Avatar of Katrach0
Katrach0Flag for United States of America asked on

Wireless Controller 2504 issues

Hello Cisco Pros.

Have an issue that has taken a lot of my time trying to figure out a solution.

We have a Cisco  Wireless 2504 directly connected to a 3560E on port 47 and port 47, has the following command:

interface GigabitEthernet0/47
 switchport access vlan 10
 switchport trunk encapsulation dot1q
 switchport trunk native vlan 10
 switchport mode trunk
 switchport nonegotiate
 srr-queue bandwidth share 10 10 60 20
 queue-set 2
 priority-queue out
 mls qos trust cos
 auto qos voip trust
 macro description cisco-wireless
 spanning-tree bpduguard enable

We have 12 APs AIR-LAP1041N-A-K9 .

on 2nd, 3rd and 4th Floor there's a switch on each floor, same configuration.

there are 3 APs on 2nd floor, so the same for the 3rd and 4th.

Here's the configuration for ports where APs are connected to the aboved mentioned switches.

interface GigabitEthernet1/0/43
 description Cisco WAP
 switchport access vlan 10
 switchport trunk native vlan 10
 switchport mode trunk
 switchport nonegotiate
 switchport voice vlan 100
 srr-queue bandwidth share 1 30 35 5
 priority-queue out
 mls qos trust cos
 macro description cisco-wireless | cisco-wireless | cisco-wireless | cisco-wireless | cisco-wireless
 auto qos trust
 spanning-tree portfast
 spanning-tree bpduguard enable
!
interface GigabitEthernet1/0/44
 description Cisco WAP
 switchport access vlan 10
 switchport trunk native vlan 10
 switchport mode trunk
 switchport nonegotiate
 switchport voice vlan 100
 srr-queue bandwidth share 1 30 35 5
 priority-queue out
 mls qos trust cos
 macro description cisco-wireless | cisco-wireless | cisco-wireless | cisco-wireless
 auto qos trust
 spanning-tree portfast
 spanning-tree bpduguard enable
!
interface GigabitEthernet1/0/45
 description Cisco WAP
 switchport access vlan 10
 switchport trunk native vlan 10
 switchport mode trunk
 switchport nonegotiate
 switchport voice vlan 100
 srr-queue bandwidth share 1 30 35 5
 priority-queue out
 mls qos trust cos
 macro description cisco-wireless | cisco-wireless | cisco-wireless | cisco-wireless
 auto qos trust
 spanning-tree portfast
 spanning-tree bpduguard enable
!
interface GigabitEthernet1/0/46
 description Cisco WAP
 switchport access vlan 10
 switchport trunk native vlan 10
 switchport mode trunk
 switchport nonegotiate
 switchport voice vlan 100
 srr-queue bandwidth share 1 30 35 5
 priority-queue out
 mls qos trust cos
 macro description cisco-wireless | cisco-wireless | cisco-wireless | cisco-wireless
 auto qos trust
 spanning-tree portfast
 spanning-tree bpduguard enable

Users keep losing connection, also it takes 2 hours to download 45MBs, definitely something is going on.

Do you have any suggestions?

regards and thanks in advance.
Wireless NetworkingNetworking Hardware-OtherNetwork Architecture

Avatar of undefined
Last Comment
Katrach0

8/22/2022 - Mon
Ryan Lanham

What are you basing your speed tests on? A local file download / upload? Or a download via your Internet gateway?
ASKER
Katrach0

In doing computer updates and downloading files from the internet.
anoopkmr

kindly remove the  below configurations from AP connected ports . and try

 switchport trunk native vlan 10
 switchport mode trunk
  switchport voice vlan 100
 spanning-tree bpduguard enable

also for testing remove the below commands from all interface as well
srr-queue bandwidth share 1 30 35 5
 priority-queue out
This is the best money I have ever spent. I cannot not tell you how many times these folks have saved my bacon. I learn so much from the contributors.
rwheeler23
ASKER
Katrach0

Made those changes, still the same. ( did those changes like 15 mins ago)
anoopkmr

What type of authentication for users ?
what is the error getting at the client
is that ap disjoining from  wlc at the time of issue
ASKER
Katrach0

What type of authentication for users ?
Answer: WPA2

Clients don't see an error, they just lose connection.

the AP doesn't disjoin from WLC.
Get an unlimited membership to EE for less than $4 a week.
Unlimited question asking, solutions, articles and more.
Craig Beck

When trying to address bandwidth issues, I'd look at the QoS config if it's applied to a port.

However, the config for the port where the WLC connects is a bit iffy.  Change it to this...

interface GigabitEthernet0/47
 switchport trunk encapsulation dot1q
 switchport trunk native vlan 10
 switchport mode trunk


Also note you shouldn't use BPDU Guard on this port.

Unless you're using FlexConnect (or H-REAP as it was formerly called), you should configure ports where APs connect as access ports not trunk ports.  They transport all traffic to the WLC via CAPWAP, then the traffic is placed on the correct VLAN at the WLC.  So, where APs connect you should just have this...

interface GigabitEthernet1/0/46
 description Cisco WAP
 switchport access vlan 10
 switchport mode access
 spanning-tree portfast
 spanning-tree bpduguard enable
ASKER
Katrach0

Craig,

I made the changes you said and I got this.

%Portfast has been configured on GigabitEthernet1/0/44 but will only
 have effect when the interface is in a non-trunking mode.
4ThFlr-2960S(config-if)# spanning-tree bpduguard enable
4ThFlr-2960S(config-if)#
4ThFlr-2960S(config-if)#interface GigabitEthernet1/0/45
4ThFlr-2960S(config-if)# description Cisco WAP
4ThFlr-2960S(config-if)# switchport access vlan 10
4ThFlr-2960S(config-if)# switchport mode access
4ThFlr-2960S(config-if)# spanning-tree portfast
%Warning: portfast should only be enabled on ports connected to a single
 host. Connecting hubs, concentrators, switches, bridges, etc... to this
 interface  when portfast is enabled, can cause temporary bridging loops.
 Use with CAUTION
Craig Beck

They're standard messages. Did performance improve?
I started with Experts Exchange in 2004 and it's been a mainstay of my professional computing life since. It helped me launch a career as a programmer / Oracle data analyst
William Peck
ASKER
Katrach0

Still users losing connection and when connected it takes a lot of time to open even the Google home page...
Craig Beck

Can you ping the WLC consistently from a wired host on the network?
ASKER
Katrach0

Yes, no ping issues to WLC.
Get an unlimited membership to EE for less than $4 a week.
Unlimited question asking, solutions, articles and more.
Craig Beck

Are you seeing any messages in the event log on the WLC which mention TX power?  If so can you post them?
ASKER CERTIFIED SOLUTION
Katrach0

Log in or sign up to see answer
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform
Sign up - Free for 7 days
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
See how we're fighting big data
Not exactly the question you had in mind?
Sign up for an EE membership and get your own personalized solution. With an EE membership, you can ask unlimited troubleshooting, research, or opinion questions.
ask a question
Craig Beck

You didn't say these default options were turned off!

DCA and TPC are turned on by default and shouldn't really be turned off.
ASKER
Katrach0

I had this issue going on and on, after these changes were made, wireless started working as it should. A wireless engineer ended up doing this.
Your help has saved me hundreds of hours of internet surfing.
fblack61