Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

DTLS connection was closed

Hi All,

I need your help. I reset a AP via our WLC as the 80211b/g/n radio was operation status down, but the AP has not joined the WLC again, its got the same DHCP ip address, but here is the error msg ive got;


(Cisco Controller) >*spamApTask2: Nov 10 19:37:25.887: 00:1f:c9:46:84:00 Discarding non-ClientHello Handshake OR DTLS encrypted packet from  10.108.12.14:5060)since DTLS session is not established

5 REPLIES
New Member

 *spamApTask3: Nov 10 19:39

 

*spamApTask3: Nov 10 19:39:45.978: 00:1f:c9:46:84:00 Deleting AP 10.108.12.14 which has not been plumbed
*spamApTask3: Nov 10 19:39:45.983: 00:1f:c9:46:84:00 DTLS connection was closed
*spamApTask3: Nov 10 19:39:45.983: 00:1f:c9:46:84:00 Discarding non-ClientHello Handshake OR DTLS encrypted packet from  10.108.12.14:5061)since DTLS session is not established

*spamApTask2: Nov 10 19:42:06.027: 00:1f:c9:46:84:00 Deleting AP 10.108.12.14 which has not been plumbed
*spamApTask2: Nov 10 19:42:06.031: 00:1f:c9:46:84:00 DTLS connection was closed

(Cisco Controller) >
(Cisco Controller) >
(Cisco Controller) >dis   debug *spamApTask2: Nov 10 19:42:06.031: 00:1f:c9:46:84:00 Discarding non-ClientHello Handshake OR DTLS encrypted packet from  10.108.12.14:5060)since DTLS session is not established

*spamApTask3: Nov 10 19:44:26.193: 00:1f:c9:46:84:00 Deleting AP 10.108.12.14 which has not been plumbed
*spamApTask3: Nov 10 19:44:26.197: 00:1f:c9:46:84:00 DTLS connection was closed
*spamApTask3: Nov 10 19:44:26.197: 00:1f:c9:46:84:00 Discarding non-ClientHello Handshake OR DTLS encrypted packet from  10.108.12.14:5061)since DTLS session is not established


(Cisco Controller) debug>disable-all

(Cisco Controller) debug>exit
(Cisco Controller) >show clok?
(Cisco Controller) >show clok    time

Time............................................. Mon Nov 10 19:44:42 2014

Timezone delta................................... 0:0
Timezone location................................ (GMT) London, Lisbon, Dublin, Edinburgh

NTP Servers
    NTP Polling Interval.........................     86400

     Index     NTP Key Index     NTP Server      NTP Msg Auth Status
    -------  ---------------------------------------------------------------
       1              0         10.96.75.61       AUTH DISABLED


(Cisco Controller) >sd  show dtls connections

       AP Name         Local Port        Peer IP        Peer Port                Ciphersuite          
 -------------------- ------------- ----------------  -------------     ------------------------------

 COMPANY-sw_brighton-5a   Capwap_Ctrl    10.108.12.21       1249           TLS_RSA_WITH_AES_128_CBC_SHA
 COMPANY-sw_brighton-2a   Capwap_Ctrl    10.108.12.25       1256           TLS_RSA_WITH_AES_128_CBC_SH

                       Capwap_Ctrl    10.108.12.14       5060           < Connection not established or unknown >
 COMPANY-sw_un4-gap4      Capwap_Ctrl    10.114.27.21      33214           TLS_RSA_WITH_AES_128_CBC_SHA
 COMPANY-sw_lon-bup-7ap   Capwap_Ctrl    10.100.27.24       5942           TLS_RSA_WITH_AES_128_CBC_SHA
 COMPANY-sw_lon-bup-7ap   Capwap_Ctrl    10.100.27.22       5965           TLS_RSA_WITH_AES_128_CBC_SHA
 COMPANY-sw_lon-bup-7ap   Capwap_Ctrl    10.100.27.21       5935           TLS_RSA_WITH_AES_128_CBC_SHA
 COMPANY-sw_un3-1ap4      Capwap_Ctrl    10.114.27.16      33259           TLS_RSA_WITH_AES_12

New Member

Ive also shutdown and re

Ive also shutdown and re-enabled the switchport of the AP, still the same thing

VIP Purple

Is it possible to get AP

Is it possible to get AP console output while your power cycle it ?

HTH

Rasika

 

New Member

Hi Rasika, Thank you for your

Hi Rasika,

 

Thank you for your reply,

 

Unfortunately I unable to provide the out from the AP console, as the AP is in another city onsite on the wall.

 

On the WLC under Statistics and AP join it say the AP not joined.

Last AP Join

Received Discovery request and sent response

Received Config request and sent response

 

Last Error Summary

Last AP Disconnect Reason: AP found primary WLC in primary discovery response

New Member

ive fixed, I sent one of my

ive fixed, I sent one of my colleague to site and got him to plug out the switchport and put it back in and it worked fine.

 

Thank you
 

413
Views
0
Helpful
5
Replies