Solved: Re: FlexConnect in a local network - Page 3

B A · ‎05-07-2021

Hello,

I have basic knowledge of FlexConnect and when it's used - branch offices and remote sites. Recently I've been told by some auditors that we should configure FlexConnect in our local network to increase wireless speed and quality. I've never heard of using it in a local network. Does it make sense to enable FlexConnect in a local network?

Thank you for any feedback.

Btw. we have one WLC and 70 APs.

saravlak · ‎05-13-2021

out of curiosity, the existing setup is Aireos or ios-xe based. If Airos, first thing to be done is to migrate to ios-xe.

are auditors talking about SD-Access and not traditional flex connect by any chance.

B A · ‎05-13-2021

@patoberli There currently is no circumstance to do this, as long as the bandwidth between all APs and WLC is large enough to cope the full expected traffic.
This is what I needed to hear. Do other experts agree on this too?

@balaji.bandi you can use any netflow and NMS to Monitor
Do you recommend any? We use Zabbix but I am not able to make it work. Any other alternative? Where can I see these numbers in WLC?

@Scott Fella Out of curiosity, have you made a decision or done any further testing?
I've made my decision but I am collecting more info for my manager. Now I am going to monitor traffic from/to WLC to verify that WLC uplinks can handle all the traffic. I would test FlexConnect on APs only in case they would insist on configuring it.

@saravlak We have 3504. As long as it's supported, we stay where we are.

patoberli · ‎05-18-2021

Do you recommend any? We use Zabbix but I am not able to make it work. Any other alternative? Where can I see these numbers in WLC?

I use Prime Infrastructure. I wouldn't anymore buy this as a new product.

Cisco by now uses a mostly standard netflow format, but make sure your software actually supports Cisco WLC Netflow:

https://www.cisco.com/c/en/us/td/docs/wireless/controller/technotes/8-8/AVC_8point8_dg.html#pgfId-81615

I've made my decision but I am collecting more info for my manager. Now I am going to monitor traffic from/to WLC to verify that WLC uplinks can handle all the traffic. I would test FlexConnect on APs only in case they would insist on configuring it.

As stated many times, FlexConnect is very rarely needed if you don't transfer the data over WAN links. Depending on the size of your network (amount of APs) and the small 3504 WLC, you might saturate the 1 Gbps port. You can work around that by enabling LAG on more ports on the 3504, that way you can increase the throughput further: https://www.cisco.com/c/en/us/td/docs/wireless/controller/technotes/8-5/b_WLC_3504_Release_8_5_Deployment_Guide.html

Nowadays in most enterprise developments your AP density is fairly high, so that all clients have a strong signal with a short path to the AP. That way you can get a lot of performance out of your network, while providing good roaming. The big downside of this is the channel re-use. For this reason you often have 40 or even 20 MHz channels on 5 GHz, to maximize the amount of free channels. But this will vastly reduce the maximum throughput if no users are there (capable client assumed), but will vastly increase the throughput if many users are there.

In other words, with a 160 MHz 802.11ax channel (which limits you to 2 or 3 available channels), you could have > 1 Gbps of throughput with a single capable client. If you reduce this to 20 MHz you now have around 19 available channels, but a maximum throughput of maybe 250 Mbps. Those numbers are sadly only valid if there are no other wireless devices on the same frequency, which sadly doesn't happen in the real world, unless you are in a cellar For this reason you never really reach the high bandwidth when using 80 or 160 MHz channels, as you have way to much co-channel interference and noise which will lower the real throughput. Please note, those channel numbers are for the USA, there are various regulations over the world. In some places you only have one 160 MHz channel, or two/three 80 MHz ones.

B A · ‎05-17-2021

Nobody?

Scott Fella · ‎05-18-2021

Again, what else are you looking for here? This is a pretty long thread and the decision is up to you.

-Scott
*** Please rate helpful posts ***

B A · ‎05-19-2021

patoberli wrote: There currently is no circumstance to do this, as long as the bandwidth between all APs and WLC is large enough to cope the full expected traffic.
Do other experts agree on this too?

Rich R · ‎05-19-2021

Agreed.

And in fact there may be specific reasons for needing the traffic to be centrally switched like features which are not supported on flexconnect local switching.

https://www.cisco.com/c/en/us/td/docs/wireless/access_point/feature-matrix/ap-feature-matrix.html

------------------------------
Please click Helpful if this post helped you and Select as Solution (drop down menu at top right of this reply) if this answered your query.
------------------------------
TAC recommended codes for AireOS WLC's and TAC recommended codes for 9800 WLC's
Best Practices for AireOS WLC's, Best Practices for 9800 WLC's and Cisco Wireless compatibility matrix
Check your 9800 WLC config with Wireless Config Analyzer using "show tech wireless" output or "config paging disable" then "show run-config" output on AireOS and use Wireless Debug Analyzer to analyze your WLC client debugs
Field Notice: FN63942 APs and WLCs Fail to Create CAPWAP Connections Due to Certificate Expiration
Field Notice: FN72424 Later Versions of WiFi 6 APs Fail to Join WLC - Software Upgrade Required
Field Notice: FN72524 IOS APs stuck in downloading state after 4 Dec 2022 due to Certificate Expired
- Fixed in 8.10.190.0, latest 9800 releases, 8.5.182.11 (8.5 mainline) and 8.5.182.108 (8.5 IRCM)
Field Notice: FN70479 AP Fails to Join or Joins with 1 Radio due to Country Mismatch, RMA needed
How to avoid boot loop due to corrupted image on Wave 2 and Catalyst 11ax Access Points (CSCvx32806)
Field Notice: FN74035 - Wave2 APs DFS May Not Detect Radar After Channel Availability Check Time
Leo's list of bugs affecting 2800/3800/4800/1560 APs

B A · ‎05-20-2021

Well, we've been monitoring traffic on WLC ports and I see these values (per second):

Avg. Sent:150Kbps

Avg. Received: 2Kbps

Are these numbers relevant? They seem pretty low.

patoberli · ‎05-20-2021

If those numbers are correct, then there is virtually no wireless traffic at all.

B A · ‎05-20-2021

Are these numbers real/correct when 300 devices are connected?

It looks like all the Internet traffic doesn't go by default through WLC and just the management traffic does.

Can anyone clarify this?

patoberli · ‎05-21-2021

For fairly live statistics you can enter the following command:

(Cisco Controller) >show stats port packets 5
Link n secs n secs InPktRate OutPktRate InDataRate OutDataRate
Pr Status Pkts In Pkts Out (pkts/sec)(pkts /sec)(bytes/sec) (bytes/sec)
-- ------ ------- ------- ------- ------- ---------- -----------
1 Down 0 0 0 0 0 0
2 Down 0 0 0 0 0 0
3 Down 0 0 0 0 0 0
4 Up 4 7 4 7 676 762
5 Up 2011 535 2011 535 422208 254098
Total 2015 542 2015 542 422884 254860
Interval(n): 1 Seconds

The number at the end is the port on the WLC. It shows how much data was transmitted the last one second. In my case 422 KB/s from switch and 254 KB/s to switch.

And here while running a speedtest:
(Cisco Controller) >show stats port packets 5
Link n secs n secs InPktRate OutPktRate InDataRate OutDataRate
Pr Status Pkts In Pkts Out (pkts/sec)(pkts /sec)(bytes/sec) (bytes/sec)
-- ------ ------- ------- ------- ------- ---------- -----------
1 Down 0 0 0 0 0 0
2 Down 0 0 0 0 0 0
3 Down 0 0 0 0 0 0
4 Up 12 18 12 18 8567 2151
5 Up 41941 71468 41941 71468 47030096 50446188
Total 41953 71486 41953 71486 47038663 50448339
Interval(n): 1 Seconds

Now it was around 47 MB/s and 50 MB/s.

More info:
https://www.cisco.com/c/en/us/td/docs/wireless/controller/8-10/cmd-ref/b-cr810/show_commands_r_to_z.html#wp3247135730

B A · ‎05-21-2021

Thanks. This is what I was looking for. I see 40-60Mbps InDataRate and 20-40Mbps OutDataRate. Still, I think this is ok. Do you agree?

patoberli · ‎05-21-2021

Probably, I have absolutely no idea what kind of clients do you have, if the normal number is on-site (home office Corona ...?), what the typical traffic is that you have and and and. This is a very individual number for every company.
But if you say that you currently have the normal number of clients on-site and they normally use the wireless, then yes this number is ok.