Solved

Cisco WLC 2500 - 7.5.102 Firmware - Clients issue

Posted on 2013-11-11
33
1,155 Views
Last Modified: 2014-01-16
We have a WLC 2500 set up.  We have 11 Access points on it.

Most access points are 1130 and 1140.  We just recently received a 1602i.

I have it set up exactly like all the other AP's, but for some reason just this AP continues to drop clients and then the clients add themselves back.

There isnt a whole lot to go on the logs.  Does anyone have any idea what to try?
0
Comment
Question by:considerscs
  • 18
  • 14
33 Comments
 
LVL 1

Author Comment

by:considerscs
ID: 39639705
To add to this, we also have an unprotected Wifi for a test, and there are no issues with clients dropping on the unprotected wifi.  Just the production wifi for our protected network.
0
 
LVL 1

Author Comment

by:considerscs
ID: 39639871
I have pinpointed the issue...When the AP has a static IP assigned to it, it is dropping clients.  With a DHCP assigned address it is stable.

Anyone know what may be causing this?  The static's I have used are all different and nothing else assigned to them obviously.  Everytime a static is assigned its the same thing though.
0
 
LVL 45

Accepted Solution

by:
Craig Beck earned 500 total points
ID: 39641392
Are you assigning a default gateway to the APs when they're static?
0
 
LVL 1

Author Comment

by:considerscs
ID: 39641578
Yes.  They have the default gateway and the correct subnet mask.  Only the 1600 Aironet is doing it.  None of the 1130 or 1140 aironets do this.
0
 
LVL 45

Assisted Solution

by:Craig Beck
Craig Beck earned 500 total points
ID: 39641591
I'd probably say go back to 7.4.110.0 then and see if that helps.

7.5 isn't AssureWave certified yet so there might be 'niggles', whereas 7.4.110.0 is.
0
 
LVL 1

Author Comment

by:considerscs
ID: 39641606
I went to 7.5.102 because it was also happening on 7.4.110.

I am thinking now that it is an issue with the 1600.  Since no others have this same symptom.

I don't really prefer seeing a DHCP WAP in my network as that can be very unpredictable.  But for now that may be my only option.
0
 
LVL 45

Assisted Solution

by:Craig Beck
Craig Beck earned 500 total points
ID: 39641613
I've not seen this issue on any 1600 APs I've deployed (literally hundreds) running 7.4.110.0.

Did you try 7.4.100.60?  That was a maintenance release based on 7.4.100.0.
0
 
LVL 1

Author Comment

by:considerscs
ID: 39642327
I did not.  I will have to create a TAC for that one.

You are using a good many of the 1600's and have no problems whatsoever when assigning them a static address?
0
 
LVL 45

Assisted Solution

by:Craig Beck
Craig Beck earned 500 total points
ID: 39642395
Yes.  I've commissioned a lot of 1600s, but admittedly probably 95% of those installations have used a 5508 or WiSM(2).

I've checked the release notes for the 7.4 and 7.5 code and I couldn't see anything obvious with 1600s specifically.
0
 
LVL 1

Author Comment

by:considerscs
ID: 39642418
I had looked at those also to try and find issues that stand out.  This is just very quirky.
0
 
LVL 45

Assisted Solution

by:Craig Beck
Craig Beck earned 500 total points
ID: 39642454
This might be a long shot, but can you factory reset the AP from the WLC and see if that helps?
0
 
LVL 1

Author Comment

by:considerscs
ID: 39642675
I have reset it to factory defaults before and even replaced it with another 1600.

Same thing happens with it.

I am going to put another 1600 in a different building and see if it has the same symptoms.
0
 
LVL 45

Assisted Solution

by:Craig Beck
Craig Beck earned 500 total points
ID: 39642676
Are you using them in Local or FlexConnect mode?
0
 
LVL 1

Author Comment

by:considerscs
ID: 39642690
Flex Connect.

Doing local switching.
0
 
LVL 45

Assisted Solution

by:Craig Beck
Craig Beck earned 500 total points
ID: 39642820
Local switching as in VLAN-aware at the local switch?

How is the AP learning the WLC IP?
0
 
LVL 1

Author Comment

by:considerscs
ID: 39642833
Yes. VLAN aware at the local switch.

I am using DHCP option 43 with the hex for the IP of the WLC.
0
How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

 
LVL 45

Assisted Solution

by:Craig Beck
Craig Beck earned 500 total points
ID: 39642855
Ok, can you try either:

1] Add a DNS record for the WLC?
2] Manually assign the WLC IP on the 1600 AP?

I know that the AP 'should' remember the WLC IP once it's joined the first time, so it shouldn't be an issue once you set a static IP on it, but I have seen APs forget the WLC IP in the past.  I'm just wondering if it's that?!
0
 
LVL 1

Author Comment

by:considerscs
ID: 39644651
I have looked at two configs - one working AP with a static IP and the trouble one.

I see under the interface for our vlan on the one that is working fully that the comman "no ip route-cache" is missing in the trouble AP.

I am not real sure that will cause this problem though.
0
 
LVL 1

Author Comment

by:considerscs
ID: 39644732
I also added the DNS IP address that you stated above.
0
 
LVL 1

Author Closing Comment

by:considerscs
ID: 39649522
All comments were helpful in troubleshooting such an odd issue.
0
 

Expert Comment

by:Infinite_IT
ID: 39725232
Hello,

I am also having the same issue with a 2504 and 3600 APs. Did you ever find a solution. I have a Case open with TAC but its going no where fast.

Our APs are all in flex connect mode in 3 locations. using code 7.5.102.0
0
 
LVL 1

Author Comment

by:considerscs
ID: 39783855
No I never did resolve the issue.  We never could get the AP to work correctly at this one location.
0
 
LVL 45

Expert Comment

by:Craig Beck
ID: 39783897
Out of interest, are you connecting to the WLC via NAT?
0
 
LVL 1

Author Comment

by:considerscs
ID: 39783927
We do use NAT in our network.
0
 
LVL 45

Expert Comment

by:Craig Beck
ID: 39783945
But do the remote APs link to the WLC via NAT?

So, at the remote site do the APs have to come over the internet to get to the WLC, which is behind a firewall, for example?
0
 
LVL 1

Author Comment

by:considerscs
ID: 39783955
Yes they do, but there are VPN tunnels between the two destinations.  So they arent actually going through the firewall.  Just tunnel endpoint to tunnel endpoint.
0
 
LVL 45

Expert Comment

by:Craig Beck
ID: 39784014
So there is no NAT between the AP and WLC then?
0
 
LVL 1

Author Comment

by:considerscs
ID: 39784018
No, no NAT between.
0
 
LVL 45

Expert Comment

by:Craig Beck
ID: 39784042
If you configure an open WLAN with no security do you see the issue?
0
 
LVL 1

Author Comment

by:considerscs
ID: 39785273
No we do not have this issue on the unprotected wifi.
0
 
LVL 45

Expert Comment

by:Craig Beck
ID: 39786331
So what authentication/encryption settings do you use on the affected SSID(s)?
0
 
LVL 1

Author Comment

by:considerscs
ID: 39786558
WPA with TKIP and WPA2 with AES
0
 
LVL 45

Expert Comment

by:Craig Beck
ID: 39786561
Can you try just one at a time?
0

Featured Post

Threat Intelligence Starter Resources

Integrating threat intelligence can be challenging, and not all companies are ready. These resources can help you build awareness and prepare for defense.

Join & Write a Comment

Suggested Solutions

With the purchase of CloudCommand by Comcast customers are left in a bind as subscriptions expire and render the AP's disabled. The following will explain how to flash your Ubiquiti AP's with CloudCommand firmware back to Ubiquiti firmware. HOWTO…
Working settings for French ISP Orange "Prêt à Surfer" SIM cards for data connections only. Can't be found anywhere else !
This Micro Tutorial will show you how to maximize your wireless card to its maximum capability. This will be demonstrated using Intel(R) Centrino(R) Wireless-N 2230 wireless card on Windows 8 operating system.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

26 Experts available now in Live!

Get 1:1 Help Now