Design question: Access points and controller Logical/Physical placement

Similar Messages

• Connection between lightweight access point and switch?

  Hello everybody,
  I am a bit confused about cisco 1000 series access point connection. On wireless lan controller and lightweight access point basic configuration example document id 69719 (http://www.cisco.com/en/US/products/ps6366/products_configuration_example09186a0080665cdf.shtml), I understood the access point has two vlans associated with (vlan 3 and 4). Am I correct?
  Why is connection between access point and catalyst port just access port rather 802.1q trunk? How vlan traffic can traverse from the access point to controller?
  Please advice.
  Many thanks,
  Nitass

  Nitass,
  The AP itself does not need to be a trunked port, but the uplink to the controller does. When using a Lightweight enviroment, all the traffic passes thru an encrypted LWAPP tunnel from the AP to the controller, and then gets sent out the correct VLAN interface on the controller.

• IOS 6, Netgear access point and Internet

  Hi,
  I’ve reached a point where I’m not entirely sure what to do next.
  Here are some quick details (all are on most recent firmware unless stated):
  Router: Draytek Vigor2830n
  Access Point: Netgear WG102
  Devices: iPhone 4, iPhone 5, iPad 2 and two iPad 2’s for comparison on iOS 5.
  So, all devices running iOS 6.1.3/4 will connect to the Netgear access point just fine, can browse the LAN / stream media from network shares but internet access seems to be 'delayed' and can take anywhere between a minute to 20 minutes to connect (I give up after this). In comparison both the iPad 2’s running iOS 5 will gain internet access immediately after connecting to the access point.
  On the other hand, when connecting to the routers wireless on all devices it works flawlessly and internet connection is 'instant'.
  Given the problems that Netgear wifi has had with iOS 6, which were supposedly ‘fixed’ in iOS 6.1, I’m not sure what to do. It’s definitely a software problem, and could well be something to do with the router (along with connecting to the access point and iOS 6), but I’m not sure what to start changing first. iOS 5 works fine, so what has changed in iOS 6 to break it?
  Its not a security issue like before 6.1 and not being able to connect to the access point at all.
  Basically:
  - I either need to figure what in iOS 6 is causing this ‘delay’ and how to fix it
  -Give up on the access point and buy a new one (seems a bit extreme given that every other devices works fine – iOS 5, blackberry, laptops etc).
  -Wait for iOS 7, hopefully in the next couple of weeks and see if it fixes it, though I can find little information on this issue as it is, and nothing to suggest iOS 7 might help. Though if iOS 5 is fine, iOS 6 broke it and 6.1 slightly fixed it, maybe iOS 7 will cure it? Doubt it…but worth waiting a few days.
  Anyone got any suggestions? I have been through all the usual (HTTP proxy, forget this network, reset network settings), nothing makes it work flawlessly like iOS 5 and the issue is the same on a wide spread of devices running iOS 6.

  Dont know my routerand access point works fine. Try http://support.apple.com/kb/HT4199 and make sure your setting are correct.

• Silly doubt abt access-points and bridges

  hi all i have read cisco doc wherein clients connecting to access-points and also where the cisco access-point is working like a bridge and still clients can connect to it .
  then any specific reason why people generally connect clients to access-points.
  i mean is there any benefit of either method over the other.
  any help and guidance would be really helpful.
  regards
  sushil

  In short, it is preferred to have users connect to access points.... 99% of the time. You can use a wireless bridge (that is associated to an AP) that is connected to a switch/hub to supply network connectivity to wired users off the switch/hub. There are also access points that can be used as a bridge for building point to point connectivity.
  Look at the home users with wireless.... it allows then to move from place to place (as long as there is coverage) without having to be wired in.

• Use N95 as access point and get laptop inet throug...

  Is it possible to use the N95 as an (WIFI) access point and use a laptop, a psp, an ipod touch to access the internet through 3G or even Turbo 3G?
  That would be really really cool!
  Regards
  Raptor

  I dont think it is as would have to be connected through a router to a phone line anyway. My psp doesn't even detect my N95. You would have to use it as a bluetooth modem and 3g.
  Its not who i am underneath. But what i do that defines me.
  You are here for a reason Superman.
  "Come to me son of Jor-EL. KNEEL BEFORE ZOD"

• WRT54G ver. 6 Connected to access point and internet, but cannot access the web

  I can connect to the access point and it shows that I an connected to the internet.  However when I open a bowser it says page cannot be displayed!  Signal is very good to excellent.  Also, I have been using it all day and it was working fine, until I shutdown.  When I booted back up it stopped working.  The internet is working!  I have XBOX Live working right now.  Just not the computer.  Any Help would be appreciated.
  WRT54G ver. 6
  Message Edited by SJohnson4 on 12-01-200607:35 PM

  Hi... it seems that your Wireless adapter on does get a IP address or DNS no after reboot. Try assigning a Static IP address and DNS on the Wireless Adapter. Also try to update the drivers for that wireless adapter.

• WAP4410N Access point and 4404 WLAN Controller.

  Hello to all,
  I am planning to setup a new WLAN using WAP4410N Wireless N Access Point. Is it possible to manage the AP using 4404 WLAN controller ?
  I need to buy arround 42 AP for covering the entire building.
  Regards,
  Aslam

  leolaohoo
  Could u please tell me which series can be used with 4404 WLANC ?
  Also the AP Should support Bridging or Mesh.

• Is NAT allowed between the Access Point and WLAN Controller?

  Suppose that the AP and Controller communicate over a L3 network.
  Can NAT be performed in between?
  For example, suppose that the AP is connected to an ADSL router that performs NAT.

  Just to expand on what George had said, when the controller sends the discovery response to an AP the controller's ap-manager interface IP address is embedded in the response.  So if this packet gets NATed the embedded address won't.  So just make sure they AP can route packets to whatever address is configured on the controller.  The controller doesn't need to see the AP's configured address, this one could be NATed.

• Multiple Cisco Aironet 1131AG access points and same SSID?

  We have multiple Cisco Aironet 1131AG devices, all wired on one Cisco L2 switch(2560)  who is connected to L3 switch (3550). We assigned one VLAN for access point in L3 switch who acts as vtp server (L2 switch is vtp client). All ap's will have static ip address and all will have same SSID and no security and they will be using multiple channels (ex. 1,6,11).  They will operate in 3 floor building for roaming wireless client. We won't using any wireless controller.
  So my question is this: How to configure APs-all the same with different ip's, can we use L3 switch to create dhcp server for access points VLAN (pool for clients, and the rest for static ip for ap's)? Can one of the ap's be WDS and in the same time local radius server with users without Cisco Secure ACS or similar controller or I didn't understand this quite well :-). I followed guide http://www.cisco.com/en/US/docs/wireless/access_point/12.3_2_JA/configuration/guide/s32roamg.html for WDS where the part abou Cisco ACS is a problem, so I can use same ap as Local Authenticator as in guide  http://www.cisco.com/en/US/docs/wireless/access_point/12.3_4_JA/configuration/guide/s34local.html#wp1035723.
  Many thanks...

  Well, just so you know, WDS and local RADIUS authentication is only needed if you're using authentication on your wireless connection.  You say you're not planning to use security, so this isn't necessary.  However, I'd highly recommend at least using a simple WPA2-PSK to lock down your connection, otherwise you might end up giving free Internet access at best, and at worst you might be giving access to company PCs and servers.  If you want to further use an 802.1x or WPA authentication method, then yes, you can use an AP as a RADIUS server and WDS to improve authenticated roaming, but this is far more limited than using a Cisco ACS.
  As for your other questions, yes, your APs can all be configured the same except for at least three parameters: IP address, channel, and hostname.  Configure your static IP addresses on the AP's BVI1 interface.  Don't place it on the Radio or Ethernet interfaces, because if either of these interfaces goes down you'll lose the ability to configure the AP, so it's best to use the BVI1 interface.
  And yes, configuring a DHCP scope for your clients on your L3 switch is a good design, or you could also use your DHCP server on a different subnet by using the ip helper-address command on the L3 interface.  I hope this helps!  Let me know if you need help configuring any of this.
  Merry Christmas!
  Jeff

• Architecture Design Question: Integrating AMF and HTTP/REST

  We have an app that is consuming services from blazeds over an AMF channel. This approach replaced an earlier implementation that consumed SOAP services. This took place before I inherited the project. Apparently, there were tremendous performance gains in switching to AMF and we don't want to abandon it. 
  Now we are creating a new RESTful, HTTP Request/Response-based service layer that will be shared across several organizations and the idea is that anyone can then write clients to grab our data (as well as data from other repositories in other organizations that implement the common service API). The services include output handlers that are designed to return data in various formats that the user might request (e.g., csv, xml, JSON, AMF???).
  My question is about how to keep the performance benefits of AMF for our Flex client as the new services move to the HTTP/REST architecture.
  Our current thinking is to add the blaze jars to the new webapp and use the message broker to route as you normally would, but the destination would essentially be an adapter class that can take the AMF requests and pass them on to the RESTful access points of our services, and then transform the response back to AMF.
  I just started reading Shashank Tiwari's Professional BlazeDS and came across the chapter on using blaze as a server-side proxy. Is this a viable approach for what I am trying to do? I also see references to extending blaze by creating custom adapters. Is this the right track? I'm sure this is a common problem. I'm looking for a discussion on possible solutions. Andy ideas?

  Hi,
  In Lync server 2013 Stretched pools are not supported for the Front End, Edge, Mediation, and Director server roles. It need two Lync pools.
  If one pool fail to connect, An administrator can declare an emergency and fail over the pool to the backup pool.  That is done by using the:
  Invoke-CsPoolFailover –PoolFQDN <Pool fqdn> –DisasterMode –Verbose
  More details:
  http://blog.avtex.com/2012/07/26/understanding-lync-2013-server-failover/
  Note: Microsoft is providing this information as a convenience to you. The sites are not controlled by Microsoft. Microsoft cannot make any representations regarding the quality, safety, or suitability of any software or information
  found there. Please make sure that you completely understand the risk before retrieving any suggestions from the above link.
  Best Regards,
  Eason Huang
  Eason Huang
  TechNet Community Support

• Trying to get home shaing working on apple tv using Cisco Access points and a Cisco WLC 5508 with 7.2.110 code.  I can get devices working individually but they never see each other.  I can ping the apple tv from my laptop and ipad.

  Trying to get home sharing working on a corporate wireless network.  Cisco wireless.
  WLC5508 controller
  Cisco 3502 access points
  All apple devices on same WLAN - security WPA2-PSK
  ITunes account up to date
  All devices laterst software.
  Can ping apll tv from laptop
  can ping apple tv from ipad
  Can ping ipad from laptop
  can ping laptop from ipad.
  Apple tv never sees any other device.
  Any ideas?

  Fascinating just reading about your setup. I have a WRT350N and have noticed that it will drop its speed, sometimes down to 1Mbps. It seems to do so at about the same time every day, but usually comes back to speed in about 5 minutes. In my experience, the Apple TV will disconnect if the speed falls this low. Try monitoring the Linksys with Netstumbler, Vistumbler, or just in the Windows Network utility.
  Check the "lease obtained" and "lease expired" times for your router to see if that is when the network fails. I've just finished reading an angry thread over at the Linksys forum about the WRT330N where someone mentioned that the router wasn't renewing its lease.
  "I cannot set it run off automatic DHCP from the WRT330N, the router will not assign it an IP every time the lease expires, causing me to have to manually set an IP on the Print server. That's annoying. Having the router drop IP's to individual machines after 12-48 hours...very annoying."
  http://forums.linksys.com/linksys/board/message?board.id=Wireless_Routers&thread .id=67412
  If that is the problem, then I would consider setting up a Static IP address for your Apple TV. You can do that through the user interface -> Settings -> Network -> Configure ... (Quite intuitive as you only have change IP address and the subsequent details remain the same.)
  My router assigns IP Addresses in the ranges of 192.168.1.100 ->149. The idea here is to choose an address outside of that range but is not greater than 192.168.1.253 (and should not end in the number 1). You shouldn't have to change the linksys router as long as 50 clients are assigned in that range. You'll have to figure that out by accessing your router webpage at browser address 192.168.1.1 -> the default password is "admin" (without the quotes).
  Good luck.

• Cisco autonomous access points and WCS

  Hi, I'm trying to add my autonomous access points to WCS which I have done but I'm not getting any performance data or errors etc.
  Does anyone know if WCS support autonomous access points or do I have to use WLSE to get this info
  Thanks

  Greetings the WLSE will be needed to manage autonomous access points. The WCS application is geared towards LWAPP and Controller based implementations.
  For a comparison please see the following document.
  http://www.cisco.com/en/US/products/hw/wireless/products_category_buyers_guide.html#http://www.cisco.com/en/US/products/hw/wireless/products_category_buyers_guide.html?linkpos=4#number_4
  Regards

• L3 connections between Access points and WLC

  hi,
  we have a customer asking us to configure wireless system as per attached drawing.
   WLC is in Data Center which is connected to Data Center Switch ( Cisco 3850), then this DC-Switch is connected to DC-Core ( Cisco Nexus-7K).
  this Nexus-7K is connected to many campus Networks. in all campuses there is Cisco 4507 Campus Core which is connected to Nexus-7K.
  then from Campus core many distribution switches are connected.
  all Vlans for data and wifi is created in Distribution Switches. Distribution Switches are VTP Servers and many access switches with connected APs are connected back to this Distribution Switch.
  All Access Points are registered at WLC in Data Center, but wifi clients are not getting ip address from DHCP Server, as well as even if we configured static ip address at wifi clients they are not able to communicate correctly.
  please correct me if there is a mistake in this design , or we have a solution to solve this problem please let me know.
  attached topology diagram 
  thanks,
  anvar

  Hey Anvar,
  Too much details about network, to make it simple:
  1- APs and WLC can be in separate VLANs (Not a problem)
  2- As APs have joined, these two VLANs look fine for me
  If your clients can't communicate probably with static IP address
  1- From the WLC, ping default gateway for that VLAN
  2- If the WLC can reach the gateway, its wired VLAN issue that you need to investigate in the path (maybe using wired device in the same VLAN as the clients in the switch where the APs are connected)
  Now, about why the clients are not taking IP:
  1- What is your DHCP, where its located? Is it the same one for all clients?
  2- Do you have local APs or FlexConnect ?
  3- When you run the debugs for DHCP where the process breaks?
  Cheers,
  Nour

• Cisco 877 as access point and DSL router - 2 subnets

  I have been using an 877 to provide DSL access and wireless access point from two separate wired subnets. The idea is that traffic from one subnet will be routed to the DSL connection. The other subnet provides a bridged connection to wireless clients. Both subnets being isolated from each other. In the former case the router acts as DHCP server, whilst in the latter case a separate DHCP server is used. Despite all apparently working, recent introduction of a wireless client did not work and seemed to be acquring a DHCP lease from the router rather than the external DHCP server. It seems that broadcast traffic from the router DHCP server was traversing to the wrong interfaces, despite (I hope) only the wireless and the second wired subnet being in the bridge group.
  I would be grateful if anyone can throw any light on this, the salient parts of my config are enclosed below. I have anonymised the public addreses using q1.q2.q3 therein. Many thanks.
  dot11 ssid MYSSID
     authentication open eap eap_methods
     authentication network-eap eap_methods
     authentication key-management wpa
     guest-mode
  no ip source-route
  ip cef
  no ip dhcp use vrf connected
  ip dhcp excluded-address 10.10.10.1
  ip dhcp excluded-address q1.q2.q3.15 q1.q2.q3.254
  ip dhcp excluded-address q1.q2.q3.1 q1.q2.q3.8
  ip dhcp pool sdm-pool1
     import all
     network q1.q2.q3.0 255.255.255.0
     domain-name MyDomain
     dns-server x.y.z.1 x.y.z.2
     default-router q1.q2.q3.3
  bridge irb
  interface FastEthernet0
  interface FastEthernet1
  interface FastEthernet2
  switchport access vlan 10
  spanning-tree portfast
  interface FastEthernet3
  switchport access vlan 10
  spanning-tree portfast
  interface Dot11Radio0
  no ip address
  encryption mode ciphers tkip
  ssid mySSID
  speed basic-1.0 basic-2.0 basic-5.5 6.0 9.0 basic-11.0 12.0 18.0 24.0 36.0 48.0 54.0
  station-role root
  bridge-group 10
  bridge-group 10 subscriber-loop-control
  bridge-group 10 spanning-disabled
  bridge-group 10 block-unknown-source
  no bridge-group 10 source-learning
  no bridge-group 10 unicast-flooding
  interface Vlan1
  description $ES_LAN$
  ip address q1.q2.q3.3 255.255.255.0
  ip access-group 102 in
  ip nat inside
  ip virtual-reassembly
  interface Vlan10
  no ip address
  bridge-group 10
  interface BVI10
  ip address 192.168.253.251 255.255.255.0
  bridge 10 protocol ieee
  bridge 10 route ip

  If the Router is not the DHCP server, you'll want to put an ip helper-address under teh BVI 10 and point to the correct DHCP server
  HTH,
  Steve
  Please remember to rate useful posts, and mark questions as answered

• How to add a second router as access point and wifi signal extender

  Previously I had 2 linksys routers and was able to configure them as one in separate areas of my house.  I think it is called cascading.  The 2nd router acted as an ethernet switch with 4 extra ports and it provided a wifi signal to areas of my house that previously had a weak signal when I used only one router.
  I have since switched to an Airport Extreme as my main router.  I can't seem to get the same configuration with the linksys router, it is Model E1000 and has an "N" signal.  The Linksys E1000 I think is the newer model of the old WRT54G Linksys.  I can't get it configured to work.  I have searched high and low on the internet and can't find anything simple enough for a novice to understand.  I did read something that I may have to assign a "DHCP Reservation" on the Apple Extreme.  I couldn't figure that out.
  Can somebody please offer some guidance on how to get this to work?
  Thanks

  You have two routers producing two networks with the same name, so they will show up as two networks on any type of scan by a wireless utility. This is normal.
  If you had used two Linksys devices, they would probably show up as one network, not two. Linksys has a feature that allows this to occur, but this is not true of Apple devices.
  As long as the wireless network name, wireless security and password match up between the two routers, the two networks will behave as if they were one. As computers change location, they will automatically connect to the wireless access point with the strongest signal.