Since moving to 4.1.185 I've started seeing a lot of these messages in my log:
MAX_EAP_IE_RETRIES_REACHED: Reached Max EAP-Identity Request retries (21) for STA00:19:7e:42:a4:fc
Oct 15 14:31:01.055 dtl_net.c:1210 DTL-1-ARP_POISON_DETECTED: STA [00:11:f5:1b:93:15, 0.0.0.0] ARP (op 1) received with invalid SPA 172.XX.XXX.XXX/TPA 172.XX.XXX.X
I also get some clients that, although still connected to the AP, aren't able to ping their gateway or get anywhere else. The have to do a "repair" with Windows WZC to get working again. Anyone got any ideas?