WLC 5508 high availability
Hello
Today I have two WLC 5508 (with license for 100 AP each of them), on a single site.
The WLC work availability (active-standby).
However, we have a new scenario, with 02 sites: A and B (attachment).
I would like to know if it is possible to work as follows:
The WLC - A as the main controller of site A. WLC - B as a backup (BDC) of WLC.-a.
The WLC - B that has the PDC site B. WLC - as a backup (BDC) to WLC - B.
For example:
If WLC - a falls, site access Points are managed by B WLC site - B and vice versa.
Is this possible?
How can I configure the new scenario? Don't forget, there is a site-to-site between Site A and Site b.
Another point:
If I add more than 50 APs on Site A. How does the license number?
Should I buy a license for the two WLC?
TKS,
>....
>.. .is it possible?
No. , high availability in terms of controller is supposed to be what is said, the backup controller is not 'full' - stby and cannot play other roles.
M.
Tags: Cisco Wireless
Similar Questions
-
Two WLC 5508 anchor high availability
Hello.
It is possible use 2 WLC 5508 EN HOW to ANCHOR in an active scenario?.
For example, if a WLC down the service, another Dungeon provide service to customers of anchor?
At the moment we have just a WLC 5508 anchor mode. What do I have to configure high availability of the ANCHOR.
Thank you very much!!!
You have redundant WLC as anchor points, but if an anchor fails, the user must reconnect.
There is a feature on the WLC HA, but it is mainly for foreigners redundancy WLC anchor no redundancy. With guest several anchors overseas WLC balance the load between the two. You will not be able to put a primary or backup.
Sent by Cisco Support technique iPhone App
-
High availability with two 5508 WLAN controllers?
Hi all
We are considerung to implement a new wireless solution based on Cisco WLC 5508 and 1262N Access Points. We intend to buy about 30 access points and have two options: either buy a WLC 5508-50 or, for redundancy to, two controllers 5508-25.
Is it possible to configure two WLC 5508 as a high availability solution, so that all access points are distributed on the two WLCs and during breaks WLC one another case manages all the APs?
If we have 30 access points, and one of the two WLC 5508-25 breaks of course that not all access to 30 but only 25 points can be managed by one remaining. Is there some sort of control to choose the access points must be managed and which do not?
How does such a configuration looks like in general, is the implementation of an installation of two controller quite complex or simple?
Thank you!
Michael
Hi Michael,
Do not forget that the 5508 works with a system of licensing. The hardware can support up to 500 APs, but it depends on the license that you put in.
I think 2 5508 with 25 APs license will be more expensive than a 5508 with 50 APs license.
If you have 2 WLCs, the best is NOT to spread access between the WLCs points. In doing so, you increase the complexity of homelessness (WLCs have to discount customers to each other all the time). If your point was to gain speed, it really doesn't matter as the 5508 can have up to 8 Gbit/s of uplink speed and has the ability of UC to treat 50 APs with no problems at all. So I find it best to have all the access points on 1 WLC, then if something goes wrong, all the APs migrate anyway for the other WLC.
If you want 50 APs at a 25-degree WLC failover, you can select who will join Yes. The APs have a priority system, so you assign priorities. If the WLC sees it's full capacity but higher priority APs are trying to join, it will kick down-prio APs for the high prio allow to connect.
WLCs is not exactly "HA." It's just that if you have 2 WLCs work together (as if you had 700 APs and needed to put 2 WLCs) and delivered to customers. Or all APs sat on a WLC and when it breaks down, they join the other available controller.
The only thing to do is to put each WLC in the same group of mobility so that they know.
-
WLC 5508 joined connected vs status
Hello
What is the difference between the status of 'Joint' and 'Connected' AP on the controller of Cisco 5508 wireless in HA configuration?
I have two WLC 5508 in HA configuration. October 3 the controller switchovered with reason "Active controller failed" (attached file 1). I tried to understand why the controller has failed, but I did not find the reason.
Now, there are a lot of AP (not all) in the 'connected' State, not 'Supported in status' (attached file 2).
What is the meaning? and why in the details ' AP join stats ' (attachment 3 and 4) tha AP are well attached status? It's a licensing issue? I can solve this problem with a manual failover to main controller?
Thank you for the help
You have a license for 250 AP on your primary controller and the secondary is a SKU or has at least 50 AP license to act like a HA.
As long as the main unit is available for the secondary unit (active) it will not perform the countdown. 90 days don't apply if the main unit is unavailable for more than 90 days in a row. If the secondary image (active) loses power and the principal is unavailable when it starts again, it will go into maintenance mode.
Please rate helpful messages... :-)
-
WLC 5508 internal DHCP server issues
Hello
I'm hoping to get your comments around the issues of dhcp, I faced with two centrally switched Wireless LAN. I have attempted to explain the installation and the problems below and would be grateful if anyone can suggest a solution for the problems I am facing:
The configuration is the following:
-J' have a WLC 5508, which has been configured with 4 SSID, of which 2 are the Central authentication and commissioning.
-J' have a LWAP connected to the WLC in HREAP mode.
-WLC is configured as a DHCP server for clients that connect to the SSID "Guest." For the rest, I'm on external dhcp server.
-Only one scope of comments Interface is configured on the WLC.Problems:
1. as far as I know, to WLC serve internal dhcp server, it is mandatory to have the proxy enabled, but the Clients connecting to 'Internet' SSID are
Unable to get an external dhcp server ip address, if the proxy dhcp is enabled on the WLC. If I disable the proxy, everything works fine.
2 DHCP does not release the ip addresses assigned to clients, even after that that they are connected.
3. If a machine that has previously been connected to "Guest" SSID connects to the 'Internet' SSID, he asks the same ip address, he was charged by the WLC assigned under "Guest", it gets the tag with the Vlan configured on the management interface.
The controller output *.
(Cisco Controller) > show sysinfo
Name of the manufacturer... Cisco Systems Inc..
Product name... Cisco controller
Version of the product... 7.0.116.0
Bootloader Version... 1.0.1
Retrieving Image Version field... 6.0.182.0
Firmware version... Console USB 1.3, 1.6 Env FPGA, 1.27
Build Type....................................... DATA + WPS, LDPE(Cisco Controller) > show interface summary
Name interface Vlan Id IP port address Type Ap Mgr. Gu
EST
-------------------------------- ---- -------- --------------- ------- ------ --
1 301 10.255.255.30 dynamic guest no no
Management 1 100 172.17.1.30 static yes noservice-port s/o s/o 192.168.0.1 static no no
n/a n/a 10.0.0.1 no nonstatic virtual(Cisco Controller) > show wlan summary
Number of wireless LANs... 4
Profile WIFI WLAN ID name / name of the SSID status Interface
------- ------------------------------------- -------- --------------------
1 active LAN management
2 active Internet management
3 active active management management
4 comments comments enabled(Cisco Controller) > show dhcp detailed comments
Scope: comments
Enabled.......................................... Yes
Lease Time....................................... 86400 (1 day)
Pool Start....................................... 10.255.255.31
Pool End......................................... 10.255.255.254
Network.......................................... 10.255.255.0
Netmask.......................................... 255.255.255.0
Default routers... 10.255.255.1 0.0.0.0 0.0.0.0
DNS Domain.......................................
DNS.............................................. 8.8.8.8 8.8.4.4 0.0.0.0
NetBIOS name servers... 0.0.0.0 0.0.0.0 0.0.0.0(Cisco Controller) > show detailed interface management
... Management interface
MAC address... e8:b7:48:9 b: 84:20
IP Address....................................... 172.17.1.30
IP Netmask....................................... 255.255.255.0
IP Gateway....................................... 172.17.1.1
State IP NAT outside... People with disabilities
External IP NAT... 0.0.0.0
VLAN............................................. 100
Quarantine-vlan... 0
Active physical Port... 1
The primary physical Port... 1
Port of physical backup... Not configured
Primary DHCP server... 172.30.50.1
Secondary DHCP server... Not configured
Option DHCP 82... People with disabilities
ACL.............................................. Not configured
AP Manager....................................... Yes
Comments interface... NO.
L2 multicast... Activated(Cisco Controller) > show detailed comments from interface
Interface name... Comments
MAC address... e8:b7:48:9 b: 84:24
IP Address....................................... 10.255.255.30
IP Netmask....................................... 255.255.255.0
IP Gateway....................................... 10.255.255.1
State IP NAT outside... People with disabilities
External IP NAT... 0.0.0.0
VLAN............................................. 301
Quarantine-vlan... 0
Active physical Port... 1
The primary physical Port... 1
Port of physical backup... Not configured
Primary DHCP server... Not configured
Secondary DHCP server... Not configured
Option DHCP 82... People with disabilities
ACL.............................................. Not configured
AP Manager....................................... NO.
Comments interface... NO.
L2 multicast... Activated(Cisco Controller) > show dhcp leases
IP MAC remaining rental period
00:21: 6a: 9 c: 03:04 10.255.255.46 23 hours, 52 minutes, 42 seconds< lease="" remains="" even="" when="" the="" client="" is="">Example of customer connected to the Vlan right with an ip address from the incorrect interface. *************
(Cisco Controller) > show customer detail 00:21: 6a: 9 c: 03:04
MAC address of the client... 00:21: 6a: 9 c: 03:04
User name of the client... N/A
AP MAC address... a0:cf:5 b: 00:49:c0
AP Name.......................................... mel
Status of the client... Associates
Customer of the NAC OOB State... Access
Wireless LAN Id... 2< 'internet'=""> >
BSSID... a0:cf:5 b: 00:49: this
Connected to... dry 319
Channel.......................................... 36
IP Address....................................... 10.255.255.46< ip="" address="" assigned="" from="" the="" 'guest'="" interface="" or="" dhcp="" scope="" on="" the="">
Association ID... 1
Authentication algorithm... Open System
Reason code... 1
Status code... 0
Session timeout... 1800
Client CCX version... 4
Version of E2E customer... 1
QoS Level........................................ Silver
Beacon priority P 802,1... disabled
Support WMM... Activated
Power Save....................................... OFF
State of mobility... Local
County of movement mobility... 0
Complete security policy... Yes
State Policy Manager... RUN
Policy Manager rule created... Yes
ACL name... no
Status to apply ACL... Not available
Type of strategy... N/A
Encryption Cipher... None
Protection management framework... NO.
EAP Type......................................... Unknown
Data HARVEST-H switching... Central
H - HARVEST authentication... Central
Management of the interface...
VLAN............................................. 100< right="">
Quarantine VLAN... 0
Access VIRTUAL LAN... 100Well it's good news. At least you have to operate.
Thank you
Scott Fella
Sent from my iPhone
-
How to retrieve the RADIUS shared secret key on the WLC 5508
Hi all
The wirelss privious admin left our company and did not let the other know the shared secret key on the WLC 5508 Radius.
The 5508 WLC runs on the 7.0.98.0 code. I can access the viao WLC CLI and GUI. I can also access the Win2003 Radius Server, but the button displays an asterisk for me. I have listed partial RADIUS config of the WLC below. How can I get the RADIUS shared secret key? Thanks in advance.
(Cisco Controller) > show RADIUS summary
Vendor Id backward compatibility... People with disabilities
Call Station Id... lower case
Dial the Station Id Type... IP address
Aggressive failover... Activated
Keywrap.......................................... People with disabilities
Rescue test:
Test Mode.................................... Off
Probe of username... cisco-probe
Interval (in seconds)... 300
MAC for authentication Messages... hyphen delimiter
MAC for Accounting Messages... hyphen delimiterAuthentication servers
The State of the Port Address Type server all RFC3576 IPSec - AuthMode idx / phase 1/group/life/Auth/BA
--- ---- ---------------- ------ -------- ---- ------- ------------------------------------------------
1 NM 10.xx.18.48 1645 on 2 off off - no/unknown/group-0/0 None/NoneAccounting servers
The State of the Port Address Type server all RFC3576 IPSec - AuthMode idx / phase 1/group/life/Auth/BA
-Other - or ITU (q)
--- ---- ---------------- ------ -------- ---- ------- ------------------------------------------------
1 N 10.xx.18.48 1646 enabled 2 N/A disabled - no/unknown/group-0/0 None/NoneKind regards
Robert
You can retrieve the RADIUS shared secret key as other passwords that are stored on the WLC by using the procedure at the following link:
NOTE: WPA keys are not available through these methods.
Basically, you can enable password in clear text on the wlc with 'config passwd-cleartext enable' and then issue a "view orders of the running-config' - your RADIUS configuration command should now display the shared secret.
-Pat
-
Authentication Radius ACS with WLC 5508 and AD 2012 5.5 failure
Hello
I need help on these errors.
Here is my configuration: WLC 5508 7.6.130.0-> ACS 5.5.0.46-> AD 2012
I have (2) errors in ACS 5.5
12514 EAP - TLS failed SSL/TLS handshake because of unknown CA in the client certificate chain
Already installed the CA cert and cert local in ACS as well as in the client PC.
Please see screenshots
OK, in this case:
1. you will need to properly configure the Windows pleading before that this can work. You need to set the type of authentication and the trusted certification authority. If the certification authority is not available in the list of certificates, you need to import
2. If you do PEAP then your identity store should be Active Directory and no profile authentication certificate. The certificate authentication profile is used for the basis of certificates (EAP - TLS) authentication.
Thank you for evaluating useful messages!
-
Remove the secondary controller and tertiary high availability for each access point
I want to remove secondary and tertiary sector controller of high availability for each access point. I have more than 900 APs associated with a Version of the WLC 8510 8.0.121.0 software. What is the best/better way to remove secondary and tertiary controller?
Or I can create a model first. We use version 2.2Hello
Easiest way:
Yes you can do this by using the first Cisco Infrastructure, you can create a Setup AP Lightweight model to specify the name of the PDC and the IP address and specify an empty value (choose the first empty option in the drop-down list) and 0.0.0.0 for the secondary and tertiary sector controllers. Then you can apply this model to the AP, and she must remove (virgins all) values for these fields.
Long way:
Yes there is no clean way to remove it from the CLI. you need to manually remove each on the AP.
Concerning
Remember messages useful rates
-
Configuration of high availability.
Hello
Please help me to configure high availability for Foglight existing environment, please send me the steps and requirements of pre.How many servers can exist in a cluster?
Capacity how do we need on the primary server and the other servers if there is a failure?
We currently have 1 unifying and 3 child FMS.
version: 5.6.10
Thank you
Vicky
Vicky,
There are 2 very useful field guides that go through the requirements and the Setup process.
High Availability Guide - http://edocs.quest.com/foglight/5610/doc/wwhelp/wwhimpl/common/html/frameset.htm?context=field&file=HA-field/index.php&single=true
Federation of field guide-
http://eDOCS.quest.com/Foglight/5610/doc/wwhelp/wwhimpl/common/HTML/frameset.htm?context=field&file=Federation-field/index.php&single=true
Note the following points, known issue
"A master of the Federation running in mode high availability is not supported. Only children Federated can be run by high availability. »
Golan
-
High availability of components in the design of vWorkspace tips
Hi all
Would ask you some advice regarding the design of vWorkspace components highly available. Suppose that vWorkspace components will be deployed in vSphere or hypervisors managed SCVMM hence HA is in place, if the failure of a host. In this situation, if we still need components redundant (n + 1 VMS) vWorkspace?
On the other note, I understand that we can add a couple of broker for vWorkspace in vWorkspace Management Console connections and based on KB 99163 it would just work. I'm not sure how the traffic would be when an application is web access? As in, I guess that the connection broker news would be 'defined' at the request of the web call to the broker for connections. Or this is done automatically? Access Web would choose randomly from the broker for connections to go?
Thanks for any advice in advance
Kind regards
Cyril
Hi Cyril,.
Big questions. As with any IT architecture in layers, you must plan HA and redundancy at all points of failure required by your environment or level of Service (SLA) agreements. For vWorkspace, the center of his universe is SQL and you must plan accordingly the failure and recovery. In some environments, full backup can meet the requirement of HA. In others, full SQL Cluster, Mirroring, replication, or Always-On configurations may be required. With our broker, we recommend N + 1 deployment in most scenarios HA. When you move peripheral components or enabling, you must evaluate each component and needs its impact of failure as well as its valuation to determine the appropriate AP.
Load balancing between several brokers is done automatically by logic in the client connectors. In the case of Web access, when you configure the site Web Access in the Management Console, it includes broker list in the Web access configuration xml file. As client connectors, Web Access includes balancing logic that distributes the client load on brokers available automatically.
If you have any questions about specific components and requirements of HA or architecture, please add them in the discussions.
-
Wireless converged access (new) Mobiliity between WLC 5508
Hello
I have 3 WLC 5508 which is upgraded to version 8.x and I can see this feature when searching on the web I find that this new feature is necessary when we have new models of WLC 5760 or 3850 in the network and must contact 5508.
So my question is in my current scenario, I only 5508
1. can I activate this function and use this function between 5508 - If Yes, in the configuration, I just create mobility than in the old configuration groups and it should work right or is there additional configuration is required?
Also in my network current fflexconnect is activated and allow this will affect my flexconnect?
Please notify.
Kind regards
Anjaz
If you want to, you can migrate to the new mobility without any problem, but must be allowed to all of your WLC at the same time. This will have no impact for your flex-connect communication or configuration and influence the way in which the tunnels between of WLC are under construction. No changes are necessary in this configuration either.
Please rate helpful messages... :-)
-
SHIFT of Mode on Cisco WLC 5508
Hello
I have two WLC 5508 working in ACTIVE / standby. They are connected to my local network by linking to each WLC.
I would like to implement the LAG Mode to have two WLC link but when I activate LAG Mode (Mode CONTROLLER/general/LAG at the next reboot active), I have this newspaper:
"Error in the setting of the Mode of LAG. Please see the log file.
I see nothing in the log file.
The version of my WLC is 8.0.100.0
Thank you
First, you will need to disable HA if you want to enable the LAG.
A time LAG configured on both controllers, you can then enable HA between two WLCs
HTH
Rasika
Pls note all useful responses *.
-
STROKE (Application Visibilty Control) on WLC 5508 7.5 do not display data
Dear all
My WLC has problem...
the STROKE is not display data (graphic or otherwise)
I have already set up two Wlan id with the visibility control, but two of them do not display data...
Here is my setup place WLC 5508...
My WLC running on OS 7.5
pack 1.0 protocol version
NBAR engine 13.0
AUS 6.0.182.0
Cisco controller) > see the version of the Protocol-pack stroke
Protocol STROKE Pack name: Protocol Advanced Pack
Protocol STROKE Pack Version: 1.0
(Cisco Controller) > show stroke engine version
Version of the engine STROKE: 13
(Cisco Controller) > show sysinfo
Name of the manufacturer... Cisco Systems Inc..
Product name... Cisco controller
Version of the product... 7.5.102.0
Bootloader Version... 1.0.1
Retrieving Image Version field... 6.0.182.0
Firmware version... Console USB 1.3, 1.6 Env FPGA, 1.27
even from CLI still do not display data
(Cisco Controller) >Show stroke statistics upstream applications top
Perspective of the STROKE is 0 for all applications.
MISTLETOE on attachment configuration capture
Need your advice is there any configuration that I miss... ??
As long as you go to the STROKE centre should work in Flexconnect. You can check the AP mode under wireless > click on any access point.
http://www.Cisco.com/c/en/us/support/docs/wireless/5500-Series-Wireless-...
-
Does anyone know if Cisco will provide redundancy standby high availability of IPCC express?
Chris
Search in the next major version of the IPCC Express. Last I heard it was scheduled for release next month some time.
Jim
-
Deployment of high availability of the IPCC 4.5
In a future HD architecture implementation, the voice service will provide CallManager 5.0, that will integrate with 4.5 of the IPCC. 4.5 (required with 5.0 CM) IPCC does implement a high availability. How can we ensure that technical support continues to operate if the IPCC goes down? One possibility might be to configure CM such that if the IPCC goes down, all the number of help desk calls are automatically and immediately headed to a group (which includes all extensions help desk). This redirection can be configured in CM? Is there a better option?
Thanks in advance,
SB
This is your best bet. On the road Points for your call center just put the call before busy, no answer and failure to the fighter pilot. Thus, when the IPCC Express Server is down it will sent to your fighter pilot.
Please evaluate the useful messages.
adignan - berbee
Maybe you are looking for
-
Time Capsule backup suddenly stopped working
I used my Air Port Time Capsule since July last year, without a hitch. Then all of a sudden today, he says: 'no back ups for 155 days' (!) and I get this message: "The backup drive is not available. Make sure that the backup disk is connected, or sel
-
delete the chart, then restart chart
Hello, I would like to know how to clear data in an instant on the graph, after that it works normally, and all need to be in the loop while. like a cardiogram, I defined every 20 seconds, clear graphics and restart. Thanks in advance.
-
My cat slept on the keyboard and the screen is now at an angle of 45 degrees to the right. I tried to push CTRL + arrow keys - no luck. What should I do?
-
Director of rundell32 windows has stopped working
Hi guys, I'm having a problem when I try and import clips, Adobe and my Canon camera in movie maker. I have converted the MPEG, I thought that was the problem. It still does not work. Can anyone help?
-
my audio service is not runing
today when I got here and next to the speaker down in the lower right corner of the computer, I noticed a white red circle with an "X" inside. I clicked on it, thinking it was cut so I could turn it back on... Well he finally take me by something and