Cisco 9130X not getting IP Address from DHCP server running on switch

pgill.uwo@gmail.com · ‎10-03-2022

Hello All
Looking for help on troubleshooting access point 9130X. I have DHCP server/scope running on Cisco 9200 ( switch 1 ) and can see it is handing IP address to AP but I am not able to ping/reach Access point. I have switchport setup to access port ( switch 2 ) but when doing cdp neighbor detail I am not seeing any IP address on Access point. Not sure what is wrong. Is leasing expiring ? ( odd ) Here is my config

Switch 1 configuration : Running DHCP
ip dhcp pool WirelessMgt_DHCP
network 192.168.11.0 255.255.255.128
default-router 192.168.11.1
service dhcp
output of ip dhcp binding:
192.168.11.62 01xx.11xx.623a.dx Oct 03 2022 04:18 PM Automatic Selecting Vlan710
( not correct MAC I changed some characters)

Switch 2 configuration:
switchport mode access
switchport access vlan 710
cdp neighbor detail shows AP MAC which is same as one in dhcp binding but without IP address.

Appreciate everyone's help.

Arshad Safrulla · ‎10-03-2022

Do you have DHCP/ARP snooping enabled on switches? If yes and you are running EWC on this AP, AP will request 2 IP addresses. Make sure your configuration allows that. (One for the EWC and another for the AP itself)

What is the WLC you are trying to register the AP? If the AP is running EWC you need to configure it as a trunk port with management VLAN as native VLAN as EWC supports only Flex AP mode. (it is recommended that you allow only wireless VLAN's over the trunk connecting to AP/WLC)

___________________________________________
TAC recommended codes for AireOS WLC's
Best Practices for AireOS WLC's
TAC recommended codes for 9800 WLC's
Best Practices for 9800 WLC's
Cisco Wireless compatibility matrix
___________________________________________
Arshad Safrulla

pgill.uwo@gmail.com · ‎10-03-2022

I tried with and without DHCP snooping enabled but no luck. AP model - cisco C9130AXI-B, Cisco AP Software, Version: 17.6.4.56

when I look at ip dhcp binding state is selecting.....feels like AP is trying to select an IP but not able to.

Haydn Andrews · ‎10-03-2022

Console the AP and share the boot up sequence.

What WLC is this AP registering to? If you connect a PC to the port does it get an IP address.

*****Help out other by using the rating system and marking answered questions as "Answered"*****
*** Please rate helpful posts ***

pgill.uwo@gmail.com · ‎10-03-2022

9800 WLC, but dhcp server is running on a Cisco 9200 switch. I will try to check boot sequence and connect a laptop to see if gets IP once I get a chance.

pgill.uwo@gmail.com · ‎10-03-2022

I was able to resolve DHCP issue....my bad I had a typo on default router. Now my WLC can ping access point but it wont join WLC. Do I need to add a command on wlc so that AP's can discover 9800 WLC ? I had already added AP's MAC under authentication list but no good. thanks for help.

Rich R · ‎10-04-2022

1. You need a method for the AP to discover the WLC - since you're using DHCP on the switch option 43 would be simplest.
https://www.cisco.com/c/en/us/support/docs/wireless-mobility/wireless-lan-wlan/97066-dhcp-option-43-00.html#anc11
2. 9800 WLC needs to have wireless management interface configured.
wireless management interface VlanXXX
https://www.cisco.com/c/en/us/td/docs/wireless/controller/9800/17-6/config-guide/b_wl_17_6_cg/m_config-wmi.html

------------------------------
Please click Helpful if this post helped you and Select as Solution (drop down menu at top right of this reply) if this answered your query.
------------------------------
TAC recommended codes for AireOS WLC's and TAC recommended codes for 9800 WLC's
Best Practices for AireOS WLC's, Best Practices for 9800 WLC's and Cisco Wireless compatibility matrix
Check your 9800 WLC config with Wireless Config Analyzer using "show tech wireless" output or "config paging disable" then "show run-config" output on AireOS and use Wireless Debug Analyzer to analyze your WLC client debugs
Field Notice: FN63942 APs and WLCs Fail to Create CAPWAP Connections Due to Certificate Expiration
Field Notice: FN72424 Later Versions of WiFi 6 APs Fail to Join WLC - Software Upgrade Required
Field Notice: FN72524 IOS APs stuck in downloading state after 4 Dec 2022 due to Certificate Expired
- Fixed in 8.10.196.0, latest 9800 releases, 8.5.182.12 (8.5.182.13 for 3504) and 8.5.182.109 (IRCM, 8.5.182.111 for 3504)
Field Notice: FN70479 AP Fails to Join or Joins with 1 Radio due to Country Mismatch, RMA needed
How to avoid boot loop due to corrupted image on Wave 2 and Catalyst 11ax Access Points (CSCvx32806)
Field Notice: FN74035 - Wave2 APs DFS May Not Detect Radar After Channel Availability Check Time
Leo's list of bugs affecting 2800/3800/4800/1560 APs
Default AP console baud rate from 17.12.x is 115200 - introduced by CSCwe88390

pgill.uwo@gmail.com · ‎10-04-2022

thanks for sharing these links, they are helpful. Access point is able to see WLC but I am seeing some errors on AP and its still unsuccessful in joining WLC. Please refer to error log on AP:
Discovery response from MWAR running version 17.3.3.26 is rejected.
Failed to decode discovery response ( status = 4)
CAPWAP SM handler: Failed to process message type 2 state 2
Failed to handle capwap control message from controller - status 4
Failed to process unencrypted capwap packet
Failed to send capwap message 0 to the state machine. Packet already freed.

Haydn Andrews · ‎10-03-2022

what model WLC you running and software version

*****Help out other by using the rating system and marking answered questions as "Answered"*****
*** Please rate helpful posts ***

pgill.uwo@gmail.com · ‎10-04-2022

WLC 9800 - software version - 17.3.3.26
Access point 9130AXI- B - software version - 17.6.4. Please check the error below on AP

Arshad Safrulla · ‎10-04-2022

What's the exact model of your WLC? Is it 9800-CL, 9800-40, 9800-80 etc. or 9800 EWC?

DId you try to downgrade the AP manually by connecting via console cable?

___________________________________________
TAC recommended codes for AireOS WLC's
Best Practices for AireOS WLC's
TAC recommended codes for 9800 WLC's
Best Practices for 9800 WLC's
Cisco Wireless compatibility matrix
___________________________________________
Arshad Safrulla

pgill.uwo@gmail.com · ‎10-04-2022

C9800-40-K9. Not sure why I would need to downgrade AP, they are compatible per Cisco's compatibility matrix.

Arshad Safrulla · ‎10-04-2022

First 17.3.3 is no more recommended by Cisco TAC to run in a production network, consider upgrading to the code recommended in the below document.

Recommended Cisco IOS XE Releases for Catalyst 9800 Wireless LAN Controllers - Cisco

AP is compatible with the WLC, no doubt. But there were instances when AP was running 17.6.X codes it rejected to join the WLC. Thats why requesting you to check by downloading the image manually.

Also follow @Rich R 's recommendations to make sure that the WMI is configured correctly. Below link contains most of the best practices recommended by Cisco.

Cisco Catalyst 9800 Series Configuration Best Practices - Cisco

___________________________________________
TAC recommended codes for AireOS WLC's
Best Practices for AireOS WLC's
TAC recommended codes for 9800 WLC's
Best Practices for 9800 WLC's
Cisco Wireless compatibility matrix
___________________________________________
Arshad Safrulla

pgill.uwo@gmail.com · ‎10-04-2022

Sincere thanks I will try.

pgill.uwo@gmail.com · ‎10-11-2022

I upgraded to 17.6.4, after the upgrade Wireless LANs are gone, also 5 GHZ and 2.4GHZ network is down. Please refer to image below:

In addition, I am not able to open any of the following parameters:

Could you please assist with further troubleshooting. Thanks