Load Balancing - Wireless

Similar Messages

• Question about Load Balancing Wireless connections using WLC- F5- ISE

  Hi all,
  Can anyone give me some orientation how the radius auth process/handshake between the WLC and ISE changes once the F5 is installed in the middle in order to perform load balancing?
  We can do some kind of load balancing by configuring different radius servers on each WLC for which, I must configure the same shared secret in the WLC and ISE so the radius request/accept could be processed.
  Now that we have the F5 in the middle, do I need to create/configure the same shared secret in the F5 so radius transactions can be processed by this device?. Based on the following link, I must configure the F5 in the ISE like another NAD device (similar to the WLC) but I do not know if this additional configuration in the ISE includes the Auth parameter to be added in the ISE NAD (F5) configuration.
  How to properly use a load balancer in Cisco's Identity Services Engine
  http://www.networkworld.com/community/blog/load-balancing-cisco-identity-services-engine
  Our sheme is shown next,

  When you covert the pair into SSO, all the APs will go to the ACTIVE unit.  No unit will "live" in the standby unit because this unit will "share" the AP-support license between the two.
  This is the first step you need to get sorted.  Send an email to [email protected] and give them the exact details of what you want to do (i. e.  AP SSO) and then provide the serial number of your nominated active WLC and the serial number of your nominated standby WLC.

• WLC - Aggressive Load Balancing?

  Hello,
  The Wirless LAN Network bulit is as follows -
  1. 1 x 4404 WLC
  2. 40 x LWAPP 1131AG Access Points
  3. Windows Clients used by the Laptop Clients.
  4. Only one Wireless VLAN across the Capmus network - hence AP's, WLC & Clients are all in one VLAN / IP Subnet.
  5. No Access Point Group is created.
  6. Aggressive Load Balancing is enabled allowing 15 Clients as max connection per Access Point.
  Problem facing -
  1. Tried configuring the Aggressive Loadbalancing allowing only 2 x Clients per AP. But noticed that the 3rd Client connecting to the same AP as of the previous 2 Clients have connected. 3rd client is not associating to a different AP which is nearby.
  Please can one help me, if i'm configuring & testing Aggressive Load Balancing in the right way!
  Regards,
  Keshava Raju

  AMR is on target. In fact I just completed 20 hours worth of testing with variuos clients with ALB for a white paper I am doing. Code 17 isnt honored by most clients and is only sent 1 time from the AP. The clients will contiue to attempt to associate to the AP and the AP will allow them on.
  Here is a peek of my white paper "still in draft"
  WLC - Cisco WLC Aggressive Load Balancing; What is it and where did it go in 6.0!
  I've spent the majority of my WLC experience at code level 4.2. Not by choice really, more
  based on the fact that 4.2 is pretty darn stable and it is the only safe harbor to date for the Cisco WLC. Healthcare and Enterprise enviroments are typically slow to move on upgrades, especially when things are operating fine. 
  Since my latest project involves the deployment of hundreds of Cisco 1142s @ location grade, it required that I move to later code to support the 1142 access points. After much research, conversations with our
  local Cisco Wireless SE, conversation with peers at other healthcare organizations, and direct contact with the aware team I had decided that 6.0.188.0 was a release that was of great interest.
  As I start to get fimilar with the new code I am starting to see that things got moved around a little. One of the items is Aggressive Load Balancing. If you aren't fimilar with Aggressive Load Balancing (ALB) you definitly need to be and let me share why.
  First lets look at what ALB is and how it works and then we will dive into the differences between the 4.2 code and the new options 6.0 gives us. ALB when enabled, allows the Cisco WLC to load balance wireless clients on access points that are joined to the same controller. “Key word here – same controller”. You can configure the load balancing window globally in the controller. What is the load balancing window you ask? Well is the maximum number of clients that should be allowed on the access point BEFORE it will start to load balance.
  Lets assume for a moment you have an access point with 5 clients already attached. When client #6 sends association request to the access point the access point will kindly respond with an associaton response frame with the reason code of 17. The wireless client will see reason code 17 in the association response and will kindly find other access points to associate with. However, some devices will ignore this frame and yet still continue to try and associate to the access point. Note: The Cisco WLC will ONLY send 1 reassociation frame with a reason code of 17. It doesn’t flood the medium / client with multiple frames.
  Its up to the client to honor this information and move on. But I can tell you from my experience and testing this isn’t always the case.
  By default, 4.2 and 6.x both have a load balancing window of (5). Lets look at an example.
  The window setting controls when aggressive load−balancing starts. With a window setting of five, for
  example, all clients after the sixth client are load−balanced.
  I know, what is the reason code talk, right. Lets cover this as well. If you dive into the 802.11 frames you will see “Reason Codes”. When a client sees the reason code of “17”, it indicates to the client that the access point is busy and the client should look else where.
  yada yada yada
  I will post the complete paper on my site: my80211.com in the next week or so ...

• Load-Balancing between Foreign and two Anchors

  Hi, we have two foreign controllers (one active, one standby) and two anchor controllers. All APs are connected to the active foreign controller. The layer 3 networks for the wlan clients on both anchors are different for the same SSID. SSID: Internet, anchor 1: Subnet A, anchor 2: Subnet B. So when a client is getting anchored to Anchor 1, the clients will get an ip from subnet A and when the client is getting anchored to anchor 2, the client will get an ip from subnet B.
  This is so far not a big problem because we only have a few accesspoints in some rooms. But what will happen, when we have a full covered wlan and the client roams from one AP to the other AP? Is there a possibility, that the client will anchored to a different anchor while roaming? I think this will result in a lack of connectivity because without a real disconnect the client will not ask for a new IP address.
  Other question: Is it possible to disable this load-balancing between anchor controllers? Or can i make a client sticky to only one anchor as long as an access-session is established?
  All controllers are 5760 with 3.3.3 software.

  Hi acontes, 
  It's an interesting question. 
  In this case, if all AP's are on WLC-A and there is no possibility that an L3 inter-subnet roam will occur between WLC-A and WLC-B, I would just forward WLC-A to Anchor A and WLC-B (in the event of fail over) to Anchor B (if Anchors reside on different subnets). If you must specify Anchor A and Anchor B on each WLC for redundancy purposes, it's important to understand the guidelines and limitations with regard to Foreign / Anchor Design.  
  As Scott mentioned, the limitation with Anchoring design is that there is no primary / secondary configuration for an Anchor on the Foreign WLC.
  If WLC-A has two entries (1) for Anchor-A and (2) for Anchor-B, the EoIP tunnels are establish and load-balancing occurs in a round robin fashion.
  Keep in mind the following with regard to guest N+1 redundancy:
  •A given foreign controller load balances wireless client connections across the list of anchor controllers configured for the guest WLAN. There is currently no method to designate one anchor as primary with one or more secondary anchors.
  •Wireless clients that are associated with an anchor WLC that becomes unreachable are re-associated with another anchor defined for the WLAN. When this happens, assuming web authentication is being used, the client is redirected to the web portal authentication page and required to re-submit their credentials.
  Since traffic is transported at Layer 2 via EoIP, the first point at which DHCP services can be implemented is either locally on the anchor controller or the controller can relay client DHCP requests to an external server. Since the IP address directly correlates to the DMZ subnet or the interface where the traffic egresses, it is possible for some clients to get IP's from both Subnet A or Subnet B in the event that WLC-A is building EoIP to both anchors.
  1) What happens if my clients roam?
  Nothing... since all AP's are on WLC-A, it's Intra-Controller Roaming
  Each controller supports same-controller client roaming across access points managed by the same controller. This roaming is transparent to the client as the session is sustained, and the client continues using the same DHCP-assigned or client-assigned IP address. The controller provides DHCP functionality with a relay function. Same-controller roaming is supported in single-controller deployments and in multiple-controller deployments.
  Would it be better to choose the same DHCP Pool on both anchors?
  It's probably better to have redundant anchors on the same subnet, but it's not required. 
  3) How would you design this :-)
  WLC-A <--EoIP--> Anchor A (DHCP Pool A)
  WLC-A <--EoIP--> Anchor B (DHCP Pool A)
  It's important to remeber what Scott mentioned about the lack of a primary / secondary relationship. If multiple controllers are added as mobility anchors for a particular WLAN on a foreign controller, the foreign controller internally sorts the controller by their IP address. The controller with the lowest IP address is the first anchor. For example, a typical ordered list would be 172.16.7.25, and 172.16.7.28. If the first client associates to the foreign controller's anchored WLAN, the client database entry is sent to the first anchor controller in the list, the second client is sent to the second controller in the list, and so on, until the end of the anchor list is reached. The process is repeated starting with the first anchor controller.
  If any of the anchor controller is detected to be down, all the clients anchored to the controller are deauthenticated, and the clients then go through the authentication/anchoring process again in a round-robin manner with the remaining controller in the anchor list. This functionality is also extended to regular mobility clients through mobility failover. This feature enables mobility group members to detect failed members and reroute clients.

• Wlc unified, load balancing

  removed

  Hello,
  Aggressive load-balancing on the WLC allows the LAPs to load-balance       wireless clients across APs in an LWAPP system.
  Please take a look at the following cisco doc which illustrates aggressive load-balancing on the WLC:
  http://www.cisco.com/en/US/products/ps6366/products_tech_note09186a00809c2fc3.shtml

• Wireless clients load balancing on the APs on WLC 4404

  Hi Experts,
  I'm just wondering if the WLC 4404 with firmware 4.2.207.0 can load balance the wireless clients on different WAPs. Let's say that an AP is already handling 15 Wireless devices. When the 16th is trying to join, the controller somehow puts it on another nearby AP, even the signal from this AP is weaker. I heard the similar feature on other Wireless solution vendors. I'm just wondering if Cisco has the similar feature or not.
  Thanks!

  Yes it is known as aggressive load balancing sending a code 17 making the wireless client to loook at another nearby AP.
  here it is the documentation:
  http://www.cisco.com/en/US/products/ps6366/products_tech_note09186a00809c2fc3.shtml

• Dual wireless/ Load Balancing/ Link Aggregation

  Hi all,
  I've been reading up on this topic all day, with multiple Google and Apple searches, but haven't found the exact answer to this query. There was another post on this forum http://discussions.apple.com/thread.jspa?threadID=1660762 which was vaguely similar.
  Basically I'm looking to experiment with combining 2 wireless connections, and therefore 2 seperate internet connections into one Mac.
  I have seen suggestions of using a couple of wireless -> ethernet bridges, since Leopard supports Link Aggregation of ethernet devices. But the first question I have is: since I use a 3rd party wireless adaptor (Netgear wg111v3 USB dongle), it already shows up in Network Preferences as an Ethernet port. Leopard treats it as an actual ethernet device, hence is oblivious to the fact it is a wireless adaptor. Since Leopard thinks it's an ethernet port, could I use a second wireless dongle and then use Link Aggregation on them both?
  Additionally, if that idea were to work, would it then be possible to connect each wireless adaptor to a seperate wireless network, or would they both have to connect to the same access point?
  My DSL connection is roughly 512k on a good day, but I find this bandwidth to be choked when someone else at home is streaming videos etc. So in principle my idea was to have one connection using the regular DSL line as usual, plus connect the secondary wireless to my friend's wireless over the road when needed (and yes he's already agreed to my use since he rarely accesses the net). Therefore, giving a total theoretical bandwidth of 512k x2.
  Since I aim for a load-balancing idea (spreading traffic over both connections), the main issue I can forsee is that this Mac will have problems routing traffic with both IPs since I read somewhere else that DNS problems might occur.It seems relatively easy to use Terminal to add a default route for specific destinations (e.g. all traffic to apple.com out of one interface, all traffic to yahoo.com out the other). However, I wondered if web traffic could be forwarded out one connection, whilst email traffic goes through the other. Alternatively, it would be great if web traffic could be "halved" and sent out both wireless connections simultaneously, though I don't think there's an easy way to do this (it would just be a nice feature if possible).
  Your thoughts and advice on the matter would be much appreciated, and I'm going to continue experimenting with various ideas and see what I come up with.

  Hi all,
  I've been reading up on this topic all day, with multiple Google and Apple searches, but haven't found the exact answer to this query. There was another post on this forum http://discussions.apple.com/thread.jspa?threadID=1660762 which was vaguely similar.
  Basically I'm looking to experiment with combining 2 wireless connections, and therefore 2 seperate internet connections into one Mac.
  I have seen suggestions of using a couple of wireless -> ethernet bridges, since Leopard supports Link Aggregation of ethernet devices. But the first question I have is: since I use a 3rd party wireless adaptor (Netgear wg111v3 USB dongle), it already shows up in Network Preferences as an Ethernet port. Leopard treats it as an actual ethernet device, hence is oblivious to the fact it is a wireless adaptor. Since Leopard thinks it's an ethernet port, could I use a second wireless dongle and then use Link Aggregation on them both?
  Additionally, if that idea were to work, would it then be possible to connect each wireless adaptor to a seperate wireless network, or would they both have to connect to the same access point?
  My DSL connection is roughly 512k on a good day, but I find this bandwidth to be choked when someone else at home is streaming videos etc. So in principle my idea was to have one connection using the regular DSL line as usual, plus connect the secondary wireless to my friend's wireless over the road when needed (and yes he's already agreed to my use since he rarely accesses the net). Therefore, giving a total theoretical bandwidth of 512k x2.
  Since I aim for a load-balancing idea (spreading traffic over both connections), the main issue I can forsee is that this Mac will have problems routing traffic with both IPs since I read somewhere else that DNS problems might occur.It seems relatively easy to use Terminal to add a default route for specific destinations (e.g. all traffic to apple.com out of one interface, all traffic to yahoo.com out the other). However, I wondered if web traffic could be forwarded out one connection, whilst email traffic goes through the other. Alternatively, it would be great if web traffic could be "halved" and sent out both wireless connections simultaneously, though I don't think there's an easy way to do this (it would just be a nice feature if possible).
  Your thoughts and advice on the matter would be much appreciated, and I'm going to continue experimenting with various ideas and see what I come up with.

• Unequal Load Balancing with EIGRP over 4 Wireless networks

  We are trying to load-balance on 4 interfaces that have unequal bandwidths. The setup looks like this
  8 Computers -> Empty Config Switch -> 3560 Router\Switch -> 4x Wireless Radios on different frequencies - networks -> 3560 Router\Switch->Empty Config Switch -> 8 Computers
  We have EIGRP setup and the bandwidths defined, and the routes are showing proper share counts, but once we start adding traffic to the network, they all jump on one of the links. The config and everything looks right, its just not working. I have tried switching to different cef algorithms. Removed the vlans . I made them equal cost and they did the same thing. Its like EIGRP does not want to load balance.
  When i did this config with static routes or as OSPF, it actually load balanced them, but I'm stuck with a 1:1 share ratio. If i could control the ratio, then that would be an acceptable solution.
  Any ideas on what could be causing this?
  Code:
  Routing entry for 192.168.104.0/24
    Known via "eigrp 10", distance 90, metric 13312, type internal
    Redistributing via eigrp 10
    Last update from 192.168.2.4 on Vlan2, 00:04:25 ago
    Routing Descriptor Blocks:
    * 192.168.9.4, from 192.168.9.4, 00:04:25 ago, via Vlan9
        Route metric is 51712, traffic share count is 31
        Total delay is 20 microseconds, minimum bandwidth is 50000 Kbit
        Reliability 255/255, minimum MTU 1500 bytes
        Loading 1/255, Hops 1
      192.168.5.4, from 192.168.5.4, 00:04:25 ago, via Vlan5
        Route metric is 13312, traffic share count is 120
        Total delay is 20 microseconds, minimum bandwidth is 200000 Kbit
        Reliability 255/255, minimum MTU 1500 bytes
        Loading 1/255, Hops 1
      192.168.3.4, from 192.168.3.4, 00:04:25 ago, via Vlan3
        Route metric is 26112, traffic share count is 61
        Total delay is 20 microseconds, minimum bandwidth is 100000 Kbit
        Reliability 255/255, minimum MTU 1500 bytes
        Loading 1/255, Hops 1
      192.168.2.4, from 192.168.2.4, 00:04:25 ago, via Vlan2
        Route metric is 13312, traffic share count is 120
        Total delay is 20 microseconds, minimum bandwidth is 200000 Kbit
        Reliability 255/255, minimum MTU 1500 bytes
        Loading 1/255, Hops 1
  3560_Switch_1#show int Fa 0/1 | inc packets/sec
    5 minute input rate 0 bits/sec, 0 packets/sec
    5 minute output rate 0 bits/sec, 0 packets/sec
  3560_Switch_1#show int Fa 0/2 | inc packets/sec
    5 minute input rate 0 bits/sec, 0 packets/sec
    5 minute output rate 0 bits/sec, 0 packets/sec
  3560_Switch_1#show int Fa 0/3 | inc packets/sec
    5 minute input rate 17111000 bits/sec, 2545 packets/sec
    5 minute output rate 13872000 bits/sec, 2251 packets/sec
  3560_Switch_1#show int Fa 0/4 | inc packets/sec
    5 minute input rate 0 bits/sec, 0 packets/sec
    5 minute output rate 0 bits/sec, 0 packets/sec
  3560_Switch_1#show ip cef exact-route 192.168.101.57 192.168.104.57
  192.168.101.57 -> 192.168.104.57 => IP adj out of Vlan5, addr 192.168.5.4
  Here is the config.
  Code:
  ip cef load-sharing algorithm universal 00123456
  interface FastEthernet0/1
  switchport access vlan 2
  bandwidth 200000
  delay 1
  spanning-tree portfast
  interface FastEthernet0/2
  switchport access vlan 3
  bandwidth 200000
  delay 1
  spanning-tree portfast
  interface FastEthernet0/3
  switchport access vlan 5
  bandwidth 200000
  delay 1
  spanning-tree portfast
  interface FastEthernet0/4
  switchport access vlan 9
  bandwidth 200000
  delay 1
  spanning-tree portfast
  interface GigabitEthernet0/1
  description USER PORT
  switchport access vlan 100
  spanning-tree portfast
  interface Vlan2
  bandwidth 200000
  ip address 192.168.2.1 255.255.255.0
  delay 1
  interface Vlan3
  bandwidth 100000
  ip address 192.168.3.1 255.255.255.0
  delay 1
  interface Vlan5
  bandwidth 200000
  ip address 192.168.5.1 255.255.255.0
  delay 1
  interface Vlan9
  bandwidth 50000
  ip address 192.168.9.1 255.255.255.0
  delay 1
  interface Vlan100
  description User Data
  ip address 192.168.101.1 255.255.255.0
  router eigrp 10
  maximum-paths 8
  variance 15
  network 192.168.2.0
  network 192.168.3.0
  network 192.168.5.0
  network 192.168.9.0
  network 192.168.101.0

  Yup, that was the first cef algorithm I had tried.   ip cef load-sharing algorithm include-ports source destination
  I tried all of the different types.
  Also, I was sending data trough iperf from 4 computers + 1 comp steaming video on one network to 5 computers on another network.  In any case of source or destination, it should have switched over.  The odds of it all going on Vlan 5 is ~ 0.6%   Restarting the router sometimes places it all on a different vlan, but in any case its all or nothing.   

• Load Balance 2 Wireless Controllers?

  Hi Guys,
  We are running 2 Cisco wireless controllers here..I believe a 4400 and a 5500..
  All our WAPS and Clients are going to the one Individual Controller..Is it possible to load balance all waps/clients between these?
  Thanks
  James

  I support this answer. If you plugged your WLC with all ports on LAG, what are you exactly load balancing ? Nothing will be faster by splitting APs between the 2 WLCs.
  In case you anyway split the APs between the 2 WLCs, don't go salt 'n pepper (i.e. if you have 2 APs in a corridor, having them on a different wlc) because that means that every roaming between APs will be inter-WLC roaming. Overhead for nothing. It's best to cut your building in 2 and one are is on wlc1 and the other on wlc2.
  While inter-WLC roaming usually works fine and should not cause trouble, it's overhead to go for that while you can have all APs on 1 WLC.
  Nicolas
  ===
  Don't forget to rate answers that you find useful

• Wireless Bridge Load Balancing

  Is it possible to configure two 1300 series bridges at one location, each handling a bridge link to another location to BOTH backup and load balance for each other should one of them fail?

  Hi,
  You can achieve this with quiet a few options -
  1) Routing - You can configure the two routes with same AD to achieve Load Balancing and failover. Care should be taken be cause connectivity between router and bridge would be ethernet and if the radio link fails router would never come to know about this failure and will keep sending the traffic on the failed link. Usee SAA probes with ICMP to track the link failure.
  2) You can configure etherchannel between two switches and achieve load balancing + failover.
  >> Sushil

• ISE 1.2 - Multiple NICs/Load Balancing for DHCP Probe

  Hello guys
  Just prepping an ISE 1.2 patch 8 setup in our organization. I am going for the virtual appliances with multiple NICs. It will be a distributed deployment with 4 x PSNs behind a load balancer and there is no requirement for wireless or guest user at the moment. I've got 2 points I will like to get some guidance on:
  Our DC has a dedicated mgmt network and I plan to IP the gig0 interface of the PANs, MNTs and PSNs from this subnet. All device admin, clustering, config replication, etc will be over this interface. However, RADIUS/probe/other user traffic to the ISE PSNs will be over the gig1 interface which will be addressed from another L3 network. Is this a supported configuration in ISE?
  I intend to use the DHCP probe as part of device profiling and will ideally like to have just an additional ip helper to add to our switch SVI config. Also, it will appear that WLCs can only be configured for 2 DHCP servers for a given network so another consideration for when we bringing our WLAN in scope. We however use ACE load balancers within our DC and from what I have read, they do not support DHCP load balancing. Are there any workarounds to using the DHCP probe with multiple PSNs without having to add each node as an ip helper/DHCP server on the NADs?
  Thanks in advance
  Sayre

  Hello Sayre-
  For Question #1:
  Management is restricted to GigabitEthernet 0 and that cannot be changed so you should be good there
  You can configure Radius and Profiling to be enabled on other interfaces
  Even though you are not using guest services yet, you can dedicate an interface just for that. As a result, you can separate guest traffic completely from your production network
  Take a look at this link for more info:
  http://www.cisco.com/c/en/us/td/docs/security/ise/1-2/installation_guide/ise_ig/ise_app_c-ports.html
  For Question #2
  If you are using a Cisco WLC and running code 7.4 and newer you don't need to mess with the IP helper configurations. 
  The controller can be configured to act as a collector for client profiling and interact with the DHCP thread along with the RADIUS accounting task that is running on the controller. The controller receives a copy of the DHCP request packet sent from the DHCP thread and parses the DHCP packet for two options:
  –Option 12—HostName of the client
  –Option 60—The Vendor Class Identifier
  After this information is gathered from the DHCP_REQUEST packet, a message is formed by the controller with these option fields and is sent to the RADIUS accounting thread, which is in turn transmitted to the ISE in the form of an interim accounting message.
  Both DHCP and HTTP profiling settings are located under the "Advanced" configuration tab in the WLC
  On the other hand, you can also use Anycast for profiling. You can check out some of Cisco Live's sessions for more info on that. Here is one that is from a couple of years (There are more recent ones that are available as well):
  http://www.alcatron.net/Cisco%20Live%202013%20Melbourne/Cisco%20Live%20Content/Security/BRKSEC-3040%20%20Advanced%20ISE%20and%20Secure%20Access%20Deployment.pdf
  I hope this helps!
  Thank you for rating helpful posts!

• Load Balance guest Internet access via two different DMZ zones at two sites

  Hi Sir,
  My customer has the following unified wireless guest access requirement:
  - There are 2 internet links and dmz zones at two different locations, Site A and Site B
  - Data centre is at Site A
  - WiSM is proposed to be installed at the Cat 6500 in Site A
  - Lightweight AP are distributed across Site A, Site B and other branches
  - Only one anchor WLC is proposed at Site A, DMZ zone to provide guest internet access
  My customer would like to load balance the guest via the two internet link at Site A and Site B but with the same SSID across all locations. Can it be done since only one anchor at Site A? How about puttting another anchor WLC at Site B, DMZ zone? But how can i establish two EoIP tunnel to two different anchor WLC from a single WiSM?
  Thanks for your help
  Delon

  You can... but you can't control where the traffic will flow. The wlc will determine which DMZ wlc it will use. The wlc will load balance, but traffic in site A might go to site B. I currently have deployed that senerio in multiple client installations....

• Set up for TP Link Load Balancer model TL-R470T+

  How to configure TL-R470T+ load balancer? 
  This topic first appeared in the Spiceworks Community

  The default ip address for managment of this router is 192.168.1.253
  HOWEVER  this access point does not have DHCP turned on by default so you cant just connect (wired or wireless) and browse to that address!!!!
  To get in intially you must assign yourself and address like 192.168.1.5, with a subnet mask of 255.255.255.0.
  You dont have to put in the gateway but this will be 192.168.1.253.
  So once you have done this you will be able to browse to 192.168.1.253 to setup the device.
  unfortunatley these are usualy in chinese, which i dont speak so i cant help you there.
  The default user and password is admin all lower case.
  Once you into the device and have learnt chinese, you can then turn on dhcp and you will be assigned ip addresses automagically and can turn your adapter back to dhcp.
  Good luck

• Guest N+1 redundancy & load balancing in seperate data centers

  I need assistance in aquiring documentation to setup N+1 redundancy & load balancing between two seperate guest anchor controllers installed in seperate data centers. Can you explaing how it should be setup or point me in the right direction for documentation? If you can't point me in the right direction to aquire documentation; can you answer the following questions?
  1) How do I setup my mobility groups on my guest anchor controllers installed in the DMZ? Should both guest anchor's be in the same mobility group.
  2) Do both guest anchors share the same virtual IP or do they need to be seperate (DMZ01 - 1.1.1.1 / DMZ02 - 2.2.2.2)? I think seperate!
  3) Are there any configuration parameters on the guest anchors for load balancing?
  4) Do either on of the guest anchors need to be setup as a master controller? I'm not sure?
  5) Are there any configuration parameters on the foreign controllers for load balancing?
  6) How do I setup my foreign controllers? Should both guest controllers be added to the mobility group on the foreigh controller? I would think both of them would be added to the foreign controller mobility group.
  7) Should both guest anchors be added as an anchor on the WLAN? I would think both controllers would need to be added as anchors under the WLAN!
  8) Am I missing anything here? This is how I think it should logically work?
  Thanks,
  Gordon

  I need to elaborate on my questions:
  1) Do both of my guest DMZ anchors need to be in a seperate mobility group on their own or can the guest anchors be in completely seperate mobility groups? All 100 + foreign controllers are in seperate mobility groups.
  I) Example #1: Guest anchor number 1 (Mobility group: DMZ) / Guest anchor number 2 (Mobility group: DMZ)
  II) Example #2: Guest anchor number 1 (Mobility group: DMZ01) / Guest anchor number 2 (Mobility group: DMZ02)
  2) Do both guest anchor controllers have to be configured with seperate virtual IP's or do they share the same address?
  I) Follow up to this question: I want to register the DMZ controllers with our DNS servers so that my clients receive a name when authenticating through my customized webauth. I am currently using 1.1.1.1 as the virtual address and I'm pretty sure this is the address I need to register with my external DNS server. My question is this. Does the address I use for the virtual interface matter? 1.1.1.1 is not a valid address with my network. Do I need to assign a valid address registered with my network if I'm going to add this address to my external DNS servers?
  3) No change to my original question.
  4) No change to my original question.
  5) No change to my original question. I have run into Cisco documentation that mentions guest anchor load balancing, but the documentation is very vague. I'd love to be able to load balance as the network group wants to limit my guest traffic to the internet. I could double my pipe if I could load balance the guest anchors.
  6) No change to my original question, but the answer to question one is key to the setup of my foreign controllers.
  7) Elaboration: Should both guest controllers be added as an anchor under the WLAN on the foreign controllers? I would think both of them would be added.
  8) No change:
  9) Should my secondary guest controller be added as an anchor on the WLAN of the primary guest DMZ controller and visa versa?
  Can my Cisco expert answer this or do I need to open a TAC case?
  Thanks,
  Gordon Shelhon
  SR. Wireless Services Engineer
  Company: Not specified

• H-REAP and Client Load-Balancing

  I'm told by Cisco that H-REAP does not support client load-balancing.
  We have a situation where we want to deploy LWAPPs using H-REAP into a conference room where training would take place.
  Any suggestions on how to overcome the inevitable slowness these people are going to experience from being unevenly associated with the APs?
  We can't re-write the application so we are looking for a wireless solution.
  Anyone hear about how other organizations have dealt with this type of situation?
  I'll be glad to supply more details if I am not being clear in my description of the problem.
  Thanks in advance. All responses will be rated.
  Paul

  This is the functionality which is missing in H-REAP: Client and Network Load Balancing
  "Radio Resource Management (RRM) load-balances new clients across grouped lightweight access points reporting to each controller. This function is particularly important when many clients converge in one spot (such as a conference room or auditorium) because RRM can automatically force some subscribers to associate with nearby access points, allowing higher throughput for all clients. The controller provides a centralized view of client loads on all access points. This information can be used to influence where new clients attach to the network or to direct existing clients to new access points to improve wireless LAN performance. The result is an even distribution of capacity across an entire wireless network.
  Note: Client load balancing works only for a single controller. It is not operate in a multi-controller environment."
  I suppose if we limit the number of users that can associate with a particular AP then we will achieve some client load-balancing. Though a hard limit on the number of end-users will also lead to situations where some end users will not be allowed any access.