Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
703
Views
0
Helpful
4
Replies

WLC-4402+AIR-LAP1142N problem

piotrderda
Level 1
Level 1

‎07-14-2009 10:49 AM - edited ‎07-03-2021 05:49 PM

Hello all,

I've got a following problem with bringing up simple wireless configuration. There is a WLC-4402 controller and several remote locations (I am testing one so far). Two WLAN configured (one for employee and the other for guest access - no mobility anchoring used, guest is just mapper to VLAN restricted on the firewall). WLC serves DHCP pools for wireless clients. Problem I am experiencing at the moment is that user with laptop is able to connect to guest WLAN, got an IP but can communicate (ping) only its own IP, the controller IP in guest subnet and default gateway (which is the firewall interface). Traffic to any other destinations never hit gateway (I am running tcpdump on it to confirm). I double checked controller config but no luck so far. Could that be caused by missconfigured tunnel? No ACL or restriction set on WLC - see attached config.

Thank you in advance,

Peter

Labels:
Preview file
7 KB
0 Helpful
4 Replies 4

dancampb
Level 7
Level 7

‎07-14-2009 11:04 AM

I don't see any issues with the config that would cause this issue. Was the PC maybe also wired into the network at the same time? The wired connection usually gets a higher priority than the wireless interface on a PC.

0 Helpful

piotrderda
Level 1
Level 1
In response to dancampb

‎07-14-2009 11:06 AM

Nope, that was the first thing I checked. Wifi was the only connection during the test and routing table on client consist only one default gateway through wireless.

0 Helpful

Scott Fella
Hall of Fame
Hall of Fame
In response to piotrderda

‎07-14-2009 06:51 PM

Post the show run-config if you can. I would like to see what that shows.

-Scott
*** Please rate helpful posts ***
0 Helpful

mat.edwards
Level 1
Level 1

‎07-15-2009 03:52 AM

Is this an open network or have you enabled layer 3 security? Web Auth? I can see you have created a lobby admin account so expect that you use this for guest account creation with web auth..

When you associate/receieve IP address to the open guest network have you then opened a web browser and authenticated? Until you enter your login details created on the WLC I would imagine that you wouldn't be able to send any data.

If you have authenticated already, can you check on the WLC that the client is associated/authenticated and is the Corp network ok? Also what is the topology between the WLC/Firewall/Remote sites.

Cheers

Mat

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card