Configuration Guide
Page 6
... to Support More Than 48 Access Points 3-30 Using Link Aggregation 3-31 Using Multiple AP-Manager Interfaces 3-31 Connecting Additional Ports 3-36 4 C H A P T E R Configuring Controller Settings 4-1 Using the Configuration Wizard 4-2 Before You Start 4-2 Resetting the Device to Default Settings 4-3 Resetting to Default Settings Using the CLI 4-3 Resetting to Default Settings Using the GUI 4-3 Running the Configuration Wizard on the CLI 4-4 Managing the System Time and Date 4-5 Configuring Time and Date Manually 4-5 Configuring NTP 4-5 Configuring a Country Code 4-5 Enabling and Disabling 802...
... to Support More Than 48 Access Points 3-30 Using Link Aggregation 3-31 Using Multiple AP-Manager Interfaces 3-31 Connecting Additional Ports 3-36 4 C H A P T E R Configuring Controller Settings 4-1 Using the Configuration Wizard 4-2 Before You Start 4-2 Resetting the Device to Default Settings 4-3 Resetting to Default Settings Using the CLI 4-3 Resetting to Default Settings Using the GUI 4-3 Running the Configuration Wizard on the CLI 4-4 Managing the System Time and Date 4-5 Configuring Time and Date Manually 4-5 Configuring NTP 4-5 Configuring a Country Code 4-5 Enabling and Disabling 802...
Configuration Guide
Page 14
... and regulatory information for wireless LANs. Chapter 5, "Configuring Security Solutions," describes application-specific solutions for the products in the Cisco Unified Wireless Network Solution. Appendix B, "Declarations of Conformity and Regulatory Information," provides declarations of wireless LANs. Chapter 2, "Using the Web-Browser and CLI Interfaces," describes how to use this guide, you need to the Cisco Unified Wireless Network Solution products. Audience Preface Audience This guide describes Cisco Wireless LAN Controllers and Cisco Lightweight Access Points.
... and regulatory information for wireless LANs. Chapter 5, "Configuring Security Solutions," describes application-specific solutions for the products in the Cisco Unified Wireless Network Solution. Appendix B, "Declarations of Conformity and Regulatory Information," provides declarations of wireless LANs. Chapter 2, "Using the Web-Browser and CLI Interfaces," describes how to use this guide, you need to the Cisco Unified Wireless Network Solution products. Audience Preface Audience This guide describes Cisco Wireless LAN Controllers and Cisco Lightweight Access Points.
Configuration Guide
Page 32
... wireless connections. 1-10 Cisco Wireless LAN Controller Configuration Guide OL-8335-02 If slightly less security is not allowed access to the DHCP Server. Note that Cisco WLAN Solution wireless LANs that each Cisco Wireless LAN Controller appears as further described in configuring their IP Addresses from the designated DHCP Server. Clients then have the option of 0.0.0.0. This means that support management over wireless must obtain an IP address via DHCP. The Cisco Wireless LAN Controller monitors DHCP traffic because it maintains the same IP Address for instructions...
... wireless connections. 1-10 Cisco Wireless LAN Controller Configuration Guide OL-8335-02 If slightly less security is not allowed access to the DHCP Server. Note that Cisco WLAN Solution wireless LANs that each Cisco Wireless LAN Controller appears as further described in configuring their IP Addresses from the designated DHCP Server. Clients then have the option of 0.0.0.0. This means that support management over wireless must obtain an IP address via DHCP. The Cisco Wireless LAN Controller monitors DHCP traffic because it maintains the same IP Address for instructions...
Configuration Guide
Page 41
... lower security (session can be used to supply IP addresses to clients, the Cisco Wireless LAN Controller Management Interface, and optionally to use DHCP. Startup Wizard When an Cisco Wireless LAN Controller is also available: • AIR-PWR-4400-AC - One Cisco 4400 series power supply can power Cisco 4400 series power supplies can communicate with the CLI, Cisco WCS, or Web User interfaces (either directly or indirectly) through a copper link using an LC physical connector. • 1000BASE-T SFP modules provide a 1000 Mbps wired connection to configure a RADIUS server from...
... lower security (session can be used to supply IP addresses to clients, the Cisco Wireless LAN Controller Management Interface, and optionally to use DHCP. Startup Wizard When an Cisco Wireless LAN Controller is also available: • AIR-PWR-4400-AC - One Cisco 4400 series power supply can power Cisco 4400 series power supplies can communicate with the CLI, Cisco WCS, or Web User interfaces (either directly or indirectly) through a copper link using an LC physical connector. • 1000BASE-T SFP modules provide a 1000 Mbps wired connection to configure a RADIUS server from...
Configuration Guide
Page 61
... with it, including an IP address, default-gateway (for Layer 2 communications between the controller and Cisco 1000 series lightweight access points. When LWAPP communications are available on the controller. mandatory) • AP-manager interface (When using Layer 3 LWAPP, static and configured at setup time; Management Interface The management interface is also used for the IP subnet), primary physical port, secondary physical port, VLAN identifier, and DHCP server. The management interface has the only consistently "pingable" in Internet Explorer's Address field. It may...
... with it, including an IP address, default-gateway (for Layer 2 communications between the controller and Cisco 1000 series lightweight access points. When LWAPP communications are available on the controller. mandatory) • AP-manager interface (When using Layer 3 LWAPP, static and configured at setup time; Management Interface The management interface is also used for the IP subnet), primary physical port, secondary physical port, VLAN identifier, and DHCP server. The management interface has the only consistently "pingable" in Internet Explorer's Address field. It may...
Configuration Guide
Page 68
... physical-ds-port-number • config interface dhcp management ip-address-of-primary-dhcp-server [ip-address-of-secondary-dhcp-server] • config interface acl management access-control-list-name Note To create ACLs, follow the instructions in Layer 2 mode, the AP-manager interface is operating in Chapter 5. Cisco recommends that uses the management interface for distribution system communication. Using the CLI to Configure the AP-Manager Interface Follow these steps to view the current AP-manager interface settings. 3-12 Cisco Wireless LAN Controller Configuration Guide OL-8335...
... physical-ds-port-number • config interface dhcp management ip-address-of-primary-dhcp-server [ip-address-of-secondary-dhcp-server] • config interface acl management access-control-list-name Note To create ACLs, follow the instructions in Layer 2 mode, the AP-manager interface is operating in Chapter 5. Cisco recommends that uses the management interface for distribution system communication. Using the CLI to Configure the AP-Manager Interface Follow these steps to view the current AP-manager interface settings. 3-12 Cisco Wireless LAN Controller Configuration Guide OL-8335...
Configuration Guide
Page 69
... to Configure the Virtual Interface Follow these commands to disable each WLAN that your changes have been saved. Enter config wlan disable wlan-number to define the AP-manager interface: • config interface address ap-manager ip-addr ip-netmask gateway • config interface vlan ap-manager {vlan-id | 0} Note Enter 0 for an untagged VLAN or a non-zero value for distribution system communication. The controller reboots. Step 4 Step 5 • config interface hostname virtual dns-host-name Enter reset system. OL-8335-02 Cisco Wireless LAN Controller Configuration Guide...
... to Configure the Virtual Interface Follow these commands to disable each WLAN that your changes have been saved. Enter config wlan disable wlan-number to define the AP-manager interface: • config interface address ap-manager ip-addr ip-netmask gateway • config interface vlan ap-manager {vlan-id | 0} Note Enter 0 for an untagged VLAN or a non-zero value for distribution system communication. The controller reboots. Step 4 Step 5 • config interface hostname virtual dns-host-name Enter reset system. OL-8335-02 Cisco Wireless LAN Controller Configuration Guide...
Configuration Guide
Page 70
... link. 3-14 Cisco Wireless LAN Controller Configuration Guide OL-8335-02 Configuring Dynamic Interfaces Chapter 3 Configuring Ports and Interfaces Using the CLI to Configure the Service-Port Interface Follow these steps to create new or edit existing dynamic interfaces using the GUI. Using the GUI to Configure Dynamic Interfaces Follow these commands to manage the controller from that interface appears (see Figure 3-6). To do so, enter this command: config route network-ip-addr ip-netmask gateway Enter show interface detailed service-port to verify that your changes...
... link. 3-14 Cisco Wireless LAN Controller Configuration Guide OL-8335-02 Configuring Dynamic Interfaces Chapter 3 Configuring Ports and Interfaces Using the CLI to Configure the Service-Port Interface Follow these steps to create new or edit existing dynamic interfaces using the GUI. Using the GUI to Configure Dynamic Interfaces Follow these commands to manage the controller from that interface appears (see Figure 3-6). To do so, enter this command: config route network-ip-addr ip-netmask gateway Enter show interface detailed service-port to verify that your changes...
Configuration Guide
Page 83
Enabling Link Aggregation Link aggregation (LAG) is a partial implementation of the controller ports fail, traffic is automatically migrated to one controller port is functioning, the system continues to operate, access points remain connected to the network, and wireless clients continue to 150 access points. Figure 3-11 illustrates LAG. As long as at least one of IP addresses needed to configure the ports on the Cisco WiSM controllers. When LAG is enabled automatically on your changes have been...
Enabling Link Aggregation Link aggregation (LAG) is a partial implementation of the controller ports fail, traffic is automatically migrated to one controller port is functioning, the system continues to operate, access points remain connected to the network, and wireless clients continue to 150 access points. Figure 3-11 illustrates LAG. As long as at least one of IP addresses needed to configure the ports on the Cisco WiSM controllers. When LAG is enabled automatically on your changes have been...
Configuration Guide
Page 94
... to factory defaults. Using the Configuration Wizard Chapter 4 Configuring Controller Settings Using the Configuration Wizard This section describes how to configure basic settings on a controller for the first time or after the configuration has been reset to configure basic settings. The contents of this chapter are similar to the instructions in a Cisco Integrated Services router) • Other port and parameter settings: service port, Radio Resource Management (RRM), third-party access points, console port, 802.3x flow control, and system logging Cisco Wireless LAN Controller...
... to factory defaults. Using the Configuration Wizard Chapter 4 Configuring Controller Settings Using the Configuration Wizard This section describes how to configure basic settings on a controller for the first time or after the configuration has been reset to configure basic settings. The contents of this chapter are similar to the instructions in a Cisco Integrated Services router) • Other port and parameter settings: service port, Radio Resource Management (RRM), third-party access points, console port, 802.3x flow control, and system logging Cisco Wireless LAN Controller...
Configuration Guide
Page 96
...IP address of this setting). Cisco Wireless LAN Controller Configuration Guide 4-4 OL-8335-02 For the controller, the possible ports are 1 through 4 for an explanation of the default DHCP Server that lightweight access points use the service port, enter 0.0.0.0 for the system name. Enter the Virtual Gateway IP Address. The default username is admin and the default password is for the IP address and netmask. Enter the management interface IP Address, netmask, default router IP address, and optional VLAN identifier (a valid VLAN identifier, or 0 for initial configuration settings...
...IP address of this setting). Cisco Wireless LAN Controller Configuration Guide 4-4 OL-8335-02 For the controller, the possible ports are 1 through 4 for an explanation of the default DHCP Server that lightweight access points use the service port, enter 0.0.0.0 for the system name. Enter the Virtual Gateway IP Address. The default username is admin and the default password is for the IP address and netmask. Enter the management interface IP Address, netmask, default router IP address, and optional VLAN identifier (a valid VLAN identifier, or 0 for initial configuration settings...
Configuration Guide
Page 97
... configure the time and date manually. Configuring NTP On the CLI, enter config time ntp server-ip-address to configure the country code. OL-8335-02 Cisco Wireless LAN Controller Configuration Guide 4-5 Note When you run the wizard on a wireless controller network module installed in or to enter recover-config to reset to the factory default configuration and return to ensure that it powers up. On the CLI, enter config country code to specify the NTP server for use in seconds, the polling interval. The controller network module...
... configure the time and date manually. Configuring NTP On the CLI, enter config time ntp server-ip-address to configure the country code. OL-8335-02 Cisco Wireless LAN Controller Configuration Guide 4-5 Note When you run the wizard on a wireless controller network module installed in or to enter recover-config to reset to the factory default configuration and return to ensure that it powers up. On the CLI, enter config country code to specify the NTP server for use in seconds, the polling interval. The controller network module...
Configuration Guide
Page 118
... CLI, enter ping ip-address to ensure that the controller can be on the same subnet as WCS. WCS and the TFTP server use this command to change the logo on the same or a different subnet, because the DS port is pleased to provide the Wireless LAN infrastructure for your air space to work"), use the same communication port. Customizing the Web Authentication Login Screen Chapter 5 Configuring Security Solutions Changing the Web...
... CLI, enter ping ip-address to ensure that the controller can be on the same subnet as WCS. WCS and the TFTP server use this command to change the logo on the same or a different subnet, because the DS port is pleased to provide the Wireless LAN infrastructure for your air space to work"), use the same communication port. Customizing the Web Authentication Login Screen Chapter 5 Configuring Security Solutions Changing the Web...
Configuration Guide
Page 134
... on the controller. Enter these commands to enable web authentication for a wireless LAN: • config wlan security web {enable | disable} wlan-id • Enter show wlan to verify that web authentication is enabled. Local Netuser Cisco Wireless LAN Controllers have built-in Table 6-1 to derive the IP DSCP value that is enabled. The wireless LAN QoS level (platinum, gold, silver, or bronze) defines a specific 802.11e user priority (UP) for over -the-wire priorities for each wireless LAN. Cisco Wireless LAN Controller Configuration Guide 6-8 OL...
... on the controller. Enter these commands to enable web authentication for a wireless LAN: • config wlan security web {enable | disable} wlan-id • Enter show wlan to verify that web authentication is enabled. Local Netuser Cisco Wireless LAN Controllers have built-in Table 6-1 to derive the IP DSCP value that is enabled. The wireless LAN QoS level (platinum, gold, silver, or bronze) defines a specific 802.11e user priority (UP) for over -the-wire priorities for each wireless LAN. Cisco Wireless LAN Controller Configuration Guide 6-8 OL...
Configuration Guide
Page 143
... rogue access point detection and containment while providing regular service. Chapter 7 Controlling Lightweight Access Points Using the DNS for all 801.11 channels, regardless of the Country Code selected. Cisco 1000 Series Lightweight Access Point Monitor Mode The Cisco 1000 series lightweight access points and Cisco Wireless LAN Controllers can discover controllers through your DNS to return controller IP addresses in response to receive the correct power cord. The converter output feeds into a secure 110 through a 48 VDC jack. The external power supply (AIR...
... rogue access point detection and containment while providing regular service. Chapter 7 Controlling Lightweight Access Points Using the DNS for all 801.11 channels, regardless of the Country Code selected. Cisco 1000 Series Lightweight Access Point Monitor Mode The Cisco 1000 series lightweight access points and Cisco Wireless LAN Controllers can discover controllers through your DNS to return controller IP addresses in response to receive the correct power cord. The converter output feeds into a secure 110 through a 48 VDC jack. The external power supply (AIR...
Configuration Guide
Page 145
... access point. • Access points converted to the unit. If the access point is associated to a controller, you upgrade one of 8 wireless LANs per access point. (Cisco 1000 series access points support 16 BSSIDs per radio and 16 wireless LANs per radio and a total of these documents for complete instructions on a Wireless Services Module (WiSM) only. When you can load the Cisco IOS release using DHCP, DNS, or IP subnet broadcast. • After you convert an autonomous access point to access a TFTP server...
... access point. • Access points converted to the unit. If the access point is associated to a controller, you upgrade one of 8 wireless LANs per access point. (Cisco 1000 series access points support 16 BSSIDs per radio and 16 wireless LANs per radio and a total of these documents for complete instructions on a Wireless Services Module (WiSM) only. When you can load the Cisco IOS release using DHCP, DNS, or IP subnet broadcast. • After you convert an autonomous access point to access a TFTP server...
Configuration Guide
Page 148
... Dumps to Controller When a radio module in a converted access point generates a core dump, the access point stores the core dump file of the radio on its local flash memory at the time of a specific access point, or enter all to enable memory core dumps from all } • For tftp-server-ip-address, enter the IP address of converted access points. • On the Radio Summary page, the controller lists converted access points by radio MAC address. 7-12 Cisco Wireless LAN Controller Configuration Guide OL-8335...
... Dumps to Controller When a radio module in a converted access point generates a core dump, the access point stores the core dump file of the radio on its local flash memory at the time of a specific access point, or enter all to enable memory core dumps from all } • For tftp-server-ip-address, enter the IP address of converted access points. • On the Radio Summary page, the controller lists converted access points by radio MAC address. 7-12 Cisco Wireless LAN Controller Configuration Guide OL-8335...
Configuration Guide
Page 152
... your TFTP server. Cisco Wireless LAN Controller Configuration Guide 8-2 OL-8335-02 Transferring Files to and from a Controller Controllers have a TFTP server available for uploading and downloading software, certificates, and configuration files. Enter ping server-ip-address to upgrade the controller software using the GUI or through the DS (Distribution System) network port, the TFTP server can contact the TFTP server. Keep these steps to verify that you are downloading through a wireless connection. Use these transfer commands: • transfer download datatype...
... your TFTP server. Cisco Wireless LAN Controller Configuration Guide 8-2 OL-8335-02 Transferring Files to and from a Controller Controllers have a TFTP server available for uploading and downloading software, certificates, and configuration files. Enter ping server-ip-address to upgrade the controller software using the GUI or through the DS (Distribution System) network port, the TFTP server can contact the TFTP server. Keep these steps to verify that you are downloading through a wireless connection. Use these transfer commands: • transfer download datatype...
Configuration Guide
Page 161
... QoS queue, if there was voice traffic in the Startup Wizard. The RF group leader is a cluster of controllers that clients enjoy a seamless, trouble-free connection throughout the Cisco unified wireless network. OL-8335-02 Cisco Wireless LAN Controller Configuration Guide 9-5 The RRM algorithms run separately for each access point. Note RRM measurements are different in that use . When access points on the other . RRM uses separate monitoring and control for each 802.11 network type...
... QoS queue, if there was voice traffic in the Startup Wizard. The RF group leader is a cluster of controllers that clients enjoy a seamless, trouble-free connection throughout the Cisco unified wireless network. OL-8335-02 Cisco Wireless LAN Controller Configuration Guide 9-5 The RRM algorithms run separately for each access point. Note RRM measurements are different in that use . When access points on the other . RRM uses separate monitoring and control for each 802.11 network type...
Configuration Guide
Page 182
... a static channel and power level. Enter one of power levels supported. Overriding Dynamic RRM Chapter 9 Configuring Radio Resource Management Using the CLI to Statically Assign Channel and Transmit Power Settings Follow these steps to enable the 802.11a or 802.11b/g network: • config 802.11a enable • config 802.11b enable (To enable the 802.11g network, enter config 802.11b 11gSupport enable after the config 802.11b enable command.) 9-26 Cisco Wireless LAN Controller Configuration Guide OL-8335-02 Step 4 Step 5 Repeat Step 2 and Step...
... a static channel and power level. Enter one of power levels supported. Overriding Dynamic RRM Chapter 9 Configuring Radio Resource Management Using the CLI to Statically Assign Channel and Transmit Power Settings Follow these steps to enable the 802.11a or 802.11b/g network: • config 802.11a enable • config 802.11b enable (To enable the 802.11g network, enter config 802.11b 11gSupport enable after the config 802.11b enable command.) 9-26 Cisco Wireless LAN Controller Configuration Guide OL-8335-02 Step 4 Step 5 Repeat Step 2 and Step...