HREAP Group Benefits
I was wondering if someone could lists the benefits of putting APs in HREAP groups. Here is some detail about my network. I have 52 APs in one location. Some of these APs are 1140s and some are 3500s. This location has 9 floors with an average of 6 APs per floor. Give or take a few on certain floors. Some of these floors are consecutive floors so some of the APs bleed through to other floors. These APs have 2 SSIDs. I have one SSID (lets call it WIFI1) that is being broadcasted and is using WPA2 authentication. Clients authenticate through a radius server. This SSID is also in HREAP mode. The other SSID (lets call it GUEST) is not being broadcasted and is using no authentication. This SSID is in local mode. I also have a secondary controller that these APs can fail over to if necessary. Again, I'd like to know what the benefits are if I place these APs in an HREAP group and if there are an issues that an HREAP group may cause in my network. Thanks for any feedback you can provide.
Here is my understanding of how the HREAP groups work. Please correct me if I am wrong or let me know if there are other benefits outside of this...... When APs are in the same HREAP group a client can roam to any of these APs without having to reauthenticate through the radius server. If they are not in the same HREAP group a user might notice some lag in connectivity because they need to reauthenticate?
Similar Messages
-
HREAP Groups and AP limitations
Hi,
We have deployed the latest WiSM2 controllers, 3500i APs and WCS v7. Currently the HREAP Group limitation is set to 25, does anyone know if this will increase anytime soon ?
I want to allow fast roaming across multiple floors in a building so I need to cache the CCKM on more than 25 APs within the building to allow seamless roaming.Hi there,
I believe that Cisco has addressed this with the release of the;
Flex 7500 Wireless Branch Controller
This table highlights the scalability differences between the Flex 7500 and WLC 5500 controller:
Scalability Flex 7500 WLC 5500
Total Access Points
2,000
500
Total Clients
20,000
7,000
Max HREAP Groups
500
100
Max APs per HREAP Group
50
25
Max AP Groups
500
500
http://www.cisco.com/en/US/products/ps11635/products_tech_note09186a0080b7f141.shtml#sap
I'm not sure i see any other way of doing what you need currently
Cheers!
Rob -
How many AP will wlc 5508 support in HREAP Groups?
Hi,
I have a new deployment of 44 3502i AP's in 3 buildings at one of my campus'.
The 5508 wlc is running latest 7.0.116.0 code.
I have some users who take their work with them as they go from location to location on this campus.
They need to be able to smoothly switch from AP to AP without having to reauthenticate each time the next AP takes over in the handoff.
On the ssid in question we run 802.1x back to 1 auth server; there is no failover auth server.
All APs are in one AP Group.
My thought is to add all 44 of the APs to one HREAP Group.
Will this be the best/simplest solution?
Thank youScott,
Thanks!
I thought hreap groups had a hard limit but I could not remember and I did not find the document when I went looking.
That was exactly my question, how many APs can be in an hreap group.
Since I have 44 APs I will probably break it into 2 hreap groups. The office group and the DC group. -
As per best practice which Group should we use AD or SharePoint Group?
Hi,
Please help.
thanks
srabonHi Srabon ,
Here are the benefits and limitations of both ,decide as per your environment and requirements
SharePoint Groups:
Benefits – The definition and use of SharePoint Groups is under the control of the SharePoint administrators. SharePoint is a more dynamic environment
where Sites and Lists are created for short term use by teams as part of a project. SharePoint Groups provide the flexibility to be created when needed and then removed just as easily when the project is completed.
Limitations – The scope of a SharePoint group is limited to a Site Collection. So, if I want to give
access to a group of users to more than one SharePoint Site Collection, I need to create that group in each of the Site Collections. If I do that, I end up having to manage membership across each of those SharePoint Groups separately.
Active Directory Groups:
Benefits – As the foundation of the operating system and Exchange, most companies are familiar with Active Directory Groups. They are used as security groups for access to network devices
and other infrastructure and applications. They are also used to manage distribution lists in Exchange.
Limitations – Active Directory Group management (adding/removing users) is usually controlled by the Network group within IT. Due to the impact
of these groups, IT departments usually have very strong controls and policies around membership requests and changes. These controls make it difficult for the SharePoint administrators to be responsive to the dynamic nature of SharePoint – meeting the
needs of a collaborative use model.
here is a good article you can refer to :
http://www.metalogix.com/Blog/blog-article/13-12-16/SharePoint_Groups_or_Active_Directory_Groups
Regards,
subhash reddy -
Local Route Groups vs translation to E.164
Hello.
Can anybody describe local route groups benefits compared to dialplan with translations to E.164?
Let's see simple scenario. I have 3 sites - MSK, SPB and NSK. All site has phones and a gateway, each site has it's partition for termination (TERM-MSK, TERM-SPB, TERM-NSK) and a partition for translation (XLAT-MSK, XLAT-SPB, XLAT-NSK). There are 2 CSS for translation and termination for each site (CSS-X-MSK, CSS-X-SPB, CSS-X-NSK, CSS-TERM-MSK, CSS-TERM-SPB and CSS-TERM-NSK). All phones has a translation CSS local to it's site configured, for example phones at MSK has CSS-X-MSK in phone configuration. There are translation patterns for translating dialed off-net numbers to E.164 format (7495XXXXXXX for MSK, 7812XXXXXXX for SPB and 7383XXXXXXX for NSK). Subscribers uses 9 for local off-net calls and 90 for long-distance, there are 2 translation patterns with corresponding XLAT partition and CSS-TERM CSS (9.[1-9]XXXXXX -> 7495 prefix plus XXXXXXX and 90.[1-9]XXXXXXXXX -> 7 plus XXXXXXXXXX, partition XLAT-MSK, CSS CSS-TERM-MSK for MSK). CSS-X CSSes has corresponding XLAT partition only. CSS-TERM CSSes has allowed TERM patitions. Each route pattern has corresponding TERM partition and points to single route list with single route group. Finally I have 3 route patterns 3 route lists, 3 route groups, 6 partitions and 6 CSSes total).
Using Local Route Groups I have the same 3 route patterns, 3 route lists and 3 route groups but one partition and one CSS. Pros for this scheme is less partitions and CSSes. Cons is the loss of flexibility (I can't allow calls to anywhere from MSK and only MSK and NSK for NSK and can't use different prefixes for off-net calls for each office).
Have I understood the Features and Services Guide rignt? Is there other way to translate dialed off-net number to E.164 without using extra partitions and CSSes (Translatio Pattern requires this)?Maxim,
Local Route Groups have not dependency on e.164 dial plan and vice-versa, there are independent features. Local Route groups allow you to consolidate your route patterns/route lists/CSS/PT, depending on complexity of your routing you can accomplish all your remote site routing via a common set of route patterns/list CSS/partitions, so routing decisions are based on local route groups assigned to device pool of the calling device rather than just the CSS. E.164 dial plan is merely a way to structure dialed numbers, how and where you transform them is up to you, I prefer using transformation patterns vs. translation patterns for example.
HTH,
Chris -
We're looking to deploy a retail location with VoWLAN using HREAP APs that will talk back to a WiSM. This is the first store, but I'd like to design it so it will scale well in the future should more locations get similar setups down the line. I'm having trouble coming up with a solid design that I'm happy with.
For VoWLAN Cisco seems to recommend CCKM to allow for faster roams, which from what I read it looks like it is only supported in HREAP when using HREAP Groups. I started looking into HREAP Groups and it appears that there is a limit of 20 groups with 25 aps per group (Is this still the case in the 6.0.196.0 code, or has this number increased?) From a design perspective, many of these future stores may only have one or two APs and there are hundreds of store locations. So I'm having trouble coming up with a logical way to group these in HREAP Groups.
I can't create a group per store because of the limitation on number of groups, and I'm not sure if there are any negative effects of grouping together APs in different stores that clients will never be able to roam between.
I would really like to use some type of user based authentication like EAP-FAST instead of using a PSK because it would give me the ability to kill a device remotely if I needed to rather than update the key on potentially hundreds of devices in the future.
The cost of a controller is too much to justify putting one in a location with only one or two APs, but the HREAP solution doesn't seem to fit when you have a huge number of locations either.
Has anyone done any large scale deployment of HREAP/VoWLAN and what security methods have you used or how did you organize the groups and APs?Well, you could use FlexConnet like that and all should work fine, for the most part.
For VoWiFi, you need to be careful with roaming. You can only have so many AP per group. It will be important to make sure your groupings are correct so that the group can get the PMK if you are doing CCKM/802.1x on the phones.
Other than that....where are the resources going to be that the users will be accessing?
If they are up in the Distribution or Core, you will still have the traffic flowing to or through there. So you wouldn't really gain anything by using FlexConnect.
HTH,
Steve
Please remember to rate useful posts, and mark questions as answered -
I have a controller running 7.0.220.0 with AP's (3502i) in HREAP mode using local switch and local auth. HP's are also in HREAP groups.
I am have some issues gathering statistics. When HREAP is not used (AP's in local mode) a large amount of information about clients can be gathered on the controller or NCS, IP address, 802.1x username, RSSI, SNR etc. This is extremely useful for troubleshooting. I've noticed when in HREAP mode, at best I can get see a client IP and mac address from the controller, although the IP address is often displayed as 0.0.0.0 when the client has a valid IP address on the device and by checking associations on the AP. Clients are operating fine on the network but all client statistics on the controller are listed as either 0 (bytes sent, recieved etc) or unavailable (SNR, RSSI), while its not displayed on the controller the info can be gathered from the AP's by checking the hreap associations. Why is this info missing from the controller and NCS?I cant really take the AP's out of the HREAP group at the moment as I need to use local authentication (AP is the authenticator against RADIUS-802.1x). I perfomed a full authentication, got connectivity but this is all I see for client information (2nd image), as you can see the statistics are blank and remain blank. As mentioned if I sun "show capwap reap association" from the AP, the statistics (SNR, RSSI etc) are there.
-
Hi!
I try to configure a Cisco 5508 Wireless controller and 25 Air-lap1041 to use as VoIP and data. I read documents, manuals, etc, but the AP doesn't charge the configuration, or not conect with the Wireless Controller, why? No Radius server present, only WPA security.howto, please...
I try to put a static ip in the LAP, with lwapp or capwap command, (LWAPP/CAPWAP ap ip address direccion mascara) and the AP returns "You should configure Domain and Name Server from controller CLI/GUI." and i can't change the name of the AP (Command is disabled).
Log from AP:
using ÿÿÿÿ ddr static values from serial eeprom
ddr init done
Running Normal Memtest...
Passed.
IOS Bootloader - Starting system.
FLASH CHIP: Numonyx P33
Checking for Over Erased blocks
Xmodem file system is available.
DDR values used from system serial eeprom.
WRDTR,CLKTR: 0x83000800, 0xc0000000
RQDC, RFDC : 0x80000037, 0x00000184
PCIE0: link is up.
PCIE0: VC0 is active
PCIE1: link is NOT up.
PCIE1 port 1 not initialize
PCIEx: initialization done
flashfs[0]: 6 files, 2 directories
flashfs[0]: 0 orphaned files, 0 orphaned directories
flashfs[0]: Total bytes: 32385024
flashfs[0]: Bytes used: 2369024
flashfs[0]: Bytes available: 30016000
flashfs[0]: flashfs fsck took 21 seconds.
Reading cookie from system serial eeprom...Done
Base Ethernet MAC address: 44:2b:03:dc:09:25
Ethernet speed is 1000 Mb - FULL duplex
Loading "flash:/c1140-rcvk9w8-mx/c1140-rcvk9w8-mx"...###########################
File "flash:/c1140-rcvk9w8-mx/c1140-rcvk9w8-mx" uncompressed and installed, entr
y point: 0x4000
executing...
enet halted
Restricted Rights Legend
Use, duplication, or disclosure by the Government is
subject to restrictions as set forth in subparagraph
(c) of the Commercial Computer Software - Restricted
Rights clause at FAR sec. 52.227-19 and subparagraph
(c) (1) (ii) of the Rights in Technical Data and Computer
Software clause at DFARS sec. 252.227-7013.
cisco Systems, Inc.
170 West Tasman Drive
San Jose, California 95134-1706
Cisco IOS Software, C1040 Software (C1140-RCVK9W8-M), Version 12.4(23c)JA, RELEA
SE SOFTWARE (fc3)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2010 by Cisco Systems, Inc.
Compiled Tue 01-Jun-10 12:53 by prod_rel_team
Proceeding with system init
Proceeding to unmask interrupts
Initializing flashfs...
FLASH CHIP: Numonyx P33
Checking for Over Erased blocks
flashfs[1]: 6 files, 2 directories
flashfs[1]: 0 orphaned files, 0 orphaned directories
flashfs[1]: Total bytes: 32126976
flashfs[1]: Bytes used: 2369024
flashfs[1]: Bytes available: 29757952
flashfs[1]: flashfs fsck took 7 seconds.
flashfs[1]: Initialization complete.
flashfs[2]: 0 files, 1 directories
flashfs[2]: 0 orphaned files, 0 orphaned directories
flashfs[2]: Total bytes: 11999232
flashfs[2]: Bytes used: 1024
flashfs[2]: Bytes available: 11998208
flashfs[2]: flashfs fsck took 1 seconds.
flashfs[2]: Initialization complete....done Initializing flashfs.
Ethernet speed is 1000 Mb - FULL duplex
This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.
A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html
If you require further assistance please contact us by sending email to
[email protected].
cisco AIR-LAP1041N-E-K9 (PowerPC405ex) processor (revision B0) with 98294K/32
768K bytes of memory.
Processor board ID FCZ1611W414
PowerPC405ex CPU at 333Mhz, revision number 0x147E
Last reset from reload
LWAPP image version 7.0.94.21
1 Gigabit Ethernet interface
32K bytes of flash-simulated non-volatile configuration memory.
Base ethernet MAC Address: 44:2B:03:DC:09:25
Part Number : 73-14034-04
PCA Assembly Number : 800-34273-05
PCA Revision Number : A0
PCB Serial Number : FOC16075VZ3
Top Assembly Part Number : 800-34284-03
Top Assembly Serial Number : FCZ1611W414
Top Revision Number : A0
Product/Model Number : AIR-LAP1041N-E-K9
% Please define a domain-name first.
Press RETURN to get started!
Translating "CISCO-CAPWAP-CONTROLLER"...domain server (255.255.255.255)
*Mar 1 00:00:09.574: *** CRASH_LOG = YES
Base Ethernet MAC address: 44:2B:03:DC:09:25
*Mar 1 00:00:09.838: %LWAPP-3-CLIENTEVENTLOG: Read and initialized AP event log
(contains, 1024 messages)
*Mar 1 00:00:11.848: %LINK-3-UPDOWN: Interface GigabitEthernet0, changed state
to up
*Mar 1 00:00:11.892: %SYS-5-RESTART: System restarted --
Cisco IOS Software, C1040 Software (C1140-RCVK9W8-M), Version 12.4(23c)JA, RELEA
SE SOFTWARE (fc3)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2010 by Cisco Systems, Inc.
Compiled Tue 01-Jun-10 12:53 by prod_rel_team
*Mar 1 00:08:16.954: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEth
ernet0, changed state to up
logging facility kern
^
% Invalid input detected at '^' marker.
*Mar 1 00:08:28.047: %CAPWAP-3-ERRORLOG: Could Not resolve CISCO-CAPWAP-CONTROL
LER
*Mar 1 00:08:28.049: %CAPWAP-5-CHANGED: CAPWAP changed state to DISCOVERY
*Mar 1 00:09:08.282: %CDP_PD-2-POWER_LOW: All radios disabled - LOW_POWER_CLASS
IC_NO_INJECTOR_CONFIGURED AIR-CT5508-K9 (c464.138f.9345)
*Mar 1 00:09:08.282: -Verify the required power-injector is installed on this
port: AIR-CT5508-K9(Gig 0/0/2).
*Mar 1 00:09:08.282: -If a power-injector is installed, issue the command:"pow
er inline negotiation injector installed"
*Mar 1 00:12:19.976: %CAPWAP-5-STATIC_TO_DHCP_IP: Could not discover WLC using
static IP. Forcing AP to use DHCP.
*Mar 1 00:12:29.993: %CAPWAP-3-ERRORLOG: Not sending discovery request AP does
not have an Ip !!
*Mar 1 00:12:39.994: %CAPWAP-3-ERRORLOG: Not sending discovery request AP does
not have an Ip !!
*Mar 1 00:12:49.993: %CAPWAP-3-ERRORLOG: Not sending discovery request AP does
not have an Ip !!
*Mar 1 00:12:59.994: %CAPWAP-3-ERRORLOG: Not sending discovery request AP does
not have an Ip !!
*Mar 1 00:13:09.993: %CAPWAP-3-ERRORLOG: Not sending discovery request AP does
not have an Ip !!
Not in Bound state.
*Mar 1 00:13:19.993: %CAPWAP-3-ERRORLOG: Not sending discovery request AP does
not have an Ip !!
*Mar 1 00:13:19.993: %CAPWAP-5-DHCP_RENEW: Could not discover WLC using DHCP IP
. Renewing DHCP IP.
logs from wireless controller:
(Cisco Controller) >show interface summary
Interface Name Port Vlan Id IP Address Type Ap Mgr Gu
est
ap-manager 2 untagged 209.165.200.231 Dynamic Yes No
management 1 untagged 209.165.200.230 Static Yes No
service-port N/A N/A 192.168.1.157 Static No No
virtual N/A N/A 1.1.1.1 Static No No
(Cisco Controller) >
i conect with service-port ok and the management port works, i think.
AP442b.03dc.0925>ping 209.165.200.230
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 209.165.200.230, timeout is 2 seconds:
Success rate is 100 percent (5/5), round-trip min/avg/max = 1/1/1 ms
AP442b.03dc.0925>
Help, please!
i write in spanish:
Hola:
Tengo que configurar un cisco 5508 wireless controller con 25 air-lap1041n, para usarlo como acceso de datos y voz. ¿Cómo lo hago? He leído manuales, y seguido las instrucciones, pero el punto de acceso parace que no es capaz de cargar el perfil. No hay servidor radius, solo la configuración de una clave wpa. Alguién me puede indicar pasos, GraciasHi!
I buy a gigabit switch. I connect the service-port to gigabit switch, and laptop to gigabit switch. I used 192.168.1.x ip address (192.168.1.157 to service-port and 192.168.1.233 to wired port on laptop, well, the laptop has two ip adress, 192.168.1.233 and 209.165.200.2, and the laptop works ok. Ping to 209.165.200.230 -ip address of management interface- and ping to 209.165.200.203 -ip address for AP, is assigned by DHCP of WLC. And i connect the ap to gigabit switch, and the wlc assigns well an ip direction.
I post the run-config and sysinfo log. The gigabit switch is tp-link model tl-sg1005d, no configuration.
Before the logs, I see this message from AP:
*Apr 19 23:10:20.211: %CAPWAP-3-ERRORLOG: This AP is not supported in controller
version 6.0.199.4 ---->What's mean that? Is it compatible the ap with the WLC? ¿Es compatible el AP con el WLC?
Hola:
He comprado un switch gigabit. Conecto el service-port al switch gigabit y el portátil también (por cable). Uso como direcciones ip el rango 192.168.1.x (192.168.1.157 asignado al service-port y 192, 168.1.233 al portátil, bueno, el portátil tiene dos direcciones, la dicha anteriormente y la 209.165.200.2) El portátil funciona bien, hace ping al 209.165.200.230 - la ip de la management interface, y a 209.165.200.203 - ip asignada al AP por el DHCP del WLC. He conectado el AP al swtich gigabit, y el dhcp del wlc asigna correctamente una dirección ip.
Añado a continuación los resultados de los comandos "show run-config" y "show sysinfo". El switch es un TP-LINK modelo TL-S1005D, sin necesidad de configuración.
Antes de mostrar los resultados de los comandos, he visto el siguiente mensaje en el log del AP:
*Apr 19 23:10:20.211: %CAPWAP-3-ERRORLOG: This AP is not supported in controller
version 6.0.199.4 ---->What's mean that? Is it compatible the ap with the WLC? ¿Es compatible el AP con el WLC?
Un saludo
Antonio R.
(Cisco Controller) >show run-config
Press Enter to continue...
System Inventory
NAME: "Chassis" , DESCR: "Cisco Wireless Controller"
PID: AIR-CT5508-K9, VID: V02, SN: FCW1608L05X
Burned-in MAC Address............................ C4:64:13:8F:93:40
Power Supply 1................................... Present, OK
Power Supply 2................................... Absent
Maximum number of APs supported.................. 25
Press Enter to continue or to abort
System Information
Manufacturer's Name.............................. Cisco Systems Inc.
Product Name..................................... Cisco Controller
Product Version.................................. 6.0.199.4
Bootloader Version............................... 1.0.1
Field Recovery Image Version..................... 6.0.182.0
Firmware Version................................. FPGA 1.3, Env 1.6, USB console
1.27
Build Type....................................... DATA + WPS
System Name...................................... CISCO-CAPWAP-CONTROLLER
System Location..................................
System Contact...................................
System ObjectID.................................. 1.3.6.1.4.1.9.1.1069
IP Address....................................... 209.165.200.230
Last Reset....................................... Power on reset
System Up Time................................... 0 days 0 hrs 17 mins 45 secs
System Timezone Location......................... (GMT +1:00) Amsterdam, Berlin,
Rome, Vienna
Current Boot License Level....................... base
Current Boot License Type........................ Permanent
Next Boot License Level.......................... base
Next Boot License Type........................... Permanent
Configured Country............................... ES - Spain
Operating Environment............................ Commercial (0 to 40 C)
Internal Temp Alarm Limits....................... 0 to 65 C
Internal Temperature............................. +36 C
External Temperature............................. +23 C
Fan Status....................................... OK
State of 802.11b Network......................... Enabled
State of 802.11a Network......................... Disabled
Number of WLANs.................................. 1
3rd Party Access Point Support................... Disabled
Number of Active Clients......................... 0
Burned-in MAC Address............................ C4:64:13:8F:93:40
Power Supply 1................................... Present, OK
Power Supply 2................................... Absent
Maximum number of APs supported.................. 25
Press Enter to continue or to abort
Switch Configuration
802.3x Flow Control Mode......................... Disable
FIPS prerequisite features....................... Disabled
secret obfuscation............................... Enabled
Network Information
RF-Network Name............................. hosp
Web Mode.................................... Disable
Secure Web Mode............................. Enable
Secure Web Mode Cipher-Option High.......... Disable
Secure Web Mode Cipher-Option SSLv2......... Enable
Secure Shell (ssh).......................... Enable
Telnet...................................... Disable
Ethernet Multicast Forwarding............... Disable
Ethernet Broadcast Forwarding............... Disable
AP Multicast/Broadcast Mode................. Unicast
IGMP snooping............................... Disabled
IGMP timeout................................ 60 seconds
User Idle Timeout........................... 300 seconds
ARP Idle Timeout............................ 300 seconds
Cisco AP Default Master..................... Enabled
AP Join Priority............................ Disable
Mgmt Via Wireless Interface................. Disable
Mgmt Via Dynamic Interface.................. Disable
Bridge MAC filter Config.................... Enable
Bridge Security Mode........................ EAP
Mesh Full Sector DFS........................ Enable
--More or (q)uit current module or to abort
--More or (q)uit current module or to abort
AP Fallback ................................ Enable
Web Auth Redirect Ports .................... 80
Fast SSID Change ........................... Disabled
IP/MAC Addr Binding Check .................. Enabled
Press Enter to continue or to abort
Port Summary
STP Admin Physical Physical Link Link
Pr Type Stat Mode Mode Status Status Trap POE SFPType
1 Normal Forw Enable Auto 1000 Full Up Enable N/A 1000BaseTX
2 Normal Disa Enable Auto Auto Down Enable N/A Not Present
3 Normal Disa Enable Auto Auto Down Enable N/A Not Present
4 Normal Disa Enable Auto Auto Down Enable N/A Not Present
5 Normal Disa Enable Auto Auto Down Enable N/A Not Present
6 Normal Disa Enable Auto Auto Down Enable N/A Not Present
7 Normal Disa Enable Auto Auto Down Enable N/A Not Present
8 Normal Disa Enable Auto Auto Down Enable N/A Not Present
Press Enter to continue or to abort
AP Summary
Number of APs.................................... 0
Global AP User Name.............................. Not Configured
Global AP Dot1x User Name........................ Not Configured
AP Name Slots AP Model Ethernet MAC Location
Port Country Priority
Press Enter to continue or to abort
Press Enter to continue or to abort
AP Location
Site Name........................................ default-group
Site Description.................................
WLAN ID Interface Network Admission Control
1 management Disabled
AP Name Slots AP Model Ethernet MAC Location
Port Country Priority GroupName
Press Enter to continue or to abort
AP Config
Press Enter to continue or to abort
Press Enter to continue or to abort
AP Airewave Director Configuration
Press Enter to continue or to abort
802.11a Configuration
802.11a Network.................................. Disabled
11nSupport....................................... Enabled
802.11a Low Band........................... Enabled
802.11a Mid Band........................... Enabled
802.11a High Band.......................... Enabled
802.11a Operational Rates
802.11a 6M Rate.............................. Mandatory
802.11a 9M Rate.............................. Supported
802.11a 12M Rate............................. Mandatory
802.11a 18M Rate............................. Supported
802.11a 24M Rate............................. Mandatory
802.11a 36M Rate............................. Supported
802.11a 48M Rate............................. Supported
802.11a 54M Rate............................. Supported
802.11n MCS Settings:
MCS 0........................................ Supported
MCS 1........................................ Supported
MCS 2........................................ Supported
MCS 3........................................ Supported
MCS 4........................................ Supported
MCS 5........................................ Supported
MCS 6........................................ Supported
--More or (q)uit current module or to abort
--More or (q)uit current module or to abort
MCS 7........................................ Supported
MCS 8........................................ Supported
MCS 9........................................ Supported
MCS 10....................................... Supported
MCS 11....................................... Supported
MCS 12....................................... Supported
MCS 13....................................... Supported
MCS 14....................................... Supported
MCS 15....................................... Supported
802.11n Status:
A-MPDU Tx:
Priority 0............................... Enabled
Priority 1............................... Disabled
Priority 2............................... Disabled
Priority 3............................... Disabled
Priority 4............................... Disabled
Priority 5............................... Disabled
Priority 6............................... Disabled
Priority 7............................... Disabled
Beacon Interval.................................. 100
CF Pollable mandatory............................ Disabled
CF Poll Request mandatory........................ Disabled
CFP Period....................................... 4
--More or (q)uit current module or to abort
--More or (q)uit current module or to abort
CFP Maximum Duration............................. 60
Default Channel.................................. 36
Default Tx Power Level........................... 0
DTPC Status..................................... Enabled
Fragmentation Threshold.......................... 2346
TI Threshold..................................... -50
Legacy Tx Beamforming setting.................... Disabled
Traffic Stream Metrics Status.................... Disabled
Expedited BW Request Status...................... Disabled
World Mode....................................... Enabled
EDCA profile type................................ default-wmm
Voice MAC optimization status.................... Disabled
Call Admision Control (CAC) configuration
Voice AC:
Voice AC - Admission control (ACM)............ Disabled
Voice max RF bandwidth........................ 75
Voice reserved roaming bandwidth.............. 6
Voice load-based CAC mode..................... Disabled
Voice tspec inactivity timeout................ Disabled
Voice Stream-Size............................. 84000
Voice Max-Streams............................. 2
Video AC:
Video AC - Admission control (ACM)............ Disabled
--More or (q)uit current module or to abort
--More or (q)uit current module or to abort
Video max RF bandwidth........................ Infinite
Video reserved roaming bandwidth.............. 0
Press Enter to continue or to abort
802.11a Advanced Configuration
Press Enter to continue or to abort
802.11a Airewave Director Configuration
RF Event and Performance Logging
Channel Update Logging......................... Off
Coverage Profile Logging....................... Off
Foreign Profile Logging........................ Off
Load Profile Logging........................... Off
Noise Profile Logging.......................... Off
Performance Profile Logging.................... Off
TxPower Update Logging......................... Off
Default 802.11a AP performance profiles
802.11a Global Interference threshold.......... 10 %
802.11a Global noise threshold................. -70 dBm
802.11a Global RF utilization threshold........ 80 %
802.11a Global throughput threshold............ 1000000 bps
802.11a Global clients threshold............... 12 clients
Default 802.11a AP monitoring
802.11a Monitor Mode........................... enable
802.11a Monitor Mode for Mesh AP Backhaul...... disable
802.11a Monitor Channels....................... Country channels
802.11a AP Coverage Interval................... 180 seconds
802.11a AP Load Interval....................... 60 seconds
802.11a AP Noise Interval...................... 180 seconds
--More or (q)uit current module or to abort
--More or (q)uit current module or to abort
802.11a AP Signal Strength Interval............ 60 seconds
Automatic Transmit Power Assignment
Transmit Power Assignment Mode................. AUTO
Transmit Power Update Interval................. 600 seconds
Transmit Power Threshold....................... -70 dBm
Transmit Power Neighbor Count.................. 3 APs
Min Transmit Power............................. -10 dBm
Max Transmit Power............................. 30 dBm
Transmit Power Update Contribution............. SNI.
Transmit Power Assignment Leader............... c4:64:13:8f:93:40
Last Run....................................... 75 seconds ago
Coverage Hole Detection
802.11a Coverage Hole Detection Mode........... Enabled
802.11a Coverage Voice Packet Count............ 100 packets
802.11a Coverage Voice Packet Percentage....... 50%
802.11a Coverage Voice RSSI Threshold.......... -80 dBm
802.11a Coverage Data Packet Count............. 50 packets
802.11a Coverage Data Packet Percentage........ 50%
802.11a Coverage Data RSSI Threshold........... -80 dBm
802.11a Global coverage exception level........ 25 %
802.11a Global client minimum exception lev.... 3 clients
Automatic Channel Assignment
Channel Assignment Mode........................ AUTO
--More or (q)uit current module or to abort
Channel Update Interval........................ 600 seconds [startup]
Anchor time (Hour of the day).................. 0
Channel Update Contribution.................... SNI.
Channel Assignment Leader...................... c4:64:13:8f:93:40
Last Run....................................... 75 seconds ago
DCA Sensitivity Level.......................... STARTUP (5 dB)
DCA 802.11n Channel Width...................... 20 MHz
DCA Minimum Energy Limit....................... -95 dBm
Channel Energy Levels
Minimum...................................... unknown
Average...................................... unknown
Maximum...................................... unknown
Channel Dwell Times
Minimum...................................... unknown
Average...................................... unknown
Maximum...................................... unknown
802.11a 5 GHz Auto-RF Channel List
Allowed Channel List......................... 36,40,44,48,52,56,60,64
Unused Channel List.......................... 100,104,108,112,116,120,124,
128,132,136,140
DCA Outdoor AP option.......................... Disabled
Radio RF Grouping
802.11a Group Mode............................. AUTO
--More or (q)uit current module or to abort
802.11a Group Update Interval.................. 600 seconds
802.11a Group Leader........................... c4:64:13:8f:93:40
802.11a Group Member......................... c4:64:13:8f:93:40
802.11a Last Run............................... 75 seconds ago
802.11b Configuration
802.11b Network.................................. Enabled
11gSupport....................................... Enabled
11nSupport....................................... Enabled
802.11b/g Operational Rates
802.11b/g 1M Rate............................ Mandatory
802.11b/g 2M Rate............................ Mandatory
802.11b/g 5.5M Rate.......................... Mandatory
802.11b/g 11M Rate........................... Mandatory
802.11g 6M Rate.............................. Supported
802.11g 9M Rate.............................. Supported
802.11g 12M Rate............................. Supported
802.11g 18M Rate............................. Supported
802.11g 24M Rate............................. Supported
802.11g 36M Rate............................. Supported
802.11g 48M Rate............................. Supported
802.11g 54M Rate............................. Supported
802.11n MCS Settings:
MCS 0........................................ Supported
MCS 1........................................ Supported
MCS 2........................................ Supported
MCS 3........................................ Supported
MCS 4........................................ Supported
--More or (q)uit current module or to abort
MCS 5........................................ Supported
MCS 6........................................ Supported
MCS 7........................................ Supported
MCS 8........................................ Supported
MCS 9........................................ Supported
MCS 10....................................... Supported
MCS 11....................................... Supported
MCS 12....................................... Supported
MCS 13....................................... Supported
MCS 14....................................... Supported
MCS 15....................................... Supported
802.11n Status:
A-MPDU Tx:
Priority 0............................... Enabled
Priority 1............................... Disabled
Priority 2............................... Disabled
Priority 3............................... Disabled
Priority 4............................... Disabled
Priority 5............................... Disabled
Priority 6............................... Disabled
Priority 7............................... Disabled
Beacon Interval.................................. 100
CF Pollable mode................................. Disabled
--More or (q)uit current module or to abort
CF Poll Request mandatory........................ Disabled
CFP Period....................................... 4
CFP Maximum Duration............................. 60
Default Channel.................................. 1
Default Tx Power Level........................... 0
DTPC Status..................................... Enabled
Call Admission Limit ........................... 105
G711 CU Quantum ................................. 15
ED Threshold..................................... -50
Fragmentation Threshold.......................... 2346
PBCC mandatory................................... Disabled
RTS Threshold.................................... 2347
Short Preamble mandatory......................... Enabled
Short Retry Limit................................ 7
Legacy Tx Beamforming setting.................... Enabled
Traffic Stream Metrics Status.................... Disabled
Expedited BW Request Status...................... Disabled
World Mode....................................... Enabled
Faster Carrier Tracking Loop..................... Disabled
EDCA profile type................................ default-wmm
Voice MAC optimization status.................... Disabled
Call Admision Control (CAC) configuration
Voice AC - Admission control (ACM)............ Disabled
--More or (q)uit current module or to abort
Voice Stream-Size............................. 84000
Voice Max-Streams............................. 2
Voice max RF bandwidth........................ 75
Voice reserved roaming bandwidth.............. 6
Voice load-based CAC mode..................... Disabled
Voice tspec inactivity timeout................ Disabled
Video AC - Admission control (ACM)............ Disabled
Video max RF bandwidth........................ 50
Video reserved roaming bandwidth.............. 0
802.11b Advanced Configuration
Press Enter to continue or to abort
802.11b Airewave Director Configuration
RF Event and Performance Logging
Channel Update Logging......................... Off
Coverage Profile Logging....................... Off
Foreign Profile Logging........................ Off
Load Profile Logging........................... Off
Noise Profile Logging.......................... Off
Performance Profile Logging.................... Off
Transmit Power Update Logging.................. Off
Default 802.11b AP performance profiles
802.11b Global Interference threshold.......... 10 %
802.11b Global noise threshold................. -70 dBm
802.11b Global RF utilization threshold........ 80 %
802.11b Global throughput threshold............ 1000000 bps
802.11b Global clients threshold............... 12 clients
Default 802.11b AP monitoring
802.11b Monitor Mode........................... enable
802.11b Monitor Channels....................... Country channels
802.11b AP Coverage Interval................... 180 seconds
802.11b AP Load Interval....................... 60 seconds
802.11b AP Noise Interval...................... 180 seconds
802.11b AP Signal Strength Interval............ 60 seconds
Automatic Transmit Power Assignment
Transmit Power Assignment Mode................. AUTO
Transmit Power Update Interval................. 600 seconds
Transmit Power Threshold....................... -70 dBm
Transmit Power Neighbor Count.................. 3 APs
Min Transmit Power............................. -10 dBm
Max Transmit Power............................. 30 dBm
Transmit Power Update Contribution............. SNI.
Transmit Power Assignment Leader............... c4:64:13:8f:93:40
Last Run....................................... 213 seconds ago
Coverage Hole Detection
802.11b Coverage Hole Detection Mode........... Enabled
802.11b Coverage Voice Packet Count............ 100 packets
802.11b Coverage Voice Packet Percentage....... 50%
802.11b Coverage Voice RSSI Threshold.......... -80 dBm
802.11b Coverage Data Packet Count............. 50 packets
802.11b Coverage Data Packet Percentage........ 50%
802.11b Coverage Data RSSI Threshold........... -80 dBm
802.11b Global coverage exception level........ 25 %
802.11b Global client minimum exception lev.... 3 clients
Automatic Channel Assignment
Channel Assignment Mode........................ AUTO
Channel Update Interval........................ 600 seconds [startup]
Anchor time (Hour of the day).................. 0
Channel Update Contribution.................... SNI.
Channel Assignment Leader...................... c4:64:13:8f:93:40
Last Run....................................... 213 seconds ago
DCA Sensitivity Level: ...................... STARTUP (5 dB)
DCA Minimum Energy Limit....................... -95 dBm
Channel Energy Levels
Minimum...................................... unknown
Average...................................... unknown
Maximum...................................... unknown
Channel Dwell Times
Minimum...................................... unknown
Average...................................... unknown
Maximum...................................... unknown
802.11b Auto-RF Allowed Channel List........... 1,6,11
Auto-RF Unused Channel List.................... 2,3,4,5,7,8,9,10,12,13
Radio RF Grouping
802.11b Group Mode............................. AUTO
802.11b Group Update Interval.................. 600 seconds
802.11b Group Leader........................... c4:64:13:8f:93:40
802.11b Group Member......................... c4:64:13:8f:93:40
802.11b Last Run............................... 213 seconds ago
Mobility Configuration
Symmetric Mobility Tunneling (current) .......... Enabled
Symmetric Mobility Tunneling (after reboot) ..... Enabled
Mobility Protocol Port........................... 16666
Default Mobility Domain.......................... hosp
Multicast Mode .................................. Disabled
Mobility Domain ID for 802.11r................... 0x97e2
Mobility Keepalive Interval...................... 10
Mobility Keepalive Count......................... 3
Mobility Group Members Configured................ 1
Mobility Control Message DSCP Value.............. 0
Controllers configured in the Mobility Group
MAC Address IP Address Group Name Multicast
IP Status
c4:64:13:8f:93:40 209.165.200.230 hosp 0.0.0.0
Up
Advanced Configuration
Probe request filtering.......................... Enabled
Probes fwd to controller per client per radio.... 0
Probe request rate-limiting interval............. 500 msec
EAP-Identity-Request Timeout (seconds)........... 30
EAP-Identity-Request Max Retries................. 2
EAP Key-Index for Dynamic WEP.................... 0
EAP Max-Login Ignore Identity Response........... enable
EAP-Request Timeout (seconds).................... 30
EAP-Request Max Retries.......................... 2
EAPOL-Key Timeout (milliseconds)................. 1000
EAPOL-Key Max Retries............................ 2
dot11-padding.................................... Disabled
Authentication Response Timeout (seconds)........ 10
Rogue Entry Timeout (seconds).................... 1200
AP Heart Beat Timeout (seconds).................. 30
AP Discovery Timeout (seconds)................... 10
AP Local mode Fast Heartbeat (seconds)........... disable
AP Hreap mode Fast Heartbeat (seconds)........... disable
AP Primary Discovery Timeout (seconds)........... 120
AP Primed Join Timeout (seconds)................. 0
Packet Forwarding watchdog timer (seconds)....... 240 (enable)
Location Configuration
RFID Tag data Collection......................... Enabled
RFID timeout.................................... 1200 seconds
RFID mobility.................................... Oui:00:14:7e : Vendor:pango S
tate:Disabled
Interface Configuration
Interface Name................................... management
MAC Address...................................... c4:64:13:8f:93:40
IP Address....................................... 209.165.200.230
IP Netmask....................................... 255.255.255.0
IP Gateway....................................... 209.165.200.1
External NAT IP State............................ Disabled
External NAT IP Address.......................... 192.168.1.1
VLAN............................................. untagged
Quarantine-vlan.................................. 0
Active Physical Port............................. 1
Primary Physical Port............................ 1
Backup Physical Port............................. Unconfigured
Primary DHCP Server.............................. 209.165.200.230
Secondary DHCP Server............................ Unconfigured
DHCP Option 82................................... Disabled
ACL.............................................. Unconfigured
AP Manager....................................... Yes
Guest Interface.................................. No
Interface Name................................... service-port
MAC Address...................................... c4:64:13:8f:93:41
IP Address....................................... 192.168.1.157
IP Netmask....................................... 255.255.255.0
DHCP Option 82................................... Disabled
DHCP Protocol.................................... Disabled
AP Manager....................................... No
Guest Interface.................................. No
Interface Name................................... virtual
MAC Address...................................... c4:64:13:8f:93:40
IP Address....................................... 1.1.1.1
DHCP Option 82................................... Disabled
Virtual DNS Host Name............................ Disabled
AP Manager....................................... No
Guest Interface.................................. No
WLAN Configuration
WLAN Identifier.................................. 1
Profile Name..................................... HOSP3C
Network Name (SSID).............................. HOSP3C
Status........................................... Enabled
MAC Filtering.................................... Disabled
Broadcast SSID................................... Enabled
AAA Policy Override.............................. Disabled
Network Admission Control
NAC-State...................................... Disabled
Quarantine VLAN................................ 0
Number of Active Clients......................... 0
Exclusionlist Timeout............................ 60 seconds
Session Timeout.................................. 1800 seconds
CHD per WLAN..................................... Enabled
Webauth DHCP exclusion........................... Disabled
Interface........................................ management
WLAN ACL......................................... unconfigured
DHCP Server...................................... 209.165.200.230
DHCP Address Assignment Required................. Enabled
Quality of Service............................... Platinum (voice)
Scan Defer Priority.............................. 5,6
Scan Defer Time.................................. 100 milliseconds
WMM.............................................. Disabled
Media Stream Multicast-direct.................... Disabled
CCX - AironetIe Support.......................... Enabled
CCX - Gratuitous ProbeResponse (GPR)............. Disabled
CCX - Diagnostics Channel Capability............. Disabled
Dot11-Phone Mode (7920).......................... Disabled
Wired Protocol................................... None
IPv6 Support..................................... Disabled
Peer-to-Peer Blocking Action..................... Disabled
Radio Policy..................................... 802.11b and 802.11g only
DTIM period for 802.11a radio.................... 1
DTIM period for 802.11b radio.................... 1
Radius Servers
Authentication................................ Disabled
Accounting.................................... Disabled
Dynamic Interface............................. Disabled
Local EAP Authentication......................... Disabled
Security
802.11 Authentication:........................ Open System
Static WEP Keys............................... Disabled
802.1X........................................ Disabled
Wi-Fi Protected Access (WPA/WPA2)............. Enabled
WPA (SSN IE)............................... Disabled
WPA2 (RSN IE).............................. Enabled
TKIP Cipher............................. Enabled
AES Cipher.............................. Enabled
Auth Key Management
802.1x.................................. Disabled
PSK..................................... Enabled
CCKM.................................... Disabled
FT(802.11r)............................. Disabled
FT-PSK(802.11r)......................... Disabled
FT Reassociation Timeout......................... 20
FT Over-The-Air mode............................. Enabled
FT Over-The-Ds mode.............................. Enabled
CKIP ......................................... Disabled
Web Based Authentication...................... Disabled
Web-Passthrough............................... Disabled
Conditional Web Redirect...................... Disabled
Splash-Page Web Redirect...................... Disabled
Auto Anchor................................... Disabled
H-REAP Local Switching........................ Disabled
H-REAP Learn IP Address....................... Enabled
Infrastructure MFP protection................. Enabled
Client MFP.................................... Optional
Tkip MIC Countermeasure Hold-down Timer....... 60
Call Snooping.................................... Disabled
Band Select...................................... Enabled
Load Balancing................................... Enabled
Mobility Anchor List
WLAN ID IP Address Status
Press Enter to continue or to abort
Press Enter to continue or to abort
ACL Configuration
Press Enter to continue or to abort
CPU ACL Configuration
CPU Acl Name................................ NOT CONFIGURED
Wireless Traffic............................ Disabled
Wired Traffic............................... Disabled
RADIUS Configuration
Vendor Id Backward Compatibility................. Disabled
Call Station Id Case............................. lower
Call Station Id Type............................. IP Address
Aggressive Failover.............................. Enabled
Keywrap.......................................... Disabled
Fallback Test:
Test Mode.................................... Off
Probe User Name.............................. cisco-probe
Interval (in seconds)........................ 300
MAC Delimiter for Authentication Messages........ hyphen
MAC Delimiter for Accounting Messages............ hyphen
Authentication Servers
Idx Type Server Address Port State Tout RFC3576 IPSec - AuthMode/P
hase1/Group/Lifetime/Auth/Encr
Accounting Servers
Idx Type Server Address Port State Tout RFC3576 IPSec - AuthMode/P
hase1/Group/Lifetime/Auth/Encr
--More or (q)uit current module or to abort
TACACS Configuration
Authentication Servers
Idx Server Address Port State Tout
Authorization Servers
Idx Server Address Port State Tout
Accounting Servers
Idx Server Address Port State Tout
LDAP Configuration
Press Enter to continue or to abort
Local EAP Configuration
User credentials database search order:
Primary ..................................... Local DB
Timer:
Active timeout .............................. 300
Configured EAP profiles:
EAP Method configuration:
EAP-FAST:
Server key ................................
TTL for the PAC ........................... 10
Anonymous provision allowed ............... Yes
Authority ID .............................. 436973636f00000000000000000000
00
Authority Information ..................... Cisco A-ID
Press Enter to continue or to abort
HREAP Group Summary
HREAP Group Summary: Count: 0
Group Name # Aps
Press Enter to continue or to abort
HREAP Group Detail
Press Enter to continue or to abort
Route Info
Number of Routes................................. 0
Destination Network Netmask Gateway
Press Enter to continue or to abort
Qos Queue Length Info
Platinum queue length............................ 100
Gold queue length................................ 75
Silver queue length.............................. 50
Bronze queue length.............................. 25
Press Enter to continue or to abort
Mac Filter Info
Press Enter to continue or to abort
Authorization List
Authorize MIC APs against AAA ................... disabled
Authorize LSC APs against Auth-List ............. disabled
Allow APs with MIC - Manufactured Installed C.... disabled
Allow APs with SSC - Self-Signed Certificate..... disabled
Allow APs with LSC - Locally Significant Cert.... disabled
Load Balancing Info
Aggressive Load Balancing........................ Disabled
Aggressive Load Balancing Window................. 5 clients
Aggressive Load Balancing Denial Count........... 3
Statistics
Total Denied Count............................... 0 clients
Total Denial Sent................................ 0 messages
Exceeded Denial Max Limit Count.................. 0 times
None 5G Candidate Count.......................... 0 times
None 2.4G Candidate Count........................ 0 times
Press Enter to continue or to abort
Dhcp Scope Info
Scope: PUNTOSAP
Enabled.......................................... Yes
Lease Time....................................... 86400 (1 day )
Pool Start....................................... 209.165.200.201
Pool End......................................... 209.165.200.229
Network.......................................... 209.165.200.0
Netmask.......................................... 255.255.255.0
Default Routers.................................. 0.0.0.0 0.0.0.0 0.0.0.0
DNS Domain.......................................
DNS.............................................. 0.0.0.0 0.0.0.0 0.0.0.0
Netbios Name Servers............................. 0.0.0.0 0.0.0.0 0.0.0.0
Press Enter to continue or to abort
Exclusion List ConfigurationUnable to retrieve exclusion-list entry
Press Enter to continue or to abort
CDP Configuration
Press Enter to continue or to abort
Country Channels Configuration
Configured Country............................. ES - Spain
KEY: * = Channel is legal in this country and may be configured manually.
A = Channel is the Auto-RF default in this country.
. = Channel is not legal in this country.
C = Channel has been configured for use by Auto-RF.
x = Channel is available to be configured for use by Auto-RF.
(-,-) = (indoor, outdoor) regulatory doamin allowed by this country.
-----------------:+-+-+-+-+-+-+-+-+-+-+-+-+-+-
802.11bg :
Channels : 1 1 1 1 1
: 1 2 3 4 5 6 7 8 9 0 1 2 3 4
-----------------:+-+-+-+-+-+-+-+-+-+-+-+-+-+-
ES (-E ,-E ): A * * * * A * * * * A * * .
-----------------:+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-
802.11a : 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1
Channels : 3 3 3 4 4 4 4 4 5 5 6 6 0 0 0 1 1 2 2 2 3 3 4 4 5 5 6 6
: 4 6 8 0 2 4 6 8 2 6 0 4 0 4 8 2 6 0 4 8 2 6 0 9 3 7 1 5
-----------------:+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-
ES (-E ,-E ): . A . A . A . A A A A A * * * * * * * * * * * . . . . .
Press Enter to continue or to abort
WPS Configuration Summary
Auto-Immune
Auto-Immune.................................... Disabled
Client Exclusion Policy
Excessive 802.11-association failures.......... Enabled
Excessive 802.11-authentication failures....... Enabled
Excessive 802.1x-authentication................ Enabled
IP-theft....................................... Enabled
Excessive Web authentication failure........... Enabled
Signature Policy
Signature Processing........................... Enabled
Press Enter to continue or to abort
Custom Web Configuration
Radius Authentication Method..................... PAP
Cisco Logo....................................... Enabled
CustomLogo....................................... None
Custom Title..................................... None
Custom Message................................... None
Custom Redirect URL.............................. None
Web Authentication Type.......................... Internal Default
External Web Authentication URL.................. None
Configuration Per Profile:
Rogue AP Configuration
Rogue Location Discovery Protocol................ Disabled
Rogue on wire Auto-Contain....................... Disabled
Rogue using our SSID Auto-Contain................ Disabled
Valid client on rogue AP Auto-Contain............ Disabled
Rogue AP timeout................................. 1200
MAC Address Classification # APs # Clients Last Heard
Adhoc Rogue Configuration
Detect and report Ad-Hoc Networks................ Enabled
Auto-Contain Ad-Hoc Networks..................... Disabled
Client MAC Address Adhoc BSSID State # APs Last Heard
Rogue Client Configuration
Validate rogue clients against AAA............... Disabled
Rogue Client Configuration
Validate rogue clients against AAA............... Disabled
--More-- or (q)uit
MAC Address State # APs Last Heard
Ignore List Configuration
MAC Address
Rogue Rule Configuration
Priority Rule Name State Type Match Hit Count
(Cisco Controller) >show sysinfo
Manufacturer's Name.............................. Cisco Systems Inc.
Product Name..................................... Cisco Controller
Product Version.................................. 6.0.199.4
Bootloader Version............................... 1.0.1
Field Recovery Image Version..................... 6.0.182.0
Firmware Version................................. FPGA 1.3, Env 1.6, USB console
1.27
Build Type....................................... DATA + WPS
System Name...................................... CISCO-CAPWAP-CONTROLLER
System Location..................................
System Contact...................................
System ObjectID.................................. 1.3.6.1.4.1.9.1.1069
IP Address....................................... 209.165.200.230
Last Reset....................................... Power on reset
System Up Time................................... 0 days 0 hrs 41 mins 2 secs
System Timezone Location......................... (GMT +1:00) Amsterdam, Berlin,
Rome, Vienna
Current Boot License Level....................... base
Current Boot License Type........................ Permanent
Next Boot License Level.......................... base
Next Boot License Type........................... Permanent
Configured Country............................... ES - Spain
Operating Environment............................ Commercial (0 to 40 C)
Internal Temp Alarm Limits....................... 0 to 65 C
Internal Temperature............................. +39 C
External Temperature............................. +23 C
Fan Status....................................... OK
State of 802.11b Network......................... Enabled
State of 802.11a Network......................... Disabled
Number of WLANs.................................. 1
3rd Party Access Point Support................... Disabled
Number of Active Clients......................... 0
Burned-in MAC Address............................ C4:64:13:8F:93:40
Power Supply 1................................... Present, OK
Power Supply 2................................... Absent
Maximum number of APs supported.................. 25
(Cisco Controller) >
The AP log
AP442b.03dc.0925>
*Apr 19 23:10:18.428: %CAPWAP-3-ERRORLOG: Selected MWAR 'CISCO-CAPWAP-CONTROLLER
'(index 0).
*Apr 19 23:10:18.428: %CAPWAP-3-ERRORLOG: Go join a capwap controller
logging facility kern
^
% Invalid input detected at '^' marker.
logging facility kern
^
% Invalid input detected at '^' marker.
*Apr 19 23:10:19.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_i
p: 209.165.200.230 peer_port: 5246
*Apr 19 23:10:19.001: %CAPWAP-5-CHANGED: CAPWAP changed state to
*Apr 19 23:10:20.200: %CAPWAP-5-DTLSREQSUCC: DTLS connection created sucessfully
peer_ip: 209.165.200.230 peer_port: 5246
*Apr 19 23:10:20.201: %CAPWAP-5-SENDJOIN: sending Join Request to 209.165.200.23
0
*Apr 19 23:10:20.201: %CAPWAP-5-CHANGED: CAPWAP changed state to JOIN
*Apr 19 23:10:20.211: %CAPWAP-3-ERRORLOG: This AP is not supported in controller
version 6.0.199.4 ---->What's mean that? Is it compatible the ap with the WLC? ¿Es compatible el AP con el WLC?
*Apr 19 23:10:20.354: %CAPWAP-5-CHANGED: CAPWAP changed state to CFG
*Apr 19 23:10:20.355: %DTLS-5-SEND_ALERT: Send FATAL : Close notify Alert to 209
.165.200.230:5246
*Apr 19 23:10:20.356: %CAPWAP-5-CHANGED: CAPWAP changed state to DISCOVERY
*Apr 19 23:10:20.356: %CAPWAP-5-CHANGED: CAPWAP changed state to DISCOVERY
*Apr 19 23:10:20.412: %CAPWAP-3-ERRORLOG: Dropping dtls packet since session is
not established -
Message on WCS/NCS: Attempted to use IP Address assigned to another device
Hi
i have two WLCs AIR-CT5508-K9, monitored by WCS (in retiring stage) and NCS.
All APs are grouped in HREAP groups based on their locations. The wireless users are getting ip from a dhcp pool running on routers located at each site. All dhcp commands on every routers are the identical. Eg. rtr1, located on site 1 has ip pool for wifi users 192.168.8.0/24. Rtr2 on site 2 has a ip pool for wifi users in range 192.168.8.0/24. Occasionally i am getting bellow message when some wifi users are unable to connect. After creating a HREAP group and associating APs to correct group, this message stops showing for a while but now i am getting them again.
The temp solution to get it all running is to clear ip dhcp pool on router located at affected site.
Any suggestions for a better solution?
Thanks
====================
NCS has detected one or more alarms of category Security and severity Minor in Virtual Domain ROOT-DOMAIN
for the following items:
1. Message: Client '14:5a:05:6c:75:37 (0.0.0.0)' which was associated with interface '802.11b/g/n' of AP 'STV-AP-7198' is excluded. The reason code is '3(Attempted to use IP Address assigned to another device)'. - Controller Name: GEORGE-WLC
===================endpoint,
You are locally switching your networks, yes, but even without HREAP and WLCs, they are still connected networks in your overall topology, correct? I would never have site A with a given network that overlaps with a network in site B. With few exceptions, they should be completely separate, unique, non-overlapping network spaces. HREAP doesn’t even come into it.
The problem you’re likely having is that the WLC is seeing clients coming in from two different sites and because you are duplicating your configurations from site to site, the WLC sees duplicate IP assignment.
That said, you can try to turn off client IP address learning on the WLAN Advanced tab to see if that helps.
Justin -
Web redirection doesn't work on WLC5508
Hello, Please I have configured WLC 5508 for supporting guest vlan mapped to in virtuel interface and associated to guest ssid wlan.
on guest ssid i have activate L3 security with web policy. both authentication and passtrought does'nt refirect web authentication page.
I can get DHCP param trought dhcp pool for the correct guest vlan.
addition information : i see that the control send a wrong redirect ip adresse.
WLC management interface is 10.7.1.10 and i seen 10.7.4.10. i remeber that this last ip was destinated as dns server ip add but i dont see where i can change it?
the dns ip adress configured on the pool is 10.7.1.10.
please any idea for this issue?Hello,
I have doing one modification. I have configured the ip addresse onf dns name us ip add of virtuel interface.
and after i can request webauth when access with GUEST SSID.
Note: I have configured the wifi_guest dynamique interface as normal interface witout specify that is for guest user? it's normal? see configuration below.
config advanced 802.11b channel add 1
config advanced 802.11b channel add 6
config advanced 802.11b channel add 11
config advanced 802.11a channel add 36
config advanced 802.11a channel add 40
config advanced 802.11a channel add 44
config advanced 802.11a channel add 48
config advanced 802.11a channel add 52
config advanced 802.11a channel add 56
config advanced 802.11a channel add 60
config advanced 802.11a channel add 64
config certificate generate webauth
config interface address management 10.7.1.10 255.255.255.0 10.7.1.3
config interface port management 1
config interface vlan management 22
config interface dhcp management primary 10.7.1.3
config interface address service-port 10.7.0.1 255.255.255.0
config interface dhcp service-port disable
config interface address virtual 1.1.1.1
config interface hostname virtual 1.1.1.1
config interface address dynamic-interface wifi_data 10.7.3.1 255.255.255.0 10.7.3.3
config interface port wifi_data 1
config interface create wifi_data 3
config interface vlan wifi_data 3
config interface dhcp dynamic-interface wifi_data primary 10.7.3.3
config interface address dynamic-interface wifi_voice 10.7.6.1 255.255.255.0 10.7.6.3
config interface port wifi_voice 1
config interface create wifi_voice 24
config interface vlan wifi_voice 24
config interface dhcp dynamic-interface wifi_voice primary 10.7.6.3
config interface address dynamic-interface wifi_guest 10.7.10.1 255.255.255.0 10.7.10.3
config interface port wifi_guest 1
config interface create wifi_guest 10
config interface vlan wifi_guest 10
config interface dhcp dynamic-interface wifi_guest primary 10.7.10.3
config 802.11b 11gsupport enable
config logging console notifications
config logging console 5
config logging traceinfo disable debugging
config mobility group domain SICPA
config dhcp proxy disable bootp-broadcast disable
config custom-web redirecturl www.sicpa.com
config custom-web weblogo disable
config custom-web webmessage "Bienvenue sur le portail Wifi de SICPA MAROC, Accés autorisés seulement aux personnes autorisées."
config 802.11a disable network
config hreap group SICPA add
config hreap group SICPA radius ap authority info "Cisco A_ID"
config hreap group SICPA radius ap authority id 436973636f0000000000000000000000
config hreap group SICPA radius ap server-key encrypt 1 5f56d8b50959491103ea7315322e20bd 100acf2cefe3802796401ae06e1e523a259b8543 036a5066218ab032894b51738f93591e8fd97a3302f02740838f75184d327f
config database size 2048
config network rf-network-name default
config network master-base enable
config country FR
config mgmtuser add encrypt admin 1 1f5eb5b7c333109cfecdb1c217e4ed2a d422424c410e252a47d648b4598105130e00d26d 16 07b3ca92b2e8e8b44b22d7adb42341f40000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000 read-write
config acl create Guest
config acl rule add Guest 65
config wlan session-timeout 1 1800
config wlan security wpa wpa1 ciphers aes enable 1
config wlan security wpa wpa1 enable 1
config wlan security wpa akm psk set-key hex encrypt 1 e935b271a9ff70fa79614dbb28bcf3bc 2b22b029985ff097772ba19b7149376ca01d276c 48 dba3595a974981bb7a8eb37b200005244fd7182b6859c9bc84f1b5d3c331f7122cb9a51478172c1217636e386617c7fe000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000 1
config wlan security wpa akm psk enable 1
config wlan security wpa akm 802.1x disable 1
config wlan security wpa enable 1
config wlan session-timeout 2 1800
config wlan security wpa wpa1 ciphers aes enable 2
config wlan security wpa wpa1 enable 2
config wlan security wpa akm psk set-key hex encrypt 1 26a45869463e35b2d3b4fdde12ad314a 397f531ce6272483f4cf982355cc1b210dce9b51 48 1b9a6b62c870db4d23e7929f6053d205a2743719e692e55a25ac0653f120bb9a9549b24a68225076164faa1b434604f3000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000 2
config wlan security wpa akm psk enable 2
config wlan security wpa akm 802.1x disable 2
config wlan security wpa enable 2
config wlan session-timeout 3 1800
config wlan security wpa wpa2 disable 3
config wlan security wpa akm 802.1x disable 3
config wlan security wpa disable 3
config wlan security web-auth enable 3
config wlan apgroup add GRP_SICPA
config wlan apgroup interface-mapping add GRP_SICPA 1 wifi_data
config wlan apgroup interface-mapping add GRP_SICPA 2 wifi_voice
config wlan apgroup interface-mapping add GRP_SICPA 3 management
config wlan exclusionlist 1 60
config wlan exclusionlist 2 60
config wlan exclusionlist 3 60
config wlan wmm allow 1
config wlan radius_server acct disable 1
config wlan radius_server auth disable 1
config wlan interface 1 wifi_data
config wlan create 1 WPF_SICPA SICPA
config wlan broadcast-ssid disable 1
config wlan channel-scan defer-priority 5 enable 1
config wlan channel-scan defer-priority 6 enable 1
config wlan mfp client enable 1
config wlan enable 1
config wlan wmm allow 2
config wlan radius_server acct disable 2
config wlan radius_server auth disable 2
config wlan interface 2 wifi_voice
config wlan create 2 Voice Voice
config wlan qos 2 platinum
config wlan broadcast-ssid disable 2
config wlan channel-scan defer-priority 5 enable 2
config wlan channel-scan defer-priority 6 enable 2
config wlan mfp client enable 2
config wlan dhcp_server 2 10.7.6.3 required
config wlan enable 2
config wlan wmm allow 3
config wlan radius_server acct disable 3
config wlan radius_server auth disable 3
config wlan interface 3 wifi_guest
config wlan create 3 "Sicpa Guest" SICGUEST
config wlan broadcast-ssid disable 3
config wlan channel-scan defer-priority 5 enable 3
config wlan channel-scan defer-priority 6 enable 3
config wlan mfp client enable 3
config wlan enable 3
config band-select probe-response enable
config sysname SICPAWLC01
config netuser add encrypt username guest password 1 ce43d82be4df6ee1abc1184f9f6ceffc 75f488240bd3ac7a423657a1d495a35a3b7088f9 16 a8b9fb1eaa64e838b2afd02c71544c420000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000 wlan 3 usertype guest lifetime 86400 description
config netuser add encrypt username adil password 1 6c5fe3e5ca24345a868c88dfcb761540 969e73d1739bbe4afea7348f8e3509d23fd1dd97 16 bf3028a95cda7e3299dcc8b4288611440000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000 wlan 3 usertype permanent description
transfer download serverip 10.7.12.41
transfer download filename ciscowlc.cfg
transfer download datatype config
transfer upload serverip 10.7.12.41
transfer upload filename ciscowlc.cfg
transfer upload datatype config -
Hi,
I have hear about the cisco prime network control system (http://www.cisco.com/en/US/prod/collateral/wireless/ps5755/ps11682/ps11686/ps11688/data_sheet_c78-650051.html) but I can't find a way to download it, the link which is supposed to have the option to download is not working
Downloading Cisco NCS
Download current Cisco NCS releases from http://www.cisco.com/public/sw-center/sw-wireless.shtml (login required).
There is other link but is only for the demo licensehttps://tools.cisco.com/SWIFT/Licensing/PrivateRegistrationServlet?DemoKeys=Y
does anybody know how to download it?
Thank you in advance for your help,
AlexIt's not all at once.
The maximum number of concurrent predownloads is limited to half the number of concurrent normal image downloads. This limitation allows new access points to join the controller during image downloading.
If you reach the predownload limit, then the access points that cannot get an image sleep for a time between 180 to 600 seconds and then reattempt the predownload.
Once you go to 7.2 code you can have a master AP that gets the upgrade first and then sends the update to the other APs in the same FlexConnect (HREAP) group. -
Duplicated IP error on some clients
Hello, Dear All.
We have typical deployment with WLC550x (7.0.116.0) and 16 APs (AIR-LAP1242G-E-K9) placed on same site. WLC connected to 3560 (with LAG , and dhcp relay) , and all wireless clients( Motorolla MC3100 handled PC ) work with same WPA2-PSK SSID. All APs configured as HREAP group and SSID has local switching and auth settings. DHCP server for clients work on Windows 2008r2 failover cluster, APs give addresses from WLC builtin server.
Almost all works great. But sometimes some clients go insane . After wake up, they show duplicate IP error and wont connect to nework. On DHCP server this IP shown as leased to client mac(without any errors and so).
Client reboot wont resolve this issue.
After reboot client try another dhcp address (after marking dchp decline message) but also without luck, with same error and another IP.
All this looks like client side problem . But when i try debug arp on root switch 3560 i get following situation.
After client wake-up
*Apr 10 18:44:32.773: IP ARP: rcvd req src 10.116.51.59 0023.68cb.a8fc, dst 10.116.51.59 Vlan51
*Apr 10 18:44:32.782: IP ARP: rcvd req src 10.116.51.59 0023.68cb.a812, dst 10.116.51.59 Vlan51
After reboot
*Apr 10 19:16:40.123: IP ARP: rcvd req src 10.116.51.24 0023.68cb.a8fc, dst 10.116.51.24 Vlan51
*Apr 10 19:16:40.131: IP ARP: rcvd req src 10.116.51.24 0023.68c9.a29b, dst 10.116.51.24 Vlan51
*Apr 10 19:16:40.459: IP ARP: rcvd req src 10.116.51.27 0023.68cb.a8fc, dst 10.116.51.27 Vlan51
*Apr 10 19:16:40.467: IP ARP: rcvd req src 10.116.51.27 0023.68cb.a9b6, dst 10.116.51.27 Vlan51
Where 0023.68cb.a8fc problem clent mac and 0023.68cb.a812,
0023.68cb.a9b6, 0023.68c9.a29b - another full working clients MACs(with another ip address).
Looks like another client (or ?? ap or controller) send ARP reqest with same IP right after problem client. How this possible ?
I'll be
appreciate for any opinions
and comments!Why you think so ?
Reboot of controller resolve problem for some time.
Clients work flawlessly when controller disconnected from network and APs in H-REAP mode. Also same clients (handles PC models) works in online mode with wlc 4400 without problems.
There are two difference in this deployment:
1. wlc 5500 and 7.0 major release
2. APs in H-REAP mode and WLAN configured as localy switched
From my point of view problem related with controller incorrect behavior(or I think so).
Process of obtaining ip addresses interrupted by controller for some unclear reasons.
1.Client obtain IP address from DHCP without problem(via dhcp relay on 3750)
2. Client check that no one use it by sending ARP request "ARP Who has address (leased from DHCP address here)"
3. No response mean that address free.
4. Controller interrupt process. By sending ARP resposne "ARP (leased from DHCP address here) used by (MAC of one of client what used it in past) "
5. After this client show duplicated ip error.
6. Controller log message
%APF-4-REGISTER_IPADD_ON_MSCB_FAILED:apf_foreignap.c:1504 Could not Register IP Add on MSCB. Identity theft alert for IP address. Address:00:23:68:cb:a9:87
I think this mean controller failed to update some internal table with new ip-mac pair and prevent client work.
But how disable such controller behavior I dont know.
I disabled controller DHCP proxy , I disabled client ip learning in WLAN settings , I disabled any exclusion policies. -
Oracle Performance tunning genral question
Hi,
Below is the list of Areas of Oracle db for which tunning activities are done. You are invited to comment to it weather this is complete list or need some addition or deletion. As I'm learning PT for Oracle now a days, therefore I want to expand my knowledge by sharing what I'm learning and what I need to learn.
So comment with Open hearts on it. Espically from experts and Gurus.
Here is the List
1-Planning for Performance, include Storage consideration( Weather it is SAN, NAS, DAS), Network planning and host OS planning with proper configuration for running Oracle.
2-Database desining (Not under-Normalized and not Over-Normalized with proper usage of Indexes, views and Stored Procedures)
3- Instance tunning (Memory structure + B.g Processes)
4- Session tunning.
5- Segment Space tunning.
6- SQL tunning.
This is what uptill what I've learned. If it needs addition kindly tell me what are these. Please also provide me links(good and precise one) for PT tutorials on web.Also note that I'm discussing this w.r.t Single instance non-rac db.
Looking for Good sugessions
Regards,
AbbasiHello,
This is the oracle course contents:
Contents
Preface
1 Introduction
Course Objectives 1-2
Organization 1-3
Agenda 1-4
What Is Not Included 1-6
Who Tunes? 1-7
What Does the DBA Tune? 1-8
How to Tune 1-10
Tuning Methodology 1-11
Effective Tuning Goals 1-13
General Tuning Session 1-15
Summary 1-17
2 Basic Tuning Tools
Objectives 2-2
Performance Tuning Diagnostics 2-3
Performance Tuning Tools 2-4
Tuning Objectives 2-5
Top Wait Events 2-6
DB Time 2-7
CPU and Wait Time Tuning Dimensions 2-8
Time Model: Overview 2-9
Time Model Statistics Hierarchy 2-10
Time Model Example 2-12
Dynamic Performance Views 2-13
Dynamic Performance Views: Usage Examples 2-14
Dynamic Performance Views: Considerations 2-15
Statistic Levels 2-16
Statistics and Wait Events 2-18
System Statistic Classes 2-19
Displaying Statistics 2-20
Displaying SGA Statistics 2-22
Wait Events 2-23
Using the V$EVENT_NAME View 2-24
Wait Classes 2-25
Displaying Wait Event Statistics 2-26
Oracle Internal & Oracle Academy Use Only
iv
Commonly Observed Wait Events 2-28
Using the V$SESSION_WAIT View 2-29
Precision of System Statistics 2-31
Using Features of the Packs 2-32
Accessing the Database Home Page 2-34
Enterprise Manager Performance Pages 2-35
Viewing the Alert Log 2-37
Using Alert Log Information as an Aid in Tuning 2-38
User Trace Files 2-40
Background Processes Trace Files 2-41
Summary 2-42
Practice 2 Overview: Using Basic Tools 2-43
3 Using Automatic Workload Repository
Objectives 3-2
Automatic Workload Repository: Overview 3-3
Automatic Workload Repository Data 3-4
Workload Repository 3-5
Database Control and AWR 3-6
AWR Snapshot Purging Policy 3-7
AWR Snapshot Settings 3-8
Manual AWR Snapshots 3-9
Managing Snapshots with PL/SQL 3-10
Generating AWR Reports in EM 3-11
Generating AWR Reports in SQL*Plus 3-12
Reading the AWR Report 3-13
Snapshots and Periods Comparisons 3-14
Compare Periods: Benefits 3-15
Compare Periods: Results 3-16
Compare Periods: Report 3-17
Compare Periods: Load Profile 3-18
Compare Periods: Top Events 3-19
Summary 3-20
Practice 3 Overview: Using AWR-Based Tools 3-21
4 Defining Problems
Objectives 4-2
Defining the Problem 4-3
Limit the Scope 4-4
Setting the Priority 4-5
Top Wait Events 4-6
Oracle Internal & Oracle Academy Use Only
v
Setting the Priority: Example 4-7
Top SQL Reports 4-8
Common Tuning Problems 4-9
Tuning Life Cycle Phases 4-11
Tuning During the Life Cycle 4-12
Application Design and Development 4-13
Testing: Database Configuration 4-14
Deployment 4-15
Production 4-16
Migration, Upgrade, and Environment Changes 4-17
ADDM Tuning Session 4-18
Performance Versus Business Requirements 4-19
Performance Tuning Resources 4-20
Filing a Performance Service Request 4-21
RDA Report 4-22
Monitoring and Tuning Tool: Overview 4-23
Summary 4-25
Practice 4 Overview: Identifying the Problem 4-26
5 Using Metrics and Alerts
Objectives 5-2
Metrics, Alerts, and Baselines 5-3
Limitation of Base Statistics 5-4
Typical Delta Tools 5-5
Oracle Database 11g Solution: Metrics 5-6
Benefits of Metrics 5-7
Viewing Metric History Information 5-8
Using EM to View Metric Details 5-9
Statistic Histograms 5-10
Histogram Views 5-11
Server-Generated Alerts 5-12
Database Control Usage Model 5-13
Setting Thresholds 5-14
Creating and Testing an Alert 5-15
Metric and Alert Views 5-16
View User-Defined SQL Metrics 5-17
Create User-Defined SQL Metrics 5-18
View User-Defined Host Metrics 5-19
Create User-Defined Host Metrics 5-20
Summary 5-21
Practice Overview 5: Working with Metrics 5-22
Oracle Internal & Oracle Academy Use Only
vi
6 Baselines
Objectives 6-2
Comparative Performance Analysis with AWR Baselines 6-3
Automatic Workload Repository Baselines 6-4
Moving Window Baseline 6-5
Baselines in Performance Page Settings 6-6
Baseline Templates 6-7
AWR Baselines 6-8
Creating AWR Baselines 6-9
Single AWR Baseline 6-10
Creating a Repeating Baseline Template 6-11
Managing Baselines with PL/SQL 6-12
Generating a Baseline Template for a Single Time Period 6-13
Creating a Repeating Baseline Template 6-14
Baseline Views 6-15
Performance Monitoring and Baselines 6-17
Defining Alert Thresholds Using a Static Baseline 6-19
Using EM to Quickly Configure Adaptive Thresholds 6-20
Changing Adaptive Threshold Settings 6-22
Summary 6-23
Practice 6: Overview Using AWR Baselines 6-24
7 Using AWR-Based Tools
Objectives 7-2
Automatic Maintenance Tasks 7-3
Maintenance Windows 7-4
Default Maintenance Plan 7-5
Automated Maintenance Task Priorities 7-6
Tuning Automatic Maintenance Tasks 7-7
ADDM Performance Monitoring 7-8
ADDM and Database Time 7-9
DBTime-Graph and ADDM Methodology 7-10
Top Performance Issues Detected 7-12
Database Control and ADDM Findings 7-13
ADDM Analysis Results 7-14
ADDM Recommendations 7-15
Database Control and ADDM Task 7-16
Changing ADDM Attributes 7-17
Retrieving ADDM Reports by Using SQL 7-18
Active Session History: Overview 7-19
Active Session History: Mechanics 7-20
Oracle Internal & Oracle Academy Use Only
vii
ASH Sampling: Example 7-21
Accessing ASH Data 7-22
Dump ASH to File 7-23
Analyzing the ASH Data 7-24
Generating ASH Reports 7-25
ASH Report Script 7-26
ASH Report: General Section 7-27
ASH Report Structure 7-28
ASH Report: Activity Over Time 7-29
Summary 7-30
Practice 7 Overview: Using AWR-Based Tools 7-31
8 Monitoring an Application
Objectives 8-2
What Is a Service? 8-3
Service Attributes 8-4
Service Types 8-5
Creating Services 8-6
Managing Services in a Single-Instance Environment 8-7
Everything Switches to Services 8-8
Using Services with Client Applications 8-9
Using Services with the Resource Manager 8-10
Services and Resource Manager with EM 8-11
Services and the Resource Manager: Example 8-12
Using Services with the Scheduler 8-13
Services and the Scheduler with EM 8-14
Services and the Scheduler: Example 8-16
Using Services with Parallel Operations 8-17
Using Services with Metric Thresholds 8-18
Changing Service Thresholds by Using EM 8-19
Services and Metric Thresholds: Example 8-20
Service Aggregation and Tracing 8-21
Top Services Performance Page 8-22
Service Aggregation Configuration 8-23
Service Aggregation: Example 8-24
Client Identifier Aggregation and Tracing 8-25
trcsess Utility 8-26
Service Performance Views 8-27
Summary 8-29
Practice 8 Overview: Using Services 8-30
Oracle Internal & Oracle Academy Use Only
viii
9 Identifying Problem SQL Statements
Objectives 9-2
SQL Statement Processing Phases 9-3
Parse Phase 9-4
SQL Storage 9-5
Cursor Usage and Parsing 9-6
SQL Statement Processing Phases: Bind 9-8
SQL Statement Processing Phases: Execute and Fetch 9-9
Processing a DML Statement 9-10
COMMIT Processing 9-12
Role of the Oracle Optimizer 9-13
Identifying Bad SQL 9-15
TOP SQL Reports 9-16
What Is an Execution Plan? 9-17
Methods for Viewing Execution Plans 9-18
Uses of Execution Plans 9-19
DBMS_XPLAN Package: Overview 9-20
EXPLAIN PLAN Command 9-22
EXPLAIN PLAN Command: Example 9-23
EXPLAIN PLAN Command: Output 9-24
Reading an Execution Plan 9-25
Using the V$SQL_PLAN View 9-26
V$SQL_PLAN Columns 9-27
Querying V$SQL_PLAN 9-28
V$SQL_PLAN_STATISTICS View 9-29
Querying the AWR 9-30
SQL*Plus AUTOTRACE 9-32
Using SQL*Plus AUTOTRACE 9-33
SQL*Plus AUTOTRACE: Statistics 9-34
SQL Trace Facility 9-35
How to Use the SQL Trace Facility 9-37
Initialization Parameters 9-38
Enabling SQL Trace 9-40
Disabling SQL Trace 9-41
Formatting Your Trace Files 9-42
TKPROF Command Options 9-43
Output of the TKPROF Command 9-45
TKPROF Output with No Index: Example 9-50
TKPROF Output with Index: Example 9-51
Generate an Optimizer Trace 9-52
Oracle Internal & Oracle Academy Use Only
ix
Summary 9-53
Practice Overview 9: Using Execution Plan Utilities 9-54
10 Influencing the Optimizer
Objectives 10-2
Functions of the Query Optimizer 10-3
Selectivity 10-5
Cardinality and Cost 10-6
Changing Optimizer Behavior 10-7
Using Hints 10-8
Optimizer Statistics 10-9
Extended Statistics 10-10
Controlling the Behavior of the Optimizer with Parameters 10-11
Enabling Query Optimizer Features 10-13
Influencing the Optimizer Approach 10-14
Optimizing SQL Statements 10-15
Access Paths 10-16
Choosing an Access Path 10-17
Full Table Scans 10-18
Row ID Scans 10-20
Index Operations 10-21
B*Tree Index Operations 10-22
Bitmap Indexes 10-23
Bitmap Index Access 10-24
Combining Bitmaps 10-25
Bitmap Operations 10-26
Join Operations 10-27
Join Methods 10-28
Nested Loop Joins 10-29
Hash Joins 10-31
Sort-Merge Joins 10-32
Join Performance 10-34
How the Query Optimizer Chooses Execution Plans for Joins 10-35
Sort Operations 10-37
Tuning Sort Performance 10-38
Reducing the Cost 10-39
Index Maintenance 10-40
Dropping Indexes 10-42
Creating Indexes 10-43
SQL Access Advisor 10-44
Table Maintenance for Performance 10-45
Oracle Internal & Oracle Academy Use Only
x
Table Reorganization Methods 10-46
Summary 10-47
Practice 10 Overview: Influencing the Optimizer 10-48
11 Using SQL Performance Analyzer
Objectives 11-2
Real Application Testing: Overview 11-3
Real Application Testing: Use Cases 11-4
SQL Performance Analyzer: Process 11-5
Capturing the SQL Workload 11-7
Creating a SQL Performance Analyzer Task 11-8
SQL Performance Analyzer: Tasks 11-9
Optimizer Upgrade Simulation 11-10
SQL Performance Analyzer Task Page 11-11
Comparison Report 11-12
Comparison Report SQL Detail 11-13
Tuning Regressing Statements 11-14
Preventing Regressions 11-16
Parameter Change Analysis 11-17
Guided Workflow Analysis 11-18
SQL Performance Analyzer: PL/SQL Example 11-19
SQL Performance Analyzer: Data Dictionary Views 11-21
Summary 11-22
Practice 11: Overview 11-23
12 SQL Performance Management
Objectives 12-2
Maintaining SQL Performance 12-3
Maintaining Optimizer Statistics 12-4
Automated Maintenance Tasks 12-5
Statistic Gathering Options 12-6
Setting Statistic Preferences 12-7
Restore Statistics 12-9
Deferred Statistics Publishing: Overview 12-10
Deferred Statistics Publishing: Example 12-12
Automatic SQL Tuning: Overview 12-13
SQL Statement Profiling 12-14
Plan Tuning Flow and SQL Profile Creation 12-15
SQL Tuning Loop 12-16
Using SQL Profiles 12-17
SQL Tuning Advisor: Overview 12-18
Oracle Internal & Oracle Academy Use Only
xi
Using the SQL Tuning Advisor 12-19
SQL Tuning Advisor Options 12-20
SQL Tuning Advisor Recommendations 12-21
Using the SQL Tuning Advisor: Example 12-22
Using the SQL Access Advisor 12-23
View Recommendations 12-25
View Recommendation Details 12-26
SQL Plan Management: Overview 12-27
SQL Plan Baseline: Architecture 12-28
Loading SQL Plan Baselines 12-30
Evolving SQL Plan Baselines 12-31
Important Baseline SQL Plan Attributes 12-32
SQL Plan Selection 12-34
Possible SQL Plan Manageability Scenarios 12-36
SQL Performance Analyzer and SQL Plan Baseline Scenario 12-37
Loading a SQL Plan Baseline Automatically 12-38
Purging SQL Management Base Policy 12-39
Enterprise Manager and SQL Plan Baselines 12-40
Summary 12-41
Practice 12: Overview Using SQL Plan Management 12-42
13 Using Database Replay
Objectives 13-2
Using Database Replay 13-3
The Big Picture 13-4
System Architecture: Capture 13-5
System Architecture: Processing the Workload 13-7
System Architecture: Replay 13-8
Capture Considerations 13-9
Replay Considerations: Preparation 13-10
Replay Considerations 13-11
Replay Options 13-12
Replay Analysis 13-13
Database Replay Workflow in Enterprise Manager 13-15
Capturing Workload with Enterprise Manager 13-16
Capture Wizard: Plan Environment 13-17
Capture Wizard: Options 13-18
Capture Wizard: Parameters 13-19
Viewing Capture Progress 13-20
Viewing Capture Report 13-21
Export Capture AWR Data 13-22
Oracle Internal & Oracle Academy Use Only
xii
Viewing Workload Capture History 13-23
Processing Captured Workload 13-24
Using the Preprocess Captured Workload Wizard 13-25
Using the Replay Workload Wizard 13-26
Replay Workload: Prerequisites 13-27
Replay Workload: Choose Initial Options 13-28
Replay Workload: Customize Options 13-29
Replay Workload: Prepare Replay Clients 13-30
Replay Workload: Client Connections 13-31
Replay Workload: Replay Started 13-32
Viewing Workload Replay Progress 13-33
Viewing Workload Replay Statistics 13-34
Packages and Procedures 13-36
Data Dictionary Views: Database Replay 13-37
Database Replay: PL/SQL Example 13-38
Calibrating Replay Clients 13-40
Summary 13-41
Practice 13: Overview 13-42
14 Tuning the Shared Pool
Objectives 14-2
Shared Pool Architecture 14-3
Shared Pool Operation 14-4
The Library Cache 14-5
Latch and Mutex 14-7
Latch and Mutex: Views and Statistics 14-9
Diagnostic Tools for Tuning the Shared Pool 14-11
AWR/Statspack Indicators 14-13
Load Profile 14-14
Instance Efficiencies 14-15
Top Waits 14-16
Time Model 14-17
Library Cache Activity 14-19
Avoid Hard Parses 14-20
Are Cursors Being Shared? 14-21
Sharing Cursors 14-23
Adaptive Cursor Sharing: Example 14-25
Adaptive Cursor Sharing Views 14-27
Interacting with Adaptive Cursor Sharing 14-28
Avoiding Soft Parses 14-29
Sizing the Shared Pool 14-30
Oracle Internal & Oracle Academy Use Only
xiii
Shared Pool Advisory 14-31
Shared Pool Advisor 14-33
Avoiding Fragmentation 14-34
Large Memory Requirements 14-35
Tuning the Shared Pool Reserved Space 14-37
Keeping Large Objects 14-39
Data Dictionary Cache 14-41
Dictionary Cache Misses 14-42
SQL Query Result Cache: Overview 14-43
Managing the SQL Query Result Cache 14-44
Using the RESULT_CACHE Hint 14-46
Using the DBMS_RESULT_CACHE Package 14-47
Viewing SQL Result Cache Dictionary Information 14-48
SQL Query Result Cache: Considerations 14-49
UGA and Oracle Shared Server 14-50
Large Pool 14-51
Tuning the Large Pool 14-52
Summary 14-53
Practice Overview 14: Tuning the Shared Pool 14-54
15 Tuning the Buffer Cache
Objectives 15-2
Oracle Database Architecture 15-3
Buffer Cache: Highlights 15-4
Database Buffers 15-5
Buffer Hash Table for Lookups 15-6
Working Sets 15-7
Tuning Goals and Techniques 15-9
Symptoms 15-11
Cache Buffer Chains Latch Contention 15-12
Finding Hot Segments 15-13
Buffer Busy Waits 15-14
Calculating the Buffer Cache Hit Ratio 15-15
Buffer Cache Hit Ratio Is Not Everything 15-16
Interpreting Buffer Cache Hit Ratio 15-17
Read Waits 15-19
Free Buffer Waits 15-21
Solutions 15-22
Sizing the Buffer Cache 15-23
Buffer Cache Size Parameters 15-24
Dynamic Buffer Cache Advisory Parameter 15-25
Oracle Internal & Oracle Academy Use Only
xiv
Buffer Cache Advisory View 15-26
Using the V$DB_CACHE_ADVICE View 15-27
Using the Buffer Cache Advisory with EM 15-28
Caching Tables 15-29
Multiple Buffer Pools 15-30
Enabling Multiple Buffer Pools 15-32
Calculating the Hit Ratio for Multiple Pools 15-33
Multiple Block Sizes 15-35
Multiple Database Writers 15-36
Multiple I/O Slaves 15-37
Use Multiple Writers or I/O Slaves 15-38
Private Pool for I/O Intensive Operations 15-39
Automatically Tuned Multiblock Reads 15-40
Flushing the Buffer Cache (for Testing Only) 15-41
Summary 15-42
Practice 15: Overview Tuning the Buffer Cache 15-43
16 Tuning PGA and Temporary Space
Objectives 16-2
SQL Memory Usage 16-3
Performance Impact 16-4
Automatic PGA Memory 16-5
SQL Memory Manager 16-6
Configuring Automatic PGA Memory 16-8
Setting PGA_AGGREGATE_TARGET Initially 16-9
Monitoring SQL Memory Usage 16-10
Monitoring SQL Memory Usage: Examples 16-12
Tuning SQL Memory Usage 16-13
PGA Target Advice Statistics 16-14
PGA Target Advice Histograms 16-15
Automatic PGA and Enterprise Manager 16-16
Automatic PGA and AWR Reports 16-17
Temporary Tablespace Management: Overview 16-18
Temporary Tablespace: Best Practice 16-19
Configuring Temporary Tablespace 16-20
Temporary Tablespace Group: Overview 16-22
Temporary Tablespace Group: Benefits 16-23
Creating Temporary Tablespace Groups 16-24
Maintaining Temporary Tablespace Groups 16-25
View Tablespace Groups 16-26
Monitoring Temporary Tablespace 16-27
Oracle Internal & Oracle Academy Use Only
xv
Temporary Tablespace Shrink 16-28
Tablespace Option for Creating Temporary Table 16-29
Summary 16-30
Practice Overview 16: Tuning PGA Memory 16-31
17 Automatic Memory Management
Objectives 17-2
Oracle Database Architecture 17-3
Dynamic SGA 17-4
Granule 17-5
Memory Advisories 17-6
Manually Adding Granules to Components 17-7
Increasing the Size of an SGA Component 17-8
Automatic Shared Memory Management: Overview 17-9
SGA Sizing Parameters: Overview 17-10
Dynamic SGA Transfer Modes 17-11
Memory Broker Architecture 17-12
Manually Resizing Dynamic SGA Parameters 17-13
Behavior of Auto-Tuned SGA Parameters 17-14
Behavior of Manually Tuned SGA Parameters 17-15
Using the V$PARAMETER View 17-16
Resizing SGA_TARGET 17-17
Disabling Automatic Shared Memory Management 17-18
Configuring ASMM 17-19
SGA Advisor 17-20
Monitoring ASMM 17-21
Automatic Memory Management: Overview 17-22
Oracle Database Memory Parameters 17-24
Automatic Memory Parameter Dependency 17-25
Enabling Automatic Memory Management 17-26
Monitoring Automatic Memory Management 17-27
DBCA and Automatic Memory Management 17-29
Summary 17-30
Practice 17: Overview Using Automatic Memory Tuning 17-31
Oracle Internal & Oracle Academy Use Only
xvi
18 Tuning Segment Space Usage
Objectives 18-2
Space Management 18-3
Extent Management 18-4
Locally Managed Extents 18-5
Large Extents: Considerations 18-6
How Table Data Is Stored 18-8
Anatomy of a Database Block 18-9
Minimize Block Visits 18-10
The DB_BLOCK_SIZE Parameter 18-11
Small Block Size: Considerations 18-12
Large Block Size: Considerations 18-13
Block Allocation 18-14
Free Lists 18-15
Block Space Management 18-16
Block Space Management with Free Lists 18-17
Automatic Segment Space Management 18-19
Automatic Segment Space Management at Work 18-20
Block Space Management with ASSM 18-22
Creating an Automatic Segment Space Management Segment 18-23
Migration and Chaining 18-24
Guidelines for PCTFREE and PCTUSED 18-26
Detecting Migration and Chaining 18-27
Selecting Migrated Rows 18-28
Eliminating Migrated Rows 18-29
Shrinking Segments: Overview 18-31
Shrinking Segments: Considerations 18-32
Shrinking Segments by Using SQL 18-33
Segment Shrink: Basic Execution 18-34
Segment Shrink: Execution Considerations 18-35
Using EM to Shrink Segments 18-36
Table Compression: Overview 18-37
Table Compression Concepts 18-38
Using Table Compression 18-39
Summary 18-40
19 Tuning I/O
Objectives 19-2
I/O Architecture 19-3
File System Characteristics 19-4
I/O Modes 19-5
Oracle Internal & Oracle Academy Use Only
xvii
Direct I/O 19-6
Bandwidth Versus Size 19-7
Important I/O Metrics for Oracle Databases 19-8
I/O Calibration and Enterprise Manager 19-10
I/O Calibration and the PL/SQL Interface 19-11
I/O Statistics: Overview 19-13
I/O Statistics and Enterprise Manager 19-14
Stripe and Mirror Everything 19-16
Using RAID 19-17
RAID Cost Versus Benefits 19-18
Should I Use RAID 1 or RAID 5? 19-20
Diagnostics 19-21
Database I/O Tuning 19-22
What Is Automatic Storage Management? 19-23
Tuning ASM 19-24
How Many Disk Groups per Database 19-25
Which RAID Configuration for Best Availability? 19-26
ASM Mirroring Guidelines 19-27
ASM Striping Granularity 19-28
What Type of Striping Works Best? 19-29
ASM Striping Only 19-30
Hardware RAID Striped LUNs 19-31
ASM Guidelines 19-32
ASM Instance Initialization Parameters 19-33
Dynamic Performance Views 19-34
Monitoring Long-Running Operations by Using V$ASM_OPERATION 19-36
ASM Instance Performance Diagnostics 19-37
ASM Performance Page 19-38
Database Instance Parameter Changes 19-39
ASM Scalability 19-40
Summary 19-41
20 Performance Tuning Summary
Objectives 20-2
Necessary Initialization Parameters with Little Performance Impact 20-3
Important Initialization Parameters with Performance Impact 20-4
Sizing Memory Initially 20-6
Database High Availability: Best Practices 20-7
Undo Tablespace: Best Practices 20-8
Temporary Tablespace: Best Practices 20-9
General Tablespace: Best Practices 20-11
Internal Fragmentation Considerations 20-12
Oracle Internal & Oracle Academy Use Only
xviii
Block Size: Advantages and Disadvantages 20-13
Automatic Checkpoint Tuning 20-14
Sizing the Redo Log Buffer 20-15
Sizing Redo Log Files 20-16
Increasing the Performance of Archiving 20-17
Automatic Statistics Gathering 20-19
Automatic Statistics Collection: Considerations 20-20
Commonly Observed Wait Events 20-21
Additional Statistics 20-22
Top 10 Mistakes Found in Customer Systems 20-23
Summary 20-25
Appendix A: Practices and Solutions
Appendix B: Using Statspack
Index -
Mapping Multiple VLANs to Multiple SSIDs as one-one in WLC 5508 via H-REAP?
Hi All,
Can anyone please show me how to map a SSID/WLAN ID to a local vlan of a LAP in WLC 5508 using H-REAP local switched? The reason of doing this is to separate Data subnet/traffic from Voice as currently all 7925 handsets using same SSID as PCs. I would like to create two VLANs on APs and map them to two SSIDs. I could not see any option in WLC5508 to do this. Also when I change the AP mode from H-REAP to local and configuring sub interface using dot1q on the interface Gi0 then unable write running-config to startup-config because I get NVRAM Verification Failed as WLC protects any local changes on any registered LAP at NVRAM.
Your help is much appreciated.Mehdi:
I am talking about HREAP groups, not AP groups.
You can not achieve what you want if you are using the same SSID on same AP with only a WLC (same AP with same SSID is mapped to different VLANs). You may need a radius server to dynamically assign a VLAN to the clients if you are using same SSID for data and voice.
If you are using different SSIDs for voice and data, you can map each SSID to its corresponding VLAN on the remote site using the VLAN mapping option under HREAP tab in the AP config page.
You can not configure the AP from its console. Lightweight APs can only be configured from the controller. (a few exceptions are available that do not apply here) .
HTH
Amjad
Rating useful replies is more useful than saying "Thank you" -
DIFFRENT SUBNET IS POSSIBLE OR NOT FOR ONE VLAN
Hi ,
i have a client they have main office and some 10 branches connected via 1 mbps link .
We put new WLC 5508 in main office (software version 6.0.199.4) and i connected braches 1142 ap's and they registerd with WLC .
Now client have 3 ssid 1> scanners 2>network 3> guest
They want to show same ssid in all branches no single change requried on ssid .
suppose the scanners connecte in main offcie via mac filtering and they will get ip range 192.168.1.0
and when from branch a there they have different range they should get 172.16816.0 range .
the ssid network will be acs authentication and ssid guest will be preshared key . All the ssid ip range will be differnt in branches but they want same ssid . Is it possible.( Can any body give me the steps )
Also one more issue am facing is . in MAIN OFFICE switch vlan 600 for ssid scanners range 192.168.1.0
and in branch same vlan 600 for ssid scanners ip range is 172.168.16.0 . so am getting some error when i save in WLAN SSID enable and save .Hi,
If you have all your WLANs centrally switched then you can use AP groups:
http://www.cisco.com/en/US/tech/tk722/tk809/technologies_configuration_example09186a008073c723.shtml
If you have local switching enabled for the SSID then you may need to use HREAP groups. You can override the VLAN in each branch office to use a local significant VLAN. You need DHCP server in each bran office for this.
Here are some useful links:
http://www.cisco.com/en/US/docs/wireless/controller/7.0/configuration/guide/c70hreap.html#wp1133688
http://www.cisco.com/en/US/products/ps10315/products_tech_note09186a0080736123.shtml#HREAPGROUPS
HTH
Amjad
Maybe you are looking for
-
I recently got a new 30gb video ipod and when i went to plug it in to add songs, it said i needed to restore it. So i clicked restore and then it says 'there is a problem downloading the IPOD software for the IPOD'. I think it might be the place wher
-
New Airport Update no longer works with my Verizon supplied DSL WiFi
While at work today (03-28-08) I allowed the new Airport software update to install. This was done over an ethernet connection. I arrived home, my Macbook will not recognize the Westel DSL modem/WiFi that I've had for some time and was provided by Ve
-
Problem with INVOIC01 idoc.
Hi, We are receing IDOC INVOIC01 (Vendor invoice in MM). My problem is we have to identify the segment and field where barcode number can be populated in this inbound idoc. Also how to pass this barcode number to MIRO/MIRA. Can anyone could throw som
-
IT Service Management (Solution Manager - Configuration)
Dear Expert! We are using SM 7.1 SP11. The System Preparation and Basic Configuration has been done Now, we want to configure the IT Service Management under the Solution Manager Configuration. There are some steps are manual in the standard configur
-
SAP NOTE 1606246 in Error - RFIDITVCL: 3000 Euro Communication Italy Legal
Hi Guys, I am working on italy legal requirement and implemented note 1606246,but as i have raised an OSS to sap they have said they are still in the process of implementing the changes to the note.' Can you all please let me know what is all your st