Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2469
Views
0
Helpful
11
Replies

cisco C9800-40-K9 wireless controller unable to access through HTTP and HTTPS.

Khan6789
Level 1
Level 1

‎07-14-2021 12:53 PM

I there

 

I have Cisco 9800-40 WLC and enabled http and https. It was working fine before but after few days unable to access through http and https. 

Troubleshooting step taken:

1. check https and http

2. Installed new web browser like Firefox

But no luck.

Can I get help for it?

 

Khan 

0 Helpful
11 Replies 11

balaji.bandi
Hall of Fame
Hall of Fame

‎07-14-2021 01:06 PM

Are you able to ping WLC IP from your device?

 

if it was working and broken, I connect to the console run the debug and check what is the logs show. also verify any changes in the config, most related to HTTP and HTTPS config.

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Khan6789
Level 1
Level 1
In response to balaji.bandi

‎07-14-2021 01:24 PM

I am using VPN  for ssh to WLC 9800. Actually it connect with ACCESS SW. I can ping access switch but unable to ping WLC IP address.

 
 

 

Preview file
12 KB
0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame
In response to Khan6789

‎07-14-2021 01:42 PM

Then it required investigation, log in to switch see is the Physical Port, is the leaning the Mac Address in the port, is the ARP entries in the switch,

 

Try to shut down and un shutdown the port that WLC connected - see if that resolves the issue.

 

If no you need someone to physically access the WLC console and provide Logs and errors?

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Khan6789
Level 1
Level 1
In response to balaji.bandi

‎07-14-2021 01:50 PM

I did shutdown and no shutdown. It didn't resolve .
I can ssh to WLC. When I run the show logging command. I don't see any log
related to http and https.
0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame
In response to Khan6789

‎07-14-2021 01:59 PM

if you able to SSH to the device? check HTTP and HTTPS config? enable debug HTTP requests to see what is wrong?

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Arshad Safrulla
VIP Alumni
VIP Alumni

‎07-14-2021 02:57 PM

Is the controllers are in HA? hows the switchport configuration and also the uplink port configuration in WLC? It is recommended that you configure your switchport connecting to the wlc as trunk, no native vlan here. you may additionally configure spanning-tree portfast trunk if required. Allow only the Wireless VLAN and the managment.

It is also recommended you always configure the service port as OOB, this port is layer 3 and there is very small margin of error as no STP.

 

Also make sure that the ip http server and ip http secure-server are enabled and authentication is set to local, also under the line vty 0 15 login local is configured and transport input all is configured for testing purposes. Some of the above will raise some security alarms, but you may do it at your own risk.

___________________________________________
TAC recommended codes for AireOS WLC's
Best Practices for AireOS WLC's
TAC recommended codes for 9800 WLC's
Best Practices for 9800 WLC's
Cisco Wireless compatibility matrix
___________________________________________
Arshad Safrulla
0 Helpful

Khan6789
Level 1
Level 1
In response to Arshad Safrulla

‎07-14-2021 05:13 PM

No, it's not in HA topology. The switchport is configured as an access
port. I am attaching the topology.

WLC-MCC uptime is 1 week, 5 days, 15 hours, 49 minutes
C9800 Software (C9800_IOSXE-K9), Version 16.12.4a,
0 Helpful

Leo Laohoo
Hall of Fame
Hall of Fame
In response to Khan6789

‎07-14-2021 05:55 PM

Upgrade to something more recent and try again.

0 Helpful

Arshad Safrulla
VIP Alumni
VIP Alumni
In response to Khan6789

‎07-15-2021 07:18 AM - last edited on ‎03-09-2022 11:15 PM by Community Manager

Can you post the interface configuration in your WLC?

___________________________________________
TAC recommended codes for AireOS WLC's
Best Practices for AireOS WLC's
TAC recommended codes for 9800 WLC's
Best Practices for 9800 WLC's
Cisco Wireless compatibility matrix
___________________________________________
Arshad Safrulla
0 Helpful

Leo Laohoo
Hall of Fame
Hall of Fame

‎07-14-2021 03:47 PM

What firmware is the controller running on? 

What is the uptime of the controller?

0 Helpful

Rps-Cheers
VIP
VIP

‎07-14-2021 07:38 PM

I think the most likely problem is not the redirection ACL. The redirection ACL rules of C9800 and AireOS seem to be opposite.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Rps-Cheers | If it solves your problem, please mark as answer. Thanks !
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card