cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

Cisco announces new innovations in SD-WAN, ISRs, SD-WAN Services, and Catalyst 9000 Series switches


148
Views
0
Helpful
14
Replies
rgm Beginner
Beginner

Bridge: Joining a bridge

Hello, 

 

I am having trouble finding clear information on how to configure two 1572 APs as a wireless bridge.

 

Currently I have 1 2504 Controller on version 8.0.152.0

I am using a meraki switch to power and connect the APs into the network, in the future it will be a cisco Switch.

 

I would like to know the exact configuration steps to follow to configure the APs. I have tried multiple things i pieced together from various articles, but they all seem to be outdated. The APs do not seem to be connecting to one another, I checked the radio status and it states down "Dot11Radio0 is reset, line protocol is down"

 

Additionally, I only have one GHz antenna per AP. Will this be an issue? I was assuming I could just shut down the second antenna.

 

Thanks,

14 REPLIES
Contributor

Re: Bridge: Joining a bridge

rgm Beginner
Beginner

Re: Bridge: Joining a bridge

I do not seem to be able to do any sort of configuration on the AP side. Is their an example of the WLC side configuration of it?

rgm Beginner
Beginner

Re: Bridge: Joining a bridge

I do not seem to be able to do any sort of confiif changes on the AP side. Is their an example of the WLC side configuration of it?

Highlighted
VIP Mentor

Re: Bridge: Joining a bridge

Are you intend to use this as MESH APs ? or use in Autonomous mode like traditional P2P bridge ?

 

HTH

Rasika

rgm Beginner
Beginner

Re: Bridge: Joining a bridge

Initial intention was to do a p2p bridge, but I have no access to the autonomous software. How can I get it?

Can I still do the p2p bridge without the autonoomous OS on the APs? Also what kind of configuration will I need on the switch side?
VIP Mentor

Re: Bridge: Joining a bridge

If you do not have autonomous image then you cannot configure it as a traditional bridge (root/non-root bridge). If that was a option you can configure it like below

https://mrncciew.com/2013/11/09/wireless-bridge-with-eap-fast/

 

With controller based solution, please go through below mesh deployment guide, you may be able to get your  requirements fulfil through that solution as well

https://www.cisco.com/c/en/us/td/docs/wireless/technology/mesh/8-5/b_mesh_85.html

 

HTH

Rasika

*** Pls rate all useful responses ***

 

 

rgm Beginner
Beginner

Re: Bridge: Joining a bridge

This looks good. Thanks.
Another question. I was able to get the APs loaded with the Autnomous IOS.
But on the switch sides I have the interfaces configured with an IP address as such:
Switch A
interface GigabitEthernet1/1/1
no switchport
ip address 10.0.0.1 255.255.255.248
!

Switch B
interface GigabitEthernet1/1/1
no switchport
ip address 10.0.0.2 255.255.255.248
!

how would the AP configuration be any different?
rgm Beginner
Beginner

Re: Bridge: Joining a bridge

It seems it keeps establishing connection. Will it have an issue with connectivity? Does it dissacosiate when it associates with the EAP-FAST? just trying to understand if this is normal.

I keep getting this message:


*Mar 1 04:29:29.439: %DOT11-4-UPLINK_ESTABLISHED: Interface Dot11Radio1, Associated To AP ROOT 502f.a2f0.abc0 [EAP-FAST WPAv2]
*Mar 1 04:29:40.443: %DOT11-4-UPLINK_ESTABLISHED: Interface Dot11Radio1, Associated To AP ROOT 502f.a2f0.abc0 [EAP-FAST WPAv2]
*Mar 1 04:29:51.455: %DOT11-4-UPLINK_ESTABLISHED: Interface Dot11Radio1, Associated To AP ROOT 502f.a2f0.abc0 [EAP-FAST WPAv2]
*Mar 1 04:30:06.407: %DOT11-4-UPLINK_ESTABLISHED: Interface Dot11Radio1, Associated To AP ROOT 502f.a2f0.abc0 [EAP-FAST WPAv2]
*Mar 1 04:30:20.435: %DOT11-4-UPLINK_ESTABLISHED: Interface Dot11Radio1, Associated To AP ROOT 502f.a2f0.abc0 [EAP-FAST WPAv2]
*Mar 1 04:30:30.499: %DOT11-4-UPLINK_ESTABLISHED: Interface Dot11Radio1, Associated To AP ROOT 502f.a2f0.abc0 [EAP-FAST WPAv2]
*Mar 1 04:30:41.519: %DOT11-4-UPLINK_ESTABLISHED: Interface Dot11Radio1, Associated To AP ROOT 502f.a2f0.abc0 [EAP-FAST WPAv2]
*Mar 1 04:30:52.431: %DOT11-4-UPLINK_ESTABLISHED: Interface Dot11Radio1, Associated To AP ROOT 502f.a2f0.abc0 [EAP-FAST WPAv2]

Hall of Fame Master

Re: Bridge: Joining a bridge

Try to make it work first with an open SSID. If you get it to work, then I would try WPA2-AES, not eap-fast.
-Scott
*** Please rate helpful posts ***
rgm Beginner
Beginner

Re: Bridge: Joining a bridge

I tried it without the any security. No issues.
When I put WPA2 the reassociating come back. it keeps deauthenticating and reauthenticating.
This isthe logs i keep seeing:
*Mar 1 04:20:05.859: %DOT11-6-DISASSOC: Interface Dot11Radio1, Deauthenticating Station 502f.abc0.0000 Reason: Sending station has left the BSS
*Mar 1 04:20:05.871: %DOT11-6-ASSOC: Interface Dot11Radio1, Station NONROOT 502f.abc0.0000 Associated KEY_MGMT[WPAv2 PSK]
*Mar 1 04:20:16.923: %DOT11-6-DISASSOC: Interface Dot11Radio1, Deauthenticating Station 502f.abc0.0000 Reason: Sending station has left the BSS
*Mar 1 04:20:16.935: %DOT11-6-ASSOC: Interface Dot11Radio1, Station NONROOT 502f.abc0.0000 Associated KEY_MGMT[WPAv2 PSK]
*Mar 1 04:20:27.879: %DOT11-6-DISASSOC: Interface Dot11Radio1, Deauthenticating Station 502f.abc0.0000 Reason: Sending station has left the BSS
*Mar 1 04:20:27.891: %DOT11-6-ASSOC: Interface Dot11Radio1, Station NONROOT 502f.abc0.0000 Associated KEY_MGMT[WPAv2 PSK]
*Mar 1 04:20:38.883: %DOT11-6-DISASSOC: Interface Dot11Radio1, Deauthenticating Station 502f.abc0.0000 Reason: Sending station has left the BSS
*Mar 1 04:20:38.895: %DOT11-6-ASSOC: Interface Dot11Radio1, Station NONROOT 502f.abc0.0000 Associated KEY_MGMT[WPAv2 PSK]
*Mar 1 04:20:49.895: %DOT11-6-DISASSOC: Interface Dot11Radio1, Deauthenticating Station 502f.abc0.0000 Reason: Sending station has left the BSS
*Mar 1 04:20:49.907: %DOT11-6-ASSOC: Interface Dot11Radio1, Station NONROOT 502f.abc0.0000 Associated KEY_MGMT[WPAv2 PSK]
*Mar 1 04:21:00.851: %DOT11-6-DISASSOC: Interface Dot11Radio1, Deauthenticating Station 502f.abc0.0000 Reason: Sending station has left the BSS
*Mar 1 04:21:00.863: %DOT11-6-ASSOC: Interface Dot11Radio1, Station NONROOT 502f.abc0.0000 Associated KEY_MGMT[WPAv2 PSK]
*Mar 1 04:21:11.899: %DOT11-6-DISASSOC: Interface Dot11Radio1, Deauthenticating Station 502f.abc0.0000 Reason: Sending station has left the BSS
*Mar 1 04:21:11.911: %DOT11-6-ASSOC: Interface Dot11Radio1, Station NONROOT 502f.abc0.0000 Associated KEY_MGMT[WPAv2 PSK]
Hall of Fame Master

Re: Bridge: Joining a bridge

What exact model do you have? If you have ‘e’ model, do you have the antennas connected? Also you either need a power injector, ac adapter, 802.3af or hard line power.

-Scott
*** Please rate helpful posts ***
rgm Beginner
Beginner

Re: Bridge: Joining a bridge

AIR-AP1572EAC-B-K9
I have 1 5 GHZ only antenna on each AP connected on plug C & D. I did not connect a 2.4 GHz.
I have an ac plug into the AP and no power issue.
I know in the WLC I can configure it as a songle mode antenna. How can I do that with autonomous? Could that be causing an issue?
Also, how do i do the wpa2 configuration. I want to know i am doing it right.
Hall of Fame Master

Re: Bridge: Joining a bridge

Take a look at this
https://community.cisco.com/t5/wireless-mobility-documents/autonomous-ap-and-bridge-basic-configuration-template/ta-p/3112198

Make sure you set the channel on the root bridge first and also make sure your configuration is only for the dot11Radio 1 which is 5GHz.
-Scott
*** Please rate helpful posts ***
rgm Beginner
Beginner

Re: Bridge: Joining a bridge

Do I have to set a static channel? currently I have it configured as channel DFS.

That is the template I was using for the configuration but I see the issue arise when I configure the WPA2. Here are the configurations I use for the WPA2:
int dot 1
encryption vlan 1 mode ciphers aes-ccm
encryption mode ciphers aes-ccm
!
dot11 ssid BRIDGE
authentication open
authentication key-management wpa version 2
wpa-psk ascii WPA2Password123

Is their something I am missing?
CreatePlease to create content
Ask the Expert- DMVPN on Cisco routers