Wireless Access

Reply

Client issue after changing from tunnel to bridge mode

Hi!

 

A couple of weeks ago, we changed an SSID in a remot office to bridge from tunnel, effectively dropping the clients on the same vlan as the AP's and wired clients are connected for that office. During the change I had contact with an end user who tested all functionality after the change of IP-addresses etc and everything worked fine.

 

After that, three clients are experiencing problems with getting an IP-address through DHCP. I can see them associated in the station-table but the client doesn't get an IP, and even more weird, when issuing "ipconfig" on the win7 laptop it reads:

 

Netmask: 169.254...

Netmask: 255.255.0.0

 

I've never seen this behaviour before. If I try to put a static IP on the client, it works fine. I've reinstalled the adapter and verified it's the latest drivers. All three affected clients are HP Laptops with Intel Centrino Advanced-N 6200 AGN NIC. If they connect to a hotspot from their phone, they get an IP-address and it works fine. I also created a new SSID with a new name and open, same issue. Also note that many other users with this same model of laptop and NIC is using the network with no issues.

 

We're running AP105's on 6.2.x

 

Any ideas what could be causing this?

 

 

Chris

Christoffer Jacobsson | Aranya AB
Aruba: ACMX #537 ACCP | CWNP: CWNA CWDP CWSP

Re: Client issue after changing from tunnel to bridge mode

That IP address is one that Windows clients usually show if there is no DHCP response.  That is quite normal.  What isn't is the fact that you're not getting an IP on the clients.  

 

Have you run out of IP addresses on the server?

Seth R. Fiermonti
Consulting Systems Engineer - ACCX, ACDX, ACMX
Email: seth@hpe.com
-----
If you found my post helpful, please give kudos

Re: Client issue after changing from tunnel to bridge mode

Who's assigning the IP addresses ?

 

How's your user-role configured ?

Thank you

Victor Fabian
Lead Mobility Engineer @ Integration Partners
AMFX | ACMX | ACDX | ACCX | CWAP | CWDP | CWNA

Re: Client issue after changing from tunnel to bridge mode

That's the windows APIPA address yes, but what's strange is that it says "Netmask" in front of it when I issue ipconfig.

 

I've verified the DHCP scope, it's got plenty of available addresses and it's located at our service provider that provides MPLS line to the remote office.

 

The user role is an allowall role.

 

Authentication is WPA2 PSK.

 

Chris

Christoffer Jacobsson | Aranya AB
Aruba: ACMX #537 ACCP | CWNP: CWNA CWDP CWSP

Re: Client issue after changing from tunnel to bridge mode

If your DHCP is local then you should have the following in your user role/access list
user any any route src-nat

 

 

Thank you

Victor Fabian
Lead Mobility Engineer @ Integration Partners
AMFX | ACMX | ACDX | ACCX | CWAP | CWDP | CWNA

Re: Client issue after changing from tunnel to bridge mode

hmm, I'm guessing that's for split-tunnel. I want my users to end up on the default vlan, not to be source-NATed behind AP's IP.

 

Or am I misstaken?

 

Chris

Christoffer Jacobsson | Aranya AB
Aruba: ACMX #537 ACCP | CWNP: CWNA CWDP CWSP
Guru Elite

Re: Client issue after changing from tunnel to bridge mode

Is it feasible to have the user experiencing the issue fire up Wireshark and capture the wireless interface as it connects? (I know this is a long shot)


Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480

Re: Client issue after changing from tunnel to bridge mode

A default VLAN configured on the VAP or on the ap system profile ?
Thank you

Victor Fabian
Lead Mobility Engineer @ Integration Partners
AMFX | ACMX | ACDX | ACCX | CWAP | CWDP | CWNA

Re: Client issue after changing from tunnel to bridge mode

We might be able to get wireshark running on the problematic client using wired connection and remote access.

 

The same VLAN as the access point get its IP from, it's connected to an access port on the switch. The remote branch has only one subnet locally and that's where we want to place the wireless users along with wired stations, access points and local file server. 

 

Chris

Christoffer Jacobsson | Aranya AB
Aruba: ACMX #537 ACCP | CWNP: CWNA CWDP CWSP

Re: Client issue after changing from tunnel to bridge mode

Since everything will stay local I would add that rule in there

Thank you

Victor Fabian
Lead Mobility Engineer @ Integration Partners
AMFX | ACMX | ACDX | ACCX | CWAP | CWDP | CWNA
Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: