NAC OoB and WLC Causing flap and network down

I'm trying to intall a NAC Solution in a Wireless network but it's causing a MAC address flapping between switches interfaces and it's bringing the network down.
I've done the deployment following the Cisco documentation:
(WLC)-----(L2 Switch)-----(NACServer)--------(L3 Switch3com)
                    |_____________________________|
One connection from L2 to L3 throught NAC and one trunk out-of-band.
I Filtered the Vlans that should only be showed in the trunks but it keeps causing flapping when I plug the untrusted interface of NAC.
The only thing is that I wasn't able to take the Vlan 1 out of the Trunk in the 3Com switch (NAC Trusted interface).
Anybody has experienced this before and get solved?

yes, you can do it, just remember that the accounting server IP address must be the "service IP address" of the trusted management interface of the CAS

Similar Messages

  • ISE and WLC 5508 IP and MAc address

    Hi!
    Is it possible that we recibe IP address and Mac address Client at the same time in ISE ?
    The wlc permits choose radius Call station ip type MAC or IP, but not both.
    Thanks you,

    If you are using dot1x then no, the mac address is sent since the client does not receive an ip address till authetication succeeds.
    Sent from Cisco Technical Support Android App

  • ISE and WLC

    Dear friends,
    We are using ISE and WLC integrity in our network, we have Corporate and Guest SSID, we configured it but client cant connect to this ssid and cant be authenticated, please see attached files and tell me if i done something wrong in configuration of WLC
    10.10.17.201 is ISE
    Thank you for attention

    Hi,
    After viewing the Trap logs it seems you have checked on validate machine.
    On the client side, make sure you don't check validate machine and then try.

  • NAC OOB Logoff feature workaround ?

    Hi,
    We have a NAC OOB, Real-Ip Layer2 setup and the new option "Logoff Clean Access Agent users from network on their machine logoff or shutdown" does not apply when using OOB mode (which is annoying). Anybody found a way to make sure that when a users logs off from his PC he's automatically put back to the authentication VLAN ? We thought of maybe put a program in Windows XP logoff script that would disable/enable the NIC card but it seems a bit tricky...
    I'm sure I'm not the only one who's trying to find a solution for this. Hopefully Cisco will support this feature right from the clean access agent in a future release...
    Thanks.
    Dominic

    for now we are waiting for the feature to become available from Cisco in Q2 or Q3 of 2007.
    And yes, we are using SSO in a Windows XP - Windows 2003 environment.
    Dominic

  • NAC OOB and 6500 in Virtual Switch Mode

    Is there any issue or special care to implement NAC OOB in Central Deploy, VGW, using AD SSO for wired clients where the Core Switch is a pair of 6500 in Virtual Switch Mode?
    The customer uses Radius IAS for authentication. How does it fit with the AD SSO?

    Hi Bruce,
    I am afraid there are some arguments missing in your db command.
    To manually add the OID of  Cat4507R+E to CAM's database here is the  procedure to do this.
    [root@cca-3140-cam ~]# psql -h localhost -U postgres controlsmartdb -c "INSERT INTO supported_switch VALUES ('1.3.6.1.4.1.9.1.1286', '4', 'Cisco Catalyst 4507 R+E')" INSERT 0 1
    psql: warning: extra command-line argument "INSERT" ignored
    psql: warning: extra command-line argument "0" ignored
    psql: warning: extra command-line argument "1" ignored
    INSERT 0 1
    Then to make sure it is there:
    [root@cca-3140-cam ~]# psql -h localhost -U postgres controlsmartdb -c "SELECT * FROM supported_switch" | grep 1286
    The output should be:
    1.3.6.1.4.1.9.1.1286      |     4 | Cisco Catalyst 4507 R+E
    Restart perfigo service on NAC Manager and try to manage the switch  using the model used by the above command.
    HTH,
    Tiago
    If  this helps you and/or answers your question please mark the question as  "answered" and/or rate it, so other users can easily find it.

  • Extending network with Airport Express and Airport Extreme (latest models) causes chaos on network

    Today I upgraded from my several year old Airport Extreme (3rd gen) and 2nd gen Airport Express to a new (what you'd buy on the shelf today) Airport Extreme and Airport Express.  All airports are updated with the latest firmware and I'm using windows 7 for configuration.
    The intention is to use the Airport Extreme as the main router, also serving wifi. And extend the network using the express. As such, the following has been done:
    The Airport Extreme is configured for automatic channel, and automatic radio mode. I tried to select 802.11n 5 ghz and 802.11 n 2.4 ghz only, but it won't take the changes. Additionally, it wont' accept me using only channel 6. Not sure why, but I digress. The airport extreme is not set to broadcast a separate name for the 5ghz network.
    The Airport Express is configured to use bridge mode, use an existing wireless network and is connected to my network on it's WAN port (the circle icon on the back) with ethernet. The password and wireless name used in configuration is the same as created initially on the Airport Extreme.
    Initially I did the configuration of both airports on my computer, connected by ethernet to ensure stable connectivity while I inputted settings. During this, they appeared to accept the changes fine. However, when I moved the airport express to it's destination (other side of my house), the entire network went crazy.
    Internet became slow, and often wouldn't load pages. This was on wired and wireless connections. When I attempted to administer the Airport in the Utility, they would not load, an error would occur. Also, at one point the Airport Extreme had renamed it self with a (2) at the end. Which was super odd. So far, the only solution has been to unplug the Airport Express and attempt to devise a solution.
    Anyone have any ideas? Of course, I will continue to tinker with this, but it seems realllly strange. The previous setup was also extended (granted, using wireless only, not ethernet > wireless) and worked fine, granted it was a smidge slow, but it worked.

    I wanted to add this.. I followed the guide here: http://support.apple.com/kb/HT4260 to extend using ethernet, and the above is the result.
    I just tried re configuring in OS X Mavericks and got the same, odd, result.

  • Ask the Expert: Cisco BYOD Wireless Solution: ISE and WLC Integration

    With Jacob Ideji, Richard Hamby  and Raphael Ohaemenyi   
    Welcome to the Cisco Support Community Ask the Expert conversation. This is an opportunity to learn and ask questions about  the new Identity Solutions Engine (ISE) and Wireless LAN Controller (WLC) hardware/software, integration, features, specifications, client details, or just questions about  Cisco's Bring-your-own device (BYOD) solution with cisco Experts Richard Hamby, Jacob Ideji, and Raphael Ohaemenyi. The interest in BYOD (Bring You Own Device) solutions in the enterprise has grown exponentially as guests and company users increasingly desire to use personal devices to access .  Cisco BYOD enhances user experience and productivity while providing security, ease-of-administration, and performance. The heart of the Cisco wireless BYOD solution is Identity Solutions Engine (ISE) utilizing the Cisco Unified Wireless portfolio.  Starting with ISE v1.1.1MR and WLC (Wireless LAN Controller) code v7.2.110.0 and higher, end-to-end wireless BYOD integration is reality. 
    Jacob Ideji is the technical team lead in the Cisco authentication, authorization and accounting (AAA) security team in Richardson, Texas. During his four years of experience at Cisco he has worked with Cisco VPN products, Cisco Network Admission Control (NAC) Appliance, Cisco Secure Access Control Server, and Dot1x technology as well as the current Cisco Identity Services Engine. He has a total of more than 12 years experience in the networking industry. Ideji holds CCNA, CCNP, CCSP, CCDA, CCDP, and CISM certifications from Cisco plus other industry certifications.
    Richard Hamby  works on the Cisco BYOD Plan, Design, Implement (PDI) Help Desk for Borderless Networks, where he is the subject matter expert on wireless, supporting partners in the deployment of Cisco Unified Wireless and Identity Services Engine solutions. Prior to his current position, Hamby was a customer support engineer with the Cisco Technical Assistance Center for 3 years on the authentication, authorization, accounting (AAA) and wireless technology teams. 
    Raphael Ohaemenyi  Raphael Ohaemenyi is a customer support engineer with the authentication, authorization and accounting (AAA) team in the Technical Assistance Center in Richardson, Texas, where he supports Cisco customers in identity management technologies. His areas of expertise include Cisco Access Control Server, Cisco Network Admission Control (NAC) Appliance, Cisco Identity Services Engine, and IEEE 802.1X technologies. He has been at Cisco for more than 2 years and has worked in the networking industry for 8 years. He holds CCNP, CCDP, and CCSP certification.
    Remember to use the rating system to let Jacob, Richard and Raphael know if you have received an adequate response.  
    Jacob, Richard and Raphael might not be able to answer each question due to the volume expected during this event. Remember that you can continue the conversation on the wireless mobility sub community forum shortly after the event. This event lasts through Oct 5th, 2012. Visit this forum often to view responses to your questions and the questions of other community members.

    OOPS !!
    I will repost the whole messaqge with the correct external URL's:
    In  general, the Trustsec design and deployment guides address the specific  support for the various features of the 'whole' Cisco TS (and other  security) solution frameworks.  And then a drill-down (usually the  proper links are embedded) to the specifc feature, and then that feature  on a given device.  TS 2.1 defines the use of ISE or ACS5 as the policy  server, and confiugration examples for the platforms will include and  refer to them.
    TrustSec Home Page
    http://www.cisco.com/en/US/netsol/ns1051/index.html
    http://www.cisco.com/en/US/solutions/collateral/ns170/ns896/ns1051/product_bulletin_c25-712066.html
    http://www.cisco.com/en/US/prod/collateral/vpndevc/ps5712/ps11637/ps11195/at_a_glance_c45-654884.pdf
    I find this page very helpful as a top-level start to what features and capabilities exist per device:
    http://www.cisco.com/en/US/solutions/ns170/ns896/ns1051/trustsec_matrix.html
    The TS 2.1 Design Guides
    http://www.cisco.com/en/US/solutions/ns340/ns414/ns742/ns744/landing_DesignZone_TrustSec.html
    DesignZone has some updated docs as well
    http://www.cisco.com/en/US/netsol/ns982/networking_solutions_program_home.html#~bng
    As  the SGT functionality (at this point) is really more of a  router/LAN/client solution, the most detailed information will be in the  IOS TS guides like :
    http://www.cisco.com/en/US/docs/switches/datacenter/sw/6_x/nx-os/security/configuration/guide/b_Cisco_Nexus_7000_NX-OS_Security_Configuration_Guide__Release_6.x.html
    http://www.cisco.com/en/US/docs/ios-xml/ios/sec_usr_cts/configuration/xe-3s/asr1000/sec-usr-cts-xe-3s-asr1000-book.html
    http://www.cisco.com/en/US/docs/switches/lan/trustsec/configuration/guide/trustsec.html

  • WCS and WLC AP values not fully in sync.

    I have recently added several new aps on my network,after they connect to the controller, I set a hostname, and change the ip address to a static. However, WCS still sees the aps by the old ip and host name despite going into each one, hitting audit, and then save, any way to fix this? Thanks.

    You may want to also consider the following:
    1) Both the WCS and the WLC need to be at the same major revs (i.e.: The if the WCS is at v4.2, then the WLC should also be at 4.2). Failure to do so results in some significantly bizarre behavior such as errors after an audit - at least that was my experience.
    2) You may have better success if you make the change from the WCS which pushes the change to the WLC and that way the WCS is already aware of the change. (Normally, this should work - I know of one instance where it does not: changing Master Controller Mode from the WCS).
    3) If you feel strongly about making the change in the WLC (and are running a newer version of code in the WCS/WLC - i.e.: 4.x), there is a setting that forces the WLC to send configuration changes to the WCS once APPLY and "Save Configuration" are clicked:
    From the *WCS*, click on Configure->Controllers and click on the controller you wish to change, and check the "Refresh on Save Config Trap" check box and click OK.
    This will cause the controller to push any configuration changes up to the WCS after an APPLY and "Save Configuration" are clicked.
    4) In terms of getting the WCS to actually synch up with the controller (assuming the WCS and WLC are at the same rev. levels), you may need to do what I did (this was subsequent to upgrading to v4.2 in both the WLC and WCS and having chronic "mismatch" status between the WCS and WLC):
    From the WCS:
    Configure->Controllers, check the controllers you wish to synch up. From the dropdown, select "refresh config from controller"
    Next, select the DELETE option (instead of the RETAIN option). I believe that there are bugs in the software that upgrades earlier revisions to 4.2. I know that it might seem undesirable to DELETE information in the WCS, however, if you choose "DELETE", it seems to get rid of the residual information from the previous revisions that did not upgrade properly and the WCS will now be in synch with the controllers. DELETING the other settings makes the audit errors go away.
    Subsequent audits may go better for you after performing the step shown above. However, you may need to repeat this process in item 4 above once or twice more until the database gets cleaned up, but after that my own experience has been that the WCS and WLC will eventually stay in synch.
    It is unfortunate that we are forced to come up with workarounds like these when the software should clearly be able to handle this on its own, but we do what we must to get the job done.
    Hope this helps,
    - John
    (Please rate helpful posts)

  • Time Machine and Time Capsule - Failing with Network Problem

    My problems with TM/TC have been ongoing for a couple of months now and I am going round in circles - need help.
    This is the second post I have made, the first got lost in people suggesting the obvious - so I will try to be a little more specific if I can.
    I will detail the current state first - i.e. where I am now - after I will list what I have done so far to get to this point.
    Currently, my iMac (intel) is directly connected by Ethernet 1GB to the Time Capsule. The TC is then connected to a Netgear router which in turn is connected to Internet.
    I have no network problems at all - internet connection is fine. the Netgear Router has the latest firmware version and is working fine. The porblems i have are nothing to do with this.
    The time Capsule is in Bridge mode and getting a reserved dhcp IP address from the Netgear router.
    The Time Capsule has been fully reset - i.e. power cable out, hold the reset button, plug in power cable (spark, spark), hold reset button, fast blink for 20 seconds or so, light goes out, release button.
    I have re-applied the latest Time Capsule firmware.
    I have renamed the disk on the Time Capsule.
    I have renamed my iMac and deleted all the time capsule entries from Keychain.
    I have re-installed Mac OSX and re-updated to the latest 10.5.6 release.
    At the moment I have kicked off a backup with a lot of large files - like music folder, video folder etc excluded. I also have parallels and have excluded the disk image. I have 1 other 50GB disk image which is also excluded.
    I am expecting the first initial backup will complete successfully.
    I will then remove music and video from exclusions and allow them to backup. I am expecting this will complete no problem. (I do this because the upcoming problem will happen if I move away from the machine - and I dont want to sit there for 2 days).
    So up to this point TM and TC have performed flawlessly. The issue that follows started happening before the 10.5.6 update after backing up with no issues for months. At this point I will be able to use TM to browse the backup and restore files. I will be able to mount the sparse bundle and browse files. Spotlight reports no issues and indexes quickly.
    If I leave my machine after a successful backup and the hourly update kicks in it will fail with 'A Network problem' basically saying the backup has filed because of a network problem, but is not any more specific, logs show far too much to put the whole thing here, but the following is an excerpt
    Dec 23 05:19:49 MickMac /System/Library/CoreServices/backupd[1499]: Backup destination mounted at path: /Volumes/Backup
    Dec 23 05:19:50 MickMac hdiejectd[1519]: running
    Dec 23 05:19:51 MickMac kernel[0]: jnl: disk1s2: replay_journal: from: 28864512 to: 30084096 (joffset 0x1d0f000)
    Dec 23 05:21:49 MickMac kernel[0]: jnl: disk1s2: journal replay done.
    Dec 23 05:21:49 MickMac /System/Library/CoreServices/backupd[1499]: Disk image /Volumes/Backup/MickMac_001ec215ce76.sparsebundle mounted at: /Volumes/Backup of MickMac
    Dec 23 05:21:49 MickMac /System/Library/CoreServices/backupd[1499]: Backing up to: /Volumes/Backup of MickMac/Backups.backupdb
    Dec 23 05:21:49 MickMac com.apple.launchd[1] (com.apple.netauth.sysagent[1500]): Stray process with PGID equal to this dead job: PID 1503 PPID 1 check_afp
    Dec 23 05:21:55 MickMac fseventsd[38]: event logs in /Volumes/Backup of MickMac/.fseventsd out of sync with volume. destroying old logs. (3627 125 5482)
    Dec 23 05:27:33 MickMac /usr/sbin/ocspd[1539]: starting
    Dec 23 05:30:27 MickMac kernel[0]: ASP_TCP HoldPendingReqs: holding slot 5 reqID 5400 flags 0x9 afpCmd 34 so 0x7e78cc0
    Dec 23 05:30:27 MickMac kernel[0]: ASP_TCP Disconnect: triggering reconnect by bumping reconnTrigger from curr value 0 on so 0x7e78cc0
    Dec 23 05:30:27 MickMac kernel[0]: AFP_VFS afpfs_DoReconnect started /Volumes/Backup prevTrigger 0 currTrigger 1
    Dec 23 05:30:27 MickMac kernel[0]: AFP_VFS afpfs_DoReconnect: doing reconnect on /Volumes/Backup
    Dec 23 05:30:27 MickMac kernel[0]: AFP_VFS afpfs_DoReconnect: soft mounted and hidden volume so do not notify KEA for /Volumes/Backup
    Dec 23 05:30:27 MickMac kernel[0]: AFP_VFS afpfs_DoReconnect: Max reconnect time: 30 secs, Connect timeout: 15 secs for /Volumes/Backup
    Dec 23 05:30:27 MickMac kernel[0]: AFP_VFS afpfs_DoReconnect: connect to the server /Volumes/Backup
    Dec 23 05:31:26 MickMac kernel[0]: ASP_TCP CancelOneRequest: cancelling slot -1 error 89 reqID 1 flags 0x9 afpCmd 0 so 0x7e78cc0
    Dec 23 05:31:26 MickMac KernelEventAgent[34]: tid 00000000 received VQ_DEAD event (32)
    Dec 23 05:31:26 MickMac KernelEventAgent[34]: tid 00000000 type 'afpfs', mounted on '/Volumes/Backup', from 'afp_0V1fqC1mgalO00mE1H0Pyetl-1.2d00000a', dead
    Dec 23 05:31:26 MickMac kernel[0]: AFP_VFS afpfs_DoReconnect: Open Session failed 57 /Volumes/Backup
    Dec 23 05:31:26 MickMac kernel[0]: AFP_VFS afpfs_DoReconnect: max reconnect time reached 60 > 30 /Volumes/Backup
    Dec 23 05:31:26 MickMac kernel[0]: AFP_VFS afpfs_DoReconnect: posting to KEAType IO] [ErrNo 5] [IOType Read] [PBlkNum 1248] [LBlkNum 155] [FSLogMsgID 501572642] [FSLogMsgOrder First]
    Dec 23 05:31:26 MickMac kernel[0]:
    Dec 23 05:31:26 MickMac fseventsd[38]: failed to unlink old log file /Volumes/Backup of MickMac/.fseventsd/0000000000ccb02b (Input/output error)
    Dec 23 05:31:26 MickMac kernel[0]: disk1s2: 0x14 (UNDEFINED)."
    It goes on and on and is repeated every hour. For each one I get an error message on screen saying backup failed due to a network error. However I have tried a manual download over the same period set at an extremely slow rate so that it was downloading during this time and it showed no errors. I.e. the network connection from imac, through TC to netgear and out to internet - and monitored this while time machine showed these errors (i.e. at the same time) and this showed no connection problems at all and completed succesfully.
    I know TM uses an internal address to do backups, but uses the same cable and network card to get the job done. I am simply removing the cable as a source of issue although I have also replaced this making no difference.
    Applecare are involved and have so far been sent 2 sets of logs and so far have not been able to find the cause. New TC is on its way to try that, although they think it is something on the imac that is causing this.
    Sleep mode is turned off although screen sleep is on. The tick is not in the box for putting hard drives to sleep whenever possible.
    Now, after this has happened, and back at the machine. I restart both imac and TC. Try running a backup, spotlight starts to re-index - i.e. will mount the backup volume and start the index process, gets to about 90% then fails - again excerpts from log
    "Dec 23 09:18:50 MickMac /System/Library/CoreServices/backupd[161]: Backing up to: /Volumes/Backup of MickMac/Backups.backupdb
    Dec 23 09:18:50 MickMac mds[32]: (/Volumes/Backup of MickMac/.Spotlight-V100/Store-V1/Stores/266E0E5F-E002-4EB5-A049-9B50582510FE)(E rror) IndexCI in ContentIndexOpenBulk:Unclean shutdown of /Volumes/Backup of MickMac/.Spotlight-V100/Store-V1/Stores/266E0E5F-E002-4EB5-A049-9B50582510FE/li ve.0.; needs recovery
    Dec 23 09:18:57 MickMac com.apple.launchd[67] (com.apple.netauth.useragent[147]): Stray process with PGID equal to this dead job: PID 152 PPID 1 check_afp
    Dec 23 09:19:48 MickMac mds[32]: (Error) Server: machmsgdispatch: (ipc/send) invalid destination port [msgh_id 14016]
    Dec 23 09:29:35 MickMac /usr/sbin/ocspd[197]: starting
    Dec 23 09:42:48 MickMac kernel[0]: ASP_TCP HoldPendingReqs: holding slot 11 reqID 3204 flags 0x9 afpCmd 60 so 0x8051b28
    Dec 23 09:42:48 MickMac kernel[0]: ASP_TCP HoldPendingReqs: holding slot 12 reqID 3205 flags 0x9 afpCmd 34 so 0x8051b28
    Dec 23 09:42:48 MickMac kernel[0]: ASP_TCP Disconnect: triggering reconnect by bumping reconnTrigger from curr value 0 on so 0x8051b28
    Dec 23 09:42:49 MickMac kernel[0]: AFP_VFS afpfs_DoReconnect started /Volumes/Backup prevTrigger 0 currTrigger 1
    Dec 23 09:42:49 MickMac kernel[0]: AFP_VFS afpfs_DoReconnect: doing reconnect on /Volumes/Backup
    Dec 23 09:42:49 MickMac kernel[0]: AFP_VFS afpfs_DoReconnect: soft mounted and hidden volume so do not notify KEA for /Volumes/Backup
    Dec 23 09:42:49 MickMac kernel[0]: AFP_VFS afpfs_DoReconnect: Max reconnect time: 30 secs, Connect timeout: 15 secs for /Volumes/Backup
    Dec 23 09:42:49 MickMac kernel[0]: AFP_VFS afpfs_DoReconnect: connect to the server /Volumes/Backup
    Dec 23 09:42:49 MickMac kernel[0]: AFP_VFS afpfs_DoReconnect: Logging in with uam 10 /Volumes/Backup
    Dec 23 09:42:49 MickMac kernel[0]: AFP_VFS afpfs_DoReconnect: Restoring session /Volumes/Backup
    Dec 23 09:42:49 MickMac kernel[0]: ASP_TCP CancelOneRequest: cancelling slot 11 error 35 reqID 3204 flags 0x19 afpCmd 60 so 0x8051b28
    Dec 23 09:42:49 MickMac kernel[0]: ASP_TCP CancelOneRequest: cancelling slot 12 error 35 reqID 3205 flags 0x19 afpCmd 34 so 0x8051b28"
    And later....
    Dec 23 09:45:49 MickMac kernel[0]: disk1s2: 0x39 (UNDEFINED).
    Dec 23 09:45:49 MickMac KernelEventAgent[34]: tid 00000000 received VQ_DEAD event (32)
    Dec 23 09:45:49 MickMac kernel[0]:
    Dec 23 09:45:49: --- last message repeated 1 time ---
    Dec 23 09:45:49 MickMac kernel[0]: hfs_clonefile: cluster_read failed - 5
    Dec 23 09:45:49 MickMac KernelEventAgent[34]: tid 00000000 type 'afpfs', mounted on '/Volumes/Backup', from 'afp_0V1fqC1mgalO00mE1H0Pyetl-1.2d000005', dead
    Dec 23 09:45:49 MickMac kernel[0]: HFS resolvelink: can't find iNode791959
    Dec 23 09:45:49 MickMac kernel[0]: disk1s2: 0x39 (UNDEFINED).
    Dec 23 09:45:49 MickMac kernel[0]: ore-V1/Stores/6CC2B046-5E28-4179-96B7-9DFF9F7EE431/store.db] [FSLogMsgID 1580919258] [FSLogMsgOrder Last]
    Dec 23 09:45:49 MickMac KernelEventAgent[34]: tid 00000000 found 1 filesystem(s) with problem(s)
    Dec 23 09:45:49 MickMac kernel[0]: jnl: disk1s2: dojnlio: strategy err 0x5
    Dec 23 09:45:49 MickMac kernel[0]: jnl: disk1s2: end_transaction: only wrote 0 of 49664 bytes to the journal!
    Dec 23 09:45:49 MickMac kernel[0]: disk1s2: 0x14 (UNDEFINED).
    Dec 23 09:45:49 MickMac kernel[0]:
    Dec 23 09:45:49: --- last message repeated 1 time ---
    Dec 23 09:45:49 MickMac mds[32]: (/Volumes/Backup of MickMac/.Spotlight-V100/Store-V1/Stores/6CC2B046-5E28-4179-96B7-9DFF9F7EE431)(E rror) IndexSDB in dbcheckdatastore:store.db : dbgetdatastore: ERR: could not read 4096 bytes
    Dec 23 09:45:49 MickMac kernel[0]: disk1s2: 0x14 (UNDEFINED).
    Dec 23 09:45:49 MickMac mds[32]: (/Volumes/Backup of MickMac/.Spotlight-V100/Store-V1/Stores/6CC2B046-5E28-4179-96B7-9DFF9F7EE431)(E rror) IndexCI in CIMetaInfoSync:write err: 5
    Dec 23 09:45:49 MickMac kernel[0]:
    Dec 23 09:45:49 MickMac mds[32]: (/Volumes/Backup of MickMac/.Spotlight-V100/Store-V1/Stores/6CC2B046-5E28-4179-96B7-9DFF9F7EE431)(E rror) IndexCI in CIMetaInfoCreate:Tried to create index when index already existed /Volumes/Backup of MickMac/.Spotlight-V100/Store-V1/Stores/6CC2B046-5E28-4179-96B7-9DFF9F7EE431
    Dec 23 09:45:49 MickMac kernel[0]:
    Dec 23 09:45:49 MickMac mds[32]: (/Volumes/Backup of MickMac/.Spotlight-V100/Store-V1/Stores/266E0E5F-E002-4EB5-A049-9B50582510FE)(E rror) IndexSDB in adddirtychunk:/Volumes/Backup of MickMac/.Spotlight-V100/Store-V1/Stores/266E0E5F-E002-4EB5-A049-9B50582510FE/st ore.db : ERR: Can't write DST header (Input/output error)
    Dec 23 09:45:49 MickMac kernel[0]: disk1s2: 0x14 (UNDEFINED).
    Dec 23 09:45:49 MickMac kernel[0]:
    Dec 23 09:45:49: --- last message repeated 1 time ---
    Dec 23 09:45:49 MickMac kernel[0]: disk1s2: 0x14 (UNDEFINED).
    Dec 23 09:45:49 MickMac kernel[0]:
    Dec 23 09:45:49: --- last message repeated 1 time ---
    Dec 23 09:45:49 MickMac kernel[0]: disk1s2: 0x14 (UNDEFINED).
    Dec 23 09:45:49 MickMac kernel[0]:
    Dec 23 09:45:49: --- last message repeated 1 time ---
    Dec 23 09:45:49 MickMac mds[32]: (/Volumes/Backup of MickMac/.Spotlight-V100/Store-V1/Stores/266E0E5F-E002-4EB5-A049-9B50582510FE)(E rror) IndexSDB in dbflushdatastore:/Volumes/Backup of MickMac/.Spotlight-V100/Store-V1/Stores/266E0E5F-E002-4EB5-A049-9B50582510FE/st ore.db : dbsyncdatastore: write-errors flushing cache/writing map.
    Am I the only one having these problems? any help from anybody please...

    Got the same problem with a 3 months old TC.
    The replacement TC, does it work now flawless?

  • Strange problem with how my iPhone (4S) sees a friend who recently moved his number from his old network and device to a new network and iPhone 3GS

    This is a weird one, so bear with me.
    My friend recently got an iPhone 3GS with a new SIM in it (3 network in the UK). I helped him set up the iPhone and got iMessage working between my mobile and his temporary number (07429...)
    In my Contacts I had two separate phone numbers for him: 07903... (his old number, on an old Sony Ericsson mobile with T-Mobile UK) and 07429... (the number that came with the 12-month contract I purchased for him; we called this his "temporary" number).
    His old number (07903...) was transfered over to his iPhone with no problems. His iPhone has worked flawlessly.
    But since that day I've had some really strange behaviour on my iPhone (a 4S, also on 3 UK): I removed his temporary number (07429...) from my contacts. But now when I try to text him at the old number (07903...) it bounces back at me as if the number doesn't exist. But if I try to text him at the temporary number (07429...) it works just fine and in my contacts and within Messages it appears as an iMessage-connect number.
    So I tried deleting everything and starting from scratch. Still the same behaviour.
    No one else is having this problem with him. I can call his old number (07903) just fine, I just can't text it.
    I'm guessing that there's something with the way Contacts works with iMessage that's caused the problem. It's as if my contacts have updated properly under-the-hood (iMessage *does* work just not with the right number).
    And yes, when I (or anyone) tries calling the temporary number (07429...) it's out of service. Which is correct. So it's not simply a case of *both* numbers being active.
    So this is very peculiar.
    In typing up this message it occured to me that I ought to try creating an all-new contact with some slight change in the name fields (e.g. include the middle initial) and see if I can get it to work properly. Then I ought to be able to change the name field (or just leave it alone, touch wood!).
    Thanks in advance for reading this far. It's difficult to explain this problem succintly!
    Cheers,
    Carey

    I've fixed my own problem.
    In the end, the issue was with iMessage on the other phone, not mine.
    While I had it connected to iTunes (the other phone, not mine), I could see that iTunes thought it was the temporary number (07429...). I turned iMessage off and back on again and the phone number in iTunes changed to the old (i.e correct) number (07903...).
    Subsequently, texts from my phone to the other phone showed up as blue-bubbled iMessages.
    Hope this helps someone!
    Thanks for reading, if you did.

  • Dual Band (5ghz and 2.4 ghz) Wireless Network Config and Dropped Connection

    Hi, I have an Airport Extreme (802.11N) and a Motorola WR850G (802.11A/B/G) that I'm trying to connect in a dual band setup - but something in my setup is causing the Airport to drop it's connection (before the connection is dropped - everything works great). After I lose connectivity, both routers show up in my list of wireless networks, the light stays green, but I don't have local or internet access. When I try to reconnect, the log on times out. Also, the Airport isn't displayed in the Airport Utility (light is green on the airport itself though). Unplugging and resetting the Airport Allows all computers on the network to connect locally and to the internet for a few hours until the connection drops again. While it is up and running, I have no problems streaming movies off the connected Airdisk, navigating the internet, and connecting both N and G devices to the network.
    I'd love to hear from you if you've gotten a similar setup to work, and if possible, have you provide the settings you used to make this work. I've looked around quite a bit and haven't seen a detailed description of the process (even from the Apple documentation). Also, advice from anyone would be greatly appreciated since my wireless networking knowledge is pretty basic.
    My configuration:
    Time Warner cable modem connected to the Airport's WAN port. WR850G connected by LAN port to Airport's LAN port. Bridge Mode check box selected on WR850G. Airport setup for 802.11n (5Ghz). Unique SSIDs to determine which network is 'N'. Same password for both networks. My Firmware and utilities are up to date.
    Computers/Devices on Network:
    Two Macs with Airport Extreme N cards. A Vista PC with a D-link N card (only compatible with 2.4 Ghz so it connects to the G network). A Vista PC with a GB ethernet card connected to the Airport Extreme. Various other G devices like iPod touches and an old iBook. Airdisk connected to the Airport Extreme.
    Thanks,

    I removed the second router (Moto wr850g) and everything seems to be working smoothly. It must be some settings on that one that are causing the problem, but I haven't been able to get it configured correctly. I noticed there were some IP conflicts with my wireless wanting to use the old Moto router IP and trying to assign my Mac an IP from that router. Does anyone know specifically what needs to be disabled on a router in bridge mode? Since I have a third party router there aren't any handy wizards that can configure it for me.
    Thanks again

  • Possible to use Airport Extr and Express for WIRED Guest Network?

    Situation and landscape:
    My house has a Comcast cable-modem, which is connected to an Airport Extreme (AEx).
    The AEx is running WPA WiFi, and this is all good.
    There is one ethernet wire running out of the AEx, which goes 150 feet to the rear of my house, across a short corridor (protected from weather with insulated pipe) and into my garage apartment, where it terminates into an Airport Express (APress.)   This garage apartment is frequently used as part of a rental property.  The APress is extending the same WiFi SSID/settings.
    When guests arrive, they are able to plug-in their notebook computers to the APress ethernet port, or use the WiFi.
    Well, the problem with that, obviously, is that they can "see" the other computers on the network, and printers, etc.
    It would be perfect to set configure the AEx and APress to the WiFi "guest network."  However, there are problems with this:
    1)  Believe it or not, many guests still use direct-plug and do not have nor know how to set up their WiFi -- so they MUST have a direct ethernet wire.
    2)  When I use Airport Utility for the APress, it does not show any WiFi guest network option -- maybe because another dependent setting is not allowing this (i.e. Bridge Mode?")
    3)  The distance between the AEx and this garage apartment is too long between them to shoot a WiFi guest network from AEx and to be picked-up by the Airport Express... and there's a center core in my old house that is impervious to all radio frequencies and could block a nuclear blast.  Well, it causes a degradation of wireless.   And this brings us back to #1 above...in that I need a cable ethernet option.
    Picture attached of current landscape:
    So, maybe....
    I've spent the better part of a couple of hours searching here, particularly for the terms "access point" but the terminology isn't what I need.  What I wonder if perhaps I need to place an APress beside the AEx, turn on Guest Network at the AEx, then "pick it up" with a second APress, and carry the ethernet signal to the garage apartment and allow guest WiFi and wired.  (see second picture)   Will this work?

    OK, here how to set this up.
    Open up AirPort Utility 5.6.1, select the Express, and click Manual Setup
    Click the Wireless tab located below the icons
    If you want the Guest Network to have a different SSID (recommended), then change the name of the wireless network, adjust the security settings if needed, and change the Wireless Password and Verify
    Click the Internet icon up at the top of the window
    Click the Internet Connection tab just below the icons
    Change the setting for Connection Sharing to Share a public IP address
    Click the DHCP tab located under the icons
    Change the DHCP Beginning Address to read something different.....like 10.0.5.2
    Click Update and give the Express a full minute to restart
    At this point, the Express indicator light will be slowly blinking amber
    Open up AirPort Utility again, select the Express and click directly on the word Status (2nd line)
    You should see a Double NAT notice with an option to "ignore" the item
    There may also be an Setup over WAN notice with an option to "ignore" the item
    Click in the boxes to ignore both items, then click Update again and the Express will restart and display a green light
    Try things out to verify that the Guest Network cannot "see" any devices on the main network...and vice versa.

  • Converged Access Design Help (Catalyst 3850 and WLC 5508...Mobility Oracle)

    Hello,
    I am an engineer working with a Cisco Gold Partner in Saudi Arabia. We have a large university as our client where they are constructing a new
    building and require our services to build the network infrastructure. Therefore, we are to implement the routing and switching infrastructure as
    well as the Wireless solution.
    At present, I have no issues in implementing the R&S infrastructure as it is very straight forward but it has implications on the deployment of
    the wireless solution which I explain further below. The R&S infrastructure comprises of the typical Core, Distribution, and Access layers and we
    are focusing on the local distribution and access switches with regards to the new building. The client has a converged Layer 3 network spanning
    from distribution layer to core layer and they are running EIGRP for this convergence. This is not a problem and has already been implemented.
    Yet, the challenge arises in deploying the WLAN infrastructure. The client already has a Cisco WLAN infrastructure in place where they have a
    large number of LAPs that are registered with their controllers in the Data Center. They have two WLC 5508 where one is the Primary and the other
    the Secondary. The local distribution switch to which the WLC are connected also is the gateway for the SVIs for the SSIDs that are configured on
    the controllers. This means that once the packets from the AP come in to the WLC, they are tagged with the correct VLAN and sent to the directly
    connected distribution switch which then routes it into the rest of the Layer 3 network. Interestingly, the WLC 5508 are running AireOS 7.6 and
    support the "New Mobility" feature. The two controllers have formed a Mobility Group (MG) between each other.
    Now, the new building will have two Catalyst 3850 switches installed where each one has a total of 40 AP licenses pre-installed and activated
    i.e. a total of 80 APs can be supported by the two switches. A total of 67 LAPs will be deployed in the new building which can be accommodated
    between the two switches and their integrated controller.
    Yet, based on my understanding and research about Converged Access is that, ideally, the Catalyst 3850 will only run the Mobility Agent (MA)
    feature while a central controller would provide the Mobility Controller (MC) service. unfortunately, there are not enough licenses on the
    existing WLC 5508 nor can we migrate the new licenses that will facilitate such a split deployment.
    This means that I would need to configure the two Catalyst 3850 as independent MC and form a MG between them. I have done this and tested this
    already and the mobility is working fine. But my concern is not about getting the Catalyst 3850 to work as this is simple but rather it is
    focused on creating a common Mobility Domain (MD) so that clients can roam from this new building to the rest of the campus while maintaining the
    state of their connections to the WLAN infrastructure.
    To make things more complicated, since the new building will have its own Layer 3 distribution switch and the Catalyst 3850 switches will connect
    to this distribution switch, it means that new VLANs and SVIs need to be created for the SSIDs broadcast in the new building. This means that new
    subnets need to be assigned to the SSIDs.
    As such, I have the following questions:
    Q1) If we create new SVIs for the SSIDs (same SSIDs names will be used in the new building as in the rest of the university campus) this means
    that new subnets will be assigned to these SSIDs. Now, I believe I have two options...one is to make the new Catalyst 3850s to be in the same MG
    as the existing WLC 5508 which then cater for Layer 3 client roaming or I have to treat this as a totally seperate WLAN network and follow on to
    the solution as per the next question. Please advise which is a better option?
    Q2) I could create separate MG i.e. the new building Catalyst 3850s can be in one MG and the existing controllers can be in another MG. I can
    then have one of the existing WLC 5508 (the primary one) to run the Mobility Oracle (MO) feature so as to create a single Mobility Domain (MD).
    Would this facilitate in Layer 3 client roaming and RRM for all the controllers in the same MD?
    Q3) If I do create a MD, how is this accomplished in such an environment since the documentation is severely limited in this regard?
    Please advise at your earliest. To assist further, I have attached a topology diagram which may aid in explaining the situation with more
    clarity. If these things are clarified, I will be better able to wrap my head around the technology and in turn service my clients better.
    Regards,
    Amir

    Hi Amir,
    Q1) If we create new SVIs for the SSIDs (same SSIDs names will be used in the new building as in the rest of the university campus) this means that new subnets will be assigned to these SSIDs. Now, I believe I have two options...one is to make the new Catalyst 3850s to be in the same MG as the existing WLC 5508 which then cater for Layer 3 client roaming or I have to treat this as a totally seperate WLAN network and follow on to the solution as per the next question. Please advise which is a better option?
    I would configure them in the same mobility group. Also configure same SPG for those two 3850 stacks if users are frequently roaming within these two buildings.
    Q2) I could create separate MG i.e. the new building Catalyst 3850s can be in one MG and the existing controllers can be in another MG. I can then have one of the existing WLC 5508 (the primary one) to run the Mobility Oracle (MO) feature so as to create a single Mobility Domain (MD). Would this facilitate in Layer 3 client roaming and RRM for all the controllers in the same MD?
    MO is not required (it is only for very large scale deployments)
    Q3) If I do create a MD, how is this accomplished in such an environment since the documentation is severely limited in this regard?
    Yes, documents are hard to find :(
    These notes may be useful to you based on my experience. I am running IOS-XE 3.6.1 in my production.
    http://mrncciew.com/2014/05/06/configuring-new-mobility/
    http://mrncciew.com/2013/12/14/3850ma-with-5760mc/
    HTH
    Rasika
    *** Pls rate all useful responses ****

  • Linksys PCI cards and WLC problems

    /* Style Definitions */
    table.MsoNormalTable
    {mso-style-name:Standardowy;
    mso-tstyle-rowband-size:0;
    mso-tstyle-colband-size:0;
    mso-style-noshow:yes;
    mso-style-priority:99;
    mso-style-parent:"";
    mso-padding-alt:0cm 5.4pt 0cm 5.4pt;
    mso-para-margin:0cm;
    mso-para-margin-bottom:.0001pt;
    mso-pagination:widow-orphan;
    font-size:11.0pt;
    font-family:"Calibri","sans-serif";
    mso-ascii-font-family:Calibri;
    mso-ascii-theme-font:minor-latin;
    mso-hansi-font-family:Calibri;
    mso-hansi-theme-font:minor-latin;
    mso-bidi-font-family:"Times New Roman";
    mso-bidi-theme-font:minor-bidi;
    mso-fareast-language:EN-US;}
    Hi,
    I have Linksys
    /* Style Definitions */
    table.MsoNormalTable
    {mso-style-name:Standardowy;
    mso-tstyle-rowband-size:0;
    mso-tstyle-colband-size:0;
    mso-style-noshow:yes;
    mso-style-priority:99;
    mso-style-parent:"";
    mso-padding-alt:0cm 5.4pt 0cm 5.4pt;
    mso-para-margin:0cm;
    mso-para-margin-bottom:.0001pt;
    mso-pagination:widow-orphan;
    font-size:11.0pt;
    font-family:"Calibri","sans-serif";
    mso-ascii-font-family:Calibri;
    mso-ascii-theme-font:minor-latin;
    mso-hansi-font-family:Calibri;
    mso-hansi-theme-font:minor-latin;
    mso-bidi-font-family:"Times New Roman";
    mso-bidi-theme-font:minor-bidi;
    mso-fareast-language:EN-US;}
    WMP200 and WMP54G Wi-Fi PCI cards  installed on PC.
    My infrastructure is WLC 2106 and two APs 1231G and one 1242G.
    The problem is that the cards have problem with connection to WLAN.
    The broadcast SSID must be enable then the cards connect to WLAN otherwise is a problem with connection.
    When the card is connected but connection is unstable and poor.
    The cards have the newest firmware installed.
    Has anyone encountered a similar problem?
    Kamil

    Hi Kamil,
    Have you associated other types of clients with these AP's?  If so, do they perform better?
    You might want to start by checking the status of the poorly performing client on the controller while it's connected:
    monitor -> clients
    You'll primarily be interested in the RSSI and SNR. The other counters such as 'excessive retries' should be observed as well.
    Also check the AP's radio interface stats.  Check for excessive interference or channel utilization.
    This is a very helpful doc that you may want to check out:
    Unified Wireless Network: Troubleshoot Client  Issues
    http://www.cisco.com/en/US/products/ps6366/products_tech_note09186a00809d45a2.shtml
    Let us know if any of this helps.

  • Go and use my phone and in the top left hand corner it says no service. i have tried restoring the pone, resetting the network settings and also a hard reset as well.

    I have an iphone 5s and updated it to the new 7.1 software. A day later I go and use my phone and in the top left hand corner it says no service. i have tried restoring the pone, resetting the network settings and also a hard reset as well. It gains service for a short amount of time but then it loses service. Everyone else on my plan has service and their phones are completely normal but they never did the update... what can i do to fix this problem?

    Backup and restore your software via iTunes. If the problem continues, restore as a NEW device. If this solves it, that means there is some corruption in your backup file, or maybe it's one of your apps causing the trouble. If the problem is still there, you should take it to the Genius Bar at an Apple Store for evaluation.

Maybe you are looking for