Wireless Access

Reply
Occasional Contributor II
Posts: 15
Registered: ‎12-14-2011

Broken Tunnel

Hi All

          We see the APs are bouncing between the master and local controller. The error message we see in the logs "Broken Tunnel". I know for the sure this may due to Traffic issue.

 

We have the DHCP servers on the controllers for APs and Client as well.

 

Ip mobility is also enabled.

 

I found under AP system-profile  " HeartBeat DSCP value as 0" By modifying  it to 46 will it make any difference.

 

Setup

 

Wireless controller ---router- layer-2 Switch --AP

 

 

MVP
Posts: 1,399
Registered: ‎05-28-2008

Re: Broken Tunnel

[ Edited ]

Please explain better your issue - in order for us to assist you.

 :smileyhappy:

also please send some logs regarding the diffrent vaps\vlan\ap-system-profile\ips\dhcp

 

rgrds.

 

Me.

*****************2Plus Wireless Solutions****************************
Aruba Airheads - Powered By community for empower the community
************ Don't Forget to Kudos + me,If i helped you******************
MVP
Posts: 1,399
Registered: ‎05-28-2008

Re: Broken Tunnel

Please also check if you have lms\backup lms and in ap-system-profile.

 

and prinut-out debug log (if u can)

*****************2Plus Wireless Solutions****************************
Aruba Airheads - Powered By community for empower the community
************ Don't Forget to Kudos + me,If i helped you******************
MVP
Posts: 1,399
Registered: ‎05-28-2008

Re: Broken Tunnel

[ Edited ]

Here is some needed ports in order for GRE or IPSEC to work as the need in fron of Aruba Controller.

Check that everything configured like it should:

(screenshot of the pdf)

FW - GREIPSEC_PORT INFO

 *ATTACHED AS PDF TO THIS POST*

----------------

Hope it will give u some idea.

 

Me

*****************2Plus Wireless Solutions****************************
Aruba Airheads - Powered By community for empower the community
************ Don't Forget to Kudos + me,If i helped you******************
Occasional Contributor II
Posts: 15
Registered: ‎12-14-2011

Re: Broken Tunnel

Hi,

     All the APs in the network are not Bouncing at once . One or Two APs out of 3000 APs in the network bootstrap. May i know what exactly heartbeat dscp available under AP  system profile  does and when we use it?

MVP
Posts: 331
Registered: ‎07-26-2011

Re: Broken Tunnel

It allows you to prioritise AP heart beat traffic.

DSCP value of AP heartbeats. The supported range is 0-63, and the default value is 0
ACMA, ACMP
If my post addresses your query, give kudos:)
Occasional Contributor II
Posts: 15
Registered: ‎12-14-2011

Re: Broken Tunnel

So will  it help arresting Bootstrap due to traffic issues. May i know the logs you may require to isolate the issue please

Guru Elite
Posts: 20,759
Registered: ‎03-29-2007

Re: Broken Tunnel

If it is a couple access points, make sure that:

 

- the access points negotiated the duplex and speed on the switch correctly

- The controller has enough physical bandwidth to service all of your APs.  The unwritten rule is 1 gigabit interface for every 100 APs.

 



Colin Joseph
Aruba Customer Engineering

Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base

Occasional Contributor II
Posts: 15
Registered: ‎12-14-2011

Re: Broken Tunnel

Thank you Colin. Yes it is one AP for sure on daily basis.

 

We have port channel size of two gigabit ports are configured connecting to layer 3 switch .

 

 Controller ----Layer3 Switch -- Layer2 switch -AP.

 

I see ICMP unreachable messages in the techsupport  logs for AP.

 

I would like to verify in the edge switch the uplink port cost is manually configured as 100 will it make any difference. As this was done by previous engineer before i took over.

 

I am pretty new to this world of  Wireless . Please advice.

 

Please advice me this how to proceed and let me know if any information is required.

 

 

 

 

Occasional Contributor II
Posts: 15
Registered: ‎12-14-2011

Re: Broken Tunnel

 

Hi All,

           Following are the messages i am seeing on the controller of the AP tech-support which bootstraps with broken tunnel message.

 

The controller ip is 192.168.210.45.

 

ved ICMP (DEST_UNREACH, PROT_UNREACH) from 192.168.210.45 for vap 0:0
asap_gre_err: Received ICMP (DEST_UNREACH, PROT_UNREACH) from 192.168.210.45 for vap 0:4
asap_gre_err: Received ICMP (DEST_UNREACH, PROT_UNREACH) from 192.168.210.45 for vap 0:0
asap_gre_err: Received ICMP (DEST_UNREACH, PROT_UNREACH) from 192.168.210.45 for vap 0:0

 

Please let me know what should i check or how to proceed with the troubleshooting.

 

As i said we have 1 AP bootstrap minimum per day and we have in total around 4000 AP. AT times we do see 4 or 5 AP bootstraps at th same time .

Search Airheads
Showing results for 
Search instead for 
Did you mean: