Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

WLC and Radius Packet of Disconnect

How do the wireless lan controllers (in my case a 4402 running 4.1.171.0) support RFC 3576? I'm try to send a disconnect packet from my Radius server to the WLC and its rejecting it as an unknown;

(Cisco Controller) >show radius summary

Vendor Id Backward Compatibility................. Enabled

Credentials Caching.............................. Disabled

Call Station Id Type............................. IP Address

Aggressive Failover.............................. Enabled

Keywrap.......................................... Disabled

Authentication Servers

Idx Type Server Address Port State Tout RFC3576 IPSec - AuthMode/Phase1/Group/Lifetime/Auth/Encr

--- ---- ---------------- ------ -------- ---- ------- ------------------------------------------------

1 NM 10.1.1.2 1645 Enabled 2 Enabled Disabled - none/unknown/group-0/0 none/none

Accounting Servers

Idx Type Server Address Port State Tout RFC3576 IPSec - AuthMode/Phase1/Group/Lifetime/Auth/Encr

--- ---- ---------------- ------ -------- ---- ------- ------------------------------------------------

1 N 10.1.1.2 1646 Enabled 2 N/A Disabled - none/unknown/group-0/0 none/none

(Cisco Controller) >debug aaa all enable

(Cisco Controller) >Fri Jul 6 16:18:16 2007: Received a 'RFC-3576 Disconnect-Request' from unknown server 10.1.1.2:50844

Fri Jul 6 16:18:19 2007: Received a 'RFC-3576 Disconnect-Request' from unknown server 10.1.1.2:50844

Fri Jul 6 16:18:22 2007: Received a 'RFC-3576 Disconnect-Request' from unknown server 10.1.1.2:50844

2 REPLIES
New Member

Re: WLC and Radius Packet of Disconnect

Probably you have figured this out by now, but the packet probably has to be sent from the same port as normal RADIUS traffic -- you are sending it from port 50844. The WiSM thinks your radius server is at port 1645.

New Member

Re: WLC and Radius Packet of Disconnect

J - did you ever find a solution to this issue of the unknown server. I am seeing the same problem at the moment myself and was wondering if anyone has solved it? Cheers Cam.

WLC AAA Debug message:

Fri May 9 14:37:01 2008: Received a 'RFC-3576 Disconnect-Request'

from

unknown server 172.16.1.62:32769

810
Views
0
Helpful
2
Replies