Cisco 1702 CAPWAP to Autonomous – Quick Tutorial

Step 1) Bootvorgang abbrechen durch drücken des Mode Buttons. 

ap: dir

List of filesystems currently registered:

               flash[0]: (read-write)
              xmodem[1]: (read-only)
                null[2]: (read-write)
                tftp[5]: (read-only)

ap: dir flash:
Directory of flash:/

2    -rwx  287       <date>               info
3    -rwx  140       <date>               env_vars
4    -rwx  2084      <date>               event.log
37   drwx  512       <date>               ap3g2-rcvk9w8-mx
5    -rwx  1048      <date>               private-multiple-fs
6    drwx  2176      <date>               ap3g2-k9w8-mx.153-3.JN3
306  drwx  0         <date>               configs

Step 2) Flash formatieren

ap: format flash:
Are you sure you want to format "flash:" (all data will be lost) (y/n)?y
flashfs[0]: 0 files, 1 directories
flashfs[0]: 0 orphaned files, 0 orphaned directories
flashfs[0]: Total bytes: 41158656
flashfs[0]: Bytes used: 1024
flashfs[0]: Bytes available: 41157632
flashfs[0]: flashfs fsck took 27 seconds.
Filesystem "flash:" formatted
ap: 

Step 3) Speicherplatz püfen

ap: dir flash:
Directory of flash:/

2    -rwx  65        <date>               env_vars

Step 4) PC die IP Adresse 10.0.0.2 geben und per TFTP das Autonomous File  (k9w7) extracten.

ap: set IP_ADDR 10.0.0.1
ap: set netmask 255.255.255.0
ap: flash_init
Initializing Flash...
...The flash is already initialized.
ap: load_helper
ap: ether_init
Initializing ethernet port 0...
Ethernet speed is 1000 Mb - FULL Duplex
ap:
ap: tar -xtract tftp://10.0.0.2/ap3g2-k9w7-tar.153-3.JAB.tar flash:

DPAA Set for Independent Mode
 tide_boot_speed = 1000 
DPAA_INIT = 0x0

extracting info (287 bytes)
ap3g2-k9w7-mx.153-3.JAB/ (directory) 0 (bytes)
extracting ap3g2-k9w7-mx.153-3.JAB/ap3g2-k9w7-mx.153-3.JAB (215867 bytes)..............................................
extracting ap3g2-k9w7-mx.153-3.JAB/ap3g2-k9w7-tx.153-3.JAB (73 bytes)
extracting ap3g2-k9w7-mx.153-3.JAB/ap3g2-bl-2600 (190140 bytes).........................................
extracting ap3g2-k9w7-mx.153-3.JAB/ap3g2-bl-3600 (189183 bytes).........................................
ap3g2-k9w7-mx.153-3.JAB/html/ (directory) 0 (bytes)
ap3g2-k9w7-mx.153-3.JAB/html/level/ (directory) 0 (bytes)
ap3g2-k9w7-mx.153-3.JAB/html/level/1/ (directory) 0 (bytes)
extracting ap3g2-k9w7-mx.153-3.JAB/html/level/1/appsui.js (563 bytes)
extracting ap3g2-k9w7-mx.153-3.JAB/html/level/1/back.shtml (512 bytes)
extracting ap3g2-k9w7-mx.153-3.JAB/html/level/1/cookies.js (5032 bytes).....
-- CUT --
xtracting ap3g2-k9w7-mx.153-3.JAB/img_sign_rel_sha2.cert (1371 bytes)
extracting info.ver (287 bytes)ap: 
ap: 
ap: 
ap: 
ap: dir flash:
Directory of flash:/

2    -rwx  85        <date>               env_vars
3    -rwx  287       <date>               info
4    drwx  2112      <date>               ap3g2-k9w7-mx.153-3.JAB
236  -rwx  287       <date>               info.ver

28252160 bytes available (12906496 bytes used)
ap: set boot flash:/ap3g2-k9w7-mx.153-3.JAB
ap: 
ap: 
ap: set
DEFAULT_ROUTER=10.0.0.1
IP_ADDR=10.0.0.1
NETMASK=255.255.255.0
boot=flash:/ap3g2-k9w7-mx.153-3.JAB
netmask=255.255.255.0
ap: boot
Rebooting system to reset DPAA...

IOS Bootloader - Starting system.
flash is writable
Antigua Lite Board P2
40MB format
Tide XL MB - 40MB of flash
Xmodem file system is available.
flashfs[0]: 229 files, 7 directories
flashfs[0]: 0 orphaned files, 0 orphaned directories
flashfs[0]: Total bytes: 41158656
flashfs[0]: Bytes used: 12906496
flashfs[0]: Bytes available: 28252160
flashfs[0]: flashfs fsck took 10 seconds.
Base Ethernet MAC address: f0:7f:06:92:89:48
Ethernet speed is 100 Mb - FULL Duplex
Loading "flash:/ap3g2-k9w7-mx.153-3.JAB/ap3g2-k9w7-mx.153-3.JAB"...#########################

File "flash:/ap3g2-k9w7-mx.153-3.JAB/ap3g2-k9w7-mx.153-3.JAB" uncompressed and installed, entry point: 0x2003000
executing...

Secondary Bootloader - Starting system.
Antigua Lite Board P2

CSCur43050 APs mfg in September/October 2014 unable to join an AireOS controller

Zum Jahresenden überrascht Cisco mit einem heftigen Bug:

CSCur43050

 

Doch worum gehts beim CSCur43050?

New Aironet APs with factory installed recovery IOS are able to join the controller 8.0.100.0 and download 15.3(3)JA IOS. But after the AP reload, the APs are unable to join the controller. On the AP, logs similar to the following are seen:

*Oct 16 12:39:06.231: AP has SHA2 MIC certificate – Using SHA2 MIC certificate for DTLS.

*Oct 16 13:14:56.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: ***.***.***.*** peer_port: 5246Peer certificate verification failed FFFFFFFF

*Oct 16 13:14:56.127: DTLS_CLIENT_ERROR: ../capwap/base_capwap/capwap/base_capwap_wtp_dtls.c:496 Certificate verified failed!
*Oct 16 13:14:56.127: %DTLS-5-SEND_ALERT: Send FATAL : Bad certificate Alert to ***.***.***.***:5246
*Oct 16 13:14:56.127: %DTLS-5-SEND_ALERT: Send FATAL : Close notify Alert to ***.***.***.***:5246

Another symptom of this problem is that the AP may be able to join the 8.0.100.0 controller, download the IOS code, boot up and join the controller OK … but when it goes to upgrade to newer 8.x code, it gets stuck in a loop failing the download.

 

(mehr …)