Hello,
now you should be able to configure the EAP-TLS fragment size with following command:
aaa port-access authenticator eap-tls-fragment towards-server <max-fragment-size>
Link to Aruba CLI Bank: Configuring EAP-TLS fragmentation (arubanetworks.com)
Im not 100% shure, but the command should be supported since 16.10.x.
Anyway, I have checked the command under 16.11.0013 and the command is even present on the 2530 Series.
Give it a try, with this command you should be able to set the EAP frament size leaving the switch to 1024 for example (ClearPass default).
------------------------------
Best regards, mom
------------------------------
Original Message:
Sent: Aug 04, 2021 02:45 AM
From: ossrk
Subject: Tunneled-node vs RADIUS MTU
Was this issue fixed? I don't see an option other than creating another SVI configured for jumbo and dedicated for tunneled node
Original Message:
Sent: Oct 26, 2020 11:48 AM
From: Paulius Ivanauskas
Subject: Tunneled-node vs RADIUS MTU
It was done. Client UDP traffic issue was fixed, but that broke RADIUS communication.