Does anyone have a good link to info on what does and does not work for RFC3576 on WLCs?
What all is supported? Packet of Disconnect, yes, I know, but can a Change of Authorization (CoA) packet be used to switch vlans? And if so, are commodity supplicants smart enough to re-initiate DHCP (we run DHCP-required).
Check out defect CSCso52532. Also, make sure you use 6.0 to test this. Due to CSCsv34136, WLC will drop the PoD due to some wrong source port checking.
IN order to send a RADIUS Disconnect-Request (RFC 3576) to the WiSM to disconnect a user you have to know the right values to send.
. If a user has to be logged out then, following attributes are expected - SSH_RADIUS_AVP_SERVICE_TYPE(6) attribte with following value. SSH_RADIUS_SERVICE_TYPE_LOGIN(1) - SSH_RADIUS_AVP_CALLING_STATION_ID(31) - this is needed, if we want to delete particular user session via particular device (like PDA, Phone or PC)
. If a management user has to be logged out then, following attributes are expected - SSH_RADIUS_AVP_SERVICE_TYPE(6) attribte with following value - SSH_RADIUS_SERVICE_TYPE_ADMINISTRATIVE OR - SSH_RADIUS_SERVICE_TYPE_NAS_PROMPT - SSH_RADIUS_AVP_USER_NAME(1) - SSH_RADIUS_AVP_FRAMED_IP_ADDRESS(8)
NOTE THAT 3.21. Calling-Station-Id For IEEE 802.1X Authenticators, this attribute is used to store Supplicant MAC address in ASCII format (upper case only), with values separated by a "-". Example: "00-10-A4-23-19-C0".
Transferring Crash file from standby: Login to the Active WLC in HA.
From CLI: (Cisco Controller) >transfer upload datatype crash (Cisco
Controller) >transfer upload filename (Cisco
Controller) >transfer upload mode tftp (Cisco Controller) >transfer
This is the start of a display filter cross reference between Wireshark
and OmniPeek. The 1st installment is a table of advanced filters. More
filters will be added as time allows. It is a living doc, so check back
for changes every so often Please feel f...