Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
88216
Views
31
Helpful
20
Replies

WLC 2504 can't access GUI...

Go to solution
Zahan Al-Rashid
Level 1
Level 1

‎11-12-2013 09:06 AM - edited ‎07-04-2021 01:15 AM

Hi All,

I am not sure what I have been doing wrong, the 2504 itself only has 4 ports and no management port but I have heard it is actually port 1 (even though there is no labels for it). This is what I have done so far to try and access the GUI:

in CLI mode I have

1) put AP managament address as 10.151.55.129 255.255.255.224;

2) I have enabled adminmode on port 1 which I am assuming is management port and enabling admin mode is the same as "no shut" on switches I assume; here is the command I entered:

(Cisco Controller) config>port adminmode 1 enable

3) enabled HTTPS/HTTP via commands:

(Cisco Controller) config>network secureweb enable

(Cisco Controller) config>network web-auth secureweb enable

(Cisco Controller) config>network webmode enable

4) I then did reset system and checked that changes have taken place using show network summary as shown below. I have also enabled mgmt-via-dynamic interface to see if it makes any difference:

RF-Network Name............................. TEST_WIFI

Web Mode.................................... Enable

Secure Web Mode............................. Enable

Secure Web Mode Cipher-Option High.......... Disable

Secure Web Mode Cipher-Option SSLv2......... Disable

Secure Web Mode RC4 Cipher Preference....... Disable

OCSP........................................ Disabled

OCSP responder URL..........................

Secure Shell (ssh).......................... Enable

Telnet...................................... Disable

Ethernet Multicast Forwarding............... Disable

Ethernet Broadcast Forwarding............... Disable

AP Multicast/Broadcast Mode................. Multicast   Address : 225.225.225.225

IGMP snooping............................... Disabled

IGMP timeout................................ 60 seconds

IGMP Query Interval......................... 20 seconds

MLD snooping................................ Disabled

MLD timeout................................. 60 seconds

MLD query interval.......................... 20 seconds

User Idle Timeout........................... 300 seconds

ARP Idle Timeout............................ 300 seconds

Cisco AP Default Master..................... Disable

AP Join Priority............................ Disable

Mgmt Via Wireless Interface................. Disable

Mgmt Via Dynamic Interface.................. Enable

Bridge MAC filter Config.................... Enable

Bridge Security Mode........................ EAP

Mesh Full Sector DFS........................ Enable

AP Fallback ................................ Enable

Web Auth CMCC Support ...................... Disabled

Web Auth Redirect Ports .................... 80,1

Web Auth Proxy Redirect  ................... Disable

Web Auth Captive-Bypass   .................. Disable

Web Auth Secure Web  ....................... Enable

Fast SSID Change ........................... Disabled

AP Discovery - NAT IP Only ................. Enabled

IP/MAC Addr Binding Check .................. Enabled

CCX-lite status ............................ Disable

oeap-600 dual-rlan-ports ................... Disable

oeap-600 local-network ..................... Enable

mDNS snooping............................... Disabled

mDNS Query Interval......................... 15 minutes

5) I have setup my LAPTOP NIC to be 10.151.55.20 255.255.255.224 and connected it to port 1 on wlc 2504; but I can't ping 10.151.55.29 nor can I browse to https://10.151.55.29/. The port does appear up (green lights flashing on port 1 and laptop NIC also flashing).

Any help would be appreciated

6 people had this problem
Labels:
0 Helpful
20 Replies 20

Go to solution
Abedin
Level 1
Level 1
In response to Scott Fella

‎01-05-2018 09:23 AM

I am not sure of how to untagged the management vlan to 0. could you please help me

0 Helpful

Go to solution
Scott Fella
Hall of Fame
Hall of Fame
In response to Abedin

‎01-05-2018 09:24 AM

To untag the management interface, you set the vlan to 0.
-Scott
*** Please rate helpful posts ***
0 Helpful

Go to solution
Fsrk
Level 1
Level 1
In response to Scott Fella

‎03-12-2019 07:26 AM

Dear can you sent me configuration comment for untagging the port 1 and vlan ID also I need to change please helo me now I'm standing console with putty for configuration
0 Helpful

Go to solution
HasanShukri@2YComms
Level 1
Level 1
In response to Scott Fella

‎12-30-2019 10:35 PM

@Scott Fella wrote:

If your connecting your laptop direct to port 1, then you need to untagged the management vlan. Right now you have that configured for vlan 10, you need to set that to vlan 0.

Then you will be able to ping the management interface and connect to it via the GUI.

Sent from Cisco Technical Support iPhone App

hi scott below in my wlc management interface config:

Interface Name................................... management
MAC Address...................................... bc:c4:93:17:e5:8f
IP Address....................................... 10.150.1.1
IP Netmask....................................... 255.255.255.0
IP Gateway....................................... 10.150.1.254
External NAT IP State............................ Disabled
External NAT IP Address.......................... 0.0.0.0
VLAN............................................. untagged
Quarantine-vlan.................................. 0
Active Physical Port............................. LAG (13)
Primary Physical Port............................ LAG (13)
Backup Physical Port............................. Unconfigured
DHCP Proxy Mode.................................. Global
Primary DHCP Server.............................. 10.150.1.2
Secondary DHCP Server............................ Unconfigured
DHCP Option 82................................... Disabled
IPv4 ACL......................................... Unconfigured
mDNS Profile Name................................ Unconfigured
AP Manager....................................... Yes
Guest Interface.................................. No
L2 Multicast..................................... Enabled

 

 

but i'm still cannot access either ping to management ip address directly through port 1. tq

 

0 Helpful

Go to solution
kddiindia
Level 1
Level 1

‎07-23-2014 04:57 AM

Hi i too have same issue and found scott answer, 

Could you guide me to configure Service-port configuration on WL C2504.

 

Thanks,

Narpan,

0 Helpful

Go to solution
malik.shafqat1
Level 1
Level 1
In response to kddiindia

‎01-12-2018 10:15 PM

Dear kddiindia,

WLC service port is used for out of bound management. ip by some reason you are unable to access wlc. you can access wlc by service port ip address and its recommended your service port should different from your management vlan. by default 192.168.1.1 ip address of service port

Regards,
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card