Wireless Access

last person joined: 22 hours ago 

Access network design for branch, remote, outdoor, and campus locations with HPE Aruba Networking access points and mobility controllers.
Back to discussions
Expand all | Collapse all

User couldn't get IP DHCP

This thread has been viewed 10 times

  • 1.  User couldn't get IP DHCP

    Posted Jan 10, 2020 02:01 AM
    Hi everyone,

    Im new in aruba controller, i have 13 APs and controller 7005 with OS 8.4.0
    2
    Currently all AP is on site and controller on DC, connection between site is use MPLSE.
    I have 3 SSID with 3 VLAN and DHCP is on Distribution switch on site. So the controller not broadcast the dhcp

    The issue is while user connect to ssid, user couldn't get ip although before i convert IAP to CAP all user can connect to ssid and get ip from distribution switch.

    Maybe there are wrong on my configuration,
    Any idea?


  • 2.  RE: User couldn't get IP DHCP

    EMPLOYEE
    Posted Jan 10, 2020 05:12 AM

    Do you have your SSID forwarding modes configured as "Bridged"?  By default it is tunneled.  Tunneled means that the user traffic would have to go back to the controller.



  • 3.  RE: User couldn't get IP DHCP

    Posted Jan 10, 2020 05:53 AM
    I use default "Tunnel"
    So i must change to "Bridge" because dhcp is on distribution switch?


  • 4.  RE: User couldn't get IP DHCP

    EMPLOYEE
    Posted Jan 10, 2020 06:33 AM

    If the traffic is sent out of the access point, the forwarding mode should be bridged.  If the user traffic will be tunneled to the controller and sent out the controller at the DC, the forwarding mode should be tunneled.



  • 5.  RE: User couldn't get IP DHCP

    Posted Jan 11, 2020 01:53 AM
    If i use bridge, what i can still get data statictic for user behavior?
    Please give me solution, if dhcp is on distribution switch site and controller on DC, how i set for ssid?


    Thanks


  • 6.  RE: User couldn't get IP DHCP

    EMPLOYEE
    Posted Jan 11, 2020 06:23 AM
    Network diagram, please.


  • 7.  RE: User couldn't get IP DHCP

    Posted Jan 11, 2020 07:21 AM
      |   view attached

    Topology attach

     

    User internet not through DC, the DHCP and gateway of CAP is on Switch dist on site A

    @cjoseph wrote:
    Network diagram, please.

     



  • 8.  RE: User couldn't get IP DHCP

    EMPLOYEE
    Posted Jan 11, 2020 07:54 AM

    Okay.

     

    Forwarding mode should be bridged.  Virtual AP VLAN needs to be 1 if wireless users will be on the same VLAN as the APs.  If the wireless users need to be on a different VLAN, the AP switchport needs to be a trunk and the Virtual AP VLAN needs to be the VLAN you want users to be on.

     

    The user role ACLs will be enforced at the AP, but the controller will not have detailed application visibility of user traffic.

     

    EDIT:  Control Plane Security needs to be enabled (default), otherwise, forwarding mode bridged will not work.



  • 9.  RE: User couldn't get IP DHCP

    Posted Jan 13, 2020 11:52 PM
      |   view attached
    Hi bro,

    I already try change forwarding mode to bridge, but currently AP often reboot
    The log of system all attach. Please help

    Attachment(s)

    txt
    log.txt   41 KB 1 version


  • 10.  RE: User couldn't get IP DHCP
    Best Answer

    EMPLOYEE
    Posted Jan 14, 2020 12:06 AM

    You might have a licensing issue.  That should be resolved first:

     

    Jan 14 11:10:21  stm[3493]: <305038> <3493> <WARN> |stm|  No available license type PEFNG for AP R.RAPAT-OSDM
Jan 14 11:10:22  stm[3493]: <305038> <3493> <WARN> |stm|  No available license type PEFNG for AP JAHKINPAG-2
Jan 14 11:10:23  stm[3493]: <305038> <3493> <WARN> |stm|  No available license type PEFNG for AP BANGKOMUT
Jan 14 11:10:23  stm[3493]: <305038> <3493> <WARN> |stm|  No available license type PEFNG for AP WAKA
Jan 14 11:10:23  stm[3493]: <305038> <3493> <WARN> |stm|  No available license type PEFNG for AP Ortala
Jan 14 11:10:24  stm[3493]: <305038> <3493> <WARN> |stm|  No available license type PEFNG for AP Rapat.REN
Jan 14 11:10:24  stm[3493]: <305038> <3493> <WARN> |stm|  No available license type PEFNG for AP Staff.Ren
Jan 14 11:10:24  stm[3493]: <305038> <3493> <WARN> |stm|  No available license type PEFNG for AP Rapat.WAKA
Jan 14 11:10:24  stm[3493]: <305038> <3493> <WARN> |stm|  No available license type PEFNG for AP Rapat.KA
Jan 14 11:10:24  stm[3493]: <305038> <3493> <WARN> |stm|  No available license type PEFNG for AP KA
Jan 14 11:10:26  stm[3493]: <305038> <3493> <WARN> |stm|  No available license type PEFNG for AP STAFF.KEUANGAN
Jan 14 11:10:26  stm[3493]: <305038> <3493> <WARN> |stm|  No available license type PEFNG for AP Rapat.Keuangan
Jan 14 11:10:29  stm[3493]: <305038> <3493> <WARN> |stm|  No available license type PEFNG for AP R.RAPAT-OSDM
Jan 14 11:10:30  stm[3493]: <305038> <3493> <WARN> |stm|  No available license type PEFNG for AP JAHKINPAG-2
Jan 14 11:10:31  stm[3493]: <305038> <3493> <WARN> |stm|  No available license type PEFNG for AP WAKA
Jan 14 11:10:31  stm[3493]: <305038> <3493> <WARN> |stm|  No available license type PEFNG for AP BANGKOMUT
Jan 14 11:10:31  stm[3493]: <305038> <3493> <WARN> |stm|  No available license type PEFNG for AP Ortala
Jan 14 11:10:32  stm[3493]: <305038> <3493> <WARN> |stm|  No available license type PEFNG for AP Rapat.REN
Jan 14 11:10:32  stm[3493]: <305038> <3493> <WARN> |stm|  No available license type PEFNG for AP Rapat.WAKA
Jan 14 11:10:32  stm[3493]: <305038> <3493> <WARN> |stm|  No available license type PEFNG for AP Staff.Ren
Jan 14 11:10:32  stm[3493]: <305038> <3493> <WARN> |stm|  No available license type PEFNG for AP KA
Jan 14 11:10:32  stm[3493]: <305038> <3493> <WARN> |stm|  No available license type PEFNG for AP Rapat.KA
Jan 14 11:10:32  stm[3493]: <305038> <3493> <WARN> |stm|  No available license type PEFNG for AP JAHKINPAG-1
Jan 14 11:10:33  stm[3493]: <305038> <3493> <WARN> |stm|  No available license type PEFNG for AP STAFF.KEUANGAN
Jan 14 11:10:34  stm[3493]: <305038> <3493> <WARN> |stm|  No available license type PEFNG for AP Rapat.Keuangan
Jan 14 11:10:40  stm[3493]: <305038> <3493> <WARN> |stm|  No available license type PEFNG for AP JAHKINPAG-1


  • 11.  RE: User couldn't get IP DHCP

    Posted Jan 14, 2020 12:46 AM
    What the license bro? Because i already input license for manage 14 AP in the controller

    What should i do for this issue?



  • 12.  RE: User couldn't get IP DHCP

    Posted Jan 14, 2020 04:36 AM

    You Should have PEF License.



  • 13.  RE: User couldn't get IP DHCP

    Posted Jan 14, 2020 06:04 AM
    What function of PEF license bro?

    I just change forwarding tunnel to bridge on some SSID then the AP reboot frequently, and currently all SSID is not to broadcast :(



  • 14.  RE: User couldn't get IP DHCP

    MVP
    Posted Jan 14, 2020 06:18 AM

    https://www.arubanetworks.com/techdocs/ArubaOS_80_Web_Help/Content/LicenseGuide/License_Usage.htm

     

    While extremely useful, you actually do not need to have PEF licenses, but if you have any, you need the same number of them as you have AP licenses. The lowest number is how many APs you can use.

     

    The the following commands to get more info.

    show license-usage ap
    show license verbose

     



  • 15.  RE: User couldn't get IP DHCP

    Posted Jan 14, 2020 04:20 PM
    Hi Koen,

    I just change forwarding mode from tunnel to bridge then AP reboot by controller frequently. Before i change forward the client user could not connect to internet then i change but currently get issue license PEF and all ssid not broadcast by AP.

    What should i must buy PEF license first for bridge. Mode? Please confrm.

    Thanks


  • 16.  RE: User couldn't get IP DHCP

    Posted Jan 14, 2020 08:10 PM
    Hi,
    If you configure bridge mode you need pef licese yo handle traffic.
    Reference :
    https://www.arubanetworks.com/techdocs/ArubaOS_64_Web_Help/Content/ArubaFrameStyles/Remote_AP/Bridge.htm


  • 17.  RE: User couldn't get IP DHCP

    Posted Jan 14, 2020 11:45 PM
    @Dinusha Chandrasinghe wrote:
    Hi,
    If you configure bridge mode you need pef licese yo handle traffic.
    Reference :
    https://www.arubanetworks.com/techdocs/ArubaOS_64_Web_Help/Content/ArubaFrameStyles/Remote_AP/Bridge.htm

    Hi Dinusha,

     

    Okay i will try with license PEF, but i please let me know why ssid could not broadcast? although forward i already change to tunnel again and ssid still not broadcasr

     

    Thanks

    Rizal Safr



  • 18.  RE: User couldn't get IP DHCP

    Posted Jan 15, 2020 12:37 AM

    Hi Rizalsfr,

    Without the required license Controller will not work properly. But Tunnel mode Standard SSID doesn't need PEF license to broadcast SSID. Can you check log when said in tunnel mode?



  • 19.  RE: User couldn't get IP DHCP

    Posted Jan 15, 2020 03:57 AM
      |   view attached
    Hi Dinusha,

    I already change 2 ssid (BSSN-S11 and BSSN-S21) to tunnel mode and still there are no ssid broadcast by AP. The log is attach

    Attachment(s)

    txt
    log.txt   12 KB 1 version


  • 20.  RE: User couldn't get IP DHCP

    MVP
    Posted Jan 15, 2020 04:07 AM
    @Dinusha Chandrasinghe wrote:
    Hi,
    If you configure bridge mode you need pef licese yo handle traffic.
    Reference :
    https://www.arubanetworks.com/techdocs/ArubaOS_64_Web_Help/Content/ArubaFrameStyles/Remote_AP/Bridge.htm

    You link to the explanation of REMOTE AP bridging.

    With RAP bridging you need a PEF license because you must configure a role to decide what traffic to bridge and what to forward through the tunnel.

     

    I am not 100% sure, but I am pretty sure bridging CAMPUS AP virtual-aps can be done without PEF license.



  • 21.  RE: User couldn't get IP DHCP

    Posted Jan 15, 2020 05:50 AM

    Yes, Koen, Just got that idea by going through his log.

    Hi Rizalsfr, If possible Open TAC with Aruba.

     



  • 22.  RE: User couldn't get IP DHCP

    MVP
    Posted Jan 15, 2020 06:11 AM
    @Dinusha Chandrasinghe wrote:

    Yes, Koen, Just got that idea by going through his log.

    Hi Rizalsfr, If possible Open TAC with Aruba.

     

    That is why I proposed running 

    show license-usage ap
show license verbose

    That would show him the discrepancy between AP and PEF licenses.

    From his logs it is clear he has such discrepancy and therefor a bunch of his APs will not bring up ANY SSIDs.

     

    @Rizalsfr 

    Check those commands above. How many AP and PEF licenses do you have?

     

    If you want to use the PEF license features you need the same number of AP licenses as you do PEF licenses: one per AP. 

    That means you will need to add PEF licenses to match the AP count.

     

    However, while usefull, having the PEF license features is not a hard requirement so alternative you could simply delete any PEF licenses.

    If you have ONLY  AP licenses (without any PEF) then your APs will come up again but you will have limited firewall/user-role/.... control.

     

     

     



  • 23.  RE: User couldn't get IP DHCP

    Posted Jan 18, 2020 02:54 AM
    Hi @Koen

    I just want to bridge the forward mode so that my user ssid can broadcast and user can be internet. I dont need the role, all user will be bypass from role

    If i purchase the PEF license but i not use role, my PEF license just use for Bridge mode? That's waste of cost i think

    There are no idea?


  • 24.  RE: User couldn't get IP DHCP
    Best Answer

    Posted Jan 21, 2020 05:13 AM
    Hi all,

    I already have license PEF and currentlt running well
    Thanks for help ya


    Kind Regards


  • 25.  RE: User couldn't get IP DHCP

    Posted Jan 13, 2020 11:49 PM


    Kind Regards
    Rizal Safrudin