Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
605
Views
2
Helpful
7
Replies

Data path down and Control path is up on wlc

Go to solution
networklearner1
Level 1
Level 1

‎01-10-2024 04:39 AM

Hello All,

We have 2 WLC's. 

5508- Anchor WLC (8.5.161.7)

3504- Foreign WLC (8.10.185.0)

I have created a mobility group and added the WLC's MAC respectively.

The FW ports 16666, 16667, 97 are all open.

The control path is UP but the Data path is DOWN. I tried removing the IP from group and adding again. Also tried rebooting the WLC's but it is still showing Down. Could someone please let me know how to fix this.

 

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
networklearner1
Level 1
Level 1

‎01-12-2024 12:12 AM

Hello All, 
It seems the EtherIP traffic was getting denied in another firewall, we allowed it and then both the tunnels came up. 

View solution in original post

7 Replies 7

Go to solution
marce1000
VIP
VIP

‎01-10-2024 05:22 AM

 

 - Have a look at https://community.cisco.com/t5/wireless/static-mobility-group-status-control-and-data-path-down/m-p/4713192#M247666

 M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
0 Helpful

Go to solution
networklearner1
Level 1
Level 1

‎01-10-2024 05:25 AM

Thank you @marce1000 , I don't see any block or drop on our FW. Is there anything else that can be checked?

0 Helpful

Go to solution
marce1000
VIP
VIP
In response to networklearner1

‎01-10-2024 05:38 AM

 

   - Well, to verify correct firewall behavior , examine (full)  logs and confirm allowed traffic for the involved ports ; (check that you can see the needed pass trough traffic). The response I pointed to in my initial reply also mentions :
                     https://mrncciew.com/2013/03/24/mobility-ping-tests/

  Have a go with that too , if that does not work for instance, again iterate on the firewall and check what it does with the intended traffic.

 M.
                            



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '

Go to solution
MHM Cisco World
VIP
VIP

‎01-10-2024 06:03 AM

what is the FW you have?
MHM

0 Helpful

Go to solution
networklearner1
Level 1
Level 1
In response to MHM Cisco World

‎01-10-2024 06:28 AM

It’s Paloalto

0 Helpful

Go to solution
MHM Cisco World
VIP
VIP
In response to networklearner1

‎01-10-2024 06:36 AM

I was hope it Cisco but anyway 
try open port UDP
5246/5247 

MHM

0 Helpful

Go to solution
networklearner1
Level 1
Level 1

‎01-12-2024 12:12 AM

Hello All, 
It seems the EtherIP traffic was getting denied in another firewall, we allowed it and then both the tunnels came up. 

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card