cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
6665
Views
0
Helpful
50
Replies

AP1131 can't connect to vWLAN Controller

John Bachman
Level 1
Level 1

Hello experts,  I am setting up a new vWLAN Controller version 8.0.152.0  with AP1131AG access points.

The controller address is 172.16.10.5

 

 

the 2811 router is configured as

ip dhcp pool AP

network 172.16.10.0 255.255.255.0

default-gateway 172.16.10.1

option 43 hex f104.ac10.oa05

option 60 ascii "Cisco AP 1131"

dns-server 172.16.10.1

 

The error I get is: %CAPWAP-3-ERRORLOG: Did not get log server settings from DHCP.

 

here is the boot log: Can you please assist ? thank you.

 

Username:
Username: Xmodem file system is available.
flashfs[0]: 26 files, 8 directories
flashfs[0]: 0 orphaned files, 0 orphaned directories
flashfs[0]: Total bytes: 15998976
flashfs[0]: Bytes used: 5280256
flashfs[0]: Bytes available: 10718720
flashfs[0]: flashfs fsck took 28 seconds.
Base ethernet MAC Address: 00:24:97:6e:2d:74
Initializing ethernet port 0...
Reset ethernet port 0...
Reset done!
ethernet link up, 100 mbps, full-duplex
Ethernet port 0 initialized: link is up
Loading "flash:/c1130-k9w8-mx.124-25e.JAP12/c1130-k9w8-mx.124-25e.JAP12"...#########################################################################################################################################################################################################################################################################################################################################################################################################################################################################################

File "flash:/c1130-k9w8-mx.124-25e.JAP12/c1130-k9w8-mx.124-25e.JAP12" uncompressed and installed, entry point: 0x3000
executing...

              Restricted Rights Legend

Use, duplication, or disclosure by the Government is
subject to restrictions as set forth in subparagraph
(c) of the Commercial Computer Software - Restricted
Rights clause at FAR sec. 52.227-19 and subparagraph
(c) (1) (ii) of the Rights in Technical Data and Computer
Software clause at DFARS sec. 252.227-7013.

           cisco Systems, Inc.
           170 West Tasman Drive
           San Jose, California 95134-1706

 

Cisco IOS Software, C1130 Software (C1130-K9W8-M), Version 12.4(25e)JAP12, RELEASE SOFTWARE (fc3)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2017 by Cisco Systems, Inc.
Compiled Fri 20-Oct-17 23:02 by prod_rel_team


Proceeding with system init

Proceeding to unmask interrupts
Initializing flashfs...

flashfs[2]: 26 files, 8 directories
flashfs[2]: 0 orphaned files, 0 orphaned directories
flashfs[2]: Total bytes: 15740928
flashfs[2]: Bytes used: 5280256
flashfs[2]: Bytes available: 10460672
flashfs[2]: flashfs fsck took 4 seconds.
flashfs[2]: Initialization complete....done Initializing flashfs.

Radio0  present A506 7100 E8000000 A0000000 80000000 3
Rate table has 12 entries (0 SGI/0 BF variants)

Radio1  present A506 6700 E8000100 A0040000 80010000 2
This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.

A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html

If you require further assistance please contact us by sending email to
export@cisco.com.


%Error opening flash:/c1130-rcvk9w8-mx/info (No such file or directory)cisco AIR-LAP1131AG-A-K9 (PowerPCElvis) processor (revision B0) with 27638K/5120K bytes of memory.
Processor board ID FTX1315T21N
PowerPCElvis CPU at 262Mhz, revision number 0x0950
Last reset from power-on
LWAPP image version 8.0.141.32
1 FastEthernet interface
2 802.11 Radio(s)

32K bytes of flash-simulated non-volatile configuration memory.
Base ethernet MAC Address: 00:24:97:6E:2D:74
Part Number                          : 73-8962-14
PCA Assembly Number                  : 800-24818-13
PCA Revision Number                  : A0
PCB Serial Number                    : FOC13142Q02
Top Assembly Part Number             : 800-29230-02
Top Assembly Serial Number           : FTX1315T21N
Top Revision Number                  : A0
Product/Model Number                 : AIR-AP1131AG-A-K9
% Please define a domain-name first.


Press RETURN to get started!


*Mar  1 00:00:05.456: %SOAP_FIPS-2-SELF_TEST_IOS_SUCCESS: IOS crypto FIPS self test passed
*Mar  1 00:00:07.070: %SOAP_FIPS-2-SELF_TEST_RAD_SUCCESS: RADIO crypto FIPS self test passed on interface Dot11Radio 0
*Mar  1 00:00:07.546: %LINK-6-UPDOWN: Interface FastEthernet0, changed state to up
*Mar  1 00:00:08.734: %SOAP_FIPS-2-SELF_TEST_RAD_SUCCESS: RADIO crypto FIPS self test passed on interface Dot11Radio 1
*Mar  1 00:00:08.807: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0, changed state to up
*Mar  1 00:00:08.834: %LWAPP-4-CLIENTEVENTLOG: Read and initialized AP event log (contains, 986 messages)

*Mar  1 00:00:11.116: %SYS-5-RESTART: System restarted --
Cisco IOS Software, C1130 Software (C1130-K9W8-M), Version 12.4(25e)JAP12, RELEASE SOFTWARE (fc3)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2017 by Cisco Systems, Inc.
Compiled Fri 20-Oct-17 23:02 by prod_rel_team
*Mar  1 00:00:11.117: %SNMP-5-COLDSTART: SNMP agent on host AP0024.976e.2d74 is undergoing a cold start
*Mar  1 00:55:23.257: %SSH-5-ENABLED: SSH 2.0 has been enabled
*Mar  1 00:55:23.257: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to up
*Mar  1 00:55:23.257: %LINK-6-UPDOWN: Interface Dot11Radio1, changed state to up
*Mar  1 00:55:23.493: %LINK-5-CHANGED: Interface Dot11Radio1, changed state to reset
*Mar  1 00:55:23.493: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to resetlwapp_crypto_init: MIC Present and Parsed Successfully

*Mar  1 00:55:24.257: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to down
*Mar  1 00:55:24.257: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio1, changed state to down
*Mar  1 00:55:26.061: %LINEPROTO-5-UPDOWN: Line protocol on Interface BVI1, changed state to up
*Mar  1 00:55:31.383: %DHCP-6-ADDRESS_ASSIGN: Interface BVI1 assigned DHCP address 172.16.10.93, mask 255.255.255.0, hostname AP0024.976e.2d74

*Mar  1 00:55:41.877: Logging LWAPP message to 255.255.255.255.

Translating "CISCO-CAPWAP-CONTROLLER"...domain server (172.16.10.1) [OK]

Translating "CISCO-LWAPP-CONTROLLER"...domain server (172.16.10.1) [OK]

*Mar  1 00:55:52.919: %CAPWAP-5-DHCP_OPTION_43: Controller address 172.16.10.5 obtained through DHCP
*Mar  1 00:55:52.919: %CAPWAP-3-ERRORLOG: Did not get log server settings from DHCP.
*Mar  1 00:55:55.582: %CDP_PD-4-POWER_OK: Full power - NEGOTIATED inline power source
*Mar  1 00:55:56.614: %LINK-6-UPDOWN: Interface Dot11Radio1, changed state to up
*Mar  1 00:55:57.614: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio1, changed state to up
*Mar  1 00:55:57.653: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to up
*Mar  1 00:55:58.654: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to up
Not in Bound state.

 

The AP recycles and assign itself a new dhcp address each time/cycle...

 

 

 

 

 

 

 

50 Replies 50

Thank you Leo

 

I have tried on two different APs, all went well except I can't ping from the PC hosting the TFTP server

It's at 172.16.20.100/24 and the AP is at 172.16.20.110

 

No REPLY from the AP.  Everything seems to be set correctly.

 

 

 

ap: set
DEFAULT_ROUTER=172.16.20.1
IP_ADDR=172.16.20.110
NETMASK=255.255.255.0

 


ap:
ap: version
C1130 Boot Loader (C1130-BOOT-M) Version 12.3(8)JEA, RELEASE SOFTWARE (fc2)
Technical Support: http://www.cisco.com/techsupport
Compiled Mon 28-Aug-06 12:08 by kellythw

 

The only options I have are

 

ap: ?
           ? -- Present list of available commands
         arp -- Show arp table or arp-resolve an address
        boot -- Load and boot an executable image
         cat -- Concatenate (type) file(s)
 clear_ether -- clear ethernet port statistics
        copy -- Copy a file
      delete -- Delete file(s)
         dir -- List files in directories
dump_save_regs -- dump saved regs in OCM
       etest -- test emac driver code
  ether_init -- initialize ethernet port
  flash_init -- Initialize flash filesystem(s)
      format -- Format a filesystem
        fsck -- Check filesystem consistency
        help -- Present list of available commands
    init_pci -- initialize pci bridge
    led_test -- cycle led patterns
      memory -- Present memory heap utilization information
       mkdir -- Create dir(s)
        more -- Concatenate (display) file(s)
      rename -- Rename a file
       reset -- Reset the system
 -- MORE --
  reset_gpio -- reset gpio
       rmdir -- Delete empty dir(s)
         set -- Set or display environment variables
    set_baud -- set baud rates
    set_gpio -- set gpio
   set_sleep -- Pause (sleep) for a specified number of seconds
  show_ether -- show ethernet port statistics
    show_pci -- show pci setting
switch status -- report push button switch status
         tar -- extract or listing a tar file
    test ram -- read at address
   tftp_init -- Initialize tftp file system
        type -- Concatenate (type) file(s)
       unset -- Unset one or more environment variables
     version -- Display boot loader version

 

 

 

ap: flash_init
Initializing Flash...
...The flash is already initialized.

ap: dir flash:

 

 

 

Directory of flash:/

3    -rwx  71        <date>               env_vars

15997440 bytes available (1536 bytes used)

ap:


@John Bachman wrote:

except I can't ping from the PC hosting the TFTP server

I've seen this before.  May require the AP (even in ROMmon) to be rebooted.  After rebooting, do as instructed below: 

flash_init
load_helper
ether_init
set IP_ADDR 172.16.20.110
set NETMASK 255.255.255.0
set DEFAULT_ROUTER 1172.16.20.1
tftp_init
tar -xtract tftp://172.16.20.100/c1130-rcvk9w8-tar.124-25e.JAP12.tar flash:

Just be warned not to copy-n-paste the entire lot.  Cut-n-paste line by line only. 

 

Thank you LEO

That sequence worked, I was able to upload the software. Still have the exact same error, not able to get the info from the DHCP required to attach the AP  to the WLAN controller. All errors points to what ever the AP gets from DHCP. it's not agreeing with the info received from DHCP...


@John Bachman wrote:

All errors points to what ever the AP gets from DHCP. it's not agreeing with the info received from DHCP...


Ok, could be a bug with DHCP or something.  

If the AP is now loaded with RCV firmware, can you try the command "capwap ap primary-base <WLC name> <WLC Management IP address>" and see if the AP actually joins the controller?

Thank you Leo...

 

That thing is doomed... I tried 3 AP, all formatted flash, with either rvc and regular sw, same errors with DHCP.

I also ran the command capwap ap primary-base , same thing. I'm thinking of getting a new DHCP server instead of the one running  on the 2811, do you have a suggestion ? Microsoft DHCP ? Linux ? I will use another VM off the ESX. Running WIN7 or WIN server...

One last trick ... Assign a static IP address and enter the command "capwap ap primary-base <WLC name> <WLC Management IP address>".

Thank you Leo
Not sure what you mean by assigning a static address, this is LWAPP, no config terminal and the "set" command don't work. How do I assign the static IP to this AP ?
I tried another DHCP server, with option 43, same issue....


config ap ip address <IP ADDRESS> <SUBNET MASK>
config ap default <DEFAULT GATEWAY>

Thank you Leo. The command config on the AP LWAPP is an unrecognized command under EXEC and Privileged mode.

I cant set static IP with the command.

Try this:  

debug capwap console cli
config ap ip address <IP ADDRESS> <SUBNET MASK>
config ap default <DEFAULT GATEWAY>

Thank you Leo

 

The NTP server is now configured on both the 2811and vWLAN Controller. Both have NTP time.

But the AP when booting ignores the NTP and defaults to MAR 1. I need to do a clock set and set the time/date manually. I still have the exact same error messages.

If the AP does not attach to the controller how it is supposed to get it's NTP ? Command sntp server is not allowed as this is a LWAP...

 

Are you still having trouble getting the image onto the last AP?

If so try option option B from https://thewlan.com.au/2016/09/27/configuring-a-cisco-ap-for-site-survey/

 

As those APs are so old you might be hitting the issue with its MIC certificate. From the WLC try this command

 

config ap cert-expiry-ignore mic enable

 

*****Help out other by using the rating system and marking answered questions as "Answered"*****
*** Please rate helpful posts ***

Thank you Haydn

Option B is to convert to Autonomous

And this command config ap cert-expiry-ignore mic enable don't work under LWAPP.

Hi John,

 

From the logs, it looks like AP is sending WLC discovery message but is not authorized for CAPWAP DTLS session. Can you share the SN of the AP, screenshot of Security > AAA > AP Policies from WLC GUI and the output of "show capwap client rcb" from AP cli.

 

-Sri

Thank you Srkala    

 

This is the serial # of my 3 APs:  FTX1315T21N and FTX1346N1CD and FTX1315T21X

 

P0024.976e.2d74#sh version

Cisco IOS Software, C1130 Software (C1130-K9W8-M), Version 12.4(25e)JAP12, RELEASE SOFTWARE (fc3)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2017 by Cisco Systems, Inc.
Compiled Fri 20-Oct-17 23:02 by prod_rel_team

ROM: Bootstrap program is C1130 boot loader
BOOTLDR: C1130 Boot Loader (C1130-BOOT-M) Version 12.3(8)JEA, RELEASE SOFTWARE (fc2)

AP0024.976e.2d74 uptime is 2 hours, 6 minutes
System returned to ROM by power-on
System image file is "flash:/c1130-k9w8-mx.124-25e.JAP12/c1130-k9w8-mx.124-25e.JAP12"


This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.

A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html

If you require further assistance please contact us by sending email to
export@cisco.com.

cisco AIR-LAP1131AG-A-K9 (PowerPCElvis) processor (revision B0) with 27638K/5120K bytes of memory.
Processor board ID FTX1315T21N
PowerPCElvis CPU at 262Mhz, revision number 0x0950
Last reset from power-on
LWAPP image version 8.0.141.32
1 FastEthernet interface
2 802.11 Radio(s)

32K bytes of flash-simulated non-volatile configuration memory.
Base ethernet MAC Address: 00:24:97:6E:2D:74
Part Number                          : 73-8962-14
PCA Assembly Number                  : 800-24818-13
PCA Revision Number                  : A0
PCB Serial Number                    : FOC13142Q02
Top Assembly Part Number             : 800-29230-02
Top Assembly Serial Number           : FTX1315T21N and FTX1346N1CD and FTX1315T21X
Top Revision Number                  : A0
Product/Model Number                 : AIR-AP1131AG-A-K9

Configuration register is 0xF

      

 

 

This is the Screenshot:

 

2019-02-19 11_07_31-Document1 - Word.png

 

And the show capwap client rcb command:

 

P0024.976e.2d74#show capwap client rcb


AdminState                  :  ADMIN_ENABLED
SwVer                       :  8.0.141.32
NumFilledSlots              :  2
Name                        :  AP0024.976e.2d74
Location                    :  default location
MwarName                    :
MwarMacAddr                 :  ffff.ffff.0000
MwarHwVer                   :  0.0.0.0
ApMode                      :  Local
ApSubMode                   :  Not Configured
OperationState              :  DISCOVERY
CAPWAP Path MTU             :  576
LinkAuditing                :  disabled
AP Rogue Detection Mode     :  Enabled
AP Tcp Mss Adjust           :  Disabled
Predownload Status          :  None
Auto Immune Status          :  Disabled
RA Guard Status             :  Disabled
Efficient Upgrade State     :  Disabled
Efficient Upgrade Role      :  None
TFTP Server                 :  Disabled
802.11bg(0) Radio
  Radio Mode                : Invalid
  GPR Period                : 0
  Beacon Period             : 0
  DTIM Period               : 0
  World Mode                : 1
  VoceraFix                 : 0
  Dfs peakdetect            : 1
  Fragmentation Threshold   : 2346
  Current Tx Power Level    : 0
  Current Channel           : 11
802.11a(1) Radio
  Radio Mode                : Invalid
  GPR Period                : 0
  Beacon Period             : 0
  DTIM Period               : 0
  World Mode                : 1
  VoceraFix                 : 0
  Dfs peakdetect            : 1
  Fragmentation Threshold   : 2346
  Current Tx Power Level    : 0
  Current Channel           : 161

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: