I have 2x5508 working on the code version 8.0.133. Both controllers are in the same subnet and they are in one mobility group. After the upgrade to the code 8.0.133 (maybe this is only coincident) APs can not create DTLS tunnel and join WLCs. This is what I can see in the Message Logs:
*spamApTask3: Jul 29 22:09:51.476: %CAPWAP-3-DTLS_DB_ERR: capwap_ac_sm.c:8583 58:35:d9:70:10:46: Failed to create DTLS connection for AP 10.35.15.9 (43890).
There is a lot of message like this one for different APs. This message is display on the WLC1.
On the WLC 2 I have a lot of "Trap Logs" like this:
0 Fri Jul 29 21:49:08 2016 AP 'gdanwa1143ji', MAC: 00:3a:99:db:19:70 disassociated previously due to Link Failure. Uptime: 2 days, 07 h 53 m 45 s . Reason: Capwap WTP Event request.
1 Fri Jul 29 21:49:08 2016 AP on the 802.11a radio with Base Radio MAC 00:3a:99:db:19:70 (gdanwa1143ji) is unable to associate. The regulatory domain configured on it '-A' does not match the controller's regulatory domain: -DN
2 Fri Jul 29 21:46:11 2016 AP 'gdanwa1135ji', MAC: 00:3a:99:da:e3:00 disassociated previously due to Link Failure. Uptime: 3 days, 08 h 40 m 51 s . Reason: Capwap WTP Event request.
3 Fri Jul 29 21:46:11 2016 AP on the 802.11a radio with Base Radio MAC 00:3a:99:da:e3:00 (gdanwa1135ji) is unable to associate. The regulatory domain configured on it '-A' does not match the controller's regulatory domain: -DN
4 Fri Jul 29 20:44:13 2016 AP 'gpunwa2201ji', MAC: 58:ac:78:ee:66:80 disassociated previously due to Link Failure. Uptime: 6 days, 04 h 45 m 14 s . Reason: Capwap WTP Event request.
5 Fri Jul 29 20:44:07 2016 AP 'gjinwa2143', MAC: 5c:a4:8a:69:1c:c0 disassociated previously due to Link Failure. Uptime: 51 days, 01 h 47 m 49 s . Reason: Capwap Echo request.
6 Fri Jul 29 20:44:04 2016 AP 'gdanwa2140ji', MAC: 00:3a:99:db:17:f0 disassociated previously due to Link Failure. Uptime: 10 days, 12 h 54 m 35 s . Reason: Capwap Echo request.
And now when I reboot both controllers, logs are display opposite. WLC1 have "Trap logs" - Link Failure and WLC2 have "Failed to create DTLS tunnel". After some times half off the APs are not able to connect to any of the WLCs and I lose half of the network.
I will be appreciated any help or ideas how to resolve this issue.
Yes I know about regulatory domain, and I fix this issue. Regulatory domain wasn't changed from a long time but I have this problem from a few weeks. Moreover problem with RD is related with the 5GHz which is disabled on this controller.
It’s been about two and half years, since the launch of next generation Cisco Catalyst 9800 Wireless LAN Controllers that has the most deployment flexibility and runs the modular, scalable, highly reliable, open and programmable operating system, I...
Hi All, I have made this video for Cisco Pitch the Future Contest in Malaysia which talks about Wi-Fi 6 and EWC Demo. Please feel free to view the video below and please support me for this contest by giving the video a like as the Contest will end o...
On the Cisco Catalyst 9800 Series WLC, enabling/disabling the remote LAN (RLAN) ports on APs requires going into the configuration for each AP and manually enabling/disabling the ports. However, as the number of APs that need to have their RLAN...
It’s been a long road for our AireOS wireless controllers. In fact these products have been around Cisco in some form since 2005. As you may have heard, Cisco made the decision to End-of-Sale (EOS) these products last month.
That means that these AireOS ...