FlexConnect
Hello Experts!
Hospital environment
2 WiSM2...
1 WiSM2 maxed out 1000 AP PFR... the other FRP of AP 50% used.
no redundancy
flexconnect will help, as a temporary solution, in case of failure of WiSM2?
Same open question. FlexConnect has its drawbacks and it depends on your infrastructure, if these disadvantages are acceptable or not. I assume that you have already decided to increase the capacity of your infrastructure or maybe even make a redesign?
I'm afraid that as a temporary solution using FlexConnect will give you a lot of work and potential problems. If your current network topology allows you to leave the HA failover to the other WLC, I would suggest going that way. You can do this by allowing the failover of AP on both controllers and AP important to give a higher priority. AP will be launched if a failure occurs below to make room for the highest priority of the AP in this way, you can at least the magnitude, the impact will be if you lose one of the WLC control.
Tags: Cisco Wireless
Similar Questions
-
Cisco FlexConnect 7510 does not start the backup, stuck on "cisco bootloader stage2 loading" image
Cisco FlexConnect 7510 does not start in the backup image. Yesterday I downloaded 8.1.102.0 on our master controller and rebooted when evertyhing was complete, the controller has not restarted in 8.1.102.0 it is stuck on the screen that says "cisco bootloader stage2 loading" I have hard reset the box with the power button and tried a couple of times. I looked at the material to break the boot with the 'ESC' key, but is not nothing to me either, even modified keyboards, comes to the white screen cisco F2 for Setup / F12 for the boot etc menu, but I'm not able to use the keyboard to enter this sequence. I have my controller to slave running 8.0.110.0 now that he's turned and took controll when the captain went to restart. For any help or suggestion would be greatly appreciated. Thanks Matt
"cisco bootloader loading stage2"
This happens when you connect a computer monitor directly to the WLC. If you connected in the WLC by using the console port, you should not see this.
-
WLC5508 problem with dhcp and flexconnect local switching
Hello
I have a new WLC 5508 with firmware 8.0.133.0 (suggested one right now) and I'm trying to set up a WLAN with flexconnect and local switching, but when I try to connect a client it is not getting an IP address.Here's what I did:
-put the AP mode flexconnect
-support vlan in the AP has allowed
-local switching license and only in wlan
-spread the vlan from AP to the local gateway
-put the IP helper on local and pointed the wlc management ip gateway
-set up a scope for the vlan Server dhcp internal WLC
-set up a working group with the vlan-wlan association flexconnectHere is what I checked:
-l'AP obtains an IP address in dhcp in the vlan, and a lease for that appear in the DHCP Server internal to the WLC
-If I put the interface vlan on a switch in DHCP it gets the ip address of the same way
-If I set the static IP address in the wireless client it ping the local gateway and navigate normally
-J' tried the deactivation/activation proxy DHCP in the management connected to the WLAN interface, but nothing happened
-J' tried Central DHCP activation of treatment with no luckIt seems a dhcpdump on the wireless client client ask for an IP address, but get no response, as if it were the DHCP request is be filtered or diverted somehow.
All you other ideas?
DHCP on the controller is not a real dhcp server, see it that way. The management interface is used when defining aid ip and proxy dhcp must be enabled for internal dhcp. In your configuration, dhcp only works for the AP and should not work for any cable customer. You should be able to use the IP helper pointing to your WLC management interface but also make sure that you create an interface on the WLC for the local subnet and assign the interface to a correct address, even if it is not actually using it. Then in the new dynamic interface of this local subnet, you create, make sure that the primary dhcp is the ip address of the controller management. I think it works.
I would really use a true if possible dhcp server or even put a dhcp scope on the interface of L3 on the production site.
-Scott
Please evaluate the useful messages *.
-
For AP in FlexConnect CLI commands
Hello world
Just as the title says, as much as I Googled it I can't seem to find what are the CLI for AP in FlexConnect commands
I know that we can telnet/ssh to the AP in flexConnect, but what are the possible commands that we run on the AP?
Hope someone can help :DThank you!
This can be useful if you do not see it
HTH
Rasika
Pls note all useful responses *.
-
Device insulation only on a specific access mode FlexConnect point?
Hello.
We have a SSID with activated peripheral isolation.
Now we would be able to disable the device insulation on a basis "by"AP"- given that all the points are connected mode FlexConnect.
We are in short 7.6.120.0 OS and have APs 3500 Series (and a few 3600).
Thanks for your response!
F.
Hi Flavio,
Peripheral isolation (I assume you are referring to the P2P blocking) can be done on a per-WLAN basis and each WLAN must be unique for a WLC so that you will not be able to do this with a single WLC even with FlexConnect/AP groups.
The only workaround/hack that I think you could do is to have an another WLC with the same SSID accommodation PSA for this area especially with the disabled blocking P2P but that only affects customers on this access point and break roaming between APs etc.
Ric
-
In addition to CAPWAP, other ports/protocols, what will be able to FlexConnect
Well the title speaks for itself.
In addition to CAPWAP, must other ports/protocols be FlexConnect?To clear things, I ESPECIALLY worry between the communication of the FlexConnect AP at the WLC. In addition to CAPWAP what should I do? I need this list, given that most of our clients have a firewall, and of course, I need allow some protocols and ports on the firewall so that the AP and the WLC can be.
Any know?
As far as I know, I would allow:
1 CAPWAP2 ICMP-to the test of accessibility
on the firewall, to/for the devices.
Entries would be useful! ^_^
Thanks in advance.Everything you need for the AP to join the WLC is UDP 5246 and UDP 5247. Another thing is dependent on what you need to open. If you are planning on telnet or ssh to the AP, then you must also. If you want to use syslog, then open this port also. It would be the same, as if you had any device network behind a FW except that you need both UDP ports.
-Scott
-
customers on flexconnect AP cannot get dhcp address after upgrade wlc
Hi community support.
I have a WLC 2504, with 30 APs 1130 flexconnect mode. The WLC runs the code version 7.0.240.0. In order to register new models of ap, we need upgrade to a recent code.
In the last attempt to upgrade to version 7.4.121.0, the AP has joined the WLC, mappings of vlan in flexconnect have been checked and were very good. However, customers were unable to get an address DHCP (169.254.x.x). The DHCP server is local to each location, is usually a 3750 x that serves as a master switch.
connection via cable, clients received address dhcp. so the dhcp server isn't the problem. Updated for the 7.6.100.0 code, but got the same behavior.
Finally, we decided to downgrade the wlc code 7.0.240.0 once again, and everything started working again, but I need upgrade we buy access to new models of points.
Someone else had a similar problem?
Thank you
Hello
What is the vlan native you are using? If it's the number of vlan 2, then it is known bug CSCui73764
Symptom:
Flex series APs 1130 & 1240 mode, won't see traffic, for example, DHCP, ARP. on some wireless LANs.
Conditions:
(1) flex connect local switching
(2) AP 1240 or 1130
(3) any version before 7.4.121.7
(4) native vlan x, not work y vlan.
(5) failed to get the ip address of the user.Workaround solution:
change the vlan native to a surprisingly high number, so no wlan will never be are mapped to a very high bridge group number.Other Description of the problem:
Telnet on the flex AP. here is an example. VLAN 3 is the vlan native Flex ap, it is correctly mapped to group 1. now WiFi is not working is the one that is mapped to vlan2. below, carefully, the vlan 2 is mapped to fill the 3 group. It is the forum where we hit the bug. Therefore, it can be any combination of wlan-vlan-native vlan.HTH
Rasika
Pls note all useful responses *.
-
Difference between Local and central switching FlexConnect
I'm trying to understand why you would use FlexConnect "Vlan based central switching", when you can just use Local mode? Please can someone explain the difference.
I understand that you have a branch office environment, which required two LANs a local dial-up and wireless, one at the wire centre, but out of this scenario, why would you choose Vlan "based central switching?
I have been using the following article to understand this topic:
http://www.Cisco.com/en/us/docs/solutions/enterprise/mobility/emob73dg/ch7_HREA.html#wp1103053
This is the limitation when you use FlexConnect compared to local mode
Thank you
Scott
Help others by using the rating system and marking answers questions as 'response '.
-
I have configured 10 AIR-AP1852E on a WLC2504 with Version 8.1.131.0 of the software, but I can't configure these ap Flexconnect mode.
Cisco documentation by the available modes are 'Centralized Local', 'Stand-alone', 'Sniffer', 'Cisco FlexConnect', 'Monitor', 'OfficeExtent' and 'Mesh' but in the configuration, I have only "the" local mode and the "Sniffer."
Anyone know why?
For the release notes for Cisco, there is an article on what is not supported for the 1830s and 1850s, and Flex is not supported. Here is the link and the link is an excerpt from what is not supported.
http://www.Cisco.com/c/en/us/TD/docs/wireless/controller/release/notes/c...
Features not supported on access points-Cisco Aironet 1830 and 1850
Cisco's virtual wireless controller
Mesh mode
Flex mode
Monitor mode
Sniffer mode
Workgroup (JWG) Bridge mode
OfficeExtend mode
Improved Local (ELM) mode
WHEAT integrated
Basic spectral analysis
Support for Bluetooth Low Energy (WHEAT) devices on USB
Cisco CleanAir
ClientLink wireless Cisco 3.0
Discovery of rogue location Protocol (RLDP)
Compatible eXtensions (CCX) Cisco specification
802.1 "supplicant" x for the AP on the wired port authentication
Static WEP key for TKIP and CKIP
Dynamic pass control of feeding (DTPC)
Federal Information Processing Standard (FIPS) and common criteria
Detection of Rogue 40 MHz
Native IPv6
Telnet-Scott
Please evaluate the useful messages *.
-
Hello all,.
I'm confused about Flexconnect.
1. when the AP to dissociate themselves from the WLC, AP turn away from standalone mode aotomatically, right?
2. what AP in stand-alone mode, the AP will authenticate the client itself, right?
3. in autonomous mode, authentication information for AP store in a non-volatile memory, is this means no radius server should be used for authentication, PSK can only be used? What a new customer wants to connect a standalone AP? What is the username and password must be used for this new customer? (guess that's the first time that the client would connect to this access point.)
4. in stand-alone mode, we should deploy the local DHCP server for the client, right? How to avoid duplication of the IP? given a unique IP address space for that?
Please explain kindly above question for me, thank you.
1. When AP disassociate to the WLC, the AP will divert to standalone mode aotomatically, right ?
Yes2.when AP in standalone mode , the AP will authenticate the client by itself, right ?
Only if your wireless network is configured with "local authentication".3. In standalone mode, AP store authentication information in nonvolatile memory, is that means no radius server should be used for authentication ,only PSK can be used ?How about a new client want to connect a standalone AP ? What is the username and password should be used for this new client ?(assume this is the first time the client connect to this ap. )
No, 802. 1 X also supported. In stand-alone mode, AP himself acting as authenticator & communicate with the RADIUS server (we assume that the server RADIUS same WLC still available is down). Refer to this guide http://www.cisco.com/c/en/us/td/docs/wireless/controller/8-1/Enterprise-Mobility-8-1-Design-Guide/Enterprise_Mobility_8-1_Deployment_Guide/ch7_HREA.html#57480 design4.In standalone mode ,We should deploy local DHCP server for client , right? How to avoid IP overlapping ? required an unique IP address space for this ?
Generally FlexConnect, route you the traffic locally in the direction of switches. So ideal for the DHCP service locally in the branch. HTH Rasika * Pls note all useful responses *. -
Flexconnect AP stuck in stand-alone Mode
Hi all
I have all my APs configured under flexconnect at the remote site.
I have one controller at the head office.
There are two redundant links of MPLS from the main office to the remote site.
Now the question is, whenever my MPLS does a failover to the redundant link, all my flexconnect that aps disappear from the controller.
I understand that this is due to the clock pulse is expired and the AP in stand-alone mode .
But the APs flexconnect take a terribly long time to spend in connected mode, once flipping over MPLS (which is usually half a minute max).
Infact he takes so long that I have to manually close/reset switch-ports (POE) on which all the access points on the remote site are connected!
There are some adjustments that I'm missing here? or do I have I'll upgrade my firmware? By the way, my controller is currently on S/W ver: 7.4.121.0.
If you have a test controller, you can test it with a different code of the WLC software. Otherwise reach TAC Cisco and see known issues with this code on it.
HTH
Rasika
-
Hi all
We are looking for activate Hello bridge on the 7.6.130 code and I wonder if our current facility (one SSID allows FlexConnect with local switching to avoid that traffic specific to the site that cross the WAN) may need an update. We try to allow mDNS snooping on the WLAN, told us that we can not given that local switching is enabled. I wonder if it would be time to break-up the config to create a profile for local access points and another profile for the FlexConnect Aps with the only difference being the FlexConnect parameters.
Everyone does this type of deployment (Hello Gateway with FlexConnect) and if so, how you manage configuration?
Thank you!
local switching mode, Hello working in the same subnet only (source and destination must be in the same vlan) there is no work around to do this.
http://www.Cisco.com/c/en/us/TD/docs/wireless/technology/Bonjour/Bonjour...
-
Hello. I'm implementing a new FlexConnect mode access point in our branch, but need help. This AP will replace a stand-alone Linksys device, will be the single point of access to this place and don't have to broadcast the new WLAN I've created. So far, I configured the new WLAN and activated FlexConnect on my AP (currently show FlexConnect under mode on the WLC); However, when I activate the WLAN it is broadcast by the AP in the Organization and I only need to distribute via this single point of access. I need to create a group AP or FlexConnect? In addition, this new location is on one VLAN separate that the rest of the AP that does mean that I'll need to create a new interface of the controller?
Thanks for your help.
Yes, a group of AP is the right solution. And Yes, you need to create a new dynamic interface and associate it with your new WLAN. Also, you probably want to do local switching on the new WLAN on the new site. There is a checkbox for local switching on WLAN UI page.
-
I can force an AP Flexconnect in standalone mode?
I found an interesting setup where some remote sites have more 400 + ms latency to the controller (because of the 3 G WWAN connection / 4 G with Corp.), I think causing a few problems since the latency required for Flexconnect is not more then 150 + MS it seems if I block traffic CAPWAP lap to the controller and force everything to be locally switched these problems disappear. So I was wondering if there was a way I can force an AP Flexconnect as a stand-alone, I wasn't able to find anything in any documentation that far.
I have planned an upgrade to 7.4 (from 7.2) to gain the ability to apply an ACL Flexconnect to force all either locally switches at remote sites in the ROUND, but I was just looking for a 'better' stop gap in this ideal design at least.
--
CCNP, CCIP, CHRC, CCNA: Security / Wireless
Blog: http://ccie-or-null.net/No.... If the Wan is the question, yes I see him causing problems with the AP in the worst case scenario. If the amount of the fine when you block udp 5246 and udp 5247, I would say that is the only work autour. I know there is a setting for the FlexConnect where you can activate the link latency:
http://www.Cisco.com/en/us/docs/wireless/controller/7.0/Configuration/Guide/c70lwap.html#wp1344052
Thank you
Scott
Help others by using the rating system and marking answers questions as 'response '.
-
Voice traffic of users connected to the same SSID
Hello
I have a doubt about the following scenario. Let's say I have a controller and a separate SSID for Wireless IP Phone. Users connected to this same ssid sends traffic directly between devices or the traffic passing through the tunnel? Can I activate local switching Reap H in this scenario? I'm new to the scenario of voice so forgive me on all errors.
The controller is on the same principle. VG/Call manager is also on the same principle.
AP in local mode or switched central would pass all traffic to the controller. So the question would be, this mode raises questions with the voice of your network? H - REAP or FlexConnect how it is now called, can pass traffic directly to the switch, the AP is connected to, but it has limits. The limits lie on the FlexConnect design guide.
-Scott
Please evaluate the useful messages *.
Maybe you are looking for
-
No synchronization of calendar push for iPad
If I get the new appointments in the calendar on my desk that they are 'push' synchronized my iPhone via iCloud, but not for my iPad. However, if I get a new appointment on the iPad it then sync to my desktop and "search" also all iCloud unsynchroniz
-
FSX Acceleration shows no game. No display before Accel isn't installed either. 3rd install.
Long story short... malware diddled something up that I had to reinstall a format of fees. Installed XP sp2 CD, spending 5 hours to get the update after the update. Once all updates, including SP3 was installed, installed Forceware latest version of
-
Hi you all, hoping that you will suggest map folding video for alienware Alienware 17
Hi just bought an Alienware 17 with processor i7-6700HQ @2. 60 GHZ, w / GTX Gforce 970 M. I bought an amplifier and was hoping you can suggest to me a video update to the amplifier card costs around $500 or more. Also, I have a 4K that TV is there
-
Windows 7 and built in webcams
I have recently upgraded to windows 7 from vista on a computer laptop sony vaio. I did a full install. the problem which is built in web cam now appears in the Device Manager window in order for me to install the updated drivers. I disabled the web c
-
Y at - it a video editing software that I could use.
I was asked to edit a video together. I have Windows 7 and Office 2010. Is there a simple video editing software in there?