WLC and Radius Packet of Disconnect

Unanswered Question
Jul 6th, 2007

How do the wireless lan controllers (in my case a 4402 running 4.1.171.0) support RFC 3576? I'm try to send a disconnect packet from my Radius server to the WLC and its rejecting it as an unknown;



(Cisco Controller) >show radius summary


Vendor Id Backward Compatibility................. Enabled

Credentials Caching.............................. Disabled

Call Station Id Type............................. IP Address

Aggressive Failover.............................. Enabled

Keywrap.......................................... Disabled


Authentication Servers


Idx Type Server Address Port State Tout RFC3576 IPSec - AuthMode/Phase1/Group/Lifetime/Auth/Encr

--- ---- ---------------- ------ -------- ---- ------- ------------------------------------------------

1 NM 10.1.1.2 1645 Enabled 2 Enabled Disabled - none/unknown/group-0/0 none/none


Accounting Servers


Idx Type Server Address Port State Tout RFC3576 IPSec - AuthMode/Phase1/Group/Lifetime/Auth/Encr

--- ---- ---------------- ------ -------- ---- ------- ------------------------------------------------

1 N 10.1.1.2 1646 Enabled 2 N/A Disabled - none/unknown/group-0/0 none/none



(Cisco Controller) >debug aaa all enable


(Cisco Controller) >Fri Jul 6 16:18:16 2007: Received a 'RFC-3576 Disconnect-Request' from unknown server 10.1.1.2:50844

Fri Jul 6 16:18:19 2007: Received a 'RFC-3576 Disconnect-Request' from unknown server 10.1.1.2:50844

Fri Jul 6 16:18:22 2007: Received a 'RFC-3576 Disconnect-Request' from unknown server 10.1.1.2:50844




  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
b.julin Tue, 01/22/2008 - 08:06

Probably you have figured this out by now, but the packet probably has to be sent from the same port as normal RADIUS traffic -- you are sending it from port 50844. The WiSM thinks your radius server is at port 1645.



cesdaile Mon, 05/12/2008 - 18:40

J - did you ever find a solution to this issue of the unknown server. I am seeing the same problem at the moment myself and was wondering if anyone has solved it? Cheers Cam.


WLC AAA Debug message:


Fri May 9 14:37:01 2008: Received a 'RFC-3576 Disconnect-Request'

from

unknown server 172.16.1.62:32769

Actions

This Discussion

 

 

Trending Topics - Security & Network