I?ve been having considerable problems with getting clients to access the internet via a guest wireless DMZ controller.
I have a 4402 in the DMZ and a 4404 in the LAN; I have ping, mping & Eping connectivity between the controllers. I have configured both controllers in to the same mobility group and have configured the guest_wireless WLAN with the correct mobility anchors, i.e. the LAN WLC has an anchor pointing to the DMZ and the DMZ points to itself.
I have configured a DHCP scope on the DMZ WLC and this is where the problems being, I can not get a user to receive DHCP from the DMZ controller. The client can see the Guest_wireless WLAN and connects up but fails to receive DHCP.
I have made sure that the correct ports have been opened up and this is confirmed by the Eping connectivity. Could there be an additional port number that needs defining to allow DHCP through the firewall or does the DHCP requests pass down the mobility tunnel between the controllers.
Transferring Crash file from standby: Login to the Active WLC in HA.
From CLI: (Cisco Controller) >transfer upload datatype crash (Cisco
Controller) >transfer upload filename (Cisco
Controller) >transfer upload mode tftp (Cisco Controller) >transfer
This is the start of a display filter cross reference between Wireshark
and OmniPeek. The 1st installment is a table of advanced filters. More
filters will be added as time allows. It is a living doc, so check back
for changes every so often Please feel f...