WLAN AP1200 configuration

Design Scenario
I have a project that requires 8 Access Points (AP1200) to be deployed in one single area (a 702sqm. Multi-purpose Training Room) using IEEE 802.11a standard. It requires maximum 300 wireless clients to be deployed during special events. All 8 APs are to be equally connected into two separate switches having the same subnet, and configured as “Root”. All 8 APs are to be mounted on the ceiling to operate in omni-directional instead of having a patch/directional radiation pattern.
Questions:
1. In configuring the Access Point to address clients seamless mobility, is it appropriate to have the same SSID to all 8 Access points or to assign a unique SSID to each AP? The design configuration calls for setting the Broadcast SSID in Beacon to “No” so that client devices must match exactly to the Access Point’s SSID. Should all APs have the same SSID so they could work seamlessly if the client moves (roaming) within a single area? What is the advantage of having a unique SSID assigned to each AP in terms of security and client seamless mobility? Please also note that the company does not want peer-to-peer roaming.
2. How many number of WLAN clients can AP1200 accommodate to maintain transmission bandwidth of 54Mbps?
3. What is the appropriate way to balance the data traffic load between 8 APs against 300 WLAN clients to minimize bottleneck while maintaining 54Mbps throughput over radio transmission?
4. In terms of data access security, is it appropriate to install the Cisco Secure Access Control Server locally, or in the main building where company’s Enterprise Server is located? Please note that the Multi-purpose Training Hall is linked to the main building over ATM network using fiber optic cable.
5. Does 60 feet at 54Mbps data rate (indoor range) be attained by setting the antenna module to either Omni-directional or patch/directional?
6. Does Access Point attain the same range of 60 feet at 54Mbps (indoor range) while setting its power output to either 40 mW(16dBm) or 5 mW(7dBm)?
I am looking forward to have your answers soon. Thank you very much for your help.
Sincerely yours,
Sixto A. Mejia
[email protected]

These forums are a great place to get a quick tip or a highlevel summary of some part of the technology- they should not be considered a replacement for paying someone who knows what he's doing to come to your location for a survey and design. What you're asking leads me to suspect that what you need is the latter not the former.
With that said, see the following:
"1. In configuring the Access Point to address clients seamless mobility, is it appropriate to have the same SSID to all 8 Access points or to assign a unique SSID to each AP? .... Should all APs have the same SSID so they could work seamlessly if the client moves (roaming) within a single area? What is the advantage of having a unique SSID assigned to each AP in terms of security and client seamless mobility?"
If you want your clients to roam and loadbalance from one AP to another, your APs should be configured with the same SSID. Clients will try to stay with the same SSID if at all possible, but will roam freely between different APs on the same SSID.
"The design configuration calls for setting the Broadcast SSID in Beacon to “No” so that client devices must match exactly to the Access Point’s SSID."
This is bad design. Turning SSID broadcast off does nothing to improve security and decreases the efficiency of authorized communications- in much the same manner that taking the building numbers off of your house will not protect you from burglars but will make things more difficult for your guests. If you want to secure the WLAN, use security features like 802.1x. SSID name is not a security feature.
"Please also note that the company does not want peer-to-peer roaming."
If by this you mean that clients on the WLAN should not be able to communicate directly with other clients on the WLAN, you will want to enable PSPF on the access points.
"2. How many number of WLAN clients can AP1200 accommodate to maintain transmission bandwidth of 54Mbps?"
One.
The radio spectrum is shared medium, just like a 10base2 coax cable. Available bandwidth is divided among all clients on that frequency. If you want 54Mbps to a client, that must be the only client on that AP. (And he won't get 54 megs anyway, since some of that is used by overhead.)
"3. What is the appropriate way to balance the data traffic load between 8 APs against 300 WLAN clients to minimize bottleneck while maintaining 54Mbps throughput over radio transmission?"
Loadbalancing is handled internally to the 802.11 protocol suite; you don't need to worry about it. However, your 300 users will not all be getting 54 megs no matter what you do. If you require high guaranteed bandwidth to a dense and numerous user population, run Cat 5 and forget the wireless.
"4. In terms of data access security, is it appropriate to install the Cisco Secure Access Control Server locally, or in the main building where company’s Enterprise Server is located? Please note that the Multi-purpose Training Hall is linked to the main building over ATM network using fiber optic cable."
Doesn't really matter. Radius traffic is not bandwidth-intensive; put it where it's most convenient.
"5. Does 60 feet at 54Mbps data rate (indoor range) be attained by setting the antenna module to either Omni-directional or patch/directional?"
No way to know without doing a survey. Every site's radio environment is different.
"6. Does Access Point attain the same range of 60 feet at 54Mbps (indoor range) while setting its power output to either 40 mW(16dBm) or 5 mW(7dBm)?"
As a rule of thumb, you can expect greater range at greater power levels, but see #5.
-Gabriel

Similar Messages

  • Reset WLAN network configuration - What .plist file?

    I would like to reset my wireless network configurations, delete all network related preferences and settings and start over. This helped me before to solve a problem that I was unable to connect to a  network at work.
    The 802.11x settings won't load the certificate from the domain that will enable me to connect to my corporate WLAN network.
    Can somebody tell me which files these were, so that I can delete them and start again.
    Any ideas why this keeps happening and what files these are?
    Thanks for any replies and all help.

    In Keychain Access, search for the certificate. I don't know how you can check if it is loading. You might just try deleting it and reinstalling.
    There are functions in the Keychain Access>Certificate Assistant>Evaluate
    See here: http://docs.info.apple.com/article.html?path=Mac/10.5/en/9088.html
    And here: http://support.apple.com/kb/HT3326

  • One WLAN multiple configuration

    Hi all
    I have a question concerning the configuration of the WLAN on controller WLC5509. 
    I have a few branches with connecting to HQ by MPLS. 
    In each location is seen the same WLAN Global_Wlan. 
    I would like, so that each of the connected clients to Global_Wlan in localization, IP address got from the DHCP server at the location. 
    Is it possible?
    Marcin

    Hi Marcin,
    There is another alternative design, if you want to terminate branch traffic at branch switch (including DHCP as well). You have to configure your AP as FlexConnect at braches & enable "FlexConnect Local Switching" feature on WLAN.
    Here is a good Ciscolive presentation on this design & see whether that helps
    BRKEWN-2016 - Branch Office Wireless LAN Design -2014 Melbourne (Link to recorded video session)
    HTH
    Rasika
    **** Pls rate all useful responses ****

  • WLAN Controller - Configuration backup

    Hi,
    I need to take the backup of configuration file for WLAN Controller 4420, I tried all the possibilities given in the documantation but the backup fails, I have main confusion with the file name to be backedup, i am not able to findout the configuration filename any where even when i use CLI, please help.

    from cli, show run-config commands.
    from gui, before exporting the file, from drop down select config file and type any name which will be used to name the backedup file.

  • WLAN Controller configuration help needed

    Hi,
    I need to configure AP with WLAN controller for guest access. we have 2 vlans. vlan 1 - guess vlan (internet only access) and vlan 2 - all access.
    while configuring wlan controller. which vlan should i configure as native vlan? I have radius server which would check health of the user and would direct wlan controller to put in user in vlan 1 or 2 depending on its credentials.
    please advise how to implement it. what would be initial steps.

    Hi,
    I have couple of doubts before going further for solution to implement ?
    What model of wlan controller & AP , you are using ?
    to configure the Controller , initially you need to configure the interface ( which are virtual ) .
    You need to connect controller to your existing LAN set-up may be one of the port of your core switch ............
    below are the interface which you need to configure in controller .......
    1) Management interface with IP ( which will be used to access your controller from lan ... ) this is ip should be able to ping from the network.
    2) AP manager IP ( this is again depend on model ) if it is 5500 , this is not required ..
    3) Virtual IP : this is should the IP address which is not at all there in your lan eq.1.1.1.1
    4) dynamic interface with IP : this is the interface which will map your vlan to WLAN
    once you create the mentioned interfaces , you need to create the wlan and map the above dynamic interface with respective wlan.if required you can configure the DHCP pool as well in controller for Wlan.
    let me know , whether this information helped  you ........................

  • Basic AP1200 configuration

    Hello,
    I am looking for the simplest configuration on an AP without any vlan or sub-interfaces configuration. Really the basic configuration for an AP with :
    - 1 IP adresse
    - 1 Netmask
    - 1 Default Gateway
    Thx for any help.

    en
    #conf t
    config)#ip default-gateway x.y.z.w
    config)#int BVI1
    fig-if)#ip address x.y.z.w 255.0.0.0
    fig-if)#no shut
    fig-if)#exit
    config)#int dot11Radio0
    fig-if)#ssid test
    fig-if)#no ssid tsunami
    fig-if)#exit
    config)#exit
    #copy run start
    Then you can connect to it from the wireless side or wired side using a Web Browser and the x.y.z.w IP config for BVI and configure anything else you may want in there.
    Cheers

  • WLAN Configuration Template of Cisco Prime 2.1

    Hi ,
    We have added WLC 5508 in cisco prime 2.1.0.87 wherin if we try to configure WLC Configuration template then its not reflecting existing WLAN as we need to do changes in existing WLAN with configuration template. Same way we are unable to find all listed MAC-Filter list in WLAN Confiuration template to execute the template .
    Can Any one help me on the same?
    Thanks in advance.

    Services running fine..
    check it with other Browser , Supported browser are below::
    –    Google Chrome 31 or later.
    –    Microsoft Internet Explorer 8.0 or 9.0 with Google Chrome Frame plugin (users logging in to the simplified Lobby Ambassador interface do not need the plugin).
    –    Mozilla Firefox ESR 24.
    –    Mozilla Firefox 24, 25 or 26.
    If above does not help , reboot the server once and check the issue again.
    Thanks-
    Afroz
    ***Ratings Encourages Contributors ****

  • How-do-i-configure-guest-wifi-access-using-2504-wlc-fortigate-utm-l3-device

    Dear All
    I have a 2504 Wireless Controller with multiple radios attached. I currently have a "private" WLAN configured (taking ip from windows server based DHCP of Range 192.1681.0/24 ) and working, but I need to add a Guest/Public WLAN which should take the IP from Other DHCP Configured on Fortigate UTM of range 172.16.0.0/24.
    We have one SG300 switch in the office and the rest are basic switches.
    Our firewall/router is a Fortigate UTM 240D
    Find the attached network diagram for the issue.
    Is there a SIMPLE way to enabling guest access that doesn't require VLANS (or are VLANS easier than I'm making them)? 
    Thanks.
    - See more at: https://supportforums.cisco.com/discussion/12473186/how-do-i-configure-guest-wifi-access-using-2504-wlc-fortigate-utm-l3-device#sthash.aj1XcWI0.dpuf

    Complete these steps in order to configure the devices for this network setup:
    http://www.cisco.com/c/en/us/support/docs/wireless-mobility/wireless-vlan/70937-guest-internal-wlan.html
    Configure Dynamic Interfaces on the WLC for the Guest and Internal Users
    Create WLANs for the Guest and Internal Users
    Configure the Layer 2 Switch Port that Connects to the WLC as Trunk Port

  • Mac does not use WLAN link

    Hi!
    A friend of mine got a WLAN router (Fritzbox SL) and an USB stick to connect his Mac (running Mac OS 10.2.8) to the internet. He followed all installation instruction, i.e. configured the WLAN router and installed the WLAN client software on his Mac. But it didn't worked. So he cried for help.
    I have pretty good new how about IP, but don't know much about Mac OS. Anyhow, I tried to help.
    What I saw was:
    * The WLAN router configuration was OK. My Win XP laptop connected without any problems.
    * From the WLAN routers point of view, the Mac was connected: I saw it's Ethernet-MAC address and the Mac was assigned an IP address via DHCP.
    * On the Mac, there was no connection to the internet. On the network configuration, DHCP was selected. But the IP address shown here was different (different network) from the one I saw on on the WLAN router. And below the IP address it said "manually assigned". But we did not manually assign that address.
    My friend connected the Mac via Modem to the internet before. Maybe, some static routing info here that's causing the trouble?
    I asked my friend for a "shell", a command line tool, because I'd to some simple things like a netstat, a ping or a traceroute. Isn't that Mac OS a UNIX based one? There should be tools like these?
    So: Any pointer?
    Well, finally, just connected the Mac via an Ethernet cable to the WLAN router (and disabled its WLAN function). This works fine. But it should be possible to use the WLAN as well?!
    I am really somewhat surprised. I former times, it was more the MS Windows software that was causing trouble, not working fine. Now, I see that XP already includes WLAN support, either with WEP or WAP encryption, working without any problem, but the Mac OS don't. So, you need som bloddy piece of software which also only provides this pooor WEP encryption and does not work at all.
    What happend to the so sophisticated Mac OS?

    ...and an USB stick to connect his Mac (running Mac OS 10.2.8) to the internet...Did you install the appropriate drivers? USB wireless dongles require the appropriate Mac OS X drivers to operate. The bad part is that these drivers frequently do not get along with OS X and therefore are not recommended.
    The best thing is to get the appropriate AirPort card or AirPort Extreme card for the friend's Mac.
    The next best thing is to use an Ethernet wireless adapter. These devices require no drivers and therefore will work with any Ethernet device regardless of OS.

  • How can I copy a PSK from one WLAN Controller to another

    I'm trying to replace a WLAN controller with a new one.  One WLAN is configured with WPA-PSK.  Nobody seems to know the key that was used.
    Anyone know if there is a way to extract the encrypted key out of a controller and put it into the new WLAN Controller?
    Thanks in advance.

    No can do ...
    https://supportforums.cisco.com/discussion/11364566/view-psks-wlans-wlc 
    However, if any users are on a MAC Book and has iCloud enabled you can see the key under the "keys". If you have a windows 7 box and uses the native supplicant you can expose the key on the supplicant ..

  • 4400 WLC Layer 3 Authentication Status for WLAN Clients

    We have 3 4400 series WLC's(wireless LAN controllers). Two 4404 WLC's are on the "inside" of our network and all AP's (access points) on our network use these two WLC's as the primary or secondary controller.  The 4402 WLC Anchor controller resides in our DMZ and is used for WLANs that are more oriented for guest usage.  These guest WLANs are configured on the inside controllers also, but are "anchored" to the 4402.  On the anchor controller we are using layer 3 Web Authentication for the WLAN "Guest".  This WLAN uses the internal web-auth page within the anchor controller and a username/password combo that is locally defined on the anchor controller.
    Functionally there is no issue.  Users connecting to the WLAN are presented with the web-auth page upon connecting to the WLAN and opening a web browser.  The issue is how the layer 3 authentication information is presented on the Monitor Clients page of the "inside" WLC's management screen as compared to the "anchor" WLC.
    For example, if we log in to the anchor controller and then click Monitor, then Client, then Change Filter and choose any WLAN requiring layer 3 authentication on the Anchor controller, there will be a list of all clients currently associated.  In the Column with the "Auth" heading it shows the Layer 3 Authentication status of the clients.  For example, if there are 15 clients associated to WLAN SSID "Guest", but only 5 of them have opened their web browsers and correctly logged in, then this will be correctly displayed.  The 5 who have logged in will show "Yes" and the other 10 will show "No" in the Auth column.
    Now...the problem...on the inside controllers...if we do the same thing (monitor, clients, filter for WLAN SSID "Guest"), all 15 will show "Yes" under the Auth column. In most cases the 15 clients will be distributed accross both controllers (maybe 6 on one, and 9 on the other WLC), but both inside controllers will display all clients as having a layer 3 authentication status of "Yes".  We have proven over and over that this is not accurate.  This is very inconvenient because the "Client Count" reports we run on the WCS server reflect the same information as the "inside" controllers.  The WSC reports will show all 15 as Authenticated and they are not.  We have proven many times that the anchor WLC is the only controller accuratly conveying this info.
    Also, the engineers who helped with our network install have reproduced the same behavior in a lab with an anchor and inside controller directly connected.  They suggested it may be a code bug with the 4400 series WLC.  We are running controller Software Version 6.0.188.0 on all 3 controllers.
    Please let me know what you think may be causing this issue.  Any help or advice is greatly appreciated!

    Hi,
    We run version 7.0 on the WCS and WLCs but I thought I'd try the report and see what I got. The result is a line graph with the number of associated and authenticated clients superimposed. I'm not sure how useful a report of this nature is.
    It doesn't inspire confidence: when I specifiy the guest wireless SSID I get zero clients! I know there have been guest clients authenticated during the report period I spec'd.
    Scott

  • 802.1x errors from client in WLAN with WPA2 and PSK

    Hello,
    I have been doing a client troubleshooting and I have got some errors that does not have so much sense for me:
    1)
    Time :03/15/2011 14:49:54 CET Severity :ERROR Controller IP :10.x.x.x Message :802.1x authentication message received, static dynamic wep supported.
    2)
    Time :03/15/2011 14:49:54 CET Severity :INFO Controller IP :10.x.x.x Message :Association request received from a client has an invalid RSN IE.(One reason could be mismatch in WPA2 algorithm).
    The WLAN is configured with WPA2 with AES and PSK, and during the troubleshooting several roamings have happened.
    Do you have any idea why they can be produced?
    I attach the complete log.
    Thank you in advanced.

    Sounds like the clients are doing WPA with TKIP for the message number 2 for example ?

  • Guest configuration with WLC

    i am using WLC 4402 with firmware 5.1 and 1252 Access Point.
    i am in trouble to configure guest access with the WLC.
    i have configured interface in WLC under CONTROLLER->INTERFACES->GUEST.
    WHEN I SELECT THIS INTERFACE AS GUEST IT DOESN'T TAKE IP ADDRESS INFORMATION. IN THIS CASE I HAVE TO UNCHECK GUEST SELECTION BOX.
    AND I GOT DYNAMIC INTERFACE WITHOUT IP ADDRESS.
    AFTER DOING THIS I CREATE WLAN NAMED GUEST AND ENABLED IT.
    i have put guest interface as a ingress interface and management as egress interface and applied web auth successfully but still it is not showing me guest SSID when i try to search it.
    help me
    plz
    thanks

    Have you gone through these documents yet?
    Wired Guest Access using Cisco WLAN Controllers Configuration Example
    http://www.cisco.com/en/US/tech/tk722/tk809/technologies_configuration_example09186a00808ed026.shtml
    Guest WLAN and Internal WLAN using WLCs Configuration Example
    http://www.cisco.com/en/US/tech/tk722/tk809/technologies_configuration_example09186a008070ba8f.shtml
    Hope these will help you.

  • Cisco aironet 2600 series AP configuration with windows 2008 R2 Radius server.

    I want to know the configuration of Cisco aironet 2600 series AP with windows 2008 R2 Radius server.  
    I have
    1. AD & DHCP Server
    2. Cisco Aironet 2600 Access Point.
    I want to connect wifi devices through this AP. Authentication should be through Radius server and AD.

    Hi , 
    Below link should support your requirement 
    http://www.cisco.com/c/en/us/support/docs/wireless-mobility/wireless-lan-wlan/116584-configure-wirelesslan-00.html
    Minimal command : -
    AP(config)# aaa new-model
     AP(config)# radius-server host 172.20.0.1 auth-port 1645 acct-port 1645 key XXXXXX
     AP(config)# radius-server deadtime 10
    HTH
    Sandy

  • Qosimo G20: Wlan WEP settings not possible running Config free?

    Hi!
    I have a Qosimo G20 running XP media center as OS.
    Default Toshiba ConfigFree is installed.
    Tried to find out how to set WEP key, but trying to do so in network config/settings task was halted with a message.
    This message referring to Microsoft KB 871122.
    Wireless Zero Configuration seams to be replaced by ConfigFree (or other software I'm not aware of).
    I can not follow the instruction as I see it as I have ConfigFree installed.
    Have anyone out there encountered this problem and solved it?
    /Jonas

    Hi
    ConfigFree is a monitoring tool and helps you to monitor your connection. It allows you to pick up the information about used connections and helps you to have a better overview.
    You can not use this tool for network configuration. If you want to do this please do this:
    - activate the WiFi card at first
    - go into Control panel > Network Connections > right mouse click on Wireless network and choose Properties
    - under "preferred networks" add your WLAN and configure "Data encryption"
    I hope that will help you.
    Good luck!

Maybe you are looking for

  • Macbook Pro Retina Display, a rough spot on the screen.!!!

    I bought my Macbook Pro (Retina Display) from a Authorised Reseller in Malidves. Its been 3 weeks since i've bought it. Few days back i noticed a white spot on the screen. I tried to wipe the spot off with the cleaning cloth. to my surprise, the spot

  • Fault Tolerance - MCS 7825 H3 & MCS 7835 H2 Servers

    Hi, I have enabled network fault tolerance on my CUC and CCM Servers, i thought after enabling the network fault tolerance the server would change the mac address to Virtual mac address which indeed it may affect the licenses. But after enabling faul

  • Costing Run

    Hi, Can some one let me know the importance and use of transaction MEI2? My issue is like we have a purchase order and when ever user makes any adjustment to any of the line item in the purchase orde it will trigger an email to vendor. But now the is

  • Waiting for Sec always

    Hello,     1) I am working on DAQ and I need some help to take decision in best way. I am using JKI state machine, which having one case for DAQ and another cases for controlling the serial device. I need to swich the cases always until my Serial dev

  • 8/7/2012 - AIR 3.4 Runtime and SDK Beta 2

    The beta 2 release provides access to the AIR 3.4 runtime and SDK for Windows, Mac OS, iOS and Android. The key features and benefits of AIR 3.4 are: iOS 5.1 SDK Support - Build your AIR on iOS applications by default with iOS 5.1 SDK (without using