WLC 5508 high availability

Hello

Today I have two WLC 5508 (with license for 100 AP each of them), on a single site.

The WLC work availability (active-standby).

However, we have a new scenario, with 02 sites: A and B (attachment).

I would like to know if it is possible to work as follows:

The WLC - A as the main controller of site A. WLC - B as a backup (BDC) of WLC.-a.

The WLC - B that has the PDC site B. WLC - as a backup (BDC) to WLC - B.

For example:

If WLC - a falls, site access Points are managed by B WLC site - B and vice versa.

Is this possible?

How can I configure the new scenario? Don't forget, there is a site-to-site between Site A and Site b.

Another point:

If I add more than 50 APs on Site A. How does the license number?

Should I buy a license for the two WLC?

TKS,

>....

>.. .is it possible?

No. , high availability in terms of controller is supposed to be what is said, the backup controller is not 'full' - stby and cannot play other roles.

M.

Tags: Cisco Wireless

Similar Questions

  • Two WLC 5508 anchor high availability

    Hello.

    It is possible use 2 WLC 5508 EN HOW to ANCHOR in an active scenario?.

    For example, if a WLC down the service, another Dungeon provide service to customers of anchor?

    At the moment we have just a WLC 5508 anchor mode. What do I have to configure high availability of the ANCHOR.

    Thank you very much!!!

    You have redundant WLC as anchor points, but if an anchor fails, the user must reconnect.

    There is a feature on the WLC HA, but it is mainly for foreigners redundancy WLC anchor no redundancy. With guest several anchors overseas WLC balance the load between the two. You will not be able to put a primary or backup.

    Sent by Cisco Support technique iPhone App

  • High availability with two 5508 WLAN controllers?

    Hi all

    We are considerung to implement a new wireless solution based on Cisco WLC 5508 and 1262N Access Points. We intend to buy about 30 access points and have two options: either buy a WLC 5508-50 or, for redundancy to, two controllers 5508-25.

    Is it possible to configure two WLC 5508 as a high availability solution, so that all access points are distributed on the two WLCs and during breaks WLC one another case manages all the APs?

    If we have 30 access points, and one of the two WLC 5508-25 breaks of course that not all access to 30 but only 25 points can be managed by one remaining. Is there some sort of control to choose the access points must be managed and which do not?

    How does such a configuration looks like in general, is the implementation of an installation of two controller quite complex or simple?

    Thank you!

    Michael

    Hi Michael,

    Do not forget that the 5508 works with a system of licensing. The hardware can support up to 500 APs, but it depends on the license that you put in.

    I think 2 5508 with 25 APs license will be more expensive than a 5508 with 50 APs license.

    If you have 2 WLCs, the best is NOT to spread access between the WLCs points. In doing so, you increase the complexity of homelessness (WLCs have to discount customers to each other all the time). If your point was to gain speed, it really doesn't matter as the 5508 can have up to 8 Gbit/s of uplink speed and has the ability of UC to treat 50 APs with no problems at all. So I find it best to have all the access points on 1 WLC, then if something goes wrong, all the APs migrate anyway for the other WLC.

    If you want 50 APs at a 25-degree WLC failover, you can select who will join Yes. The APs have a priority system, so you assign priorities. If the WLC sees it's full capacity but higher priority APs are trying to join, it will kick down-prio APs for the high prio allow to connect.

    WLCs is not exactly "HA." It's just that if you have 2 WLCs work together (as if you had 700 APs and needed to put 2 WLCs) and delivered to customers. Or all APs sat on a WLC and when it breaks down, they join the other available controller.

    The only thing to do is to put each WLC in the same group of mobility so that they know.

  • WLC 5508 joined connected vs status

    Hello

    What is the difference between the status of 'Joint' and 'Connected' AP on the controller of Cisco 5508 wireless in HA configuration?

    I have two WLC 5508 in HA configuration. October 3 the controller switchovered with reason "Active controller failed" (attached file 1). I tried to understand why the controller has failed, but I did not find the reason.

    Now, there are a lot of AP (not all) in the 'connected' State, not 'Supported in status' (attached file 2).

    What is the meaning? and why in the details ' AP join stats ' (attachment 3 and 4) tha AP are well attached status? It's a licensing issue? I can solve this problem with a manual failover to main controller?

    Thank you for the help

    You have a license for 250 AP on your primary controller and the secondary is a SKU or has at least 50 AP license to act like a HA.

    As long as the main unit is available for the secondary unit (active) it will not perform the countdown. 90 days don't apply if the main unit is unavailable for more than 90 days in a row. If the secondary image (active) loses power and the principal is unavailable when it starts again, it will go into maintenance mode.

    Please rate helpful messages... :-)

  • WLC 5508 internal DHCP server issues

    Hello

    I'm hoping to get your comments around the issues of dhcp, I faced with two centrally switched Wireless LAN. I have attempted to explain the installation and the problems below and would be grateful if anyone can suggest a solution for the problems I am facing:

    The configuration is the following:

    -J' have a WLC 5508, which has been configured with 4 SSID, of which 2 are the Central authentication and commissioning.
    -J' have a LWAP connected to the WLC in HREAP mode.
    -WLC is configured as a DHCP server for clients that connect to the SSID "Guest." For the rest, I'm on external dhcp server.
    -Only one scope of comments Interface is configured on the WLC.

    Problems:

    1. as far as I know, to WLC serve internal dhcp server, it is mandatory to have the proxy enabled, but the Clients connecting to 'Internet' SSID are

    Unable to get an external dhcp server ip address, if the proxy dhcp is enabled on the WLC. If I disable the proxy, everything works fine.

    2 DHCP does not release the ip addresses assigned to clients, even after that that they are connected.

    3. If a machine that has previously been connected to "Guest" SSID connects to the 'Internet' SSID, he asks the same ip address, he was charged by the WLC assigned under "Guest", it gets the tag with the Vlan configured on the management interface.

    The controller output *.

    (Cisco Controller) > show sysinfo

    Name of the manufacturer... Cisco Systems Inc..
    Product name... Cisco controller
    Version of the product... 7.0.116.0
    Bootloader Version... 1.0.1
    Retrieving Image Version field... 6.0.182.0
    Firmware version... Console USB 1.3, 1.6 Env FPGA, 1.27
    Build Type....................................... DATA + WPS, LDPE

    (Cisco Controller) > show interface summary

    Name interface Vlan Id IP port address Type Ap Mgr. Gu

    EST
    -------------------------------- ---- -------- --------------- ------- ------ --
    1 301 10.255.255.30 dynamic guest no no
    Management 1 100 172.17.1.30 static yes no

    service-port s/o s/o 192.168.0.1 static no no
    n/a n/a 10.0.0.1 no nonstatic virtual

    (Cisco Controller) > show wlan summary

    Number of wireless LANs... 4

    Profile WIFI WLAN ID name / name of the SSID status Interface
    -------  -------------------------------------  --------  --------------------
    1 active LAN management
    2 active Internet management
    3 active active management management
    4 comments comments enabled

    (Cisco Controller) > show dhcp detailed comments

    Scope: comments

    Enabled.......................................... Yes
    Lease Time....................................... 86400 (1 day)
    Pool Start....................................... 10.255.255.31
    Pool End......................................... 10.255.255.254
    Network.......................................... 10.255.255.0
    Netmask.......................................... 255.255.255.0
    Default routers... 10.255.255.1 0.0.0.0 0.0.0.0
    DNS Domain.......................................
    DNS.............................................. 8.8.8.8 8.8.4.4 0.0.0.0
    NetBIOS name servers... 0.0.0.0 0.0.0.0 0.0.0.0

    (Cisco Controller) > show detailed interface management

    ... Management interface
    MAC address... e8:b7:48:9 b: 84:20
    IP Address....................................... 172.17.1.30
    IP Netmask....................................... 255.255.255.0
    IP Gateway....................................... 172.17.1.1
    State IP NAT outside... People with disabilities
    External IP NAT... 0.0.0.0
    VLAN............................................. 100
    Quarantine-vlan... 0
    Active physical Port... 1
    The primary physical Port... 1
    Port of physical backup... Not configured
    Primary DHCP server... 172.30.50.1
    Secondary DHCP server... Not configured
    Option DHCP 82... People with disabilities
    ACL.............................................. Not configured
    AP Manager....................................... Yes
    Comments interface... NO.
    L2 multicast... Activated

    (Cisco Controller) > show detailed comments from interface

    Interface name... Comments
    MAC address... e8:b7:48:9 b: 84:24
    IP Address....................................... 10.255.255.30
    IP Netmask....................................... 255.255.255.0
    IP Gateway....................................... 10.255.255.1
    State IP NAT outside... People with disabilities
    External IP NAT... 0.0.0.0
    VLAN............................................. 301
    Quarantine-vlan... 0
    Active physical Port... 1
    The primary physical Port... 1
    Port of physical backup... Not configured
    Primary DHCP server... Not configured
    Secondary DHCP server... Not configured
    Option DHCP 82... People with disabilities
    ACL.............................................. Not configured
    AP Manager....................................... NO.
    Comments interface... NO.
    L2 multicast... Activated

    (Cisco Controller) > show dhcp leases

    IP MAC remaining rental period
    00:21: 6a: 9 c: 03:04 10.255.255.46 23 hours, 52 minutes, 42 seconds< lease="" remains="" even="" when="" the="" client="" is="">

    Example of customer connected to the Vlan right with an ip address from the incorrect interface. *************

    (Cisco Controller) > show customer detail 00:21: 6a: 9 c: 03:04
    MAC address of the client... 00:21: 6a: 9 c: 03:04
    User name of the client... N/A
    AP MAC address... a0:cf:5 b: 00:49:c0
    AP Name.......................................... mel
    Status of the client... Associates
    Customer of the NAC OOB State... Access
    Wireless LAN Id... 2<   'internet'="">
    BSSID... a0:cf:5 b: 00:49: this
    Connected to... dry 319
    Channel.......................................... 36
    IP Address....................................... 10.255.255.46< ip="" address="" assigned="" from="" the="" 'guest'="" interface="" or="" dhcp="" scope="" on="" the="">
    Association ID... 1
    Authentication algorithm... Open System
    Reason code... 1
    Status code... 0
    Session timeout... 1800
    Client CCX version... 4
    Version of E2E customer... 1
    QoS Level........................................ Silver
    Beacon priority P 802,1... disabled
    Support WMM... Activated
    Power Save....................................... OFF
    State of mobility... Local
    County of movement mobility... 0
    Complete security policy... Yes
    State Policy Manager... RUN
    Policy Manager rule created... Yes
    ACL name... no
    Status to apply ACL... Not available
    Type of strategy... N/A
    Encryption Cipher... None
    Protection management framework... NO.
    EAP Type......................................... Unknown
    Data HARVEST-H switching... Central
    H - HARVEST authentication... Central
    Management of the interface...
    VLAN............................................. 100< right="">
    Quarantine VLAN... 0
    Access VIRTUAL LAN... 100

    Well it's good news. At least you have to operate.

    Thank you

    Scott Fella

    Sent from my iPhone

  • How to retrieve the RADIUS shared secret key on the WLC 5508

    Hi all

    The wirelss privious admin left our company and did not let the other know the shared secret key on the WLC 5508 Radius.

    The 5508 WLC runs on the 7.0.98.0 code. I can access the viao WLC CLI and GUI. I can also access the Win2003 Radius Server, but the button displays an asterisk for me. I have listed partial RADIUS config of the WLC below. How can I get the RADIUS shared secret key? Thanks in advance.

    (Cisco Controller) > show RADIUS summary

    Vendor Id backward compatibility... People with disabilities
    Call Station Id... lower case
    Dial the Station Id Type... IP address
    Aggressive failover... Activated
    Keywrap.......................................... People with disabilities
    Rescue test:
    Test Mode.................................... Off
    Probe of username... cisco-probe
    Interval (in seconds)... 300
    MAC for authentication Messages... hyphen delimiter
    MAC for Accounting Messages... hyphen delimiter

    Authentication servers

    The State of the Port Address Type server all RFC3576 IPSec - AuthMode idx / phase 1/group/life/Auth/BA
    ---  ----  ----------------  ------  --------  ----  -------  ------------------------------------------------
    1 NM 10.xx.18.48 1645 on 2 off off - no/unknown/group-0/0 None/None

    Accounting servers

    The State of the Port Address Type server all RFC3576 IPSec - AuthMode idx / phase 1/group/life/Auth/BA

    -Other - or ITU (q)
    ---  ----  ----------------  ------  --------  ----  -------  ------------------------------------------------
    1 N 10.xx.18.48 1646 enabled 2 N/A disabled - no/unknown/group-0/0 None/None

    Kind regards

    Robert

    You can retrieve the RADIUS shared secret key as other passwords that are stored on the WLC by using the procedure at the following link:

    https://supportforums.Cisco.com/community/NetPro/wireless-mobility/begin-wireless/blog/2011/11/04/recover-wepadminguest-account-password-from-WLC

    NOTE: WPA keys are not available through these methods.

    Basically, you can enable password in clear text on the wlc with 'config passwd-cleartext enable' and then issue a "view orders of the running-config' - your RADIUS configuration command should now display the shared secret.

    -Pat

  • Authentication Radius ACS with WLC 5508 and AD 2012 5.5 failure

    Hello

    I need help on these errors.

    Here is my configuration: WLC 5508 7.6.130.0-> ACS 5.5.0.46-> AD 2012

    I have (2) errors in ACS 5.5

    12514 EAP - TLS failed SSL/TLS handshake because of unknown CA in the client certificate chain

    22044 result of identity politics is configured for certificate-based authentication methods but based received password

    Already installed the CA cert and cert local in ACS as well as in the client PC.

    Please see screenshots

    OK, in this case:

    1. you will need to properly configure the Windows pleading before that this can work. You need to set the type of authentication and the trusted certification authority. If the certification authority is not available in the list of certificates, you need to import

    2. If you do PEAP then your identity store should be Active Directory and no profile authentication certificate. The certificate authentication profile is used for the basis of certificates (EAP - TLS) authentication.

    Thank you for evaluating useful messages!

  • Remove the secondary controller and tertiary high availability for each access point

    I want to remove secondary and tertiary sector controller of high availability for each access point. I have more than 900 APs associated with a Version of the WLC 8510 8.0.121.0 software. What is the best/better way to remove secondary and tertiary controller?
    Or I can create a model first. We use version 2.2

    Hello

    Easiest way:

    Yes you can do this by using the first Cisco Infrastructure, you can create a Setup AP Lightweight model to specify the name of the PDC and the IP address and specify an empty value (choose the first empty option in the drop-down list) and 0.0.0.0 for the secondary and tertiary sector controllers.  Then you can apply this model to the AP, and she must remove (virgins all) values for these fields.

    Long way:

    Yes there is no clean way to remove it from the CLI. you need to manually remove each on the AP.

    Concerning

    Remember messages useful rates

  • Configuration of high availability.

    Hello

    Please help me to configure high availability for Foglight existing environment, please send me the steps and requirements of pre.

    How many servers can exist in a cluster?

    Capacity how do we need on the primary server and the other servers if there is a failure?

    We currently have 1 unifying and 3 child FMS.

    version: 5.6.10

    Thank you

    Vicky

    Vicky,

    There are 2 very useful field guides that go through the requirements and the Setup process.

    High Availability Guide - http://edocs.quest.com/foglight/5610/doc/wwhelp/wwhimpl/common/html/frameset.htm?context=field&file=HA-field/index.php&single=true

    Federation of field guide-

    http://eDOCS.quest.com/Foglight/5610/doc/wwhelp/wwhimpl/common/HTML/frameset.htm?context=field&file=Federation-field/index.php&single=true

    Note the following points, known issue

    http://eDOCS.quest.com/Foglight/5611/doc/wwhelp/wwhimpl/common/HTML/frameset.htm?context=field&file=HA-field/overview.1.php&single=true

    "A master of the Federation running in mode high availability is not supported. Only children Federated can be run by high availability. »

    Golan

  • High availability of components in the design of vWorkspace tips

    Hi all

    Would ask you some advice regarding the design of vWorkspace components highly available. Suppose that vWorkspace components will be deployed in vSphere or hypervisors managed SCVMM hence HA is in place, if the failure of a host. In this situation, if we still need components redundant (n + 1 VMS) vWorkspace?

    On the other note, I understand that we can add a couple of broker for vWorkspace in vWorkspace Management Console connections and based on KB 99163 it would just work. I'm not sure how the traffic would be when an application is web access? As in, I guess that the connection broker news would be 'defined' at the request of the web call to the broker for connections. Or this is done automatically? Access Web would choose randomly from the broker for connections to go?

    Thanks for any advice in advance

    Kind regards

    Cyril

    Hi Cyril,.

    Big questions. As with any IT architecture in layers, you must plan HA and redundancy at all points of failure required by your environment or level of Service (SLA) agreements. For vWorkspace, the center of his universe is SQL and you must plan accordingly the failure and recovery. In some environments, full backup can meet the requirement of HA. In others, full SQL Cluster, Mirroring, replication, or Always-On configurations may be required. With our broker, we recommend N + 1 deployment in most scenarios HA. When you move peripheral components or enabling, you must evaluate each component and needs its impact of failure as well as its valuation to determine the appropriate AP.

    Load balancing between several brokers is done automatically by logic in the client connectors. In the case of Web access, when you configure the site Web Access in the Management Console, it includes broker list in the Web access configuration xml file. As client connectors, Web Access includes balancing logic that distributes the client load on brokers available automatically.

    If you have any questions about specific components and requirements of HA or architecture, please add them in the discussions.

  • Wireless converged access (new) Mobiliity between WLC 5508

    Hello

    I have 3 WLC 5508 which is upgraded to version 8.x and I can see this feature when searching on the web I find that this new feature is necessary when we have new models of WLC 5760 or 3850 in the network and must contact 5508.

    So my question is in my current scenario, I only 5508

    1. can I activate this function and use this function between 5508 - If Yes, in the configuration, I just create mobility than in the old configuration groups and it should work right or is there additional configuration is required?

    Also in my network current fflexconnect is activated and allow this will affect my flexconnect?

    Please notify.

    Kind regards

    Anjaz

    If you want to, you can migrate to the new mobility without any problem, but must be allowed to all of your WLC at the same time. This will have no impact for your flex-connect communication or configuration and influence the way in which the tunnels between of WLC are under construction. No changes are necessary in this configuration either.

    Please rate helpful messages... :-)

  • SHIFT of Mode on Cisco WLC 5508

    Hello

    I have two WLC 5508 working in ACTIVE / standby. They are connected to my local network by linking to each WLC.

    I would like to implement the LAG Mode to have two WLC link but when I activate LAG Mode (Mode CONTROLLER/general/LAG at the next reboot active), I have this newspaper:

    "Error in the setting of the Mode of LAG. Please see the log file.

    I see nothing in the log file.

    The version of my WLC is 8.0.100.0

    Thank you

    First, you will need to disable HA if you want to enable the LAG.

    http://www.Cisco.com/c/en/us/TD/docs/wireless/controller/8-0/Configuration-Guide/b_cg80/b_cg80_chapter_010100001.html

    A time LAG configured on both controllers, you can then enable HA between two WLCs

    HTH

    Rasika

    Pls note all useful responses *.

  • STROKE (Application Visibilty Control) on WLC 5508 7.5 do not display data

    Dear all

    My WLC has problem...

    the STROKE is not display data (graphic or otherwise)

    I have already set up two Wlan id with the visibility control, but two of them do not display data...

    Here is my setup place WLC 5508...

    My WLC running on OS 7.5

    pack 1.0 protocol version

    NBAR engine 13.0

    AUS 6.0.182.0

    Cisco controller) > see the version of the Protocol-pack stroke

     

    Protocol STROKE Pack name: Protocol Advanced Pack

    Protocol STROKE Pack Version: 1.0

     

    (Cisco Controller) > show stroke engine version

     

    Version of the engine STROKE: 13

     

    (Cisco Controller) > show sysinfo

     

    Name of the manufacturer... Cisco Systems Inc..

    Product name... Cisco controller

    Version of the product... 7.5.102.0

    Bootloader Version... 1.0.1

    Retrieving Image Version field... 6.0.182.0

    Firmware version... Console USB 1.3, 1.6 Env FPGA, 1.27

    even from CLI still do not display data

    (Cisco Controller) >Show stroke statistics upstream applications top

     

    Perspective of the STROKE is 0 for all applications.

    MISTLETOE on attachment configuration capture

    Need your advice is there any configuration that I miss... ??

     

    As long as you go to the STROKE centre should work in Flexconnect. You can check the AP mode under wireless > click on any access point.

    http://www.Cisco.com/c/en/us/support/docs/wireless/5500-Series-Wireless-...

  • IPCCX high availability

    Does anyone know if Cisco will provide redundancy standby high availability of IPCC express?

    Chris

    Search in the next major version of the IPCC Express. Last I heard it was scheduled for release next month some time.

    Jim

  • Deployment of high availability of the IPCC 4.5

    In a future HD architecture implementation, the voice service will provide CallManager 5.0, that will integrate with 4.5 of the IPCC. 4.5 (required with 5.0 CM) IPCC does implement a high availability. How can we ensure that technical support continues to operate if the IPCC goes down? One possibility might be to configure CM such that if the IPCC goes down, all the number of help desk calls are automatically and immediately headed to a group (which includes all extensions help desk). This redirection can be configured in CM? Is there a better option?

    Thanks in advance,

    SB

    This is your best bet. On the road Points for your call center just put the call before busy, no answer and failure to the fighter pilot. Thus, when the IPCC Express Server is down it will sent to your fighter pilot.

    Please evaluate the useful messages.

    adignan - berbee

Maybe you are looking for

  • Time Capsule backup suddenly stopped working

    I used my Air Port Time Capsule since July last year, without a hitch. Then all of a sudden today, he says: 'no back ups for 155 days' (!) and I get this message: "The backup drive is not available. Make sure that the backup disk is connected, or sel

  • delete the chart, then restart chart

    Hello, I would like to know how to clear data in an instant on the graph, after that it works normally, and all need to be in the loop while. like a cardiogram, I defined every 20 seconds, clear graphics and restart. Thanks in advance.

  • Change frame angle

    My cat slept on the keyboard and the screen is now at an angle of 45 degrees to the right.  I tried to push CTRL + arrow keys - no luck.  What should I do?

  • Director of rundell32 windows has stopped working

    Hi guys, I'm having a problem when I try and import clips, Adobe and my Canon camera in movie maker.  I have converted the MPEG, I thought that was the problem.  It still does not work.  Can anyone help?

  • my audio service is not runing

    today when I got here and next to the speaker down in the lower right corner of the computer, I noticed a white red circle with an "X" inside. I clicked on it, thinking it was cut so I could turn it back on... Well he finally take me by something and