Trying to setup a remote site and using an LTE enabled router to backhaul the traffic to our data center. Through troubleshooting, I found that the AP-325 is trying to establish it's IPSEC tunnel (through CPSec on controller) using ESP messages that are 1390 bytes. In testing, packets over 1310 bytes fail to reach the controller through this LTE router. APs attached initially and did their code upgrade, but once they did the CPSec enrollment they never came back. This controller has over 800 other APs and we CANNOT disable CPSec on it.
Is there a way to change the SAP MTU in the default AP group to set MTU value to 1200 or is there another recommendation to get this setup?
It's very time sensitive and critical to get these location working, so any suggestions are greatly appreciated.
Thanks!
------------------------------
Michael Haring
------------------------------