2 spanning-disabled
no bridge-group 2 source-learning
interface BVI1
ip address 192.168.133.213 255.255.255.0
ip default-gateway 192.168.133.200
ip forward-protocol nd
ip http server
no ip http secure-server
ip http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag
ip route 0.0.0.0 0.0.0.0 192.168.133.200
ip radius source-interface BVI1
ip access-list extended ALL
permit ip any host 0.0.0.0
permit ip any any
permit ip 0.0.0.0 255.255.255.0 any
ip access-list extended All
permit tcp any any established
permit tcp any any eq www
permit ip any any
radius-server local
nas 192.168.133.213 key 7 070C285F4D06
radius-server attribute 32 include-in-access-req format %h
radius-server vsa send accounting
radius server 192.168.10.2
address ipv4 192.168.10.2 auth-port 1812 acct-port 1646
radius server local
address ipv4 192.168.133.213 auth-port 1812 acct-port 1813
key 7
bridge 1 route ip
line con 0
terminal-type teletype
line vty 0 4
terminal-type teletype
transport input all
sntp server 128.138.141.172
sntp broadcast client
end -
CISCO AIR-AP1252AG-E-K9 is keep rebooting with no reason
Hello
I have an cisco AIR-AP1252AG-E-K9 and it reeboots randomly with no aparent reason
this is the configuration
aaa group server radius rad_eap
server 10.10.1.2 auth-port 1645 acct-port 1646
aaa group server radius rad_mac
aaa group server radius rad_acct
server 10.10.1.2 auth-port 1645 acct-port 1646
aaa group server radius rad_admin
aaa group server tacacs+ tac_admin
aaa group server radius rad_pmip
aaa group server radius dummy
aaa authentication login eap_methods group rad_eap
aaa authentication login mac_methods local
aaa authorization exec default local
aaa accounting network acct_methods start-stop group rad_acct
aaa session-id common
clock timezone +0200 2
ip domain name diamant.local
dot11 activity-timeout unknown default 32400
dot11 activity-timeout client default 32400 maximum 32400
dot11 activity-timeout repeater default 32400 maximum 32400
dot11 activity-timeout workgroup-bridge default 32400 maximum 32400
dot11 activity-timeout bridge default 32400 maximum 32400
dot11 ssid cisco
authentication open eap eap_methods
authentication network-eap eap_methods
authentication key-management wpa
guest-mode
dot11 ssid diamant4
authentication open eap eap_methods
authentication network-eap eap_methods
authentication key-management wpa
guest-mode
dot11 arp-cache
power inline negotiation prestandard source
username root privilege 15 password 7 060506324F41
username Cisco privilege 15 password 7 1047051613121F120D0A2D2E2862626C7A46
bridge irb
interface Dot11Radio0
no ip address
no ip route-cache
encryption mode ciphers aes-ccm
ssid diamant4
speed basic-1.0 basic-2.0 basic-5.5 basic-11.0 basic-6.0 basic-9.0 basic-12.0 basic-18.0 basic-24.0 basic-36.0 basic-48.0 basic-54.0 m0. m1. m2. m3. m4. m5. m6. m7. m8. m9. m10. m11. m12. m13. m14. m15.
channel width 40-above
channel 2412
station-role root
payload-encapsulation dot1h
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
bridge-group 1 spanning-disabled
interface Dot11Radio1
no ip address
no ip route-cache
encryption mode ciphers aes-ccm
ssid cisco
dfs band 1 3 block
speed basic-6.0 basic-9.0 basic-12.0 basic-18.0 basic-24.0 basic-36.0 basic-48.0 basic-54.0 m0. m1. m2. m3. m4. m5. m6. m7. m8. m9. m10. m11. m12. m13. m14. m15.
channel width 40-above
channel dfs
station-role root
payload-encapsulation dot1h
world-mode legacy
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
bridge-group 1 spanning-disabled
interface GigabitEthernet0
no ip address
no ip route-cache
duplex auto
speed auto
bridge-group 1
no bridge-group 1 source-learning
bridge-group 1 spanning-disabled
interface BVI1
ip address dhcp client-id GigabitEthernet0
no ip route-cache
ip http server
no ip http secure-server
ip http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag
ip radius source-interface BVI1
logging history size 200
no cdp run
radius-server attribute 32 include-in-access-req format %h
radius-server host 10.10.1.2 auth-port 1645 acct-port 1646 key 7 13011E13060D0A3E
radius-server vsa send accounting
bridge 1 route ip
and the logs
*Mar 1 00:00:06.207: %SOAP_FIPS-2-SELF_TEST_IOS_SUCCESS: IOS crypto FIPS self test passed
*Mar 1 00:00:07.035: %SOAP_FIPS-2-SELF_TEST_RAD_SUCCESS: RADIO crypto FIPS self test passed on interface Dot11Radio 0
*Mar 1 00:00:07.543: %SOAP_FIPS-2-SELF_TEST_RAD_SUCCESS: RADIO crypto FIPS self test passed on interface Dot11Radio 1
*Mar 1 02:00:09.599 +0200: %SYS-6-CLOCKUPDATE: System clock has been updated from 00:00:09 UTC Fri Mar 1 2002 to 02:00:09 +0200 Fri Mar 1 2002, configured from console by console.
*Mar 1 02:00:09.755 +0200: %LINK-3-UPDOWN: Interface GigabitEthernet0, changed state to up
*Mar 1 02:00:09.763 +0200: %SYS-5-CONFIG_I: Configured from memory by console
*Mar 1 02:00:09.767 +0200: %SYS-5-RESTART: System restarted --
Cisco IOS Software, C1250 Software (C1250-K9W7-M), Version 12.4(10b)JDA3, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2009 by Cisco Systems, Inc.
Compiled Sun 07-Jun-09 03:50 by prod_rel_team
*Mar 1 02:00:09.767 +0200: %SNMP-5-COLDSTART: SNMP agent on host ap is undergoing a cold start
*Mar 1 20:39:11.027 +0200: %SSH-5-ENABLED: SSH 1.99 has been enabled
*Mar 1 20:39:11.027 +0200: %LINEPROTO-5-UPDOWN: Line protocol on Interface BVI1, changed state to up
*Mar 1 20:39:11.027 +0200: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0, changed state to up
*Mar 1 20:39:11.531 +0200: %LINK-5-CHANGED: Interface Dot11Radio1, changed state to reset
*Mar 1 20:39:11.531 +0200: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to reset
*Mar 1 20:39:13.055 +0200: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio1, changed state to down
*Mar 1 20:39:13.055 +0200: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to down
*Mar 1 20:39:14.311 +0200: %CDP_PD-4-POWER_OK: Full power - AC_ADAPTOR inline power source
*Mar 1 20:39:17.919 +0200: %DOT11-6-DFS_SCAN_START: DFS: Scanning frequency 5280 MHz for 60 seconds.
*Mar 1 20:39:17.919 +0200: %DOT11-6-FREQ_USED: Interface Dot11Radio1, frequency 5280 selected
*Mar 1 20:39:17.919 +0200: %DOT11-4-FREQ_CHANGED: Interface Dot11Radio1, channel or channel width changed: 40Mhz above not allowed on channel
*Mar 1 20:39:17.923 +0200: %LINK-3-UPDOWN: Interface Dot11Radio1, changed state to up
*Mar 1 20:39:17.931 +0200: %LINK-3-UPDOWN: Interface Dot11Radio0, changed state to up
Apr 6 12:05:00.537 +0200: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio1, changed state to up
Apr 6 12:05:00.537 +0200: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to up
Apr 6 12:05:00.709 +0200: %DHCP-6-ADDRESS_ASSIGN: Interface BVI1 assigned DHCP address 10.10.1.243, mask 255.255.255.0, hostname ap
Apr 6 12:05:32.729 +0200: %DOT11-6-ASSOC: Interface Dot11Radio0, Station PC186 5894.6b5d.6c00 Associated KEY_MGMT[WPAv2]
Apr 6 12:05:34.325 +0200: %DOT11-6-ASSOC: Interface Dot11Radio0, Station 687f.74fb.3b1f Associated KEY_MGMT[WPAv2]
Apr 6 12:05:34.481 +0200: %DOT11-6-ASSOC: Interface Dot11Radio0, Station 687f.74fb.305d Associated KEY_MGMT[WPAv2]
Apr 6 12:05:35.117 +0200: %DOT11-6-ASSOC: Interface Dot11Radio0, Station 0025.9cde.155a Associated KEY_MGMT[WPAv2]
Apr 6 12:05:45.493 +0200: %DOT11-6-ASSOC: Interface Dot11Radio0, Station 687f.74fb.2fe0 Associated KEY_MGMT[WPAv2]
Apr 6 12:05:59.545 +0200: %DOT11-6-DFS_SCAN_COMPLETE: DFS scan complete on frequency 5280 MHz
Apr 6 12:06:06.561 +0200: %DOT11-6-ASSOC: Interface Dot11Radio1, Station 0025.9cf8.9149 Associated KEY_MGMT[WPAv2]
Apr 6 12:06:56.471 +0200: %DOT11-6-ASSOC: Interface Dot11Radio1, Station 0025.9cde.0fc5 Associated KEY_MGMT[WPAv2]
Apr 6 12:08:11.008 +0200: %DOT11-6-DISASSOC: Interface Dot11Radio0, Deauthenticating Station 0025.9cde.155a Reason: Previous authentication no longer valid
Apr 6 12:08:11.016 +0200: %DOT11-4-MAXRETRIES: Packet to client 0025.9cde.155a reached max retries, removing the client
Apr 6 12:08:14.124 +0200: %DOT11-6-ASSOC: Interface Dot11Radio0, Station 0025.9cde.155a Associated KEY_MGMT[WPAv2]
Apr 6 12:08:17.608 +0200: %DOT11-6-DISASSOC: Interface Dot11Radio0, Deauthenticating Station 0025.9cde.155a Reason: Previous authentication no longer valid
Apr 6 12:08:48.950 +0200: %DOT11-7-AUTH_FAILED: Station 0025.9cde.155a Authentication failed
Apr 6 12:08:48.950 +0200: %DOT11-4-MAXRETRIES: Packet to client 0025.9cde.155a reached max retries, removing the client
Apr 6 12:09:12.978 +0200: %DOT11-6-ASSOC: Interface Dot11Radio0, Station 0025.9cde.155a Associated KEY_MGMT[WPAv2]
Apr 6 12:25:35.510 +0200: %DOT11-6-DISASSOC: Interface Dot11Radio0, Deauthenticating Station 687f.74fb.305d Reason: Sending station has left the BSS
Apr 6 12:25:35.530 +0200: %DOT11-6-ASSOC: Interface Dot11Radio0, Station 687f.74fb.305d Associated KEY_MGMT[WPAv2-CP]
Apr 6 12:35:32.229 +0200: %DOT11-6-DISASSOC: Interface Dot11Radio0, Deauthenticating Station 687f.74fb.3b1f Reason: Sending station has left the BSS
Apr 6 12:35:32.245 +0200: %DOT11-6-ASSOC: Interface Dot11Radio0, Station 687f.74fb.3b1f Associated KEY_MGMT[WPAv2-CP]
Apr 6 12:37:27.996 +0200: %DOT11-6-DISASSOC: Interface Dot11Radio0, Deauthenticating Station 687f.74fb.3b1f Reason: Sending station has left the BSS
Apr 6 12:37:28.016 +0200: %DOT11-6-ASSOC: Interface Dot11Radio0, Station 687f.74fb.3b1f Associated KEY_MGMT[WPAv2-CP]
Apr 6 12:54:07.729 +0200: %DOT11-6-DISASSOC: Interface Dot11Radio0, Deauthenticating Station 687f.74fb.2fe0 Reason: Previous authentication no longer valid
Apr 6 12:54:09.457 +0200: %DOT11-6-ASSOC: Interface Dot11Radio0, Station 687f.74fb.2fe0 Associated KEY_MGMT[WPAv2]
Apr 6 12:54:36.236 +0200: %DOT11-6-DISASSOC: Interface Dot11Radio0, Deauthenticating Station 687f.74fb.2fe0 Reason: Previous authentication no longer valid
Apr 6 10:54:56.515: Client 687f.74fb.2fe0 failed: reached maximum retries
Apr 6 12:55:37.141 +0200: %DOT11-6-ASSOC: Interface Dot11Radio0, Station 687f.74fb.2fe0 Associated KEY_MGMT[WPAv2]
Apr 6 13:30:07.002 +0200: %DOT11-6-DISASSOC: Interface Dot11Radio0, Deauthenticating Station 5894.6b5d.6c00 Reason: Sending station has left the BSS
Apr 6 13:30:17.442 +0200: %DOT11-6-DISASSOC: Interface Dot11Radio0, Deauthenticating Station 687f.74fb.3b1f Reason: Sending station has left the BSS
Apr 6 13:30:17.802 +0200: %DOT11-6-ASSOC: Interface Dot11Radio0, Station 687f.74fb.3b1f Associated KEY_MGMT[WPAv2-CP]
Apr 6 13:34:59.087 +0200: %DOT11-4-MAXRETRIES: Packet to client 687f.74fb.3b1f reached max retries, removing the client
Apr 6 13:34:59.087 +0200: %DOT11-6-DISASSOC: Interface Dot11Radio0, Deauthenticating Station 687f.74fb.3b1f Reason: Previous authentication no longer valid
Apr 6 13:35:02.743 +0200: %DOT11-6-ASSOC: Interface Dot11Radio0, Station 687f.74fb.3b1f Associated KEY_MGMT[WPAv2]
Apr 6 13:35:23.451 +0200: %DOT11-4-MAXRETRIES: Packet to client 687f.74fb.3b1f reached max retries, removing the client
Apr 6 13:35:23.455 +0200: %DOT11-6-DISASSOC: Interface Dot11Radio0, Deauthenticating Station 687f.74fb.3b1f Reason: Previous authentication no longer valid
Apr 6 13:35:26.743 +0200: %DOT11-6-ASSOC: Interface Dot11Radio0, Station 687f.74fb.3b1f Associated KEY_MGMT[WPAv2]
Apr 6 13:36:40.768 +0200: %DOT11-6-DISASSOC: Interface Dot11Radio0, Deauthenticating Station 687f.74fb.3b1f Reason: Sending station has left the BSS
Apr 6 13:38:59.004 +0200: %DOT11-6-ASSOC: Interface Dot11Radio0, Station 687f.74fb.3b1f Associated KEY_MGMT[WPAv2]
Apr 6 13:40:56.655 +0200: %DOT11-6-DISASSOC: Interface Dot11Radio0, Deauthenticating Station 687f.74fb.3b1f Reason: Sending station has left the BSS
Apr 6 13:40:56.703 +0200: %DOT11-6-ASSOC: Interface Dot11Radio0, Station 687f.74fb.3b1f Associated KEY_MGMT[WPAv2-CP]
Apr 6 13:56:42.322 +0200: %DOT11-6-DISASSOC: Interface Dot11Radio1, Deauthenticating Station 0025.9cf8.9149 Reason: Previous authentication no longer valid
Apr 6 13:56:45.490 +0200: %DOT11-6-ASSOC: Interface Dot11Radio1, Station 0025.9cf8.9149 Associated KEY_MGMT[WPAv2]
Apr 6 13:56:49.302 +0200: %DOT11-6-DISASSOC: Interface Dot11Radio1, Deauthenticating Station 0025.9cf8.9149 Reason: Previous authentication no longer valid
Apr 6 11:57:11.623: Client 0025.9cf8.9149 failed: reached maximum retries
Apr 6 14:12:43.510 +0200: %DOT11-6-DISASSOC: Interface Dot11Radio0, Deauthenticating Station 687f.74fb.305d Reason: Sending station has left the BSS
Apr 6 14:12:43.526 +0200: %DOT11-6-ASSOC: Interface Dot11Radio0, Station 687f.74fb.305d Associated KEY_MGMT[WPAv2-CP]
Apr 6 14:49:12.472 +0200: %DOT11-6-DISASSOC: Interface Dot11Radio0, Deauthenticating Station 687f.74fb.305d Reason: Previous authentication no longer valid
Apr 6 14:49:15.628 +0200: %DOT11-6-ASSOC: Interface Dot11Radio0, Station 687f.74fb.305d Associated KEY_MGMT[WPAv2]
Apr 6 14:49:21.672 +0200: %DOT11-6-DISASSOC: Interface Dot11Radio0, Deauthenticating Station 687f.74fb.305d Reason: Previous authentication no longer valid
Apr 6 14:49:53.282 +0200: %DOT11-7-AUTH_FAILED: Station 687f.74fb.305d Authentication failed
Apr 6 14:49:53.282 +0200: %DOT11-4-MAXRETRIES: Packet to client 687f.74fb.305d reached max retries, removing the client
Apr 6 14:52:04.097 +0200: %DOT11-6-ASSOC: Interface Dot11Radio0, Station PC186 5894.6b5d.6c00 Associated KEY_MGMT[WPAv2]
Apr 6 15:14:29.682 +0200: %DOT11-6-DISASSOC: Interface Dot11Radio0, Deauthenticating Station 0025.9cde.155a Reason: Previous authentication no longer valid
Apr 6 15:15:03.124 +0200: %DOT11-7-AUTH_FAILED: Station 0025.9cde.155a Authentication failed
Apr 6 15:15:03.124 +0200: %DOT11-4-MAXRETRIES: Packet to client 0025.9cde.155a reached max retries, removing the client
Apr 6 15:21:02.660 +0200: %DOT11-6-DISASSOC: Interface Dot11Radio0, Deauthenticating Station 687f.74fb.3b1f Reason: Previous authentication no longer valid
Apr 6 15:21:02.664 +0200: %DOT11-4-MAXRETRIES: Packet to client 687f.74fb.3b1f reached max retries, removing the client
Apr 6 15:21:05.780 +0200: %DOT11-6-ASSOC: Interface Dot11Radio0, Station 687f.74fb.3b1f Associated KEY_MGMT[WPAv2]
Apr 6 15:21:09.808 +0200: %DOT11-6-DISASSOC: Interface Dot11Radio0, Deauthenticating Station 687f.74fb.3b1f Reason: Previous authentication no longer valid
Apr 6 15:21:41.058 +0200: %DOT11-7-AUTH_FAILED: Station 687f.74fb.3b1f Authentication failed
Apr 6 15:21:41.058 +0200: %DOT11-4-MAXRETRIES: Packet to client 687f.74fb.3b1f reached max retries, removing the client
Apr 6 15:24:36.911 +0200: %DOT11-6-DISASSOC: Interface Dot11Radio1, Deauthenticating Station 0025.9cde.0fc5 Reason: Previous authentication no longer valid
Apr 6 15:24:41.435 +0200: %DOT11-7-AUTH_FAILED: Station 0025.9cde.0fc5 Authentication failed
Apr 6 15:24:45.131 +0200: %DOT11-6-ASSOC: Interface Dot11Radio1, Station 0025.9cde.0fc5 Associated KEY_MGMT[WPAv2]
Apr 6 15:24:54.127 +0200: %DOT11-6-DISASSOC: Interface Dot11Radio1, Deauthenticating Station 0025.9cde.0fc5 Reason: Previous authentication no longer valid
Apr 6 15:25:27.623 +0200: %DOT11-7-AUTH_FAILED: Station 0025.9cde.0fc5 Authentication failed
Apr 6 15:25:27.623 +0200: %DOT11-4-MAXRETRIES: Packet to client 0025.9cde.0fc5 reached max retries, removing the clienti found something about how to reach the maximum N speed
Factors that Affect 802.11n Throughput
There are circumstances where 802.11n devices cannot operate at their maximum capable data rates. There are various reasons why this occurs. This is the list of factors that affect 802.11n throughput:
When 802.11n clients operate in a mixed environment with 802.11a or 802.11 b/g clients, 802.11n provides a protection mechanism to interoperate with 802.11a or 802.11 b/g clients. This introduces an overhead and reduces the throughput of 802.11n devices. Maximum throughput is achieved in Greenfield mode where only 802.11n clients exist.
Factors such as Channel width, Guard Interval and Reduced IFS (RIFS) play a major role in the bandwidth. Table 1 and Table 2 show how these factors affect the bandwidth.
Clients ability to send a Block Ack instead of individual frame acknowledgements.
MCS Index configured on the WLC.
Proximity to AP—Clients closer to the AP experience higher data rates. As clients move farther away from the AP, signal strength reduces. As a result, data rate decreases steadily.
RF environment—Amount of noise and interference in the environment. The less the noise and interference, the greater the bandwidth.
Encryption/ Decryption—Encryption in general reduces the throughput due to the overhead involved in the data encryption/decryption process. However, advanced encryption standards, such as AES, can provide better throughput when compared to other encryption standards, such as TKIP and WEP.
Wired Network Infrastructure—Bandwidth of the wired infrastructure determines the speed of the traffic to and from the wired network to the wireless clients.
If using an AP1250, change the AP to H-REAP mode for a 5-10% boost.
If using an AP1140, keep the AP in local mode and enable TCP MSS on the controller. Use the config ap tcp-adjust-mss enable all 1363 command in order to enable it.
Disable RRM scanning to prevent any throughput drops when going off channel. This can yield a 1-3% improvement.
Disable RLDP to ensure the AP does not attempt to connect to rogue devices during testing.
Use a Wireless Controller 5508 as the data plane is superior to the 4404-series.
My questions are:
1. How i can i put the access point to operate only in N mode (because all my clients are N)
2.The guard interval can be modify ?
3. How to put my AP in H-REAP (can i do this without WLC?)
4. How to disable RRM
5.How to disable RLDP.
Thank you. -
I'm trying to deploy a WiFi solution for a client. It would consist of 2 SSIDs; one for internal users with internal network access and a guest with only internal access.
I have a Sonicwall TZ215:
External IP: x.x.x.x
LAN IP: 192.168.1.1/24
DHCP Server: 192.168.5-195/24
+++++++++++++++++++++++
Cisco SG500:
v1.3.0.62 / R750_NIK_1_3_647_260
CLI v1.0
set system mode switch queues-mode 4
file SSD indicator encrypted
ssd-control-start
ssd config
ssd file passphrase control unrestricted
no ssd file integrity control
ssd-control-end cb0a3fdb1f3a1af4e4430033719968c0
voice vlan oui-table add 0001e3 Siemens_AG_phone________
voice vlan oui-table add 00036b Cisco_phone_____________
voice vlan oui-table add 00096e Avaya___________________
voice vlan oui-table add 000fe2 H3C_Aolynk______________
voice vlan oui-table add 0060b9 Philips_and_NEC_AG_phone
voice vlan oui-table add 00d01e Pingtel_phone___________
voice vlan oui-table add 00e075 Polycom/Veritel_phone___
voice vlan oui-table add 00e0bb 3Com_phone______________
hostname xxx
ip ssh server
snmp-server location "xxx"
snmp-server contact "John Doe"
clock timezone CST 0 minutes 0
clock dhcp timezone
ip telnet server
interface vlan 1
ip address 192.168.1.2 255.255.255.0
no ip address dhcp
interface gigabitethernet1/1/1
switchport mode access
interface gigabitethernet1/1/2
switchport mode access
interface gigabitethernet1/1/3
switchport mode access
interface gigabitethernet1/1/4
switchport mode access
interface gigabitethernet1/1/5
switchport mode access
interface gigabitethernet1/1/6
switchport mode access
interface gigabitethernet1/1/7
switchport mode access
interface gigabitethernet1/1/8
switchport mode access
interface gigabitethernet1/1/9
switchport mode access
interface gigabitethernet1/1/10
switchport mode access
interface gigabitethernet1/1/11
switchport mode access
interface gigabitethernet1/1/12
switchport mode access
interface gigabitethernet1/1/13
switchport mode access
interface gigabitethernet1/1/14
switchport mode access
interface gigabitethernet1/1/15
switchport mode access
interface gigabitethernet1/1/16
switchport mode access
interface gigabitethernet1/1/17
switchport mode access
interface gigabitethernet1/1/18
switchport mode access
interface gigabitethernet1/1/19
switchport mode access
interface gigabitethernet1/1/20
switchport mode access
interface gigabitethernet1/1/21
switchport mode access
interface gigabitethernet1/1/22
switchport mode access
interface gigabitethernet1/1/23
switchport mode access
interface gigabitethernet1/1/24
switchport mode access
interface gigabitethernet1/1/25
switchport mode access
interface gigabitethernet1/1/26
switchport mode access
interface gigabitethernet1/1/27
switchport mode access
interface gigabitethernet1/1/28
switchport mode access
interface gigabitethernet1/1/29
switchport mode access
interface gigabitethernet1/1/30
switchport mode access
interface gigabitethernet1/1/31
switchport mode access
interface gigabitethernet1/1/32
switchport mode access
interface gigabitethernet1/1/33
switchport mode access
interface gigabitethernet1/1/34
switchport mode access
interface gigabitethernet1/1/35
switchport mode access
interface gigabitethernet1/1/36
switchport mode access
interface gigabitethernet1/1/37
switchport mode access
interface gigabitethernet1/1/38
switchport mode access
interface gigabitethernet1/1/39
switchport mode access
interface gigabitethernet1/1/40
switchport mode access
interface gigabitethernet1/1/41
switchport mode access
interface gigabitethernet1/1/42
switchport mode access
interface gigabitethernet1/1/43
switchport mode access
interface gigabitethernet1/1/44
switchport mode access
interface gigabitethernet1/1/45
switchport mode access
interface gigabitethernet1/1/46
switchport mode access
interface gigabitethernet1/1/47
switchport mode access
interface gigabitethernet1/1/48
switchport mode access
interface gigabitethernet1/1/51
switchport mode access
interface gigabitethernet1/1/52
switchport mode access
exit
macro auto disabled
ip default-gateway 192.168.1.1
encrypted
+++++++++++++++++++++++++++++++++++=
Cisco AIR-SAP2602I
! Last configuration change at 00:11:27 UTC Mon Mar 1 1993 by administrator
version 15.2
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
hostname XXX
logging rate-limit console 9
enable secret 5 $1$RVFD$DybWHlNypzf3XsnL6RGND/
no aaa new-model
no ip routing
ip domain name XXX
dot11 syslog
dot11 vlan-name Guest_VLAN vlan 200
dot11 vlan-name Internal_Users vlan 300
dot11 vlan-name default vlan 1
dot11 ssid Internal
vlan 300
authentication open
authentication key-management wpa
mbssid guest-mode
wpa-psk ascii 7 05180704241A18471802161B05
dot11 ssid Guest
vlan 200
authentication open
authentication key-management wpa
guest-mode
mbssid guest-mode
infrastructure-ssid optional
wpa-psk ascii 7 10652D4B5341151E09173E
crypto pki token default removal timeout 0
crypto pki trustpoint TP-self-signed-2946962253
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-2946962253
revocation-check none
rsakeypair TP-self-signed-2946962253
crypto pki certificate chain TP-self-signed-2946962253
certificate self-signed 01
3082022B 30820194 A0030201 02020101 300D0609 2A864886 F70D0101 05050030
31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
69666963 6174652D 32393436 39363232 3533301E 170D3933 30333031 30303431
34325A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649
4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D32 39343639
36323235 3330819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281
81009438 47D6CAB8 36B9260D D5FEFA7A DFA7E065 E47ECCA2 346674C6 54D9C004
D6D62585 DE26A41E 447E8607 D0BD58C5 92899510 4EEBF95C 9352D082 1BB71EBF
72D56DDC 87D55A85 4A242578 6BBD31AD E48C8354 1C7331BD 5ED9F29D 5F8B868E
14DB0C08 3930D2D4 3266ED2D 9902DAA4 A348B722 82FCC132 6FC4BF22 DC7B9DBC
2F010203 010001A3 53305130 0F060355 1D130101 FF040530 030101FF 301F0603
551D2304 18301680 149FB8D9 F772C9DE 4BC86DD9 451902F3 4994F7D8 E0301D06
03551D0E 04160414 9FB8D9F7 72C9DE4B C86DD945 1902F349 94F7D8E0 300D0609
2A864886 F70D0101 05050003 81810054 FBCE018A CC09679F 8CB2D20A C773DE00
51AFA13A AB5105D5 BAAB6F2F B7CAF46A 2BFDCDDC F156593F 16C509EF 8C5215C1
7631DEFA 9E16633C 1E89CE65 C56591B2 5BE90BD0 1941F0EA 5478924C 4C0E229D
013743C3 2D4993E0 C44F9143 89A7A5D6 870E3A6C A772B8BB D032956F 1A5B894A
40EC55B9 8C5E3876 7E4B45FE 3DD00B
quit
ip ssh version 1
bridge irb
interface Dot11Radio0
no ip address
no ip route-cache
encryption vlan 1 mode ciphers aes-ccm
encryption vlan 100 mode ciphers aes-ccm
encryption vlan 200 mode ciphers aes-ccm
encryption vlan 300 mode ciphers aes-ccm
broadcast-key vlan 1 change 10000
broadcast-key vlan 100 change 10000
ssid Internal
ssid Guest
antenna gain 0
stbc
mbssid
station-role root
interface Dot11Radio0.200
encapsulation dot1Q 200 native
no ip route-cache
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 spanning-disabled
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
interface Dot11Radio0.300
encapsulation dot1Q 300
no ip route-cache
bridge-group 255
bridge-group 255 subscriber-loop-control
bridge-group 255 spanning-disabled
bridge-group 255 block-unknown-source
no bridge-group 255 source-learning
no bridge-group 255 unicast-flooding
interface Dot11Radio1
no ip address
no ip route-cache
encryption vlan 1 mode ciphers aes-ccm
encryption vlan 300 mode ciphers aes-ccm
encryption vlan 200 mode ciphers aes-ccm
broadcast-key vlan 1 change 10000
antenna gain 0
dfs band 3 block
channel dfs
station-role root
interface Dot11Radio1.1
encapsulation dot1Q 1
no ip route-cache
interface Dot11Radio1.200
encapsulation dot1Q 200 native
no ip route-cache
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 spanning-disabled
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
interface Dot11Radio1.300
encapsulation dot1Q 300
no ip route-cache
bridge-group 255
bridge-group 255 subscriber-loop-control
bridge-group 255 spanning-disabled
bridge-group 255 block-unknown-source
no bridge-group 255 source-learning
no bridge-group 255 unicast-flooding
interface GigabitEthernet0
no ip address
no ip route-cache
duplex auto
speed auto
no keepalive
hold-queue 160 in
interface GigabitEthernet0.1
encapsulation dot1Q 1
no ip route-cache
interface GigabitEthernet0.200
encapsulation dot1Q 200 native
no ip route-cache
bridge-group 1
bridge-group 1 spanning-disabled
no bridge-group 1 source-learning
interface GigabitEthernet0.300
encapsulation dot1Q 300
no ip route-cache
bridge-group 255
bridge-group 255 spanning-disabled
no bridge-group 255 source-learning
interface BVI1
ip address 192.168.1.10 255.255.255.0
no ip route-cache
ip default-gateway 192.168.1.1
no ip http server
ip http secure-server
ip http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag
bridge 1 route ip
line con 0
line vty 0 4
login local
transport input all
end
+++++++++++++++++++++++++++++++++++++++++
I was able to get dhcp from the Sonicwall with 192.168.1.0/24, but not from the SG500. I created a scope(192.168.2.0/24 for guest; 192.168.3.0/24 for internal users) I even created DHCP scope on the AP, but cannot get an IP from that either. I creatd an ACL to allow the 192.168.3.0/24 access elewhere, and denied 192.168.2.0 access to other but internet.
If I disabled all scopes on the Sonicwall, I get an APIPA from both AP/SG500. Any thoughts?What is your default VLAN?
On the AP, you configured VLAN 200 to be the native. is that the same with your othe devices?
"encapsulation dot1Q 200 native"
Regards,
Amjad
Rating useful replies is more useful than saying "Thank you" -
Cisco AIR 1142N wireless speed.
Hello all.
Just got Cisco AIR 1142N, configured it with two ssids on 2.4 Mhz interface. 5.0 is shutdown. As I know (probably I am wrong) wireless speed with "n" mode devices must be at least 150 Mbps, but I get only half of that- 72 Mbps. Where could be a problem?
Tested it with notebooks with Broadcom 4313 adapter.
I have read some people face problem with 54 Mbps speed, but they just have wrong authentication.
Be glad for any advice!
and here is a bit of my conf.Yeah..I think this is the problem.
My wi-fi adapter in notebooks is Broadcom 4313b/g/n and this is what I find about it..
Broadcom 4313GN 802.11b/g/n
WiFi Adapter
Integrated support for 802.11 b, g, and n
1 transmit, 1 receive antenna
Up to 72 mbps data rate
Very sad.
Thanks everyone for the help and detailed responses:) -
Cisco AIR Location 2700 GRUB Password
Hello,
Can you tell me please how to désactivate the grub password on Cisco AIR-LOC-2700 after configuring it. Thank you in advance.
Nizar HouichiHi Nizar,
If you have access to the LOC-2700 you can disable the GRUB password by running the setup.sh script at:
/opt/locserver/setup/setup.sh
When you get the question about the GRUB password you can disable using the option "D":
GRUB password is not currently configured.
Configure GRUB password (Y)es/(D)isable/(S)kip/(U)se default [Skip]: D
This is documented here:
http://www.cisco.com/en/US/docs/wireless/location/2700/quick/guide/la_gsg_main.html#wp1040488
In case you set that password and you forgot it, there's no recovery mechanism for it and you would need to replace the hardware (RMA).
I hope this helps.
Regards,
Federico
If this answers your question please mark the question as "answered" and rate it, so other users can easily find it. -
Air-AP1242AG Versus Air-APLAP1242AG
Hi All,
We just got (2) Air-lap1242ag-a-k9 units here and i am also working on (2) air-ap1242ag-a-k9 units also.
my question is this, do the lap units function the same as the air-ap1242ag units?
if not, what will it take to make the lap units function like the ap1242 units?
which one is better and why?
regards,
philipThe LAP version comes with the lightweight image on it and is used with a WLC.
the AP version comes with aIOS image and is the 'traditional' standalone.
Both can be converted either way from LWAPP to aIOS and vice versus.
you can use the following to take the LAP to AP mode
http://www.cisco.com/en/US/docs/wireless/access_point/conversion/lwapp/upgrade/guide/lwapnote.html#wp160918
HTH,
Steve
Please remember to rate useful posts, and mark questions as answered -
The difference between AIR-ANT5135D-R and AIR-ANT5135DB-R
Hi,
Anyone know what is the difference between AIR-ANT5135D-R and AIR-ANT5135DB-R ?
From the dynamic configuration tools for 1252 and 1242, AIR-ANT2422DB-R is inside one of the antenna option.
However, I can't find it in the "Cisco Aironet Antennas and Accessories Reference Guide"
http://www.cisco.com/en/US/prod/collateral/wireless/ps7183/ps469/product_data_sheet09186a008008883b.html
Inside the document there is only AIR-ANT5135D-R.
likewise for the 2.4 GHz, AIR-ANT2422DB-R is inside the dynamic configuration tools and not inside "Cisco Aironet Antennas and Accessories Reference Guide"
Any help would be appreciated
Thanks,
RichardFound the difference, AIR-ANT5135DB-R and AIR-ANT2422DB-R are non-articulating antennas.
Thanks!
Richard -
ASA , Cisco VPN client with RADIUS authentication
Hi,
I have configured ASA for Cisco VPN client with RADIUS authentication using Windows 2003 IAS.
All seems to be working I get connected and authenticated. However even I use user name and password from Active Directory when connecting with Cisco VPN client I still have to provide these credentials once again when accessing domain resources.
Should it work like this? Would it be possible to configure ASA/IAS/VPN client in such a way so I enter user name/password just once when connecting and getting access to domain resources straight away?
Thank you.
Kind regards,
AlexHi Alex,
It is working as it should.
You can enable the vpn client to start vpn before logon. That way you login to vpn and then logon to the domain. However, you are still entering credentials twice ( vpn and domain) but you have access to domain resources and profiles.
thanks
John -
Cisco AIR-CAP1602I-E-K9 Telnet issue
Hi Team, I have installed new cisco AIR-CAP1602I-E-K9 in the remote site LAN however the access point received the ip address through central DHCP helper address. I am able to ping the access point through LAN but I am unable to telenet the device to configure.
Also when Field enginner visited on site to connect physical he connected through console but we were not able get into configure mode though we had full privilege access.
Please advice.
AP0006.f618.26f5#sh version
Cisco IOS Software, C1600 Software (AP1G2-RCVK9W8-M), Version 15.2(2)JB, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2012 by Cisco Systems, Inc.
Compiled Tue 11-Dec-12 04:52 by prod_rel_team
ROM: Bootstrap program is C1600 boot loader
BOOTLDR: C1600 Boot Loader (AP1G2-BOOT-M) LoaderVersion 15.2(2)JAX, RELEASE SOFTWARE (fc1)
AP0006.f618.26f5 uptime is 3 minutes
System returned to ROM by power-on
System image file is "flash:/ap1g2-rcvk9w8-mx/ap1g2-rcvk9w8-mx"
Last reload reason:
This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.
A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html
If you require further assistance please contact us by sending email to
[email protected].
cisco AIR-CAP1602I-E-K9 (PowerPC) processor (revision A0) with 98294K/32768K bytes of memory.
Processor board ID FGL1703ZA3E
PowerPC CPU at 533Mhz, revision number 0x2151
Last reset from power-on
LWAPP image version 7.4.1.37
1 Gigabit Ethernet interface
32K bytes of flash-simulated non-volatile configuration memory.
Base ethernet MAC Address: 00:06:F6:18:26:F5
Part Number : 73-14671-04
PCA Assembly Number : 000-00000-00
PCA Revision Number :
PCB Serial Number : FOC164971SY
Top Assembly Part Number : 800-38552-01
Top Assembly Serial Number : FGL1703ZA3E
Top Revision Number : A0
Product/Model Number : AIR-CAP1602I-E-K9
Configuration register is 0xFThanks,
1. Does it mean I should not be able to telnet also into the AP though I can ping from Router LAN ( AP is connected directly to router ethernet interface).
2. I am also not able to discover controller when running in controller-based IOS. getting below errors.
Thanks to advice on above points.
Mar 1 00:03:04.038: %CAPWAP-3-ERRORLOG: Discovery response from MWAR 'Cisco_d6:f5:c0'running version 6.0.196.0 is rejected.
*Mar 1 00:03:04.038: %CAPWAP-3-ERRORLOG: Failed to decode discovery response.
*Mar 1 00:03:04.038: %CAPWAP-3-ERRORLOG: CAPWAP SM handler: Failed to process message type 2 state 2.
*Mar 1 00:03:04.038: %CAPWAP-3-ERRORLOG: Failed to handle capwap control message from controller
*Mar 1 00:03:04.038: %CAPWAP-3-ERRORLOG: Failed to process unencrypted capwap packet from 172.25.11.13
*Mar 1 00:03:04.042: %CAPWAP-3-ERRORLOG: Discovery response from MWAR 'Cisco_d6:f5:c0'running version 6.0.196.0 is rejected.
*Mar 1 00:03:04.042: %CAPWAP-3-ERRORLOG: Failed to decode discovery response.
*Mar 1 00:03:04.042: %CAPWAP-3-ERRORLOG: CAPWAP SM handler: Failed to process message type 2 state 2.
*Mar 1 00:03:04.042: %CAPWAP-3-ERRORLOG: Failed to handle capwap control message from controller
AP0006.f618.26f5#
*Mar 1 00:03:14.038: %CAPWAP-3-ERRORLOG: Discovery response from MWAR 'Cisco_d6:f5:c0'running version 6.0.196.0 is rejected.
*Mar 1 00:03:14.038: %CAPWAP-3-ERRORLOG: Failed to decode discovery response.
*Mar 1 00:03:14.038: %CAPWAP-3-ERRORLOG: CAPWAP SM handler: Failed to process message type 2 state 2.
*Mar 1 00:03:14.038: %CAPWAP-3-ERRORLOG: Failed to handle capwap control message from controller
*Mar 1 00:03:14.038: %CAPWAP-3-ERRORLOG: Failed to process unencrypted capwap packet from 172.25.1
AP0006.f618.26f5#1.13
*Mar 1 00:03:14.042: %CAPWAP-3-ERRORLOG: Discovery response from MWAR 'Cisco_d6:f5:c0'running version 6.0.196.0 is rejected.
*Mar 1 00:03:14.042: %CAPWAP-3-ERRORLOG: Failed to decode discovery response.
*Mar 1 00:03:14.042: %CAPWAP-3-ERRORLOG: CAPWAP SM handler: Failed to process message type 2 state 2.
*Mar 1 00:03:14.042: %CAPWAP-3-ERRORLOG: Failed to handle capwap control message from controller
*Mar 1 00:03:24.029: %CAPWAP-3-ERRORLOG: Discovery response from MWAR 'Cisco_d6:f5:c0'running version 6.0.196.0 is rejected.
*Mar 1 00:03:24.029: %CAPWAP-3-ERRORLOG: Failed to decode discovery response.
*Mar 1 00:03:24.029: %CAPWAP-3-ERRORLOG: CAPWAP SM handler: Failed to process message type 2 state 2.
*Mar 1 00:03:24.033: %CAPWAP-3-ERRORLOG: Failed to handle capwap control message from controller
*Mar 1 00:03:24.033: %CAPWAP-3-ERRORLOG: Failed to process unencrypted capwap packet from 172.25.11.13
*Mar 1 00:03:24.033: %CAPWAP-3-ERRORLOG: Discovery response from MWAR 'Cisco_d6:f5:c0'running version 6.0.196.0 is rejected.
*Mar 1 00:03:24.033: %CAPWAP-3-ERRORLOG: Failed to decode discovery response.
*Mar 1 00:03:24.033: %CAPWAP-3-ERRORLOG: CAPWAP SM handler: Failed to process message type 2 state 2.
*Mar 1 00:03:24.033: %CAPWAP-3-ERRORLOG: Failed to handle capwap control message from controller
*Mar 1 00:03:34.041: %CAPWAP-3-ERRORLOG: Discovery response from MWAR 'Cisco_d6:f5:c0'running version 6.0.196.0 is rejected.
*Mar 1 00:03:34.041: %CAPWAP-3-ERRORLOG: Failed to decode discovery response.
*Mar 1 00:03:34.041: %CAPWAP-3-ERRORLOG: CAPWAP SM handler: Failed to process message type 2 state 2.
*Mar 1 00:03:34.041: %CAPWAP-3-ERRORLOG: Failed to handle capwap control message from controller
*Mar 1 00:03:34.041: %CAPWAP-3-ERRORLOG: Failed to process unencrypted capwap packet from 172.25.11.13
*Mar 1 00:03:34.041: %CAPWAP-3-ERRORLOG: Discovery response from MWAR 'Cisco_d6:f5:c0'running version 6.0.196.0 is rejected.
*Mar 1 00:03:34.041: %CAPWAP-3-ERRORLOG: Failed to decode discovery response.
*Mar 1 00:03:34.041: %CAPWAP-3-ERRORLOG: CAPWAP SM handler: Failed to process message type 2 state 2.
*Mar 1 00:03:34.041: %CAPWAP-3-ERRORLOG: Failed to handle capwap control message from controller
Not in Bound state.
*Mar 1 00:03:49.505: %CAPWAP-3-DHCP_RENEW: Could not discover WLC using DHCP IP. Renewing DHCP IP.
*Mar 1 00:03:53.393: %CAPWAP-3-ERRORLOG: Invalid event 38 & state 2 combination.
*Mar 1 00:03:53.477: %DHCP-6-ADDRESS_ASSIGN: Interface BVI1 assigned DHCP address 10.110.93.22, mask 255.255.255.128, hostname AP0006.f618.26f5
en
Translating "CISCO-CAPWAP-CONTROLLER"...domain server (10.50.1.235) (10.50.1.236)
*Mar 1 00:04:00.505: %CAPWAP-3-ERRORLOG: Did not get log server settings from DHCP.
*Mar 1 00:04:00.565: %CAPWAP-3-ERRORLOG: Could Not resolve CISCO-CAPWAP-CONTROLLER
*Mar 1 00:04:00.593: %CAPWAP-3-ERRORLOG: Discovery response from MWAR 'Cisco_d6:f5:c0'running version 6.0.196.0 is rejected.
*Mar 1 00:04:00.593: %CAPWAP-3-ERRORLOG: Failed to decode discovery response.
*Mar 1 00:04:00.593: %CAPWAP-3-ERRORLOG: CAPWAP SM handler: Failed to process message type 2 state 2.
*Mar 1 00:04:00.593: %CAPWAP-3-ERRORLOG: Failed to handle capwap control message from controller
*Mar 1 00:04:00.593: %CAPWAP-3-ERRORLOG: Failed to process unencrypted capwap packet from 172.25.11.13
*Mar 1 00:04:00.593: %CAPWAP-3-ERRORLOG: Discovery response from MWAR 'Cisco_d6:f5:c0'running version 6.0.196.0 is rejected.
*Mar 1 00:04:00.593: %CAPWAP-3-ERRORLOG: Failed to decode discovery response.
*Mar 1 00:04:10.593: %CAPWAP-3-ERRORLOG: Discovery response from MWAR 'Cisco_d6:f5:c0'running version 6.0.196.0 is rejected.
*Mar 1 00:04:10.593: %CAPWAP-3-ERRORLOG: Failed to decode discovery response.
*Mar 1 00:04:10.593: %CAPWAP-3-ERRORLOG: CAPWAP SM handler: Failed to process message type 2 state 2.
*Mar 1 00:04:10.593: %CAPWAP-3-ERRORLOG: Failed to handle capwap control message from controller
*Mar 1 00:04:10.593: %CAPWAP-3-ERRORLOG: Failed to process unencrypted capwap packet from 172.25.11.13
*Mar 1 00:04:10.597: %CAPWAP-3-ERRORLOG: Discovery response from MWAR 'Cisco_d6:f5:c0'running version 6.0.196.0 is rejected.
*Mar 1 00:04:10.597: %CAPWAP-3-ERRORLOG: Failed to decode discovery response.
*Mar 1 00:04:10.597: %CAPWAP-3-ERRORLOG: CAPWAP SM handler: Failed to process message type 2 state 2.
*Mar 1 00:04:10.597: %CAPWAP-3-ERRORLOG: Failed to handle capwap control message from controller
*Mar 1 00:04:20.593: %CAPWAP-3-ERRORLOG: Discovery response from MWAR 'Cisco_d6:f5:c0'running version 6.0.196.0 is rejected.
*Mar 1 00:04:20.593: %CAPWAP-3-ERRORLOG: Failed to decode discovery response.
*Mar 1 00:04:20.593: %CAPWAP-3-ERRORLOG: CAPWAP SM handler: Failed to process message type 2 state 2.
*Mar 1 00:04:20.593: %CAPWAP-3-ERRORLOG: Failed to handle capwap control message from controller
*Mar 1 00:04:20.593: %CAPWAP-3-ERRORLOG: Failed to process unencrypted capwap packet from 172.25.11.13
*Mar 1 00:04:20.597: %CAPWAP-3-ERRORLOG: Discovery response from MWAR 'Cisco_d6:f5:c0'running version 6.0.196.0 is rejected.
*Mar 1 00:04:20.597: %CAPWAP-3-ERRORLOG: Failed to decode discovery response.
*Mar 1 00:04:20.597: %CAPWAP-3-ERRORLOG: CAPWAP SM handler: Failed to process message type 2 state 2.
*Mar 1 00:04:20.597: %CAPWAP-3-ERRORLOG: Failed to handle capwap control message from controller
*Mar 1 00:04:30.593: %CAPWAP-3-ERRORLOG: Discovery response from MWAR 'Cisco_d6:f5:c0'running version 6.0.196.0 is rejected.
*Mar 1 00:04:30.593: %CAPWAP-3-ERRORLOG: Failed to decode discovery response.
*Mar 1 00:04:30.593: %CAPWAP-3-ERRORLOG: CAPWAP SM handler: Failed to process message type 2 state 2.
*Mar 1 00:04:30.593: %CAPWAP-3-ERRORLOG: Failed to handle capwap control message from controller
*Mar 1 00:04:30.593: %CAPWAP-3-ERRORLOG: Failed to process unencrypted capwap packet from 172.25.11.13
*Mar 1 00:04:30.597: %CAPWAP-3-ERRORLOG: Discovery response from MWAR 'Cisco_d6:f5:c0'running version 6.0.196.0 is rejected.
*Mar 1 00:04:30.597: %CAPWAP-3-ERRORLOG: Failed to decode discovery response.
*Mar 1 00:04:30.597: %CAPWAP-3-ERRORLOG: CAPWAP SM handler: Failed to process message type 2 state 2.
*Mar 1 00:04:30.597: %CAPWAP-3-ERRORLOG: Failed to handle capwap control message from controller
Not in Bound state.
*Mar 1 00:04:46.069: %CAPWAP-3-DHCP_RENEW: Could not discover WLC using DHCP IP. Renewing DHCP IP.
*Mar 1 00:04:49.161: %CAPWAP-3-ERRORLOG: Invalid event 38 & state 2 combination.
*Mar 1 00:04:49.273: %DHCP-6-ADDRESS_ASSIGN: Interface BVI1 assigned DHCP address 10.110.115.20, mask 255.255.255.128, hostname AP0006.f618.26f5
Translating "CISCO-CAPWAP-CONTROLLER"...domain server (10.50.1.235)
*Mar 1 00:04:57.069: %CAPWAP-3-ERRORLOG: Did not get log server settings from DHCP. (10.50.1.236)
*Mar 1 00:05:15.068: %CAPWAP-3-ERRORLOG: Could Not resolve CISCO-CAPWAP-CONTROLLER
Not in Bound state.
*Mar 1 00:06:00.568: %CAPWAP-3-DHCP_RENEW: Could not discover WLC using DHCP IP. Renewing DHCP IP.
*Mar 1 00:06:04.396: %CAPWAP-3-ERRORLOG: Invalid event 38 & state 2 combination.
*Mar 1 00:06:04.412: %DHCP-6-ADDRESS_ASSIGN: Interface BVI1 assigned DHCP address 10.110.93.22, mask 255.255.255.128, hostname AP0006.f618.26f5
en
AP0006.f618.26f5#
AP0006.f618.26f5#sh
Writing out the event log to flash:/event.log ...
ip int
*Mar 1 00:06:11.668: %SYS-5-RELOAD: Reload requested by CAPWAP CLIENT. Reload Reason: Could not discover WLC using DHCP IP address, Reload to use static IP. -
Cisco AIR-LAP1041N-E-K9 not working with WLC 4402 version 7.0.116.0
Hi All,
appreciate your support for a problem i started facing today. i have a Cisco WLC 4402 running version 7.0.116.0 and it is working great with 25 Cisco 1252 APs. we have recieved a new 20 Cisco 1041N APs today and i installed one in our site but it doesn't work. it worked fine and loaded the image from flash and got the WLC ip address through DHCP option and started showing the below error:
*Mar 1 00:00:10.021: %SOAP_FIPS-2-SELF_TEST_IOS_SUCCESS: IOS crypto FIPS self test passed
*Mar 1 00:00:10.033: *** CRASH_LOG = YES
*Mar 1 00:00:10.333: Port 1 is not presentSecurity Core found.
Base Ethernet MAC address: C8:9C:1D:53:57:5E
*Mar 1 00:00:11.373: %SOAP_FIPS-2-SELF_TEST_RAD_SUCCESS: RADIO crypto FIPS self test passed on interface Dot11Radio 0
*Mar 1 00:00:11.465: %LWAPP-3-CLIENTEVENTLOG: Read and initialized AP event log (contains, 1088 messages)
*Mar 1 00:00:11.494: status of voice_diag_test from WLC is false
*Mar 1 00:00:12.526: %LINK-3-UPDOWN: Interface GigabitEthernet0, changed state to up
*Mar 1 00:00:13.594: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0, changed state to up
*Mar 1 00:00:13.647: %SYS-5-RESTART: System restarted --
Cisco IOS Software, C1040 Software (C1140-K9W8-M), Version 12.4(23c)JA2, RELEASE SOFTWARE (fc3)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2011 by Cisco Systems, Inc.
Compiled Wed 13-Apr-11 12:50 by prod_rel_team
*Mar 1 00:00:13.647: %SNMP-5-COLDSTART: SNMP agent on host APc89c.1d53.575e is undergoing a cold start
*Mar 1 00:08:59.062: %CAPWAP-5-CHANGED: CAPWAP changed state to DISCOVERY
*Mar 1 00:08:59.062: bsnInitRcbSlot: slot 1 has NO radio
*Mar 1 00:08:59.138: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to reset
*Mar 1 00:08:59.837: %SSH-5-ENABLED: SSH 2.0 has been enabled
*Mar 1 00:09:00.145: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to down
*Mar 1 00:09:09.136: %DHCP-6-ADDRESS_ASSIGN: Interface GigabitEthernet0 assigned DHCP address 172.16.26.81, mask 255.255.255.0, hostname APc89c.1d53.575e
*Mar 1 00:09:17.912: %PARSER-4-BADCFG: Unexpected end of configuration file.
*Mar 1 00:09:17.912: status of voice_diag_test from WLC is false
*Mar 1 00:09:17.984: Logging LWAPP message to 255.255.255.255.
*Mar 1 00:09:19.865: %CDP_PD-4-POWER_OK: Full power - NEGOTIATED inline power source
*Mar 1 00:09:19.886: %LINK-3-UPDOWN: Interface Dot11Radio0, changed state to up
*Mar 1 00:09:20.873: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to up
*Mar 1 00:09:20.874: %SYS-6-LOGGINGHOST_STARTSTOP: Logging to host 255.255.255.255 started - CLI initiated
Translating "CISCO-CAPWAP-CONTROLLER.atheertele.com"...domain server (172.16.40.240)
*Mar 1 00:09:29.029: %CAPWAP-5-DHCP_OPTION_43: Controller address 172.16.100.102 obtained through DHCP
*May 25 08:27:02.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 172.16.100.101 peer_port: 5246
*May 25 08:27:02.001: %CAPWAP-5-CHANGED: CAPWAP changed state to
*May 25 08:27:03.175: %CAPWAP-5-DTLSREQSUCC: DTLS connection created sucessfully peer_ip: 172.16.100.101 peer_port: 5246
*May 25 08:27:03.177: %CAPWAP-5-SENDJOIN: sending Join Request to 172.16.100.101
*May 25 08:27:03.177: %CAPWAP-5-CHANGED: CAPWAP changed state to JOIN
*May 25 08:27:03.329: %CAPWAP-5-CHANGED: CAPWAP changed state to CFG
*May 25 08:27:03.333: %DTLS-5-ALERT: Received WARNING : Close notify alert from 172.16.100.101
*May 25 08:27:03.333: %DTLS-5-PEER_DISCONNECT: Peer 172.16.100.101 has closed connection.
*May 25 08:27:03.333: %DTLS-5-SEND_ALERT: Send FATAL : Close notify Alert to 172.16.100.101:5246
*May 25 08:27:03.378: %CAPWAP-5-CHANGED: CAPWAP changed state to DISCOVERY
*May 25 08:27:03.378: %CAPWAP-5-CHANGED: CAPWAP changed state to DISCOVERY
*May 25 08:27:03.378: bsnInitRcbSlot: slot 1 has NO radio
*May 25 08:27:03.448: status of voice_diag_test from WLC is false
*May 25 08:27:14.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 172.16.100.101 peer_port: 5246
*May 25 08:27:14.001: %CAPWAP-5-CHANGED: CAPWAP changed state to
*May 25 08:27:15.185: %CAPWAP-5-DTLSREQSUCC: DTLS connection created sucessfully peer_ip: 172.16.100.101 peer_port: 5246
*May 25 08:27:15.186: %CAPWAP-5-SENDJOIN: sending Join Request to 172.16.100.101
*May 25 08:27:15.186: %CAPWAP-5-CHANGED: CAPWAP changed state to JOIN
*May 25 08:27:15.330: %CAPWAP-5-CHANGED: CAPWAP changed state to CFG
*May 25 08:27:15.333: %DTLS-5-ALERT: Received WARNING : Close notify alert from 172.16.100.101
*May 25 08:27:15.334: %DTLS-5-PEER_DISCONNECT: Peer 172.16.100.101 has closed connection.
*May 25 08:27:15.334: %DTLS-5-SEND_ALERT: Send FATAL : Close notify Alert to 172.16.100.101:5246
*May 25 08:27:15.379: %CAPWAP-5-CHANGED: CAPWAP changed state to DISCOVERY
*May 25 08:27:15.379: %CAPWAP-5-CHANGED: CAPWAP changed state to DISCOVERY
*May 25 08:27:15.379: bsnInitRcbSlot: slot 1 has NO radio
*May 25 08:27:15.450: status of voice_diag_test from WLC is false
*May 25 08:27:26.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 172.16.100.101 peer_port: 5246
*May 25 08:27:26.001: %CAPWAP-5-CHANGED: CAPWAP changed state to
*May 25 08:27:27.182: %CAPWAP-5-DTLSREQSUCC: DTLS connection created sucessfully peer_ip: 172.16.100.101 peer_port: 5246
*May 25 08:27:27.183: %CAPWAP-5-SENDJOIN: sending Join Request to 172.16.100.101
*May 25 08:27:27.184: %CAPWAP-5-CHANGED: CAPWAP changed state to JOIN
*May 25 08:27:27.329: %CAPWAP-5-CHANGED: CAPWAP changed state to CFG
*May 25 08:27:27.333: %DTLS-5-ALERT: Received WARNING : Close notify alert from 172.16.100.101
*May 25 08:27:27.333: %DTLS-5-PEER_DISCONNECT: Peer 172.16.100.101 has closed connection.
*May 25 08:27:27.333: %DTLS-5-SEND_ALERT: Send FATAL : Close notify Alert to 172.16.100.101:5246
*May 25 08:27:27.377: %CAPWAP-5-CHANGED: CAPWAP changed state to DISCOVERY
*May 25 08:27:27.377: %CAPWAP-5-CHANGED: CAPWAP changed state to DISCOVERY
*May 25 08:27:27.377: bsnInitRcbSlot: slot 1 has NO radio
*May 25 08:27:27.433: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to administratively down
*May 25 08:27:27.446: %PARSER-4-BADCFG: Unexpected end of configuration file.
*May 25 08:27:27.447: status of voice_diag_test from WLC is false
*May 25 08:27:27.448: %LINK-3-UPDOWN: Interface Dot11Radio0, changed state to up
*May 25 08:27:27.456: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to reset
*May 25 08:27:38.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 172.16.100.101 peer_port: 5246
*May 25 08:27:38.001: %CAPWAP-5-CHANGED: CAPWAP changed state to
*May 25 08:27:39.183: %CAPWAP-5-DTLSREQSUCC: DTLS connection created sucessfully peer_ip: 172.16.100.101 peer_port: 5246
*May 25 08:27:39.184: %CAPWAP-5-SENDJOIN: sending Join Request to 172.16.100.101
*May 25 08:27:39.184: %CAPWAP-5-CHANGED: CAPWAP changed state to JOIN
*May 25 08:27:39.326: %CAPWAP-5-CHANGED: CAPWAP changed state to CFG
*May 25 08:27:39.329: %DTLS-5-ALERT: Received WARNING : Close notify alert from 172.16.100.101
*May 25 08:27:39.329: %DTLS-5-PEER_DISCONNECT: Peer 172.16.100.101 has closed connection.
*May 25 08:27:39.330: %DTLS-5-SEND_ALERT: Send FATAL : Close notify Alert to 172.16.100.101:5246
*May 25 08:27:39.375: %CAPWAP-5-CHANGED: CAPWAP changed state to DISCOVERY
*May 25 08:27:39.375: %CAPWAP-5-CHANGED: CAPWAP changed state to DISCOVERY
*May 25 08:27:39.375: bsnInitRcbSlot: slot 1 has NO radio
*May 25 08:27:39.446: status of voice_diag_test from WLC is false
*May 25 08:27:49.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 172.16.100.101 peer_port: 5246
*May 25 08:27:49.001: %CAPWAP-5-CHANGED: CAPWAP changed state to
*May 25 08:27:50.179: %CAPWAP-5-DTLSREQSUCC: DTLS connection created sucessfully peer_ip: 172.16.100.101 peer_port: 5246
*May 25 08:27:50.180: %CAPWAP-5-SENDJOIN: sending Join Request to 172.16.100.101
*May 25 08:27:50.180: %CAPWAP-5-CHANGED: CAPWAP changed state to JOIN
*May 25 08:27:50.323: %CAPWAP-5-CHANGED: CAPWAP changed state to CFG
*May 25 08:27:50.326: %DTLS-5-ALERT: Received WARNING : Close notify alert from 172.16.100.101
*May 25 08:27:50.326: %DTLS-5-PEER_DISCONNECT: Peer 172.16.100.101 has closed connection.
*May 25 08:27:50.326: %DTLS-5-SEND_ALERT: Send FATAL : Close notify Alert to 172.16.100.101:5246
*May 25 08:27:50.370: %CAPWAP-5-CHANGED: CAPWAP changed state to DISCOVERY
*May 25 08:27:50.370: %CAPWAP-5-CHANGED: CAPWAP changed state to DISCOVERY
*May 25 08:27:50.370: bsnInitRcbSlot: slot 1 has NO radio
*May 25 08:27:50.425: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to administratively down
*May 25 08:27:50.438: %PARSER-4-BADCFG: Unexpected end of configuration file.
i searched for the regulatory domains difference between AIR-LAP1041N-E-K9 and AIR-LAP1041N-A-K9 and didn't find any difference that may affect the operation of this AP.
just to mention that our configuration in WLC for regulatory domains is:
Configured Country Code(s) AR
Regulatory Domain 802.11a: -A
802.11bg: -A
My question is, should i only include my country in the WLC (IQ) to add the requlatry domain (-E) to solve this problem? or changing the country will affect the operation of all working APs??
Appreciate your kind support,
Wisam Q.Hi Ramon,
thank you for the reply but as shown in the below link:
http://www.cisco.com/en/US/docs/wireless/controller/release/notes/crn7.0.html#wp233793
the WLC in version 7.0.116.0 supports Cisco 1040 seiries APs.
Thanks,
Wisam Q.
Maybe you are looking for
-
New changes are not getting reflected in the bam reports.
Hi I have created a BPEL process and it polls the data from a table and populate an object created in Bam.I have accomplished the above task by createing two database adaptors.One is on 10g database and another one is on Bam database.I have created a
-
Ewa report not good. how to get ewa report to show all server for portal
hi experts i am using solman sp23 but server for portal not showing all instance only 1 out of 5 showing on report. thank u sunil
-
Opening PDF causes spare Hard drive to spin up
Hello, I use Adobe Web Premium CS3 on my desktop. The OS and software are installed on the primary drive. I have a spare hard drive on the desktop that is used infrequently. After an hour of using my desktop, the spare drive usually spins down
-
Modification of BOM Report! (CS03 )
Dear Experts, Actually iam required to add an additional field in to a standard BOM Report i.e. CS03 In this report the requirement is to have the additional field for 'stock quantity' available. Now in order to accomplish this i need to have a custo
-
HT201210 i have a 3gs and will not let me update its on 4.1
hi i have a iphone 3gs im trying to update it its not letting mr can u help me please its on 4.1