Wireless Access

Reply
Occasional Contributor II

Broken Tunnel

Hi All

          We see the APs are bouncing between the master and local controller. The error message we see in the logs "Broken Tunnel". I know for the sure this may due to Traffic issue.

 

We have the DHCP servers on the controllers for APs and Client as well.

 

Ip mobility is also enabled.

 

I found under AP system-profile  " HeartBeat DSCP value as 0" By modifying  it to 46 will it make any difference.

 

Setup

 

Wireless controller ---router- layer-2 Switch --AP

 

 

Re: Broken Tunnel

Please explain better your issue - in order for us to assist you.

 :smileyhappy:

also please send some logs regarding the diffrent vaps\vlan\ap-system-profile\ips\dhcp

 

rgrds.

 

Me.

*****************2Plus Wireless Solutions****************************
Aruba Airheads - Powered By community for empower the community
************ Don't Forget to Kudos + me,If i helped you******************

Re: Broken Tunnel

Please also check if you have lms\backup lms and in ap-system-profile.

 

and prinut-out debug log (if u can)

*****************2Plus Wireless Solutions****************************
Aruba Airheads - Powered By community for empower the community
************ Don't Forget to Kudos + me,If i helped you******************

Re: Broken Tunnel

Here is some needed ports in order for GRE or IPSEC to work as the need in fron of Aruba Controller.

Check that everything configured like it should:

(screenshot of the pdf)

FW - GREIPSEC_PORT INFO

 *ATTACHED AS PDF TO THIS POST*

----------------

Hope it will give u some idea.

 

Me

*****************2Plus Wireless Solutions****************************
Aruba Airheads - Powered By community for empower the community
************ Don't Forget to Kudos + me,If i helped you******************
Occasional Contributor II

Re: Broken Tunnel

Hi,

     All the APs in the network are not Bouncing at once . One or Two APs out of 3000 APs in the network bootstrap. May i know what exactly heartbeat dscp available under AP  system profile  does and when we use it?

Re: Broken Tunnel

It allows you to prioritise AP heart beat traffic.

DSCP value of AP heartbeats. The supported range is 0-63, and the default value is 0

ACMA, ACMP, ACSA
If my post addresses your query, give kudos:)
Occasional Contributor II

Re: Broken Tunnel

So will  it help arresting Bootstrap due to traffic issues. May i know the logs you may require to isolate the issue please

Guru Elite

Re: Broken Tunnel

If it is a couple access points, make sure that:

 

- the access points negotiated the duplex and speed on the switch correctly

- The controller has enough physical bandwidth to service all of your APs.  The unwritten rule is 1 gigabit interface for every 100 APs.

 



Colin Joseph
Aruba Customer Engineering

Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base

Occasional Contributor II

Re: Broken Tunnel

Thank you Colin. Yes it is one AP for sure on daily basis.

 

We have port channel size of two gigabit ports are configured connecting to layer 3 switch .

 

 Controller ----Layer3 Switch -- Layer2 switch -AP.

 

I see ICMP unreachable messages in the techsupport  logs for AP.

 

I would like to verify in the edge switch the uplink port cost is manually configured as 100 will it make any difference. As this was done by previous engineer before i took over.

 

I am pretty new to this world of  Wireless . Please advice.

 

Please advice me this how to proceed and let me know if any information is required.

 

 

 

 

Occasional Contributor II

Re: Broken Tunnel

 

Hi All,

           Following are the messages i am seeing on the controller of the AP tech-support which bootstraps with broken tunnel message.

 

The controller ip is 192.168.210.45.

 

ved ICMP (DEST_UNREACH, PROT_UNREACH) from 192.168.210.45 for vap 0:0
asap_gre_err: Received ICMP (DEST_UNREACH, PROT_UNREACH) from 192.168.210.45 for vap 0:4
asap_gre_err: Received ICMP (DEST_UNREACH, PROT_UNREACH) from 192.168.210.45 for vap 0:0
asap_gre_err: Received ICMP (DEST_UNREACH, PROT_UNREACH) from 192.168.210.45 for vap 0:0

 

Please let me know what should i check or how to proceed with the troubleshooting.

 

As i said we have 1 AP bootstrap minimum per day and we have in total around 4000 AP. AT times we do see 4 or 5 AP bootstraps at th same time .

Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: