cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1466
Views
0
Helpful
11
Replies

AIR-AP2802I-B-K9 doesn't register

049dtrapp
Level 1
Level 1

Hi,

i couldn't register two of the AP's above over our WAN.

A same AP (AIR-AP2802I-E-K9) connected in a routed Network next to the WLC is working fine.

WLC is a 2504 with the newest SW (8.3.112.0) in our LAB.

I can see the CAPWAP Join Packet into the CLI Debug Session but the AP's doesn't register.

All of the Firewall Settings are fine, I can see the Packets passing. An next to these new AP's is one existing AP working.

Does anyone have an Idea whre to look?

11 Replies 11

Scott Fella
Hall of Fame
Hall of Fame

Register over the WAN?  Is the AP behind a NAT?  If so, you need to reference the OEAP guide. You will need to configure the nat ip on the management interface and port forward udp 5246 and 5247 to the ip of the controller.

-Scott 

*** Please rate helpful posts *** 

-Scott
*** Please rate helpful posts ***

Hi Scott, no NAT, complete internal.

I can see the CAPWAP Packets from the AP's on the controller, and the APS are shown under Statistics/APJoin as "Not Joined" but nothing more.

You have enough AP license on the controller?  Are the AP's on the same subnet as the WLC. As that would help.

-Scott 

*** Please rate helpful posts *** 

-Scott
*** Please rate helpful posts ***

Hi Scott,

there are 50 Licenses on the WLC the one that Registers is on the Subnet next to the Management Interface, that is working fine, but the two on the Remote Site Not

Post the complete output to the following commands: 

1.  WLC:  sh sysinfo; 

2.  WLC:  sh time; 

3.  AP:  sh version; and 

4.  AP:  sh ip interface brief

Here's the WLC Output:

(Cisco Controller) >show sysinfo

Manufacturer's Name.............................. Cisco Systems Inc.
Product Name..................................... Cisco Controller
Product Version.................................. 8.3.112.0
Bootloader Version............................... 1.0.20
Field Recovery Image Version..................... 7.6.101.1
Firmware Version................................. PIC 16.0


OUI File Update Time............................. Sun Sep 07 10:44:07 IST 2014

Build Type....................................... DATA + WPS

System Name...................................... wlc-3
System Location..................................
System Contact...................................
System ObjectID.................................. 1.3.6.1.4.1.9.1.1279
IP Address....................................... 10.49.110.13
IPv6 Address..................................... ::
Last Reset....................................... Software reset
System Up Time................................... 0 days 20 hrs 10 mins 36 secs
System Timezone Location......................... (GMT +1:00) Amsterdam, Berlin, Rome, Vienna

--More-- or (q)uit
System Stats Realtime Interval................... 5
System Stats Normal Interval..................... 180

Configured Country............................... Multiple Countries : BE,CH,DE,DK,FI,FR,GB,IE,NL,NO,

............................................... SE,US
Operating Environment............................ Commercial (0 to 40 C)
Internal Temp Alarm Limits....................... 0 to 65 C
Internal Temperature............................. +23 C
External Temperature............................. +27 C
Fan Status....................................... 4300 rpm

State of 802.11b Network......................... Enabled
State of 802.11a Network......................... Enabled
Number of WLANs.................................. 2
Number of Active Clients......................... 0

OUI Classification Failure Count................. 0

Burned-in MAC Address............................ D0:C2:82:E1:5F:00
Maximum number of APs supported.................. 75
System Nas-Id.................................... wlc-3
WLC MIC Certificate Types........................ SHA1

--More-- or (q)uit

(Cisco Controller) >

(Cisco Controller) >show time

Time............................................. Fri Mar 31 09:35:30 2017

Timezone delta................................... 0:0
Timezone location................................ (GMT +1:00) Amsterdam, Berlin, Rome, Vienna

NTP Servers
    NTP Polling Interval.........................     600

     Index     NTP Key Index                  NTP Server                Status          NTP Msg Auth Status
    -------  ----------------------------------------------------------------------------------------------
       1              0                                 10.49.3.180     In Sync              AUTH DISABLED


For the AP's output I have to wait a little bit, that my colleague is able to connect a console cable because he's 8hours back in time.

Configured Country............................... Multiple Countries : BE,CH,DE,DK,FI,FR,GB,IE,NL,NO,SE,US

This is the problem.  The Regulatory Domain of the AP is "-B" which is exclusively for the US.  But the controller is configured with conflicting Regulatory Domain.  Try and disable the countries in RED and see if the AP will join the controller.

I've deleted all the not US Domains. Without Success. The only thing that happend is that the -E AP doesn't work anymore.

And I can see the following Messages into the Message Log:

spamApTask7: Mar 31 13:01:37.305: %DTLS-3-HANDSHAKE_FAILURE: openssl_dtls.c:916 Failed to complete DTLS handshake with peer ....

Can I use only one Reg Domain in the future? On our productive WLC we use all the Reg Domains above.

I've deleted all the not US Domains. Without Success.

Did you reboot the AP? 

Can I use only one Reg Domain in the future?

Of course.  This is highly recommended.  If the network requires multiple (and conflicting) Regulatory Domain, either get separate WLC, use Mobility Express or use autonomous IOS.

AP isn't rebooted yet, I will do!

Reg Domain is ok, we will use Mobility Express then.

Hi,

now the AP's are registered and working fine.

Thank you for your help!

(A little bit strange that there are no messages about the wrong Reg Domain...)

Review Cisco Networking for a $25 gift card