cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

Cisco announces new innovations in SD-WAN, ISRs, SD-WAN Services, and Catalyst 9000 Series switches


149
Views
0
Helpful
14
Replies
rgm Beginner
Beginner

Bridge: Joining a bridge

Hello, 

 

I am having trouble finding clear information on how to configure two 1572 APs as a wireless bridge.

 

Currently I have 1 2504 Controller on version 8.0.152.0

I am using a meraki switch to power and connect the APs into the network, in the future it will be a cisco Switch.

 

I would like to know the exact configuration steps to follow to configure the APs. I have tried multiple things i pieced together from various articles, but they all seem to be outdated. The APs do not seem to be connecting to one another, I checked the radio status and it states down "Dot11Radio0 is reset, line protocol is down"

 

Additionally, I only have one GHz antenna per AP. Will this be an issue? I was assuming I could just shut down the second antenna.

 

Thanks,

14 REPLIES
Contributor

Re: Bridge: Joining a bridge

rgm Beginner
Beginner

Re: Bridge: Joining a bridge

I do not seem to be able to do any sort of configuration on the AP side. Is their an example of the WLC side configuration of it?

rgm Beginner
Beginner

Re: Bridge: Joining a bridge

I do not seem to be able to do any sort of confiif changes on the AP side. Is their an example of the WLC side configuration of it?

VIP Mentor

Re: Bridge: Joining a bridge

Are you intend to use this as MESH APs ? or use in Autonomous mode like traditional P2P bridge ?

 

HTH

Rasika

rgm Beginner
Beginner

Re: Bridge: Joining a bridge

Initial intention was to do a p2p bridge, but I have no access to the autonomous software. How can I get it?

Can I still do the p2p bridge without the autonoomous OS on the APs? Also what kind of configuration will I need on the switch side?
Highlighted
VIP Mentor

Re: Bridge: Joining a bridge

If you do not have autonomous image then you cannot configure it as a traditional bridge (root/non-root bridge). If that was a option you can configure it like below

https://mrncciew.com/2013/11/09/wireless-bridge-with-eap-fast/

 

With controller based solution, please go through below mesh deployment guide, you may be able to get your  requirements fulfil through that solution as well

https://www.cisco.com/c/en/us/td/docs/wireless/technology/mesh/8-5/b_mesh_85.html

 

HTH

Rasika

*** Pls rate all useful responses ***

 

 

rgm Beginner
Beginner

Re: Bridge: Joining a bridge

This looks good. Thanks.
Another question. I was able to get the APs loaded with the Autnomous IOS.
But on the switch sides I have the interfaces configured with an IP address as such:
Switch A
interface GigabitEthernet1/1/1
no switchport
ip address 10.0.0.1 255.255.255.248
!

Switch B
interface GigabitEthernet1/1/1
no switchport
ip address 10.0.0.2 255.255.255.248
!

how would the AP configuration be any different?
rgm Beginner
Beginner

Re: Bridge: Joining a bridge

It seems it keeps establishing connection. Will it have an issue with connectivity? Does it dissacosiate when it associates with the EAP-FAST? just trying to understand if this is normal.

I keep getting this message:


*Mar 1 04:29:29.439: %DOT11-4-UPLINK_ESTABLISHED: Interface Dot11Radio1, Associated To AP ROOT 502f.a2f0.abc0 [EAP-FAST WPAv2]
*Mar 1 04:29:40.443: %DOT11-4-UPLINK_ESTABLISHED: Interface Dot11Radio1, Associated To AP ROOT 502f.a2f0.abc0 [EAP-FAST WPAv2]
*Mar 1 04:29:51.455: %DOT11-4-UPLINK_ESTABLISHED: Interface Dot11Radio1, Associated To AP ROOT 502f.a2f0.abc0 [EAP-FAST WPAv2]
*Mar 1 04:30:06.407: %DOT11-4-UPLINK_ESTABLISHED: Interface Dot11Radio1, Associated To AP ROOT 502f.a2f0.abc0 [EAP-FAST WPAv2]
*Mar 1 04:30:20.435: %DOT11-4-UPLINK_ESTABLISHED: Interface Dot11Radio1, Associated To AP ROOT 502f.a2f0.abc0 [EAP-FAST WPAv2]
*Mar 1 04:30:30.499: %DOT11-4-UPLINK_ESTABLISHED: Interface Dot11Radio1, Associated To AP ROOT 502f.a2f0.abc0 [EAP-FAST WPAv2]
*Mar 1 04:30:41.519: %DOT11-4-UPLINK_ESTABLISHED: Interface Dot11Radio1, Associated To AP ROOT 502f.a2f0.abc0 [EAP-FAST WPAv2]
*Mar 1 04:30:52.431: %DOT11-4-UPLINK_ESTABLISHED: Interface Dot11Radio1, Associated To AP ROOT 502f.a2f0.abc0 [EAP-FAST WPAv2]

Hall of Fame Master

Re: Bridge: Joining a bridge

Try to make it work first with an open SSID. If you get it to work, then I would try WPA2-AES, not eap-fast.
-Scott
*** Please rate helpful posts ***
rgm Beginner
Beginner

Re: Bridge: Joining a bridge

I tried it without the any security. No issues.
When I put WPA2 the reassociating come back. it keeps deauthenticating and reauthenticating.
This isthe logs i keep seeing:
*Mar 1 04:20:05.859: %DOT11-6-DISASSOC: Interface Dot11Radio1, Deauthenticating Station 502f.abc0.0000 Reason: Sending station has left the BSS
*Mar 1 04:20:05.871: %DOT11-6-ASSOC: Interface Dot11Radio1, Station NONROOT 502f.abc0.0000 Associated KEY_MGMT[WPAv2 PSK]
*Mar 1 04:20:16.923: %DOT11-6-DISASSOC: Interface Dot11Radio1, Deauthenticating Station 502f.abc0.0000 Reason: Sending station has left the BSS
*Mar 1 04:20:16.935: %DOT11-6-ASSOC: Interface Dot11Radio1, Station NONROOT 502f.abc0.0000 Associated KEY_MGMT[WPAv2 PSK]
*Mar 1 04:20:27.879: %DOT11-6-DISASSOC: Interface Dot11Radio1, Deauthenticating Station 502f.abc0.0000 Reason: Sending station has left the BSS
*Mar 1 04:20:27.891: %DOT11-6-ASSOC: Interface Dot11Radio1, Station NONROOT 502f.abc0.0000 Associated KEY_MGMT[WPAv2 PSK]
*Mar 1 04:20:38.883: %DOT11-6-DISASSOC: Interface Dot11Radio1, Deauthenticating Station 502f.abc0.0000 Reason: Sending station has left the BSS
*Mar 1 04:20:38.895: %DOT11-6-ASSOC: Interface Dot11Radio1, Station NONROOT 502f.abc0.0000 Associated KEY_MGMT[WPAv2 PSK]
*Mar 1 04:20:49.895: %DOT11-6-DISASSOC: Interface Dot11Radio1, Deauthenticating Station 502f.abc0.0000 Reason: Sending station has left the BSS
*Mar 1 04:20:49.907: %DOT11-6-ASSOC: Interface Dot11Radio1, Station NONROOT 502f.abc0.0000 Associated KEY_MGMT[WPAv2 PSK]
*Mar 1 04:21:00.851: %DOT11-6-DISASSOC: Interface Dot11Radio1, Deauthenticating Station 502f.abc0.0000 Reason: Sending station has left the BSS
*Mar 1 04:21:00.863: %DOT11-6-ASSOC: Interface Dot11Radio1, Station NONROOT 502f.abc0.0000 Associated KEY_MGMT[WPAv2 PSK]
*Mar 1 04:21:11.899: %DOT11-6-DISASSOC: Interface Dot11Radio1, Deauthenticating Station 502f.abc0.0000 Reason: Sending station has left the BSS
*Mar 1 04:21:11.911: %DOT11-6-ASSOC: Interface Dot11Radio1, Station NONROOT 502f.abc0.0000 Associated KEY_MGMT[WPAv2 PSK]
Hall of Fame Master

Re: Bridge: Joining a bridge

What exact model do you have? If you have ‘e’ model, do you have the antennas connected? Also you either need a power injector, ac adapter, 802.3af or hard line power.

-Scott
*** Please rate helpful posts ***
rgm Beginner
Beginner

Re: Bridge: Joining a bridge

AIR-AP1572EAC-B-K9
I have 1 5 GHZ only antenna on each AP connected on plug C & D. I did not connect a 2.4 GHz.
I have an ac plug into the AP and no power issue.
I know in the WLC I can configure it as a songle mode antenna. How can I do that with autonomous? Could that be causing an issue?
Also, how do i do the wpa2 configuration. I want to know i am doing it right.
Hall of Fame Master

Re: Bridge: Joining a bridge

Take a look at this
https://community.cisco.com/t5/wireless-mobility-documents/autonomous-ap-and-bridge-basic-configuration-template/ta-p/3112198

Make sure you set the channel on the root bridge first and also make sure your configuration is only for the dot11Radio 1 which is 5GHz.
-Scott
*** Please rate helpful posts ***
rgm Beginner
Beginner

Re: Bridge: Joining a bridge

Do I have to set a static channel? currently I have it configured as channel DFS.

That is the template I was using for the configuration but I see the issue arise when I configure the WPA2. Here are the configurations I use for the WPA2:
int dot 1
encryption vlan 1 mode ciphers aes-ccm
encryption mode ciphers aes-ccm
!
dot11 ssid BRIDGE
authentication open
authentication key-management wpa version 2
wpa-psk ascii WPA2Password123

Is their something I am missing?
CreatePlease to create content
Ask the Expert- DMVPN on Cisco routers