I just upgraded my CCA OOB deployment to 4.0.0 and now the linkup/linkdown/MAC address traps are not being received properly. I have connectivity between the switches and the CAM and I sniffed the traps from the switches and they contain all the correct info. In the event log I get the following:
"Unable to process out-of-band login request from 00:00:00:00:00:00 -- 192.168.100.115 username. MAC address of 192.168.100.115 not found"
I know that the trap with the correct MAC is reaching the CAM. Anyone run into this?
This appears to not be an SNMP trap problem. I can go into Switch Managment -> Devices -> Discovered Clients and see the machine come on line. It seems that the CAS is not arping properly on the untrusted interface/VLAN.
Most likely you dont have Managed subnets configured. Please can you check this? If you dont have managed subnet configured, it can cause this issue. With 3.6.3 and 4.0.0, it is mandatory to configure managed subnets.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
[toc:faq]Introduction:This document describes details on how NAT-T
works.Background:ESP encrypts all critical information, encapsulating
the entire inner TCP/UDP datagram within an ESP header. ESP is an IP
protocol in the same sense that TCP and UDP are I...