cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
939
Views
0
Helpful
1
Replies

Cisco 5508 and AIR-CAP3502i network design

agrayson
Level 1
Level 1

We are trying to allow LWAP to access INSIDE LAN via access switches then using Option43 point them to 5508 which are only connected to DMZ switch. The LAP cannot find WLC server still... not sure our design will work.

I cannot find good documentation for doing this with a 5508

Our intent is that all wireless can only reside in the DMZ but the AP will be sitting on INSIDE LAN

I have attached PDF with 2 network designs..both are the same but the second is better detailed

here is the error I ma getting on the AP

Translating "CISCO-CAPWAP-CONTROLLER.langleyfcu.org"...domain server (10.248.55.25)

*Mar  1 05:21:35.716: %CAPWAP-5-DHCP_OPTION_43: Controller address 49.57.50.46 obtained through DHCP
*Mar  1 05:21:35.716: %CAPWAP-5-DHCP_OPTION_43: Controller address 49.54.56.46 obtained through DHCP
*Mar  1 05:21:35.716: %CAPWAP-5-DHCP_OPTION_43: Controller address 53.49.46.50 obtained through DHCP
*Mar  1 05:22:15.717: %CAPWAP-3-DHCP_RENEW: Could not discover WLC using DHCP IP. Renewing DHCP IP.
Not in Bound state.
*Mar  1 05:22:25.875: %DHCP-6-ADDRESS_ASSIGN: Interface GigabitEthernet0 assigned DHCP address 10.248.23.29, mask 255.255.255.0, hostname AP70ca.9b99.4859

Translating "CISCO-CAPWAP-CONTROLLER.langleyfcu.org"...domain server (10.248.55.25)

*Mar  1 05:22:32.219: %CAPWAP-5-DHCP_OPTION_43: Controller address 49.57.50.46 obtained through DHCP
*Mar  1 05:22:32.219: %CAPWAP-5-DHCP_OPTION_43: Controller address 49.54.56.46 obtained through DHCP
*Mar  1 05:22:32.219: %CAPWAP-5-DHCP_OPTION_43: Controller address 53.49.46.50 obtained through DHCP
*Mar  1 05:23:12.221: %CAPWAP-3-DHCP_RENEW: Could not discover WLC using DHCP IP. Renewing DHCP IP.
Not in Bound state.
*Mar  1 05:23:22.756: %DHCP-6-ADDRESS_ASSIGN: Interface GigabitEthernet0 assigned DHCP address 10.248.23.29, mask 255.255.255.0, hostname AP70ca.9b99.4859

Translating "CISCO-CAPWAP-CONTROLLER.langleyfcu.org"...domain server (10.248.55.25)

Thanks

1 Reply 1

Scott Fella
Hall of Fame
Hall of Fame

Well you need to allow udp 5246 from the AP's to the WLC and vice versa. Why not have an interface connect to your internal network also and then put users on the dmz? This way your wlc and AP's can communicate.

Sent from my iPhone

-Scott
*** Please rate helpful posts ***
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: