販売物一覧
電子工作
機械系工作
燃焼実験
光学系工作
コンピュータ関係
イベントまとめ
リンク集
高エネYouTube
TwitterCisco 2500 Wireless LAN Controller セットアップ
Cisco社のワイヤレスLANコントローラー(WLC)をセットアップして、Wifi環境を整えてみます。
今回使用するのはAIR-CT2504-K9(Cisco 2500 Wireless LAN Controller)です。中古のものを調達しました。
この世代の製品は、サポートが終了していることもあり、ヤフオク等で安価に調達できるでしょう。
Cisco 2500 WLCはLANポートが4ポートあり、うち2ポートがPoEに対応しています。
そのため、APを2つ駆動できると思いきや、Link Aggregation(LAG)を有効にするとPoEが使用できないようです。
今回は、接続相手をL3スイッチではなく、NEC社のUNIVERGE IX2215とWLCを使用する、LAGを使用しない最低限の構成にしてみます。
この構成だと安価に業務用Wifiが構築できるでしょう。
なお、Cisco 5500シリーズのWLCであれば、マネジメントとAPへの接続インターフェースが別に設けられますが、こちらの2500ではマネジメントインターフェースがAPとの接続も兼ねるようです。
そのため、WebUIがあるセグメントと同じところにAPを配置することになります。
Cisco 2500 WLC のACアダプタ問題
AIR-CT2504-K9に適合するACアダプタは「ADP-80LB A」という型番の物です。
48V / 1670mA 出力で、コネクタが特殊です。
Cisco 2500 WLC 初回起動
適当なコンソールケーブルを接続して、WLCに電源を接続しましょう。
WLCNG Boot Loader Version 1.0.20 (Built on Jan 9 2014 at 19:02:44 by cisco)
Board Revision 0.0 (SN: PSZ212519X8, Type: AIR-CT2504-K9) (P)
Verifying boot loader integrity... OK.
OCTEON CN5230C-SCP pass 2.0, Core clock: 750 MHz, DDR clock: 330 MHz (660 Mhz data rate)
CPU Cores: 4
DRAM: 1024 MB
Flash: 32 MB
Clearing DRAM........ done
Network: octeth0', octeth1, octeth2, octeth3
' - Active interface
E - Environment MAC address override
CF Bus 0 (IDE): OK
IDE device 0:
- Model: 1GB CompactFlash Card Firm: CF B61FK Ser#: A131110556A1Wq1H1AYf
- Type: Hard Disk
- Capacity: 977.4 MB = 0.9 GB (2001888 x 512)
Press <ESC> now to access the Boot Menu...
Loading primary image (8.0.115.0)
100%
37799790 bytes read
Launching...
Launching images...
init started: BusyBox v1.6.0 (2010-05-13 17:50:10 EDT) multi-call binary
starting pid 688, tty '': '/etc/init.d/rcS'
Detecting Hardware ...
Installing ether-pow driver - 0x6008
starting pid 825, tty '/dev/ttyS0': '/usr/bin/gettyOrMwar'
Setting up ZVM
Exporting LD_LIBRARY_PATH
Decompressing...
Validating...... OK
Cryptographic library self-test....passed!
XML config selected
Validating XML configuration
octeon_device_init: found 1 DPs
/dev/fpga: No such device or address
readCPUConfigData: cardid 0x6060001
Cisco is a trademark of Cisco Systems, Inc.
Software Copyright Cisco Systems, Inc. All rights reserved.
Cisco AireOS Version 8.0.115.0
Firmware Version PIC 20.0
Initializing OS Services: ok
Initializing Serial Services: ok
Initializing Network Services: ok
Error (256) found in fsck check - attempt to repair.
Initializing Licensing Services: ok
License daemon start initialization.....
License daemon running.....
Starting Statistics Service: ok
Starting ARP Services: ok
Starting Trap Manager: ok
Starting Network Interface Management Services: ok
Starting System Services: ok
Starting FIPS Features: ok : Not enabled
Starting Fastpath Hardware Acceleration: ok
Starting Fastpath Console redirect : ok
Starting Fastpath DP Heartbeat : ok
Fastpath CPU0.00: Starting Fastpath Application. SDK-1.8.0, build 269. Flags-[DUTY CYCLE] : ok
Fastpath CPU0.00: Initializing last packet received queue. Num of cores(2)
Fastpath CPU0.00: Init MBUF size: 1856, Subsequent MBUF size: 2040
Fastpath CPU0.00: Core 0 Initialization: ok
Fastpath CPU0.00: Initializing Timer...
Fastpath CPU0.00: Initializing Timer...done.
Fastpath CPU0.00: Initializing Timer...
Fastpath CPU0.00: Initializing NBAR AGING Timer...done.
Fastpath CPU0.01: Core 1 Initialization: ok
Starting Switching Services: ok
Starting QoS Services: ok
Starting Policy Manager: ok
Starting Data Transport Link Layer: ok
Starting Access Control List Services: ok
Starting System Interfaces: ok
Starting Client Troubleshooting Service: ok
Starting Certificate Database: ok
Starting VPN Services: ok
Starting Management Frame Protection: ok
Starting DNS Services: ok
Starting Licensing Services: License Request Failed :User failed to accept EULA
ok
Starting Redundancy: ok
Starting LWAPP: ok
Starting CAPWAP: ok
Starting LOCP: ok
Starting Security Services: ok
Starting Policy Manager: ok
Starting Authentication Engine: ok
Starting Mobility Management: ok
Starting Capwap Ping Component: ok
Starting AVC Services: ok
Starting Virtual AP Services: ok
Starting AireWave Director: ok
Starting Network Time Services: ok
Starting Cisco Discovery Protocol: ok
Starting Broadcast Services: ok
Starting Logging Services: ok
Starting DHCP Server: ok
Starting IDS Signature Manager: ok
Starting RFID Tag Tracking: ok
Starting RF Profiles: ok
Starting Power Supply and Fan Status Monitoring Service: ok
Starting Mesh Services: ok
Starting TSM: ok
Starting CIDS Services: ok
Starting Ethernet-over-IP: ok
Starting DTLS server: enabled in CAPWAP
Starting CleanAir: ok
Starting WIPS: ok
Starting SSHPM LSC PROV LIST: ok
Starting RRC Services: ok
Starting SXP Services: ok
Starting Alarm Services: ok
Starting FMC HS: ok
Starting IPv6 Services: ok
Starting Config Sync Manager : ok
Starting Hotspot Services: ok
Starting Portal Server Services: ok
Starting mDNS Services: ok
Starting Management Services:
Web Server: CLI: Secure Web: Web Authentication Certificate not found (error). If you cannot access management interface via HTTPS please reconfigure Virtual Interface.
Enabling Controller Provisioning
Configuring management interface
Starting Internal DHCP server
dhcp pool 192.168.1.3(0xc0a80103) - 192.168.1.14(0xc0a8010e), network 192.168.1.0(0xc0a80100) netmask 255.255.255.240(0xfffffff0), default gateway 192.168.1.1
Enabling mgmt via wireless
Enabling Provisioning SSID
SSID: CiscoAirProvision, Admin Status: 1, Interface Name: management, 802.11 Auth: WPA2-PSK, Wi-Fi Protected Access : Enabled
(Cisco Controller)
Welcome to the Cisco Wizard Configuration Tool
Use the '-' character to backup
Would you like to terminate autoinstall? [yes]: 起動するとこのようにコンソールにログが流れます。
最初のオートインストールはyesにしても拒否れないので、このままコンソール経由で初期設定を進めていきます。
Cisco 2500 WLC 初期設定
PoEを使用するためにLAGを使用せずに設定します。
今回は、ポート1に対して、10.5.50.4/24のIPを設定、VLANID:50としてTagで流すようにしました。
IX2025側でタグを解く前提の設定になるので、接続する機器によっては、Untagでアクセスポートとして設定したほうが良いでしょう。
Would you like to terminate autoinstall? [yes]: yes
System Name [Cisco_85:81:04] (31 characters max): WLC
Enter Administrative User Name (24 characters max): Cisco
Enter Administrative Password (3 to 24 characters): ***********
Re-enter Administrative Password : ***********
Enable Link Aggregation (LAG) [yes][NO]: NO
Management Interface IP Address: 10.5.50.4
Management Interface Netmask: 255.255.255.0
Management Interface Default Router: 10.5.50.1
Cleaning up Provisioning SSID
Management Interface VLAN Identifier (0 = untagged): 50
Management Interface Port Num [1 to 4]: 1
Management Interface DHCP Server IP Address: 10.5.50.1
Virtual Gateway IP Address: 192.0.2.1
Multicast IP Address: 239.1.1.1
Mobility/RF Group Name: Mobility
Network Name (SSID): test
Configure DHCP Bridging Mode [yes][NO]:
Allow Static IP Addresses [YES][no]:
Configure a RADIUS Server now? [YES][no]: no
Warning! The default WLAN security policy requires a RADIUS server.
Please see documentation for more details.
Enter Country Code list (enter 'help' for a list of countries) [US]: J4
Enable 802.11b Network [YES][no]:
Enable 802.11a Network [YES][no]:
Enable 802.11g Network [YES][no]:
Enable Auto-RF [YES][no]:
Configure a NTP server now? [YES][no]: no
Configure the system time now? [YES][no]: no
Warning! No AP will come up unless the time is set.
Please see documentation for more details.
Would you like to configure IPv6 parameters[YES][no]: no
Configuration correct? If yes, system will save it and reset. [yes][NO]: yes
Cleaning up Provisioning SSID
Configuration saved!
Resetting system with new configuration...
Configuration saved!
Resetting system with new configuration...
Updating license storage ... Done.
Restarting system.ここまで来ると再起動後にWebUIにアクセスできるでしょう。
もし、どうしてもアクセスできない場合は、コンソールから設定ユーザーログイン後に以下のコマンドを実行しましょう。
(Cisco Controller) >config network webmode enable
(Cisco Controller) >
(Cisco Controller) >show network summary
RF-Network Name............................. Mobility
Web Mode.................................... Enable
Secure Web Mode............................. Enable
Secure Web Mode Cipher-Option High.......... Disable
Secure Web Mode Cipher-Option SSLv2......... Disable
Secure Web Mode RC4 Cipher Preference....... Disable
Secure Web Mode SSL Protocol................ Disable
OCSP........................................ Disabled
OCSP responder URL..........................
Secure Shell (ssh).......................... Enable
Telnet...................................... DisableWeb Modeが有効になっているか確認します。
NEC UNIVERGE IX2215 の設定
IX2215のGE1をWLCポート1との接続する前提で以下の最低限の設定を入れます。
Router(config)# sh ru
! NEC Portable Internetwork Core Operating System Software
! IX Series IX2215 (magellan-sec) Software, Version 10.1.16, RELEASE SOFTWARE
! Compiled Apr 11-Thu-2019 13:56:59 JST #2
! Current time Jun 06-Thu-2024 20:46:56 JST
!
timezone +09 00
!
!
ip dhcp enable
!
!
!
!
!
bridge irb enable
!
!
!
!
!
proxy-dns ip enable
!
!
!
!
ip dhcp profile vlan50-dhcp
assignable-range 10.5.50.100 10.5.50.200
default-gateway 10.5.50.1
dns-server 10.5.50.1
!
device GigaEthernet0
!
device GigaEthernet1
!
device GigaEthernet2
!
device BRI0
isdn switch-type hsd128k
!
device USB0
shutdown
!
interface GigaEthernet0.0
ip address dhcp receive-default
ip napt enable
no shutdown
!
interface GigaEthernet1.0
no ip address
no shutdown
!
interface GigaEthernet2.0
no ip address
bridge-group 50
no shutdown
!
interface BRI0.0
encapsulation ppp
no auto-connect
no ip address
shutdown
!
interface USB-Serial0.0
encapsulation ppp
no auto-connect
no ip address
shutdown
!
interface GigaEthernet1.5
encapsulation dot1q 50 tpid 8100
no auto-connect
no ip address
bridge-group 50
no shutdown
!
interface BVI5
description VLAN50
ip address 10.5.50.1/24
ip dhcp binding vlan50-dhcp
bridge-group 50
no shutdown
!
interface Loopback0.0
no ip address
!
interface Null0.0
no ip address
Router(config)# 動作検証のためにインターネットに出れるDHCP配下に置いたIXの設定です。
そのため、interface GigaEthernet0.0はインターネットに出るために単純なDHCPになっています。
実際にはプロバイダー等でインターネットに出る設定が必要でしょう。
ちなみにサブインターフェースにVLANを設定すると、以下のように再起動が要求されます。
% You must restart the router for this configuration to take effect.
wri memを行い、reloadして設定を再開しましょう。
ブリッジインターフェース側にIPを振って、物理インターフェースとはbridge-groupで接続する設定です。
Cisco 2500 WLC へのアクセス
ここまで設定を行えば、ブラウザからアクセスする準備は完了しました。
IX2215のGigaEthernet2にLANケーブルを接続し、ブラウザで「10.5.50.4」のIPアドレスを開いてみましょう。
(注意)ブラウザによっては認証ダイアログが出ず開けない場合があります。
ログインしてファームウェアバージョンを確認すると、
- Software Version 8.0.115.0
- Field Recovery Image Version 7.6.101.1
となっています。
最初に確認した起動ログ中には、
Cisco AireOS Version 8.0.115.0
Firmware Version PIC 20.0
となっているので、このWLCのバージョンは8.0.115.0ということがわかります。
念の為、本体のコンソールでも確認してみます。
(Cisco Controller) >show sysinfo
Manufacturer's Name.............................. Cisco Systems Inc.
Product Name..................................... Cisco Controller
Product Version.................................. 8.0.115.0
Bootloader Version............................... 1.0.20
Field Recovery Image Version..................... 7.6.101.1
Firmware Version................................. PIC 20.0
Cisco 2500 WLC Field Upgrade Software(FUS)での更新
Cisco 2500 WLC は他のシリーズと違い、ファームウェア構成に注意が必要です。
メインとなる「Wireless LAN Controller Software」以外に「Field Upgrade Software」が存在します。
これは、先程の起動ログの中であった「Firmware」のことであり、新しいバージョンのWLCにするにはまず基板上のファームウェアを更新しなくてはなりません。
先ほど確認した通り、ファームウェアバージョンが「PIC 20.0」です。
これは最新版の「2.0.0.0」を指しているようですが、表記が違って不安なので一応アップグレードしておきます。
必要なファイルは以下のものです。
Release : 2.0.0.0
Release Date : 10-Feb-2016
FileName : AIR-CT2500-K9-2-0-0-0-FUS.aes
Size : 15.40 MB ( 16150112 bytes)
MD5 Checksum : 2f11bdb166f374ed1b7fcd83b0e67d6e
SHA512 Checksum : ada963c50e5396e4eb0e712afb3322008443b55aba99f48e2cd1c7e18b511e6f04051363d140784fca155948ce98087620130419204fbe72906ff78d3d3651fb
基本的にはサポート契約を結んでないと入手できないファイルなので各自探してください。
ファームウェアのアップデートはGUIでもCUIでも可能です。
GUIで行う場合には、ログイン後メニュー上部「COMMANDS」から「Download File」を開きます。
「Download file to Controller」画面にて、File Typeを「Code」にして進めればOKです。
個人的にはGUIは少し怖いので、CUIのコンソールからアップデート作業を行ってみます。
(10.5.50.100のPCでTFTPサーバーを立てています)
(Cisco Controller) >
(Cisco Controller) >transfer download mode tftp
(Cisco Controller) >transfer download datatype code
(Cisco Controller) >transfer download serverip 10.5.50.100
(Cisco Controller) >transfer download filename AIR-CT2500-K9-2-0-0-0-FUS.aes
(Cisco Controller) >transfer download start
Mode............................................. TFTP
Data Type........................................ Code
TFTP Server IP................................... 10.5.50.100
TFTP Packet Timeout.............................. 6
TFTP Max Retries................................. 10
TFTP Path........................................
TFTP Filename.................................... AIR-CT2500-K9-2-0-0-0-FUS.aes
This may take some time.
Are you sure you want to start? (y/N) y
TFTP Code transfer starting.
TFTP receive complete... extracting components.
Checking Version Built.
Image version check passed.
Writing new Field Upgrade Software RTOS to flash disk.
Writing new Offline Diagnostic Image to flash disk.
Writing new USB to flash disk.
Executing fini script.
File transfer is successful
Reboot the controller for update to complete
Optionally, pre-download the image to APs before rebooting to reduce network downtime.
(Cisco Controller) >reset system
The system has unsaved changes.
Would you like to save them now? (y/N) y
Configuration Saved!
System will now restart!
Updating license storage ... Done.
Restarting system.
WLCNG Boot Loader Version 1.0.20 (Built on Jan 9 2014 at 19:02:44 by cisco)
Board Revision 0.0 (SN: PSZ212519X8, Type: AIR-CT2504-K9) (P)
Verifying boot loader integrity... OK.
OCTEON CN5230C-SCP pass 2.0, Core clock: 750 MHz, DDR clock: 330 MHz (660 Mhz data rate)
CPU Cores: 4
DRAM: 1024 MB
Flash: 32 MB
Clearing DRAM........ done
Network: octeth0', octeth1, octeth2, octeth3
' - Active interface
E - Environment MAC address override
CF Bus 0 (IDE): OK
IDE device 0:
- Model: 1GB CompactFlash Card Firm: CF B61FK Ser#: A131110556A1Wq1H1AYf
- Type: Hard Disk
- Capacity: 977.4 MB = 0.9 GB (2001888 x 512)
Press <ESC> now to access the Boot Menu...
Loading primary image (8.1.133.7)
100%
6571954 bytes read
Launching...
Launching images...
init started: BusyBox v1.6.0 (2010-05-13 17:50:10 EDT) multi-call binary
starting pid 690, tty '': '/etc/init.d/rcS'
Field Upgrade Software
Bundles included in this upgrade:
- Bootloader
- Field Recovery image
- Offline Diagnostic image
- PIC image
******************************************************************
* Please make sure POWER SUPPLY is always ON during this period. *
* Lost POWER will completely kill this unit and not recoverable. *
******************************************************************
Start soon ...
====================
Checking for Bootloader upgrade
Bootloader upgrade ...
Bootloader 1.0.20 is up to date.
====================
Checking for Offline Diagnostic image upgrade
Offline Diagnostic upgrade ...
OFD image Current version WLCNG OFD 0.9.35 is up-to-date.
Answer "y" below will force upgrade to run again.
Upgrade will start in 30 sec, press (y) to start immediately else press any key to ABORT !!.
Timeout, starting upgrade.
******************************************************************
* Please make sure POWER SUPPLY is always ON during this period. *
******************************************************************
Erasing Flash (estimated 24 seconds) ...
Writing to flash (estimated 112 seconds) ...
====================
Checking for Field recovery image upgrade
Field Recovery Image upgrade ...
Field recovery image Current version 7.6.101.1 is up-to-date.
Answer "y" below will force upgrade to run again.
Upgrade will start in 30 sec, press (y) to start immediately else press any key to ABORT !!.
Timeout, starting upgrade.
******************************************************************
* Please make sure POWER SUPPLY is always ON during this period. *
******************************************************************
Erasing Flash (estimated 49 seconds) ...
Writing to flash (estimated 761 seconds) ...
====================
Checking for PIC firmware upgrade
Pic upgrade ...
PIC Firmware is up to date.
All upgrades done. System reboot ...
Restarting system.
WLCNG Boot Loader Version 1.0.20 (Built on Jan 9 2014 at 19:02:44 by cisco)
Board Revision 0.0 (SN: PSZ212519X8, Type: AIR-CT2504-K9) (P)
Verifying boot loader integrity... OK.
OCTEON CN5230C-SCP pass 2.0, Core clock: 750 MHz, DDR clock: 330 MHz (660 Mhz data rate)
CPU Cores: 4
DRAM: 1024 MB
Flash: 32 MB
Clearing DRAM........ done
Network: octeth0', octeth1, octeth2, octeth3
' - Active interface
E - Environment MAC address override
CF Bus 0 (IDE): OK
IDE device 0:
- Model: 1GB CompactFlash Card Firm: CF B61FK Ser#: A131110556A1Wq1H1AYf
- Type: Hard Disk
- Capacity: 977.4 MB = 0.9 GB (2001888 x 512)
Press <ESC> now to access the Boot Menu...
Loading primary image (8.0.115.0)
100%
37799790 bytes read
Launching...
Launching images...
init started: BusyBox v1.6.0 (2010-05-13 17:50:10 EDT) multi-call binary
starting pid 688, tty '': '/etc/init.d/rcS'
Detecting Hardware ...
Installing ether-pow driver - 0x6008
starting pid 821, tty '/dev/ttyS0': '/usr/bin/gettyOrMwar'
Setting up ZVM
Exporting LD_LIBRARY_PATH
Decompressing...
Validating...... OK
Cryptographic library self-test....passed!
XML config selected
Validating XML configuration
octeon_device_init: found 1 DPs
/dev/fpga: No such device or address
readCPUConfigData: cardid 0x6060001
Cisco is a trademark of Cisco Systems, Inc.
Software Copyright Cisco Systems, Inc. All rights reserved.
Cisco AireOS Version 8.0.115.0
Firmware Version PIC 20.0
Initializing OS Services: ok
Initializing Serial Services: ok
Initializing Network Services: ok
Initializing Licensing Services:
License daemon start initialization.....
ok
License daemon running.....
Starting Statistics Service: ok
Starting ARP Services: ok
Starting Trap Manager: ok
Starting Network Interface Management Services: ok
Starting System Services: ok
Starting FIPS Features: ok : Not enabled
Starting Fastpath Hardware Acceleration: ok
Starting Fastpath Console redirect : ok
Starting Fastpath DP Heartbeat : ok
Fastpath CPU0.00: Starting Fastpath Application. SDK-1.8.0, build 269. Flags-[DUTY CYCLE] : ok
Fastpath CPU0.00: Initializing last packet received queue. Num of cores(2)
Fastpath CPU0.00: Init MBUF size: 1856, Subsequent MBUF size: 2040
Fastpath CPU0.00: Core 0 Initialization: ok
Fastpath CPU0.00: Initializing Timer...
Fastpath CPU0.00: Initializing Timer...done.
Fastpath CPU0.00: Initializing Timer...
Fastpath CPU0.00: Initializing NBAR AGING Timer...done.
Fastpath CPU0.01: Core 1 Initialization: ok
Starting Switching Services: ok
Starting QoS Services: ok
Starting Policy Manager: ok
Starting Data Transport Link Layer: ok
Starting Access Control List Services: ok
Starting System Interfaces: ok
Starting Client Troubleshooting Service: ok
Starting Certificate Database: ok
Starting VPN Services: ok
Starting Management Frame Protection: ok
Starting DNS Services: ok
Starting Licensing Services: License Request Failed :User failed to accept EULA
ok
Starting Redundancy: ok
Starting LWAPP: ok
Starting CAPWAP: ok
Starting LOCP: ok
Starting Security Services: ok
Starting Policy Manager: ok
Starting Authentication Engine: ok
Starting Mobility Management: ok
Starting Capwap Ping Component: ok
Starting AVC Services: ok
Starting Virtual AP Services: ok
Starting AireWave Director: ok
Starting Network Time Services: ok
Starting Cisco Discovery Protocol: ok
Starting Broadcast Services: ok
Starting Logging Services: ok
Starting DHCP Server: ok
Starting IDS Signature Manager: ok
Starting RFID Tag Tracking: ok
Starting RF Profiles: ok
Starting Power Supply and Fan Status Monitoring Service: ok
Starting Mesh Services: ok
Starting TSM: ok
Starting CIDS Services: ok
Starting Ethernet-over-IP: ok
Starting DTLS server: enabled in CAPWAP
Starting CleanAir: ok
Starting WIPS: ok
Starting SSHPM LSC PROV LIST: ok
Starting RRC Services: ok
Starting SXP Services: ok
Starting Alarm Services: ok
Starting FMC HS: ok
Starting IPv6 Services: ok
Starting Config Sync Manager : ok
Starting Hotspot Services: ok
Starting Portal Server Services: ok
Starting mDNS Services: ok
Starting Management Services:
Web Server: CLI: Secure Web: ok
(Cisco Controller)
Enter User Name (or 'Recover-Config' this one-time only to reset configuration to factory defaults)
User: Cisco
Password:***********
(Cisco Controller) >show sysinfo
Manufacturer's Name.............................. Cisco Systems Inc.
Product Name..................................... Cisco Controller
Product Version.................................. 8.0.115.0
Bootloader Version............................... 1.0.20
Field Recovery Image Version..................... 7.6.101.1
Firmware Version................................. PIC 20.0FUS 2.0.0.0 アップデートを行いましたが、Firmware VersionがPIC 20.0と変わらないので、このバージョンのことを指しているようです。
次に本体ソフトウェアのアップグレードを行います。
Cisco 2500 WLC アップグレード
Cisco 2500 WLCの場合は、AP Bundleイメージにファイルが分割されています。
本体のソフトウェア以外に、各種APをサポートするための追加ファイルが別途あるようなイメージです。
最低限必要なファイルは以下のものです。
Release : 8.5.182.0
Release Date : 31-Aug-2021
FileName : AIR-CT2500-K9-8-5-182-0.aes
Size : 181.36 MB ( 190166334 bytes)
MD5 Checksum : 0ec0927df061c754ebbd9c5baa9047ad
SHA512 Checksum : 8de868143326d027b175f99801287b7e65d0d4dced47c40a77fd7142d2eded1cceeda53e17813e13efaa4d27bd6eebc4158f9e9c23965f2f64b56f291b623486
AP Bundleイメージは以下のものです。
Release : 8.5.182.0
Release Date : 31-Aug-2021
FileName : AIR-CT2500-AP_BUNDLE-K9-8-5-182-0.aes
Size : 69.69 MB ( 73078942 bytes)
MD5 Checksum : 304e1e7e0ed953da1fe447f3ef897825
SHA512 Checksum : 3bcb44091d79402eeb695b46cdf76611ea76aa2a78230662ce895a77f5243bfcdab030378c89c2e2b08da8cc44fb12f6b0c16e84b012b01ac0a120488eb40174
基本的にはサポート契約を結んでないと入手できないファイルなので各自探してください。
手順は先程のFUSアップデートと同じになります。
(10.5.50.100のPCでTFTPサーバーを立てています)
(Cisco Controller) >transfer download mode tftp
(Cisco Controller) >transfer download datatype code
(Cisco Controller) >transfer download serverip 10.5.50.100
(Cisco Controller) >transfer download filename AIR-CT2500-K9-8-5-182-0.aes
(Cisco Controller) >transfer download start
Mode............................................. TFTP
Data Type........................................ Code
TFTP Server IP................................... 10.5.50.100
TFTP Packet Timeout.............................. 6
TFTP Max Retries................................. 10
TFTP Path........................................
TFTP Filename.................................... AIR-CT2500-K9-8-5-182-0.aes
This may take some time.
Are you sure you want to start? (y/N) y
TFTP Code transfer starting.
TFTP receive complete... extracting components.
Checking Version Built.
Image version check passed.
Writing new RTOS to flash disk.
Writing new FP to flash disk.
Writing new AP Image Bundle to flash disk.
Writing AVC Files to flash disk.
Executing fini script.
File transfer is successful
Reboot the controller for update to complete
Optionally, pre-download the image to APs before rebooting to reduce network downtime.
(Cisco Controller) >reset system
The system has unsaved changes.
Would you like to save them now? (y/N) y
Configuration Saved!
System will now restart!
Updating license storage ... Done.
Restarting system.
WLCNG Boot Loader Version 1.0.20 (Built on Jan 9 2014 at 19:02:44 by cisco)
Board Revision 0.0 (SN: PSZ212519X8, Type: AIR-CT2504-K9) (P)
Verifying boot loader integrity... OK.
OCTEON CN5230C-SCP pass 2.0, Core clock: 750 MHz, DDR clock: 330 MHz (660 Mhz data rate)
CPU Cores: 4
DRAM: 1024 MB
Flash: 32 MB
Clearing DRAM........ done
Network: octeth0', octeth1, octeth2, octeth3
' - Active interface
E - Environment MAC address override
CF Bus 0 (IDE): OK
IDE device 0:
- Model: 1GB CompactFlash Card Firm: CF B61FK Ser#: A131110556A1Wq1H1AYf
- Type: Hard Disk
- Capacity: 977.4 MB = 0.9 GB (2001888 x 512)
Press <ESC> now to access the Boot Menu...
Loading primary image (8.5.182.0)
100%
38700281 bytes read
Launching...
Launching images...
init started: BusyBox v1.6.0 (2010-05-13 17:50:10 EDT) multi-call binary
starting pid 690, tty '': '/etc/init.d/rcS'
Decompressing... OK
Validating...... OK
Field Extarction not supported. Deleting NBAR FE SG FILE.
Generating Secure Shell version 2 ECDSA Host Key ...
Detecting Hardware ...
Installing ether-pow driver - 0x6008
starting pid 920, tty '/dev/ttyS0': '/usr/bin/gettyOrMwar'
Setting up ZVM
Exporting LD_LIBRARY_PATH
Cryptographic library self-test....
Testing SHA1 Short Message 1
Testing SHA256 Short Message 1
Testing SHA384 Short Message 1
SHA1 POST PASSED
Testing HMAC SHA1 Short Message 1
Testing HMAC SHA2 Short Message 1
Testing HMAC SHA384 Short Message 1
passed!
XML config selected
Starting Web Services ...
Validating XML configuration
octeon_device_init: found 1 DPs
/dev/fpga: No such device or address
readCPUConfigData: cardid 0x6060001
Cisco is a trademark of Cisco Systems, Inc.
Software Copyright Cisco Systems, Inc. All rights reserved.
Cisco AireOS Version 8.5.182.0
Firmware Version PIC 20.0
Initializing OS Services: ok
Initializing Serial Services: ok
Initializing Network Services: ok
Initializing Licensing Services: ok
License daemon start initialization.....
License daemon running.....
Starting Statistics Service: ok
Starting Licensing Services:
License Request Failed :User failed to accept EULA
ok
Starting ARP Services: ok
Starting Trap Manager: ok
Starting Network Interface Management Services: ok
Starting System Services: ok
Starting FIPS Features: ok : Not enabled
Starting SNMP services: ok
Starting Fastpath Hardware Acceleration: ok
Starting Fastpath Console redirect : ok
Starting Fastpath DP Heartbeat : ok
Fastpath CPU0.00(0): Starting Fastpath Application. SDK-Cavium Networks Octeon SDK version 1.8.0, build 269. Flags-[DUTY CYCLE] : ok
Fastpath CPU0.00(0): Initializing last packet received queue. Num of cores(2)
Fastpath CPU0.00(0): Initializing Global Packet Queue. Num of packets supported(1)
Fastpath CPU0.00(0): Init MBUF size: 1856, Subsequent MBUF size: 2040
Fastpath CPU0.00(0): Core 0 Initialization: ok
Fastpath CPU0.00(0): Initializing Timer...
Fastpath CPU0.00(0): Initializing Timer...done.
Fastpath CPU0.00(0): Initializing Timer...
Fastpath CPU0.00(0): Initializing NBAR AGING Timer...done.
Fastpath CPU0.01(0): Core 1 Initialization: ok
Starting Switching Services: ok
Starting QoS Services: ok
Starting Policy Manager: ok
Starting Data Transport Link Layer: ok
Starting Access Control List Services: ok
Starting System Interfaces: ok
Starting Client Troubleshooting Service: ok
Starting Certificate Database: Initializing Curl Globally..
ok
Starting VPN Services: ok
Starting Management Frame Protection: ok
Starting DNS Services: ok
ok
Starting Redundancy: ok
Start rmgrPingTask: ok
Starting LWAPP: ok
Starting CAPWAP: ok
Starting LOCP: ok
Starting Security Services: ok
Starting OpenDNS Services: ok
Starting Policy Manager: ok
Starting Authentication Engine: ok
Starting Mobility Management: ok
Starting Capwap Ping Component: ok
Starting AVC Services: ok
Starting AVC Flex Services: ok
Starting Virtual AP Services: ok
Starting AireWave Director: ok
Starting Network Time Services: ok
Starting Cisco Discovery Protocol: ok
Starting Broadcast Services: ok
Starting Logging Services: ok
Starting DHCP Server: ok
Starting IDS Signature Manager: ok
Starting RFID Tag Tracking: ok
Starting RF Profiles: ok
Starting Power Supply and Fan Status Monitoring Service: ok
Starting Mesh Services: ok
Starting TSM: ok
Starting CIDS Services: ok
Starting Ethernet-over-IP: ok
Starting DTLS server: enabled in CAPWAP
Starting CleanAir: ok
Starting WIPS: ok
Starting SSHPM LSC PROV LIST: ok
Starting RRC Services: ok
Starting SXP Services: ok
Starting Alarm Services: ok
Starting FMC HS: ok
Starting IPv6 Services: ok
Starting Config Sync Manager : ok
Starting Hotspot Services: ok
Starting Tunnel Services New: ok
Starting Portal Server Services: ok
Starting mDNS Services: ok
Starting Management Services:
Web Server: CLI: Secure Web: ok
Starting IPSec Profiles component: ok
Starting CPU ACL Logging services: ok
(Cisco Controller)
Enter User Name (or 'Recover-Config' this one-time only to reset configuration to factory defaults)
User: Cisco
Password:***********
(Cisco Controller) >show sysinfo
Manufacturer's Name.............................. Cisco Systems Inc.
Product Name..................................... Cisco Controller
Product Version.................................. 8.5.182.0
Bootloader Version............................... 1.0.20
Field Recovery Image Version..................... 7.6.101.1
Firmware Version................................. PIC 20.0同様にAP Bundleでのアップグレードも行います。
Cisco 2500 WLC 証明書期限切れに対する対応アップデート
- https://www.cisco.com/c/en/us/support/docs/wireless/aironet-700-series-access-points/218447-ios-ap-image-download-fails-due-to-expir.html
- https://software.cisco.com/download/specialrelease/8f166c6d88b9f77aabb63f78affa9749
証明書の期限切れでAPが登録できない場合がある問題に対処するファームウェアがリリースされています。
Release : 8.5.182.7
Release Date : 20-Dec-2022
FileName : AS_5500_8_5_182_7.aes
Size : 181.37 MB ( 190177829 bytes)
MD5 Checksum : c37867e5644f919bd2a65da3439db23e
SHA512 Checksum : eb3e9208f32840823fa5a1d6b50dc83197738939ddcbf720805994c5a58e8f7d73947b464e611a2ecf38e1a85ac032cd0f70b22896a638226b2cf5a757184d0f
先ほどと同様にアップデートしておきましょう。
(Cisco Controller) >transfer download mode tftp
(Cisco Controller) >transfer download datatype code
(Cisco Controller) >transfer download serverip 10.5.50.100
(Cisco Controller) >transfer download filename AS_5500_8_5_182_7.aes
(Cisco Controller) >transfer download start
Mode............................................. TFTP
Data Type........................................ Code
TFTP Server IP................................... 10.5.50.100
TFTP Packet Timeout.............................. 6
TFTP Max Retries................................. 10
TFTP Path........................................
TFTP Filename.................................... AS_5500_8_5_182_7.aes
This may take some time.
Are you sure you want to start? (y/N) y
TFTP Code transfer starting.
TFTP receive complete... extracting components.
Image version check passed.
Executing backup script.
Writing new RTOS to flash disk.
Writing new AP Image Bundle to flash disk.
Writing AVC Files to flash disk.
Executing fini script.
File transfer is successful.
Reboot the controller for update to complete.
Optionally, pre-download the image to APs before rebooting to reduce network downtime.
(Cisco Controller) >reset system
The system has unsaved changes.
Would you like to save them now? (y/N) y
Configuration Saved!
System will now restart! Creating license client restartability thread
Updating license storage ... Done.
Exit Called
Switchdrvr exited!
Restarting system.
WLCNG Boot Loader Version 1.0.20 (Built on Jan 9 2014 at 19:02:44 by cisco)
Board Revision 0.0 (SN: PSZ212519X8, Type: AIR-CT2504-K9) (P)
Verifying boot loader integrity... OK.
OCTEON CN5230C-SCP pass 2.0, Core clock: 750 MHz, DDR clock: 330 MHz (660 Mhz data rate)
CPU Cores: 4
DRAM: 1024 MB
Flash: 32 MB
Clearing DRAM........ done
Network: octeth0', octeth1, octeth2, octeth3
' - Active interface
E - Environment MAC address override
CF Bus 0 (IDE): OK
IDE device 0:
- Model: 1GB CompactFlash Card Firm: CF B61FK Ser#: A131110556A1Wq1H1AYf
- Type: Hard Disk
- Capacity: 977.4 MB = 0.9 GB (2001888 x 512)
Press <ESC> now to access the Boot Menu...
Loading primary image (8.5.182.7)
100%
38691158 bytes read
Launching...
Launching images...
init started: BusyBox v1.6.0 (2010-05-13 17:50:10 EDT) multi-call binary
starting pid 690, tty '': '/etc/init.d/rcS'
Decompressing... OK
Validating...... OK
Field Extarction not supported. Deleting NBAR FE SG FILE.
Detecting Hardware ...
Installing ether-pow driver - 0x6008
starting pid 919, tty '/dev/ttyS0': '/usr/bin/gettyOrMwar'
Setting up ZVM
Exporting LD_LIBRARY_PATH
Cryptographic library self-test....
Testing SHA1 Short Message 1
Testing SHA256 Short Message 1
Testing SHA384 Short Message 1
SHA1 POST PASSED
Testing HMAC SHA1 Short Message 1
Testing HMAC SHA2 Short Message 1
Testing HMAC SHA384 Short Message 1
passed!
XML config selected
Starting Web Services ...
Validating XML configuration
octeon_device_init: found 1 DPs
/dev/fpga: No such device or address
readCPUConfigData: cardid 0x6060001
Cisco is a trademark of Cisco Systems, Inc.
Software Copyright Cisco Systems, Inc. All rights reserved.
Cisco AireOS Version 8.5.182.7
Firmware Version PIC 20.0
Initializing OS Services: ok
Initializing Serial Services: ok
Initializing Network Services: ok
Initializing Licensing Services: ok
Starting Statistics Service: ok
License daemon start initialization.....
License daemon running.....
Starting Licensing Services:
License Request Failed :User failed to accept EULA
ok
Starting ARP Services: ok
Starting Trap Manager: ok
Starting Network Interface Management Services: ok
Starting System Services: ok
Starting FIPS Features: ok : Not enabled
Starting SNMP services: ok
Starting Fastpath Hardware Acceleration: ok
Starting Fastpath Console redirect : ok
Starting Fastpath DP Heartbeat : ok
Fastpath CPU0.00(0): Starting Fastpath Application. SDK-Cavium Networks Octeon SDK version 1.8.0, build 269. Flags-[DUTY CYCLE] : ok
Fastpath CPU0.00(0): Initializing last packet received queue. Num of cores(2)
Fastpath CPU0.00(0): Initializing Global Packet Queue. Num of packets supported(1)
Fastpath CPU0.00(0): Init MBUF size: 1856, Subsequent MBUF size: 2040
Fastpath CPU0.00(0): Core 0 Initialization: ok
Fastpath CPU0.00(0): Initializing Timer...
Fastpath CPU0.00(0): Initializing Timer...done.
Fastpath CPU0.00(0): Initializing Timer...
Fastpath CPU0.00(0): Initializing NBAR AGING Timer...done.
Fastpath CPU0.01(0): Core 1 Initialization: ok
Starting Switching Services: ok
Starting QoS Services: ok
Starting Policy Manager: ok
Starting Data Transport Link Layer: ok
Starting Access Control List Services: ok
Starting System Interfaces: ok
Starting Client Troubleshooting Service: ok
Starting Certificate Database: Initializing Curl Globally..
ok
Starting VPN Services: ok
Starting Management Frame Protection: ok
Starting DNS Services: ok
ok
Starting Redundancy: ok
Start rmgrPingTask: ok
Starting LWAPP: ok
Starting CAPWAP: ok
Starting LOCP: ok
Starting Security Services: ok
Starting OpenDNS Services: ok
Starting Policy Manager: ok
Starting Authentication Engine: ok
Starting Mobility Management: ok
Starting Capwap Ping Component: ok
Starting AVC Services: ok
Starting AVC Flex Services: ok
Starting Virtual AP Services: ok
Starting AireWave Director: ok
Starting Network Time Services: ok
Starting Cisco Discovery Protocol: ok
Starting Broadcast Services: ok
Starting Logging Services: ok
Starting DHCP Server: ok
Starting IDS Signature Manager: ok
Starting RFID Tag Tracking: ok
Starting RF Profiles: ok
Starting Power Supply and Fan Status Monitoring Service: ok
Starting Mesh Services: ok
Starting TSM: ok
Starting CIDS Services: ok
Starting Ethernet-over-IP: ok
Starting DTLS server: enabled in CAPWAP
Starting CleanAir: ok
Starting WIPS: ok
Starting SSHPM LSC PROV LIST: ok
Starting RRC Services: ok
Starting SXP Services: ok
Starting Alarm Services: ok
Starting FMC HS: ok
Starting IPv6 Services: ok
Starting Config Sync Manager : ok
Starting Hotspot Services: ok
Starting Tunnel Services New: ok
Starting Portal Server Services: ok
Starting mDNS Services: ok
Starting Management Services:
Starting IPSec Profiles component: ok
Starting CPU ACL Logging services: Web Server: CLI: Secure Web: ok
ok
(Cisco Controller)
Enter User Name (or 'Recover-Config' this one-time only to reset configuration to factory defaults)
User: Cisco
Password:***********
(Cisco Controller) >show sysinfo
Manufacturer's Name.............................. Cisco Systems Inc.
Product Name..................................... Cisco Controller
Product Version.................................. 8.5.182.7
Bootloader Version............................... 1.0.20
Field Recovery Image Version..................... 7.6.101.1
Firmware Version................................. PIC 20.0Webのほうも確認すると
- Software Version 8.5.182.7
- Field Recovery Image Version 7.6.101.1
となっていて、無事アップデートが完了したことがわかります。
APのファームウェア書き換え
基本的に、AIR-CAPxxxxxxxx/AIR-LAPxxxxxxxが集中管理型(k9w8)、AIR-APxxxxxxxxxが自律型(k9w7)のAPです。。
ヤフオク等で中古が入手可能ですが、AIR-CAPを自律型に書き換えて使ってる例が多いでしょう。
(本体の型番がAIR-CAPなのに、ソフトウェアがk9w7になっている等)
自律型の場合は、WLCに収容できないため、集中管理型にファームウェアを書き換える必要があります。
今回使用したものは「AIR-CAP2702I-Q-K9」で、集中管理型であることが期待されるが、ファームウェアはk9w7だったため、集中管理型に切り替える必要があります。
上記ページ中「Supported Access Points in Cisco AireOS Wireless Software Releases」セクションを確認しよう。
WLC側(AireOS)のバージョン 8.5.182.0 に対するAPのバージョンは 15.3(3)JF15 ということがわかる。
Lightweight AP IOS Software を使用します。
Release : 15.3.3-JF15
Release Date : 31-Aug-2021
FileName : c3700-k9w8-tar.153-3.JF15.tar
Min Memory : DRAM 512 Flash 64
Size : 14.01 MB ( 14694400 bytes)
MD5 Checksum : a035666a9d76b59911e87aa4e25aca94
SHA512 Checksum : 4295b5ecc2f01ccb06752fdcbd24ce2f68bcc973e9ac84455cd199f4f250fcf12d8e1512eff8ab5ab0af13a877f24495440809ff0134431ed286a84e9ad7e7c2
集中管理型のファームウェアはアカウントを作成し、ライセンス等に同意すればダウンロードできる場合が多いです。
今回はパスワードが不明だったので、ROMMONモードか、MODEボタンを使用してファームウェアを更新します。
電源を入れる前からMODEボタンを押し続け、電源を入れる。
IOS Bootloader - Starting system.
flash is writable
Antigua Board
40MB format
Tide XL MB - 40MB of flash
Xmodem file system is available.
flashfs[0]: 463 files, 13 directories
flashfs[0]: 0 orphaned files, 0 orphaned directories
flashfs[0]: Total bytes: 41158656
flashfs[0]: Bytes used: 26225152
flashfs[0]: Bytes available: 14933504
flashfs[0]: flashfs fsck took 19 seconds.
Base Ethernet MAC address: e4:aa:5d:1a:b1:68
Ethernet speed is 1000 Mb - FULL Duplex
button is pressed, wait for button to be released...
button pressed for 27 seconds
process_config_recovery: set IP address and config to default 10.0.0.1
process_config_recovery: image recovery
image_recovery: Download default IOS tar image tftp://255.255.255.255/ap3g2-k9w7-tar.default現在入っているファームウェアが、k9w7のため「ap3g2-k9w7-tar.default」が要求されている。
TFTPサーバーのほうで、「c3700-k9w8-tar.153-3.JF15.tar」を「ap3g2-k9w7-tar.default」にリネームしてファイルを用意してあります。
button is pressed, wait for button to be released...
button pressed for 27 seconds
process_config_recovery: set IP address and config to default 10.0.0.1
process_config_recovery: image recovery
image_recovery: Download default IOS tar image tftp://255.255.255.255/ap3g2-k9w7-tar.default
examining image...
DPAA Set for Independent Mode
tide_boot_speed = 1000
DPAA_INIT = 0x0
extracting info (291 bytes)
Image info:
Version Suffix: k9w8-.153-3.JF15
Image Name: ap3g2-k9w8-mx.153-3.JF15
Version Directory: ap3g2-k9w8-mx.153-3.JF15
Ios Image Size: 12739072
Total Image Size: 14684672
Image Feature: WIRELESS LAN|LWAPP
Image Family: AP3G2
Wireless Switch Management Version: 8.5.182.0
Not enough free space to download image first w/o extracting
deleting existing version(s)...
Deleting current version: flash:/ap3g2-k9w7-mx.153-3.JBB6...done.
Extracting files...
ERROR: Problem extracting files from archive.ap:
ap: 空き容量がなくて失敗してしまった?
ap: プロンプトになってしまったので、フラッシュを削除したうえで、手動でTFTPサーバーからファイルを転送することにします。
適当なIPアドレスを付けて、以下のようにコマンドを打ち込みます。
image_recovery: Download default IOS tar image tftp://255.255.255.255/ap3g2-k9w7-tar.default
examining image...
DPAA Set for Independent Mode
tide_boot_speed = 1000
DPAA_INIT = 0x0
%Error opening tftp://255.255.255.255/ap3g2-k9w7-tar.default (connection timed out)ap:
ap: dir flash:
Directory of flash:/
2 -rwx 152 <date> env_vars
4 -rwx 5 <date> private-config
38 -rwx 1048 <date> private-multiple-fs
48 drwx 2176 <date> ap3g2-k9w7-mx.153-3.JA1
28214272 bytes available (12944384 bytes used)
ap:
ap: delete flash:ap3g2-k9w7-mx.153-3.JA1/ap3g2-k9w7-mx.153-3.JA1
Are you sure you want to delete "flash:ap3g2-k9w7-mx.153-3.JA1/ap3g2-k9w7-mx.153-3.JA1" (y/n)?y
File "flash:ap3g2-k9w7-mx.153-3.JA1/ap3g2-k9w7-mx.153-3.JA1" deleted
ap:
ap: set IP_ADDR 192.168.1.2
ap: set NETMASK 255.255.255.0
ap: set DEFAULT_ROUTER 192.168.1.1
ap: tftp_init
ap: flash_init
Initializing Flash...
...The flash is already initialized.
ap: ether_init
Initializing ethernet port 0...
Ethernet speed is 1000 Mb - FULL Duplex
ap: tar -xtract tftp://192.168.1.1/c3700-k9w8-tar.153-3.JF15.tar flash:
extracting info (291 bytes)
ap3g2-k9w8-mx.153-3.JF15/ (directory) 0 (bytes)
extracting ap3g2-k9w8-mx.153-3.JF15/R2.bin (15184 bytes)...
ap3g2-k9w8-mx.153-3.JF15/html/ (directory) 0 (bytes)
ap3g2-k9w8-mx.153-3.JF15/html/level/ (directory) 0 (bytes)
ap3g2-k9w8-mx.153-3.JF15/html/level/15/ (directory) 0 (bytes)
extracting ap3g2-k9w8-mx.153-3.JF15/html/level/15/officeExtendapEvent.shtml.gz (988 bytes)
extracting ap3g2-k9w8-mx.153-3.JF15/html/level/15/officeExtendapBanner.htm (7514 bytes).
extracting ap3g2-k9w8-mx.153-3.JF15/html/level/15/easyApManagementSummary.shtml.gz (3371 bytes)
extracting ap3g2-k9w8-mx.153-3.JF15/html/level/15/easyApManagementConfig.shtml.gz (4999 bytes).
extracting ap3g2-k9w8-mx.153-3.JF15/html/level/15/officeExtendapConfig.shtml.gz (3147 bytes)
extracting ap3g2-k9w8-mx.153-3.JF15/html/level/15/easyApManagement.html (967 bytes)
extracting ap3g2-k9w8-mx.153-3.JF15/html/level/15/officeExtendapMain.shtml.gz (3350 bytes)
extracting ap3g2-k9w8-mx.153-3.JF15/html/level/15/officeExtendapHelp.htm (5721 bytes).
extracting ap3g2-k9w8-mx.153-3.JF15/html/level/15/officeExtendapSummary.htm (985 bytes)
ap3g2-k9w8-mx.153-3.JF15/html/level/1/ (directory) 0 (bytes)
extracting ap3g2-k9w8-mx.153-3.JF15/html/level/1/jquery-1.11.3.min.js (95957 bytes)....................
extracting ap3g2-k9w8-mx.153-3.JF15/html/level/1/ap_home.shtml.gz (1540 bytes)
extracting ap3g2-k9w8-mx.153-3.JF15/html/level/1/config-oeap.js (779 bytes)
extracting ap3g2-k9w8-mx.153-3.JF15/html/level/1/officeExtendap.css (41801 bytes).........
extracting ap3g2-k9w8-mx.153-3.JF15/html/level/1/back.shtml (512 bytes)
extracting ap3g2-k9w8-mx.153-3.JF15/html/level/1/sitewide.js (17290 bytes)...
extracting ap3g2-k9w8-mx.153-3.JF15/html/level/1/config.js (29225 bytes)......
extracting ap3g2-k9w8-mx.153-3.JF15/html/level/1/appsui.js (563 bytes)
extracting ap3g2-k9w8-mx.153-3.JF15/html/level/1/forms.js (20442 bytes)....
ap3g2-k9w8-mx.153-3.JF15/html/level/1/images/ (directory) 0 (bytes)
extracting ap3g2-k9w8-mx.153-3.JF15/html/level/1/images/itp-logo.png (2822 bytes)
extracting ap3g2-k9w8-mx.153-3.JF15/html/level/1/images/login_homeap.gif (19671 bytes)....
extracting ap3g2-k9w8-mx.153-3.JF15/html/level/1/images/background_web41.jpg (732 bytes)
extracting ap3g2-k9w8-mx.153-3.JF15/html/level/1/images/info.gif (399 bytes)
extracting ap3g2-k9w8-mx.153-3.JF15/html/level/1/images/cisco-logo-2007.gif (1648 bytes)
extracting ap3g2-k9w8-mx.153-3.JF15/V5.bin (514 bytes)
extracting ap3g2-k9w8-mx.153-3.JF15/B2.bin (10512 bytes)..
extracting ap3g2-k9w8-mx.153-3.JF15/C2.bin (30368 bytes)......
extracting ap3g2-k9w8-mx.153-3.JF15/HA2.bin (5840 bytes).
extracting ap3g2-k9w8-mx.153-3.JF15/final_hash.sig (512 bytes)
extracting ap3g2-k9w8-mx.153-3.JF15/final_hash (141 bytes)
extracting ap3g2-k9w8-mx.153-3.JF15/HA5.bin (2049 bytes)
extracting ap3g2-k9w8-mx.153-3.JF15/E5.bin (2213 bytes)
extracting ap3g2-k9w8-mx.153-3.JF15/F2.bin (15184 bytes)...
extracting ap3g2-k9w8-mx.153-3.JF15/MCU.bin (9031 bytes)..
extracting ap3g2-k9w8-mx.153-3.JF15/Q2.bin (8176 bytes).
extracting ap3g2-k9w8-mx.153-3.JF15/V2.bin (12848 bytes)..
extracting ap3g2-k9w8-mx.153-3.JF15/Q5.bin (3957 bytes)
extracting ap3g2-k9w8-mx.153-3.JF15/R5.bin (4547 bytes).
extracting ap3g2-k9w8-mx.153-3.JF15/U2.bin (8176 bytes).
extracting ap3g2-k9w8-mx.153-3.JF15/Y2.bin (7008 bytes).
extracting ap3g2-k9w8-mx.153-3.JF15/U5.bin (3609 bytes)
extracting ap3g2-k9w8-mx.153-3.JF15/E2.bin (19856 bytes)....
extracting ap3g2-k9w8-mx.153-3.JF15/img_sign_rel_sha2.cert (1371 bytes)
extracting ap3g2-k9w8-mx.153-3.JF15/ap3g2-k9w8-mx.153-3.JF15 (230262 bytes)..................................................
extracting ap3g2-k9w8-mx.153-3.JF15/file_hashes (7778 bytes).
extracting ap3g2-k9w8-mx.153-3.JF15/img_sign_rel.cert (1375 bytes)
extracting ap3g2-k9w8-mx.153-3.JF15/B5.bin (2333 bytes)
extracting ap3g2-k9w8-mx.153-3.JF15/triggerfish_cpld.img (2460 bytes)
extracting ap3g2-k9w8-mx.153-3.JF15/8004.img (576168 bytes).............................................................................................................................
extracting ap3g2-k9w8-mx.153-3.JF15/8006.img (605613 bytes)...................................................................................................................................
extracting ap3g2-k9w8-mx.153-3.JF15/ap3g2-k9w8-xx.153-3.JF15 (12731246 bytes)..........................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................
extracting ap3g2-k9w8-mx.153-3.JF15/X5.bin (1916 bytes)
extracting ap3g2-k9w8-mx.153-3.JF15/C5.bin (16361 bytes)...
extracting ap3g2-k9w8-mx.153-3.JF15/ap3g2-k9w8-tx.153-3.JF15 (73 bytes)
extracting ap3g2-k9w8-mx.153-3.JF15/X2.bin (16352 bytes)...
extracting ap3g2-k9w8-mx.153-3.JF15/uart_firmware_upgrade.bin (18818 bytes)....
extracting ap3g2-k9w8-mx.153-3.JF15/Y5.bin (1875 bytes)
extracting ap3g2-k9w8-mx.153-3.JF15/info (291 bytes)
extracting ap3g2-k9w8-mx.153-3.JF15/F5.bin (4220 bytes).
extracting info.ver (291 bytes)ap:
ap: set BOOT flash:ap3g2-k9w8-mx.153-3.JF15/ap3g2-k9w8-xx.153-3.JF15
ap: boot
Rebooting system to reset DPAA...
IOS Bootloader - Starting system.
flash is writable
Antigua Board
40MB format
Tide XL MB - 40MB of flash
Xmodem file system is available.
flashfs[0]: 290 files, 13 directories
flashfs[0]: 0 orphaned files, 0 orphaned directories
flashfs[0]: Total bytes: 41158656
flashfs[0]: Bytes used: 27389440
flashfs[0]: Bytes available: 13769216
flashfs[0]: flashfs fsck took 11 seconds.
Base Ethernet MAC address: e4:aa:5d:1a:b1:68
Ethernet speed is 1000 Mb - FULL Duplex
Loading "flash:ap3g2-k9w8-mx.153-3.JF15/ap3g2-k9w8-xx.153-3.JF15"...flash:ap3g2-k9w8-mx.153-3.JF15/ap3g2-k9w8-xx.153-3.JF15: magic number mismatch: bad mzip file
Error loading "flash:ap3g2-k9w8-mx.153-3.JF15/ap3g2-k9w8-xx.153-3.JF15"
Interrupt within 5 seconds to abort boot process.
Loading "flash:/ap3g2-k9w8-mx.153-3.JF15/ap3g2-k9w8-mx.153-3.JF15"...#########################
File "flash:/ap3g2-k9w8-mx.153-3.JF15/ap3g2-k9w8-mx.153-3.JF15" uncompressed and installed, entry point: 0x2003000
executing...
Secondary Bootloader - Starting system.
Antigua Board Pre-Pilot
40MB format
Tide XL MB - 40MB of flash
Xmodem file system is available.
flashfs[0]: 290 files, 13 directories
flashfs[0]: 0 orphaned files, 0 orphaned directories
flashfs[0]: Total bytes: 41158656
flashfs[0]: Bytes used: 27389440
flashfs[0]: Bytes available: 13769216
flashfs[0]: flashfs fsck took 11 seconds.
flashfs[1]: 0 files, 1 directories
flashfs[1]: 0 orphaned files, 0 orphaned directories
flashfs[1]: Total bytes: 12257280
flashfs[1]: Bytes used: 1024
flashfs[1]: Bytes available: 12256256
flashfs[1]: flashfs fsck took 1 seconds.
Base Ethernet MAC address: e4:aa:5d:1a:b1:68
Boot CMD: 'boot flash:ap3g2-k9w8-mx.153-3.JF15/ap3g2-k9w8-xx.153-3.JF15;flash:/ap3g2-k9w8-xx.153-3.JF15/ap3g2-k9w8-xx.153-3.JF15'
Loading "flash:ap3g2-k9w8-mx.153-3.JF15/ap3g2-k9w8-xx.153-3.JF15"...#################################################
File "flash:ap3g2-k9w8-mx.153-3.JF15/ap3g2-k9w8-xx.153-3.JF15" uncompressed and installed, entry point: 0x1003000
executing...
Restricted Rights Legend
Use, duplication, or disclosure by the Government is
subject to restrictions as set forth in subparagraph
(c) of the Commercial Computer Software - Restricted
Rights clause at FAR sec. 52.227-19 and subparagraph
(c) (1) (ii) of the Rights in Technical Data and Computer
Software clause at DFARS sec. 252.227-7013.
cisco Systems, Inc.
170 West Tasman Drive
San Jose, California 95134-1706
Cisco IOS Software, C2700 Software (AP3G2-K9W8-M), Version 15.3(3)JF15, RELEASE SOFTWARE (fc3)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2021 by Cisco Systems, Inc.
Compiled Sun 29-Aug-21 23:15 by mcpre
Antigua Board Pre-Pilot
40MB format
Tide XL MB - 40MB of flash
Initializing flashfs...
flashfs[2]: erasing block[1]...
flashfs[2]: erasing block[2]...
flashfs[2]: 290 files, 13 directories
flashfs[2]: 0 orphaned files, 0 orphaned directories
flashfs[2]: Total bytes: 40900608
flashfs[2]: Bytes used: 27389440
flashfs[2]: Bytes available: 13511168
flashfs[2]: flashfs fsck took 13 seconds.
flashfs[2]: Initialization complete.
flashfs[4]: 0 files, 1 directories
flashfs[4]: 0 orphaned files, 0 orphaned directories
flashfs[4]: Total bytes: 11999232
flashfs[4]: Bytes used: 1024
flashfs[4]: Bytes available: 11998208
flashfs[4]: flashfs fsck took 0 seconds.
flashfs[4]: Initialization complete.
Copying radio files from flash: to ram:
%Error opening flash:ap3g2-k9w8-mx.153-3.JF15/ap3g2-k9w8-xx.153-3.JF15E2.bin (No such file or directory)
%Error opening flash:ap3g2-k9w8-mx.153-3.JF15/ap3g2-k9w8-xx.153-3.JF15B2.bin (No such file or directory)
%Error opening flash:ap3g2-k9w8-mx.153-3.JF15/ap3g2-k9w8-xx.153-3.JF15V2.bin (No such file or directory)
%Error opening flash:ap3g2-k9w8-mx.153-3.JF15/ap3g2-k9w8-xx.153-3.JF15X2.bin (No such file or directory)
%Error opening flash:ap3g2-k9w8-mx.153-3.JF15/ap3g2-k9w8-xx.153-3.JF15HA2.bin (No such file or directory)
%Error opening flash:ap3g2-k9w8-mx.153-3.JF15/ap3g2-k9w8-xx.153-3.JF15Y2.bin (No such file or directory)
%Error opening flash:ap3g2-k9w8-mx.153-3.JF15/ap3g2-k9w8-xx.153-3.JF15R2.bin (No such file or directory)
%Error opening flash:ap3g2-k9w8-mx.153-3.JF15/ap3g2-k9w8-xx.153-3.JF15Q2.bin (No such file or directory)
%Error opening flash:ap3g2-k9w8-mx.153-3.JF15/ap3g2-k9w8-xx.153-3.JF15C2.bin (No such file or directory)
%Error opening flash:ap3g2-k9w8-mx.153-3.JF15/ap3g2-k9w8-xx.153-3.JF15F2.bin (No such file or directory)
%Error opening flash:ap3g2-k9w8-mx.153-3.JF15/ap3g2-k9w8-xx.153-3.JF15U2.bin (No such file or directory)
%Error opening flash:ap3g2-k9w8-mx.153-3.JF15/ap3g2-k9w8-xx.153-3.JF15triggerfish_cpld.img (No such file or directory)
Uncompressing radio files...
File not found: flash:ap3g2-k9w8-mx.153-3.JF15/ap3g2-k9w8-xx.153-3.JF158004.img
File not found: flash:ap3g2-k9w8-mx.153-3.JF15/ap3g2-k9w8-xx.153-3.JF15E5.bin
File not found: flash:ap3g2-k9w8-mx.153-3.JF15/ap3g2-k9w8-xx.153-3.JF15B5.bin
File not found: flash:ap3g2-k9w8-mx.153-3.JF15/ap3g2-k9w8-xx.153-3.JF15V5.bin
File not found: flash:ap3g2-k9w8-mx.153-3.JF15/ap3g2-k9w8-xx.153-3.JF15X5.bin
File not found: flash:ap3g2-k9w8-mx.153-3.JF15/ap3g2-k9w8-xx.153-3.JF15HA5.bin
File not found: flash:ap3g2-k9w8-mx.153-3.JF15/ap3g2-k9w8-xx.153-3.JF15Y5.bin
File not found: flash:ap3g2-k9w8-mx.153-3.JF15/ap3g2-k9w8-xx.153-3.JF15R5.bin
File not found: flash:ap3g2-k9w8-mx.153-3.JF15/ap3g2-k9w8-xx.153-3.JF15Q5.bin
File not found: flash:ap3g2-k9w8-mx.153-3.JF15/ap3g2-k9w8-xx.153-3.JF15C5.bin
File not found: flash:ap3g2-k9w8-mx.153-3.JF15/ap3g2-k9w8-xx.153-3.JF15F5.bin
File not found: flash:ap3g2-k9w8-mx.153-3.JF15/ap3g2-k9w8-xx.153-3.JF15U5.bin
File not found: flash:ap3g2-k9w8-mx.153-3.JF15/ap3g2-k9w8-xx.153-3.JF158006.img
...done Initializing flashfs.
Radio0 present 8764 8000 0 A8000000 A8010000 0
Rate table has 426 entries (20 legacy/0 11n/406 11ac)
POWER TABLE FILENAME = ram:
Radio1 present 8864 8000 0 80000000 80100000 4
POWER TABLE FILENAME = ram:
This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.
A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html
If you require further assistance please contact us by sending email to
export@cisco.com.
cisco AIR-CAP2702I-Q-K9 (PowerPC) processor (revision A0) with 376814K/134656K bytes of memory.
Processor board ID FGL1942XCYR
PowerPC CPU at 800Mhz, revision number 0x2151
Last reset from power-on
LWAPP image version 8.5.182.0
1 Gigabit Ethernet interface
2 802.11 Radios
32K bytes of flash-simulated non-volatile configuration memory.
Base ethernet MAC Address: E4:AA:5D:1A:B1:68
Part Number : 73-15824-03
PCB Serial Number : FOC19384L85
Top Assembly Part Number : 800-41174-03
Top Assembly Serial Number : FGL1942XCYR
Top Revision Number : A0
Product/Model Number : AIR-CAP2702I-Q-K9
% Please define a domain-name first.
Press RETURN to get started!
*Mar 1 00:00:18.027: %SOAP_FIPS-2-SELF_TEST_IOS_SUCCESS: IOS crypto FIPS self test passed (15)
*Mar 1 00:00:18.483: Registering HW DTLS
*Mar 1 00:00:19.343: Starting Ethernet promiscuous mode
*Mar 1 00:00:19.407: %DOT11-4-LOADING_RADIO: Interface Dot11Radio0, loading the radio firmware (ram:)
*Mar 1 00:00:31.495:
Cmd 0x1E Timeout d0 After 12s
*Mar 1 00:00:31.495: %DOT11-2-FAILURE_RADIO_RESET: Interface Dot11Radio0, reset due to FW: hostmem badmagic=00000000, SQRAM badmagic, @01E0A0AE,s@01293E69(14)
*Mar 1 00:00:31.499: %LINK-6-UPDOWN: Interface GigabitEthernet0, changed state to up
*Mar 1 00:00:31.499: %LINK-6-UPDOWN: Interface GigabitEthernet1, changed state to up
*Mar 1 00:00:31.535: loading Power Tables from ram:. Class = Q
*Mar 1 00:00:31.535: record size of 2ss: 404 read_ptr: 603DC28
*Mar 1 00:00:31.535: FREE PWR TABLES
*Mar 1 00:00:31.595: %DOT11-4-LOADING_RADIO: Interface Dot11Radio1, loading the radio firmware (ram:)
*Mar 1 00:00:43.611:
Cmd 0x1E Timeout d1 After 12s
*Mar 1 00:00:43.611: %DOT11-2-FAILURE_RADIO_RESET: Interface Dot11Radio1, reset due to FW: hostmem badmagic=00000000, SQRAM badmagic, @02997A6B,s@01E2369D(14)
*Mar 1 00:00:43.647: loading Power Tables from ram:. Class = Q
*Mar 1 00:00:43.647: record size of 2ss: 404 read_ptr: 603DC28
*Mar 1 00:00:43.647: FREE PWR TABLES
*Mar 1 00:00:43.687: %LWAPP-3-CLIENTERRORLOG: Load nvram:/lwapp_ap.cfg config failed, trying backup...
*Mar 1 00:00:43.691: %LWAPP-3-CLIENTERRORLOG: Load nvram:/lwapp_ap.cfg.bak config failed...APAVC Registering AVC licences on the AP to make sure we enable advanced PP
*Mar 1 00:00:45.035: SCHED: Ethernet Bridge Process: install watched boolean System Initialized(60269B8), os:1 ah:0APAVC Protocol list already initialized.
*Mar 1 00:00:45.035: Start STILE Activation
APAVC: Succeeded to activate all the STILE protocols.
APAVC: Registering with CFT
*Mar 1 00:00:45.283: APAVC: CFT registration of delete callback succeeded
APAVC: Reattaching Original Buffer pool for system use
*Mar 1 00:00:46.943: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0, changed state to down
*Mar 1 00:00:46.943: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet1, changed state to down
*Mar 1 00:00:47.923: %SYS-5-RESTART: System restarted --
Cisco IOS Software, C2700 Software (AP3G2-K9W8-M), Version 15.3(3)JF15, RELEASE SOFTWARE (fc3)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2021 by Cisco Systems, Inc.
Compiled Sun 29-Aug-21 23:15 by mcpre
*Mar 1 00:00:47.923: %SNMP-5-COLDSTART: SNMP agent on host ap is undergoing a cold start
*Mar 1 00:00:47.983: SCHED: Ethernet Bridge Process: remove watched boolean System Initialized(60269B8)
*Mar 1 00:00:47.983: SCHED: Ethernet Bridge Process: install watched queue Soap BVI input queue(BAB67E0), os:0 ah:0
*Mar 1 00:00:48.051: %DOT11-2-FAILURE_RADIO_RESET: Interface Dot11Radio0, reset due to FC failure occured due to RADIO_FC_CODE_UNDEF(10)
*Mar 1 00:00:48.051: %DOT11-2-FAILURE_RADIO_RESET: Interface Dot11Radio1, reset due to FC failure occured due to RADIO_FC_CODE_UNDEF(10)
*Mar 1 00:00:48.051: %CDP_PD-4-POWER_OK: Full power - HIGH_POWER inline power source
*Mar 1 00:00:48.063: bsnInitRcbSlot: slot 0 has venus radio(UNSUPPORT)
*Mar 1 00:00:48.063: bsnInitRcbSlot: slot 1 has venus radio(UNSUPPORT)
*Mar 1 00:00:48.063: bsnInitRcbSlot: Slot 1 has same radio type as slot 0. Disabling radio in slot 1.
*Mar 1 00:00:48.063: %LWAPP-3-CLIENTERRORLOG: Load nvram:/lwapp_ap.cfg config failed, trying backup...
*Mar 1 00:00:48.063: %LWAPP-3-CLIENTERRORLOG: Load nvram:/lwapp_ap.cfg.bak config failed...
*Mar 1 00:00:48.067: %CAPWAP-5-AP_EASYADMIN_INFO: AP Easy Admin information - EASY_ADMIN is not set, turn off easy admin service!
*Mar 1 00:00:48.067: %CAPWAP-5-AP_EASYADMIN_INFO: AP Easy Admin information - Easy Admin is not enabled, turn it off!
lwapp_crypto_init: MIC Present and Parsed Successfully
*Mar 1 00:00:49.359: %LINEPROTO-5-UPDOWN: Line protocol on Interface BVI1, changed state to up
*Mar 1 00:00:50.451: %LINK-5-CHANGED: Interface GigabitEthernet1, changed state to administratively down
*Mar 1 00:00:54.027: %SOAP_FIPS-2-SELF_TEST_HW_SUCCESS: HW crypto FIPS self test passed (2-16)
*Mar 1 00:00:54.027: DPAA Initialization Complete
*Mar 1 00:00:54.027: %SYS-3-HARIKARI: Process DPAA INIT top-level routine exited
*Mar 1 00:00:55.027: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0, changed state to up
User Access Verification
Username:
Username: Cisco
Password:
*Mar 1 00:01:06.327: Currently running a Release Image
*Mar 1 00:01:06.351: Using SHA-2 signed certificate for image signing validation.
APe4aa.5d1a.b168>
APe4aa.5d1a.b168>sh ver
Cisco IOS Software, C2700 Software (AP3G2-K9W8-M), Version 15.3(3)JF15, RELEASE SOFTWARE (fc3)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2021 by Cisco Systems, Inc.
Compiled Sun 29-Aug-21 23:15 by mcpre
ROM: Bootstrap program is C2700 boot loader
BOOTLDR: C2700 Boot Loader (AP3G2-BOOT-M) LoaderVersion 15.2(4)JB5m, RELEASE SOFTWARE (fc2)
APe4aa.5d1a.b168 uptime is 1 minute
System returned to ROM by power-on
System image file is "flash:ap3g2-k9w8-mx.153-3.JF15/ap3g2-k9w8-xx.153-3.JF15"
Last reload reason:
This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.
A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html
If you require further assistance please contact us by sending email to
export@cisco.com.
cisco AIR-CAP2702I-Q-K9 (PowerPC) processor (revision A0) with 376814K/134656K bytes of memory.
Processor board ID FGL1942XCYR
PowerPC CPU at 800Mhz, revision number 0x2151
Last reset from power-on
LWAPP image version 8.5.182.0
1 Gigabit Ethernet interface
2 802.11 Radios
32K bytes of flash-simulated non-volatile configuration memory.
Base ethernet MAC Address: E4:AA:5D:1A:B1:68
Part Number : 73-15824-03
PCB Serial Number : FOC19384L85
Top Assembly Part Number : 800-41174-03
Top Assembly Serial Number : FGL1942XCYR
Top Revision Number : A0
Product/Model Number : AIR-CAP2702I-Q-K9
Configuration register is 0xF
APe4aa.5d1a.b168>
%Default route without gateway, if not a point-to-point interface, may impact performance
*Mar 1 00:01:18.619: AP image integrity check PASSED
*Mar 1 00:01:18.691: Non-recovery image. PNP Not required.
*Mar 1 00:01:18.703: Cert ISSUER (39): cn=Cisco Manufacturing CA SHA2,o=Cisco
*Mar 1 00:01:18.923: %EVT-4-WRN: Write of flash:/event.r0 done
*Mar 1 00:01:19.523: mvl_radio_coredump: Last reset code: 10; hostmem ptr 1F31CF08
*Mar 1 00:01:19.855: %EVT-4-WRN: Write of flash:/event.r1 done
*Mar 1 00:01:20.267: Writing radio coredump to 'flash:/r0.rcore', flags 1
*Mar 1 00:01:20.267: Free space on flash for radio core dump: 12340224
%Error opening flash:/capwap-saved-config (No such file or directory)
%Error opening flash:/capwap-saved-config-bak (No such file or directory)
*Mar 1 00:01:28.759: %SYS-6-LOGGINGHOST_STARTSTOP: Logging to host 255.255.255.255 port 0 CLI Request Triggered
*Mar 1 00:01:29.795: %SYS-6-LOGGINGHOST_STARTSTOP: Logging to host 255.255.255.255 port 514 started - CLI initiated
POWER TABLE FILENAME = ram:
POWER TABLE FILENAME = ram:
*Mar 1 00:01:32.303:
Cmd 0x26 Timeout d0 After 12s
*Mar 1 00:01:32.303: FW coredump command failed 0/0.
*Mar 1 00:01:32.303: No coredump info received from firmware, hung=0
*Mar 1 00:01:32.311: mvl_radio_coredump: Last reset code: 10; hostmem ptr 1F3216C4
*Mar 1 00:01:32.319: Writing radio coredump to 'flash:/r1.rcore', flags 1
*Mar 1 00:01:32.319: Free space on flash for radio core dump: 12339200
*Mar 1 00:01:32.403: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to reset
*Mar 1 00:01:33.395: %DOT11-4-LOADING_RADIO: Interface Dot11Radio0, loading the radio firmware (ram:)
*Mar 1 00:01:33.399: %DOT11-4-LOADING_RADIO: Interface Dot11Radio0, loading the radio firmware (ram:)
*Mar 1 00:01:33.403: loading Power Tables from ram:. Class = Q
*Mar 1 00:01:33.403: record size of 2ss: 404 read_ptr: A90BAA8
*Mar 1 00:01:33.403: FREE PWR TABLES
*Mar 1 00:01:33.407: loading Power Tables from ram:. Class = Q
*Mar 1 00:01:33.407: record size of 2ss: 404 read_ptr: A90BAC0
*Mar 1 00:01:33.407: FREE PWR TABLES
*Mar 1 00:01:33.411: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to down
*Mar 1 00:01:33.451: %DOT11-2-NO_CHAN_AVAIL: Interface Dot11Radio0, no channel available.なにかエラーを吐いているようです?
不完全のようですが、WLCに収容されればファームも書き換わるので、このまま進めます。
APにIPアドレスを設定して収容する
早速、WLCのPoEポート(3, 4)にAPを接続して電源を入れておきます。
APがWLCの存在を知るには、コマンドを入れて明示的にWLCのIPアドレスを指定してあげるか、DHCPで配布する方法があります。
DHCPでIPを配布するには、DHCPサーバー側(IX2215)のoption 43でWLCのIPアドレスを知らせるように設定しましょう。
今回はAPにコンソール経由でIPを設定してしまう方法にします。
先ほど、ファームウェアを入れ替えてあるので、初期ユーザー名、パスワードはCiscoになります。
APe4aa.5d1a.b168>ena
Password:
APe4aa.5d1a.b168#capwap ap ip address 10.5.50.5 255.255.255.0
You should configure Domain and Name Server from controller CLI/GUI.
APe4aa.5d1a.b168#capwap ap ip default-gateway 10.5.50.1
APe4aa.5d1a.b168#capwap ap controller ip address 10.5.50.4
APe4aa.5d1a.b168#ここまで設定すれば基本的にはWLC側から見えるはずですので、WebUIを確認しましょう。
しかし、WLCと時刻がずれていると認識されないので、show clockコマンドで確認し、ズレがあればclock setコマンドで手動設定します。
APe4aa.5d1a.b168#show clock
*09:12:25.831 UTC Sat Jan 1 2000
APe4aa.5d1a.b168#
APe4aa.5d1a.b168#clock ?
set Set the time and date
APe4aa.5d1a.b168#clock set 00:53:00 7 Jun 2024
APe4aa.5d1a.b168#WLC側も上部の「COMMANDS」メニューから「Set Time」で時刻を設定しておきます。
うまく認識されない場合は、APを一度再起動してみると良いです。
WLCからAPが見えると、ファームウェアの書き換え処理が走り、最初のうちは何度か再起動をすることがあるので、AP側のコンソールを確認しておくと良いと思われます。
SSIDを設定するためにIX2215にVLANを増やす
先ほどの設定では、マネジメントとしてVLAN50を使用しました。
実際にWifiとして出すために、もちろんそのままVLAN50を出しても良いのですが、別VLANを用意してみます。
Router# ena
Enter configuration commands, one per line. End with CNTL/Z.
Router(config)# sh ru
! NEC Portable Internetwork Core Operating System Software
! IX Series IX2215 (magellan-sec) Software, Version 10.1.16, RELEASE SOFTWARE
! Compiled Apr 11-Thu-2019 13:56:59 JST #2
! Current time Jun 07-Fri-2024 03:01:46 JST
!
timezone +09 00
!
!
ip dhcp enable
!
!
!
!
!
bridge irb enable
!
!
!
!
!
proxy-dns ip enable
!
!
!
!
ip dhcp profile vlan50-dhcp
assignable-range 10.5.50.100 10.5.50.200
default-gateway 10.5.50.1
dns-server 10.5.50.1
!
ip dhcp profile vlan60-dhcp
assignable-range 10.5.60.100 10.5.60.200
default-gateway 10.5.60.1
dns-server 10.5.60.1
!
device GigaEthernet0
!
device GigaEthernet1
!
device GigaEthernet2
!
device BRI0
isdn switch-type hsd128k
!
device USB0
shutdown
!
interface GigaEthernet0.0
ip address dhcp receive-default
ip napt enable
no shutdown
!
interface GigaEthernet1.0
no ip address
no shutdown
!
interface GigaEthernet2.0
no ip address
bridge-group 50
no shutdown
!
interface BRI0.0
encapsulation ppp
no auto-connect
no ip address
shutdown
!
interface USB-Serial0.0
encapsulation ppp
no auto-connect
no ip address
shutdown
!
interface GigaEthernet1.5
encapsulation dot1q 50 tpid 8100
no auto-connect
no ip address
bridge-group 50
no shutdown
!
interface GigaEthernet1.6
encapsulation dot1q 60 tpid 8100
no auto-connect
no ip address
bridge-group 60
no shutdown
!
interface BVI5
description VLAN50
ip address 10.5.50.1/24
ip dhcp binding vlan50-dhcp
bridge-group 50
no shutdown
!
interface BVI6
description VLAN60
ip address 10.5.60.1/24
ip dhcp binding vlan60-dhcp
bridge-group 60
no shutdown
!
interface Loopback0.0
no ip address
!
interface Null0.0
no ip address
Router(config)# 先程のVLAN50をTagで出した設定に、VLAN60の設定を加えます。
TagでVLANを増やしているので、接続されているWLCのポート1にそのままTagのVLANが増えている状態です。
そのため、この設定をIX2215に入れたあとには、インターフェース設定でVLANID:60を受けるインターフェースを追加します。
設定の上で重要な点ですが、DHCPリレーを有効にして設定してあるので、インターフェースのIPを1個消費します。
単純にL2レベルでそのまま透過するわけではないので、IPの割り当てに注意しておきましょう。