WLC 6 WLAN Override problem
works function WLAN Override in controller WLC6?, we have tried it and it does not work, is a software problem?
Professorguy,
Does having to match profile name to SSID name result in not being able to have multiple authentication methods per SSID? That was supposed to be a feature of 4.0.206.
Thanks,
Similar Messages
-
WLAN override option not available for WLC 4402 - 6.0.196.
Hi All,
Its kind of weird BUT it seems that the option for WLAN override is missing.u.
I could find it on the lower version BUT not on the 6.0.196.
Please help.
Does this mean I could only set it up via the WCS and not the WLC directly.
Thank you.
Warmest Regards,
Azzafir Ariff Patel.Hi Scott,
Thank you so much for the clarification.
Thanks again.
Quoting fella5 :
azzafir,
>
A new message was posted in the Discussion thread "WLAN override
option not available for WLC 4402 - 6.0.196.":
>
https://supportforums.cisco.com/message/3042635#3042635
>
Author : Scott Fella
Email : [email protected]
Profile : https://supportforums.cisco.com/people/fella5
>
Message: -
Deleting WLAN on H-REAP APs with WLAN Override requires AP reboot
Interesting problem here - wonder if anyone can comment on causes etc.
We have a number of H-REAP access points - the WLC 4404 is on a remote site (APs are 1242AGs). These APs are using WLAN override to braodcast only one of the WLANs on the controller.
We added another unencrypted WLAN because we were having problems and this was one thread in getting to the root of them (the WLAN was protected by MAC filtering).
When you apply WLAN override the APs need to be rebooted. And of course when you add another SSID to the WLAN override you need to reboot them again.
What took us by surprise was that on *removing* the unencrypted WLAN at the end of testing the APs also needed to be rebooted.
Nowhere in the documentation did it say this (of course) - but I suppose in retrospect of course it was necessary - just wish that we had figured it out sooner - took a customer's warehouse down for a couple of hours.
So the question is - why do you need to reboot the APs when you *remove* a WLAN that is applied by WLAN override?
Thoughts (apart from the obvious one of "well why didn't you think that it was the reverse of adding a WLAN"). Why should removing one take the whole AP down and disable the other WLANs being broadcast?
ThanksI feel it happens for to commit your changes and to cause the access point to reboot.
Take a look here. It may help
http://www.cisco.com/en/US/docs/wireless/controller/5.0/configuration/guide/c5hreap.html#wp1135991 -
Our wireless network has gone through several changes over the past year. We now only have 3 wlans. I usually created AP templates and enable WLAN override to select which APs get which wlans. WCS does not however seem to be updating with the WLCs. My only options are 3 wlans which no longer exist. I've tried restarting the service and rebooting the server. I've also tried building new templates but no luck. Anyway to get WCS to rebuild this list from the wlcs?
I'm using v 4.1.91.0,
Caveat for 4.0.100.0
CSCse42296-If a template for a given WLAN profile exists in WCS and WLAN is modified out of the band of the controller, the template is not updated to reflect the new settings.
Workaround: Make any desired changes to the WLAN settings in WCS and then apply them to the controllers.
Seems to be my problem though. I am unaware of how to change wlan settings through WCS however.Solved, I actually had to go into my WLC's, delete all WLANs, then go back into WCS and rebuild them under the controller template section.
-
WLC 2504 Connectivity Problems
This is a tricky one.
I installed a 2504 WLC with three AP's. Two SSID’s were configured, one with WPA2/AES-TIKIP and the other with Web Auth.
After installation, customers could connect to WLAN without problem and .
The problem that is occurring is that since the beginning of week, customers PDA's, cell phones and iPad and cannot access Internet with any of the two WLAN but clients who used laptop have no connection problems. Also the DHCP Server is assigning IP's correctly.
This problem also occurs with test SSID I created which is Open Auth. I see associated Cell phones and IPAD to the WLC but none of these answers ping from the WLC.
This is a WLC 2504 with IOS 7.4.100.Hello everyone!
Today I did a test with my Cell phone Samsung Note 2 and I have the same conectivity problem.
I have installed the APK ipconfig from the Play Store for Android in my cell phone and y see that I getting IP Address, Mask and Gateway.
This is what I´ve got from the APK:
IP ADDRESS 192.168.8.181
MASK: 255.255.255.0
GATEWAY: 192.168.8.2
DHCP SERVER: 192.168.8.16
DNS1: 192.168.6.16
DNS2: 192.168.2.16
I have connected my laptop to the WLAN with no issue and I´m getting this:
The IP address of the DHCP Server is 192.168.8.16 and 192.168.6.16 and is a Microsoft Server.
I´ve created a test WLAN with OPEN AUTH but the problem remains.
Here is the OUTPUT you requested:
show wlan 1
WLAN Identifier.................................. 1
Profile Name..................................... APS-PT-01
Network Name (SSID).............................. APS-PT-01
Status........................................... Enabled
MAC Filtering.................................... Disabled
Broadcast SSID................................... Enabled
AAA Policy Override.............................. Disabled
Network Admission Control
Client Profiling Status ....................... Disabled
DHCP ......................................... Disabled
HTTP ......................................... Disabled
Radius-NAC State............................... Disabled
SNMP-NAC State................................. Disabled
Quarantine VLAN................................ 0
Maximum number of Associated Clients............. 0
Maximum number of Clients per AP Radio........... 200
Number of Active Clients......................... 16
Exclusionlist Timeout............................ 60 seconds
Session Timeout.................................. 1800 seconds
User Idle Timeout................................ 300 seconds
User Idle Threshold.............................. 0 Bytes
NAS-identifier................................... APS-Admin-WLC-01
CHD per WLAN..................................... Enabled
Webauth DHCP exclusion........................... Disabled
Interface........................................ management
Multicast Interface.............................. Not Configured
WLAN IPv4 ACL.................................... unconfigured
WLAN IPv6 ACL.................................... unconfigured
mDNS Status...................................... Enabled
mDNS Profile Name................................ default-mdns-profile
DHCP Server...................................... Default
DHCP Address Assignment Required................. Disabled
Static IP client tunneling....................... Disabled
Quality of Service............................... Silver
Per-SSID Rate Limits............................. Upstream Downstream
Average Data Rate................................ 0 0
Average Realtime Data Rate....................... 0 0
Burst Data Rate.................................. 0 0
Burst Realtime Data Rate......................... 0 0
Per-Client Rate Limits........................... Upstream Downstream
Average Data Rate................................ 0 0
Average Realtime Data Rate....................... 0 0
Burst Data Rate.................................. 0 0
Burst Realtime Data Rate......................... 0 0
Scan Defer Priority.............................. 4,5,6
Scan Defer Time.................................. 100 milliseconds
WMM.............................................. Allowed
WMM UAPSD Compliant Client Support............... Disabled
Media Stream Multicast-direct.................... Disabled
CCX - AironetIe Support.......................... Enabled
CCX - Gratuitous ProbeResponse (GPR)............. Disabled
CCX - Diagnostics Channel Capability............. Disabled
Dot11-Phone Mode (7920).......................... Disabled
Wired Protocol................................... None
Passive Client Feature........................... Disabled
Peer-to-Peer Blocking Action..................... Disabled
Radio Policy..................................... All
DTIM period for 802.11a radio.................... 1
DTIM period for 802.11b radio.................... 1
Radius Servers
Authentication................................ Global Servers
Accounting.................................... Global Servers
Interim Update............................. Disabled
Dynamic Interface............................. Disabled
Dynamic Interface Priority.................... wlan
Local EAP Authentication......................... Disabled
Security
802.11 Authentication:........................ Open System
FT Support.................................... Disabled
Static WEP Keys............................... Disabled
802.1X........................................ Disabled
Wi-Fi Protected Access (WPA/WPA2)............. Enabled
WPA (SSN IE)............................... Enabled
TKIP Cipher............................. Enabled
AES Cipher.............................. Enabled
WPA2 (RSN IE).............................. Enabled
TKIP Cipher............................. Enabled
AES Cipher.............................. Enabled
Auth Key Management
802.1x.................................. Disabled
PSK..................................... Enabled
CCKM.................................... Disabled
FT-1X(802.11r).......................... Disabled
FT-PSK(802.11r)......................... Disabled
PMF-1X(802.11w)......................... Disabled
PMF-PSK(802.11w)........................ Disabled
FT Reassociation Timeout................... 20
FT Over-The-DS mode........................ Enabled
GTK Randomization.......................... Disabled
SKC Cache Support.......................... Disabled
CCKM TSF Tolerance......................... 1000
WAPI.......................................... Disabled
Wi-Fi Direct policy configured................ Disabled
EAP-Passthrough............................... Disabled
CKIP ......................................... Disabled
Web Based Authentication...................... Disabled
Web-Passthrough............................... Disabled
Conditional Web Redirect...................... Disabled
Splash-Page Web Redirect...................... Disabled
Auto Anchor................................... Disabled
FlexConnect Local Switching................... Disabled
flexconnect Central Dhcp Flag................. Disabled
flexconnect nat-pat Flag...................... Disabled
flexconnect Dns Override Flag................. Disabled
FlexConnect Vlan based Central Switching ..... Disabled
FlexConnect Local Authentication.............. Disabled
FlexConnect Learn IP Address.................. Enabled
Client MFP.................................... Optional
PMF........................................... Disabled
PMF Association Comeback Time................. 1
PMF SA Query RetryTimeout..................... 200
Tkip MIC Countermeasure Hold-down Timer....... 60
AVC Visibilty.................................... Disabled
AVC Profile Name................................. None
Flow Monitor Name................................ None
Call Snooping.................................... Disabled
Roamed Call Re-Anchor Policy..................... Disabled
SIP CAC Fail Send-486-Busy Policy................ Enabled
SIP CAC Fail Send Dis-Association Policy......... Disabled
KTS based CAC Policy............................. Disabled
Assisted Roaming Prediction Optimization......... Disabled
802.11k Neighbor List............................ Disabled
802.11k Neighbor List Dual Band.................. Disabled
Band Select...................................... Disabled
Load Balancing................................... Disabled
Multicast Buffer................................. Disabled
Mobility Anchor List
WLAN ID IP Address Status
802.11u........................................ Disabled
MSAP Services.................................. Disabled
(Cisco Controller) >
(Cisco Controller) >
(Cisco Controller) >show w?
wgb wlan wps
(Cisco Controller) >show wlan 2
WLAN Identifier.................................. 2
Profile Name..................................... APS-Visitas-PT
Network Name (SSID).............................. APS-Visitas-PT
Status........................................... Enabled
MAC Filtering.................................... Disabled
Broadcast SSID................................... Enabled
AAA Policy Override.............................. Disabled
Network Admission Control
Client Profiling Status ....................... Disabled
DHCP ......................................... Disabled
HTTP ......................................... Disabled
Radius-NAC State............................... Disabled
SNMP-NAC State................................. Disabled
Quarantine VLAN................................ 0
Maximum number of Associated Clients............. 0
Maximum number of Clients per AP Radio........... 200
Number of Active Clients......................... 1
Exclusionlist Timeout............................ 60 seconds
Session Timeout.................................. 1800 seconds
User Idle Timeout................................ 300 seconds
User Idle Threshold.............................. 0 Bytes
NAS-identifier................................... APS-Admin-WLC-01
CHD per WLAN..................................... Enabled
Webauth DHCP exclusion........................... Disabled
Interface........................................ management
Multicast Interface.............................. Not Configured
WLAN IPv4 ACL.................................... unconfigured
WLAN IPv6 ACL.................................... unconfigured
mDNS Status...................................... Enabled
mDNS Profile Name................................ default-mdns-profile
DHCP Server...................................... Default
DHCP Address Assignment Required................. Disabled
Static IP client tunneling....................... Disabled
Quality of Service............................... Silver
Per-SSID Rate Limits............................. Upstream Downstream
Average Data Rate................................ 0 0
Average Realtime Data Rate....................... 0 0
Burst Data Rate.................................. 0 0
Burst Realtime Data Rate......................... 0 0
Per-Client Rate Limits........................... Upstream Downstream
Average Data Rate................................ 0 0
Average Realtime Data Rate....................... 0 0
Burst Data Rate.................................. 0 0
Burst Realtime Data Rate......................... 0 0
Scan Defer Priority.............................. 4,5,6
Scan Defer Time.................................. 100 milliseconds
WMM.............................................. Allowed
WMM UAPSD Compliant Client Support............... Disabled
Media Stream Multicast-direct.................... Disabled
CCX - AironetIe Support.......................... Enabled
CCX - Gratuitous ProbeResponse (GPR)............. Disabled
CCX - Diagnostics Channel Capability............. Disabled
Dot11-Phone Mode (7920).......................... Disabled
Wired Protocol................................... None
Passive Client Feature........................... Disabled
Peer-to-Peer Blocking Action..................... Disabled
Radio Policy..................................... All
DTIM period for 802.11a radio.................... 1
DTIM period for 802.11b radio.................... 1
Radius Servers
Authentication................................ Global Servers
Accounting.................................... Global Servers
Interim Update............................. Disabled
Dynamic Interface............................. Disabled
Dynamic Interface Priority.................... wlan
Local EAP Authentication......................... Disabled
Security
802.11 Authentication:........................ Open System
FT Support.................................... Disabled
Static WEP Keys............................... Disabled
802.1X........................................ Disabled
Wi-Fi Protected Access (WPA/WPA2)............. Disabled
WAPI.......................................... Disabled
Wi-Fi Direct policy configured................ Disabled
EAP-Passthrough............................... Disabled
CKIP ......................................... Disabled
Web Based Authentication...................... Enabled
IPv4 ACL........................................ Unconfigured
IPv6 ACL........................................ Unconfigured
Web-Auth Flex ACL............................... Unconfigured
Web Authentication server precedence:
1............................................... local
2............................................... radius
3............................................... ldap
Web-Passthrough............................... Disabled
Conditional Web Redirect...................... Disabled
Splash-Page Web Redirect...................... Disabled
Auto Anchor................................... Disabled
FlexConnect Local Switching................... Disabled
flexconnect Central Dhcp Flag................. Disabled
flexconnect nat-pat Flag...................... Disabled
flexconnect Dns Override Flag................. Disabled
FlexConnect Vlan based Central Switching ..... Disabled
FlexConnect Local Authentication.............. Disabled
FlexConnect Learn IP Address.................. Enabled
Client MFP.................................... Optional but inactive (WPA2 not configured)
PMF........................................... Disabled
PMF Association Comeback Time................. 1
PMF SA Query RetryTimeout..................... 200
Tkip MIC Countermeasure Hold-down Timer....... 60
AVC Visibilty.................................... Disabled
AVC Profile Name................................. None
Flow Monitor Name................................ None
Call Snooping.................................... Disabled
Roamed Call Re-Anchor Policy..................... Disabled
SIP CAC Fail Send-486-Busy Policy................ Disabled
SIP CAC Fail Send Dis-Association Policy......... Disabled
KTS based CAC Policy............................. Disabled
Assisted Roaming Prediction Optimization......... Disabled
802.11k Neighbor List............................ Disabled
802.11k Neighbor List Dual Band.................. Disabled
Band Select...................................... Disabled
Load Balancing................................... Disabled
Multicast Buffer................................. Disabled
Mobility Anchor List
WLAN ID IP Address Status
802.11u........................................ Disabled
MSAP Services.................................. Disabled
(Cisco Controller) >
(Cisco Controller) >show wlan 3
WLAN Identifier.................................. 3
Profile Name..................................... Prueba
Network Name (SSID).............................. Prueba
Status........................................... Enabled
MAC Filtering.................................... Disabled
Broadcast SSID................................... Enabled
AAA Policy Override.............................. Disabled
Network Admission Control
Client Profiling Status ....................... Disabled
DHCP ......................................... Disabled
HTTP ......................................... Disabled
Radius-NAC State............................... Disabled
SNMP-NAC State................................. Disabled
Quarantine VLAN................................ 0
Maximum number of Associated Clients............. 0
Maximum number of Clients per AP Radio........... 200
Number of Active Clients......................... 0
Exclusionlist Timeout............................ 60 seconds
Session Timeout.................................. 1800 seconds
User Idle Timeout................................ 300 seconds
User Idle Threshold.............................. 0 Bytes
NAS-identifier................................... APS-Admin-WLC-01
CHD per WLAN..................................... Enabled
Webauth DHCP exclusion........................... Disabled
Interface........................................ management
Multicast Interface.............................. Not Configured
WLAN IPv4 ACL.................................... unconfigured
WLAN IPv6 ACL.................................... unconfigured
mDNS Status...................................... Enabled
mDNS Profile Name................................ default-mdns-profile
DHCP Server...................................... Default
DHCP Address Assignment Required................. Disabled
Static IP client tunneling....................... Disabled
Quality of Service............................... Silver
Per-SSID Rate Limits............................. Upstream Downstream
Average Data Rate................................ 0 0
Average Realtime Data Rate....................... 0 0
Burst Data Rate.................................. 0 0
Burst Realtime Data Rate......................... 0 0
Per-Client Rate Limits........................... Upstream Downstream
Average Data Rate................................ 0 0
Average Realtime Data Rate....................... 0 0
Burst Data Rate.................................. 0 0
Burst Realtime Data Rate......................... 0 0
Scan Defer Priority.............................. 4,5,6
Scan Defer Time.................................. 100 milliseconds
WMM.............................................. Allowed
WMM UAPSD Compliant Client Support............... Enabled
Media Stream Multicast-direct.................... Disabled
CCX - AironetIe Support.......................... Disabled
CCX - Gratuitous ProbeResponse (GPR)............. Disabled
CCX - Diagnostics Channel Capability............. Disabled
Dot11-Phone Mode (7920).......................... Disabled
Wired Protocol................................... None
Passive Client Feature........................... Disabled
Peer-to-Peer Blocking Action..................... Disabled
Radio Policy..................................... All
DTIM period for 802.11a radio.................... 1
DTIM period for 802.11b radio.................... 1
Radius Servers
Authentication................................ Global Servers
Accounting.................................... Global Servers
Interim Update............................. Disabled
Dynamic Interface............................. Disabled
Dynamic Interface Priority.................... wlan
Local EAP Authentication......................... Disabled
Security
802.11 Authentication:........................ Open System
FT Support.................................... Enabled
Static WEP Keys............................... Disabled
802.1X........................................ Disabled
Wi-Fi Protected Access (WPA/WPA2)............. Disabled
WAPI.......................................... Disabled
Wi-Fi Direct policy configured................ Disabled
EAP-Passthrough............................... Disabled
CKIP ......................................... Disabled
Web Based Authentication...................... Disabled
Web-Passthrough............................... Disabled
Conditional Web Redirect...................... Disabled
Splash-Page Web Redirect...................... Disabled
Auto Anchor................................... Disabled
FlexConnect Local Switching................... Disabled
flexconnect Central Dhcp Flag................. Disabled
flexconnect nat-pat Flag...................... Disabled
flexconnect Dns Override Flag................. Disabled
FlexConnect Vlan based Central Switching ..... Disabled
FlexConnect Local Authentication.............. Disabled
FlexConnect Learn IP Address.................. Enabled
Client MFP.................................... Disabled
PMF........................................... Disabled
PMF Association Comeback Time................. 1
PMF SA Query RetryTimeout..................... 200
Tkip MIC Countermeasure Hold-down Timer....... 60
AVC Visibilty.................................... Disabled
AVC Profile Name................................. None
Flow Monitor Name................................ None
Call Snooping.................................... Disabled
Roamed Call Re-Anchor Policy..................... Disabled
SIP CAC Fail Send-486-Busy Policy................ Disabled
SIP CAC Fail Send Dis-Association Policy......... Disabled
KTS based CAC Policy............................. Disabled
Assisted Roaming Prediction Optimization......... Disabled
802.11k Neighbor List............................ Disabled
802.11k Neighbor List Dual Band.................. Disabled
Band Select...................................... Disabled
Load Balancing................................... Disabled
Multicast Buffer................................. Disabled
Mobility Anchor List
WLAN ID IP Address Status
802.11u........................................ Disabled
MSAP Services.................................. Disabled -
WCS and WLC WLAN Config not fully in sync
Hi,
We're facing the issue WCS and WLC WLAN Config is not fully in sync. WLC showing server 1 is IP:10.160.22.151, Port:1812 but WCS server showing none even after click on “Audit” button. Any idea how to resolve this issue? Is this causing any wireless problem? Attached is screen captured. Thanks for your help.You mentioned "audit". Have you done a WCS audit so the WLC and WCS are in SYNC?
If you make a change on the WLC you will not see it in WCS UNLESS they are SYNC. You will see the term "mismatch".
"Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin
"I'm in a serious relationship with my Wi-Fi. You could say we have a connection." -
Hello,
I have a WCS with version 4.0.97.0 and two controllers with version 4.0.217.0. and two models APs: AIR-LAP1242AG-E-K9 and AIR_LAP1131AG-E-K9.
The problem is that I am unable to configure the templates WCS WLAN Override.
I can set the controllers but when I try to sync through the WCS => Controller Commands => Configuration Commands => Refresh Config from Controller, it does not work fine and it deletes or change the WLAN Override.
What can I do? An upgrade?Hi,
updating maybe solve your issue but when you upgrade to a version beyond 5.x "WLAN Override" is no longer supported, I think.
You have to use "AP-Groups" to override to default setting.
This works perfect for me (Using WCS 5.2.130.0)
regards Dirk -
Dear all, I have deployed WiSM to my customer place where there are 9 floors in the building & has got 270 Aps throuout the building. Now customer is asking me to broadcast the non-broadcasted SSID to a particular floor. Any body has any clue ? I have tried with WLAN override but it does not work. I hope u have got it, actually client ssid is not broacasted througout the building now customer is asking this ssid to be broadcasted to specific area.
now either i hv to enable this ssid for broadcast on controllers & on each Aps I have to disable this ssid except Aps where I want this ssid to be broadcasted. Only 5 Ap are there on which this ssid should be broadcasted.If I use wlan override feature then I have to go to 265 AP & disbale that ssid for not broadcasting which very time consuming job & not scalable also. Do u know any other way to achieve this.
Thanks
NKHi NK,
The most popular way to mitigate the problem of having to access each AP individually (when using WLAN Override) is to use WCS Templates for common requirement AP's. This way the WLAN Override function can be applied at the Template level and then pushed out to the various groups.
http://www.cisco.com/en/US/docs/wireless/wcs/4.0/configuration/guide/wcstemp.html#wp1072198
Hope this helps!
Rob -
WLAN override ::: how to use it smart?
All, I have an existing WLAN with more than 100APs. I now want to add one guest-WLAN SSID to four APs.
Now, as I understand the procedure I would need to do the following:
1. define the new SSID globally and enabled it
2. go manually to all the remaining 96 APs and use WLAN override to diable the new guest network where it should not be.
Is there any other way which could save me from modifying 96 APs by hand?If you have WCS and are using LWAPP you can just make a template for WLAN override and apply it to the APs you wish to modify.
I'm not sure if you can use a template without WCS, though- I haven't tried. -
N95 WLAN Connection problems - Orange Livebox (UK)
I am trying to get the N95 to connect to the internet wirelessly through Orange Livebox (UK). I have run the WLAN wizard and the phone has identified it. I have input the WEP key and thats worked fine.......except everytime I try to connect to the net via this method I get a connection error. Has anybody else had WLAN connection problems? Can anybody help?
hi,
did you press "1" button at the back of the Livebox before pairing ?
what kind of error message do you get on the N95 ?
does it fail the same way when you go through the homescreen "WiFi scanning / Start Web Browsing" or through Tools / WLAN Wizard ?
Cheers, -
AP group vs WLAN override interface priority
Hi,
SW version 4.2.207.0
Which interface(VLAN ID) of SSID has priority while AP is configured with WLAN override?
One configured in AP group or one configured in WLAN SSID.
Example:
LAP1 is in AP group with SSID1 to interface VLAN2 mapping
WLAN SSID1 has mapping to interface VLAN3
LAP1 has WLAN override enable for SSID1.
Clients connected to LAP1 will be in VLAN2 or VLAN3?
Thanks for clarifying.clients will be connecting to VLAN3. WLAN overrides what WLAN needs to be enabled/broadcasted on specific AP while AP group overrides WLAN to VLAN mappings.
http://www.cisco.com/en/US/docs/wireless/controller/4.2/configuration/guide/c42wlan.html#wp1127323
Configuring WLAN Override
By default, access points transmit all defined WLANs on the controller. However, you can use the WLAN override option to select which WLANs are transmitted and which are not on a per access point basis. For example, you can use WLAN override to control where in the network the guest WLAN is transmitted, or you can use it to disable a specific WLAN in a certain area of the network.
Configuring Access Point Groups
In a typical deployment, all users on a WLAN are mapped to a single interface on the controller. Therefore, all users associated with that WLAN are on the same subnet or VLAN. However, you can override this default WLAN setting to distribute the load among several interfaces or to group users based on specific criteria such as individual departments (for example, marketing) by creating access point groups (formerly known as site-specific VLANs). Additionally, these access point groups can be configured in separate VLANs to simplify network administration
http://www.cisco.com/en/US/tech/tk722/tk809/technologies_configuration_example09186a008073c723.shtml
AP Group VLANs with Wireless LAN Controllers Configuration Example -
WLC 5508 - wlan stability problems
Hi.
I have a WLC 5508 with half a dozen LAPs (AIR-CAP3502I-E-K9).
They have been working but sometimes clients detect conectivity problems with the wlan.
Here is the message log I can obtain from the controller:
Nov 09 12:16:31.886: [ERROR] pemTimers.c 330: invalid interface name (john_doe) in mscb!!!*dot1xMsgTask: Nov 09 12:16:10.286: %DOT1X-3-MAX_EAPOL_KEY_RETRANS: 1x_ptsm.c:444 Max EAPOL-key M1 retransmissions exceeded for client 00:26:c6:12:e8:32Previous message occurred 7 times.Nov 09 11:55:24.682: [ERROR] pemTimers.c 330: invalid interface name (john_doe) in mscb!!!*apfReceiveTask: Nov 09 11:51:30.788: %RRM-3-RRM_LOGMSG: rrmChanUtils.c:290 RRM LOG: Airewave Director: Could not find valid channel lists for 802.11bg *spamApTask2: Nov 09 11:51:20.144: %DTLS-3-HANDSHAKE_FAILURE: openssl_dtls.c:631 Failed to complete DTLS handshake with peer 10.23.1.118*dot1xMsgTask: Nov 09 11:50:44.878: %DOT1X-3-MAX_EAPOL_KEY_RETRANS: 1x_ptsm.c:444 Max EAPOL-key M1 retransmissions exceeded for client e0:ca:94:93:be:67*apfReceiveTask: Nov 09 11:50:40.672: %RRM-3-RRM_LOGMSG: rrmChanUtils.c:290 RRM LOG: Airewave Director: Could not find valid channel lists for 802.11bg *apfReceiveTask: Nov 09 11:50:38.625: %RRM-3-RRM_LOGMSG: rrmChanUtils.c:290 RRM LOG: Airewave Director: Could not find valid channel lists for 802.11bg *apfReceiveTask: Nov 09 11:50:35.531: %RRM-3-RRM_LOGMSG: rrmChanUtils.c:290 RRM LOG: Airewave Director: Could not find valid channel lists for 802.11bg *apfReceiveTask: Nov 09 11:50:31.068: %RRM-3-RRM_LOGMSG: rrmChanUtils.c:290 RRM LOG: Airewave Director: Could not find valid channel lists for 802.11bg *apfReceiveTask: Nov 09 11:50:29.257: %RRM-3-RRM_LOGMSG: rrmChanUtils.c:290 RRM LOG: Airewave Director: Could not find valid channel lists for 802.11bg *apfReceiveTask: Nov 09 11:50:28.707: %RRM-3-RRM_LOGMSG: rrmChanUtils.c:290 RRM LOG: Airewave Director: Could not find valid channel lists for 802.11bg *apfReceiveTask: Nov 09 11:50:24.065: %RRM-3-RRM_LOGMSG: rrmChanUtils.c:290 RRM LOG: Airewave Director: Could not find valid channel lists for 802.11bg
Can somebody help me to understand these messages?
1)
*apfReceiveTask: Nov 09 11:50:24.065: %RRM-3-RRM_LOGMSG: rrmChanUtils.c:290 RRM LOG: Airewave Director: Could not find valid channel lists for 802.11bg
2)
Nov 09 11:55:24.682: [ERROR] pemTimers.c 330: invalid interface name (john_doe) in mscb!!!
3)
*dot1xMsgTask: Nov 09 11:50:44.878: %DOT1X-3-MAX_EAPOL_KEY_RETRANS: 1x_ptsm.c:444 Max EAPOL-key M1 retransmissions exceeded for client e0:ca:94:93:be:67
Thanks1)
*apfReceiveTask: Nov 09 11:50:24.065: %RRM-3-RRM_LOGMSG: rrmChanUtils.c:290 RRM LOG: Airewave Director: Could not find valid channel lists for 802.11bg
//APs are rebooting. don't panic, check the up time of AP. This message seen when AP rebooted/freshly joined and waiting for wlc to assign channel.
2)
Nov 09 11:55:24.682: [ERROR] pemTimers.c 330: invalid interface name (john_doe) in mscb!!!
//It is cosmetic and can be ignored.
3)
*dot1xMsgTask: Nov 09 12:16:10.286: %DOT1X-3-MAX_EAPOL_KEY_RETRANS: 1x_ptsm.c:444 Max EAPOL-key M1 retransmissions exceeded for client 00:26:c6:12:e8:32
//Keys M1-M5 used for wireless auth, here client having struggle completing the auth process.
get output of, WLC>debug client -
Hi,
I recently got a 5508 controller. I use 1 SSID for the employees on the main site (using certificate authentication). On the Remote sites I want to use the same SSID with different DHCP Servers (AP are configuring with HREAP mode). So I tried to configure different WLAN ID using the same SSID (I override DHCP Server IP Address). When I try to activate SSID, I got the following error : "WLAN with duplicate SSID's and L2 security policy found". I tryed to use "AP Group" and put the different WLAN ID in different AP Group but it dosen't work.
Anyone as an idea?
Thanks in advance
Regards,
EricHi,
This is the expected behaviour!! and there is no way to overcome issue as the error thats popping up is self explanatory!! if you are using Internal WEB AUTH page then the HREAP local switching supports the internal WEB AUTH, and another thing is.. a single WLAN will do the Job!! You just need to configure Local switching on the WLAN so that, the clients in the central site use ( AP in local mode will use central side DHCP) and the AP in the HREAP will use the mapped VLAN to grab the IP!!
here is the link to do the same!!
http://www.cisco.com/en/US/products/ps6087/products_tech_note09186a0080736123.shtml#webauth
http://www.cisco.com/en/US/tech/tk722/tk809/technologies_configuration_example09186a00807cc3b8.shtml
Lemme know if htis answered ur question and please dont forget to rate the usefull posts!!
Regards
Surendra -
Well it's me again, having inheritance problems..
I'm trying to override from one of the flexlib classes
(ColoredScheduleEntry) and I notice that it's got two methods...
override public function copy() : IScheduleEntry
and
override public function copyFrom(entry : IScheduleEntry) :
void
Now, I'm extending this class, and implementing
IScheduleEntry but when I try to override the above functions, I
get...
"Method marked override must override another method" for
both methods...which is kinda obvious, but there is a method that
it's overriding from, and it's public too...
Any ideas?
ThanksHi mac,
did you mean this
class
ColoredScheduleEntry?
The documentation and the code didn´t note any function
copy or copyfrom. Are sure you that this is the right class ?
kcell -
WLC (Foreign-Anchor), problem with the external web auth -- ISE
hello guys
I am currently designing a platform for a guest network, which must be isolated from the local network, the following equipment:
ISE 1.2 (Cisco SNS- 3415-K9)
WLC 7.0.230.0 (Cisco controller 5508)---> wlc Foreign
WLC 7.0.230.0 (Cisco controller 5508)---> wlc Anchor.
The EoIP tunnel between wlc is performed successfully.
The wireless client gets IP address of the anchor wlc (DHCP server).
Test 1:
I configure the WLC ANCHOR with local web authentication (internal), the wireless client is authenticated by WLC and navigate successfully.
Test 2:
Configure the WLC to anchor external web authentication (ISE). configure a user in ISE guest portal.
The wireless client gets IP address of the anchor wlc (DHCP server), attempting to navigate not display the guest portal.
Debug a wireless client trying to connect to the guest network is attached.Thanks for your help Scott...
Now I presents another problem with the guest portal page. The wireless client obtains IP address and managed to reach the guest portal page, then enter the username and password page tells me it was successful. When I try to browse again brings me to the portal visitor page and asks me to enter user name and password.
test 1:
the username and password created for away was verified.
Scoot will have some implementation details with the same scenario I am developing? I think I'm missing some details in the ISE does not allow me to navigate the entrance for visitors to be successful.
Maybe you are looking for
-
IDOC from One System to another
Hi All, I am sending idocs from one system to another For Eg System A to System B . Now suppose 2 idocs are generated 1 and 2. Now how to determine , for idoc 1 in system A, what is the corresponding Inbound Idoc in System B because the data which is
-
Help with choosing a MacBook Air Model for a college student.
I am a college student and I am debating between the two 13 inch Mac AirBook models that Apple offers. I was wondering if someone can give me a breakdown of the differences and also, which model would be a better fit for a college student?
-
Broadcast To Multiple Locations?
Trying to output to multiple servers - tried launching multiple window of FMLE - but get an error message with the second broadcast attempt. Any ideas?
-
Extending the range of my Extreme n Network with an Express n Airport
Hello, I've been reading some of the questions but couldn't find my specific situation, so here I am posting again. Sorry for the double-post. I currently have an AEBS 802.11n acting as my main base station and connected to our DSL modem. In a differ
-
How to display, translate or remove html characters
Hi, I need the ability to translate or remove the characters below to display properly in oracle apex text area. Anyone know how to do this? Apex 4 <p>1985 World Champ. U.19 - Gold, <span style="color: rgb(255, 0, 255);"><strong>1986 World Champ. - G