In the wake of the passing Cisco "New WLAN Classic" marathon, I would like to tell you how I switched from the Cisco 5508 to the Cisco 9800-CL back in 2019.
Foreword
Sometimes I get the idea that when Cisco already has a product that has almost no bugs, the interface is convenient and rich in functionality, this product starts to be buried. This happened with Firepower, which replaced the ASA (but has not yet been able to oust it), the same happened with AirOS, which was replaced by IOS-XE. Of course, this is the opinion of the layman, and in fact, new functionality, performance, etc. have appeared in the new lines. etc. But for me, as a person who has worked for many years with one series of equipment, when you already know the main bugs, "pitfalls", you can already with your eyes closed find the necessary menu in the interface or remember all the commands by heart, it is very difficult to take and switch to an absolutely new line ...
Negation
Usually, shock and denial occurs in patients who are told a fatal diagnosis early in the development of the disease.
In 2019, our company used a pair of AIR-CT5508-500-K9 in HA as a Wi-Fi controller. It was a long-established controller that I had been familiar with since 2015. But, the number of points in the company grew and according to calculations by 2020, we had to go beyond 500 access points (and this is already the physical limit of the 5508 controller). In the beginning, I didn't really think about it and just started agreeing on the specification for the 5520 Wi-Fi controller. But during a consultation with Cisco, I was asked: "Why don't you want to switch to the 9800 series." To be honest, I didn't even hear about her at that time. Starting to google this question, I found a description, beautiful slides, even some guides. Then I had a videoconferencing system from Sofya Strunskaya and Anna Komsha for the 9800 series. And I started having sleepless nights wondering what to choose.
9800 - , , . C , AirOS, , . , , , , , EoS. , "" - .
5520+ 9800-CL+DNA Essentials ( , 9800 . , , , , ). , 5520, 9800-CL DNA Essentials. , .
, , , . : ยซ ?ยป
, , . - ....
, Wizard. , wizard , , . , , - , .
16.11. , 9800-CL 5508 . TAC, , "" 5508, . , , 5508 . , ( - , CSCvp33020). , ... 8.5, , , 9800-CL .
, , 17.5.5.
9800 .
( , 16.12) , , 200 , 20. , , , .
ACL, , , , .
, , ( ), Wi-Fi 9800-CL. , , Wi-Fi. . - , , AAA, , uplink. L2 L3.
TAC , (CSCvq88794).
. ยซยป .
, . . , , . . , , 30 1815W RLAN, - Ethernet (CSCvs08564). , . , , .
, .
, . .
, ( Android, 9800-CL ). , - , , .
, CLI ( ).
. , .
, . telegraf+influxdb+grafana, 9800-CL IOS-XE netconf. - ,
RSSI SNR. ,
Catalist 9800 :
. AP Groups .
, , .
, . - , - . REXEP, , , . , .
, , ( 30).
. HA, . 9800-CL , . , ( ). , , . ! commit. .
. , , . , "" - . "", . .
, Radioactive Trace. , - (TAC ). " , ", , . , .
, . AirOS , 9800. WPA3 WiFi6 . , 16.11 17.5.1, . "" .
:
, - , , . promiscuity mode Vmotion ( , , , VCenter, - ). , .
, HA ESXi, VLAN Redundant port .
, Redundant port .
, wizard, wireless management interface .
Management , , . , , TAC , . , VRF. , . TAC .
IOS-XE Automate Tester RADIUS . ( )
802.1X, accounting. Cisco , Firepower ( ISE Firepower), .
, ( 28 ) Dual-Band Radios, Flexible Radio Assignment . , 2.4 Wi-Fi ( , ).
Filter , . REGEX AP* *-IT. , . , default , rf-profile .
, . . , , . HA , , . AirOS , , ..
P.S.
In conclusion, I would like to thank Sofya Strunskaya and Viktor Platov for their help in the process of mastering the Catalyst 9800 and for their advice on wireless networking.
UPDATE
Added update advice. About Commit. That you shouldn't forget about him. I had a case when I forgot about it, and since I was updating in the morning, a surprise awaited me during working hours, in the form of a reboot and firmware rollback.