Solved: WLC 2504 FlexConnect not getting IP address.

sardarjion · ‎01-31-2023

I have 2504 WLC v8.5.182.0 with two 2702i connected to it. The router is RVS 4000 and has 4 VLANs where VLAN ID 4 is assigned to FlexConnect. 1 is for management, 2 and 3 are for iot and guest.

Router assigns the IP address as 192.168.X.100-192.168.X.200/255.255.255.0 and Gateway is 192.168.X.1 where X is VLAN ID.

In the WLAN section, if I don't enable the option "FlexConnect Local Switching" then everything works fine. I am able to connect and get the IP address on client (iPhone 13) and browse internet.

If I enable the option "FlexConnect Local Switching" then I see iPhone trying to connect to wifi but is never successful. I enabled DHCP logging but I don't see any activity in the failure case. I am not sure what logging I should enable to debug this further.

Scott Fella · ‎02-01-2023

What is the switch the ap's are connected to? If the ap's are connected to the 2504, that will not work. You need to have a switch that you can configure a trunk if you want to have multiple vlans for wireless. AP's connected directly to the 2504 will only have access to the management vlan.

-Scott
*** Please rate helpful posts ***

View solution in original post

marce1000 · ‎02-01-2023

- I would suggest to perform client debugging , these can be analyzed with : https://cway.cisco.com/wireless-debug-analyzer/

M.

-- ' A nun once asked a penguin ' do you think the earth is flat ? ; the penguin replied :
Madam, it all depends , in Riemann geometries the earth can be perfectly flat! The nun thanked him , he tripped and fell forward : the poor animal had forgotten that he might be living in a Riemann geometry too!

Scott Fella · ‎02-01-2023

What is the switch the ap's are connected to? If the ap's are connected to the 2504, that will not work. You need to have a switch that you can configure a trunk if you want to have multiple vlans for wireless. AP's connected directly to the 2504 will only have access to the management vlan.

-Scott
*** Please rate helpful posts ***

sardarjion · ‎02-03-2023

Hi Scott,

You nailed the problem. Since this was homelab setup, I had the main test AP connected to POE port 3 of WLC 2504 and it wasn't working. I removed the AP from WLC and was able to get the IP and data flow going.

Would you know why this problem happens in FlexConnect mode? The WLANs which are not configured as flexconnect and in local work fine when AP is connected to WLC poe port. Even different VLANs work fine in local mode.

Rich R · ‎02-18-2023

> Would you know why this problem happens in FlexConnect mode?
By design: https://www.cisco.com/c/en/us/td/docs/wireless/controller/2500/quick/guide/ctr2504-qs.html#pgfId-1405414
"directly connected local mode APs via two PoE (Power over Ethernet) ports are supported."

___________________________________________
TAC recommended codes for AireOS WLC's
Best Practices for AireOS WLC's
TAC recommended codes for 9800 WLC's
Best Practices for 9800 WLC's
Cisco Wireless compatibility matrix
Field Notice: FN-72424 Later Versions of WiFi 6 APs Fail to Join WLC - Software Upgrade Recommended
WARNING - see CSCwd37092 - 2800/3800/4800 series throughput degraded after upgrading to 8.10.181.0/17.3.6
- The fix for CSCwd37092 is in 8.10.183.0 or rather 8.10.185.0 and for 9800 17.3.6+APSP2 or rather 17.3.7
Field Notice: FN-63942 Lightweight APs and WLCs Fail to Create CAPWAP Connections Due to Certificate
      Expiration - Software Upgrade Recommended
Field Notice: FN-72524 - During Software Upgrade/Downgrade IOS APs Might Remain in Downloading State
     After 4 Dec 2022 Due to Certificate Expiration - Fixed in 8.10.183.0/8.10.185.0 and 17.3.6+APSP5/17.3.7
     Also fixed in 8.5.182.7 (8.5 mainline) and 8.5.182.105 (8.5 IRCM) if you can't upgrade to 8.10
     TAC confirmed that subordinate Mobility Express APs downloading by TFTP are not affected so ME 8.5.182.0 still works
     Note that 8.10.181.0 and 8.10.182.0 have been deferred (withdrawn) and are effectively unsupported by Cisco
Leo Laohoo's list of bugs affecting 2800/3800/4800/1560 APs
___________________________________________
Richard R

sardarjion · ‎02-22-2023

Hi Rich,

Thanks for the reply. From the link shared, it says "With Release 7.4, directly connected local mode APs via two PoE (Power over Ethernet) ports are supported. Directly connected APs were not supported before Release 7.4.".

I am just wondering why were the POE ports put to begin with when it cannot be used to power and connect AP.

Rich R · ‎02-23-2023

It CAN be used to power and connect an AP but only in local mode not flexconnect mode.

___________________________________________
TAC recommended codes for AireOS WLC's
Best Practices for AireOS WLC's
TAC recommended codes for 9800 WLC's
Best Practices for 9800 WLC's
Cisco Wireless compatibility matrix
Field Notice: FN-72424 Later Versions of WiFi 6 APs Fail to Join WLC - Software Upgrade Recommended
WARNING - see CSCwd37092 - 2800/3800/4800 series throughput degraded after upgrading to 8.10.181.0/17.3.6
- The fix for CSCwd37092 is in 8.10.183.0 or rather 8.10.185.0 and for 9800 17.3.6+APSP2 or rather 17.3.7
Field Notice: FN-63942 Lightweight APs and WLCs Fail to Create CAPWAP Connections Due to Certificate
      Expiration - Software Upgrade Recommended
Field Notice: FN-72524 - During Software Upgrade/Downgrade IOS APs Might Remain in Downloading State
     After 4 Dec 2022 Due to Certificate Expiration - Fixed in 8.10.183.0/8.10.185.0 and 17.3.6+APSP5/17.3.7
     Also fixed in 8.5.182.7 (8.5 mainline) and 8.5.182.105 (8.5 IRCM) if you can't upgrade to 8.10
     TAC confirmed that subordinate Mobility Express APs downloading by TFTP are not affected so ME 8.5.182.0 still works
     Note that 8.10.181.0 and 8.10.182.0 have been deferred (withdrawn) and are effectively unsupported by Cisco
Leo Laohoo's list of bugs affecting 2800/3800/4800/1560 APs
___________________________________________
Richard R