1
00:00:00,210 --> 00:00:06,500
Now for the CCNA exam, you really need to know how to configure a wireless LAN controller.

2
00:00:06,510 --> 00:00:09,840
You need to know the menu options in a wireless LAN controller.

3
00:00:09,840 --> 00:00:15,630
So I'm going to show you multiple demonstrations and also test your knowledge of the Cisco Wireless

4
00:00:15,630 --> 00:00:16,620
LAN controller.

5
00:00:17,420 --> 00:00:24,410
In this first demonstration, we're going to build a brand new network consisting of lightweight wireless

6
00:00:24,410 --> 00:00:30,080
access points, wireless LAN controller, switch, DHCP server and obviously clients.

7
00:00:30,350 --> 00:00:35,840
This will give you a good understanding of how to build a network using the Cisco Wireless LAN controller.

8
00:00:35,870 --> 00:00:38,590
I strongly suggest that you follow me.

9
00:00:38,600 --> 00:00:44,990
So while I'm building this, follow what I'm doing and see if you can get it right in the next few labs.

10
00:00:44,990 --> 00:00:50,480
I'm going to test your knowledge and see if you can actually build your own wireless LAN controller

11
00:00:50,480 --> 00:00:51,290
network.

12
00:00:51,650 --> 00:00:57,380
Remember that we're using a lightweight access point share and autonomous access point is an access

13
00:00:57,380 --> 00:01:00,500
point that you configure and manage directly.

14
00:01:00,920 --> 00:01:06,350
Here we're using a lightweight access points which require a wireless LAN controller to work.

15
00:01:06,450 --> 00:01:07,820
Okay, so let's get started.

16
00:01:12,470 --> 00:01:16,520
In this example, I'm controlling that Windows computer from my Mac.

17
00:01:16,670 --> 00:01:21,740
You could run packet tracer directly on your Mac or Linux computer.

18
00:01:21,770 --> 00:01:26,240
I have found however, that I have issues with packet tracer on my Mac.

19
00:01:26,450 --> 00:01:31,970
So I've found that Windows is the most stable using the latest release of packet tracer.

20
00:01:31,970 --> 00:01:34,520
So that's what I'm going to use for this demonstration.

21
00:01:35,160 --> 00:01:36,780
Okay, so let's build a network.

22
00:01:36,800 --> 00:01:38,870
First thing I need is a switch.

23
00:01:38,870 --> 00:01:44,930
So I'm going to get a 3560 switch and add that to the topology.

24
00:01:45,440 --> 00:01:47,930
The switch will simply be a layer two switch.

25
00:01:47,930 --> 00:01:53,270
In this topology, we're going to start with a simple topology, and then in subsequent videos and labs,

26
00:01:53,270 --> 00:01:55,430
we'll build more complex topologies.

27
00:01:55,430 --> 00:01:59,300
But let's start simple to make sure that you can get a network working.

28
00:01:59,870 --> 00:02:01,520
Okay, so we've got a switch.

29
00:02:02,660 --> 00:02:04,670
Next device I need is a PC.

30
00:02:04,700 --> 00:02:08,750
I'm going to use the PC to manage the wireless LAN controller.

31
00:02:08,780 --> 00:02:10,550
I also need a server.

32
00:02:11,030 --> 00:02:17,600
The server will act as a DHCP server to allocate IP addresses to the wireless access points.

33
00:02:18,380 --> 00:02:20,530
We also need a wireless LAN controller.

34
00:02:20,540 --> 00:02:23,960
I'm going to get a 3504 wireless LAN controller.

35
00:02:24,170 --> 00:02:27,320
We also need some lightweight access points.

36
00:02:27,320 --> 00:02:28,820
I'll grab two of those.

37
00:02:28,820 --> 00:02:32,000
So 3702 wireless access points.

38
00:02:32,120 --> 00:02:34,220
So they are our devices.

39
00:02:34,220 --> 00:02:36,410
Let's name this access point one.

40
00:02:36,830 --> 00:02:40,490
We'll name this access point to.

41
00:02:42,660 --> 00:02:45,510
I'll name this w one.

42
00:02:47,080 --> 00:02:48,340
This will be switch one.

43
00:02:49,950 --> 00:02:52,230
I'll leave the rest of the devices as they are.

44
00:02:52,920 --> 00:02:56,400
So next thing is, let's cable up the network.

45
00:02:56,430 --> 00:02:59,760
I'll connect the first Ethernet interface of the PC.

46
00:03:00,980 --> 00:03:04,250
To the first Frost Ethernet interface on the switch.

47
00:03:06,390 --> 00:03:09,360
DHCP server to the second interface.

48
00:03:12,140 --> 00:03:20,450
Wireless LAN controller gigabit one to the third physical interface, and then I'll connect the access

49
00:03:20,450 --> 00:03:23,240
points to the switch.

50
00:03:24,960 --> 00:03:27,450
So there's a basic topology.

51
00:03:27,570 --> 00:03:31,290
It's not very pretty, but that's all we need to get started.

52
00:03:32,460 --> 00:03:35,610
You could make this look better if you wanted to.

53
00:03:35,640 --> 00:03:37,590
I'm not too concerned about that.

54
00:03:37,710 --> 00:03:46,650
One of the things you could do if you don't like the labels is go to options, preferences and uncheck

55
00:03:46,650 --> 00:03:50,610
this option so that the interface labels are removed.

56
00:03:52,140 --> 00:03:57,210
But I prefer having those so that I know how the devices are connected.

57
00:03:57,760 --> 00:04:01,500
Okay, so let's now configure the devices.

58
00:04:01,830 --> 00:04:10,140
The first thing is the wireless access point by default uses an IP address of 1921681.1.

59
00:04:10,290 --> 00:04:14,880
With this subnet mask, I'm going to change that to a slash 24 mask.

60
00:04:15,420 --> 00:04:24,000
I'm going to set the default gateway to 1921681254 and the DNS server.

61
00:04:24,960 --> 00:04:28,080
21921681 253.

62
00:04:28,620 --> 00:04:34,410
So you might want to add a note to your topology so that you know what IP addresses the devices are

63
00:04:34,410 --> 00:04:36,270
using default gateways.

64
00:04:36,270 --> 00:04:42,420
That DHCP server DNS server will be 1921681253.

65
00:04:42,420 --> 00:04:49,480
That will be the server up here and then the wireless LAN controller will be 1921681.1.

66
00:04:49,500 --> 00:04:51,630
I'll leave it at the default for the moment.

67
00:04:51,630 --> 00:04:54,660
Now, in the real world, you probably going to want to change that.

68
00:04:54,660 --> 00:05:00,600
You're going to want to put your access points on a different VLAN to your client devices.

69
00:05:00,600 --> 00:05:02,170
But I'm going to keep it simple.

70
00:05:02,200 --> 00:05:09,300
I always like to keep things simple when we start start from the basics and then bold or iterate on

71
00:05:09,300 --> 00:05:11,490
that and make it more complex.

72
00:05:12,060 --> 00:05:12,330
Okay.

73
00:05:12,330 --> 00:05:17,430
So all I've done is specify the IP addresses of the wireless LAN controller.

74
00:05:17,610 --> 00:05:18,900
We've got its name.

75
00:05:19,410 --> 00:05:21,420
Once again, management information.

76
00:05:21,420 --> 00:05:23,940
Is that on the PC?

77
00:05:23,970 --> 00:05:28,860
We're going to configure it with an IP address in the same subnet.

78
00:05:28,860 --> 00:05:35,070
So let's say 19216815 slash 24 mask.

79
00:05:35,820 --> 00:05:41,760
If you buy a physical access point, it by default will have an IP address of one on 216811.

80
00:05:41,820 --> 00:05:47,610
So you just put your PC in the same subnet and then you can browse to the controller and configure it.

81
00:05:47,610 --> 00:05:49,110
So that's what we're doing here.

82
00:05:49,470 --> 00:05:53,130
So on the PC, I've got my IP address configured, go to desktop.

83
00:05:53,820 --> 00:05:56,430
I'll make this a bit bigger, go to web browser.

84
00:05:56,790 --> 00:06:04,650
And in this example, we're using HTTP and we're going to browse to the IP address of the controller.

85
00:06:04,680 --> 00:06:07,830
Now I have found that this is very slow in packet tracer.

86
00:06:07,830 --> 00:06:11,190
You can see the icons here flickering a lot.

87
00:06:11,460 --> 00:06:12,660
Just be patient.

88
00:06:12,690 --> 00:06:15,660
It might be very slow with this controller.

89
00:06:15,660 --> 00:06:20,100
If you think there's a problem, you could ping from your PC to the controller.

90
00:06:20,490 --> 00:06:25,560
But as you can see here, we've now been prompted with a wizard.

91
00:06:25,590 --> 00:06:27,710
This is something important to remember.

92
00:06:27,770 --> 00:06:31,530
Use HTTP to the IP address of the controller initially.

93
00:06:31,680 --> 00:06:37,830
Then once you've done some initial configuration, it will reboot and you have to use HTTPS to configure

94
00:06:37,830 --> 00:06:38,640
the controller.

95
00:06:38,880 --> 00:06:41,540
So what is the admin name that I'm going to use?

96
00:06:41,550 --> 00:06:44,340
I'm going to use admin password is going to be Cisco.

97
00:06:44,640 --> 00:06:47,130
Now it might complain about that password.

98
00:06:48,420 --> 00:06:52,170
Click start now notice it's complaining about the passwords.

99
00:06:52,170 --> 00:06:55,980
So I'm going to say Cisco one, two, three, Cisco, one, two, three.

100
00:06:56,130 --> 00:07:00,600
Obviously, in the real world, you're going to want to use a better password than that, but that's

101
00:07:00,600 --> 00:07:02,010
fine for this demonstration.

102
00:07:02,010 --> 00:07:04,100
So uppercase C for Cisco.

103
00:07:04,110 --> 00:07:05,130
One, two, three.

104
00:07:05,640 --> 00:07:07,130
Now we need to give it a name.

105
00:07:07,140 --> 00:07:09,670
I'm going to call it wc1.

106
00:07:09,690 --> 00:07:12,030
It's picked up that I'm in the United Kingdom.

107
00:07:12,740 --> 00:07:15,050
Your packet tracer should pick up where you are.

108
00:07:15,080 --> 00:07:18,890
In the real world, you need to specify the right country.

109
00:07:19,280 --> 00:07:25,700
You don't want to use Germany or say Russia in the UK to be legally compliant.

110
00:07:25,730 --> 00:07:27,890
Use the correct country code.

111
00:07:27,920 --> 00:07:31,520
So GB is UK date and time is here.

112
00:07:31,550 --> 00:07:35,450
timeZone is that we can specify http server if we want to.

113
00:07:35,660 --> 00:07:38,220
We're going to specify the management IP address.

114
00:07:38,240 --> 00:07:41,500
I'll keep that the same if you want to change it.

115
00:07:41,510 --> 00:07:43,640
This is where you can change it.

116
00:07:44,730 --> 00:07:47,220
Default gateway to five four.

117
00:07:47,820 --> 00:07:52,650
In the real world, you typically once again want to use VLANs.

118
00:07:52,680 --> 00:07:58,050
You want to separate your AP IP addressing from your clients.

119
00:07:58,140 --> 00:07:59,730
We're not going to worry about that here.

120
00:07:59,760 --> 00:08:00,900
We want to get started.

121
00:08:01,110 --> 00:08:02,280
Somebody click next.

122
00:08:03,480 --> 00:08:10,410
Now we told that we can create a wireless network and employee network, so let's create a staff network.

123
00:08:10,650 --> 00:08:12,720
What security are we going to use?

124
00:08:12,960 --> 00:08:14,400
Make sure you know this.

125
00:08:15,000 --> 00:08:23,400
Pzc WPA two Pzc means we're not using a radius server enterprise means we're going to use a radius server

126
00:08:23,400 --> 00:08:24,980
better for authentication.

127
00:08:24,990 --> 00:08:28,380
Typically at home you're going to use pzc appreciate key.

128
00:08:28,590 --> 00:08:33,960
In other words, the same key or the same password is used on your PC as well as your wireless network.

129
00:08:33,990 --> 00:08:37,740
You're just authenticating use using a preset key.

130
00:08:38,100 --> 00:08:43,140
But if you're using enterprise, you integrate with a radius or tax server.

131
00:08:43,710 --> 00:08:45,930
So I'm simply going to use preset key.

132
00:08:46,620 --> 00:08:48,090
What's the passphrase?

133
00:08:48,090 --> 00:08:53,630
I'm going to use Cisco, one, two, three to keep it simple so that I don't forget my passwords.

134
00:08:53,640 --> 00:08:55,680
You might want to write that down.

135
00:08:55,710 --> 00:08:56,730
Keep it somewhere.

136
00:08:57,120 --> 00:08:59,820
The VLAN that I'm going to use is the management VLAN.

137
00:09:00,120 --> 00:09:04,290
Not great practice for the real world, but we'll leave that for the moment.

138
00:09:04,290 --> 00:09:08,760
We could set up a guest network if we wanted to, but I'm going to show you how to do that manually,

139
00:09:08,760 --> 00:09:11,280
so I'm going to leave that as it is and click next.

140
00:09:11,310 --> 00:09:15,060
Now, a virtual IP address is required by the controller.

141
00:09:15,060 --> 00:09:24,720
In many past implementations they used 1.1.1, but that's now a very important IP address for DNS resolution.

142
00:09:24,720 --> 00:09:29,760
So you don't want to use that Cisco using 192021 by default now.

143
00:09:30,270 --> 00:09:35,730
So that's the virtual IP address default mobility group, which can be used if clients are roaming from

144
00:09:35,730 --> 00:09:38,010
one access point to another is default.

145
00:09:38,010 --> 00:09:40,470
We'll leave that as it is and click next.

146
00:09:41,610 --> 00:09:41,830
Okay.

147
00:09:41,850 --> 00:09:45,180
So now we asked to confirm our settings and click apply.

148
00:09:45,330 --> 00:09:48,540
So there is my controller settings.

149
00:09:48,960 --> 00:09:51,720
Here is my network settings.

150
00:09:51,870 --> 00:09:55,500
I'm using the default virtual IP address and default mobility group.

151
00:09:55,590 --> 00:09:59,670
I'm going to click Apply and notice what we told system will reboot.

152
00:09:59,700 --> 00:10:05,430
After these settings are applied, click okay to apply these configurations or cancel to return to the

153
00:10:05,430 --> 00:10:05,940
wizard.

154
00:10:06,180 --> 00:10:06,870
I'm going to click.

155
00:10:06,870 --> 00:10:07,530
Okay.

156
00:10:07,770 --> 00:10:15,480
The configuration is now saved and I can connect back to the controller, but I need to use HTTPS to

157
00:10:15,480 --> 00:10:17,040
connect to the controller.

158
00:10:17,190 --> 00:10:25,710
So what I could do is on the client, close this down and make sure that I can ping the controller.

159
00:10:25,980 --> 00:10:29,100
So this is one way to check whether it's come back again.

160
00:10:29,730 --> 00:10:32,500
Making sure that the pings actually succeed.

161
00:10:32,520 --> 00:10:38,250
So I'm going to pause the video at this point, wait for this to start working, and then I'll connect

162
00:10:38,250 --> 00:10:40,500
back to the controller using HTTPS.

163
00:10:40,530 --> 00:10:41,480
How are you doing?

164
00:10:41,490 --> 00:10:45,030
Are you able to follow me at this pace?

165
00:10:45,060 --> 00:10:47,870
Are you able to configure your controller?

166
00:10:47,880 --> 00:10:49,140
Try this yourself.

167
00:10:49,140 --> 00:10:50,610
That's the best way to learn.