Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
784
Views
0
Helpful
2
Replies

Losing Local Wireless Capability At Only 1 Site Of 12 When Remote WLC5508 Over IPSEC VPN Becomes Unavailable

todd.neiert@asg.com
Level 1
Level 1

‎03-08-2019 11:36 AM - edited ‎07-05-2021 10:01 AM

I have a WLC5508 controller based in India that is servicing all of my EAME/AP sites.  Roughly 15 sites.  The most current site added was a new office also in India with (8) 2802i APs.  That office is connected to the controller site via IPSEC VPN using Cisco ASA-to-ASA HA firewalls.  All of the offices APs are configured with FlexConnect and local switching, same as all other sites on the controller.  Whenever in the past that I have taken the controller down for maintenance or the controller site has been down, none of the offices configured on this controller lost ability to use their wireless networks.  I have an identical WLC5508 in the US with numerous offices connected, configured the same, and whenever that controller has been inaccessible by the offices, they continued to be able to utilize their wireless networks.  I have been through the config at least fifty times trying to figure out what is missing or incorrect and at a loss.  Looking for some direction to try next.  Need to keep these WLC5508's going til we refresh and move to the AIR-CTVM-K9 likely in 2020.  Thank you in advance!    

Labels:
0 Helpful
2 Replies 2

Jaderson Pessoa
VIP Alumni
VIP Alumni

‎03-08-2019 11:45 AM

Hello,

 

I think that your aps working in tunnel mode, try sets their configuration to local mode. Because in canse your controller has down your ap still working normally.

 

check it for more information: 

https://community.cisco.com/t5/other-wireless-mobility-subjects/wlc-mode-aps-local-or-bridge/td-p/2709413

Jaderson Pessoa
*** Rate All Helpful Responses ***
0 Helpful

todd.neiert@asg.com
Level 1
Level 1
In response to Jaderson Pessoa

‎03-12-2019 09:19 AM

Jaderson, I have them in FlexConnect and local switching and do not have any ACLs applied that would cause them to have to bridge back to the WLC.  Maybe I am missing another piece but sure can't find it.  

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card