Link to home
Start Free TrialLog in
Avatar of Lizandro Diaz
Lizandro DiazFlag for United States of America

asked on

Wireless Controller 2504 issues

Hello Cisco Pros.

Have an issue that has taken a lot of my time trying to figure out a solution.

We have a Cisco  Wireless 2504 directly connected to a 3560E on port 47 and port 47, has the following command:

interface GigabitEthernet0/47
 switchport access vlan 10
 switchport trunk encapsulation dot1q
 switchport trunk native vlan 10
 switchport mode trunk
 switchport nonegotiate
 srr-queue bandwidth share 10 10 60 20
 queue-set 2
 priority-queue out
 mls qos trust cos
 auto qos voip trust
 macro description cisco-wireless
 spanning-tree bpduguard enable

We have 12 APs AIR-LAP1041N-A-K9 .

on 2nd, 3rd and 4th Floor there's a switch on each floor, same configuration.

there are 3 APs on 2nd floor, so the same for the 3rd and 4th.

Here's the configuration for ports where APs are connected to the aboved mentioned switches.

interface GigabitEthernet1/0/43
 description Cisco WAP
 switchport access vlan 10
 switchport trunk native vlan 10
 switchport mode trunk
 switchport nonegotiate
 switchport voice vlan 100
 srr-queue bandwidth share 1 30 35 5
 priority-queue out
 mls qos trust cos
 macro description cisco-wireless | cisco-wireless | cisco-wireless | cisco-wireless | cisco-wireless
 auto qos trust
 spanning-tree portfast
 spanning-tree bpduguard enable
!
interface GigabitEthernet1/0/44
 description Cisco WAP
 switchport access vlan 10
 switchport trunk native vlan 10
 switchport mode trunk
 switchport nonegotiate
 switchport voice vlan 100
 srr-queue bandwidth share 1 30 35 5
 priority-queue out
 mls qos trust cos
 macro description cisco-wireless | cisco-wireless | cisco-wireless | cisco-wireless
 auto qos trust
 spanning-tree portfast
 spanning-tree bpduguard enable
!
interface GigabitEthernet1/0/45
 description Cisco WAP
 switchport access vlan 10
 switchport trunk native vlan 10
 switchport mode trunk
 switchport nonegotiate
 switchport voice vlan 100
 srr-queue bandwidth share 1 30 35 5
 priority-queue out
 mls qos trust cos
 macro description cisco-wireless | cisco-wireless | cisco-wireless | cisco-wireless
 auto qos trust
 spanning-tree portfast
 spanning-tree bpduguard enable
!
interface GigabitEthernet1/0/46
 description Cisco WAP
 switchport access vlan 10
 switchport trunk native vlan 10
 switchport mode trunk
 switchport nonegotiate
 switchport voice vlan 100
 srr-queue bandwidth share 1 30 35 5
 priority-queue out
 mls qos trust cos
 macro description cisco-wireless | cisco-wireless | cisco-wireless | cisco-wireless
 auto qos trust
 spanning-tree portfast
 spanning-tree bpduguard enable

Users keep losing connection, also it takes 2 hours to download 45MBs, definitely something is going on.

Do you have any suggestions?

regards and thanks in advance.
Avatar of Ryan Lanham
Ryan Lanham
Flag of United States of America image

What are you basing your speed tests on? A local file download / upload? Or a download via your Internet gateway?
Avatar of Lizandro Diaz

ASKER

In doing computer updates and downloading files from the internet.
Avatar of anoopkmr
kindly remove the  below configurations from AP connected ports . and try

 switchport trunk native vlan 10
 switchport mode trunk
  switchport voice vlan 100
 spanning-tree bpduguard enable

also for testing remove the below commands from all interface as well
srr-queue bandwidth share 1 30 35 5
 priority-queue out
Made those changes, still the same. ( did those changes like 15 mins ago)
What type of authentication for users ?
what is the error getting at the client
is that ap disjoining from  wlc at the time of issue
What type of authentication for users ?
Answer: WPA2

Clients don't see an error, they just lose connection.

the AP doesn't disjoin from WLC.
When trying to address bandwidth issues, I'd look at the QoS config if it's applied to a port.

However, the config for the port where the WLC connects is a bit iffy.  Change it to this...

interface GigabitEthernet0/47
 switchport trunk encapsulation dot1q
 switchport trunk native vlan 10
 switchport mode trunk


Also note you shouldn't use BPDU Guard on this port.

Unless you're using FlexConnect (or H-REAP as it was formerly called), you should configure ports where APs connect as access ports not trunk ports.  They transport all traffic to the WLC via CAPWAP, then the traffic is placed on the correct VLAN at the WLC.  So, where APs connect you should just have this...

interface GigabitEthernet1/0/46
 description Cisco WAP
 switchport access vlan 10
 switchport mode access
 spanning-tree portfast
 spanning-tree bpduguard enable
Craig,

I made the changes you said and I got this.

%Portfast has been configured on GigabitEthernet1/0/44 but will only
 have effect when the interface is in a non-trunking mode.
4ThFlr-2960S(config-if)# spanning-tree bpduguard enable
4ThFlr-2960S(config-if)#
4ThFlr-2960S(config-if)#interface GigabitEthernet1/0/45
4ThFlr-2960S(config-if)# description Cisco WAP
4ThFlr-2960S(config-if)# switchport access vlan 10
4ThFlr-2960S(config-if)# switchport mode access
4ThFlr-2960S(config-if)# spanning-tree portfast
%Warning: portfast should only be enabled on ports connected to a single
 host. Connecting hubs, concentrators, switches, bridges, etc... to this
 interface  when portfast is enabled, can cause temporary bridging loops.
 Use with CAUTION
They're standard messages. Did performance improve?
Still users losing connection and when connected it takes a lot of time to open even the Google home page...
Can you ping the WLC consistently from a wired host on the network?
Yes, no ping issues to WLC.
Are you seeing any messages in the event log on the WLC which mention TX power?  If so can you post them?
ASKER CERTIFIED SOLUTION
Avatar of Lizandro Diaz
Lizandro Diaz
Flag of United States of America image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
You didn't say these default options were turned off!

DCA and TPC are turned on by default and shouldn't really be turned off.
I had this issue going on and on, after these changes were made, wireless started working as it should. A wireless engineer ended up doing this.