Enabling netflow on a 2504 controller

I just completed setting up a AIR-CT2504-K9 controller with 9 APs with RADIUS on the private WLAN and an open guest WLAN; I want to enable netflow exports to a collector, but see no place in the GUI to do this and no obvious CLI commands.
Could someone please point me in the right direction?
Thanks,
M

Is this what you are looking for?
Thanks,
Scott
Help out other by using the rating system and marking answered questions as "Answered"

Similar Messages

Enabling TKIP in a 2504 controller decreases to half of throughput using AES

Hello Guys,
I´m in an environment where using WPA+WPA2 / AES I reach the same trhoughput without security, Aprox 12Mb. But, when TKIP is enabled, this throughput decrease to 5Mb. Is it normal or is a controller CPU processor intensive that decrease the throughput?
I tested web auth also and can reach 12Mb. Just with TKIP enabled this problem occur.
Tks.

Hi
Here are the rules for get high throughput or 802.11n data rates on your WLAN
1. WMM should be enabled (WLAN QoS tab -> WMM should be "allow" or "required")
2. Layer 2 security should be either WPA2/AES or Open (WLAN Security tab -> L2 Security)
Unless you comply with above, you won't get any 802.11n data rates(High Througput). As you said above, if you use TKIP then your throughput degradation is expected.
HTH
Rasika
**** Pls rate all useful responses *****

IMP: Cisco AIR-CAP1602 &1532 not joining 2504 Controller issue

Dear Team, We have Cisco wireless implementation in clients premises. We have 8 indoor AP (AIR-CAP1602E-AK9) and 2 Outdoor AP (AIR-CAP1532I-AK9) . Seven indoor APs are able to join the 2504 controller, but 1 indoor AIR-CAP1602E AP is not joining and signal is RED continuously while as outdoor AP AIR-CAP1532I-AK9 signal goes blinking from green, red to amber continuously and is not downloading LWAPP image from the controller even after hard reset.
The output for both APs shown below-
1) AIR-CAP1602E-A-K9:
C1600 Boot Loader (AP1G2-BOOT-M) LoaderVersion 15.2(2)JAX, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Compiled Fri 30-Nov-12 15:48 by aselvara
ap: reset
Are you sure you want to reset the system (y/n)?y
System resetting...
Boot from flash
IOS Bootloader - Starting system.
FLASH CHIP: Spansion S25FL256
Xmodem file system is available.
flashfs[0]: 14 files, 3 directories
flashfs[0]: 0 orphaned files, 0 orphaned directories
flashfs[0]: Total bytes: 31936000
flashfs[0]: Bytes used: 418304
flashfs[0]: Bytes available: 31517696
flashfs[0]: flashfs fsck took 9 seconds.
Reading cookie from SEEPROM
Base Ethernet MAC address: 18:e7:28:d1:9b:05
************* loopback_mode = 0
The system is unable to boot automatically because there
are no bootable files.
C1600 Boot Loader (AP1G2-BOOT-M) LoaderVersion 15.2(2)JAX, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Compiled Fri 30-Nov-12 15:48 by aselvarag
Same event repeating, failed to reset and reboot device
2) AIR_CAP1532I-A-K9 (Outdoor AP):
*Mar 1 00:01:22.211: %CAPWAP-3-ERRORLOG: Could Not resolve CISCO-CAPWAP-CONTROLLER
*Mar 1 00:01:22.211: %CAPWAP-3-ERRORLOG: Discovery response from MWAR 'Cisco_47:32:e4'running version 7.5.102.0 is rejected.
*Mar 1 00:01:22.211: %CAPWAP-3-ERRORLOG: Failed to decode discovery response.
*Mar 1 00:01:22.211: %CAPWAP-3-ERRORLOG: CAPWAP SM handler: Failed to process message type 2 state 2.
*Mar 1 00:01:22.211: %CAPWAP-3-ERRORLOG: Failed to handle capwap control message from controller
*Mar 1 00:01:22.211: %CAPWAP-3-ERRORLOG: Failed to process unencrypted capwap packet from 100.1.1.20
signal goes blinking from Grean, Red to Amber continuously.
Failed to download LWAPP image from the controller even after hard reset.
Default image: 7.6.95.12
Logs and screen shot attached
Please advice.
Thanks
Aakash

Hi please note the details below-
AIR-CAP1602E-A-K9:
C1600 Boot Loader (AP1G2-BOOT-M) LoaderVersion 15.2(2)JAX, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Compiled Fri 30-Nov-12 15:48 by aselvara
ap: reset
Are you sure you want to reset the system (y/n)?y
System resetting...
Boot from flash
IOS Bootloader - Starting system.
FLASH CHIP: Spansion S25FL256
Xmodem file system is available.
flashfs[0]: 14 files, 3 directories
flashfs[0]: 0 orphaned files, 0 orphaned directories
flashfs[0]: Total bytes: 31936000
flashfs[0]: Bytes used: 418304
flashfs[0]: Bytes available: 31517696
flashfs[0]: flashfs fsck took 9 seconds.
Reading cookie from SEEPROM
Base Ethernet MAC address: 18:e7:28:d1:9b:05
************* loopback_mode = 0
The system is unable to boot automatically because there
is no bootable files.
C1600 Boot Loader (AP1G2-BOOT-M) LoaderVersion 15.2(2)JAX, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Compiled Fri 30-Nov-12 15:48 by aselvarag
Can't reboot device!
WLC-SYSLOG
(Cisco Controller) >show sysinfo
Manufacturer's Name.............................. Cisco Systems Inc.
Product Name..................................... Cisco Controller
Product Version.................................. 7.5.102.0
Bootloader Version............................... 1.0.18
Field Recovery Image Version..................... 1.0.0
Firmware Version................................. PIC 16.0
Build Type....................................... DATA + WPS
System Name...................................... Cisco_47:32:e4
System Location..................................
System Contact...................................
System ObjectID.................................. 1.3.6.1.4.1.9.1.1279
IP Address....................................... 100.1.1.20
Last Reset....................................... Power on reset
System Up Time................................... 0 days 2 hrs 18 mins 39 secs
System Timezone Location......................... (GMT -6:00) Central Time (US a nd Canada)
System Stats Realtime Interval................... 5
System Stats Normal Interval..................... 180
--More-- or (q)uit
Configured Country............................... US - United States
Operating Environment............................ Commercial (0 to 40 C)
Internal Temp Alarm Limits....................... 0 to 65 C
Internal Temperature............................. +32 C
External Temperature............................. +37 C
Fan Status....................................... 4000 rpm
State of 802.11b Network......................... Enabled
State of 802.11a Network......................... Enabled
Number of WLANs.................................. 3
Number of Active Clients......................... 0
Burned-in MAC Address............................ 24:E9:B3:47:32:E0
Maximum number of APs supported.................. 15

Cant Connect Cisco AIR-CAP 3602 with 2504 controller

Im trying to have one of our APs join our controller. No matter what I do, i cant get it to join the controller.
The controller has the right OS, I had to upgraded it 7.4 to support the 3600...
Both the controller and the AP has the same time and date.
But Im getting this from my AP:
*Oct 30 14:49:26.043: %LWAPP-3-CLIENTERRORLOG: LWAPP LED Init: incorrect led state 255
*Oct 30 14:49:26.055: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to administratively down
*Oct 30 14:49:26.055: %LINK-5-CHANGED: Interface Dot11Radio1, changed state to administratively down
*Oct 30 14:49:26.067: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to up
*Oct 30 14:49:26.083: %LINK-6-UPDOWN: Interface Dot11Radio1, changed state to up
*Oct 30 14:49:27.055: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to down
*Oct 30 14:49:27.095: %LINK-6-UPDOWN: Interface Dot11Radio1, changed state to down
*Oct 30 14:49:27.103: %LINK-5-CHANGED: Interface Dot11Radio1, changed state to reset
*Oct 30 14:49:28.087: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to up
*Oct 30 14:49:28.095: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio1, changed state to down
*Oct 30 14:49:28.131: %LINK-6-UPDOWN: Interface Dot11Radio1, changed state to up
*Oct 30 14:49:28.139: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to down
*Oct 30 14:49:28.147: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to reset
*Oct 30 14:49:29.131: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio1, changed state to up
*Oct 30 14:49:29.139: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to down
*Oct 30 14:49:29.167: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to up
*Oct 30 14:49:30.167: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to up
*Oct 30 14:49:36.083: %CAPWAP-3-ERRORLOG: Go join a capwap controller
*Oct 30 14:49:36.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 10.1.0.50 peer_port: 5246
*Oct 30 14:49:36.411: %CAPWAP-5-DTLSREQSUCC: DTLS connection created sucessfully peer_ip: 10.1.0.50 peer_port: 5246
*Oct 30 14:49:36.411: %CAPWAP-5-SENDJOIN: sending Join Request to 10.1.0.50
*Oct 30 14:49:36.411: %CAPWAP-3-ERRORLOG: Invalid event 10 & state 5 combination.
*Oct 30 14:49:36.411: %CAPWAP-3-ERRORLOG: CAPWAP SM handler: Failed to process message type 10 state 5.
*Oct 30 14:49:36.411: %CAPWAP-3-ERRORLOG: Failed to handle capwap control message from controller
*Oct 30 14:49:36.411: %CAPWAP-3-ERRORLOG: Failed to process encrypted capwap packet from 10.1.0.50
Anyone can help me please?
Thanks....

AP is connected directly to one of the ports on the 2504 controller.
I can move it to a POE switch, if needed.
Here is the output after I boot up the AP:
IOS Bootloader - Starting system.
flash is writable
FLASH CHIP: Macronix Mirrorbit (00C2)
Xmodem file system is available.
flashfs[0]: 43 files, 9 directories
flashfs[0]: 0 orphaned files, 0 orphaned directories
flashfs[0]: Total bytes: 31997952
flashfs[0]: Bytes used: 16767488
flashfs[0]: Bytes available: 15230464
flashfs[0]: flashfs fsck took 16 seconds.
Reading cookie from SEEPROM
Base Ethernet MAC address: 4c:00:82:77:32:7b
Ethernet speed is 1000 Mb - FULL Duplex
Loading "flash:/ap3g2-k9w8-mx.152-4.JA1/ap3g2-k9w8-mx.152-4.JA1"...###########################
File "flash:/ap3g2-k9w8-mx.152-4.JA1/ap3g2-k9w8-mx.152-4.JA1" uncompressed and installed, entry point: 0x2003000
executing...
Secondary Bootloader - Starting system.
Xmodem file system is available.
flashfs[0]: 43 files, 9 directories
flashfs[0]: 0 orphaned files, 0 orphaned directories
flashfs[0]: Total bytes: 31997952
flashfs[0]: Bytes used: 16767488
flashfs[0]: Bytes available: 15230464
flashfs[0]: flashfs fsck took 8 seconds.
Base Ethernet MAC address: 4c:00:82:77:32:7b
Boot CMD: 'boot flash:/ap3g2-k9w8-mx.152-4.JA1/ap3g2-k9w8-xx.152-4.JA1;flash:/ap3g2-k9w8-mx.152-4.JA1/ap3g2-k9w8-mx.152-4.JA1'
Loading "flash:/ap3g2-k9w8-mx.152-4.JA1/ap3g2-k9w8-xx.152-4.JA1"...###############################
File "flash:/ap3g2-k9w8-mx.152-4.JA1/ap3g2-k9w8-xx.152-4.JA1" uncompressed and installed, entry point: 0x2003000
executing...
              Restricted Rights Legend
Use, duplication, or disclosure by the Government is
subject to restrictions as set forth in subparagraph
(c) of the Commercial Computer Software - Restricted
Rights clause at FAR sec. 52.227-19 and subparagraph
(c) (1) (ii) of the Rights in Technical Data and Computer
Software clause at DFARS sec. 252.227-7013.
           cisco Systems, Inc.
           170 West Tasman Drive
           San Jose, California 95134-1706
Cisco IOS Software, C3600 Software (AP3G2-K9W8-M), Version 15.2(4)JA1, RELEASE SOFTWARE (fc2)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2013 by Cisco Systems, Inc.
Compiled Tue 30-Jul-13 22:57 by prod_rel_team
Initializing flashfs...
flashfs[3]: 43 files, 9 directories
flashfs[3]: 0 orphaned files, 0 orphaned directories
flashfs[3]: Total bytes: 31739904
flashfs[3]: Bytes used: 16767488
flashfs[3]: Bytes available: 14972416
flashfs[3]: flashfs fsck took 8 seconds.
flashfs[3]: Initialization complete.
flashfs[4]: 0 files, 1 directories
flashfs[4]: 0 orphaned files, 0 orphaned directories
flashfs[4]: Total bytes: 11999232
flashfs[4]: Bytes used: 1024
flashfs[4]: Bytes available: 11998208
flashfs[4]: flashfs fsck took 1 seconds.
flashfs[4]: Initialization complete.
Copying radio files from flash: to ram:
Copy in progress...CCCCC
Copy in progress...CCC
Copy in progress...CCCC
Copy in progress...CCCC
Copy in progress...CC
Uncompressing radio files...
...done Initializing flashfs.
Radio0 present 8764 8000 0 A8000000 A8010000 0
Rate table has 244 entries (64 SGI/104 BF variants)
Radio1 present 8764 8000 0 88000000 88010000 4
Radio2 not present 0 0 0 0 0 8
This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.
A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html
If you require further assistance please contact us by sending email to
[email protected].
cisco AIR-CAP3602I-A-K9 (PowerPC) processor (revision A0) with 180214K/81920K bytes of memory.
Processor board ID FTX1731GQYY
PowerPC CPU at 800Mhz, revision number 0x2151
Last reset from power-on
LWAPP image version 7.5.102.0
1 Gigabit Ethernet interface
2 802.11 Radios
32K bytes of flash-simulated non-volatile configuration memory.
Base ethernet MAC Address: 4C:00:82:77:32:7B
Part Number                          : 73-14521-02
PCA Assembly Number                  : 800-37501-02
PCA Revision Number                  : A0
PCB Serial Number                    : FOC17273HG4
Top Assembly Part Number             : 800-35852-02
Top Assembly Serial Number           : FTX1731GQYY
Top Revision Number                  : C0
Product/Model Number                 : AIR-CAP3602I-A-K9
% Please define a domain-name first.
Press RETURN to get started!
*Mar 1 00:00:11.355: FIPS IOS test Image Checksum successful
*Mar 1 00:00:11.355: FIPS IOS test Crypto RNG DEK Key Test successful
*Mar 1 00:00:11.355: FIPS IOS test SHA-1 successful
*Mar 1 00:00:11.355: FIPS IOS test HMAC-SHA1 successful
*Mar 1 00:00:11.355: FIPS IOS test AES CBC 128-bit Encrypt successful
*Mar 1 00:00:11.355: FIPS IOS test AES CBC 128-bit Decrypt successful
*Mar 1 00:00:11.355: FIPS IOS test IOS AES CMAC Encrypt successful
*Mar 1 00:00:11.355: FIPS IOS test IOS CCM Encrypt successful
*Mar 1 00:00:11.355: FIPS IOS test IOS CCM Decrypt successful
*Mar 1 00:00:11.387: FIPS IOS test RSA Signature Generation successful
*Mar 1 00:00:11.391: FIPS IOS test RSA Signature Verification successful
*Mar 1 00:00:11.391: %SOAP_FIPS-2-SELF_TEST_IOS_SUCCESS: IOS crypto FIPS self test passed
*Mar 1 00:00:11.391: %IFMGR-7-NO_IFINDEX_FILE: Unable to open nvram:/ifIndex-table No such file or directory
*Mar 1 00:00:11.847: Registering HW DTLS
*Mar 1 00:00:14.647: %LINK-6-UPDOWN: Interface GigabitEthernet0, changed state to up
*Mar 1 00:00:18.327: FIPS RADIO test AES 128-bit encrypt for TX on Dot11Radio 0 successful
*Mar 1 00:00:18.327: FIPS RADIO test AES 128-bit CCM encrypt on Dot11Radio 0 successful
*Mar 1 00:00:18.327: FIPS RADIO test AES 128-bit CCM decrypt on Dot11Radio 0 successful
*Mar 1 00:00:18.327: FIPS RADIO test AMAC AES 128-bit CMAC encrypt on Dot11Radio 0 successful
*Mar 1 00:00:18.327: %SOAP_FIPS-2-SELF_TEST_RAD_SUCCESS: RADIO crypto FIPS self test passed on interface Dot11Radio 0
*Mar 1 00:00:24.451: FIPS RADIO test AES 128-bit encrypt for TX on Dot11Radio 1 successful
*Mar 1 00:00:24.451: FIPS RADIO test AES 128-bit CCM encrypt on Dot11Radio 1 successful
*Mar 1 00:00:24.451: FIPS RADIO test AES 128-bit CCM decrypt on Dot11Radio 1 successful
*Mar 1 00:00:24.451: FIPS RADIO test AMAC AES 128-bit CMAC encrypt on Dot11Radio 1 successful
*Mar 1 00:00:24.451: %SOAP_FIPS-2-SELF_TEST_RAD_SUCCESS: RADIO crypto FIPS self test passed on interface Dot11Radio 1
*Mar 1 00:00:26.811: %SYS-5-RESTART: System restarted --
Cisco IOS Software, C3600 Software (AP3G2-K9W8-M), Version 15.2(4)JA1, RELEASE SOFTWARE (fc2)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2013 by Cisco Systems, Inc.
Compiled Tue 30-Jul-13 22:57 by prod_rel_team
*Mar 1 00:00:26.811: %SNMP-5-COLDSTART: SNMP agent on host AP4c00.8277.327b is undergoing a cold start
*Jul 4 23:55:50.035: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to reset
*Jul 4 23:55:50.035: %LINK-5-CHANGED: Interface Dot11Radio1, changed state to reset
*Jul 4 23:55:50.051: %PARSER-4-BADCFG: Unexpected end of configuration file.
lwapp_crypto_init: MIC Present and Parsed Successfully
*Jul 4 23:55:50.191: %SSH-5-ENABLED: SSH 2.0 has been enabled
*Jul 4 23:55:50.855: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0, changed state to down
*Jul 4 23:55:51.027: %LINEPROTO-5-UPDOWN: Line protocol on Interface BVI1, changed state to up
*Jul 4 23:55:51.035: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to down
*Jul 4 23:55:51.035: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio1, changed state to down
*Jul 4 23:55:53.319: FIPS HW test SHA-1 successful
*Jul 4 23:55:53.319: FIPS HW test HMAC-SHA1 successful
*Jul 4 23:55:53.319: FIPS HW test AES CBC 128-bit Encrypt successful
*Jul 4 23:55:53.319: FIPS HW test AES CBC 128-bit Decrypt successful
*Jul 4 23:55:53.819: FIPS HW test SHA-1 successful
*Jul 4 23:55:53.819: FIPS HW test HMAC-SHA1 successful
*Jul 4 23:55:53.819: FIPS HW test AES CBC 128-bit Encrypt successful
*Jul 4 23:55:53.819: FIPS HW test AES CBC 128-bit Decrypt successful
*Jul 4 23:55:53.819: %SOAP_FIPS-2-SELF_TEST_HW_SUCCESS: HW crypto FIPS self test passed
*Jul 4 23:55:53.819: DPAA Initialization Complete
*Jul 4 23:55:53.819: %SYS-3-HARIKARI: Process DPAA INIT top-level routine exited
*Jul 4 23:55:54.819: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0, changed state to up%Default route without gateway, if not a point-to-point interface, may impact performance
*Jul 4 23:56:13.191: %CDP_PD-4-POWER_OK: Full power - NEGOTIATED inline power source
*Jul 4 23:56:14.279: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to up
*Jul 4 23:56:15.279: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to up
*Jul 4 23:56:15.371: %LINK-6-UPDOWN: Interface Dot11Radio1, changed state to up
*Jul 4 23:56:16.371: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio1, changed state to up
*Jul 4 23:56:18.895: Logging LWAPP message to 255.255.255.255.
*Jul 4 23:56:23.627: %DHCP-6-ADDRESS_ASSIGN: Interface BVI1 assigned DHCP address 10.1.1.150, mask 255.255.240.0, hostname AP4c00.8277.327b
Translating "CISCO-CAPWAP-CONTROLLER.pti.local"...domain server (10.3.1.32)
*Jul 4 23:56:34.559: %CAPWAP-3-ERRORLOG: Did not get log server settings from DHCP.
*Jul 4 23:56:34.567: %CAPWAP-3-ERRORLOG: Could Not resolve CISCO-CAPWAP-CONTROLLER.pti.local
*Jul 4 23:56:44.567: %CAPWAP-3-ERRORLOG: Go join a capwap controller
*Oct 30 15:05:13.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 10.1.0.50 peer_port: 5246
*Oct 30 15:05:13.411: %CAPWAP-5-DTLSREQSUCC: DTLS connection created sucessfully peer_ip: 10.1.0.50 peer_port: 5246
*Oct 30 15:05:13.411: %CAPWAP-5-SENDJOIN: sending Join Request to 10.1.0.50
*Oct 30 15:05:13.411: %CAPWAP-3-ERRORLOG: Invalid event 10 & state 5 combination.
*Oct 30 15:05:13.411: %CAPWAP-3-ERRORLOG: CAPWAP SM handler: Failed to process message type 10 state 5.
*Oct 30 15:05:13.411: %CAPWAP-3-ERRORLOG: Failed to handle capwap control message from controller
*Oct 30 15:05:13.411: %CAPWAP-3-ERRORLOG: Failed to process encrypted capwap packet from 10.1.0.50
*Oct 30 15:05:18.411: %CAPWAP-5-SENDJOIN: sending Join Request to 10.1.0.50

Config storage confusion 2504 controller with CAP702I

HI all,
I've been tasked with the rollout of the above mentioned hardware, and I've managed to get so far, but it seems I cannot do a 'copy running-config startup-config' on the CAP702I Aironet access points.
ive got then registered with the controller and radios turned on but the problem is that it the power is cycled the radios turn off, I can SSH into each AP and manually turn them on and it works all fine except I shouldn't need to do that.
If anyone could give me a clue as to how to change the ap config to either store the config with radios enabled on restart on the device itself or guide me through storing the config on the 2504 controller and pointing to it on the ap devices for their startup, it would be much appreciated.

So simply wireless clients are not getting ip address from the DHCP scope defined for them on AD DHCP server.
few facts about DHCP handling on WLC:
- With DHCP proxy enabled , the controller acts as relay agent.
Simply you configure primary or may be secondary DHCP server under the interface config.
When the client starts the DHCP process the controller will rekay the clients DHCP packets
in unicast form.
- With DHCP proxy disabled , the controller will not intervene at all, and the client traffic will be sent
as broadcast. If the DHCP server is on different VLAN , you have to configure relay agent under the gateway
of the client vlan so that it can reach the DHCP server.
Please make sure to rate correct answer

Whether 40Mhz Bandwidth is supported on 2504 controller

I found 20Mhz bandwidth enable option in 2504 controller.But what about 40 Mhz .The access points(1142) are dual band...I hope it should support in 2504 controller also.If there is no option of 40Mhz ,Please Correct me

Just like what Sarvanan said, 40 MHz is only available on 802.11a (5GHz) and not on 802.11b/g (2.4GHz).
However, in old versions of code (6.0.182 or something like that) for wirleless controller I remember the 40 MHz was also available for 2.4 GHz (802.11b/g). They recognized later it is not feasible to add it to 2.4 GHz so they removed it from later releases.
HTH
Amjad

ASA 8.2(5) enable Netflow

Hi,
Running ASA 8.2.(5) with ASDM 6.4(5).
When I try to enable netflow on my <default inspection traffic> policy which is global I get a message saying "only inspect rule actions can be specified for the default inspection traffic". As Netflow can only be applied as a global service policy, I have to use netflow on a global policy, but how do I use my traffic inspection policy then?
Create multiple service policies I apply to each interface or?
According to https://supportforums.cisco.com/docs/DOC-6114 it looks as I can have both at the same time or in the same Global policy ?
Regards
Robert

hmm I seem I can´t create a new class-map with ASDM? I have no option to do that.
Looking at:
https://supportforums.cisco.com/docs/DOC-6113
It says:
Most users will have a global inspection policy so we can just leverage that. It should be noted that we can't use class-default here because we won't generate NetFlow data for anything that is subject to inspection.
Is that not what my original message basicly is saying from ASDM?
Robert

New bought 2504 Controller not copatible with 1702 APs

Hi!
Just got a 2504 Controller with 1702 APs, which are not joining the controller by known reasons.
(Cisco Controller) >*spamApTask1: Dec 16 22:20:10.288: f0:7f:06:c0:55:80 ApModel: AIR-CAP1702I-E-K9
*spamApTask1: Dec 16 22:20:10.288: Unknown AP type. Using Controller Version!!!
*spamApTask1: Dec 16 22:20:10.289: f0:7f:06:c0:55:80 ApModel: AIR-CAP1702I-E-K9
*spamApTask1: Dec 16 22:20:10.289: Unknown AP type. Using Controller Version!!!
*spamApTask1: Dec 16 22:20:16.135: fc:5b:39:6e:26:9c ApModel: AIR-CAP1702I-E-K9
But now I have to buy a SmartNET Subscription to get the bug-free Software for my controller, because software problems are not covered in the warranty? Is there any other Solution?
New controller running on 7.6.130.0
Regards
Alfred

Well that is too bad. Maybe ask the company whom you bought the WLC or if you have a Cisco SE to provide you with the code. The only other option is to return it and order the WLC with v8.0, but you will be stuck on that not so good code. The 2504 w/5 AP license, you can find a SMB smartnet for cheap that can give you access to the image download. It's really up to you, but the v8.0 that is currently out is the first version and... well, do I have to say more. I won't use that version, and my customers whom have had to go with that version because of access point support is not too happy to say the least. When the newer version comes out, they will have to upgrade.
-Scott

SSID/VLANs for Guest/Staff with 3600 and 2504 Controller

We are deploying 3600 AP's with a 2504 and would like to create multiple SSID's that are mapped to unique VLANs so we can control the traffic at the Firewall. We have the 2504 up and running with AP's but there appears to be no where in the 2504 controller Web GUI to configure a VLAN mapping to an SSID. Any pointers to documentation on how to configure?

in the WLAN configuration, you select what interface you want it to be linked to.
In the Controller Tab, on the left, go to interfaces. This is where you create teh interface name, set the VLAN,and the IP address.
Steve

2504 controller died

Anyone ever had an online 2504 controller crash after upgrade to the point where even console port does not put anything out? Perfectly working 2504 running 7.0.116 ran upgrade through web GUI to 7.2. GUI showed perfect transfer, save etc... Asked for save before reboot. Select yes. Controller reboot and now it sits with following status lights:
Power-green
SYS - amber blinking
ALM - amber solid
Nothing out of console
Thx //art
Sent from Cisco Technical Support iPhone App

Thanks! I've done many up and down on different platforms and I would have bet a paycheck on consistent upgrades.....until now. Even when you use the wrong software, bad transfer...these devices tell you. This one told me everything was good up until it said you need reload. Save and reload and it never came back. NOTHING on console. Never seen that before.
Thanks again Scott. Appreciate your support in this community.
//art
Sent from Cisco Technical Support iPhone App

2504 controller and RADIUS security problem

I am trying to congure a RADIUS server and the 2504 controller, but have a problem with the types of security. On the controller I have the choice of WPA+WPA2 but on RADIUS server I have WPA-Enterprise (PEAP) or smat card. How do I get the same security on both of them? I am very frustrated with this!
TIA,
Eric

In all the reading and videos and help from you here in this forum I have concluded that:
1. There are 3 places I need to have authentication congfigured.
   a. WLC
   b. NPS
   c. Group Policy
Here is how I have it setup ( still not working )
What am I missing or doing wrong here? I am so @#&*^&*)()*> frustrated.
TIA,
Eric

Support for Aironet 1040 and 2504 Controller

Are there any plans to provide support for Aironet 1040 series access points and the 2504 controller? I see where the 1140 series is supported and thought the 1040 would follow. If there are no immediate plans for full support, will OnPlus at least recognize the devices and alert if they go down, which is my main concern?

Hi Anthony,
I know we do have planned support for the 1040 in the future but I do not have dates at this time. Regarding a device going down, an ICMP host monitor can be configured on any device in OnPlus.
For more information, watch this quick video, on setting up monitors:
http://www.youtube.com/watch?v=brCc2JB-gfc&feature=plcp
Thanks,
The OnPlus Team

Enabling Netflow on Production 6500 Core switch

Hi All,
I am looking for a little expert advise regarding Cisco Netflow. For monitoring I need to enable Netflow feature on 6500 core switch or 6500 load balancer with CSM module installed, but I am just concern about the CPU hits on the devices. we are not using any dynamic routing protocols. Can someone please advise how will it effect on the local resources when using Netflow? Is it fine if I enable this feature on these devices in production?
Thanks in advance,

Hi Mudassar,
Enabling netflow will not have a major impact on CPU or memory but you will want to keep a close eye on the switches TCAM utilisation. Features like netflow, TCP intercept and WCCP can use resources from “NetFlow TCAM Table”.
Use the "show mls netflow table-contention detailed" command to monitor TCAM utilisation.
Regards
Brett

Recovery image. Topology 3602i thru 2504 controller from TFTP Server

Hi everyone! Here is my topology and I need to perform image recovery for my 3602.
3602 can be connected and powered only by 2504 controller.
How I need to configure controller to allow communication from 3602 and TFTP server???
Does all ports on controller L3 and I need to make Routing thru 2921 Router?
Or no needs to configure IP ports interfaces on controller and it will work on L2.
Please give me direction to follow and recover IMAGE.

Alright! Image finally loaded!
I think it was very helpfull: Step 3 Set the timeout value on the TFTP server to 30 seconds
But image failed to boot.
But image failed to boot.

Enabling UDP on a 2006 controller

I need to enable UDP on a 2006 controller. does anyone know how to do that?
thanks

Is this what you are looking for?
Thanks,
Scott
Help out other by using the rating system and marking answered questions as "Answered"

Enabling netflow on a 2504 controller

Similar Messages

Maybe you are looking for