Re: [WIRELESS-LAN] WiSM-1 to WiSM-2 migration strategy....
Hector, Our guys followed a similar process to what Dennis posted and the migration went fine. We went from 12.2(33)SXH8a to 12.2(33)SXJ2 on our 6500's. The way in which you configure the WiSM's/port channels is different. You don't actually configure the channels manually any more, you run specific WiSM commands. That really is the only gotcha that I can think of. Everything else is very similar, easier to manage even. We have been fighting issues with WiSM2 code/HA though. We had to upgrade to 7.4 in order to do N+1, but the 7.4 code that we were running at the time (7.4.100.0) had 1142 AP related bugs, so we were forced to downgrade to 7.3 and hence lost N+1 HA. We have since acquired two more WISM2-HA SKU controllers in order to do AP SSO HA, but then we found our controllers failing back and forth between the HA and the primaries continuously, this would eventually cause the APs to lock up. The guys are working with TAC right now on this and just upgraded things to 7.4.100.60, so we will see how that goes. So far this a.m. the only issue is that our service ports aren't working. We are running about 2100 APs across three WiSM2's. Just keep an eye on your HA setup, ours has been difficult so far, hopefully you have a better experience with it. --Joe On Wed, Jul 31, 2013 at 4:57 PM, Hector J Rios hr...@lsu.edu wrote: The only thing that I can add of value is that our VLAN subnet sizes will not change. They will remain at /22's. but now that we are on the 7.4 code, we will leverage interface groups to provide enough IP space to our main SSID. We are not using VSS. We bought HA controllers because they were so affordable and in the 7.4 code they can function in N+1 mode (haven't tested yet; just drank the koolaid). Regarding v6, there is nothing new, but we have seen issues with multicast that we've been able to replicate on both WiSM1s and WiSM2s, and also on the 7.0.116.0 and 7.4.100.60 codes. Basically, a user will obtain an IPv6 address. When the user moves to another AP in the same controller, that user no longer receiver RAs. We've tested this with the WiSM in multicast-multicast mode. Our only solution that we've found at the moment is to disable multicast on the controller, and surprisingly, that works. But if we do that, we can take advantage of the new Bonjour gateway feature. I won't go into that cause it just gives me headaches. Thanks, Hector Rios, CCNA, CCA Assistant Director, Network Engineering Dept. of Networking and Infrastructure Information Technology Services Louisiana State University Phone: (225) 578-1333 Email: hr...@lsu.edu -- Joe Roth Networking Group Binghamton University Ph. 607-777-7528 Fax 607-777-4009 ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
Re: [WIRELESS-LAN] WiSM-1 to WiSM-2 migration strategy....
We have gone through the migration last year and it was a smooth process. Below are our procedures: 1. Prepare wism-2's in lab: 1) upgrade code, upload ssl certificate and webauth bundle. 2) take one existing wism-1 configuration backup and modify the configuration file using a text editor. We only needed to modify these configurations: add more dynamic interfaces from other wism-1 modules(or enlarge the vlans for existing dynamic interfaces), system names and prompt names. This method works for us as all our wism-1 modules have similar configurations except for IPs and VLANs. 2. In maintenance window, just swap the wism-1's with wism-2's, then modify mobility group configurations with the new wism-2's mac addresses. Everything should continue to work. WISM2 have special requirement about SUP IOS version(I think SXJ1 and above). Double check it on CCO. We are not using VSS for WISMs. --- Dennis Xu Analyst 3, Network Infrastructure Computing and Communications Services(CCS) University of Guelph 519-824-4120 Ext 56217 d...@uoguelph.ca www.uoguelph.ca/ccs - Original Message - From: Danny Eaton dannyea...@rice.edu To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Sent: Wednesday, July 31, 2013 11:49:26 AM Subject: [WIRELESS-LAN] WiSM-1 to WiSM-2 migration strategy We just got two pair of WiSM-2's for migration. I'd like to talk (off-line, if necessary) with anyone who has recently gone through this, as to pitfalls, lessons learned, and what not to do. I'd like to make this easy on myself, if possible. Thoughts are - currently 6 WiSM-1's in 6506-E's with Sup-720/3C and 2 4404's running 1,400 APs (a smattering of 1252's, primarily 1142's and 33502's) with 3 SSID's (4 when eduroam comes online fully) New hardware is 2 WiSM-2 pairs. Questions will be - VSS, or no-VSS (pros and cons)? VLAN/subnet size? IPv6 caveats? Issues with iDevices? Android? Thanks in advance... Respectfully, Danny Eaton Snr. Network Architect Networking, Telecommunications, Operations Rice University, IT Mudd Bldg, RM #205 Jones College Associate Staff Advisory Committee Employee Activities Subcommittee Chair Office - 713-348-5233 Cellular - 832-247-7496 dannyea...@rice.edu Soli Deo Gloria Matt 18:4-6 G.K. Chesterton, “Christianity has not been tried and found wanting. It’s been found hard and left untried.” ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
Re: [WIRELESS-LAN] WiSM-1 to WiSM-2 migration strategy....
Sorry I missed one step 3) to upload the modified configuration to wism-2. --- Dennis Xu Analyst 3, Network Infrastructure Computing and Communications Services(CCS) University of Guelph 519-824-4120 Ext 56217 d...@uoguelph.ca www.uoguelph.ca/ccs - Original Message - From: Dennis Xu d...@uoguelph.ca To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Sent: Wednesday, July 31, 2013 12:55:20 PM Subject: Re: [WIRELESS-LAN] WiSM-1 to WiSM-2 migration strategy We have gone through the migration last year and it was a smooth process. Below are our procedures: 1. Prepare wism-2's in lab: 1) upgrade code, upload ssl certificate and webauth bundle. 2) take one existing wism-1 configuration backup and modify the configuration file using a text editor. We only needed to modify these configurations: add more dynamic interfaces from other wism-1 modules(or enlarge the vlans for existing dynamic interfaces), system names and prompt names. This method works for us as all our wism-1 modules have similar configurations except for IPs and VLANs. 2. In maintenance window, just swap the wism-1's with wism-2's, then modify mobility group configurations with the new wism-2's mac addresses. Everything should continue to work. WISM2 have special requirement about SUP IOS version(I think SXJ1 and above). Double check it on CCO. We are not using VSS for WISMs. --- Dennis Xu Analyst 3, Network Infrastructure Computing and Communications Services(CCS) University of Guelph 519-824-4120 Ext 56217 d...@uoguelph.ca www.uoguelph.ca/ccs - Original Message - From: Danny Eaton dannyea...@rice.edu To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Sent: Wednesday, July 31, 2013 11:49:26 AM Subject: [WIRELESS-LAN] WiSM-1 to WiSM-2 migration strategy We just got two pair of WiSM-2's for migration. I'd like to talk (off-line, if necessary) with anyone who has recently gone through this, as to pitfalls, lessons learned, and what not to do. I'd like to make this easy on myself, if possible. Thoughts are - currently 6 WiSM-1's in 6506-E's with Sup-720/3C and 2 4404's running 1,400 APs (a smattering of 1252's, primarily 1142's and 33502's) with 3 SSID's (4 when eduroam comes online fully) New hardware is 2 WiSM-2 pairs. Questions will be - VSS, or no-VSS (pros and cons)? VLAN/subnet size? IPv6 caveats? Issues with iDevices? Android? Thanks in advance... Respectfully, Danny Eaton Snr. Network Architect Networking, Telecommunications, Operations Rice University, IT Mudd Bldg, RM #205 Jones College Associate Staff Advisory Committee Employee Activities Subcommittee Chair Office - 713-348-5233 Cellular - 832-247-7496 dannyea...@rice.edu Soli Deo Gloria Matt 18:4-6 G.K. Chesterton, “Christianity has not been tried and found wanting. It’s been found hard and left untried.” ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
RE: [WIRELESS-LAN] WiSM-1 to WiSM-2 migration strategy....
The only thing that I can add of value is that our VLAN subnet sizes will not change. They will remain at /22's. but now that we are on the 7.4 code, we will leverage interface groups to provide enough IP space to our main SSID. We are not using VSS. We bought HA controllers because they were so affordable and in the 7.4 code they can function in N+1 mode (haven't tested yet; just drank the koolaid). Regarding v6, there is nothing new, but we have seen issues with multicast that we've been able to replicate on both WiSM1s and WiSM2s, and also on the 7.0.116.0 and 7.4.100.60 codes. Basically, a user will obtain an IPv6 address. When the user moves to another AP in the same controller, that user no longer receiver RAs. We've tested this with the WiSM in multicast-multicast mode. Our only solution that we've found at the moment is to disable multicast on the controller, and surprisingly, that works. But if we do that, we can take advantage of the new Bonjour gateway feature. I won't go into that cause it just gives me headaches. Thanks, Hector Rios, CCNA, CCA Assistant Director, Network Engineering Dept. of Networking and Infrastructure Information Technology Services Louisiana State University Phone: (225) 578-1333 Email: hr...@lsu.edu
