WEBAUTH SSID ISSUE
/* Style Definitions */
table.MsoNormalTable
{mso-style-name:"Tableau Normal";
mso-tstyle-rowband-size:0;
mso-tstyle-colband-size:0;
mso-style-noshow:yes;
mso-style-parent:"";
mso-padding-alt:0cm 5.4pt 0cm 5.4pt;
mso-para-margin:0cm;
mso-para-margin-bottom:.0001pt;
mso-pagination:widow-orphan;
font-size:10.0pt;
font-family:"Times New Roman";
mso-ansi-language:#0400;
mso-fareast-language:#0400;
mso-bidi-language:#0400;}
hello,
We do have some troubles regarding an SSID , i have wism controller version 5.2.193, three Wlans are configured each one broadcasting in diffrrent range SSID TESTGUEST on 802.11g,SSID 2 on 802.11a,SSID 3 on 802.11b, i do have some trouble with SSID TESTGUEST used for Guest access using Webauth as security methode to authenticate users with predifined local users accounts, the symptoms are users can see the SSSID TESTGUEST beacons but can not get access (no login page ).
Note :i have noticed some errors regarding lwapp since we know that we are unsing 5.2.193 we should have capwap error instead of lwapp .
logging;
(WiSM-slot2-2) >show logging if you need more info let me know
regargs
Logging to buffer :
- Logging of system messages to buffer :
- Logging filter level.......................... warnings
- Number of system messages logged.............. 3099008
- Number of system messages dropped............. 158275
- Logging of debug messages to buffer ........... Disabled
- Number of debug messages logged............... 0
- Number of debug messages dropped.............. 0
Logging to console :
- Logging of system messages to console :
- Logging filter level.......................... errors
- Number of system messages logged.............. 0
- Number of system messages dropped............. 3257283
- Logging of debug messages to console .......... Enabled
- Number of debug messages logged............... 0
- Number of debug messages dropped.............. 0
Logging to syslog :
- Syslog facility................................ local1
- Logging of system messages to syslog :
- Logging filter level.......................... warnings
- Number of system messages logged.............. 3099008
--More-- or (q)uit
- Number of system messages dropped............. 158275
- Logging of debug messages to syslog ........... Disabled
- Number of debug messages logged............... 0
- Number of debug messages dropped.............. 0
- Number of remote syslog hosts.................. 1
- Host 0....................................... 198.235.125.20
- Host 1....................................... Not Configured
- Host 2....................................... Not Configured
Logging of traceback............................. Enabled
- Traceback logging level........................ debugging
Logging of process information................... Enabled
Logging of source file informational............. Enabled
Timestamping of messages.........................
- Timestamping of system messages................ Enabled
- Timestamp format.............................. Date and Time
- Timestamping of debug messages................. Enabled
- Timestamp format.............................. Date and Time
Logging buffer (3099008 logged, 158275 dropped)
*Dec 10 10:42:07.157: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:42:07.085: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:42:06.993: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:42:06.911: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:42:06.829: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:42:06.767: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:42:06.702: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:42:06.639: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:42:06.496: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:d7:93:3b:d0
*Dec 10 10:42:06.448: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:42:06.292: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:1f:27:55:b9:c0 Previous message occurred 3 times.
*Dec 10 10:42:06.139: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:42:06.138: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:42:06.125: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:42:06.048: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:42:05.992: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:42:05.915: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:42:05.832: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:42:05.748: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:42:05.694: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:42:05.633: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:42:05.549: %DOT1X-4-INVALID_MSG_TYPE: authlib.c:84 Invalid message type 9 received from AAA
*Dec 10 10:42:05.549: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:42:05.483: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:42:05.411: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:42:05.345: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0 Previous message occurred 3 times.
*Dec 10 10:42:05.051: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:42:04.911: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:18:74:c7:6b:30
*Dec 10 10:42:03.602: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:18:74:c7:6b:30
*Dec 10 10:42:03.142: %DTL-1-ARP_POISON_DETECTED: dtl_net.c:1415 STA(Target MAC Address) [00:18:de:b3:ba:7b, 0.0.0.0] ARP (op ARP REQUEST) received with invalid SPA(Source IP Address) 192.168.254.51/TPA(Destination IP Address) 192.168.252.1
*Dec 10 10:42:02.568: %DHCP-4-REQIP_NOT_PRESENT: dhcpd.c:299 Received a packet without a requested ip!.
*Dec 10 10:41:59.867: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:41:58.350: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:41:57.568: %DHCP-4-REQIP_NOT_PRESENT: dhcpd.c:299 Received a packet without a requested ip!.Previous message occurred 2 times.
*Dec 10 10:41:57.380: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:41:57.379: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:41:57.292: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE Previous message occurred 3 times.
*Dec 10 10:41:56.519: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:41:56.416: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:41:56.067: %DTL-1-ARP_POISON_DETECTED: dtl_net.c:1415 STA(Target MAC Address) [00:21:5c:89:a4:33, 0.0.0.0] ARP (op ARP REQUEST) received with invalid SPA(Source IP Address) 192.168.254.31/TPA(Destination IP Address) 192.168.252.1
*Dec 10 10:41:56.053: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:18:74:0a:32:d0 Previous message occurred 2 times.
*Dec 10 10:41:55.418: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:41:55.417: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:41:55.136: %DOT1X-3-MAX_EAP_RETRIES: 1x_auth_pae.c:2856 Max EAP identity request retries (3) exceeded for client 00:1b:77:15:a1:31
*Dec 10 10:41:54.922: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:1d:71:23:74:20
*Dec 10 10:41:54.569: %DTL-1-ARP_POISON_DETECTED: dtl_net.c:1415 STA(Target MAC Address) [00:21:5c:89:a4:33, 0.0.0.0] ARP (op ARP REQUEST) received with invalid SPA(Source IP Address) 192.168.254.31/TPA(Destination IP Address) 192.168.252.1
*Dec 10 10:41:54.470: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:41:54.169: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE Previous message occurred 3 times.
*Dec 10 10:41:54.168: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:41:54.167: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:41:53.539: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:18:74:c7:75:f0
*Dec 10 10:41:53.324: %DOT1X-3-MAX_EAP_RETRANS: 1x_ptsm.c:426 Max EAP retransmissions exceeded for client 00:21:5c:97:90:9f Previous message occurred 2 times.
*Dec 10 10:41:51.627: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:41:51.522: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:1d:71:23:74:20
*Dec 10 10:41:51.224: %DOT1X-4-INVALID_MSG_TYPE: authlib.c:84 Invalid message type 9 received from AAA
*Dec 10 10:41:50.139: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:1f:27:55:8a:f0
*Dec 10 10:41:49.057: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:41:49.056: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:41:48.932: %DOT1X-3-MAX_EAP_RETRANS: 1x_ptsm.c:426 Max EAP retransmissions exceeded for client 00:1b:77:15:71:13
*Dec 10 10:41:48.753: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:1f:6d:b9:6a:30
*Dec 10 10:41:47.985: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:41:47.984: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:41:47.648: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:41:46.437: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:le returned L7_FAILURE Previous message occurred 2 times.
*Dec 10 10:41:46.436: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:41:46.435: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned _FAILURE Previous message occurred 2 times.
*Dec 10 10:41:45.762: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:41:43.201: %DOT1X-4-INVALID_MSG_TYPE: authlib.c:84 Invalid message type 9 received from AAA
*Dec 10 10:41:43.011: %DOT1X-3-MAX_EAP_RETRIES: 1x_auth_pae.c:2856 Max EAP identity request retries (3) exceeded for client 00:1c:bf:61:fa:da
*Dec 10 10:41:43.010: %DOT1X-4-INVALID_MSG_TYPE: authlib.c:84 Invalid message type 9 received from AAA
*Dec 10 10:41:41.464: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:18:74:c7:6b:30
*Dec 10 10:41:40.072: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:18:74:0a:32:d0
*Dec 10 10:41:38.940: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:1d:71:23:74:20
*Dec 10 10:41:37.497: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE Previous message occurred 2 times.
*Dec 10 10:41:37.496: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:41:36.898: %DOT1X-4-INVALID_MSG_TYPE: authlib.c:84 Invalid message type 9 received from AAA
*Dec 10 10:41:36.739: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:41:36.738: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:41:36.242: %APF-4-ASSOCREQ_PROC_FAILED: apf_80211.c:3682 Failed to process an association request from 00:0c:f1:29:b7:6a. WLAN:1, SSID:TESTGUEST. Conflicting extended supported rates in message.
*Dec 10 10:41:35.370: %DOT1X-3-MAX_EAP_RETRANS: 1x_ptsm.c:426 Max EAP retransmissions exceeded for client 00:18:de:3e:74:79
*Dec 10 10:41:35.320: %DHCP-4-REQIP_NOT_PRESENT: dhcpd.c:299 Received a packet without a requested ip!.
*Dec 10 10:41:34.302: %DTL-1-ARP_POISON_DETECTED: dtl_net.c:1415 STA(Target MAC Address) [00:13:ce:29:e2:4c, 0.0.0.0] ARP (op ARP REQUEST) received with invalid SPA(Source IP Address) 192.168.254.243/TPA(Destination IP Address) 192.168.252.1
*Dec 10 10:41:33.808: %APF-4-ASSOCREQ_PROC_FAILED: apf_80211.c:3682 Failed to process an association request from 00:0c:f1:29:b7:6a. WLAN:1, SSID:TESTGUEST. Conflicting extended supported rates in message.
*Dec 10 10:41:33.304: %DTL-1-ARP_POISON_DETECTED: dtl_net.c:1415 STA(Target MAC Address) [00:13:ce:29:e2:4c, 0.0.0.0] ARP (op ARP REQUEST) received with invalid SPA(Source IP Address) 192.168.254.243/TPA(Destination IP Address) 192.168.252.1 Previous message occurred 2 times.
*Dec 10 10:41:32.274: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:41:32.273: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG: RRM Verify Coverage Hole returned L7_FAI
*Dec 10 10:41:32.178: %DTL-1-ARP_POISON_DETECTED: dtl_net.c:1415 STA(Target MAC Address) [00:13:ce:29:e2:4c, 0.0.0.0] ARP (op ARP REQUEST) received with invalid SPA(Source IP Address) 192.168.254.243/TPA(Destination IP Address) 192.168.252.1
*Dec 10 10:41:30.624: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:1f:27:55:b9:c0
*Dec 10 10:41:30.056: %APF-4-ASSOCREQ_PROC_FAILED: apf_80211.c:3682 Failed to process an association request from 00:0c:f1:29:b7:6a. WLAN:1, SSID:TESTGUEST. Conflicting extended supported rates in message.
*Dec 10 10:41:29.968: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:41:29.965: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE revious message occurred 3 times.
*Dec 10 10:40:58.813: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:1f:27:56:0d:a0
*Dec 10 10:40:58.491: %DTL-1-ARP_POISON_DETECTED: dtl_net.c:1415 STA(Target MAC Address) [00:19:7d:58:a0:f9, 0.0.0.0] ARP (op ARP REQUEST) received with invalid SPA(Source IP Address) 192.168.254.28/TPA(Destination IP Address) 192.168.252.1
*Dec 10 10:40:58.125: %DHCP-4-REQIP_NOT_PRESENT: dhcpd.c:299 Received a packet without a requested ip!.
*Dec 10 10:40:57.429: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:18:74:0a:32:d0
*Dec 10 10:40:56.980: %DTL-1-ARP_POISON_DETECTED: dtl_net.c:1415 STA(Target MAC Address) [00:19:7d:58:a0:f9, 0.0.0.0] ARP (op ARP REQUEST) received with invalid SPA(Source IP Address) 192.168.254.28/TPA(Destination IP Address) 192.168.252.1
*Dec 10 10:40:56.188: %APF-4-ASSOCREQ_PROC_FAILED: apf_80211.c:3682 Failed to process an association request from 00:0c:f1:29:b7:6a. WLAN:1, SSID:TESTGUEST. Conflicting extended supported rates in message.
*Dec 10 10:40:56.043: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:18:74:c7:7c:b0
*Dec 10 10:40:55.964: %DTL-1-ARP_POISON_DETECTED: dtl_net.c:1415 STA(Target MAC Address) [00:19:7d:58:a0:f9, 0.0.0.0] ARP (op ARP REQUEST) received with invalid SPA(Source IP Address) 192.168.254.28/TPA(Destination IP Address) 192.168.252.1
*Dec 10 10:40:54.744: %APF-4-ASSOCREQ_PROC_FAILED: apf_80211.c:3682 Failed to process an association request from 00:0c:f1:29:b7:6a. WLAN:1, SSID:TESTGUEST. Conflicting extended supported rates in message.
*Dec 10 10:40:54.105: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:40:54.104: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:40:53.924: %DOT1X-4-INVALID_MSG_TYPE: authlib.c:84 Invalid message type 9 received from AAA
*Dec 10 10:40:51.195: %APF-4-ASSOCREQ_PROC_FAILED: apf_80211.c:3682 Failed to process an association request from 00:0c:f1:29:b7:6a. WLAN:1, SSID:TESTGUEST. Conflicting extended supported rates in message.
*Dec 10 10:40:50.295: %APF-3-USER_DEL_FAILED: apf_ms.c:5071 Unable to delete username CORP\mxcrawle for mobile 00:40:96:b5:58:8c
*Dec 10 10:40:49.724: %APF-4-ASSOCREQ_PROC_FAILED: apf_80211.c:3682 Failed to process an association request from 00:0c:f1:29:b7:6a. WLAN:1, SSID:TESTGUEST. Conflicting extended supported rates in message.
*Dec 10 10:40:48.372: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:1f:27:56:0d:a0
*Dec 10 10:40:47.813: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:40:47.640: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:40:47.336: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG: RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:40:46.991: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:18:74:c7:75:f0
*Dec 10 10:40:46.154: %APF-4-ASSOCREQ_PROC_FAILED: apf_80211.c:3682 Failed to process an association request from 00:0c:f1:29:b7:6a. WLAN:1, SSID:TESTGUEST. Conflicting extended supported rates in message.
*Dec 10 10:40:45.710: %DOT1X-4-INVALID_MSG_TYPE: authlib.c:84 Invalid message type 9 received from AAA
*Dec 10 10:40:45.605: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:18:74:c7:6b:30
*Dec 10 10:40:45.520: %DOT1X-3-MAX_EAP_RETRIES: 1x_auth_pae.c:2856 Max EAP identity request retries (3) exceeded for client 00:1c:bf:61:fa:da
*Dec 10 10:40:45.519: %DOT1X-4-INVALID_MSG_TYPE: authlib.c:84 Invalid message type 9 received from AAA
*Dec 10 10:40:45.138: %DOT1X-3-MAX_EAP_RETRIES: 1x_auth_pae.c:2856 Max EAP identity request retries (3) exceeded for client 00:23:7a:51:47:d7
*Dec 10 10:40:45.137: %DOT1X-4-INVALID_MSG_TYPE: authlib.c:84 Invalid message type 9 received from AAA
*Dec 10 10:40:44.714: %APF-4-ASSOCREQ_PROC_FAILED: apf_80211.c:3682 Failed to process an association request from 00:0c:f1:29:b7:6a. WLAN:1, SSID:TESTGUEST. Conflicting extended supported rates in message.
*Dec 10 10:40:43.216: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:40:43.215: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG: RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:40:43.159: %DHCP-4-REQIP_NOT_PRESENT: dhcpd.c:299 Received a packet without a requested ip!.Previous message occurred 2 times.
*Dec 10 10:40:42.951: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:
*Dec 10 10:40:42.155: %DTL-1-ARP_POISON_DETECTED: dtl_net.c:1415 STA(Target MAC Address) [00:16:6f:46:42:2f, 0.0.0.0] ARP (op ARP REQUEST) received with invalid SPA(Source IP Address) 192.168.254.12/TPA(Destination IP Address) 192.168.252.1
*Dec 10 10:40:41.700: %DOT1X-3-MAX_EAP_RETRANS: 1x_ptsm.c:426 Max EAP retransmissions exceeded for client 00:21:5c:6f:f7:3f
*Dec 10 10:40:41.684: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE Previous message occurred 3 times.
*Dec 10 10:40:41.683: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:40:41.682: %RRM-3-RRM_LOGMSG: rrmLrad
*Dec 10 10:40:30.713: %APF-4-ASSOCREQ_PROC_FAILED: apf_80211.c:3682 Failed to process an association request from 00:0c:f1:29:b7:6a. WLAN:1, SSID:TESTGUEST. Conflicting extended supported rates in message.
*Dec 10 10:40:29.453: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:18:74:c7:6b:30
*Dec 10 10:40:28.874: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:40:28.094: %DHCP-4-REQIP_NOT_PRESENT: dhcpd.c:299 Received a packet without a requested ip!.
*Dec 10 10:40:27.268: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:40:26.610: %DOT1X-3-MAX_EAP_RETRANS: 1x_ptsm.c:426 Max EAP retransmissions exceeded for client 00:21:5c:97:90:9f
*Dec 10 10:40:26.580: %DTL-1-ARP_POISON_DETECTED: dtl_net.c:1415 STA(Target MAC Address) [00:21:5c:8a:ac:5b, 0.0.0.0] ARP (op ARP REQUEST) received with invalid SPA(Source IP Address) 192.168.254.219/TPA(Destination IP Address) 192.168.252.1
*Dec 10 10:40:26.325: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:40:26.307: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:40:26.219: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG: RRM Verify Coverage Hole returned L7_FAILURE Previous message occurred 2 times.
*Dec 10 10:40:26.218: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG: M Verify Coverage Hole returned L7_FAILURE *Dec 10 10:40:25.735: %APF-4-ASSOCREQ_PROC_FAILED: apf_80211.c:3682 Failed to process an association request from 00:0c:f1:29:b7:6a. WLAN:1, SSID:TESTGUEST. Conflicting extended supported rates in message.
*Dec 10 10:40:25.273: %DOT1X-4-INVALID_MSG_TYPE: authlib.c:84 Invalid message type 9 received from AAA Previous message occurred 3 times.
*Dec 10 10:40:25.253: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG: RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:40:25.252: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:40:25.081: %DTL-1-ARP_POISON_DETECTED: dtl_net.c:1415 STA(Target MAC Address) [00:21:5c:8a:ac:5b, 0.0.0.0] ARP (op ARP REQUEST) received with invalid SPA(Source IP Address) 192.168.254.219/TPA(Destination IP Address) 192.168.252.1 Previous message occurred 3 times.
*Dec 10 10:40:24.249: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG: RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:40:24.247: %LWAPP-4-SIG_INFO1: spam_lrad.c:28010 Signature information; AP 00:1e:13:ee:08:10, alarm ON, standard sig Deauth flood, track per-Macprecedence 9, hits 300, slot 0, channel 11, most offending MAC 00:1e:7a:70:6a:e0
*Dec 10 10:40:24.064: %DTL-1-ARP_POISON_DETECTED: dtl_net.c:1415 STA(Target MAC Address) [00:21:5c:8a:ac:5b, 0.0.0.0] ARP (op ARP REQUEST) received with invalid SPA(Source IP Address) 192.168.254.219/TPA(Destination IP Address) 192.168.252.1
*Dec 10 10:40:22.966: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:40:22.755: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:40:22.755: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE Previous message occurred 3 times.
*Dec 10 10:40:22.754: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:40:22.566: %DOT1X-3-ABORT_AUTH: 1x_bauth_sm.c:447 Authentication aborted for client 00:1b:77:15:71:13
*Dec 10 10:40:22.145: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:1f:27:55:8a:f0
*Dec 10 10:40:21.016: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:1d:71:23:74:20
*Dec 10 10:40:20.531: %APF-4-ASSOCREQ_PROC_FAILED: apf_80211.c:3682 Failed to process an association request from 00:0c:f1:29:b7:6a. WLAN:1, SSID:TESTGUEST. Conflicting extended supported rates in message.Previous message occurred 2 times.
*Dec 10 10:40:20.296: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG: RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:40:19.636: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:1f:6d:b9:6a:30
*Dec 10 10:40:17.983: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILUR
*Dec 10 10:40:17.983: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE Previous message occurred 2 times.
*Dec 10 10:40:16.988: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:40:16.870: %DOT1X-4-INVALID_MSG_TYPE: authlib.c:84 Invalid message type 9 received from AAA
*Dec 10 10:40:16.870: %DOT1X-3-MAX_EAP_RETRIES: 1x_auth_pae.c:2856 Max EAP identity request retries (3) exceeded for client 00:1f:3b:63:6d:f5
*Dec 10 10:40:16.869: %DOT1X-4-INVALID_MSG_TYPE: authlib.c:84 Invalid message type 9 received from AAA
*Dec 10 10:40:16.617: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG: RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:40:16.420: %APF-4-ASSOCREQ_PROC_FAILED: apf_80211.c:3682 Failed to process an association request from 00:0c:f1:29:b7:6a. WLAN:1, SSID:TESTGUEST. Conflicting extended supported rates in message.
*Dec 10 10:40:15.206: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE Previous message occurred 3 times.
*Dec 10 10:40:15.205: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:40:14.340: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:40:14.339: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:40:12.667: %DOT1X-4-INVALID_MSG_TYPE: authlib.c:84 Invalid message type 9 received from AAA
*Dec 10 10:40:10.585: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:18:74:c7:75:f0
*Dec 10 10:40:09.944: %APF-4-ASSOCREQ_PROC_FAILED: apf_80211.c:3682 Failed to process an association request from 00:0c:f1:29:b7:6a. WLAN:1, SSID:TESTGUEST. Conflicting extended supported rates in message.
*Dec 10 10:40:09.203: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:18:74:0a:32:d0
*Dec 10 10:40:08.062: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:1d:71:23:74:20
*Dec 10 10:40:07.246: %DOT1X-3-MAX_EAP_RETRIES: 1x_auth_pae.c:2856 Max EAP identity request retries (3) exceeded for client 00:21:5c:17:73:79
*Dec 10 10:40:07.245: %DOT1X-3-ABORT_AUTH: 1x_bauth_sm.c:447 Authentication aborted for client 00:21:5c:17:73:79 Previous message occurred 2 times.
*Dec 10 10:40:06.414: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:40:06.413: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE Previous message occurred 2 times.
*Dec 10 10:40:06.308: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:40:05.389: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:18:74:c7:6b:30
*Dec 10 10:40:04.857: %APF-4-ASSOCREQ_PROC_FAILED: apf_80211.c:3682 Failed to process an association request from 00:0c:f1:29:b7:6a. WLAN:1, SSID:TESTGUEST. Conflicting extended supported rates in message.
*Dec 10 10:40:04.004: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:1f:6d:b9:6a:30
*Dec 10 10:40:02.620: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:1f:27:55:8a:f0
*Dec 10 10:40:02.013: %DHCP-4-REQIP_NOT_PRESENT: dhcpd.c:299 Received a packet without a requested ip!.
*Dec 10 10:40:00.866: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:40:00.866: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE Previous message occurred 2 times.
*Dec 10 10:40:00.865: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returne
*Dec 10 10:40:00.283: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:40:00.228: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:40:00.170: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:40:00.107: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:40:00.040: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:39:59.943: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:39:59.878: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:39:59.813: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:39:59.674: %APF-4-ASSOCREQ_PROC_FAILED: apf_80211.c:3682 Failed to process an association request from 00:0c:f1:29:b7:6a. WLAN:1, SSID:TESTGUEST. Conflicting extended supported rates in message.
*Dec 10 10:39:59.063: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:39:59.062: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:39:58.244: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE Previous message occurred 2 times.
*Dec 10 10:39:58.243: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:39:58.242: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:39:57.243: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:1f:9d:da:cc:d0
*Dec 10 10:39:56.674: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:39:56.624: %DOT1X-3-MAX_EAP_RETRIES: 1x_auth_pae.c:2856 Max EAP identity request retries (3) exceeded for client 00:16:6f:7f:70:55
*Dec 10 10:39:56.623: %DOT1X-4-INVALID_MSG_TYPE: authlib.c:84 Invalid message type 9 received from AAA
*Dec 10 10:39:56.607: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:39:56.546: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:39:56.475: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:39:56.417: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:39:56.362: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:39:56.295: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:39:56.223: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:39:56.159: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:39:56.103: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:39:56.041: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:39:55.972: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:39:55.915: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:39:55.847: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:39:55.787: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:39:55.711: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:39:55.652: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:39:55.597: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:39:55.534: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:39:55.461: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:39:55.430: %APF-4-ASSOCREQ_PROC_FAILED: apf_80211.c:3682 Failed to process an association request from 00:0c:f1:29:b7:6a. WLAN:1, SSID:TESTGUEST. Conflicting extended supported rates in message.
*Dec 10 10:39:55.393: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:39:55.327: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:21:1c:79:0e:f0
*Dec 10 10:39:55.090: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:18:74:0a:32:d0
*Dec 10 10:39:54.230: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:39:54.123: %DHCP-4-REQIP_NOT_PRESENT: dhcpd.c:299 Received a packet without a requested ip!.
*Dec 10 10:39:54.062: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:39:54.061: %RRM-3-RRM_LOGMSG: rrmLrad.c:2471 RRM LOG:RRM Verify Coverage Hole returned L7_FAILURE
*Dec 10 10:39:53.709: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:18:74:c7:75:f0
*Dec 10 10:39:53.567: %DOT1X-3-MAX_EAP_RETRANS: 1x_ptsm.c:426 Max EAP retransmissions exceeded for client 00:1b:77:15:b7:ed
*Dec 10 10:39:53.353: %APF-4-ASSOCREQ_PROC_FAILED: apf_80211.c:3682 Failed to process an association request from 00:0c:f1:29:b7:6a. WLAN:1, SSID:TESTGUEST. Conflicting extended supported rates in message.
*Dec 10 10:39:53.138: %DHCP-4-REQIP_NOT_PRESENT: dhcpd.c:299 Received a packet without a requested ip!.
*Dec 10 10:39:52.619: %DTL-1-ARP_POISON_DETECTED: dtl_net.c:1415 STA(Target MAC Address) [00:1f:3b:5d:4e:c7, 0.0.0.0] ARP (op ARP REQUEST) received with invalid SPA(Source IP Address) 192.168.254.177/TPA(Destination IP Address) 192.168.252.1
*Dec 10 10:39:52.318: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:1f:27:56:0d:a0
*Dec 10 10:39:51.118: %DTL-1-ARP_POISON_DETECTED: dtl_net.c:1415 STA(Target MAC Address) [00:1f:3b:5d:4e:c7, 0.0.0.0] ARP (op ARP REQUEST) received with invalid SPA(Source IP Address) 192.168.254.177/TPA(Destination IP Address) 192.168.252.1
*Dec 10 10:39:50.370: %LWAPP-3-VALIDATE_ERR: spam_lrad.c:8966 Validation of SPAM Vendor Specific Payload failed - AP 00:18:74:0a:32:d0
*Dec 10 10:39:50.100: %DTL-1-ARP_POISON_DETECTED: dtl_net.c:1415 STA(Target MAC Address) [00:1f:3b:5d:4e:c7, 0.0.0.0] ARP (op ARP REQUEST) received with invalid SPA(Source IP Address) 192.168.254.177/TPA(Destination IP Address) 192.168.252.1
*Dec 10 10:39:49.357: %DOT1X-1-INVALID_WPA_KEY_STATE: 1x_eapkey.c:1584 Received EAPOL-key message while in invalid state (4) - version 2, type 3, descriptor 2, client 00:90:7a:02:d3:04
*Dec 10 10:39:49.273: %DOT1X-3-ABORT_AUTH: 1x_bauth_sm.c:447 Authentication aborted for client 00:21:5c:17:73:79
*Dec 10 10:39:48.220: %DOT1X-4-INVALID_MSG_TYPE: authlib.c:84 Invalid message type 9 received from AAA
*Dec 10 10:39:48.220: %DOT1X-3-MAX_EAP_RETRIES: 1x_auth_pae.c:2856 Max EAP identity request retries (3) exceeded for client 00:1c:bf:61:fa:da
*Dec 10 10:39:48.219: %DOT1X-4-INVALID_MSG_TYPE: authlib.c:84 Invalid message type 9 received from AAA
you should try connecting to the guest WLAN, and once you are connected open a broswer and go to http://74.125.19.104 if this works, then you need to check that UDP 53 , DNS queries, are allowed from the guest vlan
Similar Messages
-
Broadcast and non-broadcast SSID issues with iPhones and iPads
We have a CIsco wireless infrastructure configured with a public broadcasted ssid and a private non-broadcast ssid that we are experiencing issues with the iPads and iPhones. The iPad or iPhone will switch between both ssids if defined but keep the original IP address when it switches to the non-broadcast ssid making it unusable. It shouldn't be switching at all technically. If the non-broadcast ssid is defined only on the iPhone or iPad, the broadcast ssid pops up and starts asking for authentication information. I have Cisco looking into this but I'm quite sure this is an Apple bug. Any other device works fine. We are currently using version 4.3.5(8L2) on the iPads and iPhones. I do know that if we broadcast both SSIDS, the issue goes away, but I don't want to do that. Although it doesn't really add any more security, it just isn't advertised, so most people won't see it and avoids a lot of questions. Hopefully there's a simple solution.
Any ideas apple guys?
Also how does one open an actual trouble ticket with apple?Did you solve this? Settings\Wifi\Askto join networks - OFF
-
Hello,
Very new to Cisco wireless, trying to figure this out.
I have an ASA that will be handling the VLAN traffic.
VLAN1 = default internal VLAN.
VLAN10 = guest VLAN.
On my AP1131 I want to have "Staff" SSID associated with VLAN1,
and "Guest" SSID associated with VLAN10.
Interfaces 6 & 7 on the ASA are PoE so I think I'm good on that. I have those two ports on the ASA set as trunks with Vlan1 as native.
My biggest pain right now is that I can't seem to get "Guest" and "Staff" broadcasting at the same time!
I don't really need the "A" radio, so I'm just trying to get the two SSID's broadcasting on the "G" radio.
I'm configuring via the GUI, but frequently looking back at the CLI.
Is this a common issue? Something that someone can point to a common mistake?
Attached is running-config; though I'm still very much playing with it.Hi Scott,
Check out these two excellent related threads
https://supportforums.cisco.com/message/1308205#1308205
https://supportforums.cisco.com/message/1286462#1286462
Cheers!
Rob
Please support CSC Helps Haiti
https://supportforums.cisco.com/docs/DOC-8895
https://supportforums.cisco.com/docs/DOC-8727 -
RF & particular SSID issue...
Hi All,
We are expereincing some strange problems.
1. One particular SSID's is appearing very low single strength & rest 2 SSID's are having good single strength from out of 3 SSID's advertised in one LAP.
2. Another issue is one of the particular SSID is not working from out of 2 SSID from particular AP......in this issue client getting good single & we verifed WLAN settings are fine in the AP, also with the same WLAN settings this SSID Is working fine from other AP's.
Please let me know, if you have any idea in this issue.
Thanks,
ShrinivasHI Vlad,
Another thing which you could try is to connect to both SSID (one at a time) from the same location and verify if both the times you are connecting to the same AP. With this you will be able to verify if the both SSID signals are from same AP. This is really a trial and error methond. Also you may install netstumbler and verify the signal strength which you are receiving from each AP at given location.
Regards
Najaf -
3850 WLC - 5760 Anchor: Multiple Guest SSIDs issue
Hi,
I have configured a 3850 Foreign WLC and a 5760 as anchor WLC in a DMZ behind an ASA FW. The Anchor Controller is configured to advertise 3 GUEST Wireless:
(INSIDE) ---- ASA FW (guest in interface) -------------------------- (Te1/0/1) 5760 ANCHOR (Te1/0/2) -------------------- L3 Link-------------------- (guest out interface) ASA FW ---- (OUTSIDE)
GUEST1: 10.9.65.0/24 – VLAN 11
GUEST2: 10.9.66.0/24 – VLAN 12
GUEST3: 10.9.67.0/24 – VLAN 13
Management VLAN 1: 10.8.252.1 (Anchor Management VLAN – Mobility)
The link between the WLC and the Guest OUT Interface on the ASA Firewall is a L3 Link, NOT a Trunk.
The 5760 WLC is also a DHCP server for the three client VLANs above. I have also configured 3 SVIs as default gateways for these VLANs:
Interface vlan 11 – 10.9.65.1
Interface vlan 12 – 10.9.66.1
Interface vlan 13 – 10.9.67.1
wgh-anchorwlc5760-primary#show ip interface brief
Interface IP-Address OK? Method Status Protocol
Vlan1 10.8.252.1 YES NVRAM up up
Vlan11 10.9.65.1 YES manual up up
Vlan12 10.9.66.1 YES manual up up
Vlan13 10.9.67.1 YES manual up up
GigabitEthernet0/0 10.8.252.85 YES NVRAM down down
Te1/0/1 unassigned YES unset up up
Te1/0/2 10.8.253.1 YES NVRAM up up
Capwap0 unassigned YES unset up up
If a client connects to GUEST1 SSID it gets an IP address in VLAN 11 and its default gateway is 10.9.65.1.
If a client connects to GUEST2 SSID it gets an IP address in VLAN 12 and its default gateway is 10.9.66.1.
If a client connects to GUEST3 SSID it gets an IP address in VLAN 13 and its default gateway is 10.9.67.1.
Mobility is UP and I can see clients connected to the Anchor WLC either in IPLEARN or WEBAUTH_PEND state. DHCP is working fine, clients get an IP and the right default gateway and DNS servers when connect, for example, to GUEST1.
anchorwlc5760-primary#show wireless client summary
Number of Local Clients : 3
MAC Address AP Name WLAN State Protocol
04f7.e482.b21c N/A 2 IPLEARN Mobile
bc3e.6d32.17f6 N/A 2 IPLEARN Mobile
a826.d5b3.5ae8 N/A 2 WEBAUTH_PEND Mobile
However, they are not able to ping the default gateway – SVI VLAN 11: 10.9.65.1, so I can not see any traffic leaving the Anchor WLC to continue with the Web Authentication Process (cwa) using ISE. I can see that the authorization policy (“unkown” and the URL to ISE) has been pushed to the clients but I am not redirected to ISE Web Authentication Portal when I open my web browser. I have done some captures on the FW interfaces but I cannot see any traffic coming from the clients.
I know that usually there is a Trunk (that allows client VLANs) between a WLC and L3 Switch when you configure multiples SSIDs and then configure the SVIs on the L3 Switch. However, I think this design with a L3 Link should work too because 5760 is a WLC+L3Switch.
My question is: Why clients are not able to ping their default gateway?
I hope it makes sense.
I appreciate any thoughts and help. Thanks in advance.
Joana.Hi,
I couldn't get it working (I doubt if it is really possible). I had to add a switch between the 5760 Anchor Controller and the ASA Firewall:
(INSIDE) ---- ASA FW (guest in interface) -------------------------- (Te1/0/1) 5760 ANCHOR (Te1/0/2) -------------------- SWITCH-------------------- (guest out interface) ASA FW ---- (OUTSIDE)
The link between the 5760 and the Switch is configured as a Trunk and it allows the 3 Guest SSIDs (VLANs). The link between the Switch and the ASA FW is configured as a Layer 3 link. I also set up the default gateways for the 3 GUEST VLANs in the Switch (3 vlan interfaces) and the 5760 as DHCP Server.
I hope it helps.
Joana. -
Anyone know the structure of a page on java, cause i have a problem to download the .tar is this correct on the structure???
Have you looked at the code for the default webauth or download the webauth bundle form CCO? You can use that HTML code and modify that to your liking. There is also a document on the forum regarding webauth but I don't have the link for that.
Thanks,
Scott Fella
Sent from my iPhone -
Hello,
My guest access has not been redirected to guest portal on ISE.
I setup a Guest wlan using foreign-anchor scheme and web authenticate on ISE. DHCP is managed by Anchot WLC and I got ip address without any problem. I can ping ISE and Default gateway without problem from guest laptop.
Proxy and dns is on the same server and this server is the default gateway for guest network. My DNS Server stopped and all webauth stopped.
What is the part of DNS In this scenario ? Does URL redirect stops if DNS goes down ?
Please help.
Sent from Cisco Technical Support iPhone AppThanks for your reply.
I type directly google.com ip addres into web browser and it seems to work, however it redirect me to internal authentication portal. I think i did a change on my foreign controler and change to internal web auth (anchor still external web auth) So i want to ask another question, does foreign controller take part on this process even mobility anchor setting placed ?
Sent from Cisco Technical Support iPhone App -
Webauth Redirect Issue WLC 7.2
We have been using Passthrough with Email input on our Guest network for a while. We use the Internal (Default) Web Authentication Type with a URL redirection after login and a custom Headline/Message and Logo on the login page. This worked fine, I even made a few changes recently, until we attempted to switch from https: to http: on the login page today. This was done using the config network web-auth secureweb disable command in the Command Line. After making this change and rebooting the controller, the login/redirect page loads using http: (it redirects after entering an email address) but the graphics (banner at the top and logo) do not. Looking at the source code, everything looks the same. I am sure that it is using the Internal login page, as I tried using Customized and External, neither of which worked. Has anyone run into this problem before? Thanks.
In order to have the web page load properly, it is not sufficient to set the web-authentication type as customized globally in the Security > Web Auth > Web login page. It must also be configured on a particular WLAN . In order to do this, complete these steps:
Log into the GUI of the WLC.
Click on the WLANs tab, and access the profile of the WLAN configured for Web-authentication.
On the WLAN > Edit page, click the Security tab. Then, choose Layer 3.
On this page, choose None as the Layer 3 Security.
Check the Web Policy box, and choose the Authentication option.
Check the Over-ride Global Config Enable box, choose Customized (Downloaded) as the Web Auth Type, and select the desired login page from theLogin Pagepull down menu. Click Apply -
WebAuth issue, de-authenticating users randomly!
Hello,
I just received word of a major issue that only a few of the clientele have been reporting.
Basically what is happening is that a user will be browsing/chatting on the internet under one of our webauth SSIDs when suddenly out of nowhere they will be unable to browse anymore and have to reauthenticate by closing down all internet browser windows and reopening the browser. Originally I had thought this was just an idle timeout issue, it was never mentioned that the users were active when it happened until now.
Can anyone help me with this? I'm really perplexed as to why this is happening. Anyone have pointers on what I can look for (ie, AP placement issues perhaps?) that can help troubleshoot the problem?
I am running dual 4404's currently, the idle timeout is set to 60 minutes on each. The version on both machines is 3.2.116.21.
Thanks much for any input on this.you should try connecting to the guest WLAN, and once you are connected open a broswer and go to http://74.125.19.104 if this works, then you need to check that UDP 53 , DNS queries, are allowed from the guest vlan
-
VLAN Override and Web Auth: How to overcome issues?
Hello
I have been investigating if we can deploy vlan override and assign a user vlan via RADIUS, post authentication on a WRD SSID. Having read around the discussions, I can see that there are others who have wanted similar, but have been told that it is not possible:
"Marucho, the particularity of how Web authentication works on the WLC is that it is carried over HTTP between Client and WLC. So the Wireless Client has to already have an IP address prior to starting the web authentication. Since the Wireless Client already has an IP address then you cannot override it anymore.
Unlike dot1x, which takes place over EAPOL and then when you have eap success, client moves to get an ip address from the sent by Radius VLAN."
However, we still have a problem that we would like to overcome and wonder if anyone has any experience or suggestions they could share?
We are a University with a large number of devices grabbing an IP address whilst only remaining associated and not actually going on to authenticate through the WRD. This creates a situation where we have a large number of IP addresses deployed unnecessarily and we would like to tackle this.
We are unable to use private IP for authenticated users (Policy decision) but could use them for associated users and so were hoping we might be able to deploy a private subnet on the WRD SSID prior to authentication and then use VLAN override to assign authenticated users onto the correct VLAN. In order to try and achieve this we were planning on using a very short DHCP lease on the private subnet, so that post-authentication the client device requests a public IP address almost instantly.
Is there any way of achieving this that someone could suggest or would we be knocking our ehads against a brick wall?
thanks
BrynJust giving 2 ideas :
-How about using a WPA PSK on your webauth ssid ? Just give the PSK in the SSID name. This prevents non-intended connections (no automatic association because it's open ssid) and still allows anyone with an intention, to connect to it and you still have the webauth behind. This reduces number of ip addresses.
-How about modifying the webauth successful authentication page to give the credentails to access a private network (PSK or dot1x) where credentials would regularly change ?
Those are workarounds.
Nicolas -
Bypass guest webauth for Blackberry Service
Hi Folks, Our wireless deployment has two wireless networks - one with 802.1x auth for corporate machines and the other is an open one with internet access for guests (but with a web auth page).
What I'd like to do is allow staff to connect their Blackberry handsets to the guest (open) wireless network to collect email from the Blackberry Enterprise Server (it's a lot easier that configuring 802.1x and getting users to roll their passwords each time), I think I can work around this with a pre-authentication ACL to bypass the webauth page for access to the Blackberry Enterprise Server, but I'm a bit confused over the direction of the access list entries. If I added an access list to the WLC which looks like the below - would that work or is the directionality wrong?
The example for the external webauth server I saw had the directionality the otherway around.
Action Source IP/Mask Destination IP/Mask Protocol Source Port Dest Port DSCP Direction
Permit 0.0.0.0 / 0.0.0.0 [the ip of my BES] / 255.255.255.255 IP Any Any Any Outbound
Permit [the ip of my BES] / 255.255.255.255 0.0.0.0 / 0.0.0.0 IP Any Any Any Inbound
Any advice that you can provide would be great
Thanks in advance
KevNever underestimate the help menu ;-)
Direction
Any, Inbound (from client), or Outbound (to client).
I think that this description is straighforward.
But you will probably notice that your blackberries are disconnected every 3 minutes from your SSID. I don't know if this is something they can tolerate.
Pre-auth ACL is made to give access to some ressources needed to authenticate on the web login page. Not to bypass it completely. So the WLC is kicking out clients that are connected since 3 minutes on the Webauth SSID but not autheneticated on the web page ...
Nicolas
===
don't forget to rate answers that you find useful -
5508 WLC - VPN disconnects from Wlan guest
Strange issue that our support staff is seeing on our guest WLAN.
I have 2 wlans, 1 is production and authenticates our Domain controllers, this is working fine.
The other is a wlan that has restricted access internally, I allow http, https and VPN access out only.
It appears that on the guest wlan, after random amount of time an established VPN connection using Cisco VPN client disconnects.
Wireless connectivity doesnt appear to go down, just the vpn connection.
On this guest wlan, I have configured QOS bronze and I read a link where this may be affecting the UDP conversation between VPN client and end point.
Can anyone shed light on this ?
I just upgraded to latest and greatest code and I am still seeing same issue.
Cheers
DaveSoemthing I want to make you aware of is another guest bug we hit... After fixing the VPN problem by moving to 7.0.220.0 we hit this bug!
The fix ... Reboot your WLC weekly. We have a call with Cisco BU on Monday to talk about this...
http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCtx00942
Webauth stops redirecting after some time
Symptom:
It is seen on 7.0.220 4404 WLC that users in the webauth SSID are not redirected to the login page anymore after 1 week or so.This message appears :
sshglue.c:7009 WebAuth HTTP Redirect rule creation failed for peer 192.168.1.8
Conditions:
webauth, 4404 running 7.0.116/220
Workaround:A reboot solves the problem for another week or so
Status
Open
Severity
2 - severe
Last Modified
In Last 7 Days
Product
Cisco 5500 Series Wireless Controllers
Technology
1st Found-In
7.0(116.0)
7.0(220.0)
Interpreting This Bug
Bug Toolkit provides access to the latest raw bug data so you have the earliest possible knowledge of bugs that may affect your network, avoiding un-necessary downtime or inconvenience. Because you are viewing a live database, sometimes the information provided is not yet complete or adequately documented. To help you interpret this bug data, we suggest the following:
This bug has a Severe severity level 2 designation. Important functions are unusable but the router's other functions and the rest of the network is operating normally.
Severity levels are designated by the engineering teams working on the bug. Severity is not an indication of customer priority which is another value used by engineering teams to determine overall customer impact.
Bug documentation often assumes intermediate to advanced troubleshooting and diagnosis knowledge. Novice users are encouraged to seek fully documented support documents and/or utilize other support options available. -
HP C4780 Changing Wireless Router - Mac 10.9.4
Hello Everyone,
Hoping someone can help me. I have a photosmart C4780 printer which was connected to my sky router so that I could print remotely from my macbook which is running Mavericks 10.9.4
I have recently changed to a sky hub and tried resetting the network settings on the printer itself, as well as trying the WPS push method however I cannot get my printer to join the new network as it has a different SSID, I have a lot of other devices on the new SSID so do not really want to have to change the SSID to match the old one. When I run the print out report it says SSID = FAIL.
I have run software updates and there are none for HP in my app store & have tried to use the HP easy wireless set up app from the store with no luck. I have checked my router's network configuration page and WPS is enabled.
Please if anyone can help that would be greatly appreciated.
Thanks in advanceHello @eddyc89 , and welcome to the HP Forums, I hope you enjoy your experience!
I understand you are running into SSID issues. I would like to try and help!
I would recommend utilizing this thread on Wireless install of HP C4780 on Mac running OS 10.9.2, by @Sunshyn2005 .
Good luck and please let me know the results of your troubleshooting steps. Thank you for posting on the HP Forums!
Please click “Accept as Solution " if you feel my post solved your issue, it will help others find the solution.
Click the “Kudos, Thumbs Up" on the right to say “Thanks" for helping!
Jamieson
I work on behalf of HP
"Remember, I'm pulling for you, we're all in this together!" - Red Green. -
Can I configure guest access on a H-Reap Ap so that guest traffic is switch locally and not send to the controller? Are there any documents that explain how this can be configured?
yes, you can have a webauth ssid that is locally switched. however, initial authentication via http has to still go the wlc.
there is no document that explain webauth + hreap + local switching
create the webauth ssid / try it on a local mode ap if you have one
enable local switching on the ssid under the advanced tab
do the local switching configuration on the ap side from the wlc gui
add any needed vlan to the trunk of the ap interface
it should be done
thanks
Serge -
SSID with WebAuth and iPhone Issues
Cisco Wireless Users,
Have anyone setup a basic SSID with WebAuth using LDAP/ACS for authentication working with the iPhone? I been having a couple of users getting the âUnable to join the networkâ error message. Have you gotten this error and if so what did you do for the fix? I'm running version 5.0.148.0 on my 4402's.
ThanksWhat type of encryption are you using.... is it ope with WebAuth. I have not had an issues with iPhones not being able to connect to WebAuth on any of my recent installs.... I use my iPhone for testing so I know it works.
I also think you should either downgrad to 4.2.176 or upgrade to 5.1 or 5.2. 5.0 is one of the worse codes out there.
Maybe you are looking for
-
List view sorting in Finder is sluggish, rendering it practically unuseable
I've noticed that whenever I set a Finder window to list view and then try and sort the different columns by ascending or descending order, the sorting often doesn't work or works but only after some time, typically 15–30 seconds. This is not accepta
-
Function module of querying item category in sales order generating
Hi everyone, would you please help to tell me which function module can fetch the item category in sales order generation? any help will be appreciate. Thanks. Eric
-
Hyperion financial reporting hierarchical structure of the rows
Hi All, I am using hyperion financial reporting for creating reports. I have a prompt for account in the row dimension and according to the selection of the row dimension the tree like structure will come for the member selected. I am getting the tre
-
I want to update my credit card info
JUST I WANT TO UPDATE MY CREDIT CARD INFO!! hi. I'm student about design at Korea. so, i'm not good at speaking english. sorry. I'm buying adobe's creative cloud subscription at last month. i lose a my credit card, at last month. so, i wouldn't charg
-
Deployment of Logging configuration
Hi, I have a problem, when I deploy an EAR-DC with a log-configuration.xml. I cant see in the Visual Administrator (under Cluster->J2E->Server 0 0_..->Services->Deploy) the log configuration deployment. There was no error/warning after the deployment