manualshive.com logo in svg

Cisco Aironet 1040 Series, Deployment Manual

The Cisco Aironet 1040 Series is a high-performance wireless access point designed to deliver seamless connectivity. For detailed information about its features, specifications, and setup instructions, you can download the free datasheet and user manual from our website. Experience hassle-free downloads at manualshive.com.

Share
Download
background image

To get the certificates for LSC, follow these steps:

Step 1

Go to the CA server (http://<ip address of caserver/crtsrv) and login.

Step 2

Get the CA certificate as follows:

a) Click the Download a CA certificate link, certificate chain, or CRF.
b) Choose the encoding method as DER.
c) Click the Download CA certificate link and use the save option to download the CA certificate on to your local

machine.

Step 3

To use the certificate on the controller, convert the downloaded certificate to PEM format. You can convert this in a
Linux machine using the following command:
# openssl x509 -in <input.cer> -inform DER -out <output.cer> -outform PEM

Step 4

Configure the CA certificate on the controller as follows:

a) Choose

COMMANDS > Download File

.

b) Choose the file type as Vendor CA Certificate from the File Type drop-down list.
c) Update the rest of the fields with the information of the TFTP server where the certificate is located.
d) Click

Download

.

Step 5

To install the Device certificate on the WLC, login to the CA server as mentioned in Step 1 and do the following:

a) Click the Request a certificate link.
b) Click the advanced certificate request link.
c) Click Create and submit a request to this CA link.
d) Go to the next screen and choose the Server Authentication Certificate from the Certificate Template drop-down list.
e) Enter a valid name, email, company, department, city, state, and country/region. (Remember it in case you want the

cap method to check the username against its database of user credentials).

The e-mail is not
used.

Note

f) Enable Mark keys as exportable.
g) Click

Submit

.

h) Install the certificate on your laptop.

Step 6

Convert the device certificate obtained in the Step 5. To get the certificate, go to your internet browser options and choose
exporting to a file. Follow the options from your browser to do this. You need to remember the password that you set
here.
To convert the certificate, use the following command in a Linux machine:

# openssl pkcs12 -in <input.pfx> -out <output.cer>

Step 7

On the controller GUI, choose

Command > Download File

. Choose Vendor Device Certificate from the File Type

drop-down list. Update the rest of the fields with the information of the TFTP server where the certificate is located and
the password you set in the previous step and click

Download

.

Step 8

Reboot the controller so that the certificates can then be used.

Step 9

You can check that the certificates were successfully installed on the controller using this command:

show local-auth certificates

   Cisco Mesh Access Points, Design and Deployment Guide, Release 7.3

186

OL-27593-01  

Connecting the Cisco 1500 Series Mesh Access Points to the Network

Locally Significant Certificates for Mesh APs

Summary of Contents for Aironet 1040 Series

Page 1: ...entGuide Release 7 3 First Published August 28 2012 Americas Headquarters Cisco Systems Inc 170 West Tasman Drive San Jose CA 95134 1706 USA http www cisco com Tel 408 526 4000 800 553 NETS 6387 Fax 408 527 0883 Text Part Number OL 27593 01 ...

Page 2: ...PLIERS DISCLAIM ALL WARRANTIES EXPRESSED OR IMPLIED INCLUDING WITHOUT LIMITATION THOSE OF MERCHANTABILITY FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT OR ARISING FROM A COURSE OF DEALING USAGE OR TRADE PRACTICE IN NO EVENT SHALL CISCO OR ITS SUPPLIERS BE LIABLE FOR ANY INDIRECT SPECIAL CONSEQUENTIAL OR INCIDENTAL DAMAGES INCLUDING WITHOUT LIMITATION LOST PROFITS OR LOSS OR DAMAGE TO DATA A...

Page 3: ...Mesh Access Points 4 Cisco Outdoor Mesh Access Points 5 Cisco Aironet 1552 Mesh Access Point 6 Cisco 1522 Mesh Access Point 11 Cisco 1524PS Mesh Access Point 11 Cisco 1524SB Mesh Access Point 12 Ethernet Ports 14 Multiple Power Options 14 Battery Backup Module Optional 16 Reset Button 17 Resetting Access Point 18 Monitoring the LED Status 18 Serial Backhaul Access Point Guidelines for the Rest of ...

Page 4: ... Wireless Path Protocol 42 Traffic Flow 43 Mesh Neighbors Parents and Children 44 Criteria to Choose the Best Parent 45 Ease Calculation 45 Parent Decision 45 SNR Smoothing 46 Loop Prevention 46 C H A P T E R 2 Mesh Deployment Modes 47 Wireless Mesh Network 47 Wireless Backhaul 47 Universal Access 48 Point to Multipoint Wireless Bridging 48 Point to Point Wireless Bridging 48 Configuring Mesh Rang...

Page 5: ...lot Bias 67 Preferred Parent Selection 68 Preferred Parent Selection Criteria 68 Configuring a Preferred Parent 69 Related Commands 69 Co Channel Interference 70 Wireless Mesh Network Coverage Considerations 71 Cell Planning and Distance 71 Assumptions for the AP1522 Range Calculator 83 Assumptions for the AP1552 Range Calculator 84 Collocating Mesh Access Points 86 Special Considerations for Indo...

Page 6: ...2 General Notes about MAP and RAP Association With The Controller 102 Configuring the AP Role GUI 103 Configuring the AP Role CLI 104 Configuring Multiple Controllers Using DHCP 43 and DHCP 60 104 Backup Controllers 105 Configuring Backup Controllers GUI 106 Configuring Backup Controllers CLI 107 Configuring External Authentication and Authorization Using a RADIUS Server 109 Configuring RADIUS Ser...

Page 7: ... 136 Enabling AP1522 to Associate with Cisco 3200 GUI 138 Enabling 1522 and 1524PS Association with Cisco 3200 CLI 138 Configuring Power and Channel Settings 139 Configuring Power and Channel Settings GUI 139 Configuring the Channels on the Serial Backhaul CLI 140 Configuring Antenna Gain 141 Configuring Antenna Gain GUI 141 Configuring Antenna Gain CLI 141 Backhaul Channel Deselection on Serial B...

Page 8: ...nt Marking 171 Guidelines For Using Voice on the Mesh Network 176 Voice Call Support in a Mesh Network 178 Viewing the Voice Details for Mesh Networks CLI 179 Enabling Mesh Multicast Containment for Video 182 Enabling Multicast on the Mesh Network CLI 183 IGMP Snooping 183 Locally Significant Certificates for Mesh APs 184 Guidelines for Configuration 184 Differences Between LSCs for Mesh APs and N...

Page 9: ... Mesh Access Point GUI 203 Viewing the Neighbor Statistics for a Mesh Access Point CLI 204 C H A P T E R 7 Troubleshooting 207 Installation and Connections 207 Debug Commands 208 Remote Debug Commands 209 AP Console Access 209 Cable Modem Serial Port Access From an AP 210 Configuration 210 Mesh Access Point CLI Commands 212 Mesh Access Point Debug Commands 213 Defining Mesh Access Point Roles 213 ...

Page 10: ...ps 233 Adding Indoor Mesh Access Points to Cisco Prime Infrastructure 236 Managing Mesh Access Points with Cisco Prime Infrastructure 237 Monitoring Mesh Networks Using Maps 237 Monitoring Mesh Link Statistics Using Maps 237 Monitoring Mesh Access Points Using Maps 238 Monitoring Mesh Access Point Neighbors Using Maps 239 Monitoring Mesh Health 240 Viewing Mesh Statistics for a Mesh Access Point 2...

Page 11: ...ity within the mesh network is supported by employing Advanced Encryption Standard AES encryption between the wireless mesh access points and Wi Fi Protected Access 2 WPA2 clients This document also outlines radio frequency RF components to consider when designing an outdoor network The features described in this document are for the following products Cisco Aironet 1550 1552 series outdoor 802 11...

Page 12: ...g mesh access points to a network and configuring the mesh access points Connecting the Cisco 1500 Series Mesh Access Points to the Network on page 99 This chapter describes the commands to enter to check the health of a mesh network Checking the Health of the Network on page 193 This chapter describes the troubleshooting information Troubleshooting on page 207 This chapter describes information a...

Page 13: ...t damage or loss of data Caution This warning symbol means danger You are in a situation that could cause bodily injury Before you work on any equipment be aware of the hazards involved with electrical circuitry and be familiar with standard practices for preventing accidents To see translations of the warnings that appear in this publication refer to the appendix Translated Safety Warnings Warnin...

Page 14: ...parecchiatura occorre conoscere i pericoli relativi ai circuiti elettrici ed essere al corrente delle pratiche standard per la prevenzione di incidenti La traduzione delle avvertenze riportate in questa pubblicazione si trova nell appendice Translated Safety Warnings Traduzione delle avvertenze di sicurezza Avvertenza Dette varselsymbolet betyr fare Du befinner deg i en situasjon som kan føre til ...

Page 15: ...e Infrastructure Configuration Guide Release Notes for Cisco Wireless LAN Controllers and Lightweight Access Points Obtaining Documentation and Submitting a Service Request For information on obtaining documentation submitting a service request and gathering additional information see the monthly What s New in Cisco Product Documentation which also lists all new and revised Cisco technical documen...

Page 16: ...Cisco Mesh Access Points Design and Deployment Guide Release 7 3 xvi OL 27593 01 Preface Obtaining Documentation and Submitting a Service Request ...

Page 17: ...Mesh Access Points page 1 Cisco Wireless LAN Controllers page 40 Cisco Prime Infrastructure page 40 Architecture page 40 Mesh Access Points Licensing for Mesh Access Points on a 5500 Series Controller To use both mesh and nonmesh access points with a Cisco 5500 Series Controller only the base license LIC CT5508 X is required from the 7 0 release and later releases For more information about obtain...

Page 18: ... ensure that there is at least one root access point Note While the RAPs have wired connections to their controller the MAPs have wireless connections to their controller MAPs communicate among themselves and back to the RAP using wireless connections over the 802 11a n radio backhaul MAPs use the Cisco Adaptive Wireless Path Protocol AWPP to determine the best path through the other mesh access p...

Page 19: ...ss to the wireless LAN mesh for mesh access points is managed by the following authentication methods MAC authentication Mesh access points are added to a database that can be referenced to ensure they are provided access to a given controller and mesh network External RADIUS Authentication Mesh access points can be externally authorized using a RADIUS server such as Cisco ACS 4 1 and later that s...

Page 20: ...s higher backhaul and client access speeds The 802 11n indoor access points are two radio Wi Fi infrastructure devices for select indoor deployments One radio can be used for local client access for the access point and the other radio can be configured for wireless backhaul The backhaul is supported only on the 5 GHz radio Enterprise 11n mesh supports P2P P2MP and mesh types of architectures You ...

Page 21: ...PS only is transmitted over the 4 9 GHz radio The mesh access point can also operate as a relay node for other access points not directly connected to a wired network Intelligent wireless routing is provided by the Adaptive Wireless Path Protocol AWPP This Cisco protocol enables each mesh access point to identify its neighbors and intelligently choose the optimal path to the wired network by calcu...

Page 22: ...s turned off and the AP listens only to the wired traffic The controller passes the APs that are configured as rogue detectors as well as lists of suspected rogue clients and AP MAC addresses The rogue detector listens for ARP packets and can be connected to all broadcast domains through a trunk link Sniffer mode In this mode the AP captures and forwards all packets on a channel to a remote device...

Page 23: ...io has three receivers that enable maximum ratio combining MRC The 5 GHz a n radio has the following feature Operates in the UNII 2 band 5 25 to 5 35 GHz UNII 2 Extended ETSI band 5 47 to 5 725 GHz and the upper ISM band 5 725 to 5 850 GHz Has two transmitters for 802 11a operation Power settings can change depending on the regulatory domain You can configure the output power for 5 power levels in...

Page 24: ...o system with dual band radios that are compliant with IEEE 802 11a n 5 GHz and 802 11b g n standards 2 4 GHz The 1552E has three external antenna connections for three dual band antennas It has Ethernet and fiber Small Form Factor Pluggable SFP backhaul options along with the option of a battery backup This model also has a PoE out port and can power a video surveillance camera A highly flexible ...

Page 25: ...This model is suitable for 3G data offload applications and public Wi Fi The 1552C model has the following features Lightweight 14 lbs or 6 4 kg low profile AP Two radios 2 4 GHz and 5 GHz DOCSIS EuroDOCSIS 3 0 Cable Modem Aligned console port It supports cable modem backhaul Has an integrated 3 element array antenna with 2 dBi in 2 4 GHz and 4 dBi in 5 GHz Input module power over cable supply 40 ...

Page 26: ... 2 4 GHz and 5 GHz Hazardous Location Haz Loc version Power over Ethernet PoE input using Power Injector Aligned console port Three dual band external omnidirectional antennas AC entry module with terminal block AC powered 100 to 240 VAC as per ATEX certification requirement Fiber SFP backhaul option 802 3af compliant PoE Out option to connect IP devices such as video cameras Battery backup option...

Page 27: ...2 4 GHz is available for backhaul This feature is applicable only to AP1522 The 5 GHz radio is a 802 11a radio that covers the 4 9 to 5 8 GHz frequency band and is used as a backhaul It can also be used for client access if the universal client access feature is enabled AP1522s with serial numbers prior to FTX1150XXXX do not support 5 and 10 MHz channels on the 4 9 GHz radio however a 20 MHz chann...

Page 28: ...ed only in the 5 8 GHz band with 5 channels In the 7 0 release these radios cover the whole 5 GHz band Note Each 5 GHz radio backhaul is configured with a different backhaul channel There is no need to use the same shared wireless medium between the north bound and south bound traffic in a mesh tree based network On the RAP the radio in slot 2 is used to extend the backhaul in the downlink directi...

Page 29: ...shows an example of the Fall Back Mode Figure 3 Fall Back Mode The antenna ports are labeled on the AP1524SB and are connected internally to the radios in each slot The AP1524SB has six ports with three radio slots 0 1 2 as described in Table 2 AP1524SB Antenna Ports on page 13 Table 2 AP1524SB Antenna Ports Description Radio Slot Antenna Port 5 GHz Used for backhaul and universal access Universal...

Page 30: ...tatus of the ports The Up or Down Dn status of the four ports is reported in the following format port0 PoE in port1 PoE out port2 cable port3 fiber For example rap1522 a380 in the display below shows a port status of UpDnDnDn This indicates the following PoE in port 0 g0 is Up PoE out port 1 g1 is Down Dn Cable port 2 g2 is Down Dn and Fiber port 3 g3 is Down Dn controller show mesh env summary A...

Page 31: ...urce The access points detect the available power sources and switch to the preferred power source using the following default prioritization AC power or PoC power External 12 VDC power Power injector PoE power Internal battery power Table 3 Power Options in 1552 Models on page 15 lists the power options available for the 1552 access point models Table 3 Power Options in 1552 Models 1552I 1552C 15...

Page 32: ...n be used for temporary backup power during external power interruptions The battery run time for AP1520s is as follows 3 hour access point operation with up to 3 radios at 77oF 25oC with PoE output port off 2 hour access point operation with up to 3 radios at 77oF 25oC with PoE output port on The battery run time for AP1550s is as follows 2 hour access point operation using two radios at 77oF 25o...

Page 33: ... the reset button for more than 10 seconds and the LEDs turn off then on and then stay off You can also disable the battery remotely by entering the following command config mesh battery state disable AP_name Switch off LEDs Press the reset button for more than 10 seconds and the LEDs turn off then on and then stay off Figure 4 Reset Button Location Models AIR CAP1552E x K9 and AIR CAP1552H x K9 R...

Page 34: ... 2 71 nm Monitoring the LED Status The four status LEDs on AP1500s are useful during the installation process to verify connectivity radio status access point status and software status However once the access point is up and running and no further diagnosis is required we recommend that you turn off the LEDs to discourage vandalism If your access point is not working as expected see the LEDs at t...

Page 35: ...us 2 1 Slot 3 is disabled The RF 1 and RF 2 LEDs monitor two radios simultaneously but do not identify the affected radio For example if the RF 1 LED displays a steady red LED one or both of the radios in slots 0 and 2 have experienced a firmware failure To identify the failing radio you must use other means such as the access point CLI or controller GUI to investigate and isolate the failure Note...

Page 36: ...perational Off Uplink Uplink network is operational cable fiber optic or Ethernet Green Radio is turned off Off RF 1 Slot 0 2 4 GHz radio Radio is operational Green Firmware failure Contact your support organization for assistance Red Radio is turned off Off RF 1 Slot 2 802 11a radio Radio is operational Green Firmware failure Contact your support organization for assistance Red Radio is turned of...

Page 37: ...o Aironet Lightweight Access Points manual at AP1520 http www cisco com en US docs wireless access_point channels lwapp reference guide 1520_ chp html AP1550 http www cisco com en US docs wireless access_point channels lwapp reference guide 1550pwr_chn pdf Table 5 Channels Supported Per Regulatory Domain on page 21 provides a complete overview of channels supported in each domain In addition to 5 ...

Page 38: ... Yes Yes Yes DFS Yes Yes 5805 161 Yes Yes Yes Yes Yes 5825 165 Channels marked Yes DFS are channels supported in that domain Channels marked DFS are additional DFS enabled channels and require checks for radar detection This table is for up to 8 dBi antennas For higher gain antennas see http www cisco com en US docs wireless access_point channels lwapp reference guide 1520_chp html For more inform...

Page 39: ...enabled to ensure correct operation of the E domain APs as these APs can support 100 to 140 channels and not the extended list of 149 to 161 channels available in the M domain Discontinuation of the 116 and 132 Channels from the UNII 2 Extended Band With the 7 0 release in AP1522 and AP1524SB platforms in addition to the 5 channels in the upper ISM band there are 3 channels in the UNII 2 band and ...

Page 40: ...z channels 1 to 10 10 MHz channels 11 to 19 and 20 MHz channels 20 to 26 bandwidths The D domain which is the country domain for India supports the following 20 MHz channels 169 5 845 GHz and 173 5 865 GHz 40 MHz channels The channel pair 169 173 5 855 GHz The frequency depends on the regulatory domain in which the access point is installed For additional information see the Channels and Power Lev...

Page 41: ...Previously devices employing radar operated in frequency subbands without other competing services However controlling regulatory bodies are attempting to open and share these bands with new services like wireless mesh LANs IEEE 802 11 To protect existing radar services the regulatory bodies require that devices wishing to share the newly opened frequency subband behave in accordance with the Dyna...

Page 42: ...age areas determined by antenna design successful coverage is heavily reliant on antenna choice An antenna gives a mesh access point three fundamental properties gain directivity and polarization Gain A measure of the increase in power Gain is the amount of increase in energy that an antenna adds to an RF signal Directivity The shape of the transmission pattern If the gain of the antenna increases...

Page 43: ...To improve the performance an antenna can sometimes be rotated to alter polarization which reduces interference A vertical polarization is preferable for sending RF waves down concrete canyons and horizontal polarization is generally more preferable for wide area distribution Polarization can also be harnessed to optimize for RF bleed over when reducing RF energy to adjacent structures is importan...

Page 44: ...nd Vertical Beamwidth for Cisco Antennas on page 28 summarizes the horizontal and vertical beamwidth for Cisco antennas Table 8 Horizontal and Vertical Beamwidth for Cisco Antennas Vertical Beamwidth degrees Horizontal Beamwidth degrees Antenna 16 360 AIR ANT5180V N 60 60 AIR ANT58G10SSA N 29 25 AIR ANT5114P N 8 90 AIR ANT5117S N 30 360 AIR ANT2547V N N Connectors All external antennas are equippe...

Page 45: ...ion2 6 5 GHz antenna9 Tx Rx 2 Cable POC power input11 7 2 4 GHz antennas10 Tx Rx 3a Strand mount bracket part of strand mount kit ordered separately 8 2 4 GHz antennas Rx 2 3b Strand support cable 4 9 Illustration shows antenna for an access point with two radios 10 Liquid tight connector not shown 11 Stinger connector shown is user supplied Cisco Mesh Access Points Design and Deployment Guide Rel...

Page 46: ... fiberglass 2 to 16 in 5 1 to 40 6 cm diameter 5 2 4 GHz antenna Rx 2 Mounting bracket part of pole mount kit 6 5 GHz antenna Tx Rx 3 2 4 GHz antennas Rx 4a This figure shows antenna placement for a three radio fiber mesh access point Figure 12 AP1524SB and AP1524PS Mesh Access Point Pole Mount Configuration Hinged Side Facing Forward Cisco Mesh Access Points Design and Deployment Guide Release 7 ...

Page 47: ...GHz and 5 GHz frequency Cisco Aironet Low Profile Dual Band 2 4 5 GHz Dipole Antenna Array CPN 07 1123 01 an integrated array of three dual band dipole antennas Cisco Aironet Dual Band Omnidirectional Antenna AIR ANT2547V N referred to as stick antennas Two types of mounting configurations are available the cable strand mount and the pole mount Cisco Mesh Access Points Design and Deployment Guide ...

Page 48: ...4 1552I Pole Wall Mount The 1552 E and H access points are equipped with three N type radio frequency RF connectors antenna ports 4 5 and 6 on the bottom of the unit for external antennas to support multiple input multiple output MIMO operation as shown in the figure below When using the optional Cisco Aironet AIR ANT2547V N Cisco Mesh Access Points Design and Deployment Guide Release 7 3 32 OL 27...

Page 49: ...oints over the past few years This includes consideration for resistance to lightning effects The AP1500 series employs some lightning arrestor circuitry on the Ethernet Power ports On input Ethernet port Gas Discharge Tubes GDT are used on the Power Entry Module PEM to mitigate lightning effect On the AC Power GDTs are also used along with fuses to mitigate a high current condition For the DC pow...

Page 50: ...11a g client sending an uplink packet to an 802 11n access point with multiple transceivers The access point receives the signal on each of its three receive antennas Each received signal has a different phase and amplitude based on the characteristics of the space between the antenna and the client The access point processes the three received signals into one reinforced signal by adjusting their...

Page 51: ... gain see Table 9 RX Sensitivities and MRC Gain on page 35 Table 9 RX Sensitivities and MRC Gain MRC gain Typical sensitivity dBM Three antennas Two antennas Three antennas MRC Two antennas MRC One antenna ModulationRate 0 0 0 0 92 0 92 0 92 0 1 0 0 0 0 91 0 91 0 91 0 2 0 0 0 0 90 3 90 3 90 3 5 5 0 0 0 0 90 0 90 0 90 0 11 0 0 0 0 90 3 90 3 90 3 6 0 0 0 0 90 3 90 3 90 3 9 1 0 0 5 90 0 89 5 89 0 12 ...

Page 52: ...0 series access points With the chipset used in the AP1520 series radios there was a start of packet problem at lower data rates that wiped out the gain Therefore the MRC gain became useful from a data rate of 12 Mbps onwards in the 1520 series access points This problem has been corrected in the current chipset used in the 1552 access points The MRC gain has improved for lower data rates as well ...

Page 53: ...there were to have been 3 SS with 3 RX then the MRC gain would have been zero Note Cisco 1500 Hazardous Location Certification The standard AP1500 enclosure is a ruggedized hardened enclosure that supports the NEMA 4X and IP67 standards for protection to keep out dust damp and water Hazardous Certification Class 1 Div 2 and Zone 2 To operate in occasional hazardous environments such as oil refiner...

Page 54: ...ry Module for ATEX EU is Power entry module Groups IIC IIB IIA with T5 120 C temp code Note Hazardous Certification Div 1 Div 2 and Zone 1 Zone 2 Class 1 Division 1 Zone 1 is for environments with full time ignitable concentrations of flammable gases vapors or liquids To meet the requirements of the Div 1 Div 2 and Zone 1 Zone 2 locations we recommend a TerraWave Solutions CSA certified protective...

Page 55: ...Yes DOCSIS 2 0 Cable Modem Yes Yes HazLoc Class 1 Div 2 Zone 2 Yes Yes Yes Battery backup option AC DC 40 to 90 VAC Power over Cable AC DC 40 to 90 VAC Power over Cable AC DC Power Injector AC DC Power Injector Power options Yes 1522C Heater Yes You need to open the access point Note Yes Yes Yes Yes Console Port Ext Access PoE in is not 802 3af and does not work with PoE 802 3af capable Ethernet s...

Page 56: ...oints to be managed Controllers can be located on the same LAN as the Prime Infrastructure on separate routed subnets or across a wide area connection Architecture Control and Provisioning of Wireless Access Points Control and provisioning of wireless access points CAPWAP is the provisioning and control protocol used by the controller to manage access points mesh and nonmesh in the network In rele...

Page 57: ...elease does not support binary configuration files however configuration files are in the binary state immediately after an upgrade from a mesh release to controller software release 7 0 After reset the XML configuration file is selected Note Do not edit the XML file Downloading a modified configuration file onto a controller causes a cyclic redundancy check CRC error on boot and the configuration...

Page 58: ... point or controller passwords enter the following command config switchconfig secret obfuscation enable disable Adaptive Wireless Path Protocol The Adaptive Wireless Path Protocol AWPP is designed specifically for wireless mesh networking to provide ease of deployment fast convergence and minimal resource consumption AWPP takes advantage of the CAPWAP WLAN where client traffic is tunneled to the ...

Page 59: ...by a device behind the transmitter Figure 18 Wireless Mesh Frame on page 43 shows an example of this type of framing The source address of the frame is MAP 03 70 the destination address of this frame is the controller the mesh network is operating in Layer 2 mode the transmitter address is MAP D5 60 and the receiver address is RAP 03 40 Figure 18 Wireless Mesh Frame As this frame is sent the trans...

Page 60: ...on its ease values A parent can be either the RAP itself or another MAP Ease is calculated using the SNR and link hop value of each neighbor Given multiple choices generally an access point with a higher ease value is selected A child access point selects the parent access point as its best route back to the RAP A neighbor access point is within RF range of another access point but is not selected...

Page 61: ...BOR_REQUEST broadcast on the same channel on which its parent resides and by evaluating all responses from neighboring nodes on the channel A parent mesh access point provides the best path back to a RAP AWPP uses ease to determine the best path Ease can be considered the opposite of cost and the preferred path is the path with the higher ease Ease Calculation Ease is calculated using the SNR and ...

Page 62: ...ghbors against the current parent the parent is given 20 percent of bonus ease on top of the parent s calculated ease to reduce the ping pong effect between parents A potential parent must be significantly better for a child to make a switch Parent switching is transparent to CAPWAP and other higher layer functions Loop Prevention To ensure that routing loops are not created AWPP discards any rout...

Page 63: ...ected to the network at each location Some of the buildings have onsite controllers to terminate CAPWAP sessions from the mesh access points but it is not a mandatory requirement because CAPWAP sessions can be back hauled to a controller over a wide area network WAN Wireless Backhaul In a Cisco wireless backhaul network traffic can be bridged between MAPs and RAPs This traffic can be from wired de...

Page 64: ...fundamentally a wireless mesh with no WLAN clients Client access can still be provided with Ethernet bridging enabled although if bridging between buildings MAP coverage from a high rooftop might not be suitable for client access Figure 22 Point to Multipoint Bridging Example Point to Point Wireless Bridging In a point to point bridging scenario a 1500 Series Mesh AP can be used to extend a remote...

Page 65: ...ou must also enable Ethernet bridging on MAP1 parent MAP and on the RAP connecting to the controller To configure range parameters for longer links choose Wireless Mesh Optimum distance in feet should exist between the root access point RAP and the farthest mesh access point MAP Range from the RAP bridge to the MAP bridge has to be mentioned in feet The following global parameter applies to all me...

Page 66: ...ange Calculator The AP1552 Range Calculator has been edited to stay within limitations for Tx power and EIRP under the listed regulatory domains There may be cases where it exceeds the limitations You must verify that the installation is within the laws of the location in which it is being installed All three antenna ports must be used for external antenna models of 1552 for effective performance ...

Page 67: ...s important for effective use of the available RF spectrum The rate can also affect the throughput of client devices and throughput is an important metric used by industry publications to evaluate vendor devices Dynamic Rate Adaptation DRA introduces a process to estimate optimal transmission rate for packet transmissions It is important to select rates correctly If the rate is too high packet tra...

Page 68: ...4 Backhaul Data Rates and Minimum LinkSNR Requirements on page 52 Table 14 Backhaul Data Rates and Minimum LinkSNR Requirements Minimum Required LinkSNR dB 802 11a Data Rate Mbps 31 54 29 48 26 36 22 24 18 18 16 12 15 9 14 6 The required minimum LinkSNR value is driven by the data rate and the following formula Minimum SNR fade margin Table 15 Calculation by Data Rate on page 52 summarizes the cal...

Page 69: ...LinkSNR Calculations for 802 11a g Required Link SNR dB Fade Margin dB MRC Gain from 3 RXs dB Minimum SNR dB Modulation 802 11a g MCS Mbps 9 3 9 4 7 5 BPSK 1 2 6 10 3 9 4 7 6 BPSK 3 4 9 11 3 9 4 7 7 QPSK 1 2 12 13 3 9 4 7 9 QPSK 3 4 18 17 3 9 4 7 13 16QAM 1 2 24 21 3 9 4 7 17 16QAM 3 4 36 24 3 9 4 7 20 64QAM 2 3 48 26 3 9 4 7 22 64QAM 3 4 54 If we consider only 802 11n rates then Table 17 Requirem...

Page 70: ... 17 16QAM 3 4 MCS 4 1 24 3 9 4 7 20 64QAM 2 3 MCS 5 1 26 3 9 4 7 22 64QAM 3 4 MCS 6 1 27 3 9 4 7 23 64QAM 5 6 MCS 7 1 12 3 9 1 7 5 BPSK 1 2 MCS 8 2 14 3 9 1 7 7 QPSK 1 2 MCS 9 2 16 3 9 1 7 9 QPSK 3 4 MCS 10 2 20 3 9 1 7 13 16QAM 1 2 MCS 11 2 24 3 9 1 7 17 16QAM 3 4 MCS 12 2 27 3 9 1 7 20 64QAM 2 3 MCS 13 2 29 3 9 1 7 22 64QAM 3 4 MCS 14 2 30 3 9 1 7 23 64QAM 5 6 MCS 15 2 Cisco Mesh Access Points D...

Page 71: ...e 802 11a g client increasing the downlink signal to noise ratio and the data rate over range thereby reducing coverage holes and enhancing the overall system performance This technology learns the optimum way to combine the signal received from a client and then uses this information to send packets in an optimum way back to the client This technique is also referred to as MIMO multiple input mul...

Page 72: ...of spectrum resources ClientLink in the 1552 access points is based on ClientLink capability available in AP3500s Therefore the access point has the ability to beamform well to nearby clients and to update beamforming information on 802 11ACKs Therefore even if there is no dedicated uplink traffic the ClientLink works well which is beneficial to both TCP and UDP traffic streams There are no RSSI w...

Page 73: ...and save config Step 6 See the beamforming status for your network by entering this command show 802 11a 802 11b Information similar to the following appears 802 11a Network Enabled 11nSupport Enabled 802 11a Low Band Enabled 802 11a Mid Band Enabled 802 11a High Band Enabled Pico Cell V2 Status Disabled TI Threshold 50 Legacy Tx Beamforming setting Enabled Step 7 See the beamforming status for a ...

Page 74: ...and The output is displayed as follows RBF Table Index Client MAC Reserved Valid Tx BF Aging 1 0040 96BA 45A0 Yes Yes Yes No Controller Planning The following items affect the number of controllers required in a mesh network Mesh access points RAPs and MAPs in the network The wired network that connects the RAP and controllers can affect the total number of access points supported in the network I...

Page 75: ...s is equal to local AP support number of RAPs 14 For 2504 controllers the number of MAPs is equal to local AP support number of RAPs Mesh is fully supported on Cisco 5508 Controllers The Base License LIC CT508 Base is sufficient for indoor and outdoor APs AP152X The WPlus License LIC WPLUS SW is merged with the base license The WPlus License is not required for indoor mesh APs Note Cisco Mesh Acce...

Page 76: ...Cisco Mesh Access Points Design and Deployment Guide Release 7 3 60 OL 27593 01 Design Considerations Controller Planning ...

Page 77: ...ments to determine whether your antenna calculations are accurate Determine the correct location and antenna before drilling holes routing cables and mounting equipment When power is not readily available we recommend you to use an unrestricted power supply UPS to temporarily power the mesh link Note Pre Survey Checklist Before attempting a site survey determine the following How long is your wire...

Page 78: ...e deployed with antennas pointed down toward the ground Typical 5 GHz RAP to MAP distances are 1000 to 4000 feet RAP locations are typically towers or tall buildings Typical 5 GHz MAP to MAP distances are 500 to 1000 feet MAP locations are typically short building tops or streetlights Typical 2 4 GHz MAP to client distances are 500 to 1000 feet depends upon the type of access point Clients are typ...

Page 79: ...roblem many times it might be additional conditions caused by the adverse weather For example perhaps the antenna is on a mast pipe and the storm is blowing the mast pipe or antenna structure and that movement is causing the link to come and go or there might be a large build up of ice or snow on the antenna Fresnel Zone A Fresnel zone is an imaginary ellipse around the visual line of sight betwee...

Page 80: ...s in a Fresnel Zone on page 64 shows the removal of an obstruction in the Fresnel zone of the wireless signal Figure 26 Removing Obstructions in a Fresnel Zone Fresnel Zone Size in Wireless Mesh Deployments To give an approximation of size of the maximum Fresnel zone to be considered at a possible minimum frequency of 4 9 GHz the minimum value changes depending on the regulatory domain The minimum...

Page 81: ...e traffic conditions such as heavy loads and large packet streams Both the hidden node problem and the exposed node problem are inherent to wireless mesh networks because mesh access points share the same backhaul channel Because these two problems can affect the overall network performance the Cisco mesh solution seeks to mitigate these two problems as much as possible For example the AP1500s hav...

Page 82: ...When a 1524SB AP is switched on either slot 1 or slot 2 can be used for an uplink depending on the strength of the signal AWPP treats both slots equally For a MAP slot 2 is the preferred biased uplink slot that is the slot that is used to connect to the parent AP Slot 1 is the preferred downlink slot When both radio slots are available for use and if slot 1 is used for an uplink backhaul a 15 minu...

Page 83: ... the downlink Slot 2 takes over slot 1 if slot 1 does not have any channels to operate because of DFS If slot 2 has a hardware failure then slot bias is initiated and slot 1 is selected for uplinking Disabling slot bias enables you to take preventive action for a smooth operation Commands Related to Slot Bias The following commands related to slot bias To see which slot is being used for an uplink...

Page 84: ...eferred parent has a link SNR of at least 20 dB other parents however good are ignored The preferred parent has a link SNR in the range of 12 dB and 20 dB but no other parent is significantly better that is the SNR is more than 20 percent better For an SNR lower than 12 dB the configuration is ignored The preferred parent is not blacklisted The preferred parent is not in silent mode because of dyn...

Page 85: ...mesh parent preferred MAP1SB 00 24 13 0f 92 0f Related Commands The following commands are related to preferred parent selection To clear a configured parent enter the following command Cisco Controller config mesh parent preferred AP_name none To get information about the AP that is configured as the preferred parent of a child AP enter the following command Cisco Controller show ap config genera...

Page 86: ...abled Global MFP Disabled AP User Mode CUSTOMIZED AP username maria AP Dot1x User Mode Not Configured AP Dot1x username Not Configured Cisco AP system logging host 255 255 255 255 AP Up Time 4 days 06 h 17 m 22 s AP LWAPP Up Time 4 days 06 h 15 m 00 s Join Date and Time Mon Mar 3 06 19 47 2008 Ethernet Port Duplex Auto Ethernet Port Speed Auto AP Link Latency Enabled Current Delay 0 ms Maximum Del...

Page 87: ...tio Recommended maximum ratio is 20 MAPs per RAP AP to AP distance A spacing of no more than of 2000 feet 609 6 meters between each mesh access point is recommended When you extend the mesh network on the backhaul no client access use a cell radius of 1000 feet 304 8 meters Hop count Three to four hops One square mile in feet 52802 is nine cells and you can cover one square mile with approximately...

Page 88: ... 1000 Feet and Access Point Placement for Nonvoice Mesh Networks Figure 30 Path Loss Exponent 2 3 to 2 7 Figure 31 Cell Radius of 600 Feet and Access Point Placement for Nonvoice Mesh Networks Cisco Mesh Access Points Design and Deployment Guide Release 7 3 72 OL 27593 01 Site Preparation and Planning Cell Planning and Distance ...

Page 89: ... for a Greenfield deployment with the AP1520 series we recommend a cell radius of 600 feet and an AP to AP distance of 1200 feet Normally an AP to AP distance that is twice the Cisco Mesh Access Points Design and Deployment Guide Release 7 3 OL 27593 01 73 Site Preparation and Planning Cell Planning and Distance ...

Page 90: ...e 2 4 GHz band 1520s and 1552s have almost the same Tx power but 1552s have 3 dB better Rx sensitivity because of improved MRC see Table 19 Link Budget Comparison for the 2 4 GHz band in A Domain on page 74 Table 19 Link Budget Comparison for the 2 4 GHz band in A Domain Comments Cisco 1522 A Domain Cisco 1552 A domain Parameter Center Frequencies 2412 2462 MHz 2412 2462 MHz Frequency Band 802 11b...

Page 91: ...s The maximum data rate that we can achieve in 2 4 GHz is 144 Mbps Note For the 5 GHz band 1520s and 1552s have almost the same Tx power but 1552s have approximately 4 dB better Rx sensitivity because of the availability of MRC in 5 GHz see Table 20 Link Budget Comparison for the 5 GHz band in A Domain on page 75 Table 20 Link Budget Comparison for the 5 GHz band in A Domain Comments Cisco 1522 A ...

Page 92: ...d that the height of both APs is about 10 meters which means a good line of sight but without Fresnel zone clearance For AP to client PLE should be greater than or equal to 2 5 because the client is only 1 meter high Therefore there will be less Fresnel zone clearance This applies to both the 2 4 GHz and 5 GHz bands Let us consider AP to AP link budget in 5 GHz for A domain because 5 GHz is used a...

Page 93: ...am and downstream but it might not happen Generally there is a higher antenna gain and higher Tx power available on the AP rather than on the client But this can also be opposite in a few regulatory domains because of different EIRP limit requirements Therefore the lowest of both upstream and downstream should be taken to calculate the AP to the client distance because that will be the decision fa...

Page 94: ...he A domain AP to client link budget in 2 4 GHz band is limited by upstream That is the upstream has lower system gain and therefore the decision factor will be upstream Cell sizes for AP to Client in 2 4 GHz for different AP1552 models can be decided by picking the lowest of the following two AP to Client distance in the 2 4 GHz band from Table 22 Outdoor 11n AP to Client at 2 4 GHz 9 Mbps Data R...

Page 95: ... For the AP to the AP distance you can take double the AP to the client distance see Table 24 Recommendations for Cell Radius on page 79 Table 24 Recommendations for Cell Radius AP to AP AP to Client AP Type A Domain 500 meters 1600 feet 250 meters 800 feet 1552 C I 600 meters 2000 feet 300 meters 1000 feet 1552 E H Cisco Mesh Access Points Design and Deployment Guide Release 7 3 OL 27593 01 79 Si...

Page 96: ...LoS For Less LoS scenarios you must reduce the distance assumptions Flat Terrain Environment AP Densities result as follows AP1552C and AP1552I 14 AP sq mile 5 3 AP sq km AP1552E and AP1552H 9 AP sq mile 3 5 AP sq km With these recommendations the likelihood of getting healthy cells is more Cisco Mesh Access Points Design and Deployment Guide Release 7 3 80 OL 27593 01 Site Preparation and Plannin...

Page 97: ...1552 I C Parameter 22 dBm 19 dBm Composite 22 dBm Composite Tx Power Conducted at 9 Mbps 20 MHz bandwidth 0 5 dB 0 5 dB 0 dB Tx Antenna Cable Loss 8 dBi 7 dBI 4 dBi inbuilt antenna Tx Antenna Gain 0 dB 4 dB 4 dB Tx Beamforming BF 30 5 dBm 30 5 dBm 30 dBm Tx EIRP 8 dBi 7 dBI 4 dBi Rx Antenna Gain 0 5 dB 0 5 dB 0 dB Rx Antenna Cable Loss 88 dBm at 9 Mbps 91 dBm at 9 Mbps 91 dBm at 9 Mbps Rx Sensitiv...

Page 98: ... only in DS 0 dB Client 3 dB AP 0 dB Client 3 dB AP Tx Beamforming BF 20 dBm 20 dBm 20 dBm 20 dBm Tx EIRP 4 dBi AP 0 dBi Client 2 dBi AP 0 dBi Client Rx Antenna Gain Includes 4 7 dB MRC gain for AP1552 94 dBm AP 91 dBm Client 94 dBm AP 91 dBm Client Rx Sensitivity 118 dB 111 dB 116 dB 111 dB System Gain LOS PLE 2 5 5 dB fade margin 173 meters 567 feet 173 meters 567 feet Range AP to Client The AP ...

Page 99: ...520 Series Outdoor Mesh Range Calculation Utility http www cisco com en US products ps8368 products_implementation_design_guides_list html Range Calculator for 1550 Series Outdoor Mesh Access Points http www cisco com en US products ps11451 products_implementation_design_guides_list html Assumptions for the AP1522 Range Calculator The AP1522 Range Calculator has been edited to stay within limitati...

Page 100: ...hat ClientLink Beamforming is switched on When you use the AP1552 Range Calculator available power levels change based upon the regulatory domain the antenna or antenna gain selected and the data rate selected You must verify all parameters after making any parameter changes You can select a different antenna than the two that are available by default If you enter a high gain antenna and choose a ...

Page 101: ...ltiple RAP and MAP Cells on page 85 various backhaul channels B2 C2 and D2 per cell have been chosen to reduce the co channel interference between cells Figure 35 Multiple RAP and MAP Cells Choosing various channels reduces the co channel interference at the cell boundaries at the expense of faster mesh convergence because MAPs must fall back to seek mode to find neighbors in adjacent cells In are...

Page 102: ...verage Collocating Mesh Access Points The following recommendations provide guidelines to determine the required antenna separation when you collocate AP1500s on the same tower The recommended minimum separations for antennas transmit powers and channel spacing are addressed The goal of proper spacing and antenna selection is to provide sufficient isolation by way of antenna radiation pattern free...

Page 103: ...Hz antenna isolation determines mesh access point spacing requirements and antenna proximity must be followed and is dependent upon the adjacent and alternate adjacent channel usage Special Considerations for Indoor Mesh Networks Note these considerations for indoor mesh networks For outdoors voice is supported on a best effort basis on a mesh infrastructure Quality of Service QoS is supported on ...

Page 104: ...adio resource manager RRM can be used to implement the recommended RSSI PER SNR CU cell coverage and coverage hole settings on the 802 11b g n radio RRM is not available on 802 11a n radio Figure 38 Cell Radius of 100 Feet 30 4 meters and Access Point Placement for Voice Mesh Networks Figure 39 Cell Radius of 125 Feet 38 meters and Access Point Placement for Indoor 11n Mesh Networks Cisco Mesh Acc...

Page 105: ... No co channel interference More prone to co channel interference Higher power Lower power Higher SNR requirements given higher data rates Lower SNR requirements given lower data rates Worse propagation characteristics than 2 4 GHz but less susceptible to noise and interference Better propagation characteristics than 5 GHz but more susceptible to noise and interference Not as widely available in t...

Page 106: ... line rate detection without interrupting client traffic AP1552 in 2 4 GHz client access offers Radio Resource Management RRM which helps to mitigate the interference from WiFi interferers RRM is not available for the 5 GHz backhaul There are no CleanAir dwells processed during normal off channel scans Normally a CUWN Local Mode AP executes an off channel passive scan of the alternate available ch...

Page 107: ...PMACs and IDRs are analyzed on the controller and a report is generated called a device cluster which shows the APs detecting the device and the device cluster showing the AP which is hearing the device as strongest In this merging spatial proximity RF proximity RF neighbor relationship work together If there are six similar IDRs with 5 APs nearby and another one from an AP that is far away it is ...

Page 108: ...source Management and Persistence Device Avoidance There are two key mitigation features that are present with CleanAir Both rely directly on information that can only be gathered by CleanAir Event Driven Radio Resource Management EDRRM and Persistence Device Avoidance PDA For mesh networks they work exactly the same way as for nonmesh networks in the 2 4 GHz band EDRRM and PDA are only available ...

Page 109: ...d the PMAC and the merging process If a network does not have a good RF design the neighbor relations is affected which in turn affects CleanAir performance The AP Density recommendations for CleanAir remain the same as normal mesh AP deployment Location resolution in the Outdoors is to the nearest AP Devices are located near the AP which is physically closest to the device It is advisable to assu...

Page 110: ...nterferer Licenses open as CleanAir APs are detected in stages of five licenses per CleanAir AP This process is applicable to AP1552 An Interference device is the same as a client or a tag from a license quantity standpoint Only a small percentage of the available licenses are used because there should be far less interference devices than clients or tags to track Users do have control over what t...

Page 111: ...c between peers takes the most efficient path Given that most deployments see a mix of client server traffic and peer to peer traffic it is likely that a hybrid model of CAPWAP controller placement is used where points of presence PoPs are created with clusters of controllers placed in strategic locations in the network The CAPWAP model used in the wireless mesh network is designed for campus netw...

Page 112: ...pose for deploying these RAPs needs to be considered If the RAPs are being deployed to provide hardware diversity the additional RAP s should be deployed on the same channel as the primary RAP to minimize the convergence time in a scenario where the mesh transfers from one RAP to another When you plan RAP hardware diversity consider the 32 MAPs per RAP limitation Cisco Mesh Access Points Design an...

Page 113: ...gments in your network that are separated by subnet boundaries Indoor Mesh Interoperability with Outdoor Mesh Complete interoperability of indoor mesh access points with the outdoor ones is supported It helps to bring coverage from outdoors to indoors We recommend indoor mesh access points for indoor use only and these access points should be deployed outdoors only under limited circumstances as d...

Page 114: ...Cisco Mesh Access Points Design and Deployment Guide Release 7 3 98 OL 27593 01 Site Preparation and Planning Indoor Mesh Interoperability with Outdoor Mesh ...

Page 115: ... wired network see Figure 43 Mesh Network Traffic Termination on page 99 The WLAN client traffic from CAPWAP is tunneled at Layer 2 and matching WLANs should terminate on the same switch VLAN where the controllers are collocated The security and network configuration for each of the WLANs on the mesh depend on the security capabilities of the network to which the controller is connected Figure 43 ...

Page 116: ...ch mesh access point See the Configuring Multiple Controllers Using DHCP 43 and DHCP 60 section Configure a backup controller See the Configuring Backup Controllers section Step 5 Configure external authentication of MAC addresses using an external RADIUS server See the Configuring External Authentication and Authorization Using a RADIUS Server Step 6 Configure global mesh parameters See the Confi...

Page 117: ...cess point using either the GUI or the CLI You can also download the list of mesh access point MAC addresses and push them to the controller using Cisco Prime Infrastructure Note Adding the MAC Address of the Mesh Access Point to the Controller Filter List GUI To add a MAC filter entry for the mesh access point on the controller using the controller GUI follow these steps Step 1 Choose Security AA...

Page 118: ...peat this procedure to add the MAC addresses of additional mesh access points to the list Adding the MAC Address of the Mesh Access Point to the Controller Filter List CLI To add a MAC filter entry for the mesh access point on the controller using the controller CLI follow these steps Step 1 To add the MAC address of the mesh access point to the controller filter list enter this command config mac...

Page 119: ...set as the primary backhaul for 15 minutes Failing to find a neighbor or failing to connect to a controller via any neighbor on the 802 11a n radio causes the primary backhaul to go into the scan state The primary backhaul begins its scan with the Ethernet port Configuring the AP Role GUI To configure the role of a mesh access point using the GUI follow these steps Step 1 Click Wireless to open th...

Page 120: ...he IP address of the default router such as 10 0 0 1 DNS Server is the IP address of the DNS server such as 10 0 10 2 Step 3 Add the option 60 line using the following syntax option 60 ascii VCI string For the VCI string use one of the values below The quotation marks must be included For Cisco 1550 series access points enter Cisco AP c1550 For Cisco 1520 series access points enter Cisco AP c1520 ...

Page 121: ...ller list is updated Any controller that fails to respond to two consecutive primary discovery requests is removed from the list If the mesh access point s local controller fails it chooses an available controller from the backup controller list in this order primary secondary tertiary primary backup and secondary backup The mesh access point waits for a discovery response from the first available...

Page 122: ...n the AP Primary Discovery Timeout field enter a value between 30 and 3600 seconds inclusive to configure the access point primary discovery request timer The default value is 120 seconds Step 3 If you want to specify a primary backup controller for all access points specify the IP address of the primary backup controller in the Back up Primary Controller IP Address field and the name of the contr...

Page 123: ...dress of the tertiary backup controller for this mesh access point in the Tertiary Controller fields g No change is required to the AP Failover Priority value The default value for mesh access points is critical and it cannot be modified h Click Apply to commit your changes Step 7 Click Save Configuration to save your changes Configuring Backup Controllers CLI Using the controller CLI follow these...

Page 124: ...ponse timer enter this command config advanced timers auth timeout interval where interval is a value between 10 and 600 seconds inclusive The default value is 10 seconds Step 9 To save your changes enter this command save config Step 10 To view a mesh access point s configuration enter these commands show ap config general Cisco_AP show advanced backup controller show advanced timers show mesh co...

Page 125: ...for RAP 20 Low Link SNR 12 High Link SNR 60 Max Association Number 10 Association Interval 60 minutes Parent Change Numbers 3 Parent Change Interval 60 minutes Mesh Multicast Mode In Out Mesh Full Sector DFS enabled Mesh Ethernet Bridging VLAN Transparent Mode enabled ConfiguringExternalAuthenticationandAuthorizationUsingaRADIUSServer External authorization and authentication of mesh access points...

Page 126: ...ww cisco com security pki certs cmca cer Step 2 Install the certificates as follows a From the CiscoSecure ACS main menu click System Configuration ACS Certificate Setup ACS Certification Authority Setup b In the CA certificate file box type the CA certificate location path and name For example C Certs crca2048 cer c Click Submit Step 3 Configure the external RADIUS servers to trust the CA certifi...

Page 127: ...ess string to the user list for example c1240 001122334455 The controller first sends the MAC address as the username if this first attempt fails then the controller sends the platform_name_string Ethernet_MAC_address string as the username If you enter only the platform_name_string Ethernet_MAC_address string to the user list you will see a first try failure log on the AAA server however the Cisc...

Page 128: ...ons Step 4 Click Apply Step 5 Click Save Configuration Enable External Authentication of Mesh Access Points CLI To enable external authentication for mesh access points using the CLI enter the following commands Step 1 config mesh security eap Step 2 config macfilter mac delimiter colon Step 3 config mesh security rad mac filter enable Step 4 config mesh radius server index enable Step 5 config me...

Page 129: ...nts including security settings local and external authentication You can configure the necessary mesh parameters using either the GUI or the CLI All parameters are applied globally Configuring Global Mesh Parameters GUI To configure global mesh parameters using the controller GUI follow these steps Step 1 Choose Wireless Mesh Step 2 Modify the mesh parameters as appropriate Table 30 Global Mesh P...

Page 130: ...oot Note Backhaul Client Access This feature determines how a mesh access point handles VLAN tags for Ethernet bridged traffic See the Configuring Advanced Features section for overview and additional configuration details Note If VLAN Transparent is enabled then VLAN tags are not handled and packets are bridged as untagged packets No configuration of Ethernet ports is required when VLAN transpare...

Page 131: ...ver For remote authorization and authentication EAP FAST uses the manufacturer s certificate CERT to authenticate the child mesh access point Additionally this manufacturer certificate based identity serves as the username for the mesh access point in user validation For IOS based mesh access points 1130 1240 1522 1524 the platform name of the mesh access point is located in front of its Ethernet ...

Page 132: ... on the primary backhaul 802 11a of a mesh access point enter these commands config mesh client access enable disable config ap wlan enable disable 802 11a Cisco_AP config ap wlan add delete 802 11a wlan_id Cisco_AP Step 5 To enable or disable VLAN transparent enter this command config mesh ethernet bridging VLAN transparent enable disable Step 6 To define a security mode for the mesh access point...

Page 133: ...be 2 4 GHz This means that a backhaul radio can carry both backhaul traffic and client traffic When Universal Client Access is disabled only backhaul traffic is sent over the backhaul radio and client association is only over the second radio s Cisco Controller show mesh client access Backhaul with client access status enabled show mesh ids state Shows the status of the IDS reports on the backhaul...

Page 134: ... for most of the mesh access points except for 1522 where backhaul can be 2 4 GHz This means that a backhaul radio can carry both backhaul traffic and client traffic When Universal Client Access is disabled only backhaul traffic is sent over the backhaul radio and client association is only over the second radio s Universal Client Access is disabled by default After this feature is enabled all mes...

Page 135: ...ccess on Serial Backhaul Access Points With universal client access you can have client access on the backhaul 802 11a radios in addition to the backhaul functionality This feature is applicable to mesh access points with two or more radios 1552 1524SB 1522 Indoor APs in mesh mode excluding the 1524PS The dual 5 GHz Universal Client Access feature is intended for the serial backhaul access point p...

Page 136: ...ccess on slot 1 is enabled If you disable client access on slot 1 client access on slot 2 is automatically disabled on the CLI To disable only the extended client access on the slot 2 radio use the GUI All the mesh access points reboot whenever client access is enabled or disabled The two 802 11a backhaul radios use the same MAC address There may be instances where a WLAN maps to the same BSSID on...

Page 137: ...ackhaul in the DOWNLINK direction is displayed as DOWNLINK ACCESS where slot 1 in the 5 GHz radio in the RAPSB that is used for client access is displayed as ACCESS Slot 2 in the 5 GHz radio in the MAPSB that is used for the UPLINK is displayed as UPLINK ACCESS and slot 1 in the MAPSB is used for the DOWNLINK ACCESS with an omnidirectional antenna that also provides the client access Cisco Mesh Ac...

Page 138: ...ll be rebooted Are you sure you want to start y N Enter the show mesh client access command to know the status of the backhaul with client access and the backhaul with client access extended The status is displayed as follows Backhaul with client access status enabled Backhaul with client access extended status 3 radio AP enabled There is no explicit command to disable client access only on slot 2...

Page 139: ...tep 1 Choose Controllers Controller IP Address Mesh Mesh Settings The Mesh page when Backhaul Client Access is disabled appears Figure 52 Mesh Settings Page Step 2 Select the Client Access on Backhaul Link check box to display the Extended Backhaul Client Access check box Step 3 Select the Extended Backhaul Client Access check box and click Apply A message appears indicating the possible results o...

Page 140: ...esulting in inferior products and the potential for catastrophic network congestion and collapse Data rates also affect the RF coverage and network performance Lower data rates for example 6 Mbps can extend farther from the access point than can higher data rates for example 300 Mbps As a result the data rate affects cell coverage and consequently the number of access points required Different dat...

Page 141: ...s to obtain information about backhaul config ap bhrate Configures the Cisco Bridge backhaul Tx rate The syntax is as follows controller config ap bhrate backhaul rate ap name Preconfigured data rates for each AP RAP 18 Mbps MAP1 36 Mbps are preserved after the upgrade to 6 0 or later software releases Before you upgrade to the 6 0 release if you have the backhaul data rate configured to any data ...

Page 142: ...ughput depends upon the type of the AP that is if it is 802 11a n or only 802 11a number of backhaul radios it has and so on In AP1524 SB Slot 2 in the 5 GHz radio in the RAP is used to extend the backhaul in the downlink direction whereas Slot 2 in the 5 GHz radio in the MAP is used for backhaul in the uplink We recommend using a directional antenna with the Slot 2 radio MAPs extend Slot 1 radio ...

Page 143: ...ecause these APs have only a single radio for the backhaul uplink and downlink see the figures below Figure 54 1524SB TCP Downstream Rate Auto Figure 55 1522 TCP 54 Mbps Downstream Cisco Mesh Access Points Design and Deployment Guide Release 7 3 OL 27593 01 127 Connecting the Cisco 1500 Series Mesh Access Points to the Network Configuring Local Mesh Parameters ...

Page 144: ...Cisco Mesh Access Points Design and Deployment Guide Release 7 3 128 OL 27593 01 Connecting the Cisco 1500 Series Mesh Access Points to the Network Configuring Local Mesh Parameters ...

Page 145: ...Cisco Mesh Access Points Design and Deployment Guide Release 7 3 OL 27593 01 129 Connecting the Cisco 1500 Series Mesh Access Points to the Network Configuring Local Mesh Parameters ...

Page 146: ...hanged on a per AP basis Figure 56 1524SB TCP Downstream Rate Auto Figure 57 1524 TCP Downstream 24 Mbps Note Cisco Mesh Access Points Design and Deployment Guide Release 7 3 130 OL 27593 01 Connecting the Cisco 1500 Series Mesh Access Points to the Network Configuring Local Mesh Parameters ...

Page 147: ...hernet bridging is disabled For example the following protocols are allowed Spanning Tree Protocol STP Address Resolution Protocol ARP Control And Provisioning of Wireless Access Points CAPWAP Bootstrap Protocol BOOTP packets Due to the exceptions and to prevent loop issues we recommend that you do not connect two MAPs to each other over their Ethernet ports unless they are configured as trunk por...

Page 148: ...o connect any Ethernet device such as a video camera on the MAP using its Ethernet port This is the first step to enable VLAN tagging Figure 59 Point to Multipoint Bridging Cisco Mesh Access Points Design and Deployment Guide Release 7 3 132 OL 27593 01 Connecting the Cisco 1500 Series Mesh Access Points to the Network Configuring Local Mesh Parameters ...

Page 149: ...rnet bridging for every parent mesh AP taking the path from the mesh AP in question to the controller For example if you enable Ethernet bridging on MAP2 in Hop 2 then you must also enable Ethernet bridging on MAP1 parent MAP and on the RAP connecting to the controller Configuring Bridge Group Names Bridge group names BGNs control the association of mesh access points BGNs can logically group radi...

Page 150: ...at no mesh access points are dropped due to mixed BGNs old and new BGNs within the same network Caution Step 2 To verify the BGN enter the following command show ap config general ap name Verifying Bridge Group Names GUI Step 1 Click Wireless Access Points AP Name The details page for the selected mesh access point appears Step 2 Click the Mesh tab Details for the mesh access point including the B...

Page 151: ... backhaul In some parts of the world including the USA you can only have public safety traffic on the 4 9 GHz backhaul Check the destination countries compliance before installing The 4 9 GHz subband radio on the AP1524PS supports public safety channels within the 5 MHz channels 1 to 10 10 MHz channels 11 to 19 and 20 MHz channels 20 to 26 bandwidths The following data rates are supported within t...

Page 152: ...haul The Cisco 3200 creates an in vehicle network in which devices such as PCs surveillance cameras digital video recorders printers PDAs and scanners can share wireless networks such as cellular or WLAN based services back to the main infrastructure This feature allows data collected from in vehicle deployments such as a police cars to be integrated into the overall wireless infrastructure This s...

Page 153: ... the AP1522 or AP1524PS must match those on the Cisco 3200 radio interfaces Channels 20 4950 GHz through 26 4980 GHz and subband channels 1 through 19 5 and 10 MHz are used for Cisco 3200 interoperability This configuration change is made on the controller No changes are made to the mesh access point configuration Channel assignments are only made to the RAP Updates to the MAP are propagated by th...

Page 154: ...nges Step 7 Click Save Configuration to save your changes Enabling 1522 and 1524PS Association with Cisco 3200 CLI Step 1 To enable client access mode on the AP1522 enter this command config mesh client access enable Step 2 To enable the public safety on a global basis enter this command config mesh public safety enable all Step 3 To enable the public safety channels enter these commands a On the ...

Page 155: ...e Antenna drop down list for the 802 11a n radio The Configure page is displayed For the 1524SB select the Antenna drop down list for a RAP with a radio role of downlink Note Step 3 Assign a channel assignment methods of global and custom for the radio When you assign a channel to the AP1524SB choose the Custom assignment method and select one of the supported channels for the 5 GHz band Note Step...

Page 156: ... Channel AP Name Radio UPDATED NEIGH PARENT BEACON 0x10ea9d54 60 auto 161 MAP1SB UPDATED NEIGH PARENT BEACON 0x10ea9d54 51 auto 153 RAPSB RAPSB is a Root AP show mesh backhaul RAPSB Information similar to the following appears Current Backhaul Slot s 1 2 Basic Attributes for Slot 1 Radio Type RADIO_TYPE_80211a Radio Role ACCESS Administrative State ADMIN_ENABLED Operation State UP Current Tx Power...

Page 157: ...e arrow far right to display antenna options Choose Configure Only external antennas have configurable gain settings Note Step 3 In the Antenna Parameters section enter the antenna gain The gain is entered in 0 5 dBm units For example 2 5 dBm 5 The entered gain value must match that value specified by the vendor for that antenna Note Step 4 Click Apply and then Save Configuration to save the chang...

Page 158: ... channel 165 is supported by outdoor access points but not by indoor access points in the A domain By enabling the backhaul channel deselection feature you can restrict the channel assignment to only those channels that are common to both indoor and outdoor access points Channel deselection is applicable to 7 0 and later releases In some scenarios there may be two linear tracks or roads for mobili...

Page 159: ...hannel Width 20 MHz DCA Minimum Energy Limit 95 dBm Channel Energy Levels Minimum unknown Average unknown Maximum unknown Channel Dwell Times Minimum 0 days 17 h 02 m 05 s Average 0 days 17 h 46 m 07 s Maximum 0 days 18 h 28 m 58 s 802 11a 5 GHz Auto RF Channel List More or q uit Allowed Channel List 36 40 44 48 52 56 60 64 116 140 Unused Channel List 100 104 108 112 120 124 128 132 136 DCA Outdoo...

Page 160: ... sure you want to continue y N y Failed to delete channel Reason Channel 116 is configured for one of the Serial Backhaul RAPs Disable mesh backhaul dca channels or configure a different channel for Serial Backhaul RAPs Controller config advanced 802 11a channel delete 132 802 11a 5 GHz Auto RF Allowed Channel List 36 40 44 48 52 56 60 64 116 132 140 DCA channels for Serial Backhaul Mesh APs is en...

Page 161: ...inutes Backhaul with client access status enabled Background Scanning State enabled Backhaul Amsdu State disabled Mesh Security Security Mode PSK External Auth enabled Radius Server 1 209 165 200 240 Use MAC Filter in External AAA server disabled Force External Authentication disabled Mesh Alarm Criteria Max Hop Count 4 Recommended Max Children for MAP 10 Recommended Max Children for RAP 20 Low Li...

Page 162: ...after change 0 0 Interference before after change 0 0 Radar signals have been detected on channel 132 by 802 11a radio with MAC 00 1e bd 19 7b 00 and slot 2 For every serial backhaul AP channels on downlink and uplink radios should always be noninterfering for example if the uplink is channel 104 the 100 104 and 108 channels cannot be assigned for a downlink radio on that AP An alternate adjacent ...

Page 163: ...roller GUI follow these steps to specify the channels that the dynamic channel assignment DCA algorithm considers when selecting the channels to be used for RRM scanning This functionality is helpful when you know that the clients do not support certain channels because they are legacy devices or they have certain regulatory restrictions The steps outlined in this section are only relevant to mesh...

Page 164: ... assign better reuse patterns to access points that carry a heavier traffic load The default value is deselected Step 8 Select the Avoid Non 802 11a 802 11b Noise check box to cause the controller s RRM algorithms to consider noise non 802 11 traffic in the channel when assigning channels to lightweight access points or deselect it to disable this feature For example RRM may have access points avo...

Page 165: ...e verify that these channels are included in the DCA channel list To include these channels in the channel list select the Extended UNII 2 Channels check box Note Step 12 If you are using AP1500s in your network you must set the 4 9 GHz channels in the 802 11a band on which they are to operate The 4 9 GHz band is for public safety client access traffic only To choose a 4 9 GHz channel select its c...

Page 166: ...or 2 4 GHz This feature is available only for AP1522 two radios This feature should be used only after exploring the 5 GHz backhaul option Caution We recommend that you use 5 GHz as the first option and use 2 4 GHz only if the 5 GHz option does not work Changing the Backhaul from 5 GHz to 2 4 GHz Caution When you specify only the RAP name as an argument to the command the whole mesh sector changes...

Page 167: ...show mesh backhaul AP_name For a 5 GHz backhaul dynamic frequency selection DFS occurs only on 5 GHz and not on 2 4 GHz The mechanism which differs for RAP and MAP is called a coordinated change mechanism When 5 GHz is converted to client access from the backhaul or 2 4 GHz is being used as backhaul DFS works similar to how it works for a local mode AP DFS is detected on a 5 GHz client access and ...

Page 168: ...3 Ethernet VLAN Tagging Ethernet Port Notes Ethernet VLAN tagging allows Ethernet ports to be configured as normal access or trunk in both indoor and outdoor implementations Cisco Mesh Access Points Design and Deployment Guide Release 7 3 152 OL 27593 01 Connecting the Cisco 1500 Series Mesh Access Points to the Network Configuring Ethernet VLAN Tagging ...

Page 169: ...rnet VLAN tagging operates on Ethernet ports that are not used as backhauls Ethernet VLAN Tagging Guidelines Follow these guidelines for Ethernet tagging For security reasons the Ethernet port on a mesh access point RAP and MAP is disabled by default It is enabled by configuring Ethernet bridging on the mesh access point port Ethernet bridging must be enabled on all the mesh access points in the m...

Page 170: ... in 1 PoE out and 3 fiber Up to 16 VLANs are supported on each sector The cumulative number of VLANs supported by a RAP s children MAP cannot exceed 16 The switch port connected to the RAP must be a trunk The trunk port on the switch and the RAP trunk port must match The RAP must always connect to the native VLAN ID 1 on a switch The RAP s primary Ethernet interface is by default the native VLAN o...

Page 171: ... its uplink mesh access points might be able to support it in the case of roaming or a CAPWAP reconnect Enabling Ethernet VLAN Tagging GUI You must enable Ethernet bridging before you can configure VLAN tagging To enable VLAN tagging on a RAP or MAP using the GUI follow these steps Step 1 After enabling Ethernet bridging choose Wireless All APs Step 2 Click the AP name link of the mesh access poin...

Page 172: ...s Configuring Ethernet VLAN Tagging CLI To configure a MAP access port enter this command config ap ethernet 1 mode access enable AP1500 MAP 50 where AP1500 MAP is the variable AP_name and 50 is the variable access_vlan ID To configure a RAP or MAP trunk port enter this command config ap ethernet 0 mode trunk enable AP1500 MAP 60 where AP1500 MAP is the variable AP_name and 60 is the variable nati...

Page 173: ...is used for controller connectivity Ethernet interface for wired client connectivity and other radio interface for wireless client connectivity dot11radio 1 5 GHz can be used to connect to a controller using the mesh infrastructure and Ethernet interface for wired clients dot11radio 0 2 4 GHz can be used for wireless client connectivity Depending on the requirement dot11radio 1 or dot11radio 0 can...

Page 174: ... to as Cisco 3200 which are configured as WGBs can associate with a mesh access point See the Cisco Workgroup Bridges section in Cisco Wireless LAN Controller Configuration Guide for configuration steps at http www cisco com en US products ps6366 products_installation_and_configuration_ guides_list html The supported WGB modes and capacities are as follows The autonomous access points configured a...

Page 175: ... with only one of these encryptions either WPA1 or WPA2 Figure 65 WPA Security Settings for a WGB Figure 66 WPA 2 Security Settings for a WGB Cisco Mesh Access Points Design and Deployment Guide Release 7 3 OL 27593 01 159 Connecting the Cisco 1500 Series Mesh Access Points to the Network Workgroup Bridge Interoperability with Mesh Infrastructure ...

Page 176: ...entified as a WGB far right Figure 67 Clients are Identified as a WGB Step 4 Click on the MAC address of the client to view configuration details For a wireless client the page seen in Figure 68 Monitor Clients Detail Page Wireless WGB Client on page 161 appears Cisco Mesh Access Points Design and Deployment Guide Release 7 3 160 OL 27593 01 Connecting the Cisco 1500 Series Mesh Access Points to t...

Page 177: ...ireless WGB Client Figure 69 Monitor Clients Detail Page Wired WGB Client Guidelines for Configuration Follow these guidelines when you configure Cisco Mesh Access Points Design and Deployment Guide Release 7 3 OL 27593 01 161 Connecting the Cisco 1500 Series Mesh Access Points to the Network Workgroup Bridge Interoperability with Mesh Infrastructure ...

Page 178: ...port for wireless clients All Layer 2 security types are supported for the WLANs SSIDs for wireless client association in WGB This feature does not depend on the AP platform On the controller side both mesh and nonmesh APs are supported There is a limitation of 20 clients in the WGB The 20 client limitation includes both wired and wireless clients If the WGB is talking to autonomous access points ...

Page 179: ... 1 WGB1 config subif exit WGB1 config interface Dot11Radio0 51 WGB1 config subif encapsulation dot1q 51 native WGB1 config subif bridge group 1 WGB1 config subif exit WGB1 config dot11 ssid WGBTEST WGB1 config ssid VLAN 51 WGB1 config ssid authentication open WGB1 config ssid infrastructiure ssid WGB1 config ssid exit WGB1 config interface Dot11Radio1 WGB1 config if ssid WGBTEST WGB1 config if sta...

Page 180: ... can be verified by entering the show dot11 associations client command in autonomous AP WGB show dot11 associations client 802 11 Client Stations on Dot11Radio1 SSID WGBTEST State Parent Name Device IP Address MAC Address Assoc RAPSB LWAPP Parent 209 165 200 225 0024 130f 920e Cisco Mesh Access Points Design and Deployment Guide Release 7 3 164 OL 27593 01 Connecting the Cisco 1500 Series Mesh Ac...

Page 181: ... client are shown as the WGB client Figure 71 Updated WGB Clients Figure 72 Updated WGB Clients Figure 73 Updated WGB Clients Cisco Mesh Access Points Design and Deployment Guide Release 7 3 OL 27593 01 165 Connecting the Cisco 1500 Series Mesh Access Points to the Network Workgroup Bridge Interoperability with Mesh Infrastructure ...

Page 182: ...self using the following command ap dot11 dot11Radio 0 linktest target client mac address Start linktest to 0040 96b8 d462 100 512 byte packets ap Retries SNR Quality Strength dBm Time msec POOR 4 lost Out In Out In Out In 35 Tot 34 3 48 83 37 Avg 22 Sent 100 5 Max 10 10 61 78 34 Max 112 Lost to Tgt 4 3 15 87 40 Min 0 Lost to Src 4 Rates Src Tgt 24Mb 0 5 36Mb 25 0 48Mb 73 0 54Mb 2 91 Linktest Done...

Page 183: ... Auth WLAN Guest Lan Status AP Name MAC Address No 29 N A Yes 1 Associated R14 00 00 24 ca a9 b4 No 29 802 11a Yes 1 Associated R14 00 24 c4 a0 61 3a No 29 802 11a Yes 1 Associated R14 00 24 c4 a0 61 f4 No 29 802 11a Yes 1 Associated R14 00 24 c4 a0 61 f8 No 29 802 11a Yes 1 Associated R14 00 24 c4 a0 62 0a No 29 802 11a Yes 1 Associated R14 00 24 c4 a0 62 42 No 29 802 11a Yes 1 Associated R14 00 ...

Page 184: ...client immediately after association The access point list contains the channels BSSIDs of neighbor access points that support the client s current SSID s and time elapsed since disassociation Enhanced neighbor list Focuses on improving a Cisco CX v4 client s roam experience and network edge performance especially when servicing voice applications The access point provides its associated client in...

Page 185: ...umber of channels that can be configured is restricted only by the number of channels that a radio can support When executed the WGB scans only this limited channel set This limited channel feature also affects the known channel list that the WGB receives from the access point to which it is currently associated Channels are added to the known channel list only if they are also part of the limited...

Page 186: ...remember that this command will remove all wired and wireless clients associated in a WGB and make them associate again 5 Check the show dot11 association command output and confirm that the WGB is associated with the controller 6 Ensure that the WGB has not exceeded its 20 client limitation In a normal scenario if the show bridge and show dot11 association command outputs are as expected wireless...

Page 187: ...points prioritize user traffic based on classification and therefore all user traffic is treated on a best effort basis Resources available to users of the mesh vary according to the location within the mesh and a configuration that provides a bandwidth limitation in one point of the network can result in an oversubscription in other parts of the network Similarly limiting clients on their percent...

Page 188: ...LAN over the backhaul is the same as the encapsulation of CAPWAP data There are two encapsulations between the controller and the RAP The first is for CAPWAP control and the second is for CAPWAP data In the control instance CAPWAP is used as a container for control information and directives In the instance of CAPWAP data the entire packet including the Ethernet and IP headers is sent in the CAPWA...

Page 189: ...used exclusively for CAPWAP control traffic and voice and has been reworked from the standard 802 11e parameters for CWmin CWmax and so on to provide more robust transmission but higher latencies The 802 11e parameters for CWmin CWmax and so on for the gold queue have been reworked to provide lower latency at the expense of slightly higher error rate and aggressiveness The purpose of these changes...

Page 190: ...ers including 0 The platinum backhaul queue is reserved for CAPWAP control traffic IP control traffic and voice packets DHCP DNS and ARP requests are also transmitted at the platinum QoS level The mesh software inspects each frame to determine whether it is a CAPWAP control or IP control frame in order to protect the platinum queue from use by non CAPWAP applications Note For a MAP to the client p...

Page 191: ...the incoming frame has as its value a priority indicating the gold priority but the WLAN is configured for the silver priority the minimum priority of silver is used to determine the DSCP value Table 37 DSCP to Backhaul Queue Mapping Packet Types Backhaul Queue 802 11e UP DSCP Value Lowest priority packets if any Bronze 1 2 2 4 6 8 to 23 Video packets Gold 4 5 26 32 to 34 CAPWAP control AWPP DHCP ...

Page 192: ...AN Packets received from a station on a LAN are not modified in any way There is no override value for the LAN priority Therefore the LAN must be properly secured in bridging mode The only protection offered to the mesh backhaul is that non CAPWAP control frames that map to the platinum queue are demoted to the gold queue Packets are transmitted to the LAN precisely as they are received on the Eth...

Page 193: ...be disabled Enable admission control ACM for CCXv4 or v5 clients that have WMM enabled Otherwise bandwidth based CAC does not operate properly Set the maximum RF bandwidth to 50 percent Set the reserved roaming bandwidth to 6 percent Enable traffic stream metrics On the 802 11a n or 802 11b g n EDCA parameters page you should do the following Set the EDCA profile for the interface as voice optimiz...

Page 194: ...n ideal environment Table 39 Calls Possible with 1550 Series in 802 11a n 802 11b g n Radios 802 11b g n Backhaul Radio 40 MHz 802 11b g n Backhaul Radio 20 MHz 802 11a n Radio 40 MHz 802 11a n Radio 20 MHz No of Calls 25 20 20 35 20 RAP 20 15 20 10 MAP1 First Hop 15 10 15 8 MAP2 Second Hop 25 Traffic was bidirectional 64K voice flows VoCoder type G 711 PER 1 Network setup was daisy chained with n...

Page 195: ...ork Example To view the total number of voice calls and the bandwidth used for voice calls on each RAP enter this command show mesh cac summary Information similar to the following appears AP Name Slot Radio BW Used Max Calls SB_RAP1 0 11b g 0 23437 0 1 11a 0 23437 2 Cisco Mesh Access Points Design and Deployment Guide Release 7 3 OL 27593 01 179 Connecting the Cisco 1500 Series Mesh Access Points...

Page 196: ...ote When the radio type is the same the backhaul bandwidth utilization bw used max at each hop is identical For example mesh access points map1 map2 map3 and rap1 are all on the same radio backhaul 802 11a and are using the same bandwidth 3048 All of the calls are in the same interference domain A call placed anywhere in that domain affects the others Note To view the mesh tree topology for the ne...

Page 197: ...For example for a call that initiates at map2 show mesh cac call path SB_MAP2 and terminates at rap1 by way of map1 one call is added to the map2 802 11b g and 802 11a radio calls column one call to the map1 802 11a backhaul radio calls column and one call to the rap1 802 11a backhaul radio calls column Note To view the mesh tree topology of the network the voice calls that are rejected at the mes...

Page 198: ...ic only CAPWAP multicast traffic is governed by a different mechanism The three mesh multicast modes are as follows Regular mode Data is multicast across the entire mesh network and all its segments by bridging enabled RAP and MAP In only mode Multicast packets received from the Ethernet by a MAP are forwarded to the RAP s Ethernet network No additional forwarding occurs which ensures that non CAP...

Page 199: ...ulticast for mesh networks cannot be enabled using the controller GUI Note IGMP Snooping IGMP snooping delivers improved RF usage through selective multicast forwarding and optimizes packet forwarding in voice and video applications A mesh access point transmits multicast packets only if a client is associated with the mesh access point that is subscribed to the multicast group So when IGMP snoopi...

Page 200: ...sco supported normal APs from the 5 2 release and later releases and extended the support for mesh APs as well from the 7 0 release Graceful fallback to MIC if APs are unable to join the controller with LSC certificates Local APs try to join a controller with an LSC for the number of times that are configured on the controller the default value is 3 After these trials the AP deletes the LSC and tr...

Page 201: ...issuer vendor prfMaP1500LlEAuth93 command You must enter the config mesh lsc enable disable command to enable or disable an LSC for mesh APs This command will cause all the mesh APs to reboot An LSC on mesh is open for very specific Oil and Gas customers with the 7 0 release Initially it is a hidden feature The config mesh lsc enable disable is a hidden command Also the config local auth eap profi...

Page 202: ...ntication Certificate from the Certificate Template drop down list e Enter a valid name email company department city state and country region Remember it in case you want the cap method to check the username against its database of user credentials The e mail is not used Note f Enable Mark keys as exportable g Click Submit h Install the certificate on your laptop Step 6 Convert the device certifi...

Page 203: ...er Step 2 Enter the following command config local auth eap profile cert issuer vendor prfMaP1500LlEAuth93 Step 3 Turn on the feature by entering the following command config mesh lsc enable disable Cisco Mesh Access Points Design and Deployment Guide Release 7 3 OL 27593 01 187 Connecting the Cisco 1500 Series Mesh Access Points to the Network Locally Significant Certificates for Mesh APs ...

Page 204: ... and join the controller using the LSC certificate Figure 80 Local Significant Certificate Page Figure 81 AP Policy Configuration Cisco Mesh Access Points Design and Deployment Guide Release 7 3 188 OL 27593 01 Connecting the Cisco 1500 Series Mesh Access Points to the Network Locally Significant Certificates for Mesh APs ...

Page 205: ...troller s CA certificate database as follows add Queries the configured CA server for a CA certificate using the SSCEP getca operation and gets into the WLC and installs it permanently into the WLC database If installed this CA certificate is used to validate the incoming LSC device certificate from the AP delete Deletes the LSC CA certificate from the WLC database config certificate lsc subject p...

Page 206: ...p policy lsc command is in the disabled state and the APs are not allowed to join the controller using the LSC config auth list ap policy mic enable disable After getting the MIC an AP tries to join the controller Before the AP tries to join the controller you must mandatorily enter this command on the controller console By default the config auth list ap policy mic command is in the enabled state...

Page 207: ...authentication Enter the following command on the WLC Cisco Controller config mesh security rad mac filter enable or Check only the external MAC filter authorization on the GUI page and follow these guidelines Do not add the MAC address of the RAP MAP to the controller MAC filter list Configure the external radius server details on the WLC Enter the config macfilter mac delimiter colon command con...

Page 208: ... be configured to use vendor as the cert issuer MAPs cannot move from an LSC to an MIC when they fall back to a backup controller The config mesh lsc enable disable command is required to enable or disable an LSC for mesh APs This command causes all the mesh APs to reboot Cisco Mesh Access Points Design and Deployment Guide Release 7 3 192 OL 27593 01 Connecting the Cisco 1500 Series Mesh Access P...

Page 209: ...ommands enter this command Cisco Controller show mesh env Show mesh environment backhaul Show mesh AP backhaul info neigh Show AP neigh list path Show AP path astools show mesh astools list stats Show AP stats secbh stats Show Mesh AP secondary backhaul stats per stats Show AP Neighbor Packet Error Rate stats queue stats Show AP local queue stats security stats Show AP security stats ap Show mesh ...

Page 210: ...ontroller show mesh env SB_RAP1 AP Name SB_RAP1 AP Model AIR LAP1522AG A K9 AP Role RootAP Temperature 39 C 102 F Heater OFF Backhaul GigabitEthernet0 GigabitEthernet0 Status UP Duplex FULL Speed 100 Rx Unicast Packets 988175 Rx Non Unicast Packets 8563 Tx Unicast Packets 106420 Tx Non Unicast Packets 17122 GigabitEthernet1 Status DOWN POE Out OFF Battery N A Note show mesh ap summary Revised to s...

Page 211: ...y the RF connectivity by seeing the SNR values for every link Note show mesh ap tree Displays mesh access points within a tree structure hierarchy Cisco Controller show mesh ap tree R1 0 y1 R2 1 y1 R6 2 y1 H2 1 default Number of Mesh APs 4 Number of RAP 1 Number of MAP 3 Viewing Mesh Access Point Details To view a mesh access point s configuration enter these commands show ap config general Cisco_...

Page 212: ...lots Displays slot information for mesh access points Cisco Controller show ap slots Number of APs 3 AP Name Slots AP Model Slot0 Slot1 Slot2 Slot3 R1 2 LAP1520 802 11A 802 11BG H1 3 AIR LAP1521AG A K9 802 11BG 802 11A 802 11A H2 4 AIR LAP1521AG A K9 802 11BG 802 11A 802 11A 802 11BG Viewing Global Mesh Parameter Settings Use this command to obtain information on global mesh settings show mesh con...

Page 213: ...etails Use this command to view DFS details show mesh dfs history Displays a history of radar detections by channels and resulting outages Cisco Controller show mesh dfs history ap1520 show mesh dfs history Channel 100 detects radar and is unusable Time Elapsed 18 day s 22 hour s 10 minute s 24 second s Channel is set to 136 Time Elapsed 18 day s 22 hour s 10 minute s 24 second s Channel 136 detec...

Page 214: ...ssociations and reauthentications for the specified access point and its child Cisco Controller show mesh security stats ap417 AP MAC 00 0B 85 5F FA F0 Packet Error Statistics Tx Packets 14 Rx Packets 19 Rx Error Packets 0 Parent Side Statistics Unknown Association Requests 0 Invalid Association Requests 0 Unknown Re Authentication Requests 0 Invalid Re Authentication Requests 0 Unknown Re Associa...

Page 215: ...over the mouse over the blue drop down arrow for the desired mesh access point and choose Statistics The All APs AP Name Statistics page for the selected mesh access point appears This page shows the role of the mesh access point in the mesh network the name of the bridge group to which the mesh access point belongs the backhaul interface on which the access point operates and the number of the ph...

Page 216: ...Requests The number of responses sent to the neighbor mesh access points Tx Neighbor Responses The number of times a mesh access point child moves to another parent Parent Changes Count The number of neighbor timeouts Neighbor Timeouts Count The average and peak number of packets waiting in the gold video queue during the defined statistics time interval Gold Queue Queue Stats The average and peak...

Page 217: ...t and its parent Authentication Requests Successful The number of failed reassociation requests between the selected mesh access point and its parent Reassociation Request Failures The number of reassociation request timeouts between the selected mesh access point and its parent Reassociation Request Timeouts The number of successful reassociation requests between the selected mesh access point an...

Page 218: ... number of invalid reassociation requests received by the parent mesh access point from a child This state may occur when a child is a valid neighbor but is not in a proper state for reassociation Invalid Reassociation Requests Viewing Mesh Statistics for an Mesh Access Point CLI Use these commands to view mesh statistics for a specific mesh access point using the controller CLI To view packet err...

Page 219: ...a Mesh Access Point This section describes how to use the controller GUI or CLI to view neighbor statistics for a selected mesh access point It also describes how to run a link test between the selected mesh access point and its parent Viewing Neighbor Statistics for a Mesh Access Point GUI Step 1 Choose Wireless Access Points All APs to open the All APs page Step 2 To view neighbor statistics for...

Page 220: ...show mesh neigh detail summary AP_Name Information similar to the following appears when you request a summary display AP Name Radio Mac Channel Snr Up Snr Down Link Snr Flags State mesh 45 rap1 165 15 18 16 0x86b UPDATED NEIGH PARENT BEACON 00 0B 85 80 ED D0 149 5 6 5 0x1a60 NEED UPDATE BEACON DEFAULT 00 17 94 FE C3 5F 149 7 0 0 0x860 BEACON To view the channel and signal to noise ratio SNR detai...

Page 221: ...ts transmitted successfully 0 Total Packets retried for transmission 0 Packet error rate percentage 1 number of successfully transmitted packets number of total packets transmitted Note Cisco Mesh Access Points Design and Deployment Guide Release 7 3 OL 27593 01 205 Checking the Health of the Network Viewing the Neighbor Statistics for a Mesh Access Point CLI ...

Page 222: ...Cisco Mesh Access Points Design and Deployment Guide Release 7 3 206 OL 27593 01 Checking the Health of the Network Viewing the Neighbor Statistics for a Mesh Access Point CLI ...

Page 223: ...onnections Step 1 Connect the mesh access point that you want to be the RAP to the controller Step 2 Deploy the radios MAP at the desired locations Step 3 On the controller CLI enter the show mesh ap summary command to see all MAPs and RAPs on the controller Figure 83 Show Mesh AP Summary Page Cisco Mesh Access Points Design and Deployment Guide Release 7 3 OL 27593 01 207 ...

Page 224: ...onfiguring the controller name the mesh access point reboots Step 6 Click Wireless AP Name to check the mesh access point s primary controller on the AP details page Debug Commands The following two commands are very helpful to see the messages being exchanged between mesh access points and the controller Cisco Controller debug capwap events enable Cisco Controller debug disable all You can use th...

Page 225: ... and password for console access are configured from the controller You can use the following commands to push the username password combination to the specified mesh access point or all access points Cisco Controller config ap username cisco password cisco all Configures the Username Password for all connected APs Cisco AP Enter the name of the Cisco AP Cisco Controller config ap username cisco p...

Page 226: ...haracters is truncated The modem commands are only operational on mesh APs that have devices connected to the UART port originally intended for the cable modem If the commands are used on a mesh AP that does not have a cable modem or any other device connected to the UART the commands are accepted however but they do not produce any returned output No errors are explicitly flagged Configuration En...

Page 227: ...ers any text beyond that is truncated and the response irrespective of the timeout value and is immediately displayed on the AP console Figure 85 Cable Modem Console Access Command Figure 86 Cable Modem Console Access Command Cisco Mesh Access Points Design and Deployment Guide Release 7 3 OL 27593 01 211 Troubleshooting Cable Modem Serial Port Access From an AP ...

Page 228: ... Therefore they cannot be sent to the modem Caution Mesh Access Point CLI Commands You can enter these commands directly on the mesh access point using the AP console port or you can use the remote debug feature from the controller Cisco Mesh Access Points Design and Deployment Guide Release 7 3 212 OL 27593 01 Troubleshooting Mesh Access Point CLI Commands ...

Page 229: ...esh forwarding table Debugs the forwarding table containing bridge groups debugs mesh forwarding packet bridge group Debugs the bridge group configuration Defining Mesh Access Point Roles By default the AP1500s are shipped with a radio role set to MAP Therefore you must change the radio role on a mesh access point for it to function as RAP You can change this configuration on the mesh access point...

Page 230: ... summarized as follows A MAP always sets the Ethernet port as the primary backhaul if it is UP otherwise it is the 802 11a radio this feature gives the network administrator the ability to configure it as a RAP the first time and recover it in house For fast convergence of the network we recommend that you do not connect any Ethernet device to the MAP for its initial joining to the mesh network A ...

Page 231: ...ons sent out by stranded mesh access point Latch the 802 11b radio to a channel 1 6 11 Enable debugs Broadcast the standard debug messages as distress beacons Send Latest Crash info file Receive beacons neighboring mesh access point with remote debugging enabled Deployed mesh access points constantly look for stranded mesh access points Periodically mesh access points send a list of stranded mesh ...

Page 232: ...om the channel This period is called the channel move time which is defined as the time for the system to clear the channel and is measured from the end of the radar burst to the end of the final transmission on the channel 5 The RAP enters the quiet mode In the quiet mode the RAP stops data transmissions Beacons are still generated and probe responses are still delivered The quiet mode exists unt...

Page 233: ...children down the sector Each mesh access point sends the channel change frames once every 100 msecs for a total of five times 8 Each mesh access point tunes to the new channel and enters into the silent mode During the silent mode only the receiver is ON There is no packet transmission An AP keeps scanning the new channel for any radar presence for 60 seconds This process is called the channel av...

Page 234: ...04 108 112 116 120 124 128 132 136 140 To identify channels available for mesh on the AP console or use remote debug from the controller enter the following command ap1520 rap show mesh channels HW Dot11Radio1 Channels 100 104 108 112 116 120 124 128 132 136 140 An asterisk next to a channel indicates that radar has been seen on the channel To invoke remote debug enter the following commands Cisco...

Page 235: ... Uniform Spreading Required Yes Current Frequency 5540 MHz Channel 108 DFS enabled Allowed Frequencies 5500 100 5520 104 5540 108 5560 112 5580 116 560 0 120 5620 124 5640 128 5660 132 5680 136 5700 140 May only be selected by Dynamic Frequency Selection DFS Listen Frequencies 5180 36 5200 40 5220 44 5240 48 5260 52 5280 56 5300 6 0 5320 64 5500 100 5520 104 5540 108 5560 112 5580 116 5660 132 568...

Page 236: ...annels for noise and interference adding additional mesh access points in the transmission path moving the mesh access points to different sectors or adding additional mesh access points Bridge Group Name Misconfiguration A mesh access point can be wrongly provisioned with a bridgegroupname and placed in a group other than it was intended Depending on the network design this mesh access point migh...

Page 237: ...passes any data traffic through Do not confuse an unassigned BGN null value with DEFAULT which is a mode that the access point uses to connect when it cannot find its own BGN Note To check the current state of a mesh access point s BGN enter the following command Cisco Controller show mesh path Map3 5f ff 60 00 0B 85 5F FA 60 state UPDATED NEIGH PARENT DEFAULT 106B snrUp 48 snrDown 48 linkSnr 49 0...

Page 238: ...ibility of putting a MAP on a wrong network such as a subnet or VLAN This mistake could prevent a mesh access point from successfully resolving the IP gateway and failing to discover a WLAN controller In such a scenario the mesh access point falls back to its DHCP mechanism and automatically attempts to find a DHCP server and obtains an IP address from it This fallback mechanism prevents a mesh no...

Page 239: ...hanges its parent node and re attempts DHCP discovery Additionally the software exclusion lists notes the parent node through which it was unable to obtain the correct IP address Identifying the Node Exclusion Algorithm Depending on the mesh network design a node might find another node best according to its routing metric even recursively true yet it is unable to provide the node with a connectio...

Page 240: ...rily or requires a reboot The WLAN controller is either not up and running yet has failed temporarily or requires a reboot The Ethernet cable on the RAP was accidentally disconnected Such nonhoneypots must be credited properly from their serving times so that a node can come back to them as soon as possible 4 Honeypot expiration Upon expiration an exclusion list node must be removed from the exclu...

Page 241: ...y With the Cisco Mesh solution the per hop latency is less than 10 msecs and the typical latency numbers per hop range from 1 to 3 msecs Overall jitter is also less than 3 msecs Throughput depends on the type of traffic being passed through the network User Datagram Protocol UDP or Transmission Control Protocol TCP UDP sends a packet over Ethernet with a source and destination address and a UDP pr...

Page 242: ... is longer than 1394 bytes is also fragmented by the controller which results in up to a 15 percent throughput decrease Figure 90 CAPWAP Tunneled Packets Cisco Mesh Access Points Design and Deployment Guide Release 7 3 226 OL 27593 01 Troubleshooting Throughput Analysis ...

Page 243: ...ucture page 227 Adding Mesh Access Points to Maps with Cisco Prime Infrastructure page 230 Monitoring Mesh Access Points Using Google Earth page 232 Adding Indoor Mesh Access Points to Cisco Prime Infrastructure page 236 Managing Mesh Access Points with Cisco Prime Infrastructure page 237 Monitoring Workgroup Bridges page 250 Viewing AP Last Reboot Reason page 257 AddingCampusMaps OutdoorAreas and...

Page 244: ... in feet The horizontal and vertical span should be larger than any building or floor plan to be added to the campus Note Step 9 Click OK to add this campus map to the Prime Infrastructure database The Prime Infrastructure displays the Maps page which lists maps in the database map types and campus status Adding Outdoor Areas To add an outdoor area to a campus map follow these steps You can add ou...

Page 245: ...age Note Step 6 Click Save Adding a Building to a Campus Map You can add buildings to the Cisco Prime Infrastructure database regardless of whether you have added campus maps to the database This section explains how to add a building to a campus map or a standalone building one that is not part of a campus to the Prime Infrastructure database To add a building to a campus map in the Prime Infrast...

Page 246: ...s to the Cisco Prime Infrastructure database you can position mesh access point icons on the maps to show where they are installed in the buildings To add mesh access points to floor plan and outdoor area maps follow these steps Step 1 Click the desired floor plan or outdoor area map in the Coverage Areas component of the General tab Cisco Prime Infrastructure displays the associated coverage area...

Page 247: ...as the correct antenna orientation Accurate mesh access point positioning is critical when you use the maps to find coverage holes and rogue access points See this location for further information about the antenna elevation and azimuth patterns http www cisco com en US products hw wireless ps469 tsd_products_support_series_home html Step 7 Click Save to store the mesh access point locations and o...

Page 248: ...le Earth in Cisco Prime Infrastructure Cisco Prime Infrastructure supports both Google Earth Map Plus or Pro and displays when present mesh access points and their links To launch Google Earth maps follow these steps Step 1 Launch Google Earth plus or pro and add a new folder Step 2 Create a mesh access points placemark on Google Earth plus or pro You must use the exact name of the mesh access poi...

Page 249: ...cture Viewing Google Earth Maps You can view campus maps mesh access point and link information using Google maps To view Google Earth maps follow these steps Step 1 Log on to Cisco Prime Infrastructure Step 2 Choose Monitor Google Earth Maps The Google Earth Maps page displays all folders and the number of mesh access points included within each folder Step 3 Click Launch for the map you want to ...

Page 250: ... from Google s website Figure 94 Google Earth Map Page Note Step 4 Click Launch for the map you want to view Google Earth opens in a separate window and displays the location and its mesh access points Cisco Mesh Access Points Design and Deployment Guide Release 7 3 234 OL 27593 01 Managing Mesh Access Points with Cisco Prime Infrastructure Viewing Google Earth Maps ...

Page 251: ...ver You can download Google Earth from Google s website Figure 95 Google Earth Map With Mesh Access Point Details Figure 96 Google Earth Map With Mesh Link Details Note Cisco Mesh Access Points Design and Deployment Guide Release 7 3 OL 27593 01 235 Managing Mesh Access Points with Cisco Prime Infrastructure Viewing Google Earth Maps ...

Page 252: ... task can become cumbersome particularly if the volume of the access points being deployed is large and if the access points are already deployed in the local mode for a traditional nonmesh wireless coverage For local mode indoor access points prior to a mesh installation you must first connect all indoor mesh access points to the controller and change the mode to bridge mode To do so connect all ...

Page 253: ...he following elements from a mesh network map in the Cisco Prime Infrastructure Mesh Link Statistics Mesh Access Points Mesh Access Point Neighbors Details on how this information is accessed and the information displayed for each of these items is detailed in the following sections Monitoring Mesh Link Statistics Using Maps You can view the SNR for a specific mesh network link view the number of ...

Page 254: ...s the value used to determine the least cost path to the root mesh access point This value is the ease to get to the rooftop access point and accounts for the number of hops The lower the ease value the less likely the path is used The Unadjusted Link Metric Plots the least cost path to get to the root access point unadjusted by the number of hops The higher the value for the unadjusted link indic...

Page 255: ...view parent and neighbors details name MAC address packet error rate and link details for the mesh access point You can also initiate link tests from this panel d Choose the Mesh Statistics tab to view details on the bridging queue and security statistics for the mesh access point For more details on mesh statistics see the Viewing Mesh Statistics for a Mesh Access Point section Monitoring Mesh Ac...

Page 256: ...nitor Access Points A listing of access points appears You can also use the New Search button to display the mesh access point summary shown below With the New Search option you can further define the criteria of the access points that display Search criteria include AP Type AP Mode Radio Type and 802 11n Support Note Step 2 Click the AP Name link to display details for that mesh access point The ...

Page 257: ...enna Name Indicates whether the antenna is internal or external Antenna Type Indicates one of the following audit statuses Mismatch Config differences were found between Cisco Prime Infrastructure and controller during the last audit Identical No config differences were found during the last audit Not Available Audit status is unavailable Audit Status Indicates the name of the bridge group used to...

Page 258: ...utomatic or custom Tx Power Control Indicates the transmission power level Tx Power Level Indicates how long the access point has been up in days hours minutes and seconds Up Time Indicates the WLAN override profile names WLAN Override Names Indicates whether WLAN Override is enabled or disabled Each access point is limited to 16 WLAN profiles Each access point broadcasts all WLAN profiles unless ...

Page 259: ...Infrastructure map To display the panel click the arrow portion of the mesh access point label Note Summaries of the Bridging Queue and Security Statistics and their definitions are provided in the following tables Table 43 Bridging Mesh Statistics Description Parameter The role of the mesh access point Options are mesh access points MAPs and root access points RAPs Role The name of the bridge gro...

Page 260: ...ink to display a subpanel that enables you to configure details of what is reported how often the node hop value is updated and view a graphical representation of the report Node Hops Table 44 Queue Mesh Statistics Description Parameter The average and peak number of packets waiting in the silver best effort queue during the defined statistics time interval Packets dropped and queue size are also ...

Page 261: ...tween the selected mesh access point and its parent Association Request Timeouts Summarizes the total number of failed authentication requests that occur between the selected mesh access point and its parent Authentication Request Failures Summarizes the total number of successful authentication requests between the selected mesh access point and its parent mesh node Authentication Request Success...

Page 262: ...ul reassociation requests between the selected mesh access point and its parent Reassociation Request Success Summarizes the total number of reassociation request timeouts between the selected mesh access point and its parent Reassociation Request Timeouts Summarizes the total number of failed reauthentication requests between the selected mesh access point and its parent Reauthentication Request ...

Page 263: ...nu Step 4 Select the AP Mesh Info check box if it is not already checked The AP Mesh Info check box can be selected only if mesh access points are present on the map It must be checked to view the mesh hierarchy Note Step 5 Click the AP Mesh Info arrow to display the mesh parent child hierarchy Step 6 Click the plus sign next to a mesh access point to display its children All subordinate mesh acce...

Page 264: ...ues as well as what labels display for mesh links Mesh access points are filtered by the number of hops between them and their root access point To use mesh filtering follow these steps Step 1 To modify what label and color displays for a mesh link do the following In the Mesh Parent Child Hierarchical View select an option from the Link Label drop down list Options are None Link SNR and Packet Er...

Page 265: ... Selection Options Description Parameter Choose this setting if you want the map view to display root access points only Select only Root APs Description Parameter Choose this setting if you want the map view to display 1st hops only Select up to 1st hops Choose this setting if you want the map view to display 2nd hops only Select up to 2nd hops Choose this setting if you want the map view to disp...

Page 266: ... access point to root access point must be selected Note Monitoring Workgroup Bridges You can monitor workgroup bridge WGB clients separately Step 1 On the Cisco Prime Infrastructure GUI choose Monitor WGBs Figure 98 Monitor WGBs Cisco Mesh Access Points Design and Deployment Guide Release 7 3 250 OL 27593 01 Managing Mesh Access Points with Cisco Prime Infrastructure Monitoring Workgroup Bridges ...

Page 267: ...ght priority queue in the mesh backhaul based on DSCP dot1p values You need a special autonomous image on the autonomous access points being used as a WGB for interoperability with the Unified CAPWAP infrastructure This image will be merged with the next official autonomous release Note The WGB informs the WLC about the wired client VLAN information in an IAPP association message The WGB removes t...

Page 268: ... native VLAN on the WGB VLAN 184 But if you add one wired client in VLAN 184 and this VLAN client in the WGB belongs to a native VLAN you must define the same native VLAN on the switch Intersubnet mobility is supported with this feature for VLAN clients behind the WGB with a limitation that the dynamic interface for all VLANs of the WGB should be configured in all the controllers Interoperability ...

Page 269: ...d routing and bridging which the Auto AP code has retained from other higher end platforms You have to create dynamic interfaces 184 and 185 on the WLC for the above configuration to work The WGB updates the WLC about the wired client VLAN information in the IAPP association message The WLC treats the WGB client as a VLAN client and forwards the packet in the right VLAN interface based on the sour...

Page 270: ...0 184 forward 0017 59ff 47c2 6 18 0 Fa0 184 forward 0021 5504 07b5 0 6 0 ViO 184 forward 0021 1c7b 38e0 Bridge Group 185 0 10 0 Fa0 185 forward 0016 c75d b48f 0 9 0 Fa0 185 forward 001e 5831 c74a Cisco Mesh Access Points Design and Deployment Guide Release 7 3 254 OL 27593 01 Managing Mesh Access Points with Cisco Prime Infrastructure Multiple VLAN and QoS Support for WGB Wired Clients ...

Page 271: ...R14 00 24 c4 a0 61 f4 No 29 802 11a Yes 1 Associated R14 00 24 c4 a0 61 f8 No 29 802 11a Yes 1 Associated R14 00 24 c4 a0 62 0a No 29 802 11a Yes 1 Associated R14 00 24 c4 a0 62 42 No 29 802 11a Yes 1 Associated R14 00 24 c4 a0 71 d2 Cisco Controller show wgb detail 00 1e be 27 5f e2 Number of wired client s 5 Auth WLAN Mobility AP Name IP Address MAC Address No 2 Local c1240 Unknown 00 16 c7 5d b...

Page 272: ...tch to which the WGB is connected The switch port connected to the WGB should be Trunk Verify the client configuration and ensure that the client configuration is correct Check the show bridge command output in the autonomous AP and confirm that the AP is reading the client MAC address in the right interface Confirm that the subinterfaces that correspond to specific VLANs and different subinterfac...

Page 273: ...nfig Response was not received configController Configured or master controller found imageUpgrade Success Upgrade of image successful imageOpcodeInvalid Invalid image data opcode imageCheckSumInvalid Invalid image md 5 checksum imageDataTimeout Image data message timed out configFileInvalid Invalid config file imageDownloadError Process error during the image download rebootFromConsole Reboot com...

Page 274: ...Cisco Mesh Access Points Design and Deployment Guide Release 7 3 258 OL 27593 01 Managing Mesh Access Points with Cisco Prime Infrastructure Viewing AP Last Reboot Reason ...

Page 275: ...endations 92 Advisor 93 Licensing 94 Modes of Operation 90 ClientLink Technology 55 58 Related Commands 58 configuring ClientLink CLI 56 Controller Planning 58 D DOCSIS EuroDOCSIS 8 Dynamic Frequency Selection 25 E EPON SFP 11 F Federal Aviation Administration 23 Federal Communications Commission 23 Frequency Bands 24 Fresnel Zone 61 63 G Google Earth Map 232 Google Earth Maps 233 Viewing 233 H Ha...

Page 276: ...ferred Parent 68 69 Configuring 69 Selection Criteria 68 Pseudo MAC and Merging 91 R Range Calculator 50 AP1522 50 Range Calculator continued AP1552 50 RF prediction heat map 232 S Slot Bias 66 67 Disabling 67 Options 66 T Terminal Doppler Weather Radar 23 U Universal Access 48 Universal Client Access 119 Upgrade Controller Software 100 W Wireless Backhaul 47 Wireless Backhaul Data Rate 124 Wirele...

Reviews:

No comments

Related manuals for Aironet 1040 Series

3Com EtherLink 3C509B Quick Manual preview
EtherLink 3C509B
Brand: 3Com Pages: 8
3Com 3CRWB6096 Quick Start Manual preview
3CRWB6096
Brand: 3Com Pages: 8
Radwin Transportation FiberinMotion Deployment Manual preview
Transportation FiberinMotion
Brand: Radwin Pages: 122
Orban OPTIMOD 6300 Operating Manual preview
OPTIMOD 6300
Brand: Orban Pages: 255
Stephen STES2026 Configuration Manual Manual preview
STES2026
Brand: Stephen Pages: 102
Supero Supero SAS-826A User Manual preview
Supero SAS-826A
Brand: Supero Pages: 16
National Instruments FieldPoint cFP-RTD-122 Operating Instructions Manual preview
FieldPoint cFP-RTD-122
Brand: National Instruments Pages: 15
XNET INS2000 Install Manual preview
INS2000
Brand: XNET Pages: 17
ICP DAS USA PISO-725 Series Quick Start Manual preview
PISO-725 Series
Brand: ICP DAS USA Pages: 8
Lindsay Broadband LBON320AC Series Installation And Operation Manual preview
LBON320AC Series
Brand: Lindsay Broadband Pages: 4
LevelOne FSW-1641TX User Manual preview
FSW-1641TX
Brand: LevelOne Pages: 26
Navitar 1-62645 Dimensional Drawing preview
1-62645
Brand: Navitar Pages: 1
WiebeTech FCDKV4 User Manual preview
FCDKV4
Brand: WiebeTech Pages: 8
Atlantis Land A02-PCI-W54M Specification preview
A02-PCI-W54M
Brand: Atlantis Land Pages: 2
Sony Ericsson GC86 Quick Start Manual preview
GC86
Brand: Sony Ericsson Pages: 2
TP-Link VIGI Quick Start Manual preview
VIGI
Brand: TP-Link Pages: 2
Xilinx SelectIO 7 Series User Manual preview
SelectIO 7 Series
Brand: Xilinx Pages: 188
Xaoc Devices NIN Operator'S Manual preview
NIN
Brand: Xaoc Devices Pages: 4

Brands by name

Popular brands

Load more brands