Re: [WIRELESS-LAN] WLPC in Phoenix
I'd be interested as well. On Mon, 13 Feb 2017, Norman Elton wrote: Date: Mon, 13 Feb 2017 07:04:33 -0600 From: Norman Elton <normel...@gmail.com> Reply-To: The EDUCAUSE Wireless Issues Constituent Group Listserv <WIRELESS-LAN@listserv.educause.edu> To: WIRELESS-LAN@listserv.educause.edu Subject: [WIRELESS-LAN] WLPC in Phoenix Last year, a number of higher-ed folks got together at the Wireless LAN Professional Conference for dinner and a productive story-swap. If you're going this year (highly recommend!) and want to do the same, let me know and we'll see if we can't put something together. Hope to see you there! Norman Elton William & Mary ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/discuss. -- Todd M. Hall Sr. Network Analyst Information Technology Services Mississippi State University t...@msstate.edu 662-325-9311 (phone) ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/discuss.
Do you have POE everywhere?
Do you have POE in every location or are there some small locations that still use injectors? If you have some injectors left, I have a few questions. 1. How reliable are they? 2. Are your injectors made by your wireless vendor? 3. Do you have a way to monitor how often your APs reboot? The reason I'm asking is that I just discovered that we have some APs that are rebooting frequently and they are all in locations that still have injectors. I expanded some home-grown code and started graphing AP uptime as well as lwapp/capwap uptime. (Found issues with lwapp/capwap uptime in a few locations as well) -- Todd M. Hall Sr. Network Analyst Information Technology Services Mississippi State University t...@msstate.edu 662-325-9311 (phone) ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
802.11b data rates disabled?
Do you have all of the 802.11b data rates disabled? If so, how long have they been disabled? Did you have many complaints when you disabled them? Were there any particular devices that could not connect as a result? I'm hoping this information will help us move towards disabling these old rates. Thank you for your feedback. -- Todd M. Hall Sr. Network Analyst Information Technology Services Mississippi State University t...@msstate.edu 662-325-9311 (phone) ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
Re: [WIRELESS-LAN] Who WiFi vendors does everyone use? REVISITED
As this grows in scope, perhaps someone can setup a detailed survey. Mississippi State University 26,000 clients Cisco 2,000 APs Controller based (8.0, WiSM 2 blades, N+1 HA) Cisco Prime 3.0 + home grown apps Guest access handled by home grown tools On Fri, 1 Apr 2016, Watters, John wrote: Date: Fri, 1 Apr 2016 09:05:35 -0500 From: "Watters, John" <john.watt...@ua.edu> Reply-To: The EDUCAUSE Wireless Issues Constituent Group Listserv <WIRELESS-LAN@listserv.educause.edu> To: WIRELESS-LAN@listserv.educause.edu Subject: [WIRELESS-LAN] Who WiFi vendors does everyone use?REVISITED Can we revisit this subject? It seems to have gotten a good number of responses but the information is of limited use without other information to go with it. If folks will send me information on their wireless networks I will tabulate it and send it back out to the list. How about the following info: School name Total number of clients served (faculty + staff + students + guess at guests) during a typical school day Brand(s) of APs in use and approximate number of APs for each brand Whether the APs are standalone or controller based Wireless management platform (e.g., Cisco Prime, HP Aruba Airwave, none, etc.) For the University of Alabama I would answer as follows: The University of Alabama 45,000 clients Cisco 5,000 APs Controller based HP Aruba Airwave management If others want to suggest additional questions, that is fine as long as we can get them soon enough so that most people who respond will have answers to all of the questions. Why don't we collect questions until next WED and try to get the poll sent out next THU? -jcw [UA Logo] John Watters The University of Alabama Office of Information Technology 205-348-3992 ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. -- Todd M. Hall Sr. Network Analyst Information Technology Services Mississippi State University t...@msstate.edu 662-325-9311 (phone) ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
Re: [WIRELESS-LAN] Who wifi vendors does everyone use?
Mississippi State is Cisco with 2k APs. On Thu, 31 Mar 2016, Brian L. Cox wrote: Date: Thu, 31 Mar 2016 15:17:10 -0500 From: Brian L. Cox <cox...@unk.edu> Reply-To: The EDUCAUSE Wireless Issues Constituent Group Listserv <WIRELESS-LAN@listserv.educause.edu> To: WIRELESS-LAN@listserv.educause.edu Subject: Re: [WIRELESS-LAN] Who wifi vendors does everyone use? We are identical to Suffolk University ?.just under 1000 Aruba AP?s, ClearPass, Airwave and Extreme/Enterasys for wired. __ Brian L Cox Information Technology Services Director of Networking & IT infrastructure University of Nebraska Kearney (308)865-8176 From: The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Jeremy Gibbs Sent: Thursday, March 31, 2016 2:01 PM To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: Re: [WIRELESS-LAN] Who wifi vendors does everyone use? I am sort of surprised at the low number of people using Extreme Networks. Then again, maybe I shouldn't be. -- Jeremy L. Gibbs Sr. Network Engineer Utica College IITS On Thu, Mar 31, 2016 at 12:55 PM, Norman Mourtada <nmourt...@suffolk.edu<mailto:nmourt...@suffolk.edu>> wrote: We are all Aruba for wireless just under a 1000 APs, with Clearpass and Airwave and Extreme/Enterasys for wired. Norm Mourtada Suffolk University Boston, MA 02108 From: The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>] On Behalf Of Watters, John Sent: Thursday, March 31, 2016 12:44 PM To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU<mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU> Subject: Re: [WIRELESS-LAN] Who wifi vendors does everyone use? Cisco -- just under 6K APs right now. -jcw [UA Logo] John Watters The University of Alabama Office of Information Technology 205-348-3992 ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. -- Todd M. Hall Sr. Network Analyst Information Technology Services Mississippi State University t...@msstate.edu 662-325-9311 (phone) ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
Re: [WIRELESS-LAN] Wireless LAN Professionals Conference in Phoenix
I'll be attending WLPC only. I'd be interested in a get-together as well. On Wed, 17 Feb 2016, Norman Elton wrote: Date: Wed, 17 Feb 2016 21:27:23 -0600 From: Norman Elton <normel...@gmail.com> Reply-To: The EDUCAUSE Wireless Issues Constituent Group Listserv <WIRELESS-LAN@listserv.educause.edu> To: WIRELESS-LAN@listserv.educause.edu Subject: [WIRELESS-LAN] Wireless LAN Professionals Conference in Phoenix Anyone going to the WLPC in Phoenix this year? http://wlanpros.com/WLPC2016 I'd be happy to line up a higher ed get-together if anyone else is going. Norman Elton College of William & Mary ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. -- Todd M. Hall Sr. Network Analyst Information Technology Services Mississippi State University t...@msstate.edu 662-325-9311 (phone) ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
Re: [WIRELESS-LAN] Wireless NAT Tools for tracking DMCA reports
We have a similar configuration for our wireless and took a different approach. We developed our own tools to store the data in a database and have a simple php query page for searching (it also queries our dhcp data to narrow it down to a mac address). If you have questions you can contact me off list. On Wed, 2 Oct 2013, Baily,Scott wrote: Date: Wed, 02 Oct 2013 17:33:32 + From: Baily,Scott scott.ba...@colostate.edu Reply-To: The EDUCAUSE Wireless Issues Constituent Group Listserv WIRELESS-LAN@listserv.educause.edu To: WIRELESS-LAN@listserv.educause.edu Subject: [WIRELESS-LAN] Wireless NAT Tools for tracking DMCA reports Greetings, We have a large wireless network that uses private IP addresses, and wireless VLANs are currently homed on a Cisco 6500. Off-site traffic is NAT'd by a Cisco ASA5525X with a public IP pool of 128 addresses. Log files (generated via informational logging level) show public IP/port. These ports are re-used every few seconds, however, making it very difficult (nearly impossible at times) to map a DMCA report to a specific private IP address, and ultimately an individual user. Has anyone developed tools to automate this particularly onerous task? Other approaches that are working on your campus that we should consider? Many thanks in advance, Scott Scott Baily Director Academic Computing Networking Services Colorado State University Ft. Collins, CO.80523-1018 Phone: (970) 491-7655 FAX: (970) 491-1958 ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. -- Todd M. Hall Sr. Network Analyst Information Technology Services Mississippi State University t...@msstate.edu 662-325-9311 (phone) ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
Re: [WIRELESS-LAN] Bandwidth utilization and IOS7 upgrade
Our wireless traffic jumped up to 5 times what it was before the update. On Wed, 18 Sep 2013, Eric T. Barnett wrote: Date: Wed, 18 Sep 2013 13:29:55 -0500 From: Eric T. Barnett ebarn...@astate.edu Reply-To: The EDUCAUSE Wireless Issues Constituent Group Listserv WIRELESS-LAN@listserv.educause.edu To: WIRELESS-LAN@listserv.educause.edu Subject: [WIRELESS-LAN] Bandwidth utilization and IOS7 upgrade So has anyone else seen a HUGE spike in wireless traffic with the IOS7 update? Our wireless had a dramatic shift at exactly 11:55AM CDT that's still going strong. Regards, Eric Barnett Senior Network Engineer/Wireless Administrator Information and Technology Services Arkansas State University (870) 680-4243 http://wireless.astate.edu ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. -- Todd M. Hall Sr. Network Analyst Information Technology Services Mississippi State University t...@msstate.edu 662-325-9311 (phone) ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
Disabling 802.11b speeds
This has been discussed in the past, but it has been a long time. We're at the point that we have to turn off the lower connection rates on our campus. I'm curious what other schools have done and the positive/negative results from the changes. We have disabled 1, 2, 5.5, and 11 Mbps in some of our buildings with great success, but some might argue to just eliminate 1 2 Mbps rates. Also, I'd be interested to hear from schools that have not disabled these rates and why not. -- Todd M. Hall Sr. Network Analyst Information Technology Services Mississippi State University t...@msstate.edu ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
Re: [WIRELESS-LAN] Stolen Wireless Device Tracking?
We are using some home grown scripts that notify by sending text messages or emails whenever a device shows up on the network. All open source and notifications are usually within seconds of the device showing up. We get the location information from Cisco WCS. This is also scalable to include multiple campuses/schools. If anyone wants details of how we are doing this, just let me know. On Tue, 8 Dec 2009, Lee H Badman wrote: Date: Tue, 08 Dec 2009 11:58:25 -0500 From: Lee H Badman lhbad...@syr.edu Reply-To: The EDUCAUSE Wireless Issues Constituent Group Listserv WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: [WIRELESS-LAN] Stolen Wireless Device Tracking? Unfortunately, we experience the occasional theft of University-owned or personal laptops. Using Cisco WCS, we can certainly find the last place a device was, if the wireless adapter was on, before it egressed campus. What is missing is a mechanism to flag a MAC address to alert on a client device if it pops back up on the network so there may be an opportunity to react. Has anyone else faced and conquered alerting on specific clients (for whatever reason)? Thanks- Lee Lee H. Badman Wireless/Network Engineer Information Technology and Services Adjunct Instructor, iSchool Syracuse University 315 443-3003 ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. -- Todd M. Hall Sr. Network Analyst Information Technology Services Mississippi State University t...@msstate.edu 662-325-9311 (phone) ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
Re: [WIRELESS-LAN] Stolen Wireless Device Tracking?
We maintain a mysql database of the mac addresses of stolen devices. We use this to generate a dns config file and use it like a DNS RBL. We use ISC's dhcpd and send the logs to a central log server (syslog-ng). We use SEC to monitor syslog entries in realtime. One of the rules in SEC gets the mac address of every dhcpd query and does a dns query. If it is successful, notification is sent to our security officer as well as me. We then use WCS to find the exact location. We have recovered quite a few notebooks this way. The problem is that most stolen devices are taken off campus and sold on ebay or other online sites. What I would love to see is a central mysql database containing the mac addresses of stolen notebooks from lots of schools. All participating schools could then scan for all the stolen notebooks, not just their own. I think this would lead to a much higher recovery rate for all of us. There are probably legal issues with this concept, but it has potential. On Wed, 9 Dec 2009, Lee H Badman wrote: Date: Wed, 09 Dec 2009 17:49:55 -0500 From: Lee H Badman lhbad...@syr.edu Reply-To: The EDUCAUSE Wireless Issues Constituent Group Listserv WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: Re: [WIRELESS-LAN] Stolen Wireless Device Tracking? Hi Todd- I'd be curious to see what you have come up with- thanks. -Lee From: The EDUCAUSE Wireless Issues Constituent Group Listserv [wireless-...@listserv.educause.edu] On Behalf Of Todd M. Hall [t...@msstate.edu] Sent: Wednesday, December 09, 2009 5:44 PM To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: Re: [WIRELESS-LAN] Stolen Wireless Device Tracking? We are using some home grown scripts that notify by sending text messages or emails whenever a device shows up on the network. All open source and notifications are usually within seconds of the device showing up. We get the location information from Cisco WCS. This is also scalable to include multiple campuses/schools. If anyone wants details of how we are doing this, just let me know. On Tue, 8 Dec 2009, Lee H Badman wrote: Date: Tue, 08 Dec 2009 11:58:25 -0500 From: Lee H Badman lhbad...@syr.edu Reply-To: The EDUCAUSE Wireless Issues Constituent Group Listserv WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: [WIRELESS-LAN] Stolen Wireless Device Tracking? Unfortunately, we experience the occasional theft of University-owned or personal laptops. Using Cisco WCS, we can certainly find the last place a device was, if the wireless adapter was on, before it egressed campus. What is missing is a mechanism to flag a MAC address to alert on a client device if it pops back up on the network so there may be an opportunity to react. Has anyone else faced and conquered alerting on specific clients (for whatever reason)? Thanks- Lee Lee H. Badman Wireless/Network Engineer Information Technology and Services Adjunct Instructor, iSchool Syracuse University 315 443-3003 ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. -- Todd M. Hall Sr. Network Analyst Information Technology Services Mississippi State University t...@msstate.edu 662-325-9311 (phone) ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. -- Todd M. Hall Sr. Network Analyst Information Technology Services Mississippi State University t...@msstate.edu 662-325-9311 (phone) ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
Re: [WIRELESS-LAN] iPhone / iPod Touch having trouble accessing App store via wifi
I should add, these users don't have any problems connecting to the app store from off campus. On Tue, 24 Feb 2009, Todd M. Hall wrote: Date: Tue, 24 Feb 2009 09:56:26 -0600 From: Todd M. Hall t...@msstate.edu Reply-To: The EDUCAUSE Wireless Issues Constituent Group Listserv WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: [WIRELESS-LAN] iPhone / iPod Touch having trouble accessing App store via wifi We recently started receiving reports from iPod Touch and iPhone users stating that they are having trouble accessing the App store using our wireless networks. I verified the problem and found that devices can reach the app store some of the time, but not reliably. It appears to be on our entire wireless network (doesn't matter which controller / AP / WLAN they are connected to). Our wireless network consists of Cisco WiSM based controllers running 4.2.61 code. Has anyone else experienced this problem? If so, have you found a solution? -- Todd M. Hall Sr. Network Analyst Information Technology Services Mississippi State University t...@msstate.edu 662-325-9311 (phone) ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
Re: [WIRELESS-LAN] Cisco WiSM
Not sure what you mean by the prolong crash, but when we were running 4.1.x and older code, we had random crashes, sometimes multiple controllers would crash at the same time. Turns out there was a bug in the ssh code on the controllers. Turned off ssh and no more problems (controllers were in a private network, so this wasn't a problem for us). We are currently running 4.2.61 which has been very stable. On Wed, 3 Dec 2008, Leo Song wrote: Date: Wed, 03 Dec 2008 23:32:27 -0500 From: Leo Song [EMAIL PROTECTED] Reply-To: The EDUCAUSE Wireless Issues Constituent Group Listserv WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: [WIRELESS-LAN] Cisco WiSM Hi, folks. Which WiSM code are you running, 4.1.185 (we are), 4.2.173 or 4.2.130, etc, etc? we've been suffering the prolong crash bug, the response from Cisco is not promising, thanks. Leo Song, Cluster Lead - Networking and Security (519) 824-4120 x 53181 CCS, University of Guelph ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. -- Todd M. Hall Sr. Network Analyst Information Technology Infrastructure Mississippi State University [EMAIL PROTECTED] 662-325-9311 (phone) ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
Re: [WIRELESS-LAN] Wireless coverage for bus riders
PROTECTED] wrote: Hi John- Actually some busses have gone the route you describe. Here's one in San Francisco: http://thecityfix.com/the-wireless-on-the-bus-makes-the-wheels-go-round- and-round/ and a bus line in Singapore does it as well, for examples. But back to my notion of outside-in coverage... If you think about the classic activity of war-driving, you're typically trying to find wireless networks from within a vehicle, which is largely a rolling Faraday cage- just like a bus. I have external antennas, but rarely bother with them during my often very successful, shall we say, explorations in this area. So perhaps another somewhat simplistic way of looking at the idea of outside-in coverage for rolling busses is that you're setting up a really good war-driving target for passengers (as casual users) to be able to find and use. Seems like even a less-than-optimal WiFi corridor along a 30 MPH or less bus route *may* provide throughputs as good as a cellular-based access point that's at one end of a bus full of signal-attenuating people. Maybe. Not really trying to prove a point- just free wheelin' here:) -Lee Lee H. Badman Wireless/Network Engineer Information Technology and Services Syracuse University 315 443-3003 -Original Message- From: The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:[EMAIL PROTECTED] On Behalf Of Jonn Martell Sent: Wednesday, November 19, 2008 7:01 PM To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: Re: [WIRELESS-LAN] Wireless coverage for bus riders Hi Lee, I would not even dare to do it with WLAN if the plan is to get connectivity to a moving bus from outside the bus. If the goal is to get users connectivity in a non-moving bus, not sure how significant that would be for users (how long do buses stay stationary?). To make it of real use, I would use licensed stuff (3G and 4G) to the moving bus and have an AP inside the bus for end-user connectivity. Not sure why the transportation and transit systems haven't gone that route (no pun intended!). ... Jonn Martell, [EMAIL PROTECTED] www.martell.ca On Wed, Nov 19, 2008 at 12:26 PM, Lee H Badman [EMAIL PROTECTED] wrote: In the name of what if, wondering if any school has installed infrastructure specifically intended to provide WLAN to bus riders on campus? I'm talking strictly outside-in coverage, no radio magic on the bus itself. If so, how's it working for you and just as important, do you get the sense that anyone appreciates it? Regards- Lee Lee H. Badman Wireless/Network Engineer Information Technology and Services Syracuse University 315 443-3003 ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. -- Todd M. Hall Sr. Network Analyst Information Technology Infrastructure Mississippi State University [EMAIL PROTECTED] 662-325-9311 (phone) ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
Re: [WIRELESS-LAN] Cisco Wireless Controller
: %LINK-3-UPDOWN: Interface Dot11Radio0, changed state to up 10-08-2008 18:07:33Local7.Error172.20.42.198 17324: AP:0016.465a.884c: %LINK-3-UPDOWN: Interface Dot11Radio0, changed state to down 10-08-2008 18:00:20Local7.Error132.183.112.28 16236: AP:0015.fa05.a54e: %LINK-3-UPDOWN: Interface Dot11Radio0, changed state to up 10-08-2008 18:00:19Local7.Error132.183.112.28 16235: AP:0015.fa05.a54e: %LINK-3-UPDOWN: Interface Dot11Radio0, changed state to down 10-08-2008 18:00:14Local7.Error132.183.112.28 16234: AP:0015.fa05.a54e: %LINK-3-UPDOWN: Interface Dot11Radio0, changed state to up 10-08-2008 18:00:13Local7.Error132.183.112.28 16233: AP:0015.fa05.a54e: %LINK-3-UPDOWN: Interface Dot11Radio0, changed state to down -Original Message- From: The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:[EMAIL PROTECTED] On Behalf Of Todd Lane Sent: Wednesday, October 08, 2008 6:24 PM To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: Re: [WIRELESS-LAN] Cisco Wireless Controller We've been running a Engineering Special version of 4.2.130.0 since August and it's been stable so far. We had several problems with 4.2.185.0 including controller reboots and lockups. The general release version of 4.2.130.0 fixed all the major problems we were seeing except two and the engineering special took care of those. We're just starting to get reports from clients with random disconnects. --Todd Mike King wrote: So Cisco LWAPP people, Currently we're on 4.1.185.0 http://4.1.185.0. It's a 4402 controller, with 1131AG access points. Anyone made the leap to one of the 4.2, 5.0 , or 5.1 trains without seriously regretting it? We've had some random disconnects with clients. It's pretty common, happening to most all users. We're running WPA-PSK, so it's not an 802.1x issue. Before we involve TAC, we figured we should upgrade to a new code train. Mike ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. The information transmitted in this electronic communication is intended only for the person or entity to whom it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of or taking of any action in reliance upon this information by persons or entities other than the intended recipient is prohibited. If you received this information in error, please contact the Compliance HelpLine at 800-856-1983 and properly dispose of this information. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. -- Todd M. Hall Sr. Network Analyst Information Technology Infrastructure Mississippi State University [EMAIL PROTECTED] 662-325-9311 (phone) ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
Re: [WIRELESS-LAN] Cisco Wireless Controller
It depends where you look. WCS has Symmetric Tunneling, the controller documentation says Symmetric Mobility Tunneling. I guess that's what stuck in my head when I read it. On Thu, 9 Oct 2008, Legge, Jeffry wrote: Date: Thu, 09 Oct 2008 10:23:57 -0400 From: Legge, Jeffry [EMAIL PROTECTED] Reply-To: The EDUCAUSE Wireless Issues Constituent Group Listserv WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: Re: [WIRELESS-LAN] Cisco Wireless Controller I had to do the sameI believe the correct term is symmetric tunneling picky, picky, picky :) -Original Message- From: The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:[EMAIL PROTECTED] On Behalf Of Todd M. Hall Sent: Thursday, October 09, 2008 9:06 AM To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: Re: [WIRELESS-LAN] Cisco Wireless Controller This is probably unrelated, but here goes. We are running 4.2.61.0 on all our WiSMs and they have been very stable as long as ssh is disabled. We were getting reports of clients that were connected and working one minute and connected and not working the next. We traced the problem down to a failed roam. If we looked the user up in WCS, they would exist on two different controllers at the same time with a protocol of mobile on one of them. The only way we could get them working again was for them to disconnect, wait for 5 minutes and try again (or we could kick both connections off manually). We did some searching and found that lots of users were in this same state at any given time. We enabled symmetric mobility on all our controllers. This solved the problem. Now when a client roams to an AP on a different controller, a tunnel is setup between the anchor controller and the new controller. Roaming is fast and simple. On Wed, 8 Oct 2008, Johnson, Bruce T wrote: Date: Wed, 08 Oct 2008 18:43:15 -0400 From: Johnson, Bruce T [EMAIL PROTECTED] Reply-To: The EDUCAUSE Wireless Issues Constituent Group Listserv WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: Re: [WIRELESS-LAN] Cisco Wireless Controller Bear in mind the controllers are designed to remove associations (and save resources) if there hasn't been any traffic seen from the clients. The User Idle Timeout is responsible for this behavior. You can increase this value from its default of 300s to a higher value. This will keep the (inactive) association active longer. I'm trying to find out from Cisco whether this will preserve L3 roaming for mobile devices that don't issue DHCP renewals effectively. Note this can increase memory utilization and will adversely impact location-by-association. BTW, here's an example of the radio reset syslog messages I'm seeing from the APs. Looks like it might be related to another control-plane management function like the aforementioned TSM. Only the b/g radios are affected. 10-08-2008 18:28:46Local7.Error172.20.42.198 17333: AP:0016.465a.884c: %LINK-3-UPDOWN: Interface Dot11Radio0, changed state to up 10-08-2008 18:28:45Local7.Error172.20.42.198 17332: AP:0016.465a.884c: %LINK-3-UPDOWN: Interface Dot11Radio0, changed state to down 10-08-2008 18:28:40Local7.Error172.20.42.198 17331: AP:0016.465a.884c: %LINK-3-UPDOWN: Interface Dot11Radio0, changed state to up 10-08-2008 18:28:40Local7.Error172.20.42.198 17330: AP:0016.465a.884c: %SYS-3-MGDTIMER: Running timer, init, timer = A0786C. -Process= LWAPP 802.11 MAC Management Reception, ipl= 0, pid= 37 -Traceback= 0x5DCB8 0x15F194 0x15F300 0x15F490 0x46F17C 0x46D0E0 0x46D4C4 0x46D5BC 0x193F50 10-08-2008 18:28:39Local7.Error172.20.42.198 17329: AP:0016.465a.884c: %LINK-3-UPDOWN: Interface Dot11Radio0, changed state to down 10-08-2008 18:12:20Local7.Error132.183.112.28 16239: AP:0015.fa05.a54e: %LINK-3-UPDOWN: Interface Dot11Radio0, changed state to up 10-08-2008 18:12:19Local7.Error132.183.112.28 16238: AP:0015.fa05.a54e: %LINK-3-UPDOWN: Interface Dot11Radio0, changed state to down 10-08-2008 18:12:14Local7.Error132.183.112.28 16237: AP:0015.fa05.a54e: %LINK-3-UPDOWN: Interface Dot11Radio0, changed state to up 10-08-2008 18:10:42Local7.Error172.20.42.143 101: AP:001e.be27.017e: %LINK-3-UPDOWN: Interface Dot11Radio0, changed state to up 10-08-2008 18:10:42Local7.Error172.20.42.143 100: AP:001e.be27.017e: %SYS-3-MGDTIMER: Running timer, init, timer = D382B4. -Process= LWAPP 802.11 MAC Management Reception, ipl= 0, pid= 42 -Traceback= 0x5DCB8 0x161FBC 0x162128 0x1622B8 0x4C32FC 0x4C1260 0x4C1644 0x4C173C 0x196D90 10-08-2008 18:10:41Local7.Error172.20.42.143 99: AP:001e.be27.017e: %LINK-3-UPDOWN: Interface Dot11Radio0, changed state to down 10-08-2008 18:10:36Local7.Error172.20.42.143 98: AP
Re: [WIRELESS-LAN] OK to upgrade to 4.2 for Cisco Wism/WLC code?
We are running 4.2.61 on four WiSM blades with a little over 800 APs and have not had any problems (upgraded in early January). There are some potential issues with Mesh APs so read the documentation carefully before you upgrade. One note: we had an issue with the controllers crashing early on, this was solved by disabling ssh to the controllers. If your controllers are on a public network, this might be an issue. One nice addition to WCS is the ability to monitor and upgrade autonomous APs from within WCS. It works well as long as your APs have a new enough version of IOS. On Fri, 14 Mar 2008, Bob Richman wrote: Date: Fri, 14 Mar 2008 08:12:35 -0400 From: Bob Richman [EMAIL PROTECTED] Reply-To: The EDUCAUSE Wireless Issues Constituent Group Listserv WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: [WIRELESS-LAN] OK to upgrade to 4.2 for Cisco Wism/WLC code? We are looking at some of the features new with 4.2.61.0. I have read on this list that some folks were having trouble with some of the 4.2.x.x versions. Are there institutions out there that are running one of the 4.2.61 or higher code that are satisfied with it? Just a little background, we have 6 Wism Blades with 600+ APs currently running LWAPP and are in the process of moving the remaining 650 IOS APs to it. Oh, and WCS 4.2 is what we are running. Thanks! -- Todd M. Hall Sr. Network Analyst Information Technology Infrastructure Mississippi State University [EMAIL PROTECTED] 662-325-9311 (phone) ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
Re: [WIRELESS-LAN] Cisco Wisms CPU
.1.3.6.1.4.1.14179.1.1.5.1 or enterprises.airespace.bsnSwitching.agentInfoGroup.agentResourceInfoGroup.agentCurrentCPUUtilization On Wed, 13 Feb 2008, Howd, Walt wrote: Date: Wed, 13 Feb 2008 15:50:47 -0600 From: Howd, Walt [EMAIL PROTECTED] Reply-To: The EDUCAUSE Wireless Issues Constituent Group Listserv WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: Re: [WIRELESS-LAN] Cisco Wisms CPU On a somewhat related note, does anyone have the SNMP OIDs to monitor the CPU load on the WiSM? Walt Howd Network Systems Admin Information Technology Services Truman State University SunGard Higher Education Managed Services 100 East Normal Street Kirksville, MO 63501 [EMAIL PROTECTED] -Original Message- From: Lee H Badman [mailto:[EMAIL PROTECTED] Sent: Wednesday, February 13, 2008 3:38 PM To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: Re: [WIRELESS-LAN] Cisco Wisms CPU We have always run under 5% for the most part (occasional spikes that rarely approach 50%), with 12 WiSMs, 1600 APs and thousands and thousands of users on multiple WLANs. But- we keep ALL APs, WiSMs, WCS, and loc servers in a private management VLAN that is heavily protected. Not sure if this has a bearing. This has always been the case (low CPU), across multiple code versions. That being said- we have had just about every other problem associated with the WiSMs and or WCS that you can imagine. Has been challenging, to say the least. Lee H. Badman Wireless/Network Engineer Information Technology and Services Syracuse University 315 443-3003 -Original Message- From: James J J Hooper [mailto:[EMAIL PROTECTED] Sent: Wednesday, February 13, 2008 4:11 PM To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: [WIRELESS-LAN] Cisco Wisms CPU Hi All, A quick question for those out there with WISMs... What level of CPU usage are you experiencing (with how many users)? A bit of background... We have two wism blades (4 wisms) and since we purchased them in about april'07 they were running at about 35%, rising to 50% at peak times, with frequent spikes up to about 90%. The spikes were worrying, but the average seemed ok, and as they did this from day one I was under the impression this was the norm. Recently, we upgraded to the 4.2.x.y stream from 4.1. As has been covered in other recent posts, 4.2 has some outstanding issues (more than others anyway) and things became unstable... so we decided to go back to 4.1.85.0 (TAC hasn't provided us with any solutions for 4.2 issues). We had a backup of our previous 4.1 config, but I chose not to use it and start again from scratch (a few things had changed, so either way involved work) Since the reversion to 4.1.85.0, our cpu usage now averages 2% and peaks at 6% at peak times (220 waps, ~350 users). [4.1.85.0, 12.2(18)SXF7] Thanks, James -- James J J Hooper Network Specialist Information Services University of Bristol http://www.wireless.bristol.ac.uk -- ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. -- Todd M. Hall Sr. Network Analyst Information Technology Infrastructure Mississippi State University [EMAIL PROTECTED] 662-325-9311 (phone) ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
Re: [WIRELESS-LAN] 802.1x Supplicant (PEAP w/ MS-CHAPv2) Server Validation timing question
I had this on a Windows XP machine and found that after updating the wireless card drivers, the problem went away. I hope this helps. On Mon, 26 Mar 2007, Lee Badman wrote: Date: Mon, 26 Mar 2007 09:02:45 -0400 From: Lee Badman [EMAIL PROTECTED] Reply-To: 802.11 wireless issues listserv WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: [WIRELESS-LAN] 802.1x Supplicant (PEAP w/ MS-CHAPv2) Server Validation timing question Using the native Windows supplicant for 802.1x, Cisco ACS for RADIUS, and AD on the backend for our Cisco LWAPP 802.1x pilot work, I'm seeing very inconsistant behavior on first-time susccesful connections. Despite having properly installed Verisign certificates in the ACS boxes, some clients seem to get into what feels like a timing issue or a loop (for lack of a better description), where the click here to proceess login information baloon, which then pops up the Validate Server Certificate box appears to go into a rpeating loop that may take a few to dozens of attempts to finally get the server cert part to take... Has anyone seen and tackled this condition? Thanks- Lee Lee Badman Network/Wireless Engineer 315 443-3003 ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. -- Todd M. Hall Sr. Network Analyst Information Technology Infrastructure Mississippi State University [EMAIL PROTECTED] 662-325-0728 (phone) ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
Re: [WIRELESS-LAN] Debug Cisco LWAPP
Not sure how to tackle your entire problem, but you you prevent the timeouts by changing your session timeout time. From the CLI, issue the following command: config sessions timeout x x is the number of minutes [0-160], 0 = no timeout. On Wed, 3 Jan 2007, Lee Badman wrote: Date: Wed, 03 Jan 2007 19:40:44 -0500 From: Lee Badman [EMAIL PROTECTED] Reply-To: 802.11 wireless issues listserv WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: [WIRELESS-LAN] Debug Cisco LWAPP Am working with Aironet 1500 Mesh nodes, but have seen the same problem with converted legacy APs that don't play well with controllers for whatever reason. For troubleshooting, command line debug is required at the controllers. In my case, I have 16 controllers- and there's often no obvious rhyme or reason to what controller trouble APs will try to associate to. Cisco's current answer is to open 16 command line windows- 1 for each controller- and issue multiple debug commands in each while looking for signs of trouble. This can be challenging, as these windows time out for inactivity and the process has to be repeated until the trouble is found. WCS doesn't appear to aggregate this debug data... Has anyone else found a way of dealing with this debug process when it needs to be distibuted accross a large number of controllers? Lee Badman Network/Wireless Engineer Syracuse University 315 443-3003 ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. -- Todd M. Hall Sr. Network Analyst Information Technology Infrastructure Mississippi State University [EMAIL PROTECTED] 662-325-0728 (phone) ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
Re: [WIRELESS-LAN] Cisco WCS statistics
Attached is an example of how we are graphing. This graph is one of five on a page showing the number of users using each of our WLANs. This page allows us to select whatever time interval we want graphed (the attached graph is for a 24 hour period). Future plans are to graph the number of users on each radio on all of our 550+ APs. We will add to these as we need new information. As far as the data we are harvesting from the controllers, we are gathering information on the controllers, APs, radios, WLANs, and Rogue APs. We have several search and report pages that use the information from the database. On Wed, 29 Nov 2006, David Wang @ UoG CCS wrote: Date: Wed, 29 Nov 2006 13:52:24 -0500 From: David Wang @ UoG CCS [EMAIL PROTECTED] Reply-To: 802.11 wireless issues listserv WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: Re: [WIRELESS-LAN] Cisco WCS statistics Thanks Todd, I am interested with what kind of graphing you have now. Do you mind share some screenshots or demo? David Wang, Networking Services,CCS www.uoguelph.ca 519-824-4120 x52046 Todd M. Hall wrote: WCS does not provide very customizable statistics. We have found that the best way to get what we want is to write it ourselves. We get our data directly from the controllers via snmp. We store some of the information in a mysql database for reports and the rest of the data is stored in rrd files for graphing. We still have lots to do, but we are making progress. The snmp mibs are downloadable from Cisco's website. On Wed, 29 Nov 2006, David Wang @ UoG CCS wrote: Date: Wed, 29 Nov 2006 09:43:22 -0500 From: David Wang @ UoG CCS [EMAIL PROTECTED] Reply-To: 802.11 wireless issues listserv ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. -- Todd M. Hall Network Analyst Information Technology Infrastructure Mississippi State University [EMAIL PROTECTED] 662-325-0728 (phone) ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. WLAN_users.png Description: Binary data
Re: [WIRELESS-LAN] Cisco WCS statistics
If the mibs are installed, you can use these... Users per AP interface is as follows: enterprises.airespace.bsnWireless.bsnAP.bsnAPIfTable.bsnAPIfEntry.bsnAPIfPhyTxPowerLevel. Users per WLAN per controller: enterprises.airespace.bsnWireless.bsnEss.bsnDot11EssTable.bsnDot11EssEntry.bsnDot11EssNumberOfMobileStations. Of course, each of these is followed by index values. You can also gather the following information (as well as lots more) Radio channel number Radio transmit power level AP Oper status AP Admion status AP info: name, ethernet mac, location field (we use this to hold inventory info), model, serial number, certificate type. User information: mac address, username, interface used, etc Rogue AP information: ssid, channel, radio type, which internal APs detected it Once all this is stored, you can generate some very useful statistics pages and search pages. For instance, I had a Cisco engineer tell me of a flaw and work around on particular AP model. I can tell where they are in seconds. At a glance, I can see how many APs are on each controller on one page. No more looking at each controller separately in WCS. Note: I received a phone call from someone at Airwave today, I suspect as a result of my posts to this group. On Wed, 29 Nov 2006, David Wang @ UoG CCS wrote: Date: Wed, 29 Nov 2006 15:40:02 -0500 From: David Wang @ UoG CCS [EMAIL PROTECTED] Reply-To: 802.11 wireless issues listserv WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: Re: [WIRELESS-LAN] Cisco WCS statistics Again thanks for sharing Todd. I am digging into these controller MIB files now. Is possible to gather associated user number for each AP (per-ap-interface)? David Wang, Networking Services,CCS www.uoguelph.ca 519-824-4120 x52046 Todd M. Hall wrote: Attached is an example of how we are graphing. This graph is one of five on a page showing the number of users using each of our WLANs. This page allows us to select whatever time interval we want graphed (the attached graph is for a 24 hour period). Future plans are to graph the number of users on each radio on all of our 550+ APs. We will add to these as we need new information. As far as the data we are harvesting from the controllers, we are gathering information on the controllers, APs, radios, WLANs, and Rogue APs. We have several search and report pages that use the information from the database. On Wed, 29 Nov 2006, David Wang @ UoG CCS wrote: Date: Wed, 29 Nov 2006 13:52:24 -0500 From: David Wang @ UoG CCS [EMAIL PROTECTED] Reply-To: 802.11 wireless issues listserv ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. -- Todd M. Hall Network Analyst Information Technology Infrastructure Mississippi State University [EMAIL PROTECTED] 662-325-0728 (phone) ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
Re: [WIRELESS-LAN] lwapp rogue detector mode AP configuration
Rogue Detector Mode is one of the modes an AP can be configured as. Instead of servicing clients, it strictly concentrates on detecting rogue APs. What makes Rogue Detector Mode different than the normal detection process is that in Rogue Detector Mode an AP actually determines if a rogue AP is on the wired network or not. It doesn't help you locate it on the wired network, but it at least determines that it is on the wired network. I got this working by putting the APs uplink port in trunking mode and set its native vlan to the vlan that the AP is usually in. Once I did this, I put the AP in Rogue Detector Mode and after a little while, rogue APs started showing up with a status of Threat instead of Alert in WCS. On Thu, 23 Nov 2006, Frank Bulk wrote: Date: Thu, 23 Nov 2006 19:34:43 -0600 From: Frank Bulk [EMAIL PROTECTED] To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: Re: [WIRELESS-LAN] lwapp rogue detector mode AP configuration Unfortunately I don't recall the details of how Cisco's WCS (Unified Wireless System, or former Airespace) product performs the wireside rogue detection and not having implemented it myself, it was not imprinted in my memory. =) The wireless portion of the rogue detection is a lot simpler: AP's scan the air for short intervals, listening for traffic that originates from an AP not part of the system and not set to be ignored. Then using their triangulation/fingerprinting techniques, Cisco reports the location in the GUI. Frank -Original Message- From: King, Michael [mailto:[EMAIL PROTECTED] Sent: Tuesday, November 21, 2006 11:36 AM To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: Re: [WIRELESS-LAN] lwapp rogue detector mode AP configuration Hi Todd, I think your talking about the Rogue Location Discovery Protocol. From what I remember (and Hopefully Frank Bulk will jump in here), the AP will try to connect to the rogue AP, and if it get's an IP address that it recognizes, it gives it an increased precedence. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. -- Todd M. Hall Network Analyst Information Technology Infrastructure Mississippi State University [EMAIL PROTECTED] 662-325-0728 (phone) ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
Re: [WIRELESS-LAN] Cisco LWAPP
We are using Cisco 2950 switches which do not provide PoE but are PoE aware as far as cdp is concerned. The AP checks the port it is plugged into using cdp to see if the port is capable of providing enough power for the AP. The response from the switch is such that the AP will go into a low power mode (with the radios turned off). You can configure the AP letting it know that it is getting its power via the injector but this gets very annoying when you are upgrading hundreds of APs. We found that if you just disable cdp on the switch port, the AP then assumes that it is getting its power via an injector and turns the radios on. It is not the best solution, but it works. On Thu, 21 Sep 2006, Lee Badman wrote: Date: Thu, 21 Sep 2006 18:51:54 -0400 From: Lee Badman [EMAIL PROTECTED] Reply-To: 802.11 wireless issues listserv WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: Re: [WIRELESS-LAN] Cisco LWAPP I don't think that's correct at all- CDP makes no difference in my findings as to whether APs come up or not. Lee Lee H. Badman Network Engineer CWNA, CWSP Information Technology and Services Syracuse University 315 443-3003 Charles Spurgeon [EMAIL PROTECTED] 9/21/2006 6:14 PM Todd, Many thanks for your replies to the issue list from Lee Badman. I wanted to ask for more info on your response to point 10, in which you said that you had to disable cdp in order to get lwapp radios to come up. Am I reading that correctly? We're working on a WiSM deployment beginning later this year and we will be converting Cisco 1230 APs to lwapp. Will we have to disable cdp to get the radios to work? Thanks, -Charles Charles E. Spurgeon / UTnet UT Austin ITS / Networking [EMAIL PROTECTED] / 512.475.9265 On Wed, Sep 20, 2006 at 08:02:42AM -0500, Todd M. Hall wrote: I will take a stab at some of these... I hope some of this will help. A little background on our network. We upgraded about 300 older APs to LWAPP. We upgraded the following AP models: 1121, 1131, 1231 (a couple of variations of this one). We are using WiSM (Wireless Services Module) based 4404 controllers. This provides two controllers on a blade in our 6509 switches and each controller can handle 150 APs. We currently have three of these blades and another one on order. We have about 450 APs online now with hundreds more planned. Answers below... On Tue, 19 Sep 2006, Lee Badman wrote: Date: Tue, 19 Sep 2006 19:53:09 -0400 From: Lee Badman [EMAIL PROTECTED] Reply-To: 802.11 wireless issues listserv WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: [WIRELESS-LAN] Cisco LWAPP Now that we are into a Cisco LWAPP conversion/rollout, wondering if anyone else has found these issues to be obstacles to deployment/support, or if in the grand scheme you've found them to be non-issues: 1. Can't schedule configuration jobs- is no scheduling provision from WCS We have reported this to Cisco as a feature request. 2. No master view from WCS of all controllers configurations to compare for uniformity of config We are addressing this internally. We have written scripts to query various configurations via snmp and insert the data into a mysql database. We can then generate reports of potential problems. 3. No wild card searches for clients or APs when searching in WCS You can use % as a wildcard for your searches. It is still not great, but it helps. We have written our own code to help with this too. 4. AP radios come up in transmit, before proper vlan is assigned to them- meaning that clients might associate to a non-functional cell (meaning there might be confusion and help-desk calls) We never noticed this one. 5. No view of the Ethernet port on the AP from the WCS or controller, which means you can't tell if it negotiated speed or duplex correctly We have never needed this. We can always look at the switch port to get this data. 6. ACLs in the WCS have to be built line by line, no copy and edit or text file input 7. MAC address searches have to be colon delimited Correct, AND they are also case sensitive which we found thanks to a cut and paste search for a rogue AP. 8. Mispellings in the WCS GUI, usually on error popups 9. Difficult debugging, like from an AP you have no knowledge of what controller it associated to or tried to associate to If an AP is currently associated with a controller, the controller IP address is shown in WCS if you search pull up a list of APs. I suspect you are talking about APs that don't connect successfully. Early in our migration, we just brought those back to the office and got on the console and watched to see what was happening. This was very helpful. 10. No view from the AP or WCS on what switch and port the AP
Re: [WIRELESS-LAN] Cisco LWAPP
://www.educause.edu/groups/. -- Todd M. Hall Network Analyst Information Technology Infrastructure Mississippi State University [EMAIL PROTECTED] 662-325-0728 (phone) ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
Re: [WIRELESS-LAN] Cisco LWAPP
turn off and unless you went in and configured them individually. 11. Inconsistant AP association behavior, certificate issues on converted APs (mostly 1200s) not registeriing with controllers and having to be manually added We upgraded our older APs with the upgrade tool provided by Cisco. This tool would put the self signed certificates on one controller. This worked farily well. We would then have to go into WCS and refresh the WCS config from the controller that had the certificates. Then, in WCS go to controller templates - Security - AP Authorization and the certificates would all be there. These are templates and can then be pushed to all other controllers easily. 12. Converted APs drop their pre-conversion system names and go to mac address for name I don't know any way around this one. 13. No ability for AP groups VLAN templates for multiple controllers 14. Cannot use static WEP and AirFortress clients together on an SSID/VLAN as you can in the autonomous world There are more... and I'm not bashing the product, believe it or not. We bought it and will squeeze great value out of it. But I am wondering if others see these issues as problems, or if I'm expecting too much as I move from the autonomous world to this new LWAPP stuff. Even better- are there any here that I am wrong about? Please do not take this as an invitation to call me about WLAN management products! Regards- Lee Lee H. Badman Network Engineer CWNA, CWSP Information Technology and Services Syracuse University 315 443-3003 ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. -- Todd M. Hall Network Analyst Information Technology Infrastructure Mississippi State University [EMAIL PROTECTED] 662-325-0728 (phone) ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.