Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Cisco 5508 (MC) with cisco 3850 (MA)

Hi everybody,

as show bellow my architecture:

 

 

Layer 3 is OK.

  • 5508 is the Mobility Controller / SSO mode
  • 3850 is the Mobility Agent

 

Mobility Agent, 3850 configuration:

 

3850-WLA#
interface Vlan6
 ip address 10.161.33.22 255.255.254.0
wireless management interface Vlan6 
wireless mobility controller ip 10.160.49.1

 

Mobility Controller, 5508 configuration:

  • I created a Mobility Group
  • I created a switch-peer-group, where i add the 3850 in this.

 

But the link between the MC and the MA is DOWN.

as show bellow:

3850-WLA#sh wireless mobility summary

Mobility Agent Summary:

Mobility Role                                   : Mobility Agent
Mobility Protocol Port                          : 16666
Mobility Switch Peer Group Name                 :
Multicast IP Address                            : 0.0.0.0
DTLS Mode                                       : Enabled
Mobility Domain ID for 802.11r                  : 0xac34
Mobility Keepalive Interval                     : 10
Mobility Keepalive Count                        : 3
Mobility Control Message DSCP Value             : 0
Switch Peer Group Members Configured            : 0

Link Status is Control Link Status : Data Link Status

The status of Mobility Controller:

IP              Public IP            Link Status
------------------------------------------------
10.160.49.1  10.160.49.1       DOWN : DOWN

 

********************************************************

 

Moreover the capwap tunnel is ok:

 

3850-WLA#sh capwap summary

CAPWAP Tunnels General Statistics:
  Number of Capwap Data Tunnels       = 0
  Number of Capwap Mobility Tunnels   = 1
  Number of Capwap Multicast Tunnels  = 0


Name   APName                           Type PhyPortIf Mode      McastIf
------ -------------------------------- ---- --------- --------- -------
Ca0    -                                mob  -         unicast   -


Name   SrcIP           SrcPort DestIP          DstPort DtlsEn MTU   Xact
------ --------------- ------- --------------- ------- ------ ----- ----
Ca0    10.161.33.22   16667   10.160.49.1  16667   No     1464  0

 

I don't understand why the link between MA and MC is down.

Thank you in advance,

Best regards.

 

Everyone's tags (1)
9 REPLIES
VIP Purple

On your 5508, did you enable

On your 5508, did you enable new mobility ? This is required to establish a mobility tunnel between NGWC (3850,5760) with AireOS controller (5508,etc). In order to support this feature you need to have your 5508 running with 7.6.x or higher.

Refer below posts as they may help you 

1. http://mrncciew.com/2014/05/06/configuring-new-mobility/
2. http://mrncciew.com/2013/12/14/3850ma-with-5760mc/

 

HTH

Rasika

**** Pls rate all useful responses ****

New Member

Hi,On my 5508, new mobility

Hi,

On my 5508, new mobility is enable and my product version is 8.0.100.0.

 

Thank you in advance

VIP Purple

HiPost "show mobility summary

Hi

Post "show mobility summary"  & "show interface summary" output form your 5508.

Also output for the below

(5508-1) >ping 10.160.33.22 management 10 1500

 

HTH

Rasika

**** Pls rate all useful responses ****

New Member

(Cisco Controller) >show

(Cisco Controller) >show mobility summary

New Mobility (Converged Access).................. Enabled
Mobility Protocol Port........................... 16666
Default Mobility Domain.......................... TI
Multicast Mode .................................. Disabled
DTLS Mode ....................................... Enabled
Mobility Domain ID for 802.11r................... 0x103f
Mobility Keepalive Interval...................... 10
Mobility Keepalive Count......................... 3
Mobility Group Members Configured................ 1
Mobility Control Message DSCP Value.............. 46
Mobility Oracle.................................. Disabled
Mobility MC public IP ........................... 10.160.49.1
Mobility Oracle IP address ...................... 0.0.0.0

Controllers configured in the Mobility Group
 IP Address       Public IP Address       Group Name         Multicast IP  MAC Address               Status
 
10.160.49.1   10.160.49.1             TI             0.0.0.0         50:57:a8:bc:3c:e0          Up

Switch Peer Group Configuration:

  Switches configured in Switch Peer Group: TI-SPG

--More-- or (q)uit

 IP Address           Public IP Address    Status
    10.161.33.22         10.161.33.22        Control and Data Path Down

 

***************************************************************************

Interface Name                   Port Vlan Id  IP Address      Type    Ap Mgr Guest
-------------------------------- ---- -------- --------------- ------- ------ -----
management                       LAG  2       
10.160.49.1  Static  Yes    No
redundancy-management            LAG  2       
10.160.49.2  Static  No     No
service-port                     N/A  N/A      10.0.0.1        Static  No     No
us-sie                           LAG  120      0.0.0.0         Dynamic No     No
virtual                          N/A  N/A      1.1.1.1         Static  No     No

 

***************************************************************************

 

(Cisco Controller) >ping 10.225.34.126 management 10 1500

Send count=10, Receive count=10 from 10.225.34.126, Packet size = 1500

 

 

Thank you in advance,

Bests regards

 

 

New Member

Hello Rasika,My target LAN

Hello Rasika,

My target LAN will used VRF. That's why i reproduce this part on my LAB.

To make some test today, i configure MC/MA between two 3850 from the factory default configuration (without VRF) and it works....

 

Have you an idea ?

 

 

VIP Purple

VRF on your 3850 for wireless

VRF on your 3850 for wireless management vlan ?

Best to check with TAC if it is supported or not, unfortunately I do not have that information.

HTH

Rasika

**** Pls rate all useful responses *****

 

New Member

A little precision, my 5508

A little precision, my 5508 is in SSO mode.

Cisco Employee

One additional question on

One additional question on this, if I may ask.  If I have a 5508 deployed as legacy CUWN (older 35xx APs, and 3750's) will I be able to continue to deploy CA3850's in my new building, but keep the legacy CUWN management in my other buildings on the same 5508? or do I need to deploy a separate controller? I'd rather keep it on the same 5508, so any caveats to running a mixed deployment?

 

Thanks!

VIP Purple

Yes, on IOS-XE 3.6 onward,

Yes, on IOS-XE 3.6 onward, you can put those legacy AP onto a different vlan (other than wireless management on 3850), so they will go & register to a 5508.

Drawback is the client roaming is not optimal (if you have AP in same area managed by a 5508 & 3850 itself). Still should work.

Note that going forward, you cannot use a 5508 as MC for 3850/3650 MA switch stack. From AireOS 8.1 onward they will remove this MC functionality on AireOS. Still if you have 5760/3850 as MC, you can peer it with 5508 (with new mobility enabled) & roaming works in that setup.

 

HTH

Rasika

**** pls rate all useful responses ***

 

 

1470
Views
20
Helpful
9
Replies