So if an AP only has AAC and the controller boots, the AP will not connect to another controller, the AP will boot.
I can't answer the rest clearly, I haven't read anything about this situation in any Aruba Guide.
Check the controller log to see if the APs are constantly booting. If so, it would mean that the APs always establish a tunnel to the S-AAC and thus take the tunnel to the AAC away from another AP.
What happens if you switch off an AP? At this moment, one or two tunnels become available, depending on how many tunnels this AP has established. APs with only one tunnel must then use these free tunnels and set up a tunnel to the S-AAC. Then all available tunnels would be in use again. Check what happens when you switch this AP back on. If it establishes a tunnel again and goes online, it would mean that AAC tunnels have higher priority than S-AAC tunnels.
------------------------------
Regards,
Waldemar
ACCX # 1377, ACEP, ACX - Network Security
If you find my answer useful, consider giving kudos and/or mark as solution
------------------------------
Original Message:
Sent: Mar 12, 2024 07:45 AM
From: safranek
Subject: Not all AP build a standby tunnel for WLCs
Yeah, this would be the problem. I need to correct numbers, 40 APs build AAC and S-AAC and 16 APs build only AAC. 40 x 2 + 16 = 96 so that is the reason why 16 AP not build S-AAC. So it was wrongly sized during planning phrase, thanks!
Question: what can we expect in terms of operation if we leave it like this? Will the controller provide at least one AAC to each AP, so it will break down the S-AAC created for another AP if it runs out of available tunnels?
It is clear that outage-free operation cannot be fully ensured this way, as it would require loading the controllers up to 50% at most. For those APs where only AAC is created, how much outage can be expected in case of controller outage? Will these APs restart, or will they plug in under another controller without restarting with a shorter outage.
Original Message:
Sent: Mar 12, 2024 04:00 AM
From: lord
Subject: Not all AP build a standby tunnel for WLCs
You overbook the Cluster AP Capacity.
A 9004 controller supports a maximum of 32 APs. Each AP builds 2 tunnels in the cluster, so a total of 2 x 55 = 110 tunnels are required.
However, you have 3 x 32 = 96 available.
Also check the CAP licenses, the number must also correspond to the number of APs.
------------------------------
Regards,
Waldemar
ACCX # 1377, ACEP, ACX - Network Security
If you find my answer useful, consider giving kudos and/or mark as solution
Original Message:
Sent: Mar 11, 2024 10:33 AM
From: safranek
Subject: Not all AP build a standby tunnel for WLCs
Hi!
We are using Aruba controller clusters in multiple sites (MMs in DC, MD clusters on each site) and we are experiencing the problem in only one site. This site has 3 piece of 9004 controllers and 55 APs in the same VLAN/subnet. Approximately 40 APs are building both active and standby tunnels to controllers, the remaining 15 APs are only building active tunnels, some to wlc1, some to wlc2, and some to wlc3.
Is it possible to check why an AP does not establish a standby tunnel to a member of the controller cluster?
OS: 8.10.0.10
Thanks!