Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
789
Views
4
Helpful
6
Replies

Another Cisco WLC 9800-L issue

adamscottmaster2013
Level 4
Level 4

‎07-27-2025 03:39 PM

I have two controllers 9800-L running 17.12.4 IOS.  wlc01 is the main controllers serving wireless SSID cciers and cciesec.  wlc02 controller is the anchor controller serving wireless SSID cciesp and cciedc.  The ethernet of wlc01 is sitting in vlan100 (192.168.1.1/24) and the ethernet of wlc02 is sitting in vlan101 (192.168.2.1/24).  The controllers communicated via a layer3 switch that handles layer3 routing, NO ACL.  The dhcp server for cciesp and cciedc SSIDs is being handled by the same layer3 switch.  Everything is working fine but every few days or so, devices that use cciesp and cciedc SSIDs just could not associate with them for around 60 minutes or so.  After sixty minutes, they start working again.  During that outage, under the controller's peer configuration, both controllers showed "data path is down";  However, I could ping from wlc01 to wlc02 and vice versa, so network is NOT an issue.  On the main controller wlc01, I could see the status for cciesp and cciedc as "mobility" but on wlc02, I see nothing during that time.  

I open a TAC case with Cisco and they are reviewing the configuration.  Anyone has run into this issue?  

TIA...

Labels:
0 Helpful
6 Replies 6

Rich R
VIP
VIP

‎07-27-2025 04:15 PM - edited ‎07-27-2025 04:31 PM

Take a look at CSCwo64967 in case it matches your setup @adamscottmaster2013 
Note this is not fixed in any current releases yet (it will be in 17.18.1)

FYI: 17.12.5 has been the recommended 17.12 release since May - see the TAC recommended link below.
You can see the main fixed bugs at https://www.cisco.com/c/en/us/td/docs/wireless/controller/9800/17-12/release-notes/rn-17-12-9800.html#resolved-caveats-for-cisco-ios-xe-dublin-17.12.5 but from bug search tool there are least 285 bug fixes in 17.12.5 since 17.12.4 (not all get mentioned in the release notes).

------------------------------
Please click Helpful if this post helped you and Accept as Solution (drop down menu at top right of this reply) if this answered your query.
------------------------------
TAC recommended codes for AireOS WLC's   and   TAC recommended codes for 9800 WLC's
Best Practices for AireOS WLC's,   Best Practices for 9800 WLC's   and   Cisco Wireless compatibility matrix
Check your 9800 WLC config with Wireless Config Analyzer using "show tech wireless" output or "config paging disable" then "show run-config" output on AireOS and use Wireless Debug Analyzer to analyze your WLC client debugs
Field Notice: FN63942 APs and WLCs Fail to Create CAPWAP Connections Due to Certificate Expiration
Field Notice: FN72424 Later Versions of WiFi 6 APs Fail to Join WLC - Software Upgrade Required
Field Notice: FN72524 IOS APs stuck in downloading state after 4 Dec 2022 due to Certificate Expired
- Fixed in 8.10.196.0, latest 9800 releases, 8.5.182.12 (8.5.182.13 for 3504) and 8.5.182.109 (IRCM, 8.5.182.111 for 3504)
Field Notice: FN70479 AP Fails to Join or Joins with 1 Radio due to Country Mismatch, RMA needed
How to avoid boot loop due to corrupted image on Wave 2 and Catalyst 11ax Access Points (CSCvx32806)
Field Notice: FN74035 - Wave2 APs DFS May Not Detect Radar After Channel Availability Check Time
Leo's list of bugs affecting 2800/3800/4800/1560 APs
Default AP console baud rate from 17.12.x is 115200 - introduced by CSCwe88390
0 Helpful

adamscottmaster2013
Level 4
Level 4
In response to Rich R

‎07-27-2025 04:43 PM

@Rich R wrote:

Take a look at CSCwo64967 in case it matches your setup @adamscottmaster2013  

 

 Thank you @Rich R.  Unfortunately, it does not apply in my situation because "Data Link Encryption" is disabled in the environment.

 

Mark Elsen
Hall of Fame
Hall of Fame

‎07-28-2025 12:25 AM

 

  - @adamscottmaster2013   Use the command show wireless mobility summary  ; when the data path is down; and check the logs on the controller (preferred = use a syslog server for capturing logs)

  M.



-- Let everything happen to you  
       Beauty and terror
      Just keep going    
       No feeling is final
Reiner Maria Rilke (1899)

Mark Elsen
Hall of Fame
Hall of Fame

‎07-28-2025 12:30 AM

 

 - @adamscottmaster2013    Also check the outputs of these commands :
                                                         show platform hardware chassis active qfp feature wireless punt  statistics
                                                         show wireless mobility summary
                                                         show wireless stats mobility
                                                         show wireless stats mobility messages 

  M.
                                                         



-- Let everything happen to you  
       Beauty and terror
      Just keep going    
       No feeling is final
Reiner Maria Rilke (1899)

adamscottmaster2013
Level 4
Level 4
In response to Mark Elsen

‎07-28-2025 02:06 AM - edited ‎07-28-2025 02:07 AM

@Mark Elsen wrote:

 

 - @adamscottmaster2013    Also check the outputs of these commands :
                                                         show platform hardware chassis active qfp feature wireless punt  statistics
                                                         show wireless mobility summary
                                                         show wireless stats mobility
                                                         show wireless stats mobility messages 

  M.
                                                         

@Mark Elsen:  What am I suppose to look for here with the outputs?

0 Helpful

Mark Elsen
Hall of Fame
Hall of Fame
In response to adamscottmaster2013

‎07-28-2025 02:23 AM

 

   @adamscottmaster2013        Look for error messages in this one :     show wireless stats mobility messages 
                                                As far as the other commands is concerned ; look for error statistics with a none zero count
                                                (e.g.)  and or other messages which could be associated with problem conditions (e.g.)

                                                Use the commands on both controllers and of course as usual => validate
                                                the configuration on both controllers with the CLI command
                                                show tech wireless and feed the output from that into Wireless Config Analyzer

   M.



-- Let everything happen to you  
       Beauty and terror
      Just keep going    
       No feeling is final
Reiner Maria Rilke (1899)
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card