Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

WLC and using PoE ports in the same LAN

Hello everybody.

I've set up a WLC2504 with interface "mgmt" and "guest" (2 different VLAN IDs) both configured on port1.

Now I'd like to be able to connect to PoE ports (port 3 and 4) 2 LAPs which should be able to get IP addresses from the DHCP as if they were connected to port1.

How do I achieve this setup?

Any help will be appreciated.

Kind regards,

F.

Everyone's tags (3)
14 REPLIES

WLC and using PoE ports in the same LAN

Philipp,

     It's not recommended to connec the AP to the ports on the WLC, due to some ARP issues.

But if you decide to go forth with this method, you would need a scope on the WLC in the same subnet as the management interface.

Steve

HTH, Steve ------------------------------------------------------------------------------------------------ Please remember to rate useful posts, and mark questions as answered
Cisco Employee

WLC and using PoE ports in the same LAN

Not a supported design per Cisco TAC.. still... if u want ur APs to be in the same subnet as that of Management interface then no need to do anything, just connecting an AP to port 3 and 4, AP will get an IP... is wat i feel

Regards

Surendra

New Member

Re: WLC and using PoE ports in the same LAN

I agree

If you want to use the POE ports on the 2504 for AP, just create a scope in the controller in the same network as the management interface and configure the management interface dhcp address to the management address

Then the AP pick up an IP from DHCP and find the controller by way of broadcast

Sent from Cisco Technical Support iPhone App

New Member

WLC and using PoE ports in the same LAN

Hello!

I'm in the same situation: WLC2504 and LAP1142 to connect to the PoE ports.

Same setup: guest interface, management interface.

I will be using an existing DHCP in the LAN and I configured the management interface on port1 to be in the LAN subnet.

Would the DHCP Scope on the WLC conflict with the existing DHCP on my LAN?

Kind regards,

F.

New Member

WLC and using PoE ports in the same LAN

It's me again :-)

I got a bit further and did as follows:

connected 2 LAPs on port3 and port4

connected port1 to a "lab firewall" on which I configured the DHCP Server and the Option 43

the 2 LAPs got an IP lease from the DHCP Server, but when trying to connect to the WLC I see:

*Apr 12 06:36:02.792: %CAPWAP-3-ERRORLOG: Go join a capwap controller
*Apr 12 06:36:02.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 192.168.160.2 peer_port: 5246
*Apr 12 06:36:02.789: %CAPWAP-5-DTLSREQSUCC: DTLS connection created sucessfully peer_ip: 192.168.160.2 peer_port: 5246
*Apr 12 06:36:02.790: %CAPWAP-5-SENDJOIN: sending Join Request to 192.168.160.2
*Apr 12 06:36:02.792: %DTLS-5-ALERT: Received WARNING : Close notify alert from 192.168.160.2
*Apr 12 06:36:02.792: %DTLS-5-SEND_ALERT: Send FATAL : Close notify Alert to 192.168.160.2:5246

I took a third LAP and connected it to the switch on the firewall (I have 5 ports, 1 is for the WLC, the other now for the third AP). Well, this last LAP gets IP lease, option 43 AND shows up in the WLC GUI!!!

So what is here missing?

Thanks and kind regards,

F.

New Member

Re: WLC and using PoE ports in the same LAN

Flavio

I need some time to review

Thanks

Tom Jennings

CompuCom Systems

tjenning@compucom.com

Mobile # 856-261-5634

New Member

WLC and using PoE ports in the same LAN

For sure Thomas... thanks anyway!

F.

New Member

Re: WLC and using PoE ports in the same LAN

Flavio

Can you please send me a copy of your config

New Member

Re: WLC and using PoE ports in the same LAN

Hello Thomas,

actually I got a very weird situation: the 2 LAPs plugged into PoE ports 3 and 4 ARE WORKING!

The other 2 LAPs, connected throught a switch on port1, DO NOT JOIN the WLC! :-(

Here the config:

config location expiry tags 5

config local-auth method fast server-key encrypt 1 6bc54e9da5d3cd7bbcbf67ea518b99a1 674b889738d1f335412cd8e1fbd13ab73a63a3fc 16 60072b5da12b682f9ccbafd8707df19d00000000000000000000000000000000

config license boot base

config license agent max-sessions 9

config interface port management 1

config interface address management 192.168.160.2 255.255.255.0 192.168.160.1

config interface address virtual 1.1.1.1

config interface port guest 1

config interface address dynamic-interface guest 192.168.123.2 255.255.255.0 192.168.123.1

config interface dhcp management primary 192.168.160.1

config interface vlan guest 900

config interface create guest 900

config interface dhcp dynamic-interface guest primary 192.168.123.1

config country CH

config mobility group domain SP

config nmsp notification interval rssi rfid 2

config mesh security psk

config time ntp interval 21600

config time ntp server 1 192.168.160.10

config sysname wlc01-spaeni

config certificate generate webauth

config database size 2048

config network ap-mcast-mode multicast 239.239.239.239

config network multicast mode multicast 239.239.239.239

config network rf-network-name SP

config rfid timeout 1200

config rfid status enable

config rfid mobility pango disable

config mgmtuser add encrypt administrator 1 eda8176494d31446c1b63f84aa271ff2 303cf7233135c6447f9b51b34ac52dc6ebeeb1e4 16 43c3dd4e5e6e6658c3956e35c719c1460000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000 read-write

config mgmtuser add encrypt fbo 1 84ae4ca302d4b22017c9d379cbab1fea 1fec6d99b9bf267856482014f7306bd0b709f582 16 9c63abc92794c3631117b47502f2c3f70000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000 read-write

config mgmtuser add encrypt dgu 1 c0d521bd8e155722ca1e8e32f11597ef 7cc6978ec932c1505da748d8b96bf72e71ef08af 16 a3825a3297fa61dfa9e352e04fbff8970000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000 read-write

config advanced probe-limit 2 500

config advanced probe limit 2 500

config advanced 802.11a channel add 36

config advanced 802.11a channel add 40

config advanced 802.11a channel add 44

config advanced 802.11a channel add 48

config advanced 802.11a channel add 52

config advanced 802.11a channel add 56

config advanced 802.11a channel add 60

config advanced 802.11a channel add 64

config advanced 802.11a channel add 100

config advanced 802.11a channel add 104

config advanced 802.11a channel add 108

config advanced 802.11a channel add 112

config advanced 802.11a channel add 116

config advanced 802.11a channel add 120

config advanced 802.11a channel add 124

config advanced 802.11a channel add 128

config advanced 802.11a channel add 132

config advanced 802.11a channel add 136

config advanced 802.11a channel add 140

config advanced 802.11b channel add 1

config advanced 802.11b channel add 6

config advanced 802.11b channel add 11

config wlan wmm allow 1

config wlan mfp client enable 1

config wlan wmm allow 2

config wlan mfp client enable 2

config wlan security wpa akm psk set-key hex encrypt 1 1b54860d312e91b86a74e98993536585 e143ac78d89d694481fee1be585b88a63a57d06c 48 c1f50c4ef774294b05c6f281244a362b03f8cd58e47675437304a0afb0560be0fd53285981fbed515b3279075cbd0144000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000 1

config wlan security wpa akm psk enable 1

config wlan security wpa akm 802.1x disable 1

config wlan security wpa wpa1 ciphers aes enable 1

config wlan security wpa wpa1 enable 1

config wlan security wpa enable 1

config wlan security wpa wpa2 ciphers aes enable 2

config wlan security wpa wpa2 ciphers tkip enable 2

config wlan security wpa akm psk set-key hex encrypt 1 90e7667cce73a1a04706dd205a8e1e60 bc141aa14e4da493065e42e3b71d560c5570305f 48 da8ac7227453795b10b0f7e1445488d49ad05aa561e3ea4e47b8ad90eb783de770705931702277aa8408a6e887f090cf000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000 2

config wlan security wpa akm psk enable 2

config wlan security wpa akm 802.1x disable 2

config wlan security wpa wpa1 ciphers aes enable 2

config wlan security wpa wpa1 ciphers tkip enable 2

config wlan security wpa wpa1 enable 2

config wlan security wpa enable 2

config wlan exclusionlist 1 1

config wlan exclusionlist 2 2

config wlan broadcast-ssid enable 1

config wlan broadcast-ssid enable 2

config wlan interface 1 management

config wlan session-timeout 1 1800

config wlan interface 2 guest

config wlan session-timeout 2 1800

config wlan create 1 SP SP

config wlan create 2 "SP Guest" SP-Guest

config wlan enable 1

config wlan enable 2

config 802.11a 11nsupport a-msdu tx priority

config 802.11a cleanair alarm device enable jammer

config 802.11a cleanair alarm device enable 802.11-inv

config 802.11a cleanair alarm device enable 802.11-nonstd

config 802.11a cac voice sip bandwidth 64 sample-interval 20

config 802.11a cac voice sip codec g711 sample-interval 20

config 802.11b 11nsupport a-msdu tx priority

config 802.11b cleanair alarm device enable 802.11-nonstd

config 802.11b cleanair alarm device enable jammer

config 802.11b cleanair alarm device enable 802.11-inv

config 802.11b cac voice sip bandwidth 64 sample-interval 20

config 802.11b cac voice sip codec g711 sample-interval 20

config 802.11b 11gsupport enable

transfer upload path /

transfer upload datatype config

transfer upload serverip 192.168.160.168

transfer upload filename wlc01.conf

transfer download path /

transfer download serverip 192.168.160.168

transfer download filename wlc01.conf

Silver

Re: WLC and using PoE ports in the same LAN

What code version on 2504 and what model AP?

Sent from Cisco Technical Support iPad App

New Member

Re: WLC and using PoE ports in the same LAN

I did it with 7.2.103.0 and I didn't succeed.

Now I got back to 7.0.230.0 and it is working like described above, which is not yet what I'm looking for.

LAPs are 1142.

Thanks,

F.

New Member

Re: WLC and using PoE ports in the same LAN

OK, I think I got it: the 2 APs which did not get connected, had been previously configured in Mesh-Mode. I had to clear lwapp private-config on both of them, now all 4 APs are connected.

Regards,

F.

New Member

Re: WLC and using PoE ports in the same LAN

That's great

Thanks

Tom Jennings

Re: WLC and using PoE ports in the same LAN

This document would be useful for you:
https://supportforums.cisco.com/docs/DOC-11760

It talks about 2100 series but it would be applied to 2500 as well.

HTH

Amjad

Rating useful replies is more useful than saying "Thank you"
1197
Views
0
Helpful
14
Replies
CreatePlease to create content