Buy or Renew
Buy or Renew

Wireless - Mobility Knowledge Base

cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Create a new article
Bookmark
|
Subscribe
|

Insider User Research program

Knowledge Base Articles

Create a new article

EAP Methods Summary

Sometimes we are just asked for assistance to configure a secure WLAN doing authentication against a “server” (most of the time trying to simulate what they already have on wired, normally for authentication of the domain users), but having no idea t...

Jeal Jimenez by Cisco Employee
  • 18869 Views
  • 6 comments
  • 42 Helpful votes

Resolve the Syslog Message “Unregistered 9800-CL can only be used in lab”

The Cisco Document Team has posted an article. This document describes the syslog message 'Unregistered 9800-CL can only be used in lab' and how to resolve it. Know of something that needs documenting? Share a new document requ...

EEM Scripts to Enable/Disable the RLAN Ports on APs Connected to a Cisco Catalyst 9800 Series WLC

OverviewConfigurationCreate a CSV File With a List of All the APs Joined to the 9800Verifying theCSV File Will Work with the EEM AppletsBreakdown of the Enabling and Disabling EEM AppletsMonitoring the Applet Overview On the Cisco Catalyst 9800 Seri...

RLAN_EEM_01.png RLAN_EEM_02.png RLAN_EEM_04.png RLAN_EEM_05.png
justloo by Cisco Employee
  • 6690 Views
  • 3 comments
  • 11 Helpful votes

Upgrade APs in non-Homogeneous EWC Networks with TFTP and SFTP Servers

The Cisco Document Team has posted an article. This document describes in detail the Access Point Image download process for non-homogeneous EWC networks with TFTP and SFTP Servers. Know of something that needs documenting? Sha...

Identify and Locate a Rogue AP/Client on 9800 Wireless Controllers

The Cisco Document Team has posted an article. This document describes how to detect and locate a rogue access point or a rogue client with the use of the 9800 wireless controller. Know of something that needs documenting? Shar...

Access Point ROMMON Recovery AP: prompt Recovery Example

                                    Access Point ROMMON Recovery AP: prompt Recovery Here is the step by step procedure for 1140 series AP.. Its the same for almost 90% or all the Aironet product series Image usedc1140-k9w7-tar.124-21a.JY.tar Assumin...

Surendra BG by Cisco Employee
  • 431174 Views
  • 97 comments
  • 86 Helpful votes

Troubleshoot Central Web Authentication (CWA) with Wireless Lan Controller (WLC) 9800 and Identity Services Engine (ISE)

The Cisco Document Team has posted an article. This document describes how to troubleshoot Central Web Authentication (CWA) with WLC 9800 and ISE. Know of something that needs documenting? Share a new document request to doc-ic...

Load more
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Top Contributors
Featured Article

Vendor Class Identifier DHCP Option 43, Option 60 and option 241

Implementing DHCP Option 43 and Option 60 in external MS-DHCP Server using Vendor Class Identifier. 

Challenge - How to find Cisco device Vendor Class Identifier 

Procedure

Step 1

Implement DHCP Server in Windows Server (Ver. any) 

Step 2

Install Wireshark Network Protocol Analyzer (Packet tracer) in the Windows Server machine where the DHCP server is running. 

After installation select “Ethernet” connection and start packet capturing. 

Step 3

Connect Cisco device (AP/ LWAP/ Switch/ Router). Configure to devices ethernet interfaces “ip address” should be obtained from DHCP server therefore ethernet interface should be configured as “ip address dhcp” 

The connected device starts sending broad casting message packets with its MAC address to lease IP address from DHCP server. 

Wireshark packet tracer already started and capture ethernet packets, it will show the connected MAC address send broadcast message to DHCP server. DHCP server captured the broadcast message and replied to the device. 

If you select the first line of broadcast message of the device in Wireshark packet analyzer, you can easily identify Vendor Class Identifier in left side bottom part of the window. 

 Wiershark AP3702 packet capturingWiershark AP3702 packet capturing

 


Implementing DHCP option 43 and 60 

The generic vendor class identification option is 43. Each vendor has been given a unique vendor identification number in decimal. “241” is used for Cisco Management controller.  When it converts to hexadecimal “F1 or f1”. 

Conversion decimal to hexadecimal: 

241 ÷ 16 = 15 R 1 —> (0.0625 x 16) = 1 = 1  

15 ÷ 16 = 0 R 15 —> (0.9375 x 16) = 15 = f 

When it writes to hexadecimal writes to bottom to top as a “f 1” 

 

Internal DHCP pool configuration 

Internal DHCP pool in Cisco router or switch can use as follows: 

ip dhcp pool VLAN20
  network 172.168.10.0 255.255.255.0
  default-router 172.168.10.1
  dns-server 83.68.72.2
  option 43 hex f104aca80a02 <=  04-indicates one controller/aca80a02-“controller ip:172.168.10.2 in hexadecimal”
  option 60 ascii “Cisco AP c3700”

 

 

External MS_Windows Server DHCP configuration. 

Windows Server DHCPWindows Server DHCP

 

Step 1

Open DHCP Server in Windows Server (Ver. any) 

Expand the DHCP network scope under IPv4

Select on IPv4 and right click the mouse and chose “Define Vendor Classes”.

Define Vendor ClassDefine Vendor Class


 


Press “Add” button in DHCP Vendor Classes dialog box. 

WindowsServer-DHCP-3.PNG

 

 
 
Type Device Display name and Description in "New Class" dialog box and Vendor Class Identifier under ASCII column as “Cisco AP c3700” (alternative method for DHCP option 60 in internal ip DHCP pool). Press "OK" button.

WindowsServer-DHCP-4.PNG


 

 
Select again IPv4 and right click the mouse and chose “Set Predefined Options”. 

WindowsServer-DHCP-6.PNG

 
 
Select Option class  in "Predefined Options and Values" dialog box and choose already created device vendor class.

WindowsServer-DHCP-7.PNGWindowsServer-DHCP-8.PNG


 

 
 
 
 
 
 
 
 
 
 
 
 

Click “Add” button in Predefined Options and Values dialog box. 

WindowsServer-DHCP-9.PNG


 


WindowsServer-DHCP-10.PNG


 

 
 
 
 
 
 
 
 
 

Type Name as “WLC-4402” Wireless controller device, select Data type as “IP Address” and mark Array check box, Type Code as 241 (Management Controller) and Type the Description as Management Controller IP address allocation. Press “OK” button. This is an alternative method for DHCP option 43 in DHCP server and in internal DHCP pool in Cisco router or switch.


WindowsServer-DHCP-11.PNG

 

Then you will be back to the “Predefined Options and Values” dialog box. Press “Edit Array” button. “IP Address Array Editor” dialog box appears and can type number of controllers IP address if more than one WLC controller exist on your network in IP address space. Press “OK” button. 


WindowsServer-DHCP-12.PNGWindowsServer-DHCP-13.PNG
 


 

 
 
 
 
 
 
 
 
 
 
 
Step 3

Select “Scope Options” under created network scope and right click on it, then click “Configure Options”.


WindowsServer-DHCP-14.PNGWindowsServer-DHCP-15.PNG

WindowsServer-DHCP-17.PNG


 

Choose “Advanced” tab in “Scope Options” and click “Vendor class” drop down box arrow. Chose created vendor class device ex. “AP 3702”. Then it will appear created DHCP option as 241 and mark it. Given Management Controller list of IPs addresses appears, you can add or remove or edit in here and press “OK” button.

WindowsServer-DHCP-16.PNGWindowsServer-DHCP-17.PNG

 

 

 

 

 


 


 

 

 

 

WindowsServer-DHCP-18.PNGWindowsServer-DHCP-19.PNG

 

 


 

 
 
 
 
 
 
 
 
 
 
 
 
 
 
It will be added to the network DHCP pool in server, and it will lease the IP to AP with Management Controller IP address. 

WindowsServer-DHCP-25.PNG

 

AIR-CAP3702 console port connected to PC/Laptop USB port and using Cisco CLI analyzer or Putty can read IP status of both devices. (IPs in examples are not real. Above example IP address and below message IP addresses are two different VLANs IP addresses. Don't try to match IP's equality.)

 

WindowsServer-DHCP-22.PNG

 

 

 


 

siskum
Spotlight
Top