Wireless clients cannot get ip address
I have 7 WLANs configured all work fine but the latest. The 7th WLAN I configured will not let clients get an IP address. I can plug a wire into the port with the same VLAN configured on the port and I get an IP address but wireless clients connected to an AP on that port cannot get an IP adddress. Any suggestions would be appreciated.
Hello,
where is the DHCP server configured?
- do all other 6 WLAN's work fine with the same DHCP server.
- do you have any H-REAP VLAN mapping , or AP groups configured?
they will override the WLAN-interface configuration.
Kind regards
Talal
=======
please rate answers that you find useful , and mark as answered - when it is :-) - so others can find it easily
Similar Messages
-
Wireless clients cannot get to internet
Hi All,
I'm fairly new to networking and have been trying to troubleshoot an issue with my home lab.
I have a Cisco 2800 router with 2 interfaces, gig0/0 that is the "external" interface and gets an IP via DHCP, and gig0/1 that is the internal interface with IP 10.10.10.1 and a DHCP pool of 10.10.10.100 - 10.10.10.254. A nat pool containing the external interface IP (192.168.1.110) exists.
Current configuration : 3229 bytes
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
hostname Router
boot-start-marker
boot-end-marker
no aaa new-model
ip cef
no ip dhcp use vrf connected
ip dhcp excluded-address 10.10.10.1 10.10.10.99
ip dhcp pool dpool1
import all
network 10.10.10.0 255.255.255.0
dns-server 8.8.8.8 8.8.4.4
default-router 10.10.10.1
ip domain name home.local
ip name-server 8.8.8.8
ip name-server 8.8.4.4
multilink bundle-name authenticated
interface GigabitEthernet0/0
ip address dhcp
ip nat outside
ip virtual-reassembly
duplex auto
speed auto
interface GigabitEthernet0/1
ip address 10.10.10.1 255.255.255.0
ip nat inside
ip virtual-reassembly
duplex auto
speed auto
no mop enabled
interface FastEthernet0/3/0
shutdown
interface FastEthernet0/3/1
shutdown
interface FastEthernet0/3/2
shutdown
interface FastEthernet0/3/3
shutdown
interface Vlan1
no ip address
shutdown
ip http server
ip http authentication local
ip http secure-server
ip nat pool ovrld 192.168.1.110 192.168.1.110 prefix-length 30
ip nat inside source list 1 pool ovrld
access-list 1 permit 10.10.10.0 0.0.0.255
snmp-server community public RO
control-plane
scheduler allocate 20000 1000
end
Coming off the internal interface is a 3750, and attached to that 3750 is a 4400 Wireless Lan Controller.
I'm able to create a wireless network that uses the router for DHCP and clients can connect to this wireless network and obtain an IP from that DHCP pool. The wireless clients can ping the default gateway (10.10.10.1) as well as every other device on that network, including hard-wired devices on the 3750. The arp table on the router also shows the wireless clients.
However, only clients connected via ethernet can access the outside (internet), wireless clients, who appear to get the exact same network config, are unable to access the internet they can only access other devices on that 10.10.10.0 network.
So I'm confused as to why with what appears to be the proper default gateway (10.10.10.1) and a valid IP from the router, what could be broken so hard-wired clients can NAT to the outside while wireless clients can't? I can't find any setting on the WLC 4400 that would be restricting wireless clients from leaving the local network.
Any clarification on my issue/my understanding of the problem would be greatly appreciated. Cheers!Hello smorrissey,
May I ask, how many end devices do you have connected to the switch? And if you tried to connect wireless clients simultaneously with wired devices?
Because from your config it seems you're using only dynamic NAT:
ip nat inside source list 1 pool ovrld // this command will translate IP picked by ACL 1 to address in pool named ovrld. Because you have only 1 address in this pool, only 1 inside device will be able to communicate with outside world (Internet) at a time.
I would suggest to add keyword "overload" at the end of this command (ip nat inside source list 1 pool ovrld overload) to enable PAT, which will allow multiple LAN devices to use 1 outside address at the same time thanks to port address translation.
Hope this will help.
Michal -
Guest Wireless client not getting IP addresses
WLC 5508 as anchor running 7.0.116.0 locally configured DHCP scope. Scope has been enabled. There are 2 Foreign controllers in different locations Mobility ggroups have been configured and there is communication between them I am able to ping , mping and eping. I have gone through my configuration but can't find what is missing.
I am pasting the debug and show wlan info below the first is for the foreign controller
=~=~=~=~=~=~=~=~=~=~=~= PuTTY log 2011.09.23 07:51:16 =~=~=~=~=~=~=~=~=~=~=~=
*apfReceiveTask: Sep 22 23:30:29.265: 00:21:5d:a9:2b:a4 Deleting mobile on AP 08:17:35:31:1c:90(0)
*apfReceiveTask: Sep 23 12:51:08.488: 00:21:5d:a9:2b:a4 0.0.0.0 DHCP_REQD (7) DHCP Policy timeout. Number of DHCP request 0 from client
*apfReceiveTask: Sep 23 12:51:08.488: 00:21:5d:a9:2b:a4 0.0.0.0 DHCP_REQD (7) Pem timed out, Try to delete client in 10 secs.
*apfReceiveTask: Sep 23 12:51:08.488: 00:21:5d:a9:2b:a4 Scheduling deletion of Mobile Station: (callerId: 12) in 10 seconds
*osapiBsnTimer: Sep 23 12:51:18.488: 00:21:5d:a9:2b:a4 apfMsExpireCallback (apf_ms.c:608) Expiring Mobile!
*apfReceiveTask: Sep 23 12:51:18.488: 00:21:5d:a9:2b:a4 apfMsExpireMobileStation (apf_ms.c:5009) Changing state for mobile 00:21:5d:a9:2b:a4 on AP 08:17:35:31:1c:90 from Associated to Disassociated
*apfReceiveTask: Sep 23 12:51:18.488: 00:21:5d:a9:2b:a4 Scheduling deletion of Mobile Station: (callerId: 45) in 10 seconds
*osapiBsnTimer: Sep 23 12:51:28.488: 00:21:5d:a9:2b:a4 apfMsExpireCallback (apf_ms.c:608) Expiring Mobile!
*apfReceiveTask: Sep 23 12:51:28.488: 00:21:5d:a9:2b:a4 apfMsAssoStateDec
*apfReceiveTask: Sep 23 12:51:28.488: 00:21:5d:a9:2b:a4 apfMsExpireMobileStation (apf_ms.c:5132) Changing state for mobile 00:21:5d:a9:2b:a4 on AP 08:17:35:31:1c:90 from Disassociated to Idle
*apfReceiveTask: Sep 23 12:51:28.489: 00:21:5d:a9:2b:a4 0.0.0.0 DHCP_REQD (7) Deleted mobile LWAPP rule on AP [08:17:35:31:1c:90]
*apfReceiveTask: Sep 23 12:51:28.489: 00:21:5d:a9:2b:a4 Deleting mobile on AP 08:17:35:31:1c:90(0)
*apfMsConnTask_7: Sep 23 12:51:30.795: 00:21:5d:a9:2b:a4 Adding mobile on LWAPP AP 08:17:35:31:1c:90(0)
*apfMsConnTask_7: Sep 23 12:51:30.795: 00:21:5d:a9:2b:a4 Association received from mobile on AP 08:17:35:31:1c:90
*apfMsConnTask_7: Sep 23 12:51:30.795: 00:21:5d:a9:2b:a4 0.0.0.0 START (0) Changing ACL 'none' (ACL ID 0) ===> 'none' (ACL ID 255) --- (caller apf_policy.c:1621)
*apfMsConnTask_7: Sep 23 12:51:30.795: 00:21:5d:a9:2b:a4 Applying site-specific IPv6 override for station 00:21:5d:a9:2b:a4 - vapId 1, site 'default-group', interface 'management'
*apfMsConnTask_7: Sep 23 12:51:30.795: 00:21:5d:a9:2b:a4 Applying IPv6 Interface Policy for station 00:21:5d:a9:2b:a4 - vlan 30, interface id 0, interface 'management'
*apfMsConnTask_7: Sep 23 12:51:30.795: 00:21:5d:a9:2b:a4 STA - rates (8): 130 132 139 150 12 18 24 36 0 0 0 0 0 0 0 0
*apfMsConnTask_7: Sep 23 12:51:30.795: 00:21:5d:a9:2b:a4 STA - rates (12): 130 132 139 150 12 18 24 36 48 72 96 108 0 0 0 0
*apfMsConnTask_7: Sep 23 12:51:30.795: 00:21:5d:a9:2b:a4 0.0.0.0 START (0) Initializing policy
*apfMsConnTask_7: Sep 23 12:51:30.795: 00:21:5d:a9:2b:a4 0.0.0.0 START (0) Change state to AUTHCHECK (2) last state AUTHCHECK (2)
*apfMsConnTask_7: Sep 23 12:51:30.795: 00:21:5d:a9:2b:a4 0.0.0.0 AUTHCHECK (2) Change state to L2AUTHCOMPLETE (4) last state L2AUTHCOMPLETE (4)
*apfMsConnTask_7: Sep 23 12:51:30.795: 00:21:5d:a9:2b:a4 0.0.0.0 L2AUTHCOMPLETE (4) DHCP Not required on AP 08:17:35:31:1c:90 vapId 1 apVapId 1for this client
*apfMsConnTask_7: Sep 23 12:51:30.795: 00:21:5d:a9:2b:a4 Not Using WMM Compliance code qosCap 00
*apfMsConnTask_7: Sep 23 12:51:30.795: 00:21:5d:a9:2b:a4 0.0.0.0 L2AUTHCOMPLETE (4) Plumbed mobile LWAPP rule on AP 08:17:35:31:1c:90 vapId 1 apVapId 1
*apfMsConnTask_7: Sep 23 12:51:30.795: 00:21:5d:a9:2b:a4 0.0.0.0 L2AUTHCOMPLETE (4) Change state to DHCP_REQD (7) last state DHCP_REQD (7)
*apfMsConnTask_7: Sep 23 12:51:30.795: 00:21:5d:a9:2b:a4 apfMsAssoStateInc
*apfMsConnTask_7: Sep 23 12:51:30.795: 00:21:5d:a9:2b:a4 apfPemAddUser2 (apf_policy.c:223) Changing state for mobile 00:21:5d:a9:2b:a4 on AP 08:17:35:31:1c:90 from Idle to Associated
*apfMsConnTask_7: Sep 23 12:51:30.795: 00:21:5d:a9:2b:a4 Scheduling deletion of Mobile Station: (callerId: 49) in 1800 seconds
*apfMsConnTask_7: Sep 23 12:51:30.796: 00:21:5d:a9:2b:a4 Sending Assoc Response to station on BSSID 08:17:35:31:1c:90 (status 0) ApVapId 1 Slot 0
*apfMsConnTask_7: Sep 23 12:51:30.796: 00:21:5d:a9:2b:a4 apfProcessAssocReq (apf_80211.c:5241) Changing state for mobile 00:21:5d:a9:2b:a4 on AP 08:17:35:31:1c:90 from Associated to Associated
*DHCP Socket Task: Sep 23 12:51:30.920: 00:21:5d:a9:2b:a4 DHCP received op BOOTREQUEST (1) (len 308,vlan 30, port 13, encap 0xec03)
*DHCP Socket Task: Sep 23 12:51:30.921: 00:21:5d:a9:2b:a4 DHCP dropping packet due to ongoing mobility handshake exchange, (siaddr 0.0.0.0, mobility state = 'apfMsMmQueryRequested'
*DHCP Socket Task: Sep 23 12:51:34.871: 00:21:5d:a9:2b:a4 DHCP received op BOOTREQUEST (1) (len 308,vlan 30, port 13, encap 0xec03)
*DHCP Socket Task: Sep 23 12:51:34.871: 00:21:5d:a9:2b:a4 DHCP dropping packet due to ongoing mobility handshake exchange, (siaddr 0.0.0.0, mobility state = 'apfMsMmAnchorExportRequested'
*DHCP Socket Task: Sep 23 12:51:43.998: 00:21:5d:a9:2b:a4 DHCP received op BOOTREQUEST (1) (len 308,vlan 30, port 13, encap 0xec03)
*DHCP Socket Task: Sep 23 12:51:43.998: 00:21:5d:a9:2b:a4 DHCP dropping packet due to ongoing mobility handshake exchange, (siaddr 0.0.0.0, mobility state = 'apfMsMmAnchorExportRequested'
*DHCP Socket Task: Sep 23 12:51:58.456: 00:21:5d:a9:2b:a4 DHCP received op BOOTREQUEST (1) (len 308,vlan 30, port 13, encap 0xec03)
WLAN Identifier.................................. 1
Profile Name..................................... calguest
Network Name (SSID).............................. calguest
Status........................................... Enabled
MAC Filtering.................................... Disabled
Broadcast SSID................................... Enabled
AAA Policy Override.............................. Disabled
Network Admission Control
Radius-NAC State............................... Disabled
SNMP-NAC State................................. Disabled
Quarantine VLAN................................ 0
Maximum number of Associated Clients............. 0
Number of Active Clients......................... 2
Exclusionlist Timeout............................ 60 seconds
Session Timeout.................................. 1800 seconds
CHD per WLAN..................................... Enabled
Webauth DHCP exclusion........................... Disabled
Interface........................................ management
Multicast Interface.............................. Not Configured
WLAN ACL......................................... unconfigured
DHCP Server...................................... Default
DHCP Address Assignment Required................. Disabled
Static IP client tunneling....................... Disabled
Quality of Service............................... Bronze (background)
Scan Defer Priority.............................. 4,5,6
Scan Defer Time.................................. 100 milliseconds
WMM.............................................. Allowed
WMM UAPSD Compliant Client Support............... Disabled
Media Stream Multicast-direct.................... Disabled
CCX - AironetIe Support.......................... Enabled
CCX - Gratuitous ProbeResponse (GPR)............. Disabled
CCX - Diagnostics Channel Capability............. Disabled
Dot11-Phone Mode (7920).......................... Disabled
Wired Protocol................................... None
IPv6 Support..................................... Disabled
Passive Client Feature........................... Disabled
Peer-to-Peer Blocking Action..................... Disabled
Radio Policy..................................... All
DTIM period for 802.11a radio.................... 1
DTIM period for 802.11b radio.................... 1
Radius Servers
Authentication................................ Global Servers
Accounting.................................... Global Servers
Dynamic Interface............................. Disabled
Local EAP Authentication......................... Disabled
Security
802.11 Authentication:........................ Open System
Static WEP Keys............................... Disabled
802.1X........................................ Disabled
Wi-Fi Protected Access (WPA/WPA2)............. Disabled
CKIP ......................................... Disabled
Web Based Authentication...................... Disabled
Web-Passthrough............................... Disabled
Conditional Web Redirect...................... Disabled
Splash-Page Web Redirect...................... Disabled
Auto Anchor................................... Enabled
H-REAP Local Switching........................ Disabled
H-REAP Local Authentication................... Disabled
H-REAP Learn IP Address....................... Enabled
Client MFP.................................... Optional but inactive (WPA2 not configured)
Tkip MIC Countermeasure Hold-down Timer....... 60
Call Snooping.................................... Disabled
Roamed Call Re-Anchor Policy..................... Disabled
SIP CAC Fail Send-486-Busy Policy................ Enabled
SIP CAC Fail Send Dis-Association Policy......... Disabled
Band Select...................................... Disabled
Load Balancing................................... Disabled
Mobility Anchor List
WLAN ID IP Address Status
1 10.12.130.114 Up
Next is for the anchor
=~=~=~=~=~=~=~=~=~=~=~= PuTTY log 2011.09.23 07:51:16 =~=~=~=~=~=~=~=~=~=~=~=
*apfReceiveTask: Sep 22 23:30:29.265: 00:21:5d:a9:2b:a4 Deleting mobile on AP 08:17:35:31:1c:90(0)
*apfReceiveTask: Sep 23 12:51:08.488: 00:21:5d:a9:2b:a4 0.0.0.0 DHCP_REQD (7) DHCP Policy timeout. Number of DHCP request 0 from client
*apfReceiveTask: Sep 23 12:51:08.488: 00:21:5d:a9:2b:a4 0.0.0.0 DHCP_REQD (7) Pem timed out, Try to delete client in 10 secs.
*apfReceiveTask: Sep 23 12:51:08.488: 00:21:5d:a9:2b:a4 Scheduling deletion of Mobile Station: (callerId: 12) in 10 seconds
*osapiBsnTimer: Sep 23 12:51:18.488: 00:21:5d:a9:2b:a4 apfMsExpireCallback (apf_ms.c:608) Expiring Mobile!
*apfReceiveTask: Sep 23 12:51:18.488: 00:21:5d:a9:2b:a4 apfMsExpireMobileStation (apf_ms.c:5009) Changing state for mobile 00:21:5d:a9:2b:a4 on AP 08:17:35:31:1c:90 from Associated to Disassociated
*apfReceiveTask: Sep 23 12:51:18.488: 00:21:5d:a9:2b:a4 Scheduling deletion of Mobile Station: (callerId: 45) in 10 seconds
*osapiBsnTimer: Sep 23 12:51:28.488: 00:21:5d:a9:2b:a4 apfMsExpireCallback (apf_ms.c:608) Expiring Mobile!
*apfReceiveTask: Sep 23 12:51:28.488: 00:21:5d:a9:2b:a4 apfMsAssoStateDec
*apfReceiveTask: Sep 23 12:51:28.488: 00:21:5d:a9:2b:a4 apfMsExpireMobileStation (apf_ms.c:5132) Changing state for mobile 00:21:5d:a9:2b:a4 on AP 08:17:35:31:1c:90 from Disassociated to Idle
*apfReceiveTask: Sep 23 12:51:28.489: 00:21:5d:a9:2b:a4 0.0.0.0 DHCP_REQD (7) Deleted mobile LWAPP rule on AP [08:17:35:31:1c:90]
*apfReceiveTask: Sep 23 12:51:28.489: 00:21:5d:a9:2b:a4 Deleting mobile on AP 08:17:35:31:1c:90(0)
*apfMsConnTask_7: Sep 23 12:51:30.795: 00:21:5d:a9:2b:a4 Adding mobile on LWAPP AP 08:17:35:31:1c:90(0)
*apfMsConnTask_7: Sep 23 12:51:30.795: 00:21:5d:a9:2b:a4 Association received from mobile on AP 08:17:35:31:1c:90
*apfMsConnTask_7: Sep 23 12:51:30.795: 00:21:5d:a9:2b:a4 0.0.0.0 START (0) Changing ACL 'none' (ACL ID 0) ===> 'none' (ACL ID 255) --- (caller apf_policy.c:1621)
*apfMsConnTask_7: Sep 23 12:51:30.795: 00:21:5d:a9:2b:a4 Applying site-specific IPv6 override for station 00:21:5d:a9:2b:a4 - vapId 1, site 'default-group', interface 'management'
*apfMsConnTask_7: Sep 23 12:51:30.795: 00:21:5d:a9:2b:a4 Applying IPv6 Interface Policy for station 00:21:5d:a9:2b:a4 - vlan 30, interface id 0, interface 'management'
*apfMsConnTask_7: Sep 23 12:51:30.795: 00:21:5d:a9:2b:a4 STA - rates (8): 130 132 139 150 12 18 24 36 0 0 0 0 0 0 0 0
*apfMsConnTask_7: Sep 23 12:51:30.795: 00:21:5d:a9:2b:a4 STA - rates (12): 130 132 139 150 12 18 24 36 48 72 96 108 0 0 0 0
*apfMsConnTask_7: Sep 23 12:51:30.795: 00:21:5d:a9:2b:a4 0.0.0.0 START (0) Initializing policy
*apfMsConnTask_7: Sep 23 12:51:30.795: 00:21:5d:a9:2b:a4 0.0.0.0 START (0) Change state to AUTHCHECK (2) last state AUTHCHECK (2)
*apfMsConnTask_7: Sep 23 12:51:30.795: 00:21:5d:a9:2b:a4 0.0.0.0 AUTHCHECK (2) Change state to L2AUTHCOMPLETE (4) last state L2AUTHCOMPLETE (4)
*apfMsConnTask_7: Sep 23 12:51:30.795: 00:21:5d:a9:2b:a4 0.0.0.0 L2AUTHCOMPLETE (4) DHCP Not required on AP 08:17:35:31:1c:90 vapId 1 apVapId 1for this client
*apfMsConnTask_7: Sep 23 12:51:30.795: 00:21:5d:a9:2b:a4 Not Using WMM Compliance code qosCap 00
*apfMsConnTask_7: Sep 23 12:51:30.795: 00:21:5d:a9:2b:a4 0.0.0.0 L2AUTHCOMPLETE (4) Plumbed mobile LWAPP rule on AP 08:17:35:31:1c:90 vapId 1 apVapId 1
*apfMsConnTask_7: Sep 23 12:51:30.795: 00:21:5d:a9:2b:a4 0.0.0.0 L2AUTHCOMPLETE (4) Change state to DHCP_REQD (7) last state DHCP_REQD (7)
*apfMsConnTask_7: Sep 23 12:51:30.795: 00:21:5d:a9:2b:a4 apfMsAssoStateInc
*apfMsConnTask_7: Sep 23 12:51:30.795: 00:21:5d:a9:2b:a4 apfPemAddUser2 (apf_policy.c:223) Changing state for mobile 00:21:5d:a9:2b:a4 on AP 08:17:35:31:1c:90 from Idle to Associated
*apfMsConnTask_7: Sep 23 12:51:30.795: 00:21:5d:a9:2b:a4 Scheduling deletion of Mobile Station: (callerId: 49) in 1800 seconds
*apfMsConnTask_7: Sep 23 12:51:30.796: 00:21:5d:a9:2b:a4 Sending Assoc Response to station on BSSID 08:17:35:31:1c:90 (status 0) ApVapId 1 Slot 0
*apfMsConnTask_7: Sep 23 12:51:30.796: 00:21:5d:a9:2b:a4 apfProcessAssocReq (apf_80211.c:5241) Changing state for mobile 00:21:5d:a9:2b:a4 on AP 08:17:35:31:1c:90 from Associated to Associated
*DHCP Socket Task: Sep 23 12:51:30.920: 00:21:5d:a9:2b:a4 DHCP received op BOOTREQUEST (1) (len 308,vlan 30, port 13, encap 0xec03)
*DHCP Socket Task: Sep 23 12:51:30.921: 00:21:5d:a9:2b:a4 DHCP dropping packet due to ongoing mobility handshake exchange, (siaddr 0.0.0.0, mobility state = 'apfMsMmQueryRequested'
*DHCP Socket Task: Sep 23 12:51:34.871: 00:21:5d:a9:2b:a4 DHCP received op BOOTREQUEST (1) (len 308,vlan 30, port 13, encap 0xec03)
*DHCP Socket Task: Sep 23 12:51:34.871: 00:21:5d:a9:2b:a4 DHCP dropping packet due to ongoing mobility handshake exchange, (siaddr 0.0.0.0, mobility state = 'apfMsMmAnchorExportRequested'
*DHCP Socket Task: Sep 23 12:51:43.998: 00:21:5d:a9:2b:a4 DHCP received op BOOTREQUEST (1) (len 308,vlan 30, port 13, encap 0xec03)
*DHCP Socket Task: Sep 23 12:51:43.998: 00:21:5d:a9:2b:a4 DHCP dropping packet due to ongoing mobility handshake exchange, (siaddr 0.0.0.0, mobility state = 'apfMsMmAnchorExportRequested'
*DHCP Socket Task: Sep 23 12:51:58.456: 00:21:5d:a9:2b:a4 DHCP received op BOOTREQUEST (1) (len 308,vlan 30, port 13, encap 0xec03)
WLAN Identifier.................................. 1
Profile Name..................................... calguest
Network Name (SSID).............................. calguest
Status........................................... Enabled
MAC Filtering.................................... Disabled
Broadcast SSID................................... Enabled
AAA Policy Override.............................. Disabled
Network Admission Control
Radius-NAC State............................... Disabled
SNMP-NAC State................................. Disabled
Quarantine VLAN................................ 0
Maximum number of Associated Clients............. 0
Number of Active Clients......................... 2
Exclusionlist Timeout............................ 60 seconds
Session Timeout.................................. 1800 seconds
CHD per WLAN..................................... Enabled
Webauth DHCP exclusion........................... Disabled
Interface........................................ management
Multicast Interface.............................. Not Configured
WLAN ACL......................................... unconfigured
DHCP Server...................................... Default
DHCP Address Assignment Required................. Disabled
Static IP client tunneling....................... Disabled
Quality of Service............................... Bronze (background)
Scan Defer Priority.............................. 4,5,6
Scan Defer Time.................................. 100 milliseconds
WMM.............................................. Allowed
WMM UAPSD Compliant Client Support............... Disabled
Media Stream Multicast-direct.................... Disabled
CCX - AironetIe Support.......................... Enabled
CCX - Gratuitous ProbeResponse (GPR)............. Disabled
CCX - Diagnostics Channel Capability............. Disabled
Dot11-Phone Mode (7920).......................... Disabled
Wired Protocol................................... None
IPv6 Support..................................... Disabled
Passive Client Feature........................... Disabled
Peer-to-Peer Blocking Action..................... Disabled
Radio Policy..................................... All
DTIM period for 802.11a radio.................... 1
DTIM period for 802.11b radio.................... 1
Radius Servers
Authentication................................ Global Servers
Accounting.................................... Global Servers
Dynamic Interface............................. Disabled
Local EAP Authentication......................... Disabled
Security
802.11 Authentication:........................ Open System
Static WEP Keys............................... Disabled
802.1X........................................ Disabled
Wi-Fi Protected Access (WPA/WPA2)............. Disabled
CKIP ......................................... Disabled
Web Based Authentication...................... Disabled
Web-Passthrough............................... Disabled
Conditional Web Redirect...................... Disabled
Splash-Page Web Redirect...................... Disabled
Auto Anchor................................... Enabled
H-REAP Local Switching........................ Disabled
H-REAP Local Authentication................... Disabled
H-REAP Learn IP Address....................... Enabled
Client MFP.................................... Optional but inactive (WPA2 not configured)
Tkip MIC Countermeasure Hold-down Timer....... 60
Call Snooping.................................... Disabled
Roamed Call Re-Anchor Policy..................... Disabled
SIP CAC Fail Send-486-Busy Policy................ Enabled
SIP CAC Fail Send Dis-Association Policy......... Disabled
Band Select...................................... Disabled
Load Balancing................................... Disabled
Mobility Anchor List
WLAN ID IP Address Status
1 10.12.130.114 Up -
WLC 5760 with internal DHCP server, clients no get IP address
Hi all,
I have 2 Cisco 5760 WLC (active-standby) IOS-Xe 03.03.03SE with one WLAN.
sh wlan summary
Number of WLANs: 1
WLAN Profile Name SSID VLAN Status
1 Invitados_ADSL Guest 905 UP
sh vlan
VLAN Name Status Ports
1 default active Te1/0/3, Te1/0/4, Te1/0/5, Te1/0/6, Te2/0/3
Te2/0/4, Te2/0/5, Te2/0/6
100 VLAN0100 active Te1/0/1, Te2/0/1
101 Planta_1 active
905 Internet active Te1/0/2, Te2/0/2
The DHCP server is internal.
Sometimes the clients no get IP address and the DHCP pool has IP addresses available.
The workaround done by me to solve the issue is “clear ip dhcp binding *”.
Some days later the problem appears again.
I see this bug with a similar problem:
NGWC blocks DHCP traffic if wireless broadcast disabled
CSCun88928
Description
Symptom:
Some clients set the BROADCAST flag on the DHCP Discover packet. This requires the DHCP server to reply with a broadcast.
In that case and if you are not using DHCP snooping on the 5760/3850, then the controller will block the return traffic unless you enable "wireless broadcast" which enables broadcast globally (and is thus not always desirable)
Conditions:
Seen on 3.3.2 IOS-XE
Workaround:
Use DHCP snooping with the "ip dhcp snooping wireless bootp-broadcast command"
OR
Enable "wireless broadcast" globally
My DHCP configuration is:
ip dhcp relay information trust-all
ip dhcp snooping vlan 905
ip dhcp snooping
ip dhcp excluded-address 172.16.0.1 172.16.0.19
ip dhcp excluded-address 172.16.1.250 172.16.1.254
ip dhcp pool Invitados
network 172.16.0.0 255.255.254.0
default-router 172.16.0.1
dns-server 212.66.160.2 212.49.128.65
lease 0 8
I see in Cisco documentation (http://www.cisco.com/en/US/docs/wireless/technology/5760_deploy/CT5760_Centralized_Configuration_eg.html) this configuration:
DHCP Snooping and Trust Configuration on CT5760
ip dhcp snooping vlan 100, 200
ip dhcp snooping wireless bootp-broadcast enable
ip dhcp snooping
interface TenGigabitEthernet1/0/1
description Connection to Core Switch
switchport trunk allowed vlan 100, 200
switchport mode trunk
ip dhcp relay information trusted ip dhcp snooping trust
interface Vlan100
description Client Vlan
ip dhcp relay information trusted
My question is,Do I have to add the command "ip dhcp snooping wireless bootp-broadcast enable" to solve the issue?
Thanks in advance.
Regards.
DYes, test it with the command you mentioned
ip dhcp snooping wireless bootp-broadcast enable
HTH
Rasika
**** Pls rate all useful responses ***** -
After install KB2889927 Outlook client cannot load Offline address book.
After install KB2889927 Outlook client cannot load Offline address book. Client says: Offline address book Connecting to Microsoft Exchange, and does nothing.
After Uninstall KB2889927 Outlook clent download address book successfully.
Somebody has a problem with KB2889927?
P.S. Exchange 2013 SP1 RU6Hi,
According to your description, I noticed that the issue occurred after install KB2889927 for October 2014 Office 2013 updates.
I read the
November 2014 Office Update Release and find that the following KB can resolve the OAB download issue in Outlook 2013, please install it to have a try:
For Office 2013: http://support2.microsoft.com/kb/2899493
Or for Outlook 2013: http://support2.microsoft.com/kb/2899504
Regards,
Winnie Liang
TechNet Community Support -
I cannot get my address book to merge with iCloud?
I cannot get my address book to merge with iCloud?
Yes, the settings all appear to be correct on the Info page in Itunes. I have contacts checked to synch, calendars and mail accounts but only the contacts are not moving to the Iphone.
-
Wireless Router 877W users cannot get ip address from DHCP
Users can connect to wireless but they cant get ip address what can be the problem ?
Thanks
no aaa new-model
resource policy
ip subnet-zero
ip cef
no ip dhcp use vrf connected
ip dhcp excluded-address 10.10.10.1
ip dhcp excluded-address 192.168.239.1 192.168.239.50
ip dhcp pool users
network 192.168.239.0 255.255.255.0
default-router 192.168.239.1
dns-server 4.2.2.2
bridge irb
interface ATM0
no ip address
no atm ilmi-keepalive
dsl operating-mode auto
interface ATM0.1 point-to-point
no snmp trap link-status
pvc 8/35
pppoe-client dial-pool-number 1
interface FastEthernet0
interface FastEthernet1
interface FastEthernet2
interface FastEthernet3
interface Dot11Radio0
no ip address
encryption vlan 1 key 1 size 40bit 0 1234567890 transmit-key
encryption vlan 1 mode wep mandatory
ssid wirele
vlan 1
authentication open
guest-mode
speed basic-1.0 basic-2.0 basic-5.5 6.0 9.0 basic-11.0 12.0 18.0 24.0 36.0 48.0 54.0
channel 2437
station-role root
interface Dot11Radio0.1
encapsulation dot1Q 1 native
no snmp trap link-status
no cdp enable
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 spanning-disabled
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
interface Vlan1
description $ETH-SW-LAUNCH$$INTF-INFO-HWIC 4ESW$
ip address 192.168.239.1 255.255.255.0
ip nat inside
ip virtual-reassembly
ip tcp adjust-mss 1452
bridge-group 1
bridge-group 1 spanning-disabled
interface Dialer1
ip address negotiated
ip nat outside
ip virtual-reassembly
encapsulation ppp
ip tcp adjust-mss 1452
dialer pool 1
no cdp enable
ppp authentication pap callin
ppp pap sent-username xxxx password xxx
crypto map MerkezVPN
interface Dialer0
no ip address
interface BVI1
no ip address
ip classless
ip route 0.0.0.0 0.0.0.0 Dialer1go into config t and add "bridge 1 route ip" and see what you get....
-
Clients connected to AP541N cannot get DHCP address
New install with 3 AP541N's in a cluster. Two AP's are connected by an ESW-520-8P PoE switch and one on its own power adapter and a 3COM switch. I have set up a single SSID with WPA-AES encryption. I am connecting with HP 2740P tablets with Intel wireless cards. Clients can see and connect to the AP's but only some can get IP addesses from our Small Business Server 2003 DHCP server.
It's intermittent, some will get an IP and work for a while, while other can't. Then the ones that are working will drop and then none of the devices can get an IP. Then suddenly a few will start to work again. I have solid connectivity everywhere in the building but can't get an IP. Also, strangely, even when assigning a static IP I can not pass traffic, although it says I am connected with "5 bars" of signal strength.
Clients show up under Cluster>Sessions, but sometimes with really high counts of "Signal" and "Error Rate". However, even the clients with a "good" connection cannot get an IP.
Here is what I have tried:
Upgrade firmware on all 3 AP's to 1.9.1 (latest)
Wiped and reloaded the devices several times
Tried no encryption, WEP, WPA, doesn't make a difference
Tried everything described in this thread: https://supportforums.cisco.com/message/3078962#3078962 including the registry entry on the DHCP server
I have a spare AP that I put into production with the same load, but it didn't seem to make a difference.
Broadcast/Multicast limiting set to off
Upgraded to latest drivers on tablets; Boosted power on adapter to highest strength; Turned off power saving
I have exhausted all efforts in searching and trying based on my own experience, so any help the community can provide would be appreciated.
Thanks,
DerekHi Derek,
Have you considered using our Online Chat Support?
Cisco Online Chat Support provides live, real-time technical support for Cisco Small Business products through a web chat session with a Small Business Support Center engineer during local business hours
Note: Warranty Coverage is one year from the date of purchase.
Regards,
Cindy Toy
Cisco Small Business
Community Manager -
Help please - cannot get IP address
Hi everyone, I have a WRT54GS router with WEP encryption. I have 2 laptops, both with XP. I cannot get one of the laptops to get an IP connection. It connects to the router, but when I run ipconfig, I get the following error message Windows IP Configuration An internal error occured. A device attached to the system is not functioning. Please contact Microsoft product support services for further help. I have many years of IT experience, and I've also had my network admin brother help me, but we can't figure it out. I have entered the WEP address correctly and have unchecked the box "Key is provided for me automatically". The key index is the same on both PC's. We have released the IPconfig. The PC that can't connect has been recently acquired and has never successfully got an IP connection on this wireless LAN. Any suggestions greatly appreciated. Thanks so much, Lynne
Sounds like an issue on the computer itself not the network. You might need to uninstall reinstall your wireless card.
-
Wireless client keep loosing IP address.
Hi,
I am in hot water, i am not good with wireless i have wireless LAN in my network which is connected to wired network. the problem is my clients get connected to the network but suddently they loose connectivity and start dhcp request and get limited connecitivity with automatic ip address.
My network design is like this.
1. I have a three floor building every floor has its own core and access layer and floors are connected layer 3 (not usual layer 2).
2. Wireless Controllers 4402 are in layer 3 mode and are on ground floor and AP are everywhere in building.
3. Wireless controllers are connected to ground floor core using a VLAN say VLAN 205 and AP's on ground floor and other floors are in different VLANs (physical connectivity of AP's).
4. controllers are configured for two different VLAN's say VLAN 212 for data and VLAN 213 for voice.
5. VLAN interface of the controller is configured with right helper address for DHCP.
My problem is i am a bit confused with the desigh of the network. As i mentioned all floors are connected layer 3 it means seperate VTP domain and seperate VLAN's, all APs on all floors are in differnt IP subnet respectively. but the wireless VLAN is common for all the users on all floors, this is the bit which confuses me alot. the wireless data VLAN has its own IP subnet which is advertised from gound floor only (make sense) but the users are not connecting to ground floor APs only they are connecting everywhere in the building. Users are getting IP address from the wireless VLAN range on every floor, can anybody explain me how they are getting communication because wireless subnet is only local to ground floor core not to first floor or second floor but some people are connecting to 1st floor and 2nd floor AP and are working fine.
The next pain is that my laptops started loosing IP address and they get automatic private IP address hence loose connectivity, the communication issue i referred above is secondary i am actually looking to rectify the ip address issue because users are having problem with it. Signal strength on every floor is perfect and coverage is ok, i have tried to debug dhcp detail packet but i don't receive any because controllers are in differnt VLAN for physical connectivity. Can somebody help me with this thing?
Regards,Your wireless clients will associate to the best AP interms of signal strenght and signal to noise etc.
There is an LWAPP tunnel between the access point and the controller.
At the controller there will be logical interfaces for the wireless LANS that are asssociated to specific VLANs on the wired network.
It doesn't matter where you are in the building as a client as its the controller that puts the client data onto the wired network.
All client data is tunneled between the access point and the controller.
With regard to the losing IP address situation. I assume that the clients do initially get an IP address and then lose it after a period of time.
Check the session timeout paramter on the controller (look on the WLAN-Advanced).
There is a bug with some versions of software relating to session timeouts. Try setting the timeout to 65535 seconds. The default setting is probably 30 minutes. -
Ath9k wireless card "Cannot assign requested address"
# ip link set wlan0 up
RTNETLINK answers: Cannot assign requested address
#ip addr
1: lo: <LOOPBACK,UP,LOWER_UP> ntu 16436 qdisc noqueue state UNKNOWN
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope list lo
2: wlan0 <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN qlen 1000
link/ether 01:08:ca:e6:bc:76 brd ff:ff:ff:ff:ff:ff
#iwconfig
lo no wireless extensions
wlan0 IEEE 802.11bgn ESSID:off/any
Mode:Managed Access Point: Not-Associated TX-Power-0dBm
Retry long limit:7 RTS thr:off Fragment thr:off
Encryption key:off
Power Management:on
Please do excuse if there's a silly typo somewhere in those; not knowing how to do it any better, I've simply re-typed the terminal output into this computer, so I can't promise it free of mistakes. (There's got to be a better way to do that, right?
Asus UX31E-DH72 Zenbook
clean install of the 2011.08.19-core-x86_64 release
There is no ethernet port; only WiFi and a ASIX AX88772B USB-to-ethernet that shipped with the system. (no optical drive either; but that's not really relevant to this)
My current system has never been on the internet (well, since I wiped the Windows off of it...), and so I haven't been able to pacman properly. When I try to use makepkg, it claims it's missing a dependency on Linux-Headers. However, I do know that the wireless card works, seeing as how it had been working just fine under Windows.
If it's relevant: during install, I left the NETWORKING section of rc.conf blank (as the Beginner's Guide says to do for DHCP), like so:
HOSTNAME="zen"
interface=wlan0
address=
netmask=
broadcast=
gateway=
#NETWORKS=(main)
Disclaimer: I'm rather new to the forums here and entirely new to Arch (which is my first Linux distro after years of OSX and a few weeks of Windows). Not scared of the command-line, but you may have to spell things out. Also, I understand if you'd rather not spend time explaining yourself, but I'm a strong believer in teach-a-man-to-fish, so if you'd like to explain rather than just walk through, it'd be much appreciated. Thanks!Welcome and congrats on your decision to grace your sleek new laptop with an equally sleek OS :-)
Just in case you have not found that yet: there is actually a wiki page on your notebook for later setup specifics: https://wiki.archlinux.org/index.php/Asus_Zenbook_UX31E
BTW: I just read there that the usb ethernet is supported in later/newer kernels out-the-box (if setting up wifi really does fail, you can get a later ISO maybe and use that for starters).
As I understand your current setup state, you have installed the system with the core August release and it boots fine? Please confirm.
Also please confirm the exact wifi card the notebook has:
lspci -nn | grep net
or
lspci -nn >> ryebookpcidevices.txt
The later pipes the output to a file. Doing the command again, appends to the file. We only need the exact PCI ID of the wifi card to double check. To save typing even that ID you can maybe copy the file you created "ryebookpcidevices.txt" to an usb stick, if that automounts under /media/...
Next, please quote here any errors you get when re-loading the ath9k module (all commands below need root/sudo):
rmmod ath9k
modprobe ath9k
If you get errors, check whether
rfkill list
gives valid output (not sure if that package is on the ISO, i doubt it actually).
If modprobe does without error, please retry your trial to connect with the card by directly issuing
iwlist wlan0 scan
Give us feedback on what happens then. If there is an error, try
ip link set down
and start from step 0 in the wireless wiki: https://wiki.archlinux.org/index.php/Wi … nual_setup
Your output says "Mode:managed", so something seems working there already..
For "makepkg" you indeed need the headers, but you dont say what you want to compile at this stage. -
Wireless Clients cannot communicate to eachother.
I have a 871W router that I am having trouble getting wireless clients to communicate.
I can ping and use applications from any wired client to any wireless device. However I am unable to ping or use any other protacol from one wireless device to another.
I have confirmed that there is no firewalls on the endpoints blocking communication.
I have removed ACLs on the BVI1 interface but that had no affect.
Any assistance would be greatly appreciated.
Current configuration : 7670 bytes
version 12.4
no service pad
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime msec localtime show-timezone
service timestamps log datetime msec localtime show-timezone
service password-encryption
service sequence-numbers
hostname cc-fw-router
boot-start-marker
boot-end-marker
logging buffered 51200 debugging
enable secret 5 $1$crkU$2cWtWnMRjMvfo4ADb4pfi0
aaa new-model
aaa authentication login default local none
aaa session-id common
resource policy
clock timezone PCTime -5
clock summer-time PCTime date Apr 6 2003 2:00 Oct 26 2003 2:00
ip subnet-zero
no ip source-route
ip cef
no ip dhcp use vrf connected
ip dhcp excluded-address 10.10.10.1
ip dhcp excluded-address 10.10.20.1
ip dhcp pool sdm-pool1
import all
network 10.10.20.0 255.255.255.0
default-router 10.10.20.1
dns-server 192.168.2.244 8.8.8.8
ip dhcp pool xbox
host 10.10.20.20 255.255.255.0
hardware-address 0100.1dd8.5b52.73 ieee802
dns-server 192.168.2.251 4.2.2.2
ip inspect name DEFAULT100 cuseeme
ip inspect name DEFAULT100 ftp
ip inspect name DEFAULT100 h323
ip inspect name DEFAULT100 icmp
ip inspect name DEFAULT100 netshow
ip inspect name DEFAULT100 rcmd
ip inspect name DEFAULT100 realaudio
ip inspect name DEFAULT100 rtsp
ip inspect name DEFAULT100 esmtp
ip inspect name DEFAULT100 sqlnet
ip inspect name DEFAULT100 streamworks
ip inspect name DEFAULT100 tftp
ip inspect name DEFAULT100 tcp
ip inspect name DEFAULT100 udp
ip inspect name DEFAULT100 vdolive
ip tcp synwait-time 10
no ip bootp server
ip domain name yourdomain.com
ip name-server 4.2.2.2
ip ssh time-out 60
ip ssh authentication-retries 2
crypto pki trustpoint TP-self-signed-1816499983
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-1816499983
revocation-check none
rsakeypair TP-self-signed-1816499983
crypto pki certificate chain TP-self-signed-1816499983
certificate self-signed 01
30820252 308201BB A0030201 02020101 300D0609 2A864886 F70D0101 04050030
31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
69666963 6174652D 31383136 34393939 3833301E 170D3038 30323039 32313436
31395A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649
4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D31 38313634
39393938 3330819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281
8100BD37 F594F5B4 726A60BA 2C99B43C 0DE6814A 17BB53C2 A2202828 D6AA7774
7E3FF99D 7A6B06D8 C7A52D0E 2989CF78 F5E892C0 9A9DA783 1E6C8B59 6F8B01D7
1E631226 D372D65B 6E72CA49 D572FEA6 26131F83 32F87678 4B13735F 383D9F65
287E2CE3 46459CAD 582DB438 6E599885 BAE48719 4AC9EB73 8BC32114 C6C637C9
80350203 010001A3 7A307830 0F060355 1D130101 FF040530 030101FF 30250603
551D1104 1E301C82 1A63632D 66772D70 65746572 2E796F75 72646F6D 61696E2E
636F6D30 1F060355 1D230418 30168014 391859D0 F5A8499D 8EF185B7 DC937161
7F2B7CBA 301D0603 551D0E04 16041439 1859D0F5 A8499D8E F185B7DC 9371617F
2B7CBA30 0D06092A 864886F7 0D010104 05000381 8100BC17 189FF9F1 01349085
70E363E9 47AB7A9A 6F80498B D8F727DF 687CC37E 8FF3024F 30451A97 C4C81676
C2FCA1A0 2B51D091 AA0B44E7 BA7FCA6A ED98CF5F 3EE60AD4 AB79DB09 BBE94F64
C83FB22E 8936E561 C84AF542 DB4756E3 6EF31359 4210262A 43D2E1F7 15DD3E32
15278156 9569D8BE 5EC38773 9A2EFB63 11C55FFD 93B4
quit
username user privilege 15 secret 5 $1$wVlg$THSMUBnF3f3A3o2Oh18xS/
username ccadmin password 7 09774C051612111B180439
crypto isakmp policy 1
encr 3des
authentication pre-share
group 2
crypto isakmp key 01234567890123456789 address 96.252.99.66 no-xauth
crypto ipsec transform-set ESP-3DES-SHA1 esp-3des esp-sha-hmac
crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
crypto map SDM_CMAP_1 1 ipsec-isakmp
description Tunnel
set peer OFFICEVPN IP
set transform-set ESP-3DES-SHA1
match address 103
bridge irb
interface FastEthernet0
interface FastEthernet1
interface FastEthernet2
interface FastEthernet3
interface FastEthernet4
description $FW_OUTSIDE$$ES_WAN$
no ip address
no ip redirects
no ip unreachables
no ip proxy-arp
ip virtual-reassembly
ip route-cache flow
duplex auto
speed auto
pppoe enable group global
pppoe-client dial-pool-number 1
interface Dot11Radio0
no ip address
encryption mode ciphers tkip
ssid my_home
authentication open
authentication key-management wpa
guest-mode
wpa-psk ascii 7 133E1413181F0138273D15
speed basic-1.0 basic-2.0 basic-5.5 6.0 9.0 basic-11.0 12.0 18.0 24.0 36.0 48.0 54.0
station-role root
no dot11 extension aironet
bridge-group 1
bridge-group 1 spanning-disabled
interface Vlan1
description $ETH-SW-LAUNCH$$INTF-INFO-HWIC 4ESW$$FW_INSIDE$
no ip address
ip virtual-reassembly
bridge-group 1
interface Dialer0
description $FW_OUTSIDE$
ip address negotiated
no ip redirects
no ip unreachables
no ip proxy-arp
ip mtu 1452
ip nat outside
ip virtual-reassembly
encapsulation ppp
ip route-cache flow
dialer pool 1
dialer-group 1
no cdp enable
ppp authentication chap pap callin
ppp chap hostname verizonfios
ppp chap password 7 01050316521109012745411A
ppp pap sent-username verizonfios password 7 120F00051B11030A2C222B3B
crypto map SDM_CMAP_1
interface BVI1
description $ES_LAN$$FW_INSIDE$
ip address 10.10.20.1 255.255.255.0
ip access-group 100 in
ip nat inside
ip virtual-reassembly
ip tcp adjust-mss 1200
ip classless
ip route 0.0.0.0 0.0.0.0 Dialer0
ip http server
ip http authentication local
ip http secure-server
ip http timeout-policy idle 60 life 86400 requests 10000
ip nat inside source route-map SDM_RMAP_1 interface Dialer0 overload
ip nat inside source static udp 10.10.20.20 88 interface Dialer0 88
ip nat inside source static tcp 10.10.20.20 3074 interface Dialer0 3074
ip nat inside source static udp 10.10.20.20 3074 interface Dialer0 3074
logging 10.10.20.27
access-list 1 remark INSIDE_IF=BVI1
access-list 1 remark SDM_ACL Category=2
access-list 1 permit 10.10.10.0 0.0.0.255
access-list 1 permit 10.10.20.0 0.0.0.255
access-list 100 remark auto generated by Cisco SDM Express firewall configuration
access-list 100 remark SDM_ACL Category=1
access-list 100 deny ip host 255.255.255.255 any
access-list 100 deny ip 127.0.0.0 0.255.255.255 any
access-list 100 permit ip any any
access-list 103 remark SDM_ACL Category=4
access-list 103 remark IPSec Rule
access-list 103 permit ip 10.10.20.0 0.0.0.255 192.168.2.0 0.0.0.255
access-list 103 permit ip 10.10.20.0 0.0.0.255 10.1.1.0 0.0.0.255
access-list 110 deny ip 10.10.20.0 0.0.0.255 10.1.1.0 0.0.0.255
access-list 110 deny ip 10.10.20.0 0.0.0.255 192.168.2.0 0.0.0.255
access-list 110 permit ip 10.10.20.0 0.0.0.255 any
access-list 120 remark Xbox
access-list 120 permit tcp any eq 88 host 10.10.20.20 eq 88
access-list 120 permit tcp any eq 3074 host 10.10.20.20 eq 3074
access-list 120 permit udp any eq 3074 host 10.10.20.20 eq 3074
dialer-list 1 protocol ip permit
snmp-server community public RO
no cdp run
route-map SDM_RMAP_1 permit 1
match ip address 110
control-plane
bridge 1 protocol ieee
bridge 1 route ip
banner login ^CAuthorized access only!
Disconnect IMMEDIATELY if you are not an authorized user!^C
line con 0
no modem enable
transport output telnet
line aux 0
transport output telnet
line vty 0 4
privilege level 15
transport input telnet ssh
scheduler max-task-time 5000
scheduler allocate 4000 1000
scheduler interval 500
endsee the option "client Isolation"in the Ap
Posted by WebUser Anshul Rohilla -
Wifi clients not getting IP addresses
Hello Experts,
I have a Cisco 1140 AP, and using express setup I have cnofigured a IP address to it. This AP is connected to our public network and is configured with a public ip address. We want the guest users to connect to Wifi and gain access to Internet.
While the users connect to Wifi, I find their laptops getting IP address in series 169.x.x.x due to which they are unable to get to internet.
Can somebody guide to what all configuration required so that laptops would get ip address?
Thanks
ArvindHello George,
I do not have any DHCP server, I want the AP to allocate IP addresses to wifi clients.
Anshul,
Is there any way the AP distribute the IP addresses? I want to have the AP act as an DHCP server and allocate IP address of wifi clients.
If this is not possible in this AP model 1142N, any other Cisco AP model available, which can act as DHCP server?
My requirement basically is:
The AP should allocate IP in the range 192.168.x.x and I would connect the AP to the public network. The wifi clients should be able to get to Internet.
Please suggest any other model in Cisco which should meet my requirement.
Thanks
Arvind -
DHCP: Some clients not getting IP address
Recently setup a new DHCP server on Mac OS X Server 10.5.8 running on an Xserve. We migrated from a Linux server.
The Xserve was originally just a file server. So the only services currently running are: AFP, DHCP, NFS, and SMB. No additional software is running.
The DHCP server ran just fine for the first couple weeks. But then we found some computers just stopped getting IP addresses from the DHCP server. Some were new computers introduced to the network. Some were laptops that had left and come back. However, the DHCP server is definitely still giving out IP addresses and renewing them for most new and existing computers. There have been five computers that have not gotten IP addresses so far, and that had been the case both on the wireless and on a wired connection. Two were PC's, one running Windows 7 and one running Windows XP with Lenovo's ThinkVantage software. The other three were different models of MacBook Pros.
For those five computers, we managed to get them working in two ways. One, we can select to use DHCP with a manual address. When we do that, it manages to pick up all the other information from the DHCP server like DNS and gateway. The second thing we can do is configure the DHCP server to supply a static IP address by providing it with the MAC address of these machines. When we do that, the computers receive the IP address from the DHCP server.
So I guess you could say the problem I'm experiencing is for a few computers the DHCP server seems to only be able to provide static addresses, but not dynamic ones with a lease time.
I have logging set to the highest for the DHCP server. Below is the first thing I noticed that keeps showing up. Sometimes it shows a different MAC address than the one below. None of the afflicted computers have that MAC address, though. I have not seen any other errors in the logs for the DHCP server.
Jan 24 12:09:47 fileserver bootpd[73839]: DHCP DISCOVER [en1]: 1,0:23:32:c1:31:c3
Jan 24 12:09:47 fileserver bootpd[73839]: service time 0.000304 seconds
Jan 24 12:09:50 fileserver bootpd[73839]: DHCP DISCOVER [en1]: 1,0:23:32:c1:31:c3
Jan 24 12:09:50 fileserver bootpd[73839]: service time 0.000280 seconds
Jan 24 12:09:54 fileserver bootpd[73839]: DHCP DISCOVER [en1]: 1,0:23:32:c1:31:c3
Jan 24 12:09:54 fileserver bootpd[73839]: service time 0.000264 seconds
Jan 24 12:10:03 fileserver bootpd[73839]: DHCP DISCOVER [en1]: 1,0:23:32:c1:31:c3
Jan 24 12:10:03 fileserver bootpd[73839]: service time 0.000265 seconds
Jan 24 12:10:11 fileserver bootpd[73839]: DHCP DISCOVER [en1]: 1,0:23:32:c1:31:c3
Jan 24 12:10:11 fileserver bootpd[73839]: service time 0.000283 seconds
Jan 24 12:10:19 fileserver bootpd[73839]: DHCP DISCOVER [en1]: 1,0:23:32:c1:31:c3
Jan 24 12:10:19 fileserver bootpd[73839]: service time 0.000291 seconds
Jan 24 12:10:28 fileserver bootpd[73839]: DHCP DISCOVER [en1]: 1,0:23:32:c1:31:c3
Jan 24 12:10:28 fileserver bootpd[73839]: service time 0.000324 secondsRecently setup a new DHCP server on Mac OS X Server 10.5.8 running on an Xserve. We migrated from a Linux server.
The Xserve was originally just a file server. So the only services currently running are: AFP, DHCP, NFS, and SMB. No additional software is running.
The DHCP server ran just fine for the first couple weeks. But then we found some computers just stopped getting IP addresses from the DHCP server. Some were new computers introduced to the network. Some were laptops that had left and come back. However, the DHCP server is definitely still giving out IP addresses and renewing them for most new and existing computers. There have been five computers that have not gotten IP addresses so far, and that had been the case both on the wireless and on a wired connection. Two were PC's, one running Windows 7 and one running Windows XP with Lenovo's ThinkVantage software. The other three were different models of MacBook Pros.
For those five computers, we managed to get them working in two ways. One, we can select to use DHCP with a manual address. When we do that, it manages to pick up all the other information from the DHCP server like DNS and gateway. The second thing we can do is configure the DHCP server to supply a static IP address by providing it with the MAC address of these machines. When we do that, the computers receive the IP address from the DHCP server.
So I guess you could say the problem I'm experiencing is for a few computers the DHCP server seems to only be able to provide static addresses, but not dynamic ones with a lease time.
I have logging set to the highest for the DHCP server. Below is the first thing I noticed that keeps showing up. Sometimes it shows a different MAC address than the one below. None of the afflicted computers have that MAC address, though. I have not seen any other errors in the logs for the DHCP server.
Jan 24 12:09:47 fileserver bootpd[73839]: DHCP DISCOVER [en1]: 1,0:23:32:c1:31:c3
Jan 24 12:09:47 fileserver bootpd[73839]: service time 0.000304 seconds
Jan 24 12:09:50 fileserver bootpd[73839]: DHCP DISCOVER [en1]: 1,0:23:32:c1:31:c3
Jan 24 12:09:50 fileserver bootpd[73839]: service time 0.000280 seconds
Jan 24 12:09:54 fileserver bootpd[73839]: DHCP DISCOVER [en1]: 1,0:23:32:c1:31:c3
Jan 24 12:09:54 fileserver bootpd[73839]: service time 0.000264 seconds
Jan 24 12:10:03 fileserver bootpd[73839]: DHCP DISCOVER [en1]: 1,0:23:32:c1:31:c3
Jan 24 12:10:03 fileserver bootpd[73839]: service time 0.000265 seconds
Jan 24 12:10:11 fileserver bootpd[73839]: DHCP DISCOVER [en1]: 1,0:23:32:c1:31:c3
Jan 24 12:10:11 fileserver bootpd[73839]: service time 0.000283 seconds
Jan 24 12:10:19 fileserver bootpd[73839]: DHCP DISCOVER [en1]: 1,0:23:32:c1:31:c3
Jan 24 12:10:19 fileserver bootpd[73839]: service time 0.000291 seconds
Jan 24 12:10:28 fileserver bootpd[73839]: DHCP DISCOVER [en1]: 1,0:23:32:c1:31:c3
Jan 24 12:10:28 fileserver bootpd[73839]: service time 0.000324 seconds -
Single client cannot get updated virus defs after client install
I have a single Windows XP workstation that cannot get it's new virus defs after the install of the FEP 2010 client. I have uninstalled and reinstalled with the same error.
Have attempted to stop and restart FEP and Automatic updates with no luck.
Event Log Errors
#1 Windows update agent Event ID 20
Installation Failure: Windows failed to install the following update with error 0x80070643: Definition Update for Microsoft Forefront Endpoint Protection 2010 - KB2461484 (Definition 1.99.1245.0).
#2 Source Microsoft Antimalware Event ID 2001
Microsoft Antimalware has encountered an error trying to update signatures.
New Signature Version:
Previous Signature Version: 0.0.0.0
Update Source: Microsoft Update Server
Update Stage: Install
Source Path: http://www.microsoft.com
Signature Type: AntiVirus
Update Type: Full
User: NT AUTHORITY\SYSTEM
Current Engine Version:
Previous Engine Version: 0.0.0.0
Error code: 0x80070643
Error description: Fatal error during installation.This is old post and there have been several changes in FEP, now the successor of FEP is System Center Endpoint Protection (SCEP) and several things been improved. Try reproduce your issue in SCEP and if problem persist, please post it as a new question.
Maybe you are looking for
-
Error while executing planning function with reference data
Hi, I have a two planning functions one is used to upload the file (with out reference data checkbox in planning function RSPLF1) and other planning function ('Referece data'check box is selected in custom planning function RSPLF1) to execute the log
-
I have used JavaScript before, but not within Apex. I have several calculated fields that I need to be able to update after user input (I think the onChange() function will work just fine). I have browsed through over a dozen threads on using JavaScr
-
Pop Sever Rejected my Password
I have been experiencing problems with macmail since 10.5 was released. POP server rejected my password box intermittently. It is annoying and Apple Support told me 10.5.5 was released to help solve this problem. Well so far it has not. Is there anyo
-
Using Netflix in Argentina with Apple TV
Hey everyone, I recently bought a Gen 2 Apple TV and Netflix released it service during that same week. Sadly I can´t watch movies using my Apple TV, I can browse through the content but when I hit play I receive a message that sais that my device it
-
Hi, I have two questions about paths 1. After making a stoke on a path, I made some adjustments on the path. But it doesnt affect the sroke. Is thre a way to do this. 2. Is there a way of deforming a layer by a curve. Thank you.