Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1025
Views
0
Helpful
13
Replies

AP1852 migration from mobility express to 9800-CL

lalitkumar88551
Level 1
Level 1

‎08-18-2022 05:43 AM

Hi All,

please help and suggest. i have create a test lab before execute live envirment.  iam faceing  issue client system disconnect from internet within 1-2 min. below find log from AP & wlc. can you suggest what was the reason. as i checked log from wlc9800-cl showing AP join & disjoin. 

Log file attached below in attachement. 

WLC

Aug 18 11:30:53.788: CAPWAP-IDB : CREATE STATUS: Successfully sent IPC Message
Aug 18 11:30:53.765: %CAPWAPAC_SMGR_TRACE_MESSAGE-5-AP_JOIN_DISJOIN: Chassis 1 R0/0: wncd: AP Event: AP Name: APDCCE-C130-6200, MAC: dcce.c130.6200 Joined
Aug 18 11:32:47.023: CAPWAP-IDB : Received message from wncd
Aug 18 11:32:47.024: CAPWAP-IDB : DELETE: Handler called. Msg : 56375E397B38
Aug 18 11:32:47.024: CAPWAP-IDB : DELETE: Processing message : 56375E397B38
Aug 18 11:32:47.026: CAPWAP-IDB : 90000007 - DELETE : Capwap tunnel
Aug 18 11:32:47.026: CAPWAP-IDB : Deleting unicast port 33
Aug 18 11:32:47.028: CAPWAP-IDB : 90000007 - Port link change. Port link state : 0, IDB state : 4
Aug 18 11:32:47.028: CAPWAP-IDB : HWIDB is down for if id 90000007
Aug 18 11:32:47.033: CAPWAP-IDB : IDB SHUTDOWN: Capwap1, State : 6
Aug 18 11:32:47.041: CAPWAP-IDB : 90000007 - DELETE : capwap tunnel delete success
Aug 18 11:32:47.011: %CAPWAPAC_SMGR_TRACE_MESSAGE-5-AP_JOIN_DISJOIN: Chassis 1 R0/0: wncd: AP Event: Session-IP: 192.168.1.185[5256] Mac: dcce.c131.ee80 CAPWAP DTLS session closed for AP, cause: DTLS server session shutdown

Access Point

Discarding msg CAPWAP_WTP_EVENT_REQUEST(type 9) in CAPWAP state: DTLS Teardown(4).
Aug 18 11:32:47 kernel: [*08/18/2022 11:32:47.0731]

Discarding msg CAPWAP_WTP_EVENT_REQUEST(type 9) in CAPWAP state: DTLS Teardown(4).

I am not much familiar about catalysts C9800-CL

Preview file
52 KB
Preview file
137 KB
0 Helpful
13 Replies 13

ammahend
VIP
VIP

‎08-18-2022 07:42 AM

Sounds buggy, what’s the version you are on ? 

-hope this helps-
0 Helpful

lalitkumar88551
Level 1
Level 1
In response to ammahend

‎08-18-2022 08:22 AM 

Wlc running version 17.3.5.42
0 Helpful

ammahend
VIP
VIP
In response to lalitkumar88551

‎08-18-2022 01:08 PM

do a test, configure the controller IP manually, instead of DNS based discovery and test again

ap name <AP_NAME> controller primary <WLC name> <Controller IP address>

-hope this helps-
0 Helpful

lalitkumar88551
Level 1
Level 1
In response to ammahend

‎08-20-2022 10:44 AM

I tried to  configure the controller IP manually in AP . but same issue facing, Access point auto join and disjoin automatically & client received Request time out after 40-50 successfully reply.

0 Helpful

Scott Fella
Hall of Fame
Hall of Fame

‎08-18-2022 08:46 AM

I think you need to be more specific on how you are testing. You are moving from ME to a 9800, so the ap would drop all client while upgrading and converting the system from ME to CAPWAP.  The ME guide states that a ME ap when powered up or rebooted will check the local subnet or any dhcp/dns discovery you have and will join a controller if one is found. If not, the ap will transition back to ME. 
I would expect clients to be impacted while migrating AP’s to the 9800 and keep in mind that you would need to migrate all the AP’s at that location because you would not have mobility between the ME and the 9800. 

-Scott
*** Please rate helpful posts ***
0 Helpful

lalitkumar88551
Level 1
Level 1
In response to Scott Fella

‎08-18-2022 10:59 AM

AP convert successfully ME to Capwap & AP also join wirless controller 9800-CL.but ap not stable. Its continue join &disjoin process 1-2 min later.client are also access SSID and internet. But when AP disjoin client also lost connectivity internet and gateway also not reachable. Lost connection at any time after an interval. As I checked  log found DTLS session shutdown & AP join and disjoin logs in controller side. But I don't  know why its session  shutdown.

0 Helpful

Rich R
VIP
VIP

‎08-20-2022 02:30 AM

1. Is there still a ME controller present?  If so that is not supported at the same time as WLC.

2. Look at possible causes for the disconnect, for example packet loss, link latency, MTU etc. As per https://www.ietf.org/rfc/rfc5415.txt

   Run to DTLS Teardown (p):  This state transition occurs when an error
      has occurred in the DTLS stack, causing the DTLS session to be
      torn down.
      WTP:  The WTP enters this state when it receives one of the
            following DTLS notifications: DTLSAborted,
            DTLSReassemblyFailure, or DTLSPeerDisconnect (see
            Section 2.3.2.2).  The WTP MAY tear down the DTLS session if
            it receives frequent DTLSDecapFailure notifications.  The
            WTP also transitions to this state if the underlying
            reliable transport's RetransmitCount counter has reached the
            MaxRetransmit variable (see Section 4.7).  The WTP starts
            the DTLSSessionDelete timer (see Section 4.7.6).
      AC:   The AC enters this state when it receives one of the
            following DTLS notifications: DTLSAborted,
            DTLSReassemblyFailure, or DTLSPeerDisconnect (see
            Section 2.3.2.2).  The AC MAY tear down the DTLS session if
            it receives frequent DTLSDecapFailure notifications.  The AC
            transitions to this state if the underlying reliable
            transport's RetransmitCount counter has reached the
            MaxRetransmit variable (see Section 4.7).  This state
            transition also occurs when the AC's EchoInterval timer (see
            Section 4.7.7) expires.  The AC starts the DTLSSessionDelete
            timer (see Section 4.7.6).

You should also try a factory default reset on the AP - sometimes that can clear odd problems.

------------------------------
Please click Helpful if this post helped you and Select as Solution (drop down menu at top right of this reply) if this answered your query.
------------------------------
TAC recommended codes for AireOS WLC's   and   TAC recommended codes for 9800 WLC's
Best Practices for AireOS WLC's,   Best Practices for 9800 WLC's   and   Cisco Wireless compatibility matrix
Check your 9800 WLC config with Wireless Config Analyzer using "show tech wireless" output or "config paging disable" then "show run-config" output on AireOS and use Wireless Debug Analyzer to analyze your WLC client debugs
Field Notice: FN63942 APs and WLCs Fail to Create CAPWAP Connections Due to Certificate Expiration
Field Notice: FN72424 Later Versions of WiFi 6 APs Fail to Join WLC - Software Upgrade Required
Field Notice: FN72524 IOS APs stuck in downloading state after 4 Dec 2022 due to Certificate Expired
- Fixed in 8.10.190.0, latest 9800 releases, 8.5.182.11 (8.5 mainline) and 8.5.182.108 (8.5 IRCM)
Field Notice: FN70479 AP Fails to Join or Joins with 1 Radio due to Country Mismatch, RMA needed
How to avoid boot loop due to corrupted image on Wave 2 and Catalyst 11ax Access Points (CSCvx32806)
Field Notice: FN74035 - Wave2 APs DFS May Not Detect Radar After Channel Availability Check Time
Leo's list of bugs affecting 2800/3800/4800/1560 APs
0 Helpful

lalitkumar88551
Level 1
Level 1
In response to Rich R

‎08-20-2022 10:51 AM

There is no  ME controller present, only 9800-Cl WLC & one AP connect this WLC . but issue is why AP join & disjoin continuously within 2-3 minutes & this  happening continue i checked  almost 6 hours still AP join & disjoin.  

0 Helpful

Rich R
VIP
VIP
In response to lalitkumar88551

‎08-21-2022 01:36 AM

So is the 9800-CL present locally on the same vlan/subnet?

If so that rules out link latency and hopefully MTU.  But you should still check switch ports and VM ports for errors or duplex mismatch for example.  

And you should still try factory default reset on the AP.

Next do a packet capture and see what's happening at packet level between the WLC and AP.

------------------------------
Please click Helpful if this post helped you and Select as Solution (drop down menu at top right of this reply) if this answered your query.
------------------------------
TAC recommended codes for AireOS WLC's   and   TAC recommended codes for 9800 WLC's
Best Practices for AireOS WLC's,   Best Practices for 9800 WLC's   and   Cisco Wireless compatibility matrix
Check your 9800 WLC config with Wireless Config Analyzer using "show tech wireless" output or "config paging disable" then "show run-config" output on AireOS and use Wireless Debug Analyzer to analyze your WLC client debugs
Field Notice: FN63942 APs and WLCs Fail to Create CAPWAP Connections Due to Certificate Expiration
Field Notice: FN72424 Later Versions of WiFi 6 APs Fail to Join WLC - Software Upgrade Required
Field Notice: FN72524 IOS APs stuck in downloading state after 4 Dec 2022 due to Certificate Expired
- Fixed in 8.10.190.0, latest 9800 releases, 8.5.182.11 (8.5 mainline) and 8.5.182.108 (8.5 IRCM)
Field Notice: FN70479 AP Fails to Join or Joins with 1 Radio due to Country Mismatch, RMA needed
How to avoid boot loop due to corrupted image on Wave 2 and Catalyst 11ax Access Points (CSCvx32806)
Field Notice: FN74035 - Wave2 APs DFS May Not Detect Radar After Channel Availability Check Time
Leo's list of bugs affecting 2800/3800/4800/1560 APs
0 Helpful

thecowsquishmallow
Level 1
Level 1

‎08-20-2022 05:45 AM

I think you need to be greater precise on how you're trying out. You are transferring from ME to a 9800, so the ap could drop all client whilst upgrading and converting the system from ME to CAPWAP. The ME manual states that a ME ap whilst powered up or rebooted will check the local subnet or any dhcp/dns discovery you have and could be part of a controller if one is located. If no longer, the ap will transition lower back to ME.

0 Helpful

lalitkumar88551
Level 1
Level 1
In response to thecowsquishmallow

‎08-20-2022 10:55 AM

AP already converted ME to CAPWAP, i just facing issue AP join & disjoin with 9800 WLC & client disconnected internet  when AP join & disjoin process happening . 

0 Helpful

lalitkumar88551
Level 1
Level 1

‎08-22-2022 04:15 AM

what's the important of BLE radio.  just capture AP debuging log & found BLE radion Powering down.


[*08/22/2022 07:00:44.4883] dtls_connection_find_using_link_info: Searching connection [192.168.1.185]:5256--[192.168.1.51]:5246, result 0x2bc47800
[*08/22/2022 07:00:44.4883] dtls_cssl_msg_cb: Received >>> DTLS Header [Length 000d]
[*08/22/2022 07:00:44.4983] local_in_addr_comp: Client and server addresses/port/version of 2 nodes are [192.168.1.185]:5256(65277)--[192.168.1.51]:5246(65277) [192.168.1.185]:5256--[192.168.1.51]:5246
[*08/22/2022 07:00:44.4983] dtls_connection_find_using_link_info: Searching connection [192.168.1.185]:5256--[192.168.1.51]:5246, result 0x2bc47800
[*08/22/2022 07:00:44.4983] dtls_cssl_msg_cb: Sent <<< DTLS Header [Length 000d]
[*08/22/2022 07:00:44.5083] flags value is 1
[*08/22/2022 07:00:45.3980] Powering down BLE radio
[*08/22/2022 07:00:47.0075] local_in_addr_comp: Client and server addresses/port/version of 2 nodes are [192.168.1.185]:5256(65277)--[192.168.1.51]:5246(65277) [192.168.1.185]:5256--[192.168.1.51]:5246
[*08/22/2022 07:00:47.0075] dtls_connection_find_using_link_info: Searching connection [192.168.1.185]:5256--[192.168.1.51]:5246, result 0x2bc47800
[*08/22/2022 07:00:47.0075] dtls_cssl_msg_cb: Received >>> DTLS Header [Length 000d]
[*08/22/2022 07:00:47.0075] local_in_addr_comp: Client and server addresses/port/version of 2 nodes are [192.168.1.185]:5256(65277)--[192.168.1.51]:5246(65277) [192.168.1.185]:5256--[192.168.1.51]:5246
[*08/22/2022 07:00:47.0075] dtls_connection_find_using_link_info: Searching connection [192.168.1.185]:5256--[192.168.1.51]:5246, result 0x2bc47800
[*08/22/2022 07:00:47.0075] dtls_cssl_msg_cb: Sent <<< DTLS Header [Length 000d]

Preview file
66 KB
0 Helpful

Rich R
VIP
VIP

‎08-22-2022 04:20 AM

If you're not using BLE it doesn't matter - concentrate on the advice already provided.

------------------------------
Please click Helpful if this post helped you and Select as Solution (drop down menu at top right of this reply) if this answered your query.
------------------------------
TAC recommended codes for AireOS WLC's   and   TAC recommended codes for 9800 WLC's
Best Practices for AireOS WLC's,   Best Practices for 9800 WLC's   and   Cisco Wireless compatibility matrix
Check your 9800 WLC config with Wireless Config Analyzer using "show tech wireless" output or "config paging disable" then "show run-config" output on AireOS and use Wireless Debug Analyzer to analyze your WLC client debugs
Field Notice: FN63942 APs and WLCs Fail to Create CAPWAP Connections Due to Certificate Expiration
Field Notice: FN72424 Later Versions of WiFi 6 APs Fail to Join WLC - Software Upgrade Required
Field Notice: FN72524 IOS APs stuck in downloading state after 4 Dec 2022 due to Certificate Expired
- Fixed in 8.10.190.0, latest 9800 releases, 8.5.182.11 (8.5 mainline) and 8.5.182.108 (8.5 IRCM)
Field Notice: FN70479 AP Fails to Join or Joins with 1 Radio due to Country Mismatch, RMA needed
How to avoid boot loop due to corrupted image on Wave 2 and Catalyst 11ax Access Points (CSCvx32806)
Field Notice: FN74035 - Wave2 APs DFS May Not Detect Radar After Channel Availability Check Time
Leo's list of bugs affecting 2800/3800/4800/1560 APs
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card