Redundant WLC 5508

I have one 5508 installed and working for about a year now.  I want to install a redundant 5508.  How do I configure the controllers?  What do I need to do to have them work properly?  Any info will help.  Thank you.

Run the same code on both controllers, copy the current config from the production controller to the new controller (make sure it's offline).  Then reconfigure the interfaces to something else so that there is no IP conflict and setup the HA for the access points and setup the mobility group so that roaming works.  I've done this on 4400's so I would imagine it could also be done on 5508's.

Similar Messages

  • Redundant WLC-5508 Deployment Licensing

    I am deploying a redundant WLC-5508.  We purchased 2, each with the base license of 50 AP's.  After the survey, we determined that we need an additional 9 access points.  Do we have to purchase 2 upgrade licenses?  If so, can we get them in increments of 5, similar to the 2500 series WLC's?

    After the survey, we determined that we need an additional 9 access points.  Do we have to purchase 2 upgrade licenses?
    Yes.  You need to purchase TWO (2) licenses.
    Here's the difficulty with your scenario:
    For unknown reason, someone in Cisco has determine that, in your case, you have an appliance with 50 bases license and you need to add 9 WAPs.  Logic dictates that you could potentially get a 25-base license right?  Not in this case.  Your minimum license you can get is 100-base license.
    Because of this, I would recommend that you raise a TAC Case and potentially get both of the WLC RMA-ed.  Tell TAC that you want to get a 25-base license ADDED to both units.  (Bringing the total to 75.)
    Message was edited by: Leo Laohoo

  • Redundancy for WLC 5508 7.1.103

    I was trying to setup 2x WLC 5508 follow this instruction , copy config of 1 WLC to another and change the IP address. Then setup HA in global config for all AP
    https://supportforums.cisco.com/thread/2036661
    Is there a way to confirm fail-over work without turning off the 1st WLC ?
    I tried this command on 1 of the AP "show capwap client config"
    But it does not show secondary controller config.

    Are you sure you don't see primary and secondary controller's IP addresses on the command "show capwap client config"?
    If configured, primary, secondary or tertiary WLCs appear on the output of this command like this:
    mwarName               WLC1
    mwarIPAddress        x.x.x.x
    mwarName               WLC2
    mwarIPAddress        y.y.y.y
    mwarName               WLC3
    mwarIPAddress        z.z.z.z
    Where, WLC1 is the primary, WLC2 is the secondary and WLC3 is the tertiary.
    Note that the listing order determines which one is primary and which is secondary...etc. (first listed is primary, second is secondary..etc).
    You double check the output of your command.
    You can take Leo's advice about testing HA without reloading the WLC, but you can also check HA per AP basis. Try adding one ACL that prevents specific AP from communicating with the primary WLC and wait to see if it will join the secondary or not.
    HTH
    Amjad
    You want to say "Thank you"?
    Don't. Just rate the useful answers,
    that is more useful than "Thank you".

  • WLC 5508 running 7.4.110.0 unable to tftp upload config from controller

    Hi,
    Two WLC 5508 running identical code version. One is 50 license Primary, the second is HA. Identical config on both. HA WLC can upload its config to the TFTP or FTP server but Primary cannot. The operation fails for  both CLI and GUI and for different protocols i.e. TFTP, FTP.
    #### Primary Controller
    (Cisco Controller) >show sysinfo
    Manufacturer's Name.............................. Cisco Systems Inc.
    Product Name..................................... Cisco Controller
    Product Version.................................. 7.4.110.0
    Bootloader Version............................... 1.0.20
    Field Recovery Image Version..................... 7.6.95.16
    Firmware Version................................. FPGA 1.7, Env 1.8, USB console 2.2
    Build Type....................................... DATA + WPS
    System Name...................................... PRODWC7309
    System Location..................................
    System Contact...................................
    System ObjectID.................................. 1.3.6.1.4.1.9.1.1069
    Redundancy Mode.................................. Disabled
    IP Address....................................... 10.1.30.210
    Last Reset....................................... Power on reset
    System Up Time................................... 18 days 18 hrs 51 mins 35 secs
    System Timezone Location......................... (GMT+10:00) Sydney, Melbourne, Canberra
    System Stats Realtime Interval................... 5
    System Stats Normal Interval..................... 180
    Configured Country............................... AU - Australia
    Operating Environment............................ Commercial (0 to 40 C)
    --More-- or (q)uit
    Internal Temp Alarm Limits....................... 0 to 65 C
    Internal Temperature............................. +34 C
    External Temperature............................. +17 C
    Fan Status....................................... OK
    State of 802.11b Network......................... Enabled
    State of 802.11a Network......................... Enabled
    Number of WLANs.................................. 8
    Number of Active Clients......................... 138
    Memory Current Usage............................. Unknown
    Memory Average Usage............................. Unknown
    CPU Current Usage................................ Unknown
    CPU Average Usage................................ Unknown
    Burned-in MAC Address............................ 3C:08:F6:CA:52:20
    Power Supply 1................................... Present, OK
    Power Supply 2................................... Present, OK
    Maximum number of APs supported.................. 50
    (Cisco Controller) >debug transfer trace enable
    (Cisco Controller) >transfer upload start
    Mode............................................. TFTP
    TFTP Server IP................................... 10.1.22.2
    TFTP Path........................................ /
    TFTP Filename.................................... PRODWC7309-tmp.cfg
    Data Type........................................ Config File
    Encryption....................................... Disabled
    *** WARNING: Config File Encryption Disabled ***
    Are you sure you want to start? (y/N) Y
    *TransferTask: Jun 02 10:41:15.183: Memory overcommit policy changed from 0 to 1
    *TransferTask: Jun 02 10:41:15.183: RESULT_STRING: TFTP Config transfer starting.
    TFTP Config transfer starting.
    *TransferTask: Jun 02 10:41:15.183: RESULT_CODE:1
    *TransferTask: Jun 02 10:41:24.309: Locking tftp semaphore, pHost=10.1.22.2 pFilename=/PRODWC7309-tmp.cfg
    *TransferTask: Jun 02 10:41:24.393: Semaphore locked, now unlocking, pHost=10.1.22.2 pFilename=/PRODWC7309-tmp.cfg
    *TransferTask: Jun 02 10:41:24.393: Semaphore successfully unlocked, pHost=10.1.22.2 pFilename=/PRODWC7309-tmp.cfg
    *TransferTask: Jun 02 10:41:24.394: tftp rc=-1, pHost=10.1.22.2 pFilename=/PRODWC7309-tmp.cfg
    pLocalFilename=/mnt/application/xml/clis/clifile
    *TransferTask: Jun 02 10:41:24.394: RESULT_STRING: % Error: Config file transfer failed - Unknown error - refer to log
    *TransferTask: Jun 02 10:41:24.394: RESULT_CODE:12
    *TransferTask: Jun 02 10:41:24.394: Memory overcommit policy restored from 1 to 0
    % Error: Config file transfer failed - Unknown error - refer to log
    (Cisco Controller) >show logging
    *TransferTask: Jun 02 10:41:24.393: #UPDATE-3-FILE_OPEN_FAIL: updcode.c:4579 Failed to open file /mnt/application/xml/clis/clifile.
    *sshpmReceiveTask: Jun 02 10:41:24.315: #OSAPI-3-MUTEX_FREE_INFO: osapi_sem.c:1087 Sema 0x2b32def8 time=142 ulk=1621944 lk=1621802 Locker(sshpmReceiveTask sshpmrecv.c:1662 pc=0x10b07938) unLocker(sshpmReceiveTask sshpmReceiveTaskEntry:1647 pc=0x10b07938)
    -Traceback: 0x10af9500 0x1072517c 0x10b07938 0x12020250 0x12080bfc
    *TransferTask: Jun 02 10:39:01.789: #UPDATE-3-FILE_OPEN_FAIL: updcode.c:4579 Failed to open file /mnt/application/xml/clis/clifile.
    *sshpmReceiveTask: Jun 02 10:39:01.713: #OSAPI-3-MUTEX_FREE_INFO: osapi_sem.c:1087 Sema 0x2b32def8 time=5598 ulk=1621801 lk=1616203 Locker(sshpmReceiveTask sshpmrecv.c:1662 pc=0x10b07938) unLocker(sshpmReceiveTask sshpmReceiveTaskEntry:1647 pc=0x10b07938)
    -Traceback: 0x10af9500 0x1072517c 0x10b07938 0x12020250 0x12080bfc
    #### HA Controller
    (Cisco Controller) >show sysinfo
    Manufacturer's Name.............................. Cisco Systems Inc.
    Product Name..................................... Cisco Controller
    Product Version.................................. 7.4.110.0
    Bootloader Version............................... 1.0.20
    Field Recovery Image Version..................... 7.6.95.16
    Firmware Version................................. FPGA 1.7, Env 1.8, USB console 2.2
    Build Type....................................... DATA + WPS
    System Name...................................... PRODWC7310
    System Location..................................
    System Contact...................................
    System ObjectID.................................. 1.3.6.1.4.1.9.1.1069
    Redundancy Mode.................................. Disabled
    IP Address....................................... 10.1.31.210
    Last Reset....................................... Software reset
    System Up Time................................... 18 days 19 hrs 1 mins 27 secs
    System Timezone Location......................... (GMT+10:00) Sydney, Melbourne, Canberra
    System Stats Realtime Interval................... 5
    System Stats Normal Interval..................... 180
    Configured Country............................... AU - Australia
    Operating Environment............................ Commercial (0 to 40 C)
    --More-- or (q)uit
    Internal Temp Alarm Limits....................... 0 to 65 C
    Internal Temperature............................. +34 C
    External Temperature............................. +17 C
    Fan Status....................................... OK
    State of 802.11b Network......................... Enabled
    State of 802.11a Network......................... Enabled
    Number of WLANs.................................. 4
    Number of Active Clients......................... 0
    Memory Current Usage............................. Unknown
    Memory Average Usage............................. Unknown
    CPU Current Usage................................ Unknown
    CPU Average Usage................................ Unknown
    Burned-in MAC Address............................ 3C:08:F6:CA:53:C0
    Power Supply 1................................... Present, OK
    Power Supply 2................................... Present, OK
    Maximum number of APs supported.................. 500
    (Cisco Controller) >debug transfer trace enable
    (Cisco Controller) >transfer upload start
    Mode............................................. FTP
    FTP Server IP.................................... 10.1.22.2
    FTP Server Port.................................. 21
    FTP Path......................................... /
    FTP Filename..................................... 10_1_31_210_140602_1050.cfg
    FTP Username..................................... ftpuser
    FTP Password..................................... *********
    Data Type........................................ Config File
    Encryption....................................... Disabled
    *** WARNING: Config File Encryption Disabled ***
    Are you sure you want to start? (y/N) y
    *TransferTask: Jun 02 10:51:31.278: Memory overcommit policy changed from 0 to 1
    *TransferTask: Jun 02 10:51:31.278: RESULT_STRING: FTP Config transfer starting.
    FTP Config transfer starting.
    *TransferTask: Jun 02 10:51:31.278: RESULT_CODE:1
    *TransferTask: Jun 02 10:52:05.468: ftp operation returns 0
    *TransferTask: Jun 02 10:52:05.477: RESULT_STRING: File transfer operation completed successfully.
    *TransferTask: Jun 02 10:52:05.477: RESULT_CODE:11
    File transfer operation completed successfully.
    Not upgrading to 7.4.121.0 because of bug CSCuo63103. Have not restarted the controller yet.
    Any one else had this issue ? Is there a workaround ?
    Thanks,
    Rick.

    Thanks Stephen, In my deployments of 7.4.110.0 version I have not seen this issue so may be controller reboot will fix it (we do have HA to minimize the impact). I will keep the thread updated with findings and may request TAC for the special release 7.4.121.0 if the still not happy with 7.4.110.0
    Rick.

  • WLC 5508 * 2 & Mobility Group

    What I am trying to configure is Mobility Groups.
    My understanding is that this will allow AP to successfully register and fail over over seamlessly if any of the WLC had to fail ?
    It could be I am confusing two things into one :( & I am totally confused and not understanding the benefits of mobility group mentioned above.
    Also when a AP starts up and registers with the WLC ......I click on a registered AP > High Availability ( Primary / Sec / Tertiary ) all fields are blank...
    Initially I also thought that once my SSO is all setup and working than those options "AP > High Availability" will get populated automatically but clearly not unless something is not working.
    My current config is as follows:-
    WLC 5508 * 2
    WLC 1 - Primary
    WLC 2 - HA SKU (Secondary )
    Redundancy = SSO (Both AP and Client SSO)
    =============
    (Cisco Controller) >show sysinfo
    Manufacturer's Name.............................. Cisco Systems Inc.
    Product Name..................................... Cisco Controller
    Product Version.................................. 7.6.130.0
    Bootloader Version............................... 1.0.20
    Field Recovery Image Version..................... 7.6.101.1
    Firmware Version................................. FPGA 1.7, Env 1.8, USB console 2.2
    Build Type....................................... DATA + WPS
    System Name...................................... WLC5508
    System Location..................................
    System Contact...................................
    System ObjectID.................................. 1.3.6.1.4.1.9.1.1069
    Redundancy Mode.................................. SSO (Both AP and Client SSO)
    IP Address....................................... 10.31.66.21
    Last Reset....................................... Software reset
    System Up Time................................... 0 days 22 hrs 39 mins 57 secs
    System Timezone Location......................... (GMT) London, Lisbon, Dublin, Edinburgh
    System Stats Realtime Interval................... 5
    System Stats Normal Interval..................... 180
    Configured Country............................... GB  - United Kingdom
    Operating Environment............................ Commercial (0 to 40 C)
    --More-- or (q)uit
    Internal Temp Alarm Limits....................... 0 to 65 C
    Internal Temperature............................. +38 C
    External Temperature............................. +21 C
    Fan Status....................................... OK
    State of 802.11b Network......................... Enabled
    State of 802.11a Network......................... Enabled
    Number of WLANs.................................. 1
    Number of Active Clients......................... 0
    Burned-in MAC Address............................ F8:72:EA:EE:5B:B2
    Power Supply 1................................... Present, OK
    Power Supply 2................................... Absent
    Maximum number of APs supported.................. 500
    ============================================
    TA

    TA,
    Mobility and mobility groups are used for the wireless users roaming. What we know that a wireless users can roam between different APs within the same WLC, but when the SSID is used within multiple WLCs, and the client wanted to roam to an AP joined to another WLC, you would need to configure WLC mobility to maintain seamless roaming. For more info:
    http://www.cisco.com/c/en/us/td/docs/wireless/controller/8-0/configuration-guide/b_cg80/b_cg80_chapter_010001101.html
    Now, I understand that your purpose is to have high availability for your APs. No this is done traditionally from the AP page, under HA tab, where you configure the WLCs names and IPs there. This can be done manually on each AP (you can use CLI to make it easier) or you can push a configuration template using a management server (WCS/NCS/CPI).
    Configuring HA on the AP:
    http://www.cisco.com/c/en/us/td/docs/wireless/controller/8-0/configuration-guide/b_cg80/b_cg80_chapter_01110000.html
    http://www.cisco.com/c/en/us/td/docs/wireless/controller/8-0/configuration-guide/b_cg80/b_cg80_chapter_01110001.html
    Using CPI to push AP configuration templates:
    http://www.cisco.com/c/en/us/td/docs/wireless/prime_infrastructure/2-0/configuration/guide/pi_20_cg/temp.html
    Now mobility may play a role in this, as if you have already configured mobility for your WLCs, then you won't need to configure a "name" for the WLCs when you add them under the HA tab in AP configuration page. That's it.
    BR, Ala

  • SNMP TRAP ON Secondary WLC 5508

    Hi I'm Louis,
    I work on 2 WLC 5508 with version 7.4 and Prime Infrastructure 1.3
    We have activate AP SSO to work with a primary and secondary controller.
    We have added the controller to Prime infrastructure and activated SNMP.
    We receive correctly the alarms on Prime.
    But when we work on Primary WLC, and the secondary crash we haven't got information about that. No SNMP received.
    That is normal ?
    Thx for your reply
    Regards

    I find this, in Monitoring and Troubleshooting the Redundancy States
    http://www.cisco.com/en/US/docs/net_mgmt/prime/infrastructure/1.2/user/guide/chgdevconfig.html
    On my primary controller, in SNMP => Trap Log , I can see :
    RF failure notification ErrorType: 34 Reason :Lost Peer, Moving to Active-No-Peer State! => When I unplug RP link
    RF progress notification unitId: -1407319963 peerUnitId :14 unitState: -1407319863 peerUnitState :5
    RF progress notification unitId: -1407319963 peerUnitId :14 unitState: -1407319863 peerUnitState :9  => When I plug the RP link.
    So I can see the trap on my controller but there is nothing in Prime ...

  • AIR-CAP1602i cannot join a WLC 5508 controller

    Hello,
    I'm managing a large number of access points on a Cisco wlc 5508 controller.
    We've recently purchased a bunch of new AIR-CAP1602I-E-K9.
    note that we already have AIR-CAP1602I-E-K9 and other models in production.
    These A.P are not able to join the controller for some reason, I've tried a lot of different things but I am now at a loss.
    I have checked the regulatory domain, upgraded the FUS, manually upgraded the software version of the LAP to match the version on the other A.P.
    I even downgraded/upgraded the WLC code (version 7.4.x and 8.0)
    I use the dhcp option 43 to to send the controller IP.
    Here are the info that can help:
    errors:
    #on A.P
    *Dec 12 09:24:49.659: %CAPWAP-3-ERRORLOG: Invalid event 10 & state 5 combination.
    *Dec 12 09:24:49.659: %CAPWAP-3-ERRORLOG: CAPWAP SM handler: Failed to process message type 10 state 5.
    *Dec 12 09:24:49.659: %CAPWAP-3-ERRORLOG: Failed to handle capwap control message from controller
    #on WLC
    Lwapp join request rejected (WLC version 7.6.130.0)
    Failed to add database entry (WLC version 8.0)
    WLC sysinfo
    Manufacturer's Name.............................. Cisco Systems Inc.
    Product Name..................................... Cisco Controller
    Product Version.................................. 7.6.130.0
    Bootloader Version............................... 1.0.20
    Field Recovery Image Version..................... 7.6.101.1
    Firmware Version................................. FPGA 1.7, Env 1.8, USB console 2.2
    Build Type....................................... DATA + WPS
    System Name...................................... XXX
    System Location..................................
    System Contact...................................
    System ObjectID.................................. 1.3.6.1.4.1.9.1.1069
    Redundancy Mode.................................. Disabled
    IP Address....................................... XXX
    Last Reset....................................... Software reset
    System Up Time................................... 6 days 4 hrs 16 mins 27 secs
    System Timezone Location.........................
    System Stats Realtime Interval................... 5
    System Stats Normal Interval..................... 180
    Configured Country............................... Multiple Countries:CA,FR
    Operating Environment............................ Commercial (0 to 40 C)
    Internal Temp Alarm Limits....................... 0 to 65 C
    Internal Temperature............................. +41 C
    External Temperature............................. +22 C
    Fan Status....................................... OK
    State of 802.11b Network......................... Enabled
    State of 802.11a Network......................... Enabled
    Number of WLANs.................................. 7
    Number of Active Clients......................... 1977
    Burned-in MAC Address............................ A4:93:4C:B0:E4:C0
    Power Supply 1................................... Present, OK
    Power Supply 2................................... Present, OK
    Maximum number of APs supported.................. 250
    AP sh version
    AP58f3.9cb8.3701#sh version
    Cisco IOS Software, C1600 Software (AP1G2-K9W8-M), Version 15.2(4)JB6, RELEASE SOFTWARE (fc1)
    Technical Support: http://www.cisco.com/techsupport
    Copyright (c) 1986-2014 by Cisco Systems, Inc.
    Compiled Fri 22-Aug-14 10:56 by prod_rel_team
    ROM: Bootstrap program is C1600 boot loader
    BOOTLDR: C1600 Boot Loader (AP1G2-BOOT-M) LoaderVersion 15.2(2)JAX, RELEASE SOFTWARE (fc1)
    AP58f3.9cb8.3701 uptime is 31 minutes
    System returned to ROM by power-on
    System image file is "flash:/ap1g2-k9w8-mx.152-4.JB6/ap1g2-k9w8-mx.152-4.JB6"
    Last reload reason:
    This product contains cryptographic features and is subject to United
    States and local country laws governing import, export, transfer and
    use. Delivery of Cisco cryptographic products does not imply
    third-party authority to import, export, distribute or use encryption.
    Importers, exporters, distributors and users are responsible for
    compliance with U.S. and local country laws. By using this product you
    agree to comply with applicable laws and regulations. If you are unable
    to comply with U.S. and local laws, return this product immediately.
    A summary of U.S. laws governing Cisco cryptographic products may be found at:
    http://www.cisco.com/wwl/export/crypto/tool/stqrg.html
    If you require further assistance please contact us by sending email to
    [email protected].
    cisco AIR-CAP1602I-E-K9 (PowerPC) processor (revision B0) with 229366K/32768K bytes of memory.
    Processor board ID FGL1832X5QU
    PowerPC CPU at 533MHz, revision number 0x2151
    Last reset from power-on
    LWAPP image version 7.6.100.0
    1 Gigabit Ethernet interface
    2 802.11 Radios
    32K bytes of flash-simulated non-volatile configuration memory.
    Base ethernet MAC Address: 58:F3:9C:B8:37:01
    Part Number                          : 73-14671-04
    PCA Assembly Number                  : 000-00000-00
    PCA Revision Number                  :
    PCB Serial Number                    : FOC183171L4
    Top Assembly Part Number             : 800-38552-01
    Top Assembly Serial Number           : FGL1832X5QU
    Top Revision Number                  : A0
    Product/Model Number                 : AIR-CAP1602I-E-K9
    AP sh inventory
    NAME: "AP1600", DESCR: "Cisco Aironet 1600 Series (IEEE 802.11n) Access Point"
    PID: AIR-CAP1602I-E-K9 , VID: V01, SN: FGL1832X5QU
    Thanks for your help !

    Hi Olivier,
    The error messages that you have on the debugs:
    *Dec 12 09:24:49.659: %CAPWAP-3-ERRORLOG: Invalid event 10 & state 5 combination.
    *Dec 12 09:24:49.659: %CAPWAP-3-ERRORLOG: CAPWAP SM handler: Failed to process message type 10 state 5.
    *Dec 12 09:24:49.659: %CAPWAP-3-ERRORLOG: Failed to handle capwap control message from controller
    It is related to the bug: CSCuh46442
    https://tools.cisco.com/bugsearch/bug/CSCuh46442/?referring_site=ss
    This bug is resolved in version : 8.0.100.0
    http://www.cisco.com/c/en/us/td/docs/wireless/controller/release/notes/crn80.html#pgfId-1163951
    Can you please paste here "show ap auth-list" from the controller CLI?
    I suggest to enable MIC if it is not enabled, and then check if the AP's will join or not.
    Kind Regards
    Mohammad Setan

  • WLC 5508 7.3.101.0

                       Hi,
    I recently installed 2 wlc 5508 with the latest software 7.3.101.0. There is an issue I can not resolve. I am not able to activate the Internal DHPC Server. The following message appears: "Error in setting dhcp scop leasetime". Does anybody know how to fix this ?
    Vincent

    Hi Scott,
    When trying to create a new one. It looks like a bug. I tried different lease times but it will always show in a messages box
    "Error in setting dhcp scope leasetime"
    O, I forgot to tell that both wlc's are configured as HA and running in redundancy mode. Everthing seems to work well and the failover is doing fine except DHCP is not working.

  • WLC 5508 in HA pair (7.4.121.0) sudden reload

    I have a pair of WLC 5508 in HA pair running version 7.4.121.0, last week I have two sudden reload on my active WLC. Here's the error from my syslog server on the first sudden reload. The second reload has almost the same logs.
    10.x.x.234 - active
    10.x.x.237 - standby
    2014-01-30 17:52:20 Local0.Error 10.x.x.237 WLC-HA01: *rmgrMain: Jan 30 17:52:24.498: #RMGR-3-RED_HEARTBEAT_TMOUT: rmgr_main.c:242 rmgrTmoHeartbeat: Recved GW ping count 6 phyMgr ping count 0.
    2014-01-30 17:52:20 Local0.Emerg 10.x.x.237 WLC-HA01: *rmgrMain: Jan 30 17:52:24.555: #RMGR-0-RED_HA_RELOAD: rmgr_utils.c:198 System reboot: reason: category Sanity check object Self
    2014-01-30 17:52:21 Local0.Emerg 10.x.x.234 WLC-HA01: *rmgrMain: Jan 30 17:52:24.989: #RMGR-0-RED_HA_RELOAD: rmgr_utils.c:188 System reboot: reason: category Peer reload req object Peer
    2014-01-30 17:52:21 Local0.Alert 10.x.x.234 WLC-HA01: *dtlArpTask: Jan 30 17:52:25.106: #DTL-1-IP_CONFLICT_DETECTED: dtl_net.c:4857 Network device with mac addr 7c:ad:74:8d:6b:0f using IP address of local interface
    Cisco TAC recommends to disable monitoring the default gateway.
    --> config redundancy management-gateway-failover disable
    I was wondering if someone has the issue with what I have.
    Second issue I have is when it fails over to the standby WLC, I do get a web-auth certificate error from the WLC when clients login. This only happens after a sudden reload. If I do a redundancy force-switchover during maintenance window, the certificate error doesn't show up. To fix the certificate error I have to bounce both WLCs one after the other.
    Thanks in advance.

    Hi,
    I exeprienced a reload problem in standby WLC, with HA in release 7.6.100.0.
    I use a dedicated VLAN to transport the redundancy sync and info, 'cause the two WLCs are in different buildings.
    The standby WLC reload continuously 'cause it doesn,t find the default gateway.
    (Cisco Controller-Standby) >show redundancy summary
                Redundancy Mode = SSO ENABLED
                    Local State = STANDBY HOT
                     Peer State = ACTIVE
                           Unit = Secondary - HA SKU (Inherited AP License Count = 500)
                        Unit ID = 00:06:F6:DB:E3:E0
               Redundancy State = SSO (Both AP and Client SSO)
                   Mobility MAC = 58:8D:09:CD:81:C0
    Management Gateway Failover = ENABLED (Management GW failover would be operational in few moments)
    Average Redundancy Peer Reachability Latency = 621 usecs
    Average Management Gateway Reachability Latency = 0 usecs
    Redundancy Management IP Address................. 40.231.36.6
    Peer Redundancy Management IP Address............ 40.231.36.5
    Redundancy Port IP Address....................... 169.254.36.6
    Peer Redundancy Port IP Address.................. 169.254.36.5
    Rebooting as default GW is not reachable from Standby Controller
    Restarting system. Reason: Default Gateway is not reachable ..
    The problem is that the WLC tries to ping the DGW using the primary IP management address belonging to the active WLC, so we have duplicated IP problem, ARP problem and so on .....
    The standby WLC should use the redundancy managemet address to ping the default gateway, instead the primary IP management address!!!!!!
    So the workaround is the CLI command :
    config redundancy management-gateway-failover disable
    on the primary WLC, via console or in SSH.
    When the standby will reload it will inherit the config from the active primary WLC
    (Cisco Controller-Standby) >show redundancy summary   
                Redundancy Mode = SSO ENABLED
                    Local State = STANDBY HOT
                     Peer State = ACTIVE
                           Unit = Secondary - HA SKU (Inherited AP License Count = 500)
                        Unit ID = 00:06:F6:DB:E3:E0
               Redundancy State = SSO (Both AP and Client SSO)
                   Mobility MAC = 58:8D:09:CD:81:C0
    Management Gateway Failover = ENABLED (Management GW failover is disabled as it is DISABLED on the Peer)
    Average Redundancy Peer Reachability Latency = 666 usecs
    Average Management Gateway Reachability Latency = 0 usecs
    Redundancy Management IP Address................. 40.231.36.6
    Peer Redundancy Management IP Address............ 40.231.36.5
    Redundancy Port IP Address....................... 169.254.36.6
    Peer Redundancy Port IP Address.................. 169.254.36.5
    The workaround works in my experience.

  • WLC 5508 Switchover Issue

    Hi There,
       Our issue is about a WLC 5508 conected to a HP Switch L3 model HP7500 using link-aggregation. Sometimes the controller change to the secondary box and log the error message: Switchover Reason = Default gateway is not reachable, Switchover Time 
    Manufacturer's Name.............................. Cisco Systems Inc.
    Product Name..................................... Cisco Controller
    Product Version.................................. 7.6.120.0
    Bootloader Version............................... 1.0.1
    Field Recovery Image Version..................... 6.0.182.0
    Firmware Version................................. FPGA 1.7, Env 1.8, USB console 2.2
    Build Type....................................... DATA + WPS
    management                       LAG  untagged x.y.z.a    Static  Yes    No
    redundancy-management            LAG  untagged x,y.z.b     Static  No     No
    redundancy-port                  -    untagged 169.254.0.12    Static  No     No
    (Cisco Controller) >show redundancy summary
                Redundancy Mode = SSO ENABLED
                    Local State = ACTIVE
                     Peer State = STANDBY HOT
                           Unit = Primary
                        Unit ID = 6C:41:6A:5F:75:00
               Redundancy State = SSO (Both AP and Client SSO)
                   Mobility MAC = 6C:41:6A:5F:75:00
    Average Redundancy Peer Reachability Latency = 488 usecs
    Average Management Gateway Reachability Latency = 748 usecs
    Redundancy Management IP Address................. x.y.z.a
    Peer Redundancy Management IP Address............ x.y.z.b
    Redundancy Port IP Address....................... 169.254.0.12
    Peer Redundancy Port IP Address.................. 169.254.0.13
    Peer Service Port IP Address..................... 0.0.0.0
    Switchover History[1]:
    Previous Active = 10.140.0.13, Current Active = x.y.z.a
    Switchover Reason = Default gateway is not reachable, Switchover Time = Tue Aug 19 05:32:44 2014
    Any idea what´s the problem could be?  We check alllan environment spanning-tree, vlan, routing, no physical issues.
    My best regards
    Adriano Porcaro

    Show sysinfo results :
    Manufacturer's Name.............................. Cisco Systems Inc.
    Product Name..................................... Cisco Controller
    Product Version.................................. 7.0.116.0
    Bootloader Version............................... 1.0.1
    Field Recovery Image Version..................... 6.0.182.0
    Firmware Version................................. FPGA 1.3, Env 1.6, USB console 1.27
    Build Type....................................... DATA + WPS

  • WLC 5508

    Hi all,
    I want some information about WLC setup.
    I had wlc5508 with 12 LAP and it's working fine, but Now I want to purchase another WLC 5508 for redundant purpose.
    If my older wlc failed then the new one will take care all the AP.
    So can any one suggest me how to configure this type of topology and any docs.

    Hi Kiran,
    This feature is called WLC fail over for LWAPPS.. here is the config example that gives us detailed explanation...
    http://www.cisco.com/en/US/tech/tk722/tk809/technologies_configuration_example09186a008064a294.shtml
    lemme know if this answered your question..
    Regards
    Surendra
    ====
    Please dont forget to rate the posts which answered your question and mark it as answered or was helpfull

  • Can we upgrade IOS in WLC 5508 through CISCO prime?

    I have CISCO prime 2.0 and CISCO WLC 5508 HA SSO pair.
    I would like to upgrade the software code for the WLC HA pair.
    Can I do through the CISCO prime ......
    As per the link :http://www.cisco.com/c/en/us/td/docs/wireless/controller/technotes/7-5/High_Availability_DG.html#pgfId-43571
    1. After the WLCs are configured in the HA setup, the Standby WLC cannot be upgraded directly from the TFTP/FTP server.
    Prime do the upgrade through FTP server , so will it be ok if we do the upgrade through it, for HA WLC.

    Please check this link to upgrade wLC software in HA setup.
    http://www.cisco.com/c/en/us/td/docs/wireless/controller/technotes/7-5/High_Availability_DG.html
    Once the Primary WLC complete the upgrade , it will transfer the entire image to the Standby WLC via the Redundant Port.
    Regards
    Dont forget to rate helpful posts

  • WLCs 5508, HA enabled and Internal DHCP

    Hi:
    Designing a new project for a customer in which a pair of WLC-5508 and a bunch of AP-3602I will be deployed.
    Controllers running 7.4 image, and I'd also like to use them as internal DHCP servers for clients in different WLANs
    As for the redundancy mechanism I'd go for activating HA (AP-SSO) but I know HA and internal DHCP server can't coexist.
    So, my question is: does anyone know if Cisco is thinking of implementing both features in any new version to come? The goal would be the Active controller handing over all leases database in case of active to standby switchover.
    Thx!
    Juan.

    As you already know that HA and DHCP both cannot coexist on WLC. Till now there is no plan of cisco to implement this.

  • How to make WLC 5508-HA controller mantainance mode to HA mode

    Hi,
    I have two wlc 5508 with HA mode, If unfortunally redudndent link disconnected and standby wlc goes to mantainance mode.
    then again I connected redundent link but second wlc does not come in ha, it still remain in mantainance mode.
    What is the configuration that device goes to mantainance mode to HA Mode automatically. withought reboot mantainance controller.
    Pleasde help....

    HA Pairing is possible only between the same type of hardware and software versions. Mismatch may result in Maintenance Mode.
    Refer
    http://www.cisco.com/c/en/us/td/docs/wireless/controller/technotes/7-5/High_Availability_DG.html

  • WLC 5508 in HA

    Hi everyone,
    I have a doubt with a scheme of WLC in HA, I hope someone can help me.  
    I have 6 remote sites and 2 main sites, in coming year at least 3 remote sites will be opened.  Each remote site has one WLC 5508, I want to deploy HA for these ones, however I want to know if only I must put other WLC at each remote site?  or exists other way in order to deploy a  Cisco WLC in Main Site for working like WLC HA for every one at remote sites?
    Thanks

    1. That is up to you and what you need for redundancy. With that low of licensing and the cost you may just want to buy a 50 count controller and not bother with an HA SKU. (2 could fail)
    2. I believe this was back when they were selling HA only SKUs, you couldn't upgrade an HA to a permanent license. 
    3.  Yes, I mentioned that the APs will lose CAPWAP connections. There will be an outage during fail over
    4. It will not, N+1 is for redundancy on one. 
    Some designs with smaller sites use FlexConnect with AP SSO on redundant controllers in a data center, minimizing downtime.There are some caveats though.
    http://www.cisco.com/c/en/us/support/docs/wireless/5500-series-wireless-controllers/112042-technote-product-00.html

Maybe you are looking for

  • Going in Circles

    right i'd like to have an opinion here. one engineer who visited us for the broadband problem already mentioned that it was rather stupid to put a phone socket here: the socket on the far right is new (approx 6 months is for SKY HD which we are using

  • Set fields of derived class in base class constructor via reflection?

    Does the Java Language Specification explicitly allow setting of fields of a derived class from within the base class' constructor via reflection? The following test case runs green, but I would really like to know if this Java code is compatible amo

  • DW CS4 crashes in Snow Leopard

    Hi Is it me or does DW CS4 just absolutely not work in SL 10.6.1 at all. Illustrator and Photoshop seem ok. I have managed to get it to launch previously, but not today. Is it a known issue or should I de/re-install? Any help is appreciated before I

  • Username and password for Adobe Edge

    Username and password for Adobe Edge, where do I enter these?

  • Non admin removing parental control

    Re subject above, I have non admin users who claim and have removed the parental control of access time limits by entering key sequence at boot. How can that be stopped?