I am seeing a lot of the following showing up in the WLC trap log:
Decrypt errors occurred for client <CLIENT-MAC> using WPA2 key on 802.11b/g interface of AP 00:17:0f:81:ad:90
we are using WLC runninn 7.0.98 and ACS 4.0
I am getting error messages for clients:
11 Mon Jun 14 09:11:56 2010 Decrypt errors occurred for client 00:13:ce:54:57:3c using WPA key on 802.11b/g interface of AP 00:16:9c:91:97:c0 12 Mon Jun 14 09:11:56 2010 Decrypt errors occurred for client 00:16:6f:91:d8:60 using WPA2 key on 802.11b/g interface of AP 00:16:9c:91:97:c0
These are only occuring for clients that are disconnecting....
They can reconnect after a WLC reboot....
We have swapped APs.....
I have seen this error in other forums but it says not to worry about it. There has to be a connection between this and clients getting disconnected. We have anywhere between 10-50 clients on the system at any one time.Is this a client issue (nic firmware, version) or is this an error in the controller??
AIR-WLC2106-K9
IOS ver: 6.0.196.0
we see a strange message in our WLC logs, which occurs quite often (>10 times a day):Decrypt errors occurred for client [MAC-Adress] using WPA key on 802.11b/g interface of AP [MAC-Adress]The MAC-Adresses of the affected clients are varying as well as the APs reporting the error.The clients are Notebooks, Cisco IP-Phones and Nokia-DualBand-Phones.
Even more frequently we see the following message in the log:
%ETHOIP-3-PING_TRANSMIT_FAILED: ethoip_ping.c:227 send_eoip_ping: Failed to tx Ethernet over IP ping rc=5.
We use TKIP as Encryption and EAP-Fast as well as LEAP as Authentication (Cisco ACS).The WLC is an 2106, the APs are 1242AG. We don't recognize any problems placing calls or talking over these phones. It's just these messages in the log that concern me.
I have a AIR-AP1121G-A-K9 running c1100-k9w7-tar.123-7.JA2 (Autonomous)We have monitoring setup with Orion NPM and we consistently see output errors, Transmit discards and big buffer errors The users at the site have not reporting any issues but was wondering how to prevent these or are these normal?What causes the output errors on Wireless Radio ? How to troubleshoot further ?
Radio0-802.11G
Total Output Errors 0 47749
Small Buffer Misses
4 misses
139 misses
[code]....
I´ve implemented 2 Cisco ISE v1.1 in HA to run MAB and 802.x Authentication / Authorization. Using Local ISE DB and Active Directory as an External Identity Source for wireless and wired users and devices. This was working fine 2 weeks ago after finishing installation.
My NAD devices are a Core SW 6500 for wired users (there are no access SW, just the Core for the whole network, its a small office) and a WLC 2405 for Wireless Users.[code].....
I have 2691 Router conencted to Internet and it is doing Nat.
This connects to 3550A Switch which has connection to 1811W Router.
I setup VPN between 1811W and 3550A.
3550A has connection to 2691 via ospf.
OSPF is running between 1811w and 3550A.
1811
1811w# sh crypto isakmp sa
IPv4 Crypto ISAKMP SA
[Code]....
Getting this error on the data center 2581 (12.4(24)T) from a GRE/IPSEC tunnel, remote branch is 2811 running 12.4(25d)
%CRYPTO-4-RECVD_PKT_MAC_ERR: decrypt: mac verify failed for connection id=
The tunnel has been up and working okay for months, nothing has changed on the config and the key is correct. Traffic is following but remote users are complaining of performance issues. A wireshark shows checksum errors and lots of packet resends. Remote ISP has checked the circuit and says its clean.The data centre router has quite a few tunnels but only 1 causing this issue. From the head end router -
sh crypto ips sa | b x.x.x.x
current_peer x.x.x.xport 500 PERMIT, flags={origin_is_acl,} #pkts encaps: 15129, #pkts encrypt: 15129, #pkts digest: 15129 #pkts decaps: 13346, #pkts decrypt: 13346, #pkts verify: 13346 #pkts compressed: 0, #pkts decompressed: 0 #pkts not compressed: 0, #pkts compr. failed: 0 #pkts not decompressed: 0, #pkts decompress failed: 0 #send errors 1, #recv errors 1992
Can a VPN module go bad like this? I've tried disabling the branch onboard engine and using software but it doesn't work.
I have a problem in my IPSec tunnel. One of the routers (Cisco 861) doesn't encrypt the packets but does decrypt the incoming ones from the remote peer (RV042). In the access-list for the wan interface I deny the traffic between the subnets and in the vpn access-list I permit the traffic.
View 4 Replies View RelatedMcAffee scan of acs 1113 appliance running the 4.2 build 124 patch 12 version reports that a medium vulnerability exists because the system has SSH version 1. Any way to specify only version 2 or turn off SSH?
View 9 Replies View RelatedI have 2691 Router conencted to Internet and it is doing Nat. This connects to 3550A Switch which has connection to 1811W Router.
I setup VPN between 1811W and 3550A. 3550A has connection to 2691 via ospf.
OSPF is running between 1811w and 3550A.
1811
1811w# sh crypto isakmp sa
IPv4 Crypto ISAKMP SA
[Code].....
Can we use ACS 4.1 version recovery disc on 4.2 verison to recover the forgotten password.
View 1 Replies View Relatedwhich version of prime infrastructure supports wlc5508 version 7.4
View 2 Replies View Relatedprovide me with the important links which can show me how to do the software upgrade for my ASA 5520 ver 7.0(1) to ver 8.4 ? as well as the ASDM
View 10 Replies View Relatedi am using Cisco ASA 5510 with ASA Version 8.0(4) and memory 256MB. me to Upgrade it to 8.3
View 6 Replies View RelatedWe are looking to upgrade our WiSMs to version 7.0.230.0, but the Cisco compatibility matrix suggests we need to upgrade WCS to the same version (it is currently on 7.0.172.0). My question is can we upgrade the WiSMs and do the WCS at a later date with no issues or do we need to do them at the same time to keep visibility of everything?
The reason I ask is that some of my clients use lobby ambassador for some of their users and they will need wireless access on the day we are due to upgrade WCS (the WiSMs are due to be upgraded and rebooted earlier that morning.
I've got router as vpn-concentrator which receives vpn site-to-site connections from 10 branches with cisco 881 and cisco 1941.I started cacti monitoring and found out that there are too many errors on interfaces.URL.
View 5 Replies View RelatedI have a issue where after configuring aaa and rebooting, logging into the console port seems to be auto trying something before it finally times out and let's the user try. I getting the following sequence: [code] I need aaa to work via vty, however I need the device to boot directly to the Username: prompt so I can continue to use my VB script to clear the config when the devices are return from the field.
View 4 Replies View RelatedAny info concerning the installation of CW LMS 4.0.1 on Solaris 10!
The installation keeps on failing when it is checking for packages. Also the second time when we downloaded the software once more.
ERROR: AddProperty called with invalid package name: CSCOmd.
I have also attached the install log files.
The system is Solaris 10 with zones:
bash-3.00# more /etc/release
Solaris 10 10/09 s10s_u8wos_08a SPARC
Copyright 2009 Sun Microsystems, Inc. All Rights Reserved.
Use is subject to license terms.
Assembled 16 September 2009
121133-02, 125503-02, 126897-02, 127127-11, 127755-01, 138866-01 Incompatibles:
[Code] .....
I am installing LMS 4.1 to windows 2008 R2 SP1.Server hardware meets requirements.A the end of the installation I am getting from the installation log file the following warnings/errors. [code]
View 5 Replies View RelatedHow can I troubleshoot, what can I do if we get poller errors in HUM suddenly? It was running some days only.Its an installation in our solution center and Im in comparing the results with Cacti and Nagios/PnP - there is no problem at the same device and interfaces with this tools.
SCSwitchB
#
MIB VariableInstanceFailure StatusFailure CountLast Failed ReasonLast FailedifHCInOctetsGi3/2Permanent458No Such Instance - The specified instance is not availableMon, Jul 18 2011, 22:02:01 CESTifHCOutOctetsGi3/2Permanent458No Such Instance - The specified instance is not availableMon, Jul 18 2011, 22:02:01 CESTifHCOutOctetsGi3/3Permanent458No Such Instance - The specified instance is not availableMon, Jul 18 2011, 22:02:01 CESTifHCInOctetsGi3/3Permanent458No Such Instance - The specified instance is not availableMon, Jul 18 2011, 22:02:01 CEST
I have installed WCS 7.0 now i have installed Navigator on WCS server.Installation is completed.but when I check the status of WCS, it says "healthmonitor running with errors"any one knows what could be the problem and how much will that effect on WCS performance?
View 6 Replies View RelatedNo date in the TOP-N Interface Errors portlet showing in LMS 4.1, but data for TOP-N Interface Utilization is displayed like expected. The Interface Errors poller show active(without errors) with same Instances as Interface Utilization.
View 1 Replies View RelatedI am receiving allot of Errors "%ASA-4-405001: received ARP collision from IP/MAC on interface dmz1 with existing ARP Entry IP/MAC
When i checked this MAC address in the same firewall it shows too many IP Addresses. What could be the reason ?
I am looking at the interface stats of port Fa1/0/2 and see something strange. Ouput drops are 42Billion in 16mins, then 21249 few seconds later, then followed by 42Billion drops again, then 21444...and so forth..I keep getting an entirely different output drops reading everytime i refresh within seconds of each refresh!
sh int fa1/0/2
FastEthernet1/0/2 is up, line protocol is up (connected)
Hardware is Fast Ethernet, address is ecc8.8266.d604 (bia ecc8.8266.d604)
Description: MSGMERGF1
MTU 1500 bytes, BW 100000 Kbit/sec, DLY 100 usec,
reliability 255/255, txload 12/255, rxload 11/255
[code]....
I got many certificates errors. When ISE Server tried to retrieve CRL: CRL verification failed - possibly signed by wrong or unknown CA,When client tried to connect using EAP-TLS: X509 decrypt error - certificate signature failure.
View 2 Replies View RelatedI use an 1841 router as an internet facing firewall with a 10MB MetroE connection. Lately users started reporting slow internet download speeds and web pages timing out. Bandwidth reports do not show the link as being saturated so I looked at the interfaces on the 1841. The interface connected to the provider shows OK as far as errors but the LAN side of the router shows steadily increasing input errors. It doesn't show any other errors, no CRC, frame, runts, giants or overruns, just generic input errors. What type of errors are those? Nothing is being logged on the console.
I moved the connection to another switch ports and the errors continue. I switched it down to 10MB and also changed the switch and the errors slow down but don't stop. Interestingly, the switch side never shows any errors. What can I do here? I guess it can be a bad interface but that is such a rare thing that I am hesitant to replace the router.
Seen Duplex MisMatch errors on a N7k with a LAG going to the 5508 WLC? WLC code is 7.0.203.0. I found a BUG that is private to Cisco ( CSCth11041 ) that looks like it, but I want to make sure.
View 1 Replies View Relatedcisco 878 configured to accept client vpn requests. From client prospective people get error 412 and they can't connect. Not sure what s wrong, following configuration and debug isakmp. Autentication is through a radius server.
View 3 Replies View Relatedi just noticed that im getting some alloc memory errors with a flexwan card i have on a cisco 6513 on slot 5/1, however i can't seem to figure out how to get more information on this and if the issue is related to the flexwan module or the DS3 card itself. Not really sure how to view memory stats/errors for a particular flexwan card on the 6500 platform. The 6500 has been up for a long time and rebooting it might work but i wanted to know what should be done before i reboot the 6500.
show log:
-Process= "Pool Manager", ipl= 0, pid= 5-Traceback= 6017FA60 60183D3C 6010BE4C 60110C24 60110D80SLOT 5/1: Apr 25 11:53:39: %SYS-2-MALLOCFAIL: Memory allocation of 816 bytes failed from 0x6010BE44, alignment 8Pool: Processor Free: 18848 Cause: Memory fragmentationAlternate Pool: None Free: 0 Cause: No Alternate pool
[Code] ....
I'm seeing the following error on one of our real server. Is there a way to find out who is spamming?
10.x.x.x(VIP) - - "POST /slmruntime/service HTTP/1.0" 404 1214
I am having this issue with only one rack in the lab. The three routers (2911 , 1941, 2901) connect together through Smart Serial cables going to WIC-2T cards. In the configuration both serial connections going to the 1941 have the DCE.
When going to configure serial 0/0/1 I am allowed to apply a clockrate to it, however, I am kicked back an error saying that a clock rate can only be configured on DCE interface. They are both without a doubt the DCE end connecting to the WIC-2T interfaces. What could possibly cause this problem. Would SCTE or something with the auto clock-rates on the router create this problem.
I have deployed 7 appliances 5.2.0.26.4 CSACS-1121-K9 whose 6 are performing AAA authentications while the last one is is the primary and is the master for configuration and log collector.
Since this morning, I cannot access anymore the view where I can see all Radius authentication for today. I obtain the following message:The server workspace storage for on demand transient reports is full, please try again later or contact administrator to increase on demand transient report storage capacity?
Moreover, if I generate other report, I have the message:18002: iPortal generate report failed.I could find some information which makes references to a Cisco bug CSCtb98071, as below:
Launching a shared report in the ACS 5.1 Monitoring and Report Viewer displays an iportal error for a particular scenario.
#Symptom: You will see the following iportal error message when you launch a shared report:
#iPortal generate report failed.
#
#Conditions: This error occurs when you add a report to a group in the interactive viewer and save it as a shared report.
#Workaround: Avoid using the option Add Group from the interactive viewer for hyperlinked column entries when you save the report as shared
However, I am not adding any report to any group, so I don't understand why this error appears and how to solve it.
Im getting flooded with the following messages: Feb 14 10:47:19.740 EST: PLATFORM-5-ECC_MSG: A corrected single bit error has occurred in L2C Data Cache at location 0x294.
[Code]...