Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1502
Views
4
Helpful
9
Replies

9800 client IP acquiring delay

komiks
Level 1
Level 1

‎12-19-2023 02:02 AM

We are to migrate WLC from AireOS to 9800. but we are getting an issue on the delay the client is getting an IP.

The setup is WLC with dot1x authn and ISE posture.

the comparison is when using 9800, it takes 10seconds longer on the posture assessment and IP acquisition than using the aireos wlc. which is not acceptable with the client that's why we can't proceed with the migration.

 

9 Replies 9

Mark Elsen
Hall of Fame
Hall of Fame

‎12-19-2023 04:34 AM - edited ‎12-19-2023 04:42 AM

 

 - Start with a checkup of the 9800 (current) configuration with the CLI command show tech wireless and feed the output into 
                                                                                                                         Wireless Config Analyzer

 - For DHCP client provisioning  use these advices as being best practice(s) : https://www.cisco.com/c/en/us/products/collateral/wireless/catalyst-9800-series-wireless-controllers/guide-c07-743627.html#DHCPbridgingandDHCPrelay

   - Debug clients according to https://logadvisor.cisco.com/logadvisor/wireless/9800/9800ClientConnectivity   (correctedx2)  , you can have client debugs , so called RadioActive Traces , analyzed with : https://cway.cisco.com/tools/WirelessDebugAnalyzer/

 - Monitor overall client behavior  and or check for improvement with commands mentioned in : https://www.cisco.com/c/en/us/support/docs/wireless/catalyst-9800-series-wireless-controllers/217738-monitor-catalyst-9800-kpis-key-performa.html#anc5

 M.



-- Let everything happen to you  
       Beauty and terror
      Just keep going    
       No feeling is final
Reiner Maria Rilke (1899)

MHM Cisco World
VIP
VIP

‎12-19-2023 05:40 AM

So in end the client auth or not?

Are you use dual dhcp subnet pool ?

MHM

0 Helpful

komiks
Level 1
Level 1
In response to MHM Cisco World

‎12-19-2023 05:39 PM

yes,the client authenticates, we are using the same dhcp server for different subnets.

0 Helpful

Rich R
VIP
VIP

‎12-19-2023 07:22 AM

What version of IOS-XE are you using on the 9800?
Hint: refer to TAC recommended link below.

------------------------------
Please click Helpful if this post helped you and Accept as Solution (drop down menu at top right of this reply) if this answered your query.
------------------------------
TAC recommended codes for AireOS WLC's   and   TAC recommended codes for 9800 WLC's
Best Practices for AireOS WLC's,   Best Practices for 9800 WLC's   and   Cisco Wireless compatibility matrix
Check your 9800 WLC config with Wireless Config Analyzer using "show tech wireless" output or "config paging disable" then "show run-config" output on AireOS and use Wireless Debug Analyzer to analyze your WLC client debugs
Field Notice: FN63942 APs and WLCs Fail to Create CAPWAP Connections Due to Certificate Expiration
Field Notice: FN72424 Later Versions of WiFi 6 APs Fail to Join WLC - Software Upgrade Required
Field Notice: FN72524 IOS APs stuck in downloading state after 4 Dec 2022 due to Certificate Expired
- Fixed in 8.10.196.0, latest 9800 releases, 8.5.182.12 (8.5.182.13 for 3504) and 8.5.182.109 (IRCM, 8.5.182.111 for 3504)
Field Notice: FN70479 AP Fails to Join or Joins with 1 Radio due to Country Mismatch, RMA needed
How to avoid boot loop due to corrupted image on Wave 2 and Catalyst 11ax Access Points (CSCvx32806)
Field Notice: FN74035 - Wave2 APs DFS May Not Detect Radar After Channel Availability Check Time
Leo's list of bugs affecting 2800/3800/4800/1560 APs
Default AP console baud rate from 17.12.x is 115200 - introduced by CSCwe88390
0 Helpful

komiks
Level 1
Level 1
In response to Rich R

‎12-19-2023 05:40 PM

version is 17.9.4a

0 Helpful

Rich R
VIP
VIP
In response to komiks

‎12-19-2023 05:41 PM

Ok that's a good start.
And have you done a radioactive trace on a client to understand what is causing that delay?

------------------------------
Please click Helpful if this post helped you and Accept as Solution (drop down menu at top right of this reply) if this answered your query.
------------------------------
TAC recommended codes for AireOS WLC's   and   TAC recommended codes for 9800 WLC's
Best Practices for AireOS WLC's,   Best Practices for 9800 WLC's   and   Cisco Wireless compatibility matrix
Check your 9800 WLC config with Wireless Config Analyzer using "show tech wireless" output or "config paging disable" then "show run-config" output on AireOS and use Wireless Debug Analyzer to analyze your WLC client debugs
Field Notice: FN63942 APs and WLCs Fail to Create CAPWAP Connections Due to Certificate Expiration
Field Notice: FN72424 Later Versions of WiFi 6 APs Fail to Join WLC - Software Upgrade Required
Field Notice: FN72524 IOS APs stuck in downloading state after 4 Dec 2022 due to Certificate Expired
- Fixed in 8.10.196.0, latest 9800 releases, 8.5.182.12 (8.5.182.13 for 3504) and 8.5.182.109 (IRCM, 8.5.182.111 for 3504)
Field Notice: FN70479 AP Fails to Join or Joins with 1 Radio due to Country Mismatch, RMA needed
How to avoid boot loop due to corrupted image on Wave 2 and Catalyst 11ax Access Points (CSCvx32806)
Field Notice: FN74035 - Wave2 APs DFS May Not Detect Radar After Channel Availability Check Time
Leo's list of bugs affecting 2800/3800/4800/1560 APs
Default AP console baud rate from 17.12.x is 115200 - introduced by CSCwe88390

komiks
Level 1
Level 1
In response to Rich R

‎12-19-2023 10:24 PM

right now what we do is to connect the client in a different AP. result is its faster compared to the other AP. but question is, they have the same firmware version and model, same tags and profile so what may be the cause why it's longer to connect on the other AP?

0 Helpful

komiks
Level 1
Level 1
In response to Rich R

‎12-19-2023 10:58 PM

not sure what to look exactly on teh RA trace regarding delay.

0 Helpful

Rich R
VIP
VIP
In response to komiks

‎12-20-2023 01:46 AM

Then best to open a TAC case and let them work through it with you.

------------------------------
Please click Helpful if this post helped you and Accept as Solution (drop down menu at top right of this reply) if this answered your query.
------------------------------
TAC recommended codes for AireOS WLC's   and   TAC recommended codes for 9800 WLC's
Best Practices for AireOS WLC's,   Best Practices for 9800 WLC's   and   Cisco Wireless compatibility matrix
Check your 9800 WLC config with Wireless Config Analyzer using "show tech wireless" output or "config paging disable" then "show run-config" output on AireOS and use Wireless Debug Analyzer to analyze your WLC client debugs
Field Notice: FN63942 APs and WLCs Fail to Create CAPWAP Connections Due to Certificate Expiration
Field Notice: FN72424 Later Versions of WiFi 6 APs Fail to Join WLC - Software Upgrade Required
Field Notice: FN72524 IOS APs stuck in downloading state after 4 Dec 2022 due to Certificate Expired
- Fixed in 8.10.196.0, latest 9800 releases, 8.5.182.12 (8.5.182.13 for 3504) and 8.5.182.109 (IRCM, 8.5.182.111 for 3504)
Field Notice: FN70479 AP Fails to Join or Joins with 1 Radio due to Country Mismatch, RMA needed
How to avoid boot loop due to corrupted image on Wave 2 and Catalyst 11ax Access Points (CSCvx32806)
Field Notice: FN74035 - Wave2 APs DFS May Not Detect Radar After Channel Availability Check Time
Leo's list of bugs affecting 2800/3800/4800/1560 APs
Default AP console baud rate from 17.12.x is 115200 - introduced by CSCwe88390
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card