WLC - 5500 - Back Plane Speed
Hi Team,
I wanted to know WLC 5508 - Back Plane Speed with AES-CCM Encryption.
Can anyone guide me to get this details?
Regards
Jana
thanks scotte,
on the otherhand i have also opend a cisco TAC, let's see tac engineer's seggustion.
i appreciate your support thank you so much
if there is any alternate solution please share with me?
we have only controllers in the network, no NCS and MSE.
thanks
Similar Messages
-
Hello,
I am going to deploy Cisco ISE with WLC 5500. I have two kinds of users one for which I want to deploy just open access Wi-Fi network, without working with Cisco ISE and Second group of Users for which I want to deploy Cisco ISE services like advanced authentication, posture and profiling. For both users I have just one WLC. Is there any problem to just deploy two SSID one for open access (without Cisco ISE) and second Secure with Cisco ISE ?Thank you for helping.
I have read your proposed document, but didn't understand details beside SNMP probes.
The reason I don't want to enable ISE authentication/profiling and posture for guest is that I don't have enough licenses for all guests. I am planning to create separate SSID for guest which will have just open “authentication” without any key or ISE. In this case why ISE will profile guest users, it even doesn’t be associated with this WLAN profile? -
Obvious power issue effecting all back plane jks. Popping HOURLY (clocked) thru speakers, lites up lamp on doc scanner. Has blown power supply once. "Genius" diag NTF twice B4 power supply blew. Still have same trouble. I made very CLEAR to Genius Bar that it was a hardware issue after they continued to trouble shoot software. I was referred to tier 2 who told me they only worked on SOFTWARE. Does anyone know a more qualified shop who can fix an OBVIOUS mother board issue tracing back to the power supply? I had the same issue with a 20" with 7 visits & had to literally take a video of the trouble before they could figure out the trouble was the video card. From reading the sheer number of posts of the same trouble descriptions going back to 2007, it's all too obvious the path to MSFT is being taken.
-
Wlc 5500 authentication timeout
I have a WLC 5500 controller. I have two WLANS (OBSD-Internal and OBSD-BYOD). I have authentication setup to the WLC for the BYOD WLAN using LDAP (users connect with an AD user account). They are required to re authenticate every few minutes. This only happens on the BYOD WLAN (not Internal)
Scott-
Here are the results of the sho WLAN cmd:
(Cisco Controller) >show wlan 3
WLAN Identifier.................................. 3
Profile Name..................................... OBSD BYOD
Network Name (SSID).............................. OBSD-BYOD
Status........................................... Enabled
MAC Filtering.................................... Disabled
Broadcast SSID................................... Enabled
AAA Policy Override.............................. Disabled
Network Admission Control
Radius-NAC State............................... Disabled
SNMP-NAC State................................. Disabled
Quarantine VLAN................................ 0
Maximum number of Associated Clients............. 0
Number of Active Clients......................... 25
Exclusionlist Timeout............................ 60 seconds
Session Timeout.................................. Infinity
CHD per WLAN..................................... Enabled
Webauth DHCP exclusion........................... Disabled
Interface........................................ g9c-guest
Multicast Interface.............................. Not Configured
--More-- or (q)uit
WLAN ACL......................................... Guest WiFi Internet Only
DHCP Server...................................... Default
DHCP Address Assignment Required................. Disabled
Static IP client tunneling....................... Disabled
Quality of Service............................... Silver (best effort)
Scan Defer Priority.............................. 4,5,6
Scan Defer Time.................................. 100 milliseconds
WMM.............................................. Allowed
WMM UAPSD Compliant Client Support............... Disabled
Media Stream Multicast-direct.................... Disabled
CCX - AironetIe Support.......................... Enabled
CCX - Gratuitous ProbeResponse (GPR)............. Disabled
CCX - Diagnostics Channel Capability............. Disabled
Dot11-Phone Mode (7920).......................... Disabled
Wired Protocol................................... None
IPv6 Support..................................... Disabled
Passive Client Feature........................... Disabled
Peer-to-Peer Blocking Action..................... Disabled
Radio Policy..................................... All
DTIM period for 802.11a radio.................... 1
DTIM period for 802.11b radio.................... 1
Radius Servers
Authentication................................ Global Servers
--More-- or (q)uit
Accounting.................................... Global Servers
Dynamic Interface............................. Disabled
Local EAP Authentication......................... Disabled
Security
802.11 Authentication:........................ Open System
Static WEP Keys............................... Disabled
802.1X........................................ Disabled
Wi-Fi Protected Access (WPA/WPA2)............. Disabled
CKIP ......................................... Disabled
Web Based Authentication...................... Enabled
ACL............................................. Web Auth
Web Authentication server precedence:
1............................................... local
2............................................... radius
3............................................... ldap
Web-Passthrough............................... Disabled
Conditional Web Redirect...................... Disabled
Splash-Page Web Redirect...................... Disabled
Auto Anchor................................... Disabled
H-REAP Local Switching........................ Disabled
H-REAP Local Authentication................... Disabled
H-REAP Learn IP Address....................... Enabled
--More-- or (q)uit
Client MFP.................................... Optional but inactive (WPA2 not configured)
Tkip MIC Countermeasure Hold-down Timer....... 60
Call Snooping.................................... Disabled
Roamed Call Re-Anchor Policy..................... Disabled
SIP CAC Fail Send-486-Busy Policy................ Enabled
SIP CAC Fail Send Dis-Association Policy......... Disabled
Band Select...................................... Disabled
Load Balancing................................... Disabled
Mobility Anchor List
WLAN ID IP Address Status -
WLC 5500 802.1x problems
So here is the problem that i have.
I have a WLC 5500 in site A ( let´s say city A too ) with its own set of wlans ( wlan 1 , wlan 2 ... ) that are used to differentiate different types of users ( teachers, students, etc ) using a RADIUS server and a AD for this client and using 802.1x. Everything on site A is working fine.
Now i´m trying so set an access point in site B ( in city B ) with its own set of wlans ( wlan X, wlan Y ... ) that is also used to differentiate clients, site B as its own DHCP, its own RADIUS and its own AD. I´ve managed to connect the access point to the WLC and set wlans for site B. My problem now is that when a user tries to connect to wlan X and he is suppose to be in wlan Y, he is not forwarded to wlan Y and is left in wlan X. I´ve also configured HREAP.
Does anyone as any idea why the clients aren't being assigned to the correct wlan??
I´ve checked in the Radius server and its sending the correct wlan to the user.
I now that the text is probably a little bit confusing, but i hope that someone can help me.
Thanks in advanced.You are right, it is not supported:
Note: If the APs are in H-REAP mode and locally switched at the remote site, the dynamic assignment of users to a specific VLAN based on the RADIUS server configuration is not supported.
Since you can't do dynamic vlan, why not have two policies, one for teachers and the other for students. You will need to have then in seperate groups in AD also. Then filter on the ssid and the AD group, so if students try to access the teachers ssid using their credentials, they get rejected and vice versa.
I don't know what you mean by connecting two site without h-reap. The only other way is switching the AP to local mode, which you better have some good bandwidth.
Scott -
Dear All,
i have WLC 5500 with 50 AP Base license with LAP 3500i APs,
so, do i need license for the WLC to work with the cleanair technology even it software ver 7 ?????
and also i have WCS with base license so do i need a license also for the WCS to work with clean air technology????
thanks
AhmedYou do not need extra license for either WLC or WCS to work with cleanair. But if you buy 10 AP pack 3500 APs, you will get WCS Plus upgrade license (for 100 APs) for free.
More info can be found here:
http://www.cisco.com/en/US/prod/collateral/wireless/ps5678/ps10981/qa_c67-604158.html
zhenning -
We have a WLC 5500 apliance, but i have a problem, the APs have a administrative IP in a diferent segment, only conected to WLC the AP have same segment of the management interface, the 5500 don´t have APmanager interface.
How configurate the WLC to conected and administrate all AP with different segment IP
Product Version.................................. 6.0.182.0
chasis: AIR-CT5508-K9You may check this article about the discovery process:
http://tiny.cc/lqu1zw
Now, with what Steve above is trying to say is that with 5508 the management interface itself is the AP manager interface (by default). so, management and ap-manager interfaces are merged into one interface with same IP address. You can change this behavior but this is the default.
The article will tell you what mechanisms can be used to direct the APs to join the WLC even if they are on different subnet.
HTH
Amjad
Rating useful replies is more useful than saying "Thank you" -
Hi,
I have a WLC 5500 with image 7.0.98, and I can not use bonjour services.
My broadcast and multicast are enabled.
Ethernet Multicast Forwarding............... Enable
Ethernet Broadcast Forwarding............... Enable
AP Multicast/Broadcast Mode................. Multicast Address : 235.0.0.1
IGMP snooping............................... Enabled
the only thing that makes me crazy, is that I am migrating from all the network 3com, to CISCO, now all my switches, and routers are Cisco, my new wlan is CISCO, but for some reasons I have to use for a while the old wireless 3com infraestructure, and I dont have any issue like this in 3com wireless.
I really does not what to do.
Any idea???Just curious.. Since we are using Multicast - Multicast mode..make sure the Multicast routing should be enabled on..
>> MGMT interface and AP manager int's int VLAN where the routing is happening
>> VLAN on which the AP are lying
>> VLAN on whihc the clients are on.
Ex - If the Management and the AP manager is on VLAN 10 and AP are in VLAn 20 and CLients are on VLAN 30, then on VLANs 10, 20, 30 the multicast routing should be enabled..
Regards
Surendra -
Can we create Mobility group between WISM2 and WLC 5500
Dears,
I need your feedback urgent please,
Can we create Mobility Group between WISM2 and WLC 5500
Firmware for WISM2 > 7.4.121.0
Firmware for WLC5500 > 6.0.196.0
I created Mobility Group with (IP address , MAC Address and Mobility group name) for Foreign Controller. if any configuration required from my side.
Wait your feedback urgent please
Regards,Hi,
Controllers do not have to be of the same model to be a member of a mobility group. Mobility groups can be comprised of any combination of controller platforms.
Thats enough :)
Regards
Dont forget to rate helpful posts -
Overwrite image webauth-bundle WLC 5500
Hi,
Does any one knows how to replace an image in webauth-bundle on WLC 5500?
When I run "show custom-web webauth-bundle", I do see the files:
aup.html
login.html
yourlogo.jpg
But, the size of yourlogo.jpg is too big and need to replace with a smaller one.
I have tried (with the appropiate IP and filename):
transfer download mode tftp
transfer download datatype image
transfer download serverip tftp-server-ip-addres
transfer download filename {filename.jpg | filename.gif | filename.png}
but, it does not work.
Thanks very much.If the size changes, then yes you will need to define that on the html. Anyways, you will need to tar up the files and upload it to the WLC. That is the only way to update a custom webauth, either being a change to the html, image or maybe the AUP.
Thanks,
Scott
Help out other by using the rating system and marking answered questions as "Answered" -
Hi experts,
I want to Migrate WLC 4400 with WLC 5500, But i don't know how to do this.
Should i create new configuration or use my WLC 4400 config ?
I want to know about IOS for WLC 5500, should I upgrade my Access Point to connect with new WLC ?
I need a good method to migrate this WLC. So my WLC 5500 can run properly.
Thankyou for your help.I have no idea how Ravi's answer is considered "correct" when he didn't address the most important aspect of your thread.
As far as I'm aware, you need to ensure both controllers are running the same firmware or 7.0.250.X.
Take a copy or export the config of the 4400 configuration to your TFTP server. Edit the file and change the necessary settings. Go to the 5500 and download this configuration file. Upgrade the firmware and the bootstrap if necessary. -
Hi, I have a WLC 5500 with Software Version, 6.0.196.0, License Level Base, according to the "Release Notes for Cisco Wireless LAN Controllers and Lightweight Access Points for Release 6.0.196.0", says that the base license includes all features present in the wplus license. In the monitor page from the WLC the Licence Level say "base", and when I go to Managment License Level, and I set the License Level to "wplus" a messages say: Setting wplus as next level failed. Only with the version of Operating system is enough to have the functions of Wplus Licence, although the level of license showing base license, in the monitor page of the WLC.
ThanksThanks leolahoo,
Your indicate that in the version 7 these functions are operative, but because the guide says that from version 6.0.196 they are available?
WPlus License Features Included in Base License
All features included in a Wireless LAN Controller WPlus license are now included in the base license; this change is introduced in release 6.0.196.0. There are no changes to WCS BASE and PLUS licensing.
These WPlus license features are included in the base license:
•Office Extend AP
•Enterprise Mesh
•CAPWAP Data Encryption
The licensing change can affect features on your wireless LAN when you upgrade or downgrade software releases, so you should be aware of these guidelines:
•If you have a WPlus license and you upgrade from 6.0.18x to 6.0.196.0: Your license file contains both Basic and WPlus license features. You won't see any disruption in feature availability and operation.
•If you have a WPlus license and you downgrade from 6.0.196.0 to 6.0.188 or 6.0.182: The license file in 6.0.196.0 contains both Basic and WPlus license features, so you won't see any disruption in feature availability and operation.
•If you have a base license and you downgrade from 6.0.196.0 to 6.0.188 or 6.0.182: When you downgrade, you lose all WPlus features. -
ONS 15454 Back Plane DS1 Cable Question...
Do the DS1 connectors on the back plane of the ONS 15454 mate with screw down AMP Champ connectors or with Bail Lock AMP Champ connectors? The documentation seems to be ambiguous. The part number listed for the connector is a Bail Lock type connector, but the drawings and the last paragraph in section 1.11.2 of the Hardware Installation document suggest it is a Screw Down connector.
If you don't get a suitable response to your post from another forum userm you may wish to review our resources at the online http://www.cisco.com/. You may also contact our product information line at 1-800-553-NETS or a Cisco Systems Engineer at your local Cisco office or reseller. To locate your local Cisco representative, visit http://www.cisco.com/warp/public/687/Directory.shtml
If anyone else in the forum has some experience with this issue, please reply to this thread.
Thank you for posting. -
Test bed : WLC makes slow WLAN speed vs. Autonomous
Hi experts,
User complint very slow download speed (~140kbps) compare to wire around ~50mbps. Those are too different.
So I move out from the production, then did my own test.
I tested on seperated environment, seperated AP(1130)/switch/ WLC(7.0)/PC client with Windows file sharing. Then compare againt STANDALONE AP. All are flat configure without any Auth etc.
Result are, standalone AP is winner = 5MB/sec while WLC based is only 1MB/sec. Then I also try to do LOCAL SWITCHING (H REAP) to diable tunneling that could make some delay. Result is the same, no improvement.
I also find out for cisco support forum. Much many discussions ask us to disable feature such Client exclude, MFP, Aironet IE and tune for a/b/g supported.
What else to tune or aware of ?
Please do me a suggestion. Thank you.
Nipat.pDavid,
Do you mean Static&Dynamic CH? I used default WLC's setting (Dynamic, DCA)?
Anyway, my testbed is using only 1 AP in 2 scenarios WLC-based vs. Autonomous at the same location.
I also asked from the others end user who is using WLC. Windows file share speed is also around 1-2.4MB/sec. So poor!!!
Then, What else for WLC parameter should I take care of? I got a slot to re-test by tomorow. -
WLC 5500 mobility group failover
Hey
I have a Question i am testing mobility group with
Failover for redundend connection between 2
Cisco 5500 Wlc.
On both the controllers i got the mobility working
And both the controllers have the same version
And configuration.
But when i unplug the main controller the access-
Points don't convers to the second one
The just keep on creaming can't find the main controller
Also with this thus the second wlc need to have the same
Interface ip address like managment..??
ThanksWhat do you mean by "convers". An AP will only join one wlc and when that primary wlc is no longer available, should failover to the other/secondary wlc. Mobility is required for an AP to know about all the other APs in that mobility group. And if not configured correct, your AP will only be able to join that wlc.
Thanks,
Scott Fella
Sent from my iPhone
Maybe you are looking for
-
Incoming Text Messages Allocated to Wrong Contact
I recently recieved my Zed10 back from warranty repair for an out of the box malfunctioning headphone port and am now experiencing an issues a thousand times more frustrating. The phone is now having issues when I recieved a text message in which it
-
How do I stop iTunes from trying to connect to store?
Does anyone know please how to stop the "could not connect to iTunes store" error from appearing? I deliberately do not want to connect to the store - my hard drive on this PowerBook is full, and it's now retired from day to day use and is used solel
-
Performance :Query is taking Longtime
Hi, Query on Cube jumps to Query on ODS and Query on ods takes very long time how can we optimize/improve? Rgds, C.V. Message was edited by: C.V. P
-
Hi, I have developed a product wise utility report ,in which activity cost i fetched from S027 table against a process order,plant and activity type. But can anyone let me know from where i can get the quantity against process order,plant and activit
-
How to combine TrivialPageFlowEngine with JAZN XML-based provider ?
With help TrivialPageFlowEngine possible will limit access to pages, and also to set pages for logon. However, JAZN XML-provider provides the same functionality. How to combine these two approaches