WLC 4400 web authentication DNS queries are sent from the management interface.
Before authentication, a web authentication client's Domain Name Server (DNS) queries go out over the management port on the 4400, instead of going out over the client's dynamic interface.
This issue is documented in Cisco bug ID CSCsc68105 - 4400 Web Auth DNS queries are being sent from the mgmt interface.
The login page should pop up when a wireless client opens a browser and puts in the URL for the desired page. The URL must contain a site name that has to be DNS resolved, since the DNS resolution is what triggers the re-direction to the login page, either on the controller or on an external server. If the client has a homepage that requires DNS resolution in the browser, as soon as the browser is opened, that DNS resolution triggers the redirect, making it appear seamless.
The workaround is to make sure that the management interface has routes to and from the DNS server. The controller handles routing between the management interface and the dynamic interface the guest WLAN is bound to on its own.
The upgrade can be done through the Graphical User Interface (GUI) or the Command Line Interface (CLI), as shown:-
transfer download serverip
transfer download filename
transfer download datatype code
transfer download path /
transfer download start
This issue is first found in version 3.1(59.24) and is first fixed in version 4.0(155).
4400 Web Auth DNS queries are being sent from the mgmt interface - CSCsc68105
Before authentication, a web auth client's DNS queries go out over the management port on the 4400, instead of going out over the client's dynamic interface.
Workaround: ensure that the DNS server is reachable from the managment interface.
Hello, Based on the formula below, dBm 19.979 should be 99.51mW, but a window box in Ekahau shows it is 25mW. Please see the screenshot below. Are there any one who can tell what the issue is? Thank you P(mW) = 1mW ⋅ 10^(P(dBm)/...
Hello,I want to know if it is possible to provide power to a Mesh AP with a power injector like AIR-PWRINJ6, without connecting this to a switch port !Because it is easier to use a Power injector than a Power adaptator is case there is no power outlet nea...
Hello,One of the devices (android phone) on the corporate WLAN is unable to connect.No issues with apple device on the same WLAN and same AP.Message on the phone: time limit reachedDebug message on wlc at the time of connection:debug di*osapiBsnTimer...
Hello Experts, I am using cisco mobility express AP"2802" as WLC. Created a Guest wlan with custom webpage and authentication using radius server. I can see that Clinet is getting authenticating in ise but client is getting error "The User ...
Hello,I am trying to monitor an EWC but I can't get all information on my monitoring server through snmp.When I perform a snmpwalk I get few informations (look at the txt file attached to this post).But I want to be able to obtain more information like CP...