Wireless 2504,user not getting dhcp ip address

Hi i have configured wlc 2504 .in that i have configured two interfaces.one is guest, 2nd is internal user,
the pblm when user try to connect with that contain ssid user not getting ip address,
i have connected only one link between core to wlc on port 1.for guest interface i used port 4.but no physical link.
Please help this

There are multiple ways how the clients can get their IP-address in a WLC deployment.
From the WLC-FAQ:
How does DHCP work with the WLC?
A. The WLC is designed to act as a DHCP relay agent to the external DHCP server and acts like a DHCP server to the client. This is the sequence of events that occurs:
Generally, WLAN is tied to an interface which is configured with a DHCP server.
When the WLC receives a DHCP request from the client on a WLAN, it relays the request to the DHCP server with its management IP address.
The WLC shows its Virtual IP address, which must be a non-routable address, usually configured as 1.1.1.1, as the DHCP server to the client.
The WLC forwards the DHCP reply from the DHCP server to the wireless client with its Virtual IP address.Note: You can also configure the WLC to act as a DHCP server. For more information on how to configure a WLC as a DHCP server, refer to the Configuring DHCP Scopes section of the document Cisco Wireless LAN Controller Configuration Guide Release 5.1.
If you want more in-depth information you should read "DHCP with the WLC":
http://www.cisco.com/en/US/partner/products/ps6366/products_tech_note09186a0080af5d13.shtml
Don't stop after you've improved your network! Improve the world by lending money to the working poor:
http://www.kiva.org/invitedby/karsteni

Similar Messages

  • Cisco E1000 wont connect to internet anymore - not getting DHCP ip address from Comcast modem

    Very strange issue...
    I have Comcast HSI and have been using my Cisco (Linksys) E1000 for about 3 years now. Bought it as a refurb.
    My issue is that the E1000 is NOT receiving the DHCP info from my Comast modem.
    The internet works when my laptop is directly attached to the modem; but when connecting the modem internet port
    to the E1000 internet port it is NOT grabbing my ISP DHCP ip address thus no clients can broswe 'wired or wireless'.
    I even updated the firmware and am starting to think its time to get a 'BRAND NEW' router as this makes NO SENSE!
    I cannot release/renew as i have NO ip address to release.  I have even tried to configure the E1000 as a static 
    using the ipconfig/all from when the laptop and modem was connected. Comcast says they see nothing on their end. 
    I also factory defaulted the router and redid the config to no avail. 
    Any help would be appreciated.
    Solved!
    Go to Solution.

    You need to enable MAC address clone on the router to recognize the connection from your cable modem. The link below would tell you how to configure the router to work with a cable connection and how to do MAC address clone.
    Setting up a Linksys router with Cable Internet service

  • Not getting DHCP address on HP 8000 Elite

    I'm using the Feb 2010 CD. Windows 2003 DHCP server
    Boot with the cd and no dhcp address.
    If I type "dhcpcd eth0 -n" enough times I will eventually get an address, although the first time it's usually "err, eth0: Failed to lookup hostname via DNS: Name or service not known"
    The same CD works OK with a HP dc7900, dc7800, etc. It looks like they all have the same Intel e1000e nic, but maybe no?

    I'm starting to investigate issues that may be similar to yours and I had a
    thought that I thought I'd share with you ;-)
    In what may be a related situation one of our admins is having issues with
    the dhcp client on an openSUSE 11.1 (and 11.2) during and after the install
    on some Dell servers. Sometimes the dhcp client will not get an ip address.
    After some poking he found that there are in fact two dhcp clients available
    : dhcpcd (dhcp client daemon) and dhclient (package is called dhcp-client).
    The default client in openSUSE - and presumably the Linux environment of
    ZENworks Imaging - is dhcpcd v3.x. It seems that there are a number of
    reports of this client being problematic. The maintainer of this client has
    recently released v5.x which may resolve the issues with v3.x.
    In our testing on openSUSE dhclient works much more reliably than dhcpcd,
    where "more" is equal to 100%. None of this helps us of course, but it is
    background info that leads up to my idea: is it possible to use the other
    client, dhclient in the ZEN Linux environment? I don't know if this client
    is even included in the ZEN Imaging Linux environment or not. If it isn't
    then maybe it might be possible to modify the initrd/root/linux files to
    include it. This would at least let you have another means of acquiring a
    dhcp ip address. I'm sorry that I do not have the Linux skills to do more
    than make a suggestion...
    Cheers,
    Ron
    PS I have submitted an enhancement request via the openFATE website to have
    the dhcp client daemon upgraded to v5.x. Maybe if you think it a good idea
    you could login to the openFATE portal and vote it up!

  • EA6900 Bridge mode setup - not getting proper DNS addresse

    I have an EA6900 that I am trying to use just as an access point (have an existing sonicwall as my internet connection / router device)
    Here are the steps I have completed 
    I have logged in to the modem, and created a modem password - can log into modem wirelessly with modem password
    I went into the connectivity settings and selec ted bridge mode - with auto IPv4 settings
        I get the right IP address segment on my laptop, but the DNS addresses are not from my network (not even the settings from my sonicwall)
    I then set the IPv4 settings manually, and enterred a static IPv4 address, as well as the gateway (as my sonicwall), and the DNS addresses of 2 of my servers as well as an external DNS server address
    When I connect to the EA6900 with a laptop, I still do not get the DNS addresses I have enterred in the fields on the EA6900 connectivity setup screen
    I even tried to enter my server as a gateway - not the sonicwall, and that does not work either (laptop gets the same DNS server addresses)
    Any way to do this?
    Briudge mode, Get DHCP from my server (works), get DNS server addresses as are enterred in connectivity settings (not working)

    salasidis wrote:
    I have an EA6900 that I am trying to use just as an access point (have an existing sonicwall as my internet connection / router device)
    Here are the steps I have completed 
    I have logged in to the modem, and created a modem password - can log into modem wirelessly with modem password
    I went into the connectivity settings and selec ted bridge mode - with auto IPv4 settings
        I get the right IP address segment on my laptop, but the DNS addresses are not from my network (not even the settings from my sonicwall)
    I then set the IPv4 settings manually, and enterred a static IPv4 address, as well as the gateway (as my sonicwall), and the DNS addresses of 2 of my servers as well as an external DNS server address
    When I connect to the EA6900 with a laptop, I still do not get the DNS addresses I have enterred in the fields on the EA6900 connectivity setup screen
    I even tried to enter my server as a gateway - not the sonicwall, and that does not work either (laptop gets the same DNS server addresses)
    Any way to do this?
    Briudge mode, Get DHCP from my server (works), get DNS server addresses as are enterred in connectivity settings (not working)
    "I have logged in to the modem, and created a modem password - can log into modem wirelessly with modem password" Modem? or do you mean the Router? Modem and router are two different things.
    That DNS are you seeing on the devices?

  • Clients not receiving DHCP IP address from HREAP centrally Switched Guest SSID

    Hi All,
    I am facing a problem in a newly deployed branch site where the Clients are not receiving DHCP IP address from a centrally switched Guest SSID. I see the client status is associated but the policy manager state is in DHCP_REQD.
    The dhcp pool is configured on the controller itself. The local guest clients are able to get DHCP and all works fine, the issue is only with the clients in the remote site. The Hreap APs are in connected mode. Could you please suggest what could be the problem. Below is the out of the debug client.
    *apfMsConnTask_3: May 24 13:26:49.372: 10:40:f3:91:7e:24 Adding mobile on LWAPP AP 3c:ce:73:6d:37:00(1)
    *apfMsConnTask_3: May 24 13:26:49.372: 10:40:f3:91:7e:24 Reassociation received from mobile on AP 3c:ce:73:6d:37:00
    *apfMsConnTask_3: May 24 13:26:49.372: 10:40:f3:91:7e:24 0.0.0.0 START (0) Changing ACL 'Guest-ACL' (ACL ID 0) ===> 'none' (ACL ID 255) --- (caller apf_policy.c:1393)
    *apfMsConnTask_3: May 24 13:26:49.372: 10:40:f3:91:7e:24 Applying site-specific IPv6 override for station 10:40:f3:91:7e:24 - vapId 17, site 'APG-MONZA', interface 'vlan_81'
    *apfMsConnTask_3: May 24 13:26:49.372: 10:40:f3:91:7e:24 0.0.0.0 START (0) Changing ACL 'none' (ACL ID 255) ===> 'none' (ACL ID 255) --- (caller apf_policy.c:1393)
    *apfMsConnTask_3: May 24 13:26:49.372: 10:40:f3:91:7e:24 Applying IPv6 Interface Policy for station 10:40:f3:91:7e:24 - vlan 81, interface id 13, interface 'vlan_81'
    *apfMsConnTask_3: May 24 13:26:49.372: 10:40:f3:91:7e:24 Applying site-specific override for station 10:40:f3:91:7e:24 - vapId 17, site 'APG-MONZA', interface 'vlan_81'
    *apfMsConnTask_3: May 24 13:26:49.372: 10:40:f3:91:7e:24 0.0.0.0 START (0) Changing ACL 'none' (ACL ID 255) ===> 'none' (ACL ID 255) --- (caller apf_policy.c:1393)
    *apfMsConnTask_3: May 24 13:26:49.372: 10:40:f3:91:7e:24 STA - rates (8): 140 18 152 36 176 72 96 108 0 0 0 0 0 0 0 0
    *apfMsConnTask_3: May 24 13:26:49.372: 10:40:f3:91:7e:24 0.0.0.0 START (0) Initializing policy
    *apfMsConnTask_3: May 24 13:26:49.372: 10:40:f3:91:7e:24 0.0.0.0 START (0) Change state to AUTHCHECK (2) last state AUTHCHECK (2)
    *apfMsConnTask_3: May 24 13:26:49.372: 10:40:f3:91:7e:24 0.0.0.0 AUTHCHECK (2) Change state to L2AUTHCOMPLETE (4) last state L2AUTHCOMPLETE (4)
    *apfMsConnTask_3: May 24 13:26:49.372: 10:40:f3:91:7e:24 0.0.0.0 L2AUTHCOMPLETE (4) Plumbed mobile LWAPP rule on AP 3c:ce:73:6d:37:00 vapId 17 apVapId 1
    *apfMsConnTask_3: May 24 13:26:49.372: 10:40:f3:91:7e:24 0.0.0.0 L2AUTHCOMPLETE (4) Change state to DHCP_REQD (7) last state DHCP_REQD (7)
    *apfMsConnTask_3: May 24 13:26:49.372: 10:40:f3:91:7e:24 apfMsAssoStateInc
    *apfMsConnTask_3: May 24 13:26:49.373: 10:40:f3:91:7e:24 apfPemAddUser2 (apf_policy.c:222) Changing state for mobile 10:40:f3:91:7e:24 on AP 3c:ce:73:6d:37:00 from Idle to Associated
    *apfMsConnTask_3: May 24 13:26:49.373: 10:40:f3:91:7e:24 Scheduling deletion of Mobile Station:  (callerId: 49) in 28800 seconds
    *apfMsConnTask_3: May 24 13:26:49.373: 10:40:f3:91:7e:24 Sending Assoc Response to station on BSSID 3c:ce:73:6d:37:00 (status 0) ApVapId 1 Slot 1
    *apfMsConnTask_3: May 24 13:26:49.373: 10:40:f3:91:7e:24 apfProcessAssocReq (apf_80211.c:4672) Changing state for mobile 10:40:f3:91:7e:24 on AP 3c:ce:73:6d:37:00 from Associated to Associated
    *apfReceiveTask: May 24 13:26:49.373: 10:40:f3:91:7e:24 0.0.0.0 DHCP_REQD (7) State Update from Mobility-Incomplete to Mobility-Complete, mobility role=Local, client state=APF_MS_STATE_ASSOCIATED
    *apfReceiveTask: May 24 13:26:49.373: 10:40:f3:91:7e:24 0.0.0.0 DHCP_REQD (7) pemAdvanceState2 4183, Adding TMP rule
    *apfReceiveTask: May 24 11:35:53.373: 10:40:f3:91:7e:24 0.0.0.0 DHCP_REQD (7) Adding Fast Path rule
      type = Airespace AP - Learn IP address
      on AP 3c:ce:73:6d:37:00, slot 1, interface = 13, QOS = 3
      ACL Id = 255, Jumbo F
    *apfReceiveTask: May 24 13:26:49.373: 10:40:f3:91:7e:24 0.0.0.0 DHCP_REQD (7) Fast Path rule (contd...) 802.1P = 0, DSCP = 0, TokenID = 7006  IPv6 Vlan = 81, IPv6 intf id = 13
    *apfReceiveTask: May 24 13:26:49.373: 10:40:f3:91:7e:24 0.0.0.0 DHCP_REQD (7) Successfully plumbed mobile rule (ACL ID 255)
    *pemReceiveTask: May 24 13:26:49.373: 10:40:f3:91:7e:24 0.0.0.0 Added NPU entry of type 9, dtlFlags 0x0
    *pemReceiveTask: May 24 13:26:49.373: 10:40:f3:91:7e:24 Sent an XID frame
    *apfMsConnTask_3: May 24 13:26:49.401: 10:40:f3:91:7e:24 Updating AID for REAP AP Client 3c:ce:73:6d:37:00 - AID ===> 1
    *apfReceiveTask: May 24 13:28:49.315: 10:40:f3:91:7e:24 0.0.0.0 DHCP_REQD (7) DHCP Policy timeout
    *apfReceiveTask: May 24 13:28:49.315: 10:40:f3:91:7e:24 0.0.0.0 DHCP_REQD (7) Pem timed out, Try to delete client in 10 secs.
    *apfReceiveTask: May 24 13:28:49.315: 10:40:f3:91:7e:24 Scheduling deletion of Mobile Station:  (callerId: 12) in 10 seconds
    *osapiBsnTimer: May 24 13:28:59.315: 10:40:f3:91:7e:24 apfMsExpireCallback (apf_ms.c:599) Expiring Mobile!
    *apfReceiveTask: May 24 13:28:59.315: 10:40:f3:91:7e:24 apfMsExpireMobileStation (apf_ms.c:4897) Changing state for mobile 10:40:f3:91:7e:24 on AP 3c:ce:73:6d:37:00 from Associated to Disassociated
    *apfReceiveTask: May 24 13:28:59.315: 10:40:f3:91:7e:24 Scheduling deletion of Mobile Station:  (callerId: 45) in 10 seconds
    *osapiBsnTimer: May 24 13:29:09.315: 10:40:f3:91:7e:24 apfMsExpireCallback (apf_ms.c:599) Expiring Mobile!
    *apfReceiveTask: May 24 13:29:09.316: 10:40:f3:91:7e:24 Sent Deauthenticate to mobile on BSSID 3c:ce:73:6d:37:00 slot 1(caller apf_ms.c:4981)
    *apfReceiveTask: May 24 13:29:09.316: 10:40:f3:91:7e:24 apfMsAssoStateDec
    *apfReceiveTask: May 24 13:29:09.316: 10:40:f3:91:7e:24 apfMsExpireMobileStation (apf_ms.c:5018) Changing state for mobile 10:40:f3:91:7e:24 on AP 3c:ce:73:6d:37:00 from Disassociated to Idle
    *apfReceiveTask: May 24 13:29:09.316: 10:40:f3:91:7e:24 0.0.0.0 DHCP_REQD (7) Deleted mobile LWAPP rule on AP [3c:ce:73:6d:37:00]
    *apfReceiveTask: May 24 13:29:09.316: 10:40:f3:91:7e:24 Deleting mobile on AP 3c:ce:73:6d:37:00(1)
    *pemReceiveTask: May 24 13:29:09.317: 10:40:f3:91:7e:24 0.0.0.0 Removed NPU entry.

    #does the client at the remote site roams between AP that connects to different WLC?
    #type 9 is not good.
    *pemReceiveTask: May 24 13:26:49.373: 10:40:f3:91:7e:24 0.0.0.0 Added NPU entry of type 9, dtlFlags 0x0
    #Does your dhcp server getting hits.
    #Also, get debug dhcp message & packet.
    #Dhcp server is not responding.
    *apfReceiveTask: May 24 13:28:49.315: 10:40:f3:91:7e:24 0.0.0.0 DHCP_REQD (7) DHCP Policy timeout
    *apfReceiveTask: May 24 13:28:49.315: 10:40:f3:91:7e:24 0.0.0.0 DHCP_REQD (7) Pem timed out, Try to delete client in 10 secs.

  • Laptops do not receive DHCP IP address?

    Hi All,
    Iam using 4402-Controller and 1252 Access Points. The AP's are registered on the Controller and get an ip address but the laptops are not getting an ip address. The FWSM on the Core switch is configured as DHCP server with IP of 192.168.5.1. The 4402 WLC Mgmt-Interface also has the gateway of 192.168.5.1. The Mgmt-Interface IP is 192.168.5.5/24.
    The AP-manager Interface IP is 192.168.5.6/24 with gateway of 192.168.5.1.
    The FWSM debug messages says that the DHCP request has been discarded from the DHCP Relay Agent of WLC.
    Has anyone come across this issue before?
    Provide some suggestions to overcome this issue?

    Here is a link that explains the issue you are having.
    http://supportwiki.cisco.com/ViewWiki/index.php/How_to_configure_WLC_as_a_DHCP_relay_server
    or you can try this command to see if it helps:
    config dhcp proxy disable

  • Guest users not getting IP address

    I am setting up Cisco wireless along with ISE 1.3 for guest wireless.  The client is going to use the self-registration portal for guest wireless users.  I followed this Cisco doc to configure the self-registration portal:
    http://www.cisco.com/c/en/us/support/docs/security/identity-services-engine/118742-configure-ise-00.html
    I tested this in my home lab and everything works fine.  However, at the client users are not getting IP addresses from the DHCP server.  This is the same DHCP server that is used for corporate wireless and if you connect that SSID, you get an IP address.  I have looked what I configured at home and the client and everything looks the same.  In the back of my mind, I feel something is missing, but I can't figure out what it is.  
    Edit: Not sure if this makes a difference or not, but they are using a Nexus 5K for their core switch and it hosts the SVI for this network.  
    Let me know what information you need and I will post it.
    TIA,
    Dan

    Hello,
    Some verifications below :
    Did you verify if DHCP Proxy is enabled in wlc's wlan interface ? Case DHCP proxy is disabled, did you verify if the ip helper address is enabled in Nexus SVI ?
    DHCP Scope is enabled in the DHCP Server or is enabled in the WLC ?
    Verify if Trunk in the switch is enabled correctly passing all VLANs to WLANs ?
    Verify if ACL to redirect configured in the WLC is allowing DHCP Server and DHCP Client to client receive IP Address and ports 8443 to Cisco ISE and DNS to resolve some address and get access to ISE Portal ?
    The scenario is Local Switching or Central Switching ?
    Regards

  • Hyper-V - Legacy NIC not getting DHCP address at boot, but when OS loads the NIC gets a DHCP address

    Hi, I have a strange issue with DHCP.
    I have a lab environment on a single Hyper-v 2012 Server.  AD, DNS & DHCP exist on a single virtual machine, I have a flat network 192.168.1.x, all VM's are on this network.  I have authorised DHCP and Setup the scope.
    A VM has a legacy adaptor, the legacy nic is configured in the boot order as the first device.
    When I boot the machine I do not get a DHCP address, however when the OS boots the Legacy NIC then gets a DHCP address??
    I need to use a legacy NIC as I need to PXE boot the VM, however I should get an IP address at boot time, which I don't get.
    I have run Wireshark on the DHCP server, I can see the legacy NIC do a "DHCP Discover and the DHCP Server respond with a DHCP Offer" however all communication ends there.  I have disable all firewalls and I see no reason for this not to work. 
    I have done tis before with no issues but I am unable to get this to work on this server!!!!!

    Hi
    According to your description , it is recommended to make sure or do :
            In your environment , there is no any other valid DHCP, BOOTP or proxy DHCP offers.
            Make sure if the DHCP server is overload.
            So suggest to test that creating a new “internal virtual switch” and change the settings of VM which provide DHCP service to connect to the new “virtual switch”.
            Then create a new VM use legacy NIC also connect to the new “internal  virtual switch” and try to PXE Boot.
    Hope this helps.
    Best Regards
    Elton ji
    We
    are trying to better understand customer views on social support experience, so your participation in this
    interview project would be greatly appreciated if you have time.
    Thanks for helping make community forums a great place.

  • WLC 5508 : WPA2 enabled SSID - especially Intel & Dell wireless cards are not getting connected

    Hi ,
    I have one pecular issue in my wireless lan set-up. I have some laptop users who are using below inbuilt wireless adapter/cards :
    /* Style Definitions */
    table.MsoNormalTable
    {mso-style-name:"Table Normal";
    mso-tstyle-rowband-size:0;
    mso-tstyle-colband-size:0;
    mso-style-noshow:yes;
    mso-style-priority:99;
    mso-style-qformat:yes;
    mso-style-parent:"";
    mso-padding-alt:0cm 5.4pt 0cm 5.4pt;
    mso-para-margin:0cm;
    mso-para-margin-bottom:.0001pt;
    mso-pagination:widow-orphan;
    font-size:11.0pt;
    font-family:"Calibri","sans-serif";
    mso-ascii-font-family:Calibri;
    mso-ascii-theme-font:minor-latin;
    mso-fareast-font-family:"Times New Roman";
    mso-fareast-theme-font:minor-fareast;
    mso-hansi-font-family:Calibri;
    mso-hansi-theme-font:minor-latin;
    mso-bidi-font-family:"Times New Roman";
    mso-bidi-theme-font:minor-bidi;}
    1 ) Dell wireless 1397 WLAN Minicard
    /* Style Definitions */
    table.MsoNormalTable
    {mso-style-name:"Table Normal";
    mso-tstyle-rowband-size:0;
    mso-tstyle-colband-size:0;
    mso-style-noshow:yes;
    mso-style-priority:99;
    mso-style-qformat:yes;
    mso-style-parent:"";
    mso-padding-alt:0cm 5.4pt 0cm 5.4pt;
    mso-para-margin:0cm;
    mso-para-margin-bottom:.0001pt;
    mso-pagination:widow-orphan;
    font-size:11.0pt;
    font-family:"Calibri","sans-serif";
    mso-ascii-font-family:Calibri;
    mso-ascii-theme-font:minor-latin;
    mso-fareast-font-family:"Times New Roman";
    mso-fareast-theme-font:minor-fareast;
    mso-hansi-font-family:Calibri;
    mso-hansi-theme-font:minor-latin;
    mso-bidi-font-family:"Times New Roman";
    mso-bidi-theme-font:minor-bidi;}
    2 ) Intel Centrino Advanced N6200 AGN
    above card are having issue with WPA2 enabled ssid connecitivity. strange is , the same users are getting connected to other wep enabled SSID but its not working for WPA2 SSID.
    I have external ACS server which is used for radius authentication. Last time I had put same query in support forum did some workaround.
    eq. disabling DHCP proxy option in WLC and moving all DHCP scope in external server.
    After doing this workaround this mentioned users are still facing issue. I gone through some cisco document and some forums and came across that there is something to be done in " Session Timed Out "  optionin WLC
    which is default 1800 sec based on that I tried to capture debug outputs for mentioned above problematic clients and user who is working fine .
    I gone through the same debug output  and observed :
    User who is working fine :
    Processing Access-Accept for mobile 00:22:5f:8d:55:84
    00:xx:xx:xx:xx:xx Setting re-auth timeout to 1800 seconds, got from WLAN config.
    00:xx:xx:xx:xx:xx Station 00:22:5f:8d:55:84 setting dot1x reauth timeout = 1800
    00:xx:xx:xx:xx:xx Creating a PKC PMKID Cache entry for station 00:22:5f:8d:55:84 (RSN 2)
    00:xx:xx:xx:xx:xx Adding BSSID 00:1f:ca:2c:f3:01 to PMKID cache for station 00:22:5f:8d:55:84
    New PMKID: (16)
    The User /  card which is having issue :
    Processing Access-Accept for mobile 00:22:5f:90:a2:ac
    00:xx:xx:xx:xx:xx Setting re-auth timeout to 0 seconds, got from WLAN config.
    00:xx:xx:xx:xx:xx Station 00:22:5f:90:a2:ac setting dot1x reauth timeout = 0
    00:xx:xx:xx:xx:xx Stopping reauth timeout for 00:22:5f:90:a2:ac
    00:xx:xx:xx:xx:xx Creating a PKC PMKID Cache entry for station 00:22:5f:90:a2:ac (RSN 2)
    00:xx:xx:xx:xx:xx Adding BSSID 00:26:cb:1d:fe:31 to PMKID cache for station 00:22:5f:90:a2:ac
      New PMKID: (16)
    Please suggest me to do workaround.

    Hi,
    According to output of working as well as not working wireless cards ,
    below is my observations :
    Not working wireless cards observation :
    /* Style Definitions */
    table.MsoNormalTable
    {mso-style-name:"Table Normal";
    mso-tstyle-rowband-size:0;
    mso-tstyle-colband-size:0;
    mso-style-noshow:yes;
    mso-style-priority:99;
    mso-style-qformat:yes;
    mso-style-parent:"";
    mso-padding-alt:0cm 5.4pt 0cm 5.4pt;
    mso-para-margin-top:0cm;
    mso-para-margin-right:0cm;
    mso-para-margin-bottom:10.0pt;
    mso-para-margin-left:0cm;
    line-height:115%;
    mso-pagination:widow-orphan;
    font-size:11.0pt;
    font-family:"Calibri","sans-serif";
    mso-ascii-font-family:Calibri;
    mso-ascii-theme-font:minor-latin;
    mso-fareast-font-family:"Times New Roman";
    mso-fareast-theme-font:minor-fareast;
    mso-hansi-font-family:Calibri;
    mso-hansi-theme-font:minor-latin;
    mso-bidi-font-family:"Times New Roman";
    mso-bidi-theme-font:minor-bidi;}
    The client passed the L2 authentication and that, after successful association, it is now going into the DHCP_REQD state
    Not-working wirelss card :
    *Apr 06 11:58:15.866: 0c:60:76:3e:8c:49 10.10.232.137 RUN (20) Successfully plumbed mobile rule (ACL ID 255)
    *Apr 06 11:58:15.866: 0c:60:76:3e:8c:49 Stopping retransmission timer for mobile 0c:60:76:3e:8c:49
    *Apr 06 11:58:15.869: 0c:60:76:3e:8c:49 10.10.232.137 Added NPU entry of type 1, dtlFlags 0x0
    /* Style Definitions */
    table.MsoNormalTable
    {mso-style-name:"Table Normal";
    mso-tstyle-rowband-size:0;
    mso-tstyle-colband-size:0;
    mso-style-noshow:yes;
    mso-style-priority:99;
    mso-style-qformat:yes;
    mso-style-parent:"";
    mso-padding-alt:0cm 5.4pt 0cm 5.4pt;
    mso-para-margin-top:0cm;
    mso-para-margin-right:0cm;
    mso-para-margin-bottom:10.0pt;
    mso-para-margin-left:0cm;
    line-height:115%;
    mso-pagination:widow-orphan;
    font-size:11.0pt;
    font-family:"Calibri","sans-serif";
    mso-ascii-font-family:Calibri;
    mso-ascii-theme-font:minor-latin;
    mso-fareast-font-family:"Times New Roman";
    mso-fareast-theme-font:minor-fareast;
    mso-hansi-font-family:Calibri;
    mso-hansi-theme-font:minor-latin;
    mso-bidi-font-family:"Times New Roman";
    mso-bidi-theme-font:minor-bidi;}
    The client entry is added to the Network Processing Unit (NPU) of the controller with an IP address of  10.10.232.137 but after that , I am getting below output
    *Apr 06 11:58:22.742: 0c:60:76:3e:8c:49 Copy AP LOCP - mode:0 slotId:0, apMac 0x0:1f:ca:2c:ea:e0
    *Apr 06 11:58:22.742: 0c:60:76:3e:8c:49 Copy WLAN LOCP EssIndex:2 aid:50 ssid:USTRI_SECURE
    *Apr 06 11:58:22.742: 0c:60:76:3e:8c:49 Copy Security LOCP ecypher:0x0 ptype:0x2, p:0x0, eaptype:0x2 w:0x1 aalg:0x0, PMState:        RUN
    *Apr 06 11:58:22.742: 0c:60:76:3e:8c:49 Copy 802.11 LOCP a:0x0 b:0x0 c:0x0 d:0x0 e:0x1 protocol2:0x3 statuscode 0, reasoncode 99, status 3
    *Apr 06 11:58:22.742: 0c:60:76:3e:8c:49 Copy Username LOCP :   U25744
    *Apr 06 11:58:22.743: 0c:60:76:3e:8c:49 Copy IP LOCP: 0xa0ae889
    *Apr 06 11:58:22.743: 0c:60:76:3e:8c:49 Copy CCX LOCP 4
    *Apr 06 11:58:22.743: 0c:60:76:3e:8c:49 Copy MobilityData LOCP status:1, anchorip:0x0
    *Apr 06 11:59:14.002: 0c:60:76:3e:8c:49 10.10.232.137 RUN (20) State Update from Mobility-Complete to Mobility-Incomplete
    *Apr 06 11:59:14.002: 0c:60:76:3e:8c:49 Clearing Address 10.10.232.137 on mobile
    *Apr 06 11:59:14.002: 0c:60:76:3e:8c:49 10.10.232.137 RUN (20) Change state to DHCP_REQD (7) last state RUN (20)
    *Apr 06 11:59:14.002: 0c:60:76:3e:8c:49 apfMmProcessDeleteMobile (apf_mm.c:522) Expiring Mobile!
    *Apr 06 11:59:14.002: 0c:60:76:3e:8c:49 apfMsExpireMobileStation (apf_ms.c:4427) Changing state for mobile 0c:60:76:3e:8c:49 on AP 00:1f:ca:2c:ea:e0 from Associated to Disassociated.
    working cards ouput :
    *Apr 06 12:16:28.038: 00:22:5f:8d:55:84 10.10.232.190 RUN (20) Successfully plumbed mobile rule (ACL ID 255)
    *Apr 06 12:16:28.038: 00:22:5f:8d:55:84 Stopping retransmission timer for mobile 00:22:5f:8d:55:84
    *Apr 06 12:16:28.042: 00:22:5f:8d:55:84 10.10.232.190 Added NPU entry of type 1, dtlFlags 0x0
    The client entry is added to the Network Processing Unit (NPU) of the controller with an IP address of  10.10.232.190  and as expected  , I am getting below output
    *Apr 06 12:16:28.749: 00:22:5f:8d:55:84 DHCP received op BOOTREQUEST (1) (len 321, port 29, encap 0xec03)
    *Apr 06 12:16:28.751: 00:22:5f:8d:55:84 DHCP processing DHCP REQUEST (3)
    *Apr 06 12:16:28.751: 00:22:5f:8d:55:84 DHCP   op: BOOTREQUEST, htype: Ethernet, hlen: 6, hops: 0
    *Apr 06 12:16:28.752: 00:22:5f:8d:55:84 DHCP   xid: 0x6eefbbb8 (1861204920), secs: 0, flags: 0
    *Apr 06 12:16:28.752: 00:22:5f:8d:55:84 DHCP   chaddr: 00:22:5f:8d:55:84
    *Apr 06 12:16:28.752: 00:22:5f:8d:55:84 DHCP   ciaddr: 10.10.232.190,  yiaddr: 0.0.0.0
    *Apr 06 12:16:28.752: 00:22:5f:8d:55:84 DHCP   siaddr: 0.0.0.0,  giaddr: 0.0.0.0
    *Apr 06 12:16:28.753: 00:22:5f:8d:55:84 DHCP successfully bridged packet to DS
    *Apr 06 12:16:30.751: 00:22:5f:8d:55:84 Copy AP LOCP - mode:0 slotId:0, apMac 0x0:1f:ca:2c:f3:0
    *Apr 06 12:16:30.751: 00:22:5f:8d:55:84 Copy WLAN LOCP EssIndex:2 aid:10 ssid:USTRI_SECURE
    *Apr 06 12:16:30.751: 00:22:5f:8d:55:84 Copy Security LOCP ecypher:0x0 ptype:0x2, p:0x0, eaptype:0x2 w:0x1 aalg:0x0, PMState:        RUN
    *Apr 06 12:16:30.752: 00:22:5f:8d:55:84 Copy 802.11 LOCP a:0x0 b:0x0 c:0x0 d:0x0 e:0x1 protocol2:0x3 statuscode 0, reasoncode 99, status 3
    *Apr 06 12:16:30.752: 00:22:5f:8d:55:84 Copy Username LOCP : USTR\U17967
    *Apr 06 12:16:30.752: 00:22:5f:8d:55:84 Copy IP LOCP: 0xa0ae8be
    *Apr 06 12:16:30.752: 00:22:5f:8d:55:84 Copy CCX LOCP 4
    *Apr 06 12:16:30.752: 00:22:5f:8d:55:84 Copy MobilityData LOCP status:1, anchorip:0x0
    Finally client is getting stuck with DHCP-REQD state ..................
    Please look into this and put light on this ............

  • Wireless guest users are getting limited connectivity.

    Could anyone help please, I have a wireless guest solution consist of :
    WLC located internal in the network – all the AP are associated with that WLC-.
    Anchor WLC located in the DMZ . the guest SSID are tunneled from the internal WLC to the Anchor WLC, the DHCP service for guest users is on the Anchor WLC.
    NAC guest server to authenticate the guest users.
    The solution was working properly but now we have a problem that if any one tried to connect to the guest SSID if he is authorized or not , the user will get IP address from the DHCP pool and now as you know most of people has smart phones and they try to get internet access. Now only 5 or 6 people authenticated with NAC gest server and the DHCP pool become full because too many people tried to connect even they do not authenticate.
    so if any user trys to cnnect he will not get IP address from the anchor controller and getting limited connectivity.
    if I add static IP address on my Laptop , I will be redirected to the authentication page and can access normally.
    I am working in big environment 7,000 users so I can’t go with increasing the DHCP pool because the problem will not be solved.
    I hope if anyone can help in this case.
    Thanks in advance.

    This is a pitfall and raising  the eyebrows.. currently we do not have anyother option other than using a WPA-PSK + WEB AUTH
    that is..
    PSK will block the users to just grab an IP and sit!! , if the user enters a valid PSK, he will get the IP address and followed by the Web auth process!! this may help u as of now.. or just a work around.. to overcome the IP exhaustion..
    Please rasie a PER with your accounts team to raise the severity on this issue if u have the contract n all with us!!
    Please dont forget to rate the usefull posts!!
    Regards
    Surendra

  • Guest VLAN unable to get DHCP IP address from Anchor Controller

    Hello everybody,
    In our test set up, we have two WLC 5508 Controllers connected via Checkpoint UTM-1 firewall Inside and DMZ Interfaces. Both the WLC controllers are connected to the firewall via Cisco 3750 switch. On the Local (Inside) Controller, guest SSID is enabled and attached to the wireless management Interface. On the remote anchor controller, guest SSID is enabled and attached to the Management Interface as well. The following configs are replicated on both the Controllers.
    SSID Name - guest
    Interface - Management ( VLAN 10 on Local and VLAN 20 on remote) -
    Mobility Group: Same configs at both ends
    SSID Anchor : Anchor SSID on local and local SSID on Anchor.
    AP: CAPWAP 3502 Management Subnet
    SSID Security etc all defaults and matching on  both ends
    Checkpoint Firewall Rules: Allowed 16666-7, IP 97 etc on the firewall
    Checkpoint Inside/DMZ to Outside(Internet) is NAT enabled.
    EoIP Tunnel Status: Up, UP - Both ends
    Mping - OK
    eping - OK
    WLC Sofware Version on Local - 7.0.98.0
    WLC Sofware Version on Local - 7.0.116.0
    DHCP Scope: Definitions on Anchor Controller and Guest Anchor SSID points to the Anchor management IP as the Primary DHCP server.
    Management IP Subnet on Local: 10.x.x.x
    Management IP Subnet on Anchor: 172.x.x.x
    The problem definition as follows:
    When guest SSID associates to the local AP, the guest SSID never gets a DHCP address assigned from the Anchor Controller and the following debugs are obtained.
    1. WLAN ID 1 (for Guest SSID Number) delete message appears in the Controller message logs, but the SSID does not DHCP from the local Management Subnet and i can see DHCP request via the tunnel to the Anchor WLC as follows:
    DHCP Socket Task: Feb 24 17:20:46.612: 64:b9:e8:33:2d:13 DHCP received op BOOTREQUEST (1) (len 308,vlan 0, port 13, encap 0xec03)
    *DHCP Socket Task: Feb 24 17:20:46.612: 64:b9:e8:33:2d:13 DHCP processing DHCP DISCOVER (1)
    *DHCP Socket Task: Feb 24 17:20:46.612: 64:b9:e8:33:2d:13 DHCP   op: BOOTREQUEST, htype: Ethernet, hlen: 6, hops: 0
    *DHCP Socket Task: Feb 24 17:20:46.612: 64:b9:e8:33:2d:13 DHCP   xid: 0x49c54774 (1237665652), secs: 42, flags: 0
    *DHCP Socket Task: Feb 24 17:20:46.612: 64:b9:e8:33:2d:13 DHCP   chaddr: 64:b9:e8:33:2d:13
    *DHCP Socket Task: Feb 24 17:20:46.612: 64:b9:e8:33:2d:13 DHCP   ciaddr: 0.0.0.0,  yiaddr: 0.0.0.0
    *DHCP Socket Task: Feb 24 17:20:46.612: 64:b9:e8:33:2d:13 DHCP   siaddr: 0.0.0.0,  giaddr: 0.0.0.0
    *DHCP Socket Task: Feb 24 17:20:46.612: 64:b9:e8:33:2d:13 DHCP successfully bridged packet to EoIP tunnel
    2. Similar debugs on the Anchor controller yields the following results;
    Cisco Controller) >*DHCP Socket Task: Feb 25 04:30:25.488: 64:b9:e8:33:2d:13 DHCP options end, len 72, actual 64
    *DHCP Socket Task: Feb 25 04:36:44.246: 64:b9:e8:33:2d:13 DHCP received op BOOTREQUEST (1) (len 308,vlan 20, port 1, encap 0xec05)
    *DHCP Socket Task: Feb 25 04:36:44.246: 64:b9:e8:33:2d:13 DHCP processing DHCP DISCOVER (1)
    *DHCP Socket Task: Feb 25 04:36:44.246: 64:b9:e8:33:2d:13 DHCP   op: BOOTREQUEST, htype: Ethernet, hlen: 6, hops: 0
    *DHCP Socket Task: Feb 25 04:36:44.246: 64:b9:e8:33:2d:13 DHCP   xid: 0x49c54778 (1237665656), secs: 52, flags: 0
    *DHCP Socket Task: Feb 25 04:36:44.246: 64:b9:e8:33:2d:13 DHCP   chaddr: 64:b9:e8:33:2d:13
    *DHCP Socket Task: Feb 25 04:36:44.246: 64:b9:e8:33:2d:13 DHCP   ciaddr: 0.0.0.0,  yiaddr: 0.0.0.0
    *DHCP Socket Task: Feb 25 04:36:44.246: 64:b9:e8:33:2d:13 DHCP   siaddr: 0.0.0.0,  giaddr: 0.0.0.0
    *DHCP Socket Task: Feb 25 04:36:44.246: 64:b9:e8:33:2d:13 DHCP successfully bridged packet to DS
    *DHCP Socket Task: Feb 25 04:36:53.208: 64:b9:e8:33:2d:13 DHCP received op BOOTREQUEST (1) (len 308,vlan 20, port 1, encap 0xec05)
    *DHCP Socket Task: Feb 25 04:36:53.208: 64:b9:e8:33:2d:13 DHCP processing DHCP DISCOVER (1)
    *DHCP Socket Task: Feb 25 04:36:53.208: 64:b9:e8:33:2d:13 DHCP   op: BOOTREQUEST, htype: Ethernet, hlen: 6, hops: 0
    *DHCP Socket Task: Feb 25 04:36:53.208: 64:b9:e8:33:2d:13 DHCP   xid: 0x49c54778 (1237665656), secs: 61, flags: 0
    *DHCP Socket Task: Feb 25 04:36:53.208: 64:b9:e8:33:2d:13 DHCP   chaddr: 64:b9:e8:33:2d:13
    *DHCP Socket Task: Feb 25 04:36:53.208: 64:b9:e8:33:2d:13 DHCP   ciaddr: 0.0.0.0,  yiaddr: 0.0.0.0
    *DHCP Socket Task: Feb 25 04:36:53.208: 64:b9:e8:33:2d:13 DHCP   siaddr: 0.0.0.0,  giaddr: 0.0.0.0
    *DHCP Socket Task: Feb 25 04:36:53.208: 64:b9:e8:33:2d:13 DHCP successfully bridged packet to DS
    *apfOrphanSocketTask: Feb 25 04:37:49.931: 34:51:c9:59:b1:c7 Invalid MSCB state: ipAddr=169.254.254.148, regType=2, Dhcp required!
    Is there any thing missing in the wireless configs and or the firewall rules as i could not see DHCP request back from the Anchor Controller. Also, after DHCP is obtained, the web authentication request will be redirected to an Amigopod device for authentication. In this case is the redirect URL congiguration to be performed only on the Anchor Controller or is this to be replicated on both the Local and Anchor Controllers.
    Thanks and Regards.

    The DHCP issue is resolved if external DHCP server is configured on a 3750 switch connected to the WLC and the default gateway for DHCP points to the Firewall, which is in the data path between the Inside and Anchor Controllers. DHCP is essentially bridged (no Proxy setting now) from the EoIP tunnel to the Distribution system network. We will test this solution on pilot production and then consider upgrading to 7.0.116.0, as there are about six offices running 7.0.98.0, which will need to be upgraded. 
    For L3 security,  configuration is set up on both the controllers for external captive portal redirection.I will try this only on the Anchor and revert.
    Thanks again very much for all your help.

  • IPhone connects to network but do not get router,DNS address

    I can connect to wireless networks no problem, however DHCP does not work properly at all. I get a an IP address and netmask address but this does not correspond to computers already on the network and I cannot connect to the internet.
    i do not receive any DNS or router address on any network (checked a friends iPhone and they have the same problem).
    Only if I go to static and manually enter a correct ip address, netmask,router and DNS can i actually surf the web!
    I cant see any settings to tweak or change to fix this. anyone else experiencing this or know of a fix?

    Works for us using pptp-vpn by propagation the nameserver through radius.

  • 1242AG Wireless Access Point - Cannot Get DHCP IP for BVI1 interface - Multiple SSIDs...

    Hello,
    I am attempting to set up three Cisco 1242AG Wireless Access Points with multiple SSID's. I used the web interface and directions online to set up the two networks I want and at least one of the networks work wirelessly.
    However, I have two problems:
    The first, which is the most important, is that the "management" interface, BVI1, doesn't get an ip address from our DHCP server. I set the VLAN 60 (which you'll see in the documenation below) to be the native VLAN on the device as well as on the switch that the device is connected to as well as other settings in the configeration file below. Because of this, I can only manage the device via the console port which would be a huge pain once all of the devices are mounted.
    The second problem is that I am not sure how to get both wireless networks broadcasting their SSID's. I have to manually type in the SSID for the second wireless network I have which I would prefer I don't have to. Anyway I can enable broadcasting on all of the SSID's?
    Thank you for your time.
    Regards,
    Christopher Koeber
    Using 7916 out of 32768 bytes
    version 12.4
    no service pad
    service timestamps debug datetime msec
    service timestamps log datetime msec
    service password-encryption
    hostname AP-18.wesleysem.edu
    enable secret {Number Here} {Encrypted Password Here}
    enable password {Number Here} {Encrypted Password Here}
    aaa new-model
    aaa session-id common
    dot11 syslog
    dot11 vlan-name Kresge vlan 20
    dot11 vlan-name Library vlan 30
    dot11 vlan-name Public vlan 60
    dot11 vlan-name Secure_Public vlan 70
    dot11 vlan-name Secure_Seminary vlan 80
    dot11 vlan-name Server_Room vlan 1
    dot11 vlan-name Straughn vlan 40
    dot11 vlan-name Trott vlan 10
    dot11 vlan-name Web_Room vlan 50
    dot11 ssid (Secure) Wesley Campus
    vlan 80
    authentication open
    authentication key-management wpa version 2
    wpa-psk ascii {Number Here} {WPA Key Here}
    dot11 ssid Public
    vlan 60
    authentication open
    mobility network-id 60
    username Cisco password {Number Here} {Encrypted Password Here}
    username admin privilege 15 secret {Number Here} {Encrypted Password Here}!
    bridge irb
    interface Dot11Radio0
    no ip address
    no ip route-cache
    encryption vlan 80 mode ciphers aes-ccm
    ssid (Secure) Campus
    ssid Public
    mbssid
    station-role root
    interface Dot11Radio0.1
    encapsulation dot1Q 1
    no ip route-cache
    bridge-group 254
    bridge-group 254 block-unknown-source
    no bridge-group 254 source-learning
    no bridge-group 254 unicast-flooding
    bridge-group 254 spanning-disabled
    interface Dot11Radio0.10
    encapsulation dot1Q 10
    no ip route-cache
    bridge-group 10
    bridge-group 10 subscriber-loop-control
    bridge-group 10 block-unknown-source
    no bridge-group 10 source-learning
    no bridge-group 10 unicast-flooding
    bridge-group 10 spanning-disabled
    interface Dot11Radio0.20
    encapsulation dot1Q 20
    no ip route-cache
    bridge-group 20
    bridge-group 20 subscriber-loop-control
    bridge-group 20 block-unknown-source
    no bridge-group 20 source-learning
    no bridge-group 20 unicast-flooding
    bridge-group 20 spanning-disabled
    interface Dot11Radio0.30
    encapsulation dot1Q 30
    no ip route-cache
    bridge-group 30
    bridge-group 30 subscriber-loop-control
    bridge-group 30 block-unknown-source
    no bridge-group 30 source-learning
    no bridge-group 30 unicast-flooding
    bridge-group 30 spanning-disabled
    interface Dot11Radio0.40
    encapsulation dot1Q 40
    no ip route-cache
    bridge-group 40
    bridge-group 40 subscriber-loop-control
    bridge-group 40 block-unknown-source
    no bridge-group 40 source-learning
    no bridge-group 40 unicast-flooding
    bridge-group 40 spanning-disabled
    interface Dot11Radio0.50
    encapsulation dot1Q 50
    no ip route-cache
    bridge-group 50
    bridge-group 50 subscriber-loop-control
    bridge-group 50 block-unknown-source
    no bridge-group 50 source-learning
    no bridge-group 50 unicast-flooding
    bridge-group 50 spanning-disabled
    interface Dot11Radio0.60
    encapsulation dot1Q 60 native
    no ip route-cache
    bridge-group 1
    bridge-group 1 block-unknown-source
    no bridge-group 1 source-learning
    no bridge-group 1 unicast-flooding
    bridge-group 1 spanning-disabled
    interface Dot11Radio0.70
    encapsulation dot1Q 70
    no ip route-cache
    bridge-group 70
    bridge-group 70 subscriber-loop-control
    bridge-group 70 block-unknown-source
    no bridge-group 70 source-learning
    no bridge-group 70 unicast-flooding
    bridge-group 70 spanning-disabled
    interface Dot11Radio0.80
    encapsulation dot1Q 80
    no ip route-cache
    bridge-group 80
    bridge-group 80 subscriber-loop-control
    bridge-group 80 block-unknown-source
    no bridge-group 80 source-learning
    no bridge-group 80 unicast-flooding
    bridge-group 80 spanning-disabled
    interface Dot11Radio1
    no ip address
    no ip route-cache
    shutdown
    encryption vlan 80 mode ciphers aes-ccm
    dfs band 3 block
    channel dfs
    station-role root
    interface Dot11Radio1.1
    encapsulation dot1Q 1
    no ip route-cache
    bridge-group 254
    bridge-group 254 block-unknown-source
    no bridge-group 254 source-learning
    no bridge-group 254 unicast-flooding
    bridge-group 254 spanning-disabled
    interface Dot11Radio1.10
    encapsulation dot1Q 10
    no ip route-cache
    bridge-group 10
    bridge-group 10 subscriber-loop-control
    bridge-group 10 block-unknown-source
    no bridge-group 10 source-learning
    no bridge-group 10 unicast-flooding
    bridge-group 10 spanning-disabled
    interface Dot11Radio1.20
    encapsulation dot1Q 20
    no ip route-cache
    bridge-group 20
    bridge-group 20 subscriber-loop-control
    bridge-group 20 block-unknown-source
    no bridge-group 20 source-learning
    no bridge-group 20 unicast-flooding
    bridge-group 20 spanning-disabled
    interface Dot11Radio1.30
    encapsulation dot1Q 30
    no ip route-cache
    bridge-group 30
    bridge-group 30 subscriber-loop-control
    bridge-group 30 block-unknown-source
    no bridge-group 30 source-learning
    no bridge-group 30 unicast-flooding
    bridge-group 30 spanning-disabled
    interface Dot11Radio1.40
    encapsulation dot1Q 40
    no ip route-cache
    bridge-group 40
    bridge-group 40 subscriber-loop-control
    bridge-group 40 block-unknown-source
    no bridge-group 40 source-learning
    no bridge-group 40 unicast-flooding
    bridge-group 40 spanning-disabled
    interface Dot11Radio1.50
    encapsulation dot1Q 50
    no ip route-cache
    bridge-group 50
    bridge-group 50 subscriber-loop-control
    bridge-group 50 block-unknown-source
    no bridge-group 50 source-learning
    no bridge-group 50 unicast-flooding
    bridge-group 50 spanning-disabled
    interface Dot11Radio1.60
    encapsulation dot1Q 60 native
    no ip route-cache
    bridge-group 1
    bridge-group 1 block-unknown-source
    no bridge-group 1 source-learning
    no bridge-group 1 unicast-flooding
    bridge-group 1 spanning-disabled
    interface Dot11Radio1.70
    encapsulation dot1Q 70
    no ip route-cache
    bridge-group 70
    bridge-group 70 subscriber-loop-control
    bridge-group 70 block-unknown-source
    no bridge-group 70 source-learning
    no bridge-group 70 unicast-flooding
    bridge-group 70 spanning-disabled
    interface Dot11Radio1.80
    encapsulation dot1Q 80
    no ip route-cache
    bridge-group 80
    bridge-group 80 subscriber-loop-control
    bridge-group 80 block-unknown-source
    no bridge-group 80 source-learning
    no bridge-group 80 unicast-flooding
    bridge-group 80 spanning-disabled
    interface FastEthernet0
    ip dhcp client update dns
    no ip address
    no ip route-cache
    duplex auto
    speed auto
    interface FastEthernet0.1
    encapsulation dot1Q 1
    no ip route-cache
    bridge-group 254
    no bridge-group 254 source-learning
    bridge-group 254 spanning-disabled
    interface FastEthernet0.10
    encapsulation dot1Q 10
    no ip route-cache
    bridge-group 10
    no bridge-group 10 source-learning
    bridge-group 10 spanning-disabled
    interface FastEthernet0.20
    encapsulation dot1Q 20
    no ip route-cache
    bridge-group 20
    no bridge-group 20 source-learning
    bridge-group 20 spanning-disabled
    interface FastEthernet0.30
    encapsulation dot1Q 30
    no ip route-cache
    bridge-group 30
    no bridge-group 30 source-learning
    bridge-group 30 spanning-disabled
    interface FastEthernet0.40
    encapsulation dot1Q 40
    no ip route-cache
    bridge-group 40
    no bridge-group 40 source-learning
    bridge-group 40 spanning-disabled
    interface FastEthernet0.50
    encapsulation dot1Q 50
    no ip route-cache
    bridge-group 50
    no bridge-group 50 source-learning
    bridge-group 50 spanning-disabled
    interface FastEthernet0.60
    encapsulation dot1Q 60 native
    no ip route-cache
    bridge-group 1
    no bridge-group 1 source-learning
    bridge-group 1 spanning-disabled
    interface FastEthernet0.70
    encapsulation dot1Q 70
    no ip route-cache
    bridge-group 70
    no bridge-group 70 source-learning
    bridge-group 70 spanning-disabled
    interface FastEthernet0.80
    encapsulation dot1Q 80
    no ip route-cache
    bridge-group 80
    no bridge-group 80 source-learning
    bridge-group 80 spanning-disabled
    interface BVI1
    ip address dhcp client-id FastEthernet0
    no ip route-cache
    ip http server
    no ip http secure-server
    ip http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag
    bridge 1 route ip
    line con 0
    line vty 0 4
    end

    I am using a third party DHCP server which is our Windows Domain Controller. I have the ip helper-address set for the native vlan of the Access Point through a layer 3 distribution switch (a Catalyst 4506) that the current switch connects to.
    I didn't see any event on the logs for the AP.
    Let me know if I need to do something else.
    Thanks.

  • Users not getting IP from QIP server

    Dear Friends,
    Need your advice on this issue.
    Users of our new site complained of not getting IP dynamically from DHCP server. Static IPs works fine.
    The LAN interface of the router is configured with helper IP address of QIP servers.
    On the router there exists a DHCP pool configuration, later we removed this config understanding the helper address will
    assign the ip address dynamically.
    QIP which serves as DHCP is confgured to assign the IPs, but the users complined of not getting IPs including IP phones.
    Kindly advice what could be possible chances of this issue.
    Thanks in advance
    rYs

    You cant have both the ip helper-address and a DHCP pool configured on the router. Basically what happens is the client DHCPDISCOVER will pick the first DHCP server that answers it and in this case its the the router. If you want to pass traffic all the way to the DHCP server, you need to disable the DHCP server on the router and leave only the ip helper-address configured so it can relay the broadcast to the defined DHCP server.
    It sounds like you have this current topology for your DHCP server that is working:
    Client       ------------>DHCPDISCOVER ---> Router(DHCP Server)
                   <------------DHCPOFFER
                   ------------>DHCPREQUEST
                   <------------DHCPACK
    You want to configure your QIP DHCP Server to respond to DHCPDISCOVER, you will need to remove the DHCP pool from the router and add "ip helper-address x.x.x.x" where x.x.x.x is your DHCP server ip.
    If that still does not work, you will need to check the configuration on your DHCP server to ensure its not mis-configured. QIP is not a cisco product but you should be able to view debugs on that application to identify if the DHCP server is sending an offer or dropping the request. Most likely your scopes are mis-configured on the server.

  • Linux guest does not get DHCP offer through a bridged internal switch, but Windows guests do (laptop).

    I also got trouble getting networking to work on my laptop. It has one Gigabit LAN and one wireless network interface.
    I cannot get my Linux guests, I tried CentOS 6.4, Ubuntu 13.10 and Debian 6, to get a DHCP offer from my DHCP server on my physical LAN. Manual configuration using static IP addresses works, but I need DHCP for my laptop.
    I tried a Windows 8.1 Pro 64bit guest and the Windows Phone SDK 8.0 and both connected fine to the internet.
    Here is what I tried:
    With the ethernet cable disconnected I was connected to my wireless network or LAN with WPA2 personal authentication. On this physical LAN there was a DHCP server.
    I created an internal Hyper-V switch and then I created a bridge between this switch and my wireless interface. I always used this switch as the single network connection for my VMs.
    I am using Windows 8.1 Professional 64bit.
    Why are only Linux guests affected and is there a solution? Thank you.

    Hi faustbusserl,
    "I cannot get my Linux guests, I tried CentOS 6.4, Ubuntu 13.10 and Debian 6, to get a DHCP offer from my DHCP server on my physical LAN. Manual configuration using static IP addresses works, but I need DHCP for my laptop."
    Does it mean that you have created an external virtual switch  for Linux guests and they can not get IP from DHCP ?
    Did you try to use legacy network card for the linux VM to get IP from DHCP .
    Best Regards
    Elton Ji
    We
    are trying to better understand customer views on social support experience, so your participation in this
    interview project would be greatly appreciated if you have time.
    Thanks for helping make community forums a great place.

Maybe you are looking for

  • Creating forms in Workbench

    I am fairly new to LiveCycle Workbench ES so this might sound like a dumb question.  But, is it better to create my Adobe forms in LiveCycle Designer first and then bring them into LiveCycle Workbench ES? or is it best to start the whole process usin

  • BPM Collect Message dependent AND time dependent

    Hi I have a IDOC to file scenario where I have to collect all the IDOC until I receive a stop IDOC. Once the End collect IDOC is received I have to do a n:1 transformation and write the file to the FTP. The problem is, at times the IDOC which is supp

  • Did download of 3.6 12.took ages,and computor auto shut down when done how do i know if its installed?

    firefox indicated a new download version was advised.I indicated go ahead.the download took several hours and i checked every 1/2 hour but at 10.30 my computer had shut down.I cant find anywhere that tells me if it was applied? ah I see below i am on

  • Query Hanging out with CL_SQL_RESULT_SET=============CP

    Dear Gurus,     I am using a cube, and do reporting, let say cube contain:              Posting Date              Sales Organization              Distribution Chanel              Division    In Query i used only Posting as variable, and in Cube we ha

  • 10.2.0.4: Japanese insertion is ok but can't read the value

    Dear Experts, => Server 10.2.0.4 (machine 1) NLS_CHARACTERSET=WE8MSWIN1252 NLS_NCHAR_CHARACTERSET=AL16UTF16 Table is: t_Japanese (ID integer, VALUE NVARCHAR2(50)); => Client 10.2.0.1 (machine 2) In the registry: NLS_LANG=JAPANESE_JAPAN.JA16SJIS => Wh