Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
For our guest network, we have a C9800-40 WLC acting as a foreign controller, and a C9800L acting as an anchor controller. The anchor is in our DMZ and helps keep the guest network completely segregated from our internal network. Currently, we have a...
We have a hub-and-spoke ISP network that connects some of our remote sites back to our core network. It consists of a 50 Mbps headend circuit at our data center, with various sizes of smaller circuits at the remote sites that connect back to the head...
I was messing around with Prime 2.2 CLI templates - I had created a number of variables that I realized I no longer needed, so went to delete them in the Managed Variables window. Each time I would delete one, Prime would pop up a warning telling me ...
We have our VMWare ESX hosts connected to our server access switches via trunk ports. Prime doesn't seem to track clients on trunk ports (to avoid showing clients on uplink ports between switches, I'm sure). Since these are not switch-to-switch conne...
I have the following Velocity template that I run on new devices for adding VLANs. It defines and names up to 10 VLANs. The variables vlanIDList and vlanNameList are defined as text fields in Prime. VLAN IDs and Names are entered as comma-separated v...
Yes to both. No CoA traffic was seen between ISE and the WLCs. Turns out it's not needed in this setup. TAC actually helped me figure this out last week.I did some additional testing, which amounted to attempting to connect to the SSID 40 times in a ...
Just stumbled across this configuration guide, which appears at first glance to be what I'm wanting to do. I'll go through this tomorrow and see what I can figure out: https://www.cisco.com/c/en/us/support/docs/wireless/catalyst-9800-series-wireless-...
@Scott Fella wrote:Yeah... that is an interesting setup. Since you are using an anchor, what do you see on the anchor controller that ISE sends back. Where would I look for that on the Anchor? We talking logging messages, Wireshark capture, or some...
I did - unfortunately, that guide does not cover the MAC bypass piece that allows whitelisted MAC addresses added to the correct group in ISE to bypass the login portal. Is it just not possible to host the login portal on the WLC and have ISE authent...
