思科无线控制器冗余解决方案有两个选项,即备份控制器或高可用性,具体取决于WLC的固件版本,故障转移时间要求和预算。

使用备份控制器方法,当访问点与本地区域中的主控制器失去连接时,位于另一个位置的单个控制器可以充当访问点的备份。集中式和区域性控制器不必位于同一移动组中。您可以为网络中的特定访问点指定主要,次要和第三级控制器。使用控制器GUI或CLI,您可以指定备份控制器的IP地址,这将使访问点能够故障转移到移动组之外的控制器。您可以通过GUI,CLI甚至SNMP在控制器上为AP设置主控制器和辅助控制器。使用备份控制器,在WLC出现故障的情况下,AP将开始搜索其辅助控制器并重新建立其CAPWAP隧道。明显的不利因素是,在AP放弃其隧道并开始将其重新构建到辅助控制器时,客户端可能会发生中断。

在Cisco Unified无线网络软件版本7.3和7.4中设置的新的高可用性(HA)功能(即AP SSO)允许接入点(AP)与活动WLC建立CAPWAP隧道并共享以下内容的镜像副本:带有备用WLC的AP数据库。当活动WLC发生故障并且备用WLC接管网络作为活动WLC时,AP不会进入发现状态。 AP和处于活动状态的WLC之间一次仅维护一个CAPWAP隧道。向Cisco Unified无线LAN添加AP SSO支持的总体目标是减少由于盒式故障转移或网络故障转移而引起的故障情况而导致的无线网络中的主要停机时间。一旦您购买了第二个WLC并获得了专门的备用许可, 它与主控制器共享IP地址和会话/配置/ AP信息。

相关文章:

现在说了什么,哪个更好?基于一些 专业意见 我从互联网上发现:

“如果不同网络上的现有5508具有足够的可用容量来承载任一站点的负载,并且WLC发生故障,您的企业可以承受几分钟的停机时间,则备份控制器是更便宜的方式。在这种情况下,只需在每个访问点上配置辅助控制器,然后就可以使用了。请注意,使用备份控制器会有更多的管理开销,您将必须为每个网络中所有SSID配置VLAN /接口,如果使用它们,则在每个控制器上创建AP组,等等。现在,当WLC进入在AP迁移过程中,用户在站点上会遇到一些停机时间,但至少他们并没有遇到困难。

如果您没有现有5508的容量,并且/或者您的企业无法忍受Backup Controllers方法中的故障转移时间,那么高可用性将成为一种合理的解决方案。换句话说,如果您现有的控制器上没有足够的容量将它们用作彼此的备份,并且您无论如何都要花一些钱,我建议您考虑一下高可用性解决方案和定价。 ”

拓扑结构: 



WLC-1启用:(已在生产中)

管理:10.9.1.10/24
冗余-MGNT:10.9.1.22/24
Service-Port: 10.9.20.30 / 24
虚拟: 2.2.2.2
WLC-2中学
管理:10.9.1.21/24(仅用于临时完成配置)
冗余-MGNT:10.9.1.23 /24
Service-Port: 10.9.20.31 / 24
虚拟: 2.2.2.2(与活动单位相同)
一些条款:
冗余管理界面
该接口上的IP地址应与管理接口配置在同一子网中。一旦活动WLC不响应冗余端口上的Keepalive消息,此接口将通过网络基础结构检查活动WLC的运行状况。这将对网络和活动WLC提供额外的运行状况检查,并确认是否应该执行切换。同样,备用WLC使用此接口来发送ICMP ping数据包以检查网关的可达性。如果Box发生故障或手动重置,此接口也可用于将通知从活动WLC发送到备用WLC。备用WLC将使用此接口以便与Syslog,NTP服务器和TFTP服务器通信以进行任何配置上载。
 
冗余端口
该接口在新的HA架构中具有非常重要的作用。使用冗余端口将启动期间的批量配置和增量配置从活动WLC同步到备用WLC。 HA设置中的WLC将使用此端口执行HA角色协商。冗余端口还用于检查对等点可达性,每隔100毫秒(默认计时器)从备用WLC发送UDP保持活动消息到备用WLC。同样,如果包装箱发生故障,活动WLC也会通过冗余端口将通知发送到备用WLC。如果未配置NTP服务器,则会从活动WLC到冗余端口上的备用WLC进行手动时间同步。在独立控制器的情况下,此端口将被分配一个自动生成的IP地址,在WISM-2情况下,将为冗余VLAN分配一个自动生成的IP地址,其中从冗余管理接口的最后2个八位字节中选取最后2个八位字节(前两个八位字节始终为169.254)。

注意:启用HA后,您只能使用控制台端口对两个WLC进行控制台访问。只有主HA有权访问GUI。 启用AP SSO后,HA设置中的两个WLC的服务端口上都没有SNMP访问权限。您可以通过控制台进入WLC,也可以通过https / ssh进入主HA。 使用启用了AP SSO的http / https / telnet / ssh可以访问的唯一主机。

初始配置
System Name [Cisco_e3:7b:64] (31 characters max): 
AUTO-INSTALL: no interfaces registered.

AUTO-INSTALL: process terminated -- no configuration loaded

Enter Administrative User Name (24 characters max): admin
Enter Administrative Password (3 to 24 characters): **********
Re-enter Administrative Password                 : **********


Service Interface IP Address Configuration [static][DHCP]: static
Service Interface IP Address: 10.9.20.31
Service Interface Netmask: 255.255.255.128

Enable Link Aggregation (LAG) [yes][NO]: no

Management Interface IP Address: 10.9.1.21
Management Interface Netmask: 255.255.255.0
Management Interface Default Router: 10.9.1.1
Cleaning up Provisioning SSID
Management Interface VLAN Identifier (0 = untagged): 
Management Interface Port Num [1 to 8]: 1
Management Interface DHCP Server IP Address: 
Invalid response

Management Interface DHCP Server IP Address: 10.9.1.2

Enable HA [yes][NO]: no

Virtual Gateway IP Address: 2.2.2.2

Mobility/RF Group Name: 
Invalid response


Mobility/RF Group Name: test

Network Name (SSID): 
Invalid response


Network Name (SSID): TEST-commercial

Configure DHCP Bridging Mode [yes][NO]: no

Allow Static IP Addresses [YES][no]: yes

Configure a RADIUS Server now? [YES][no]: no
Warning! The default WLAN security policy requires a RADIUS server.
Please see documentation for more details.

Enter Country Code list (enter 'help' for a list of countries) [US]: 

Enable 802.11b 网络 [YES][no]: n
Invalid response


Enable 802.11b 网络 [YES][no]: no
Enable 802.11a 网络 [YES][no]: no
Enable Auto-RF [YES][no]: no

Configure a NTP server now? [YES][no]: no
Configure the system time now? [YES][no]: no

Warning! No AP will come up unless the time is set.
Please see documentation for more details.

Would you like to configure IPv6 parameters[YES][no]: no

Configuration correct? If yes, system will save it and reset. [yes][NO]: yes

Configuration saved!
Resetting system with new configuration...


 

配置HA步骤:
 

两个WLC 5508上的物理端口和连接:

 

1.根据计划配置接口IP地址

有源WLC-1:(已在生产中)

备用WLC-2 :(新添加)



2.控制器冗余全局配置

有源WLC-1:(已在生产中)

备用WLC-2 :(新添加)

3.连接冗余端口电缆



4.更改主要WLC上的SSO配置

它将保存您的配置并重新启动它。

(Cisco Controller) 

Enter User Name (or 'Recover-Config' this 上 e-time 上 ly to reset configuration to factory defaults)

User:  Creating license client restartability thread

Exit Called
Switchdrvr exited!
Restarting system.


WLCNG Boot Loader Version 1.0.20 (Built 上  Jan  9 2014 at 19:02:44 by cisco)
Board Revision 1.3 (SN: FCW2017B091, Type: AIR-CT5508-K9) (G)

Verifying boot loader integrity... OK.

OCTEON CN5645-NSP pass 2.1, Core clock: 600 MHz, DDR clock: 330 MHz (660 Mhz data rate)
FPGA Revision 1.7
Env FW Revision 1.8
USB Console Revision 2.2
CPU Cores:  10
DRAM:  1024 MB
Flash: 32 MB
Clearing DRAM........ done
Network: octeth0', octeth1
  ' - Active interface
  E - Environment MAC address override
CF Bus 0 (IDE): OK 
IDE device 0:
 - Model: SGEFD1GHB9P1D221 Firm: FW981 Ser#: STP194512FP
 - Type: Hard Disk
 - Capacity: 977.4 MB = 0.9 GB (2001888 x 512)


Press <ESC> now to access the Boot Menu...

Loading primary image (8.2.151.0)
100% 

36899306 bytes read
Launching...
init started: BusyBox v1.6.0 (2010-05-13 17:50:10 EDT) multi-call binary
starting pid 847, tty '': '/etc/init.d/rcS'
Decompressing... OK 
Validating...... OK 
Set PLX switch MPS settings .............!!!!!!!
Detecting Hardware ...
set smp_affinity for irq 48
003f
DP from CGE5.0 ...
starting pid 1156, tty '/dev/ttyS0': '/usr/bin/gettyOrMwar'
Setting up ZVM
Exporting LD_LIBRARY_PATH

Cryptographic library self-test....
Testing SHA1 Short Message 1
Testing SHA256 Short Message 1
Testing SHA1 Short Message 1
SHA1 POST PASSED
passed!

XML config selected
Validating XML configuration
octeon_device_init: found 1 DPs
readCPUConfigData: cardid 0x6070001
Cisco is a trademark of 思科公司 Systems, Inc.
Software Copyright 思科公司 Systems, Inc. All rights reserved.

Cisco AireOS Version 8.2.151.0
Firmware Version FPGA 1.7, Env 1.8, USB console 2.2
Initializing OS Services: ok
Initializing Serial Services: ok
Initializing 网络 Services: ok
Initializing Licensing Services: ok

License daemon start initialization.....

License daemon running.....
Starting Statistics Service: ok
Starting Licensing Services: ok
Starting ARP Services: ok
Starting Trap Manager: ok
Starting 网络 Interface Management Services: ok
Starting System Services: ok
Starting FIPS Features: ok : Not enabled
Starting SNMP services: ok
Starting Fastpath Hardware Acceleration: ok
Starting Fastpath Console redirect : ok
Starting Fastpath DP Heartbeat : ok
Fastpath CPU0.00: Starting Fastpath Application. SDK-1.8.0, build 269. Flags-[DUTY CYCLE] : ok
Fastpath CPU0.00: Initializing last packet received queue. Num of cores(10)
Fastpath CPU0.00: Init MBUF size: 1856, Subsequent MBUF size: 2041
Fastpath CPU0.00: Core 0 Initialization and FIPS self-test: ok
Fastpath CPU0.00: 10 Cores are being initialized 
Fastpath CPU0.00: Initializing Timer...
Fastpath CPU0.00: Initializing Timer...done.
Fastpath CPU0.00: Initializing Timer...
Fastpath CPU0.00: Initializing NBAR AGING Timer...done.
Fastpath CPU0.00: Received instruction to get link status
Fastpath CPU0.01: Core 1 Initialization and FIPS self-test: ok
Fastpath CPU0.02: Core 2 Initialization and FIPS self-test: ok
Fastpath CPU0.03: Core 3 Initialization and FIPS self-test: ok
Fastpath CPU0.04: Core 4 Initialization and FIPS self-test: ok
Fastpath CPU0.05: Core 5 Initialization and FIPS self-test: ok
Fastpath CPU0.06: Core 6 Initialization and FIPS self-test: ok
Fastpath CPU0.07: Core 7 Initialization and FIPS self-test: ok
Fastpath CPU0.08: Core 8 Initialization and FIPS self-test: ok
Fastpath CPU0.09: Core 9 Initialization and FIPS self-test: ok
Starting Switching Services: ok
Starting QoS Services: ok
Starting Policy Manager: ok
Starting Data Transport Link Layer: ok
Starting Access Control List Services: ok
Starting System Interfaces: ok
Starting Client Troubleshooting Service: ok
Starting Certificate Database: ok
Starting 虚拟专用网 Services: ok
Starting Management Frame Protection: ok
Starting DNS Services: ok
Starting Redundancy: Starting Peer Search Timer of 120 seconds
Initiate Role Negotiation Message to peer

Role Negotiation timeout. Didn't find Peer..

Peer WLC is not reachable
Negotiation Timeout. Primary controller will become Active-no-Peer
ok 
Start rmgrPingTaskok
Starting LWAPP: ok
Starting CAPWAP: ok
Starting LOCP: ok 
Starting 安全 Services: ok
Starting Policy Manager: ok
Starting Authentication Engine: ok
Starting Mobility Management: ok
Starting Ethernet-over-IP: ok
Starting Capwap Ping Component: ok
Starting AVC Services: ok
Starting AVC Flex Services: ok
Starting Virtual AP Services: ok
Starting AireWave Director: ok
Starting 网络 Time Services: ok
Starting 思科公司 Discovery Protocol: ok
Starting Broadcast Services: ok
Starting Logging Services: ok
Starting DHCP Server: ok
Starting IDS Signature Manager: ok
Starting RFID Tag Tracking: ok
Starting RF Profiles: ok
Starting Power Supply and Fan Status Monitoring Service: ok
Starting Mesh Services:  ok
Starting TSM: ok
Starting CIDS Services: ok
Starting Ethernet-over-IP: ok
Starting DTLS server:  enabled in CAPWAP
Starting CleanAir: ok
Starting WIPS: ok 
Starting SSHPM LSC PROV LIST: ok 
Starting RRC Services: ok
Starting SXP Services: ok
Starting Alarm Services: ok
Starting FMC HS: ok 
Starting IPv6 Services: ok
Starting Config Sync Manager : ok
Starting Hotspot Services: ok
Starting PMIP Services: ok
Starting Tunnel Services New: ok
Starting Portal Server Services: ok
Starting mDNS Services: ok
Starting Management Services: 
   Web Server:    CLI:    Secure Web: ok

(Cisco Controller) 

Enter User Name (or 'Recover-Config' this 上 e-time 上 ly to reset configuration to factory defaults)

User:  

该错误是由于缺少辅助WLC上的SSO配置所致。之后,在辅助WLC上进行SSO配置。一切顺利。

 


....
Starting Management Frame Protection: ok
Starting DNS Services: ok
Starting Redundancy: Starting Peer Search Timer of 120 seconds
Initiate Role Negotiation Message to peer
Found the Peer. Starting Role Determination...ok 
Start rmgrPingTaskok
Starting LWAPP: ok
....




(Cisco Controller) >show redundancy summary 
            Redundancy Mode = SSO ENABLED 
                Local State = ACTIVE 
                 Peer State = STANDBY HOT 
                       Unit = Primary
                    Unit ID = 04:62:73:7A:73:E0
           Redundancy State = SSO
               Mobility MAC = 04:62:73:7A:73:E0
            BulkSync Status = Complete
Average Redundancy Peer Reachability Latency = 444 Micro Seconds
Average Management Gateway Reachability Latency = 3572 Micro Seconds

(Cisco Controller) >show redundancy detail 
Redundancy Management IP Address................. 10.9.1.22
Peer Redundancy Management IP Address............ 10.9.1.23
Redundancy Port IP Address....................... 169.254.1.22
Peer 冗余端口 IP Address.................. 169.254.1.23
Peer Service Port IP Address..................... 10.9.20.31


Redundancy Timeout Values.....:
----------------------------------------------------
Keep Alive Timeout    : 100 msecs
Peer Search Timeout   : 120 secs


Number of Routes................................. 0

Destination 网络          Netmask               Gateway
-------------------    -------------------   -------------------

(Cisco Controller) >


启用S​​SO后,重新启动WLC,并同步XML配置,WLC 1将
将其状态转换为“活动”,WLC 2将其状态转换为“备用热”。从这一点
以后,管理界面上的WLC 2的GUI / Telnet / SSH将不起作用,因为所有
配置和管理应从活动WLC进行。如果需要,备用
WLC(在此示例中为WLC 2)只能通过控制台或服务端口进行管理。
同样,一旦对等WLC转换为“待机热”状态,-Standby关键字将自动
附加到备用WLC的提示名称。

启用S​​SO后,这是辅助WLC的输出:

(Cisco Controller) 
User: Creating license client restartability thread

Updating license storage ...  Done.

Exit Called
Switchdrvr exited!
Restarting system.


WLCNG Boot Loader Version 1.0.20 (Built 上  Jan  9 2014 at 19:02:44 by cisco)
Board Revision 1.3 (SN: FCW2114B5DU, Type: AIR-CT5508-K9) (G)

Verifying boot loader integrity... OK.

OCTEON CN5645-NSP pass 2.1, Core clock: 600 MHz, DDR clock: 330 MHz (660 Mhz data rate)
FPGA Revision 1.7
Env FW Revision 1.8
USB Console Revision 2.2
CPU Cores:  10
DRAM:  1024 MB
Flash: 32 MB
Clearing DRAM........ done
Network: octeth0', octeth1
  ' - Active interface
  E - Environment MAC address override
CF Bus 0 (IDE): OK 
IDE device 0:
 - Model: VRFDFC41024ECEE-P1 Firm: 100511g Ser#: VIR20455730
 - Type: Hard Disk
 - Capacity: 1000.1 MB = 0.9 GB (2048256 x 512)


Press <ESC> now to access the Boot Menu...

Loading primary image (8.2.151.0)
100% 

36899306 bytes read
Launching...
init started: BusyBox v1.6.0 (2010-05-13 17:50:10 EDT) multi-call binary
starting pid 847, tty '': '/etc/init.d/rcS'
Decompressing... OK 
Validating...... OK 
Set PLX switch MPS settings .............!!!!!!!
Detecting Hardware ...
set smp_affinity for irq 48
003f
DP from CGE5.0 ...
starting pid 1156, tty '/dev/ttyS0': '/usr/bin/gettyOrMwar'
Setting up ZVM
Exporting LD_LIBRARY_PATH

Cryptographic library self-test....
Testing SHA1 Short Message 1
Testing SHA256 Short Message 1
Testing SHA1 Short Message 1
SHA1 POST PASSED
passed!

XML config selected
Validating XML configuration
octeon_device_init: found 1 DPs
readCPUConfigData: cardid 0x6070001
Cisco is a trademark of 思科公司 Systems, Inc.
Software Copyright 思科公司 Systems, Inc. All rights reserved.

Cisco AireOS Version 8.2.151.0
Firmware Version FPGA 1.7, Env 1.8, USB console 2.2
Initializing OS Services: ok
Initializing Serial Services: ok
Initializing 网络 Services: ok
Initializing Licensing Services: ok

License daemon start initialization.....

License daemon running.....
Starting Statistics Service: ok
Starting Licensing Services: ok
Starting ARP Services: ok
Starting Trap Manager: ok
Starting 网络 Interface Management Services: ok
Starting System Services: ok
Starting FIPS Features: ok : Not enabled
Starting SNMP services: ok
Starting Fastpath Hardware Acceleration: ok
Starting Fastpath Console redirect : ok
Starting Fastpath DP Heartbeat : ok
Fastpath CPU0.00: Starting Fastpath Application. SDK-1.8.0, build 269. Flags-[DUTY CYCLE] : ok
Fastpath CPU0.00: Initializing last packet received queue. Num of cores(10)
Fastpath CPU0.00: Init MBUF size: 1856, Subsequent MBUF size: 2041
Fastpath CPU0.00: Core 0 Initialization and FIPS self-test: ok
Fastpath CPU0.00: 10 Cores are being initialized 
Fastpath CPU0.00: Initializing Timer...
Fastpath CPU0.00: Initializing Timer...done.
Fastpath CPU0.00: Initializing Timer...
Fastpath CPU0.00: Initializing NBAR AGING Timer...done.
Fastpath CPU0.00: Received instruction to get link status
Fastpath CPU0.01: Core 1 Initialization and FIPS self-test: ok
Fastpath CPU0.02: Core 2 Initialization and FIPS self-test: ok
Fastpath CPU0.03: Core 3 Initialization and FIPS self-test: ok
Fastpath CPU0.04: Core 4 Initialization and FIPS self-test: ok
Fastpath CPU0.05: Core 5 Initialization and FIPS self-test: ok
Fastpath CPU0.06: Core 6 Initialization and FIPS self-test: ok
Fastpath CPU0.07: Core 7 Initialization and FIPS self-test: ok
Fastpath CPU0.08: Core 8 Initialization and FIPS self-test: ok
Fastpath CPU0.09: Core 9 Initialization and FIPS self-test: ok
Starting Switching Services: ok
Starting QoS Services: ok
Starting Policy Manager: ok
Starting Data Transport Link Layer: ok
Starting Access Control List Services: ok
Starting System Interfaces: ok
Starting Client Troubleshooting Service: ok
Starting Certificate Database: ok
Starting 虚拟专用网 Services: ok
Starting Management Frame Protection: ok
Starting DNS Services: ok
Starting Redundancy: ok 
Start rmgrPingTaskok
Starting LWAPP: ok
Starting CAPWAP: ok
Starting LOCP: ok 
Starting 安全 Services: ok
Starting Policy Manager: ok
Starting Authentication Engine: ok
Starting Mobility Management: ok
Starting Ethernet-over-IP: ok
Starting Capwap Ping Component: ok
Starting AVC Services: ok
Starting AVC Flex Services: ok
Starting Virtual AP Services: ok
Starting AireWave Director: ok
Starting 网络 Time Services: ok
Starting 思科公司 Discovery Protocol: ok
Starting Broadcast Services: ok
Starting Logging Services: ok
Starting DHCP Server: ok
Starting IDS Signature Manager: ok
Starting RFID Tag Tracking: ok
Starting RF Profiles: ok
Starting Power Supply and Fan Status Monitoring Service: ok
Starting Mesh Services:  ok
Starting TSM: ok
Starting CIDS Services: ok
Starting Ethernet-over-IP: ok
Starting DTLS server:  enabled in CAPWAP
Starting CleanAir: ok
Starting WIPS: ok 
Starting SSHPM LSC PROV LIST: ok 
Starting RRC Services: ok
Starting SXP Services: ok
Starting Alarm Services: ok
Starting FMC HS: ok 
Starting IPv6 Services: ok
Starting Config Sync Manager : ok
Starting Hotspot Services: ok
Starting PMIP Services: ok
Starting Tunnel Services New: ok
Starting Portal Server Services: ok
Starting mDNS Services: ok
Starting Management Services: 
   Web Server:    CLI:    Secure Web: ok

(Cisco Controller) 

Enter User Name (or 'Recover-Config' this 上 e-time 上 ly to reset configuration to factory defaults)

User:  
Configuration Saved!
System will now reboot!
Creating license client restartability thread

Updating license storage ...  Done.

Exit Called
Switchdrvr exited!
Restarting system.


WLCNG Boot Loader Version 1.0.20 (Built 上  Jan  9 2014 at 19:02:44 by cisco)
Board Revision 1.3 (SN: FCW2114B5DU, Type: AIR-CT5508-K9) (G)

Verifying boot loader integrity... OK.

OCTEON CN5645-NSP pass 2.1, Core clock: 600 MHz, DDR clock: 330 MHz (660 Mhz data rate)
FPGA Revision 1.7
Env FW Revision 1.8
USB Console Revision 2.2
CPU Cores:  10
DRAM:  1024 MB
Flash: 32 MB
Clearing DRAM........ done
Network: octeth0', octeth1
  ' - Active interface
  E - Environment MAC address override
CF Bus 0 (IDE): OK 
IDE device 0:
 - Model: VRFDFC41024ECEE-P1 Firm: 100511g Ser#: VIR20455730
 - Type: Hard Disk
 - Capacity: 1000.1 MB = 0.9 GB (2048256 x 512)


Press <ESC> now to access the Boot Menu...

Loading primary image (8.2.151.0)
100% 

36899306 bytes read
Launching...
init started: BusyBox v1.6.0 (2010-05-13 17:50:10 EDT) multi-call binary
starting pid 847, tty '': '/etc/init.d/rcS'
Decompressing... OK 
Validating...... OK 
Set PLX switch MPS settings .............!!!!!!!
Detecting Hardware ...
set smp_affinity for irq 48
003f
DP from CGE5.0 ...
starting pid 1156, tty '/dev/ttyS0': '/usr/bin/gettyOrMwar'
Setting up ZVM
Exporting LD_LIBRARY_PATH

Cryptographic library self-test....
Testing SHA1 Short Message 1
Testing SHA256 Short Message 1
Testing SHA1 Short Message 1
SHA1 POST PASSED
passed!

XML config selected
XML config selected
Validating XML configuration
octeon_device_init: found 1 DPs
readCPUConfigData: cardid 0x6070001
Cisco is a trademark of 思科公司 Systems, Inc.
Software Copyright 思科公司 Systems, Inc. All rights reserved.

Cisco AireOS Version 8.2.151.0
Firmware Version FPGA 1.7, Env 1.8, USB console 2.2
Initializing OS Services: ok
Initializing Serial Services: ok
Initializing 网络 Services: ok
Initializing Licensing Services: ok

License daemon start initialization.....

License daemon running.....
Starting Statistics Service: ok
Starting Licensing Services: ok
Starting ARP Services: ok
Starting Trap Manager: ok
Starting 网络 Interface Management Services: ok
Starting System Services: ok
Starting FIPS Features: ok : Not enabled
Starting SNMP services: ok
Starting Fastpath Hardware Acceleration: ok
Starting Fastpath Console redirect : ok
Starting Fastpath DP Heartbeat : ok
Fastpath CPU0.00: Starting Fastpath Application. SDK-1.8.0, build 269. Flags-[DUTY CYCLE] : ok
Fastpath CPU0.00: Initializing last packet received queue. Num of cores(10)
Fastpath CPU0.00: Init MBUF size: 1856, Subsequent MBUF size: 2041
Fastpath CPU0.00: Core 0 Initialization and FIPS self-test: ok
Fastpath CPU0.00: 10 Cores are being initialized 
Fastpath CPU0.00: Initializing Timer...
Fastpath CPU0.00: Initializing Timer...done.
Fastpath CPU0.00: Initializing Timer...
Fastpath CPU0.00: Initializing NBAR AGING Timer...done.
Fastpath CPU0.00: Received instruction to get link status
Fastpath CPU0.01: Core 1 Initialization and FIPS self-test: ok
Fastpath CPU0.02: Core 2 Initialization and FIPS self-test: ok
Fastpath CPU0.03: Core 3 Initialization and FIPS self-test: ok
Fastpath CPU0.04: Core 4 Initialization and FIPS self-test: ok
Fastpath CPU0.05: Core 5 Initialization and FIPS self-test: ok
Fastpath CPU0.06: Core 6 Initialization and FIPS self-test: ok
Fastpath CPU0.07: Core 7 Initialization and FIPS self-test: ok
Fastpath CPU0.08: Core 8 Initialization and FIPS self-test: ok
Fastpath CPU0.09: Core 9 Initialization and FIPS self-test: ok
Starting Switching Services: ok
Starting QoS Services: ok
Starting Policy Manager: ok
Starting Data Transport Link Layer: ok
Starting Access Control List Services: ok
Starting System Interfaces: ok
Starting Client Troubleshooting Service: ok
Starting Certificate Database: ok
Starting 虚拟专用网 Services: ok
Starting Management Frame Protection: ok
Starting DNS Services: ok
Starting Redundancy: Starting Peer Search Timer of 120 seconds
Initiate Role Negotiation Message to peer
Found the Peer. Starting Role Determination...ok 
Start rmgrPingTaskok
Starting LWAPP: ok
Starting CAPWAP: ok
Starting LOCP: ok 
Starting 安全 Services: ok
Starting Policy Manager: ok
Starting Authentication Engine: ok
Starting Mobility Management: ok
Starting Ethernet-over-IP: ok
Starting Capwap Ping Component: ok
Starting AVC Services: ok
Starting AVC Flex Services: ok
Starting Virtual AP Services: ok
Starting AireWave Director: ok
Starting 网络 Time Services: ok
Starting 思科公司 Discovery Protocol: ok
Starting Broadcast Services: ok
Starting Logging Services: ok
Starting DHCP Server: ok
Starting IDS Signature Manager: ok
Starting RFID Tag Tracking: ok
Starting RF Profiles: ok
Starting Power Supply and Fan Status Monitoring Service: ok
Starting Mesh Services:  ok
Starting TSM: ok
Starting CIDS Services: ok
Starting Ethernet-over-IP: ok
Starting DTLS server:  enabled in CAPWAP
Starting CleanAir: ok
Starting WIPS: ok 
Starting SSHPM LSC PROV LIST: ok 
Starting RRC Services: ok
Starting SXP Services: ok
Starting Alarm Services: ok
Starting FMC HS: ok 
Starting IPv6 Services: ok
Starting Config Sync Manager : ok
Starting Hotspot Services: ok
Starting PMIP Services: ok
Starting Tunnel Services New: ok
Starting Portal Server Services: ok
Starting mDNS Services: ok
Starting Management Services: 
   Web Server:    CLI:    Secure Web: ok

(Cisco Controller-Standby) 

Enter User Name (or 'Recover-Config' this 上 e-time 上 ly to reset configuration to factory defaults)

User:  admin
Password:**********
(Cisco Controller-Standby) >

SSO HA状态



5.删除SSO HA配置:
5.1在HA对上禁用SSO
1

在主控制器上,使用以下命令禁用SSO:

配置冗余模式禁用

执行此命令后,主用和备用WLC将重新启动。
备用控制器在重新引导后返回时,其接口上的IP地址相同
作为主控制器,所有端口均禁用。

5.2。在备用控制器上
重新输入与管理相对应的正确IP地址,
动态接口并执行以下命令:

配置端口adminmode全部启用

5.3。将配置保存在控制器上。

6.测试故障转移

为了使辅助WLC2成为主要WLC,我们进行了手动接管。通过SSH连接到管理ip地址(在本例中为10.9.20.30),然后键入以下命令:

冗余力切换

 

(Cisco Controller) >冗余力切换 

Warning: Saving configuration change causes all the configurations to be saved 上  flash.
If this is not what you intend to do, do not type 'y' below.

The system has unsaved changes.
Would you like to save them now? (y/N) y


Configuration Saved!Creating license client restartability thread

Exit Called
Switchdrvr exited!
Restarting system.

....

 

(Cisco Controller-Standby) >
(Cisco Controller-Standby) >


HA completed successfully, WLC switch over detection time : ~2 msec and APs switch over time : ~2 msec 



(Cisco Controller) >
(Cisco Controller) >
(Cisco Controller) >
Blocked: Configurations blocked as standby WLC is still booting up.
         You will be notified 上 ce configurations are Unblocked

Unblocked: Configurations are allowed now...




参考:

通过 约翰

发表评论