思科无线控制器冗余解决方案有两个选项,备份控制器或高可用性,具体取决于WLC,故障转移时间要求和预算的固件版本。

使用备份控制器方法,在另一个位置的单个控制器可以充当接入点的备份,当它们丢失与本地区域中的主控制器的连接时。集中化和区域控制器不需要在同一行动组中。您可以为网络中的特定访问点指定主要,辅助和三级控制器。使用Controller GUI或CLI,您可以指定备份控制器的IP地址,允许访问点失败到移动组外部的控制器。您可以通过GUI,CLI甚至SNMP设置控制器上的AP的主控制器。使用备份控制器,在WLC故障的情况下,APS将开始搜索其辅助控制器并重新建立其CAPWAP隧道。显而易见的缺点是在AP将其隧道丢弃并开始将其再次建立到辅助控制器时,从客户潜在前望发生的中断。

在Cisco Unified Wardify网络软件版本7.3和7.4中设置的新的高可用性(HA)功能(即AP SSO)允许接入点(AP)与活动WLC建立Capwap隧道,并共享镜像副本具有备用WLC的AP数据库。当Active WLC失败时,AP不会进入发现状态,并且备用WLC将网络视为Active WLC。在AP和WLC之间的时间内只有一个CAPWAP隧道处于处于活动状态。添加到Cisco Unified Wireless LAN的AP SSO支持的总体目标是由于框故障转移或网络故障转移可能发生的故障条件,因此在无线网络中减少主要停机。购买第二个WLC并专门作为备用许可证,它将与主控制器共享IP地址和会话/配置/ AP信息。

相关帖子:

现在所有的人说,哪个更好?基于某些人 专业意见 我从互联网上找到了:

“备份控制器是更便宜的方式,如果您现有的5508在不同的网络上有足够的可用容量来携带任何一个站点的负载,并且您的业务就可以在WLC故障时容忍几分钟的停机时间。在这种情况下,只需在每个接入点上配置辅助控制器,然后关闭。请注意,使用备份控制器有一些更多的管理开销,您必须为每个网络中的所有SSID配置VLAN /接口,如果您使用它们,则在每个控制器上制作AP组,如果您使用它们,则在WLC时使用在他们的网站上,用户将在AP的迁移中遇到一些停机,但至少他们没有努力。

如果您在现有的5508和/或您的业务上没有容量,高可用性在此处成为合理的解决方案,并且您的业务无法容忍备份控制器方法中的故障转移时间。换句话说,如果您没有现有控制器的容量将它们用作彼此的备份,并且您将需要花费一些钱,我建议展望高可用性解决方案和定价。 “

拓扑: 



WLC-1活跃:(它已经在生产中)

管理:10.9.1.10/24
冗余 - MGNT:10.9.1.22/24
服务港口:10.9.20.30 / 24
虚拟:2.2.2.2
WLC-2二级
管理:10.9.1.21/24(这仅用于临时完成配置)
冗余-MGNT:10.9.1.23 / 24
服务港口:10.9.20.31 / 24
虚拟:2.2.2.2(需要与活动单元相同)
一些条款:
冗余管理界面
此接口上的IP地址应以与管理界面的相同子网配置。一旦活跃的WLC未响应冗余端口上的Keepalive消息,此接口将通过网络基础架构检查活动WLC的运行状况。这提供了额外的运行状况检查网络和活动WLC,并确认转换是否应执行或不应执行。此外,备用WLC使用此界面才能源ICMP Ping数据包来检查网关可达性。此接口还用于在盒子故障或手动复位情况下将通知从活动WLC发送到备用WLC。备用WLC将使用此接口才能与Syslog,NTP服务器和TFTP服务器进行通信,以获取任何配置上传。
 
冗余港口
该界面在新的HA架构中具有非常重要的作用。启动期间的批量配置和增量配置将使用冗余端口从活动WLC与备用WLC同步。 HA安装程序中的WLC将使用此端口执行HA角色协商。还使用冗余端口,以便从备用WLC到Active WLC中每100毫秒(默认定时器)发送UDP保持性的对等体可达性。此外,如果发生故障,则活动WLC将通过冗余端口向备用WLC发送通知。如果未配置NTP服务器,则从活动WLC执行手动时间同步到冗余端口上的备用WLC。在Wism-2的情况下,在独立控制器和冗余VLAN的情况下,该端口将被分配一个自动生成的IP地址,其中从冗余管理界面的最后2个八位字节挑选了最后2个八位字节(前2个八位字节始终为169.254)。

注意:HA启用后,您只使用控制台端口对两个WLC进行控制台访问。只有主要的HA可以访问GUI。启用AP SSO时,HA设置中的WLC中的服务端口上没有SNMP访问。您要将其控制到WLC或您的HTTPS / SSH到主HA。主要是唯一可以使用HTTP / HTTPS / Telnet / SSH与AP SSO启用的唯一一个。

初始配置
System Name [Cisco_e3:7b:64] (31 characters max): 
AUTO-INSTALL: no interfaces registered.

AUTO-INSTALL: process terminated -- no configuration loaded

Enter Administrative User Name (24 characters max): admin
Enter Administrative Password (3 to 24 characters): **********
Re-enter Administrative Password                 : **********


Service Interface IP Address Configuration [static][DHCP]: static
Service Interface IP Address: 10.9.20.31
Service Interface Netmask: 255.255.255.128

Enable Link Aggregation (LAG) [yes][NO]: no

Management Interface IP Address: 10.9.1.21
Management Interface Netmask: 255.255.255.0
Management Interface Default Router: 10.9.1.1
Cleaning up Provisioning SSID
Management Interface VLAN Identifier (0 = untagged): 
Management Interface Port Num [1 to 8]: 1
Management Interface DHCP Server IP Address: 
Invalid response

Management Interface DHCP Server IP Address: 10.9.1.2

Enable HA [yes][NO]: no

Virtual Gateway IP Address: 2.2.2.2

Mobility/RF Group Name: 
Invalid response


Mobility/RF Group Name: test

Network Name (SSID): 
Invalid response


Network Name (SSID): TEST-commercial

Configure DHCP Bridging Mode [yes][NO]: no

Allow Static IP Addresses [YES][no]: yes

Configure a RADIUS Server now? [YES][no]: no
Warning! The default WLAN security policy requires a RADIUS server.
Please see documentation for more details.

Enter Country Code list (enter 'help' for a list of countries) [US]: 

Enable 802.11b Network [YES][no]: n
Invalid response


Enable 802.11b Network [YES][no]: no
Enable 802.11a Network [YES][no]: no
Enable Auto-RF [YES][no]: no

Configure a NTP server now? [YES][no]: no
Configure the system time now? [YES][no]: no

Warning! No AP will come up unless the time is set.
Please see documentation for more details.

Would you like to configure IPv6 parameters[YES][no]: no

Configuration correct? If yes, system will save it and reset. [yes][NO]: yes

Configuration saved!
Resetting system with new configuration...


 

配置HA步骤:
 

WLC 5508S上的物理端口和连接:

 

1.根据计划配置接口IP地址

有效WLC-1 :(它已经在生产中)

二级WLC-2 :(新增)



2.控制器冗余全局配置

有效WLC-1 :(它已经在生产中)

二级WLC-2 :(新增)

3.连接冗余端口电缆



4.在主WLC上更改SSO配置

它将保存您的配置并重新启动它。

(Cisco Controller) 

Enter User Name (or 'Recover-Config' this one-time only to reset configuration to factory defaults)

User:  Creating license client restartability thread

Exit Called
Switchdrvr exited!
Restarting system.


WLCNG Boot Loader Version 1.0.20 (Built on Jan  9 2014 at 19:02:44 by cisco)
Board Revision 1.3 (SN: FCW2017B091, Type: AIR-CT5508-K9) (G)

Verifying boot loader integrity... OK.

OCTEON CN5645-NSP pass 2.1, Core clock: 600 MHz, DDR clock: 330 MHz (660 Mhz data rate)
FPGA Revision 1.7
Env FW Revision 1.8
USB Console Revision 2.2
CPU Cores:  10
DRAM:  1024 MB
Flash: 32 MB
Clearing DRAM........ done
Network: octeth0', octeth1
  ' - Active interface
  E - Environment MAC address override
CF Bus 0 (IDE): OK 
IDE device 0:
 - Model: SGEFD1GHB9P1D221 Firm: FW981 Ser#: STP194512FP
 - Type: Hard Disk
 - Capacity: 977.4 MB = 0.9 GB (2001888 x 512)


Press <ESC> now to access the Boot Menu...

Loading primary image (8.2.151.0)
100% 

36899306 bytes read
Launching...
init started: BusyBox v1.6.0 (2010-05-13 17:50:10 EDT) multi-call binary
starting pid 847, tty '': '/etc/init.d/rcS'
Decompressing... OK 
Validating...... OK 
Set PLX switch MPS settings .............!!!!!!!
Detecting Hardware ...
set smp_affinity for irq 48
003f
DP from CGE5.0 ...
starting pid 1156, tty '/dev/ttyS0': '/usr/bin/gettyOrMwar'
Setting up ZVM
Exporting LD_LIBRARY_PATH

Cryptographic library self-test....
Testing SHA1 Short Message 1
Testing SHA256 Short Message 1
Testing SHA1 Short Message 1
SHA1 POST PASSED
passed!

XML config selected
Validating XML configuration
octeon_device_init: found 1 DPs
readCPUConfigData: cardid 0x6070001
Cisco is a trademark of Cisco Systems, Inc.
Software Copyright Cisco Systems, Inc. All rights reserved.

Cisco AireOS Version 8.2.151.0
Firmware Version FPGA 1.7, Env 1.8, USB console 2.2
Initializing OS Services: ok
Initializing Serial Services: ok
Initializing Network Services: ok
Initializing Licensing Services: ok

License daemon start initialization.....

License daemon running.....
Starting Statistics Service: ok
Starting Licensing Services: ok
Starting ARP Services: ok
Starting Trap Manager: ok
Starting Network Interface Management Services: ok
Starting System Services: ok
Starting FIPS Features: ok : Not enabled
Starting SNMP services: ok
Starting Fastpath Hardware Acceleration: ok
Starting Fastpath Console redirect : ok
Starting Fastpath DP Heartbeat : ok
Fastpath CPU0.00: Starting Fastpath Application. SDK-1.8.0, build 269. Flags-[DUTY CYCLE] : ok
Fastpath CPU0.00: Initializing last packet received queue. Num of cores(10)
Fastpath CPU0.00: Init MBUF size: 1856, Subsequent MBUF size: 2041
Fastpath CPU0.00: Core 0 Initialization and FIPS self-test: ok
Fastpath CPU0.00: 10 Cores are being initialized 
Fastpath CPU0.00: Initializing Timer...
Fastpath CPU0.00: Initializing Timer...done.
Fastpath CPU0.00: Initializing Timer...
Fastpath CPU0.00: Initializing NBAR AGING Timer...done.
Fastpath CPU0.00: Received instruction to get link status
Fastpath CPU0.01: Core 1 Initialization and FIPS self-test: ok
Fastpath CPU0.02: Core 2 Initialization and FIPS self-test: ok
Fastpath CPU0.03: Core 3 Initialization and FIPS self-test: ok
Fastpath CPU0.04: Core 4 Initialization and FIPS self-test: ok
Fastpath CPU0.05: Core 5 Initialization and FIPS self-test: ok
Fastpath CPU0.06: Core 6 Initialization and FIPS self-test: ok
Fastpath CPU0.07: Core 7 Initialization and FIPS self-test: ok
Fastpath CPU0.08: Core 8 Initialization and FIPS self-test: ok
Fastpath CPU0.09: Core 9 Initialization and FIPS self-test: ok
Starting Switching Services: ok
Starting QoS Services: ok
Starting Policy Manager: ok
Starting Data Transport Link Layer: ok
Starting Access Control List Services: ok
Starting System Interfaces: ok
Starting Client Troubleshooting Service: ok
Starting Certificate Database: ok
Starting VPN Services: ok
Starting Management Frame Protection: ok
Starting DNS Services: ok
Starting Redundancy: Starting Peer Search Timer of 120 seconds
Initiate Role Negotiation Message to peer

Role Negotiation timeout. Didn't find Peer..

Peer WLC is not reachable
Negotiation Timeout. Primary controller will become Active-no-Peer
ok 
Start rmgrPingTaskok
Starting LWAPP: ok
Starting CAPWAP: ok
Starting LOCP: ok 
Starting Security Services: ok
Starting Policy Manager: ok
Starting Authentication Engine: ok
Starting Mobility Management: ok
Starting Ethernet-over-IP: ok
Starting Capwap Ping Component: ok
Starting AVC Services: ok
Starting AVC Flex Services: ok
Starting Virtual AP Services: ok
Starting AireWave Director: ok
Starting Network Time Services: ok
Starting Cisco Discovery Protocol: ok
Starting Broadcast Services: ok
Starting Logging Services: ok
Starting DHCP Server: ok
Starting IDS Signature Manager: ok
Starting RFID Tag Tracking: ok
Starting RF Profiles: ok
Starting Power Supply and Fan Status Monitoring Service: ok
Starting Mesh Services:  ok
Starting TSM: ok
Starting CIDS Services: ok
Starting Ethernet-over-IP: ok
Starting DTLS server:  enabled in CAPWAP
Starting CleanAir: ok
Starting WIPS: ok 
Starting SSHPM LSC PROV LIST: ok 
Starting RRC Services: ok
Starting SXP Services: ok
Starting Alarm Services: ok
Starting FMC HS: ok 
Starting IPv6 Services: ok
Starting Config Sync Manager : ok
Starting Hotspot Services: ok
Starting PMIP Services: ok
Starting Tunnel Services New: ok
Starting Portal Server Services: ok
Starting mDNS Services: ok
Starting Management Services: 
   Web Server:    CLI:    Secure Web: ok

(Cisco Controller) 

Enter User Name (or 'Recover-Config' this one-time only to reset configuration to factory defaults)

User:  

错误是因为辅助WLC上缺少SSO配置。在辅助WLC上执行了SSO配置。一切顺利。

 


....
Starting Management Frame Protection: ok
Starting DNS Services: ok
Starting Redundancy: Starting Peer Search Timer of 120 seconds
Initiate Role Negotiation Message to peer
Found the Peer. Starting Role Determination...ok 
Start rmgrPingTaskok
Starting LWAPP: ok
....




(Cisco Controller) >show redundancy summary 
            Redundancy Mode = SSO ENABLED 
                Local State = ACTIVE 
                 Peer State = STANDBY HOT 
                       Unit = Primary
                    Unit ID = 04:62:73:7A:73:E0
           Redundancy State = SSO
               Mobility MAC = 04:62:73:7A:73:E0
            BulkSync Status = Complete
Average Redundancy Peer Reachability Latency = 444 Micro Seconds
Average Management Gateway Reachability Latency = 3572 Micro Seconds

(Cisco Controller) >show redundancy detail 
Redundancy Management IP Address................. 10.9.1.22
Peer Redundancy Management IP Address............ 10.9.1.23
Redundancy Port IP Address....................... 169.254.1.22
Peer Redundancy Port IP Address.................. 169.254.1.23
Peer Service Port IP Address..................... 10.9.20.31


Redundancy Timeout Values.....:
----------------------------------------------------
Keep Alive Timeout    : 100 msecs
Peer Search Timeout   : 120 secs


Number of Routes................................. 0

Destination Network          Netmask               Gateway
-------------------    -------------------   -------------------

(Cisco Controller) >


启用S​​SO后,重新启动WLC,XML配置已同步,WLC 1将
将状态转换为主动,WLC 2将其状态转换为待机状态。从这一点开始
向上,GUI / Telnet / SSH在管理界面上的WLC 2将无法正常工作
配置和管理应从Active WLC完成。如果需要,待机
WLC(本示例中的WLC 2)只能通过控制台或服务端口管理。
此外,一旦对等体WLC转换到待机热状态,即 - istandby关键字就会自动
附加到备用WLCS提示符名称。

以下是启用SSO后的辅助WLC输出:

(Cisco Controller) 
User: Creating license client restartability thread

Updating license storage ...  Done.

Exit Called
Switchdrvr exited!
Restarting system.


WLCNG Boot Loader Version 1.0.20 (Built on Jan  9 2014 at 19:02:44 by cisco)
Board Revision 1.3 (SN: FCW2114B5DU, Type: AIR-CT5508-K9) (G)

Verifying boot loader integrity... OK.

OCTEON CN5645-NSP pass 2.1, Core clock: 600 MHz, DDR clock: 330 MHz (660 Mhz data rate)
FPGA Revision 1.7
Env FW Revision 1.8
USB Console Revision 2.2
CPU Cores:  10
DRAM:  1024 MB
Flash: 32 MB
Clearing DRAM........ done
Network: octeth0', octeth1
  ' - Active interface
  E - Environment MAC address override
CF Bus 0 (IDE): OK 
IDE device 0:
 - Model: VRFDFC41024ECEE-P1 Firm: 100511g Ser#: VIR20455730
 - Type: Hard Disk
 - Capacity: 1000.1 MB = 0.9 GB (2048256 x 512)


Press <ESC> now to access the Boot Menu...

Loading primary image (8.2.151.0)
100% 

36899306 bytes read
Launching...
init started: BusyBox v1.6.0 (2010-05-13 17:50:10 EDT) multi-call binary
starting pid 847, tty '': '/etc/init.d/rcS'
Decompressing... OK 
Validating...... OK 
Set PLX switch MPS settings .............!!!!!!!
Detecting Hardware ...
set smp_affinity for irq 48
003f
DP from CGE5.0 ...
starting pid 1156, tty '/dev/ttyS0': '/usr/bin/gettyOrMwar'
Setting up ZVM
Exporting LD_LIBRARY_PATH

Cryptographic library self-test....
Testing SHA1 Short Message 1
Testing SHA256 Short Message 1
Testing SHA1 Short Message 1
SHA1 POST PASSED
passed!

XML config selected
Validating XML configuration
octeon_device_init: found 1 DPs
readCPUConfigData: cardid 0x6070001
Cisco is a trademark of Cisco Systems, Inc.
Software Copyright Cisco Systems, Inc. All rights reserved.

Cisco AireOS Version 8.2.151.0
Firmware Version FPGA 1.7, Env 1.8, USB console 2.2
Initializing OS Services: ok
Initializing Serial Services: ok
Initializing Network Services: ok
Initializing Licensing Services: ok

License daemon start initialization.....

License daemon running.....
Starting Statistics Service: ok
Starting Licensing Services: ok
Starting ARP Services: ok
Starting Trap Manager: ok
Starting Network Interface Management Services: ok
Starting System Services: ok
Starting FIPS Features: ok : Not enabled
Starting SNMP services: ok
Starting Fastpath Hardware Acceleration: ok
Starting Fastpath Console redirect : ok
Starting Fastpath DP Heartbeat : ok
Fastpath CPU0.00: Starting Fastpath Application. SDK-1.8.0, build 269. Flags-[DUTY CYCLE] : ok
Fastpath CPU0.00: Initializing last packet received queue. Num of cores(10)
Fastpath CPU0.00: Init MBUF size: 1856, Subsequent MBUF size: 2041
Fastpath CPU0.00: Core 0 Initialization and FIPS self-test: ok
Fastpath CPU0.00: 10 Cores are being initialized 
Fastpath CPU0.00: Initializing Timer...
Fastpath CPU0.00: Initializing Timer...done.
Fastpath CPU0.00: Initializing Timer...
Fastpath CPU0.00: Initializing NBAR AGING Timer...done.
Fastpath CPU0.00: Received instruction to get link status
Fastpath CPU0.01: Core 1 Initialization and FIPS self-test: ok
Fastpath CPU0.02: Core 2 Initialization and FIPS self-test: ok
Fastpath CPU0.03: Core 3 Initialization and FIPS self-test: ok
Fastpath CPU0.04: Core 4 Initialization and FIPS self-test: ok
Fastpath CPU0.05: Core 5 Initialization and FIPS self-test: ok
Fastpath CPU0.06: Core 6 Initialization and FIPS self-test: ok
Fastpath CPU0.07: Core 7 Initialization and FIPS self-test: ok
Fastpath CPU0.08: Core 8 Initialization and FIPS self-test: ok
Fastpath CPU0.09: Core 9 Initialization and FIPS self-test: ok
Starting Switching Services: ok
Starting QoS Services: ok
Starting Policy Manager: ok
Starting Data Transport Link Layer: ok
Starting Access Control List Services: ok
Starting System Interfaces: ok
Starting Client Troubleshooting Service: ok
Starting Certificate Database: ok
Starting VPN Services: ok
Starting Management Frame Protection: ok
Starting DNS Services: ok
Starting Redundancy: ok 
Start rmgrPingTaskok
Starting LWAPP: ok
Starting CAPWAP: ok
Starting LOCP: ok 
Starting Security Services: ok
Starting Policy Manager: ok
Starting Authentication Engine: ok
Starting Mobility Management: ok
Starting Ethernet-over-IP: ok
Starting Capwap Ping Component: ok
Starting AVC Services: ok
Starting AVC Flex Services: ok
Starting Virtual AP Services: ok
Starting AireWave Director: ok
Starting Network Time Services: ok
Starting Cisco Discovery Protocol: ok
Starting Broadcast Services: ok
Starting Logging Services: ok
Starting DHCP Server: ok
Starting IDS Signature Manager: ok
Starting RFID Tag Tracking: ok
Starting RF Profiles: ok
Starting Power Supply and Fan Status Monitoring Service: ok
Starting Mesh Services:  ok
Starting TSM: ok
Starting CIDS Services: ok
Starting Ethernet-over-IP: ok
Starting DTLS server:  enabled in CAPWAP
Starting CleanAir: ok
Starting WIPS: ok 
Starting SSHPM LSC PROV LIST: ok 
Starting RRC Services: ok
Starting SXP Services: ok
Starting Alarm Services: ok
Starting FMC HS: ok 
Starting IPv6 Services: ok
Starting Config Sync Manager : ok
Starting Hotspot Services: ok
Starting PMIP Services: ok
Starting Tunnel Services New: ok
Starting Portal Server Services: ok
Starting mDNS Services: ok
Starting Management Services: 
   Web Server:    CLI:    Secure Web: ok

(Cisco Controller) 

Enter User Name (or 'Recover-Config' this one-time only to reset configuration to factory defaults)

User:  
Configuration Saved!
System will now reboot!
Creating license client restartability thread

Updating license storage ...  Done.

Exit Called
Switchdrvr exited!
Restarting system.


WLCNG Boot Loader Version 1.0.20 (Built on Jan  9 2014 at 19:02:44 by cisco)
Board Revision 1.3 (SN: FCW2114B5DU, Type: AIR-CT5508-K9) (G)

Verifying boot loader integrity... OK.

OCTEON CN5645-NSP pass 2.1, Core clock: 600 MHz, DDR clock: 330 MHz (660 Mhz data rate)
FPGA Revision 1.7
Env FW Revision 1.8
USB Console Revision 2.2
CPU Cores:  10
DRAM:  1024 MB
Flash: 32 MB
Clearing DRAM........ done
Network: octeth0', octeth1
  ' - Active interface
  E - Environment MAC address override
CF Bus 0 (IDE): OK 
IDE device 0:
 - Model: VRFDFC41024ECEE-P1 Firm: 100511g Ser#: VIR20455730
 - Type: Hard Disk
 - Capacity: 1000.1 MB = 0.9 GB (2048256 x 512)


Press <ESC> now to access the Boot Menu...

Loading primary image (8.2.151.0)
100% 

36899306 bytes read
Launching...
init started: BusyBox v1.6.0 (2010-05-13 17:50:10 EDT) multi-call binary
starting pid 847, tty '': '/etc/init.d/rcS'
Decompressing... OK 
Validating...... OK 
Set PLX switch MPS settings .............!!!!!!!
Detecting Hardware ...
set smp_affinity for irq 48
003f
DP from CGE5.0 ...
starting pid 1156, tty '/dev/ttyS0': '/usr/bin/gettyOrMwar'
Setting up ZVM
Exporting LD_LIBRARY_PATH

Cryptographic library self-test....
Testing SHA1 Short Message 1
Testing SHA256 Short Message 1
Testing SHA1 Short Message 1
SHA1 POST PASSED
passed!

XML config selected
XML config selected
Validating XML configuration
octeon_device_init: found 1 DPs
readCPUConfigData: cardid 0x6070001
Cisco is a trademark of Cisco Systems, Inc.
Software Copyright Cisco Systems, Inc. All rights reserved.

Cisco AireOS Version 8.2.151.0
Firmware Version FPGA 1.7, Env 1.8, USB console 2.2
Initializing OS Services: ok
Initializing Serial Services: ok
Initializing Network Services: ok
Initializing Licensing Services: ok

License daemon start initialization.....

License daemon running.....
Starting Statistics Service: ok
Starting Licensing Services: ok
Starting ARP Services: ok
Starting Trap Manager: ok
Starting Network Interface Management Services: ok
Starting System Services: ok
Starting FIPS Features: ok : Not enabled
Starting SNMP services: ok
Starting Fastpath Hardware Acceleration: ok
Starting Fastpath Console redirect : ok
Starting Fastpath DP Heartbeat : ok
Fastpath CPU0.00: Starting Fastpath Application. SDK-1.8.0, build 269. Flags-[DUTY CYCLE] : ok
Fastpath CPU0.00: Initializing last packet received queue. Num of cores(10)
Fastpath CPU0.00: Init MBUF size: 1856, Subsequent MBUF size: 2041
Fastpath CPU0.00: Core 0 Initialization and FIPS self-test: ok
Fastpath CPU0.00: 10 Cores are being initialized 
Fastpath CPU0.00: Initializing Timer...
Fastpath CPU0.00: Initializing Timer...done.
Fastpath CPU0.00: Initializing Timer...
Fastpath CPU0.00: Initializing NBAR AGING Timer...done.
Fastpath CPU0.00: Received instruction to get link status
Fastpath CPU0.01: Core 1 Initialization and FIPS self-test: ok
Fastpath CPU0.02: Core 2 Initialization and FIPS self-test: ok
Fastpath CPU0.03: Core 3 Initialization and FIPS self-test: ok
Fastpath CPU0.04: Core 4 Initialization and FIPS self-test: ok
Fastpath CPU0.05: Core 5 Initialization and FIPS self-test: ok
Fastpath CPU0.06: Core 6 Initialization and FIPS self-test: ok
Fastpath CPU0.07: Core 7 Initialization and FIPS self-test: ok
Fastpath CPU0.08: Core 8 Initialization and FIPS self-test: ok
Fastpath CPU0.09: Core 9 Initialization and FIPS self-test: ok
Starting Switching Services: ok
Starting QoS Services: ok
Starting Policy Manager: ok
Starting Data Transport Link Layer: ok
Starting Access Control List Services: ok
Starting System Interfaces: ok
Starting Client Troubleshooting Service: ok
Starting Certificate Database: ok
Starting VPN Services: ok
Starting Management Frame Protection: ok
Starting DNS Services: ok
Starting Redundancy: Starting Peer Search Timer of 120 seconds
Initiate Role Negotiation Message to peer
Found the Peer. Starting Role Determination...ok 
Start rmgrPingTaskok
Starting LWAPP: ok
Starting CAPWAP: ok
Starting LOCP: ok 
Starting Security Services: ok
Starting Policy Manager: ok
Starting Authentication Engine: ok
Starting Mobility Management: ok
Starting Ethernet-over-IP: ok
Starting Capwap Ping Component: ok
Starting AVC Services: ok
Starting AVC Flex Services: ok
Starting Virtual AP Services: ok
Starting AireWave Director: ok
Starting Network Time Services: ok
Starting Cisco Discovery Protocol: ok
Starting Broadcast Services: ok
Starting Logging Services: ok
Starting DHCP Server: ok
Starting IDS Signature Manager: ok
Starting RFID Tag Tracking: ok
Starting RF Profiles: ok
Starting Power Supply and Fan Status Monitoring Service: ok
Starting Mesh Services:  ok
Starting TSM: ok
Starting CIDS Services: ok
Starting Ethernet-over-IP: ok
Starting DTLS server:  enabled in CAPWAP
Starting CleanAir: ok
Starting WIPS: ok 
Starting SSHPM LSC PROV LIST: ok 
Starting RRC Services: ok
Starting SXP Services: ok
Starting Alarm Services: ok
Starting FMC HS: ok 
Starting IPv6 Services: ok
Starting Config Sync Manager : ok
Starting Hotspot Services: ok
Starting PMIP Services: ok
Starting Tunnel Services New: ok
Starting Portal Server Services: ok
Starting mDNS Services: ok
Starting Management Services: 
   Web Server:    CLI:    Secure Web: ok

(Cisco Controller-Standby) 

Enter User Name (or 'Recover-Config' this one-time only to reset configuration to factory defaults)

User:  admin
Password:**********
(Cisco Controller-Standby) >

SSO HA状态



5.删除SSO HA配置:
5.1在HA对上禁用SSO
1

在主控制器上,使用该命令禁用SSO:

配置冗余模式禁用

执行此命令后,活动和备用WLC重新启动。
备用控制器,当重新启动后返回时,在接口上具有相同的IP地址
作为主控制器和禁用的所有端口。

5.2。在备用控制器上
重新输入对应于管理和管理的正确IP地址
动态接口并执行以下命令:

配置端口AdminMode全启用

5.3。保存控制器上的配置。

6.测试故障转移

使辅助WLC2成为主要WLC,我们进行了手动收购。通过SSH将SSH连接到管理IP地址(在我们的情况下为10.9.20.30)并在以下命令中键入:

冗余力切换

 

(Cisco Controller) >冗余力切换 

Warning: Saving configuration change causes all the configurations to be saved on flash.
If this is not what you intend to do, do not type 'y' below.

The system has unsaved changes.
Would you like to save them now? (y/N) y


Configuration Saved!Creating license client restartability thread

Exit Called
Switchdrvr exited!
Restarting system.

....

 

(Cisco Controller-Standby) >
(Cisco Controller-Standby) >


HA completed successfully, WLC switch over detection time : ~2 msec and APs switch over time : ~2 msec 



(Cisco Controller) >
(Cisco Controller) >
(Cisco Controller) >
Blocked: Configurations blocked as standby WLC is still booting up.
         You will be notified once configurations are Unblocked

Unblocked: Configurations are allowed now...




参考:

经过 Jon.

发表评论