At the moment we migrate AP´s from our old 4402 WLC (Version 7.0.235) to a new vWLC (Version 7.5.102)
I have to load a new image to the AP´s that they will connect with the new vWLC.
My Problem is, when i upgrade a AP in a Branch Office everthing works fine. I enter the new controller IP directly to the AP, becouse the DNS points to the old controller which is the productiv at the moment.
When i try to migrate a AP in our central, where also is the physikal old controller, the AP´s will not connect to the new vWLC. I make the Update from the AP and clear the private config and enter the ip of the new controller on the CLI of the AP. After a reboot the AP joins automaticly the old wlc and makes a firmwaredowngrad.
Why ignores the AP the static configured controller IP?
Typically you would want to not just clear the private config but also the nvram. Also, go ahead and change the DNS entry, because this is used really for initial join and will not harm your production network. Other options are using option 43 and forwarding UDP 5246 & 5247 with the use of IP helpers. Also note that AP's join a vWLC if they have already joined a WLC running v7.3 or later or else you need to add the SSC:
Also make sure the the VM is setup properly.
the vWLC is setup correctly, becaouse when the ap is connected everthing works fine. The dns entry will also solved in our branch offices, but there the static configured ip works.
Is it possible that the ap discovers the controller over L2 or L3?
Layer 2 is like the default when finding the WLC. For layer 3, you need option 43, DNS or forwarding the broadcast which is pretty simple. On the L3 device you use IP forward protocol UDP 5246 and also 5247 and then on the L3 interface that the APs are connected to, you use an IP helper with the vWLC management. That's really it.
Ok, we don´t have configured to forword UDP. Ok, than i have to change the DNS name. Maybe it will work than. I will let you know.
Console into the AP and you will see the ap join. This way you will be able to see if the vWLC is rejecting the join or maybe the AP isn't getting an join from the vWLC and the 4400 is responding.
I tried again to move the ap. I also changed the dns entrie to the vwlc, but it does not work.
*Mar 1 00:00:46.198: %DHCP-6-ADDRESS_ASSIGN: Interface BVI1 assigned DHCP address 10.120.5.249, mask 255.255.0.0, hostname APfc99.47d5.411a
Translating "CISCO-CAPWAP-CONTROLLER.xxx.local"...domain server (10.120.200.6)
*Mar 1 00:00:57.081: %CAPWAP-3-ERRORLOG: Did not get log server settings from DHCP. [OK]
*Mar 1 00:01:10.084: %CAPWAP-3-ERRORLOG: Go join a capwap controller
*Jul 25 08:17:31.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 10.120.1.203 peer_port: 5246
extracting info (292 bytes)
Version Suffix: k9w8-.124-23c.JA5
Image Name: c1140-k9w8-mx.124-23c.JA5
Version Directory: c1140-k9w8-mx.124-23c.JA5
Ios Image Size: 4905472
Total Image Size: 5100032
Image Feature: WIRELESS LAN|LWAPP
Image Family: C1140
Wireless Switch Management Version: 18.104.22.168
c1140-k9w8-mx.124-23c.JA5/ (directory) 0 (bytes)
extracting c1140-k9w8-mx.124-23c.JA5/8001.img (174932 bytes)
*Jul 25 08:17:33.607: %CAPWAP-5-DTLSREQSUCC: DTLS connection created sucessfully peer_ip: 10.120.1.203 peer_port: 5246
*Jul 25 08:17:33.608: %CAPWAP-5-SENDJOIN: sending Join Request to 10.120.1.203perform archive download capwap:/c1140 tar file
*Jul 25 08:17:33.616: %CAPWAP-6-AP_IMG_DWNLD: Required image not found on AP. Downloading image from Controller.
c1140-k9w8-mx.124-23c.JA5/html/ (directory) 0 (bytes)
c1140-k9w8-mx.124-23c.JA5/html/level/ (directory) 0 (bytes)
c1140-k9w8-mx.124-23c.JA5/html/level/1/ (directory) 0 (bytes)
extracting c1140-k9w8-mx.124-23c.JA5/html/level/1/appsui.js (557 bytes)
Lets start from scratch...
1. How AP getting IP via Domain Controller or from DHCP server on Switch ?
2.If via Switch then paste the config here.
*Mar 28 12:07:20.227: %CAPWAP-5-SENDJOIN: sending Join Request to 10.175.1.200*Mar 28 12:07:20.231: %CAPWAP-3-ERRORLOG: Failed to handle capwap control message from controller *Mar 28 12:07:20.231: %CAPWAP-3-ERRORLOG: Failed to process encrypted capwap packet from 10.175.1.200 *Mar 28 12:07:20.231: %DTLS-5-ALERT: Received WARNING : Close notify alert from 10.175.1.200 *Mar 28 12:07:30.243: %CAPWAP-3-ERRORLOG: Go join a capwap controller
config ap autoconvert flexconnect enable