Security

last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

My Captive Portal sessions stop after about 5 mins?

This thread has been viewed 0 times

  • 1.  My Captive Portal sessions stop after about 5 mins?

    Posted May 05, 2015 11:45 AM

    My Captive Portal sessions stop after about 5 mins? They used to be ok until the user logged out? I am not sure what has changed?



  • 2.  RE: My Captive Portal sessions stop after about 5 mins?

    EMPLOYEE
    Posted May 05, 2015 11:54 AM

    You should turn on user debugging to find out what is happening to that user.



  • 3.  RE: My Captive Portal sessions stop after about 5 mins?

    Posted May 07, 2015 07:07 AM

    My session shows active on the controller but I no longer have internet access until I logout and login through captive portal again?



  • 4.  RE: My Captive Portal sessions stop after about 5 mins?

    EMPLOYEE
    Posted May 07, 2015 07:11 AM
    Please turn on user debugging so that you can get to the bottom of this. You should also open a TAC case in parallel.


  • 5.  RE: My Captive Portal sessions stop after about 5 mins?

    Posted May 07, 2015 07:55 AM

    May 7 12:43:20 :501105:  <NOTI> |stm|  Deauth from sta: 00:1e:65:80:32:e4: AP 1.1.1.80-00:24:6c:b3:67:39-FSR0-1ST-06 Reason Unspecified

    Failure
    May 7 12:43:20 :501105:  <NOTI> |AP FSR0-1ST-06@1.1.1.80 stm|  Deauth from sta: 00:1e:65:80:32:e4: AP 1.1.1.80-00:24:6c:b3:67:39-FSR0-1ST-06

    Reason Unspecified Failure
    May 7 12:43:20 :522036:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4 Station DN: BSSID=00:24:6c:b3:67:39 ESSID=nsc-g VLAN=401 AP-name=
    May 7 12:43:20 :501000:  <DBUG> |AP FSR0-1ST-06@1.1.1.80 stm|  Station 00:1e:65:80:32:e4: Clearing state
    May 7 12:43:20 :522234:  <DBUG> |authmgr|  Setting idle timer for user 00:1e:65:80:32:e4 to 300 seconds (idle timeout: 300 ageout: 0).
    May 7 12:43:20 :501000:  <DBUG> |stm|  Station 00:1e:65:80:32:e4: Clearing state
    May 7 12:43:23 :501095:  <NOTI> |stm|  Assoc request @ 12:43:23.650700: 00:1e:65:80:32:e4 (SN 1725): AP 1.1.1.80-00:24:6c:b3:67:3a-FSR0-1ST-

    06
    May 7 12:43:23 :501109:  <NOTI> |AP FSR0-1ST-06@1.1.1.80 stm|  Auth request: 00:1e:65:80:32:e4: AP 1.1.1.80-00:24:6c:b3:67:3a-FSR0-1ST-06

    auth_alg 0
    May 7 12:43:23 :501093:  <NOTI> |AP FSR0-1ST-06@1.1.1.80 stm|  Auth success: 00:1e:65:80:32:e4: AP 1.1.1.80-00:24:6c:b3:67:3a-FSR0-1ST-06
    May 7 12:43:23 :501095:  <NOTI> |AP FSR0-1ST-06@1.1.1.80 stm|  Assoc request @ 12:43:21.887150: 00:1e:65:80:32:e4 (SN 1725): AP 1.1.1.80-

    00:24:6c:b3:67:3a-FSR0-1ST-06
    May 7 12:43:23 :501100:  <NOTI> |AP FSR0-1ST-06@1.1.1.80 stm|  Assoc success @ 12:43:21.888787: 00:1e:65:80:32:e4: AP 1.1.1.80-

    00:24:6c:b3:67:3a-FSR0-1ST-06
    May 7 12:43:23 :501100:  <NOTI> |stm|  Assoc success @ 12:43:23.655618: 00:1e:65:80:32:e4: AP 1.1.1.80-00:24:6c:b3:67:3a-FSR0-1ST-06
    May 7 12:43:23 :522035:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4 Station UP: BSSID=00:24:6c:b3:67:3a ESSID=nsc-ra VLAN=402 AP-name=FSR0-1ST-

    06
    May 7 12:43:23 :522077:  <DBUG> |authmgr|  MAC=00:1e:65:80:32:e4 ingress 0x0x10135 (tunnel 309), u_encr 32, m_encr 32, slotport 0x0x2100 ,

    type: local, FW mode: 0, AP IP: 0.0.0.0 mdie 0 ft_complete 0
    May 7 12:43:23 :522078:  <DBUG> |authmgr|  MAC=00:1e:65:80:32:e4, wired: 0, vlan:402 ingress:0x0x10135 (tunnel 309), ingress:0x0x10135

    new_aaa_prof: nsc-ra, stored profile: nsc-g stored wired: 0 stored essid: nsc-g, stored-ingress: 0x0x10292
    May 7 12:43:23 :522079:  <DBUG> |authmgr|  MAC=00:1e:65:80:32:e4 (vlan:402) Detecting Wireless-user AAA-Profile mismatch or wireless<->wired

    roam
    May 7 12:43:23 :527004:  <INFO> |mdns|  mdns_parse_auth_useridle_message 195 Auth User Idle Timeout: MAC:00:1e:65:80:32:e4, WIRED:0, FW:0,

    VLAN:401, IP:172.18.202.201, BSSID:00:24:6c:b3:67:39, AGE:2475,
    May 7 12:43:23 :527000:  <DBUG> |mdns|  mdns_client_purge 648 Purge mdns client, mac=00:1e:65:80:32:e4
    May 7 12:43:23 :522005:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4 IP=172.18.202.201 User entry deleted: reason=essid change
    May 7 12:43:23 :522050:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4,IP=N/A User data downloaded to datapath, new Role=pre_nsc-ra/81, bw

    Contract=0/0, reason=Station resetting role, idle-timeout=300
    May 7 12:43:23 :522244:  <DBUG> |authmgr|  MAC=00:1e:65:80:32:e4 Station Deleted Update MMS
    May 7 12:43:23 :522265:  <DBUG> |authmgr|  "MAC:00:1e:65:80:32:e4: Deallocating UUID: 10052.
    May 7 12:43:23 :522264:  <DBUG> |authmgr|  "MAC:00:1e:65:80:32:e4: Allocating UUID: 9884.
    May 7 12:43:23 :522258:  <DBUG> |authmgr|  "VDR - Add to history of user user 00:1e:65:80:32:e4 vlan 0 derivation_type Reset VLANs for

    Station up index 0.
    May 7 12:43:23 :522255:  <DBUG> |authmgr|  "VDR - set vlan in user for 00:1e:65:80:32:e4 vlan 402 fwdmode 0 derivation_type Default VLAN.
    May 7 12:43:23 :522258:  <DBUG> |authmgr|  "VDR - Add to history of user user 00:1e:65:80:32:e4 vlan 402 derivation_type Default VLAN index

    1.
    May 7 12:43:23 :522255:  <DBUG> |authmgr|  "VDR - set vlan in user for 00:1e:65:80:32:e4 vlan 402 fwdmode 0 derivation_type Current VLAN

    updated.
    May 7 12:43:23 :522258:  <DBUG> |authmgr|  "VDR - Add to history of user user 00:1e:65:80:32:e4 vlan 402 derivation_type Current VLAN updated

    index 2.
    May 7 12:43:23 :522246:  <DBUG> |authmgr|  Idle timeout should be driven by STM for MAC 00:1e:65:80:32:e4.
    May 7 12:43:23 :522254:  <DBUG> |authmgr|  VDR - mac 00:1e:65:80:32:e4 rolename pre_nsc-ra fwdmode 0 derivation_type Initial Role Contained

    vp not present.
    May 7 12:43:23 :522258:  <DBUG> |authmgr|  "VDR - Add to history of user user 00:1e:65:80:32:e4 vlan 0 derivation_type Reset Role Based VLANs

    index 3.
    May 7 12:43:23 :522019:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4 IP=0.0.0.0 Derived role 'post-nsc-ra' from user rules: utype=L2
    May 7 12:43:23 :522049:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4,IP=N/A User role updated, existing Role=pre_nsc-ra/none, new Role=post-nsc-

    ra/none, reason= Setting role for user attributes
    May 7 12:43:23 :522254:  <DBUG> |authmgr|  VDR - mac 00:1e:65:80:32:e4 rolename post-nsc-ra fwdmode 0 derivation_type User Rule Role

    Contained vp not present.
    May 7 12:43:23 :522258:  <DBUG> |authmgr|  "VDR - Add to history of user user 00:1e:65:80:32:e4 vlan 0 derivation_type Reset Role Based VLANs

    index 4.
    May 7 12:43:23 :522254:  <DBUG> |authmgr|  VDR - mac 00:1e:65:80:32:e4 rolename NULL fwdmode 0 derivation_type Matched User Rule vp present.
    May 7 12:43:23 :524124:  <DBUG> |authmgr|  dot1x_supplicant_up(): MAC:00:1e:65:80:32:e4, pmkid_present:False, pmkid:N/A
    May 7 12:43:23 :522255:  <DBUG> |authmgr|  "VDR - set vlan in user for 00:1e:65:80:32:e4 vlan 402 fwdmode 0 derivation_type Current VLAN

    updated.
    May 7 12:43:23 :522258:  <DBUG> |authmgr|  "VDR - Add to history of user user 00:1e:65:80:32:e4 vlan 402 derivation_type Current VLAN updated

    index 5.
    May 7 12:43:23 :522260:  <DBUG> |authmgr|  "VDR - Cur VLAN updated 00:1e:65:80:32:e4 mob 0 inform 1 remote 0 wired 0 defvlan 402 exportedvlan

    0 curvlan 402.
    May 7 12:43:23 :522050:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4,IP=N/A User data downloaded to datapath, new Role=post-nsc-ra/76, bw

    Contract=0/0, reason=layer 2 event driven download, idle-timeout=300
    May 7 12:43:23 :522242:  <DBUG> |authmgr|  MAC=00:1e:65:80:32:e4 Station Created Update MMS: BSSID=00:24:6c:b3:67:3a ESSID=nsc-ra VLAN=402

    AP-name=FSR0-1ST-06
    May 7 12:43:27 :501106:  <NOTI> |stm|  Deauth to sta: 00:1e:65:80:32:e4: Ageout AP 1.1.1.80-00:24:6c:b3:67:3a-FSR0-1ST-06 wifi_deauth_sta
    May 7 12:43:27 :522036:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4 Station DN: BSSID=00:24:6c:b3:67:3a ESSID=nsc-ra VLAN=402 AP-name=
    May 7 12:43:27 :522234:  <DBUG> |authmgr|  Setting idle timer for user 00:1e:65:80:32:e4 to 300 seconds (idle timeout: 300 ageout: 0).
    May 7 12:43:27 :522244:  <DBUG> |authmgr|  MAC=00:1e:65:80:32:e4 Station Deleted Update MMS
    May 7 12:43:27 :522265:  <DBUG> |authmgr|  "MAC:00:1e:65:80:32:e4: Deallocating UUID: 9884.
    May 7 12:43:27 :501080:  <NOTI> |stm|  Deauth to sta: 00:1e:65:80:32:e4: Ageout AP 1.1.1.80-00:24:6c:b3:67:3a-FSR0-1ST-06 Ptk Challenge

    Failed
    May 7 12:43:27 :501000:  <DBUG> |stm|  Station 00:1e:65:80:32:e4: Clearing state
    May 7 12:43:27 :501105:  <NOTI> |AP FSR0-1ST-06@1.1.1.80 stm|  Deauth from sta: 00:1e:65:80:32:e4: AP 1.1.1.80-00:24:6c:b3:67:3a-FSR0-1ST-06

    Reason Ptk Challenge Failed
    May 7 12:43:27 :501000:  <DBUG> |AP FSR0-1ST-06@1.1.1.80 stm|  Station 00:1e:65:80:32:e4: Clearing state
    May 7 12:43:27 :501109:  <NOTI> |AP FSR0-1ST-05@1.1.1.79 stm|  Auth request: 00:1e:65:80:32:e4: AP 1.1.1.79-00:24:6c:b3:1a:1a-FSR0-1ST-05

    auth_alg 0
    May 7 12:43:27 :501093:  <NOTI> |AP FSR0-1ST-05@1.1.1.79 stm|  Auth success: 00:1e:65:80:32:e4: AP 1.1.1.79-00:24:6c:b3:1a:1a-FSR0-1ST-05
    May 7 12:43:28 :501095:  <NOTI> |stm|  Assoc request @ 12:43:28.001168: 00:1e:65:80:32:e4 (SN 1750): AP 1.1.1.79-00:24:6c:b3:1a:1a-FSR0-1ST-

    05
    May 7 12:43:28 :501095:  <NOTI> |AP FSR0-1ST-05@1.1.1.79 stm|  Assoc request @ 12:43:25.398574: 00:1e:65:80:32:e4 (SN 1750): AP 1.1.1.79-

    00:24:6c:b3:1a:1a-FSR0-1ST-05
    May 7 12:43:28 :501100:  <NOTI> |AP FSR0-1ST-05@1.1.1.79 stm|  Assoc success @ 12:43:25.400420: 00:1e:65:80:32:e4: AP 1.1.1.79-

    00:24:6c:b3:1a:1a-FSR0-1ST-05
    May 7 12:43:28 :501100:  <NOTI> |stm|  Assoc success @ 12:43:28.005402: 00:1e:65:80:32:e4: AP 1.1.1.79-00:24:6c:b3:1a:1a-FSR0-1ST-05
    May 7 12:43:28 :522035:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4 Station UP: BSSID=00:24:6c:b3:1a:1a ESSID=nsc-ra VLAN=402 AP-name=FSR0-1ST-

    05
    May 7 12:43:28 :522077:  <DBUG> |authmgr|  MAC=00:1e:65:80:32:e4 ingress 0x0x1034f (tunnel 847), u_encr 32, m_encr 32, slotport 0x0x2100 ,

    type: local, FW mode: 0, AP IP: 0.0.0.0 mdie 0 ft_complete 0
    May 7 12:43:28 :522264:  <DBUG> |authmgr|  "MAC:00:1e:65:80:32:e4: Allocating UUID: 10277.
    May 7 12:43:28 :522258:  <DBUG> |authmgr|  "VDR - Add to history of user user 00:1e:65:80:32:e4 vlan 0 derivation_type Reset VLANs for

    Station up index 0.
    May 7 12:43:28 :522255:  <DBUG> |authmgr|  "VDR - set vlan in user for 00:1e:65:80:32:e4 vlan 402 fwdmode 0 derivation_type Default VLAN.
    May 7 12:43:28 :522258:  <DBUG> |authmgr|  "VDR - Add to history of user user 00:1e:65:80:32:e4 vlan 402 derivation_type Default VLAN index

    1.
    May 7 12:43:28 :522255:  <DBUG> |authmgr|  "VDR - set vlan in user for 00:1e:65:80:32:e4 vlan 402 fwdmode 0 derivation_type Current VLAN

    updated.
    May 7 12:43:28 :522258:  <DBUG> |authmgr|  "VDR - Add to history of user user 00:1e:65:80:32:e4 vlan 402 derivation_type Current VLAN updated

    index 2.
    May 7 12:43:28 :522246:  <DBUG> |authmgr|  Idle timeout should be driven by STM for MAC 00:1e:65:80:32:e4.
    May 7 12:43:28 :522254:  <DBUG> |authmgr|  VDR - mac 00:1e:65:80:32:e4 rolename pre_nsc-ra fwdmode 0 derivation_type Initial Role Contained

    vp not present.
    May 7 12:43:28 :522258:  <DBUG> |authmgr|  "VDR - Add to history of user user 00:1e:65:80:32:e4 vlan 0 derivation_type Reset Role Based VLANs

    index 3.
    May 7 12:43:28 :522019:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4 IP=0.0.0.0 Derived role 'post-nsc-ra' from user rules: utype=L2
    May 7 12:43:28 :522049:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4,IP=N/A User role updated, existing Role=pre_nsc-ra/none, new Role=post-nsc-

    ra/none, reason= Setting role for user attributes
    May 7 12:43:28 :522254:  <DBUG> |authmgr|  VDR - mac 00:1e:65:80:32:e4 rolename post-nsc-ra fwdmode 0 derivation_type User Rule Role

    Contained vp not present.
    May 7 12:43:28 :522258:  <DBUG> |authmgr|  "VDR - Add to history of user user 00:1e:65:80:32:e4 vlan 0 derivation_type Reset Role Based VLANs

    index 4.
    May 7 12:43:28 :522254:  <DBUG> |authmgr|  VDR - mac 00:1e:65:80:32:e4 rolename NULL fwdmode 0 derivation_type Matched User Rule vp present.
    May 7 12:43:28 :524124:  <DBUG> |authmgr|  dot1x_supplicant_up(): MAC:00:1e:65:80:32:e4, pmkid_present:False, pmkid:N/A
    May 7 12:43:28 :522255:  <DBUG> |authmgr|  "VDR - set vlan in user for 00:1e:65:80:32:e4 vlan 402 fwdmode 0 derivation_type Current VLAN

    updated.
    May 7 12:43:28 :522258:  <DBUG> |authmgr|  "VDR - Add to history of user user 00:1e:65:80:32:e4 vlan 402 derivation_type Current VLAN updated

    index 5.
    May 7 12:43:28 :522260:  <DBUG> |authmgr|  "VDR - Cur VLAN updated 00:1e:65:80:32:e4 mob 0 inform 1 remote 0 wired 0 defvlan 402 exportedvlan

    0 curvlan 402.
    May 7 12:43:28 :522050:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4,IP=N/A User data downloaded to datapath, new Role=post-nsc-ra/76, bw

    Contract=0/0, reason=layer 2 event driven download, idle-timeout=300
    May 7 12:43:28 :522242:  <DBUG> |authmgr|  MAC=00:1e:65:80:32:e4 Station Created Update MMS: BSSID=00:24:6c:b3:1a:1a ESSID=nsc-ra VLAN=402

    AP-name=FSR0-1ST-05
    May 7 12:43:31 :501105:  <NOTI> |AP FSR0-1ST-05@1.1.1.79 stm|  Deauth from sta: 00:1e:65:80:32:e4: AP 1.1.1.79-00:24:6c:b3:1a:1a-FSR0-1ST-05

    Reason Unspecified Failure
    May 7 12:43:31 :501000:  <DBUG> |AP FSR0-1ST-05@1.1.1.79 stm|  Station 00:1e:65:80:32:e4: Clearing state
    May 7 12:43:31 :501105:  <NOTI> |stm|  Deauth from sta: 00:1e:65:80:32:e4: AP 1.1.1.79-00:24:6c:b3:1a:1a-FSR0-1ST-05 Reason Unspecified

    Failure
    May 7 12:43:31 :522036:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4 Station DN: BSSID=00:24:6c:b3:1a:1a ESSID=nsc-ra VLAN=402 AP-name=
    May 7 12:43:31 :522234:  <DBUG> |authmgr|  Setting idle timer for user 00:1e:65:80:32:e4 to 300 seconds (idle timeout: 300 ageout: 0).
    May 7 12:43:31 :522244:  <DBUG> |authmgr|  MAC=00:1e:65:80:32:e4 Station Deleted Update MMS
    May 7 12:43:31 :522265:  <DBUG> |authmgr|  "MAC:00:1e:65:80:32:e4: Deallocating UUID: 10277.
    May 7 12:43:31 :501000:  <DBUG> |stm|  Station 00:1e:65:80:32:e4: Clearing state
    May 7 12:43:32 :501109:  <NOTI> |AP FSR0-1ST-06@1.1.1.80 stm|  Auth request: 00:1e:65:80:32:e4: AP 1.1.1.80-00:24:6c:b3:67:39-FSR0-1ST-06

    auth_alg 0
    May 7 12:43:32 :501093:  <NOTI> |AP FSR0-1ST-06@1.1.1.80 stm|  Auth success: 00:1e:65:80:32:e4: AP 1.1.1.80-00:24:6c:b3:67:39-FSR0-1ST-06
    May 7 12:43:32 :501095:  <NOTI> |stm|  Assoc request @ 12:43:32.670401: 00:1e:65:80:32:e4 (SN 1776): AP 1.1.1.80-00:24:6c:b3:67:39-FSR0-1ST-

    06
    May 7 12:43:32 :501095:  <NOTI> |AP FSR0-1ST-06@1.1.1.80 stm|  Assoc request @ 12:43:30.807732: 00:1e:65:80:32:e4 (SN 1776): AP 1.1.1.80-

    00:24:6c:b3:67:39-FSR0-1ST-06
    May 7 12:43:32 :501100:  <NOTI> |AP FSR0-1ST-06@1.1.1.80 stm|  Assoc success @ 12:43:30.809335: 00:1e:65:80:32:e4: AP 1.1.1.80-

    00:24:6c:b3:67:39-FSR0-1ST-06
    May 7 12:43:32 :501100:  <NOTI> |stm|  Assoc success @ 12:43:32.674881: 00:1e:65:80:32:e4: AP 1.1.1.80-00:24:6c:b3:67:39-FSR0-1ST-06
    May 7 12:43:32 :522035:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4 Station UP: BSSID=00:24:6c:b3:67:39 ESSID=nsc-g VLAN=401 AP-name=FSR0-1ST-06
    May 7 12:43:32 :522077:  <DBUG> |authmgr|  MAC=00:1e:65:80:32:e4 ingress 0x0x10292 (tunnel 658), u_encr 1, m_encr 1, slotport 0x0x2100 ,

    type: local, FW mode: 0, AP IP: 0.0.0.0 mdie 0 ft_complete 0
    May 7 12:43:32 :522264:  <DBUG> |authmgr|  "MAC:00:1e:65:80:32:e4: Allocating UUID: 10208.
    May 7 12:43:32 :522258:  <DBUG> |authmgr|  "VDR - Add to history of user user 00:1e:65:80:32:e4 vlan 0 derivation_type Reset VLANs for

    Station up index 0.
    May 7 12:43:32 :522255:  <DBUG> |authmgr|  "VDR - set vlan in user for 00:1e:65:80:32:e4 vlan 401 fwdmode 0 derivation_type Default VLAN.
    May 7 12:43:32 :522258:  <DBUG> |authmgr|  "VDR - Add to history of user user 00:1e:65:80:32:e4 vlan 401 derivation_type Default VLAN index

    1.
    May 7 12:43:32 :522255:  <DBUG> |authmgr|  "VDR - set vlan in user for 00:1e:65:80:32:e4 vlan 401 fwdmode 0 derivation_type Current VLAN

    updated.
    May 7 12:43:32 :522258:  <DBUG> |authmgr|  "VDR - Add to history of user user 00:1e:65:80:32:e4 vlan 401 derivation_type Current VLAN updated

    index 2.
    May 7 12:43:32 :522246:  <DBUG> |authmgr|  Idle timeout should be driven by STM for MAC 00:1e:65:80:32:e4.
    May 7 12:43:32 :522254:  <DBUG> |authmgr|  VDR - mac 00:1e:65:80:32:e4 rolename pre_nsc-g fwdmode 0 derivation_type Initial Role Contained vp

    not present.
    May 7 12:43:32 :522258:  <DBUG> |authmgr|  "VDR - Add to history of user user 00:1e:65:80:32:e4 vlan 0 derivation_type Reset Role Based VLANs

    index 3.
    May 7 12:43:32 :522254:  <DBUG> |authmgr|  VDR - mac 00:1e:65:80:32:e4 rolename NULL fwdmode 0 derivation_type Matched User Rule vp present.
    May 7 12:43:32 :524124:  <DBUG> |authmgr|  dot1x_supplicant_up(): MAC:00:1e:65:80:32:e4, pmkid_present:False, pmkid:N/A
    May 7 12:43:32 :522255:  <DBUG> |authmgr|  "VDR - set vlan in user for 00:1e:65:80:32:e4 vlan 401 fwdmode 0 derivation_type Current VLAN

    updated.
    May 7 12:43:32 :522258:  <DBUG> |authmgr|  "VDR - Add to history of user user 00:1e:65:80:32:e4 vlan 401 derivation_type Current VLAN updated

    index 4.
    May 7 12:43:32 :522260:  <DBUG> |authmgr|  "VDR - Cur VLAN updated 00:1e:65:80:32:e4 mob 0 inform 1 remote 0 wired 0 defvlan 401 exportedvlan

    0 curvlan 401.
    May 7 12:43:32 :522050:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4,IP=N/A User data downloaded to datapath, new Role=pre_nsc-g/79, bw

    Contract=0/0, reason=layer 2 event driven download, idle-timeout=300
    May 7 12:43:32 :522242:  <DBUG> |authmgr|  MAC=00:1e:65:80:32:e4 Station Created Update MMS: BSSID=00:24:6c:b3:67:39 ESSID=nsc-g VLAN=401

    AP-name=FSR0-1ST-06
    May 7 12:43:32 :522026:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4 IP=172.18.202.201 User miss: ingress=0x10292, VLAN=401 flags=0x8040
    May 7 12:43:32 :522049:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4,IP=0.0.0.0 User role updated, existing Role=pre_nsc-g/none, new

    Role=pre_nsc-g/pre_nsc-g, reason=First IP user created
    May 7 12:43:32 :522006:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4 IP=172.18.202.201 User entry added: reason=Sibtye
    May 7 12:43:32 :527004:  <INFO> |mdns|  mdns_parse_auth_useradd_message 248 Auth User ADD: MAC:00:1e:65:80:32:e4, IP:172.18.202.201,

    VLAN:401, Role:pre_nsc-g Name: APName:FSR0-1ST-06 Type:1
    May 7 12:43:32 :522270:  <DBUG> |authmgr|  During User miss marking the user 00:1e:65:80:32:e4 with ingress 0x10292, connection-type 2 as

    wireless, muxtunnel = no
    May 7 12:43:32 :527000:  <DBUG> |mdns|  mdns_client_create 175 MDNS Client created - ip:172.18.202.201 mac:00:1e:65:80:32:e4. AP-name: FSR0-

    1ST-06
    May 7 12:43:32 :527000:  <DBUG> |mdns|  mdns_auth_userinfo_req_message 342 mac(00:1e:65:80:32:e4), ip(172.18.202.201)
    May 7 12:43:32 :522049:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4,IP=172.18.202.201 User role updated, existing Role=pre_nsc-g/pre_nsc-g, new

    Role=pre_nsc-g/pre_nsc-g, reason=User not authenticated for inheriting attributes
    May 7 12:43:32 :527000:  <DBUG> |mdns|  mdns_discover_service_client 3637 Discover client 00:1e:65:80:32:e4 for a particular service
    May 7 12:43:32 :522050:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4,IP=172.18.202.201 User data downloaded to datapath, new Role=pre_nsc-g/79,

    bw Contract=0/0, reason=New user IP processing, idle-timeout=300
    May 7 12:43:32 :527000:  <DBUG> |mdns|  mdns_send_packet_pseudo_mcast 496 MDNS Pkt to SOS: pkt_len=387, buf_len=14336. To=00:1e:65:80:32:e4,

    vlan=401
    May 7 12:43:32 :527000:  <DBUG> |mdns|  mdns_parse_userinfo 371 UserInfo resp=1 ip=172.18.202.201, mac=00:1e:65:80:32:e4, apname=FSR0-1ST-06,

    role=pre_nsc-g, username=, vlan=401
    May 7 12:43:32 :527000:  <DBUG> |mdns|  mdns_parse_auth_userinfo_resp_message 396 UserInfo response completed for ip=172.18.202.201

    mac=00:1e:65:80:32:e4
    May 7 12:43:37 :522137:  <DBUG> |authmgr|  Sibyte-00:1e:65:80:32:e4/172.18.202.201 : User-Agent: Microsoft NCSI.
    May 7 12:43:40 :522138:  <DBUG> |authmgr|  Sibyte-00:1e:65:80:32:e4/172.18.202.201 : User-Agent: Mozilla/5.0 (Windows NT 6.1; Trident/7.0;

    rv:11.0) like Gecko, ret=1, index=14.
    May 7 12:43:55 :522038:  <INFO> |authmgr|  username=jfox MAC=00:1e:65:80:32:e4 IP=172.18.202.201 Authentication result=Authentication

    Successful method=Web server=Internal
    May 7 12:43:55 :522017:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4 IP=?? Derived role 'guest' from server rules: server-group=default,

    authentication=Web
    May 7 12:43:55 :522049:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4,IP=172.18.202.201 User role updated, existing Role=pre_nsc-g/pre_nsc-g, new

    Role=pre_nsc-g/guest, reason=User authenticated with auth type:1 role derivation:2 l3 assigned role:None
    May 7 12:43:55 :522050:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4,IP=172.18.202.201 User data downloaded to datapath, new Role=guest/3, bw

    Contract=0/0, reason=Download driven by user role setting, idle-timeout=300
    May 7 12:43:55 :522008:  <NOTI> |authmgr|  User Authentication Successful: username=jfox MAC=00:1e:65:80:32:e4 IP=172.18.202.201 role=guest

    VLAN=401 AP=FSR0-1ST-06 SSID=nsc-g AAA profile=nsc-g auth method=Web auth server=Internal
    May 7 12:43:55 :527000:  <DBUG> |mdns|  mdns_parse_auth_userrole_message 287 Auth User ROLE: MAC:00:1e:65:80:32:e4, NAME:jfox,

    ROLE_NAME:guest
    May 7 12:44:05 :522138:  <DBUG> |authmgr|  Sibyte-00:1e:65:80:32:e4/172.18.202.201 : User-Agent: Mozilla/5.0 (Windows NT 6.1; Trident/7.0;

    rv:11.0) like Gecko, ret=1, index=14.



  • 6.  RE: My Captive Portal sessions stop after about 5 mins?

    Posted May 07, 2015 09:19 AM

    May 7 12:43:20 :501105:  <NOTI> |stm|  Deauth from sta: 00:1e:65:80:32:e4: AP 1.1.1.80-00:24:6c:b3:67:39-FSR0-1ST-06 Reason Unspecified

    Failure
    May 7 12:43:20 :501105:  <NOTI> |AP FSR0-1ST-06@1.1.1.80 stm|  Deauth from sta: 00:1e:65:80:32:e4: AP 1.1.1.80-00:24:6c:b3:67:39-FSR0-1ST-06

    Reason Unspecified Failure
    May 7 12:43:20 :522036:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4 Station DN: BSSID=00:24:6c:b3:67:39 ESSID=nsc-g VLAN=401 AP-name=
    May 7 12:43:20 :501000:  <DBUG> |AP FSR0-1ST-06@1.1.1.80 stm|  Station 00:1e:65:80:32:e4: Clearing state
    May 7 12:43:20 :522234:  <DBUG> |authmgr|  Setting idle timer for user 00:1e:65:80:32:e4 to 300 seconds (idle timeout: 300 ageout: 0).
    May 7 12:43:20 :501000:  <DBUG> |stm|  Station 00:1e:65:80:32:e4: Clearing state
    May 7 12:43:23 :501095:  <NOTI> |stm|  Assoc request @ 12:43:23.650700: 00:1e:65:80:32:e4 (SN 1725): AP 1.1.1.80-00:24:6c:b3:67:3a-FSR0-1ST-

    06
    May 7 12:43:23 :501109:  <NOTI> |AP FSR0-1ST-06@1.1.1.80 stm|  Auth request: 00:1e:65:80:32:e4: AP 1.1.1.80-00:24:6c:b3:67:3a-FSR0-1ST-06

    auth_alg 0
    May 7 12:43:23 :501093:  <NOTI> |AP FSR0-1ST-06@1.1.1.80 stm|  Auth success: 00:1e:65:80:32:e4: AP 1.1.1.80-00:24:6c:b3:67:3a-FSR0-1ST-06
    May 7 12:43:23 :501095:  <NOTI> |AP FSR0-1ST-06@1.1.1.80 stm|  Assoc request @ 12:43:21.887150: 00:1e:65:80:32:e4 (SN 1725): AP 1.1.1.80-

    00:24:6c:b3:67:3a-FSR0-1ST-06
    May 7 12:43:23 :501100:  <NOTI> |AP FSR0-1ST-06@1.1.1.80 stm|  Assoc success @ 12:43:21.888787: 00:1e:65:80:32:e4: AP 1.1.1.80-

    00:24:6c:b3:67:3a-FSR0-1ST-06
    May 7 12:43:23 :501100:  <NOTI> |stm|  Assoc success @ 12:43:23.655618: 00:1e:65:80:32:e4: AP 1.1.1.80-00:24:6c:b3:67:3a-FSR0-1ST-06
    May 7 12:43:23 :522035:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4 Station UP: BSSID=00:24:6c:b3:67:3a ESSID=nsc-ra VLAN=402 AP-name=FSR0-1ST-

    06
    May 7 12:43:23 :522077:  <DBUG> |authmgr|  MAC=00:1e:65:80:32:e4 ingress 0x0x10135 (tunnel 309), u_encr 32, m_encr 32, slotport 0x0x2100 ,

    type: local, FW mode: 0, AP IP: 0.0.0.0 mdie 0 ft_complete 0
    May 7 12:43:23 :522078:  <DBUG> |authmgr|  MAC=00:1e:65:80:32:e4, wired: 0, vlan:402 ingress:0x0x10135 (tunnel 309), ingress:0x0x10135

    new_aaa_prof: nsc-ra, stored profile: nsc-g stored wired: 0 stored essid: nsc-g, stored-ingress: 0x0x10292
    May 7 12:43:23 :522079:  <DBUG> |authmgr|  MAC=00:1e:65:80:32:e4 (vlan:402) Detecting Wireless-user AAA-Profile mismatch or wireless<->wired

    roam
    May 7 12:43:23 :527004:  <INFO> |mdns|  mdns_parse_auth_useridle_message 195 Auth User Idle Timeout: MAC:00:1e:65:80:32:e4, WIRED:0, FW:0,

    VLAN:401, IP:172.18.202.201, BSSID:00:24:6c:b3:67:39, AGE:2475,
    May 7 12:43:23 :527000:  <DBUG> |mdns|  mdns_client_purge 648 Purge mdns client, mac=00:1e:65:80:32:e4
    May 7 12:43:23 :522005:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4 IP=172.18.202.201 User entry deleted: reason=essid change
    May 7 12:43:23 :522050:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4,IP=N/A User data downloaded to datapath, new Role=pre_nsc-ra/81, bw

    Contract=0/0, reason=Station resetting role, idle-timeout=300
    May 7 12:43:23 :522244:  <DBUG> |authmgr|  MAC=00:1e:65:80:32:e4 Station Deleted Update MMS
    May 7 12:43:23 :522265:  <DBUG> |authmgr|  "MAC:00:1e:65:80:32:e4: Deallocating UUID: 10052.
    May 7 12:43:23 :522264:  <DBUG> |authmgr|  "MAC:00:1e:65:80:32:e4: Allocating UUID: 9884.
    May 7 12:43:23 :522258:  <DBUG> |authmgr|  "VDR - Add to history of user user 00:1e:65:80:32:e4 vlan 0 derivation_type Reset VLANs for

    Station up index 0.
    May 7 12:43:23 :522255:  <DBUG> |authmgr|  "VDR - set vlan in user for 00:1e:65:80:32:e4 vlan 402 fwdmode 0 derivation_type Default VLAN.
    May 7 12:43:23 :522258:  <DBUG> |authmgr|  "VDR - Add to history of user user 00:1e:65:80:32:e4 vlan 402 derivation_type Default VLAN index

    1.
    May 7 12:43:23 :522255:  <DBUG> |authmgr|  "VDR - set vlan in user for 00:1e:65:80:32:e4 vlan 402 fwdmode 0 derivation_type Current VLAN

    updated.
    May 7 12:43:23 :522258:  <DBUG> |authmgr|  "VDR - Add to history of user user 00:1e:65:80:32:e4 vlan 402 derivation_type Current VLAN updated

    index 2.
    May 7 12:43:23 :522246:  <DBUG> |authmgr|  Idle timeout should be driven by STM for MAC 00:1e:65:80:32:e4.
    May 7 12:43:23 :522254:  <DBUG> |authmgr|  VDR - mac 00:1e:65:80:32:e4 rolename pre_nsc-ra fwdmode 0 derivation_type Initial Role Contained

    vp not present.
    May 7 12:43:23 :522258:  <DBUG> |authmgr|  "VDR - Add to history of user user 00:1e:65:80:32:e4 vlan 0 derivation_type Reset Role Based VLANs

    index 3.
    May 7 12:43:23 :522019:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4 IP=0.0.0.0 Derived role 'post-nsc-ra' from user rules: utype=L2
    May 7 12:43:23 :522049:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4,IP=N/A User role updated, existing Role=pre_nsc-ra/none, new Role=post-nsc-

    ra/none, reason= Setting role for user attributes
    May 7 12:43:23 :522254:  <DBUG> |authmgr|  VDR - mac 00:1e:65:80:32:e4 rolename post-nsc-ra fwdmode 0 derivation_type User Rule Role

    Contained vp not present.
    May 7 12:43:23 :522258:  <DBUG> |authmgr|  "VDR - Add to history of user user 00:1e:65:80:32:e4 vlan 0 derivation_type Reset Role Based VLANs

    index 4.
    May 7 12:43:23 :522254:  <DBUG> |authmgr|  VDR - mac 00:1e:65:80:32:e4 rolename NULL fwdmode 0 derivation_type Matched User Rule vp present.
    May 7 12:43:23 :524124:  <DBUG> |authmgr|  dot1x_supplicant_up(): MAC:00:1e:65:80:32:e4, pmkid_present:False, pmkid:N/A
    May 7 12:43:23 :522255:  <DBUG> |authmgr|  "VDR - set vlan in user for 00:1e:65:80:32:e4 vlan 402 fwdmode 0 derivation_type Current VLAN

    updated.
    May 7 12:43:23 :522258:  <DBUG> |authmgr|  "VDR - Add to history of user user 00:1e:65:80:32:e4 vlan 402 derivation_type Current VLAN updated

    index 5.
    May 7 12:43:23 :522260:  <DBUG> |authmgr|  "VDR - Cur VLAN updated 00:1e:65:80:32:e4 mob 0 inform 1 remote 0 wired 0 defvlan 402 exportedvlan

    0 curvlan 402.
    May 7 12:43:23 :522050:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4,IP=N/A User data downloaded to datapath, new Role=post-nsc-ra/76, bw

    Contract=0/0, reason=layer 2 event driven download, idle-timeout=300
    May 7 12:43:23 :522242:  <DBUG> |authmgr|  MAC=00:1e:65:80:32:e4 Station Created Update MMS: BSSID=00:24:6c:b3:67:3a ESSID=nsc-ra VLAN=402

    AP-name=FSR0-1ST-06
    May 7 12:43:27 :501106:  <NOTI> |stm|  Deauth to sta: 00:1e:65:80:32:e4: Ageout AP 1.1.1.80-00:24:6c:b3:67:3a-FSR0-1ST-06 wifi_deauth_sta
    May 7 12:43:27 :522036:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4 Station DN: BSSID=00:24:6c:b3:67:3a ESSID=nsc-ra VLAN=402 AP-name=
    May 7 12:43:27 :522234:  <DBUG> |authmgr|  Setting idle timer for user 00:1e:65:80:32:e4 to 300 seconds (idle timeout: 300 ageout: 0).
    May 7 12:43:27 :522244:  <DBUG> |authmgr|  MAC=00:1e:65:80:32:e4 Station Deleted Update MMS
    May 7 12:43:27 :522265:  <DBUG> |authmgr|  "MAC:00:1e:65:80:32:e4: Deallocating UUID: 9884.
    May 7 12:43:27 :501080:  <NOTI> |stm|  Deauth to sta: 00:1e:65:80:32:e4: Ageout AP 1.1.1.80-00:24:6c:b3:67:3a-FSR0-1ST-06 Ptk Challenge

    Failed
    May 7 12:43:27 :501000:  <DBUG> |stm|  Station 00:1e:65:80:32:e4: Clearing state
    May 7 12:43:27 :501105:  <NOTI> |AP FSR0-1ST-06@1.1.1.80 stm|  Deauth from sta: 00:1e:65:80:32:e4: AP 1.1.1.80-00:24:6c:b3:67:3a-FSR0-1ST-06

    Reason Ptk Challenge Failed
    May 7 12:43:27 :501000:  <DBUG> |AP FSR0-1ST-06@1.1.1.80 stm|  Station 00:1e:65:80:32:e4: Clearing state
    May 7 12:43:27 :501109:  <NOTI> |AP FSR0-1ST-05@1.1.1.79 stm|  Auth request: 00:1e:65:80:32:e4: AP 1.1.1.79-00:24:6c:b3:1a:1a-FSR0-1ST-05

    auth_alg 0
    May 7 12:43:27 :501093:  <NOTI> |AP FSR0-1ST-05@1.1.1.79 stm|  Auth success: 00:1e:65:80:32:e4: AP 1.1.1.79-00:24:6c:b3:1a:1a-FSR0-1ST-05
    May 7 12:43:28 :501095:  <NOTI> |stm|  Assoc request @ 12:43:28.001168: 00:1e:65:80:32:e4 (SN 1750): AP 1.1.1.79-00:24:6c:b3:1a:1a-FSR0-1ST-

    05
    May 7 12:43:28 :501095:  <NOTI> |AP FSR0-1ST-05@1.1.1.79 stm|  Assoc request @ 12:43:25.398574: 00:1e:65:80:32:e4 (SN 1750): AP 1.1.1.79-

    00:24:6c:b3:1a:1a-FSR0-1ST-05
    May 7 12:43:28 :501100:  <NOTI> |AP FSR0-1ST-05@1.1.1.79 stm|  Assoc success @ 12:43:25.400420: 00:1e:65:80:32:e4: AP 1.1.1.79-

    00:24:6c:b3:1a:1a-FSR0-1ST-05
    May 7 12:43:28 :501100:  <NOTI> |stm|  Assoc success @ 12:43:28.005402: 00:1e:65:80:32:e4: AP 1.1.1.79-00:24:6c:b3:1a:1a-FSR0-1ST-05
    May 7 12:43:28 :522035:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4 Station UP: BSSID=00:24:6c:b3:1a:1a ESSID=nsc-ra VLAN=402 AP-name=FSR0-1ST-

    05
    May 7 12:43:28 :522077:  <DBUG> |authmgr|  MAC=00:1e:65:80:32:e4 ingress 0x0x1034f (tunnel 847), u_encr 32, m_encr 32, slotport 0x0x2100 ,

    type: local, FW mode: 0, AP IP: 0.0.0.0 mdie 0 ft_complete 0
    May 7 12:43:28 :522264:  <DBUG> |authmgr|  "MAC:00:1e:65:80:32:e4: Allocating UUID: 10277.
    May 7 12:43:28 :522258:  <DBUG> |authmgr|  "VDR - Add to history of user user 00:1e:65:80:32:e4 vlan 0 derivation_type Reset VLANs for

    Station up index 0.
    May 7 12:43:28 :522255:  <DBUG> |authmgr|  "VDR - set vlan in user for 00:1e:65:80:32:e4 vlan 402 fwdmode 0 derivation_type Default VLAN.
    May 7 12:43:28 :522258:  <DBUG> |authmgr|  "VDR - Add to history of user user 00:1e:65:80:32:e4 vlan 402 derivation_type Default VLAN index

    1.
    May 7 12:43:28 :522255:  <DBUG> |authmgr|  "VDR - set vlan in user for 00:1e:65:80:32:e4 vlan 402 fwdmode 0 derivation_type Current VLAN

    updated.
    May 7 12:43:28 :522258:  <DBUG> |authmgr|  "VDR - Add to history of user user 00:1e:65:80:32:e4 vlan 402 derivation_type Current VLAN updated

    index 2.
    May 7 12:43:28 :522246:  <DBUG> |authmgr|  Idle timeout should be driven by STM for MAC 00:1e:65:80:32:e4.
    May 7 12:43:28 :522254:  <DBUG> |authmgr|  VDR - mac 00:1e:65:80:32:e4 rolename pre_nsc-ra fwdmode 0 derivation_type Initial Role Contained

    vp not present.
    May 7 12:43:28 :522258:  <DBUG> |authmgr|  "VDR - Add to history of user user 00:1e:65:80:32:e4 vlan 0 derivation_type Reset Role Based VLANs

    index 3.
    May 7 12:43:28 :522019:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4 IP=0.0.0.0 Derived role 'post-nsc-ra' from user rules: utype=L2
    May 7 12:43:28 :522049:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4,IP=N/A User role updated, existing Role=pre_nsc-ra/none, new Role=post-nsc-

    ra/none, reason= Setting role for user attributes
    May 7 12:43:28 :522254:  <DBUG> |authmgr|  VDR - mac 00:1e:65:80:32:e4 rolename post-nsc-ra fwdmode 0 derivation_type User Rule Role

    Contained vp not present.
    May 7 12:43:28 :522258:  <DBUG> |authmgr|  "VDR - Add to history of user user 00:1e:65:80:32:e4 vlan 0 derivation_type Reset Role Based VLANs

    index 4.
    May 7 12:43:28 :522254:  <DBUG> |authmgr|  VDR - mac 00:1e:65:80:32:e4 rolename NULL fwdmode 0 derivation_type Matched User Rule vp present.
    May 7 12:43:28 :524124:  <DBUG> |authmgr|  dot1x_supplicant_up(): MAC:00:1e:65:80:32:e4, pmkid_present:False, pmkid:N/A
    May 7 12:43:28 :522255:  <DBUG> |authmgr|  "VDR - set vlan in user for 00:1e:65:80:32:e4 vlan 402 fwdmode 0 derivation_type Current VLAN

    updated.
    May 7 12:43:28 :522258:  <DBUG> |authmgr|  "VDR - Add to history of user user 00:1e:65:80:32:e4 vlan 402 derivation_type Current VLAN updated

    index 5.
    May 7 12:43:28 :522260:  <DBUG> |authmgr|  "VDR - Cur VLAN updated 00:1e:65:80:32:e4 mob 0 inform 1 remote 0 wired 0 defvlan 402 exportedvlan

    0 curvlan 402.
    May 7 12:43:28 :522050:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4,IP=N/A User data downloaded to datapath, new Role=post-nsc-ra/76, bw

    Contract=0/0, reason=layer 2 event driven download, idle-timeout=300
    May 7 12:43:28 :522242:  <DBUG> |authmgr|  MAC=00:1e:65:80:32:e4 Station Created Update MMS: BSSID=00:24:6c:b3:1a:1a ESSID=nsc-ra VLAN=402

    AP-name=FSR0-1ST-05
    May 7 12:43:31 :501105:  <NOTI> |AP FSR0-1ST-05@1.1.1.79 stm|  Deauth from sta: 00:1e:65:80:32:e4: AP 1.1.1.79-00:24:6c:b3:1a:1a-FSR0-1ST-05

    Reason Unspecified Failure
    May 7 12:43:31 :501000:  <DBUG> |AP FSR0-1ST-05@1.1.1.79 stm|  Station 00:1e:65:80:32:e4: Clearing state
    May 7 12:43:31 :501105:  <NOTI> |stm|  Deauth from sta: 00:1e:65:80:32:e4: AP 1.1.1.79-00:24:6c:b3:1a:1a-FSR0-1ST-05 Reason Unspecified

    Failure
    May 7 12:43:31 :522036:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4 Station DN: BSSID=00:24:6c:b3:1a:1a ESSID=nsc-ra VLAN=402 AP-name=
    May 7 12:43:31 :522234:  <DBUG> |authmgr|  Setting idle timer for user 00:1e:65:80:32:e4 to 300 seconds (idle timeout: 300 ageout: 0).
    May 7 12:43:31 :522244:  <DBUG> |authmgr|  MAC=00:1e:65:80:32:e4 Station Deleted Update MMS
    May 7 12:43:31 :522265:  <DBUG> |authmgr|  "MAC:00:1e:65:80:32:e4: Deallocating UUID: 10277.
    May 7 12:43:31 :501000:  <DBUG> |stm|  Station 00:1e:65:80:32:e4: Clearing state
    May 7 12:43:32 :501109:  <NOTI> |AP FSR0-1ST-06@1.1.1.80 stm|  Auth request: 00:1e:65:80:32:e4: AP 1.1.1.80-00:24:6c:b3:67:39-FSR0-1ST-06

    auth_alg 0
    May 7 12:43:32 :501093:  <NOTI> |AP FSR0-1ST-06@1.1.1.80 stm|  Auth success: 00:1e:65:80:32:e4: AP 1.1.1.80-00:24:6c:b3:67:39-FSR0-1ST-06
    May 7 12:43:32 :501095:  <NOTI> |stm|  Assoc request @ 12:43:32.670401: 00:1e:65:80:32:e4 (SN 1776): AP 1.1.1.80-00:24:6c:b3:67:39-FSR0-1ST-

    06
    May 7 12:43:32 :501095:  <NOTI> |AP FSR0-1ST-06@1.1.1.80 stm|  Assoc request @ 12:43:30.807732: 00:1e:65:80:32:e4 (SN 1776): AP 1.1.1.80-

    00:24:6c:b3:67:39-FSR0-1ST-06
    May 7 12:43:32 :501100:  <NOTI> |AP FSR0-1ST-06@1.1.1.80 stm|  Assoc success @ 12:43:30.809335: 00:1e:65:80:32:e4: AP 1.1.1.80-

    00:24:6c:b3:67:39-FSR0-1ST-06
    May 7 12:43:32 :501100:  <NOTI> |stm|  Assoc success @ 12:43:32.674881: 00:1e:65:80:32:e4: AP 1.1.1.80-00:24:6c:b3:67:39-FSR0-1ST-06
    May 7 12:43:32 :522035:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4 Station UP: BSSID=00:24:6c:b3:67:39 ESSID=nsc-g VLAN=401 AP-name=FSR0-1ST-06
    May 7 12:43:32 :522077:  <DBUG> |authmgr|  MAC=00:1e:65:80:32:e4 ingress 0x0x10292 (tunnel 658), u_encr 1, m_encr 1, slotport 0x0x2100 ,

    type: local, FW mode: 0, AP IP: 0.0.0.0 mdie 0 ft_complete 0
    May 7 12:43:32 :522264:  <DBUG> |authmgr|  "MAC:00:1e:65:80:32:e4: Allocating UUID: 10208.
    May 7 12:43:32 :522258:  <DBUG> |authmgr|  "VDR - Add to history of user user 00:1e:65:80:32:e4 vlan 0 derivation_type Reset VLANs for

    Station up index 0.
    May 7 12:43:32 :522255:  <DBUG> |authmgr|  "VDR - set vlan in user for 00:1e:65:80:32:e4 vlan 401 fwdmode 0 derivation_type Default VLAN.
    May 7 12:43:32 :522258:  <DBUG> |authmgr|  "VDR - Add to history of user user 00:1e:65:80:32:e4 vlan 401 derivation_type Default VLAN index

    1.
    May 7 12:43:32 :522255:  <DBUG> |authmgr|  "VDR - set vlan in user for 00:1e:65:80:32:e4 vlan 401 fwdmode 0 derivation_type Current VLAN

    updated.
    May 7 12:43:32 :522258:  <DBUG> |authmgr|  "VDR - Add to history of user user 00:1e:65:80:32:e4 vlan 401 derivation_type Current VLAN updated

    index 2.
    May 7 12:43:32 :522246:  <DBUG> |authmgr|  Idle timeout should be driven by STM for MAC 00:1e:65:80:32:e4.
    May 7 12:43:32 :522254:  <DBUG> |authmgr|  VDR - mac 00:1e:65:80:32:e4 rolename pre_nsc-g fwdmode 0 derivation_type Initial Role Contained vp

    not present.
    May 7 12:43:32 :522258:  <DBUG> |authmgr|  "VDR - Add to history of user user 00:1e:65:80:32:e4 vlan 0 derivation_type Reset Role Based VLANs

    index 3.
    May 7 12:43:32 :522254:  <DBUG> |authmgr|  VDR - mac 00:1e:65:80:32:e4 rolename NULL fwdmode 0 derivation_type Matched User Rule vp present.
    May 7 12:43:32 :524124:  <DBUG> |authmgr|  dot1x_supplicant_up(): MAC:00:1e:65:80:32:e4, pmkid_present:False, pmkid:N/A
    May 7 12:43:32 :522255:  <DBUG> |authmgr|  "VDR - set vlan in user for 00:1e:65:80:32:e4 vlan 401 fwdmode 0 derivation_type Current VLAN

    updated.
    May 7 12:43:32 :522258:  <DBUG> |authmgr|  "VDR - Add to history of user user 00:1e:65:80:32:e4 vlan 401 derivation_type Current VLAN updated

    index 4.
    May 7 12:43:32 :522260:  <DBUG> |authmgr|  "VDR - Cur VLAN updated 00:1e:65:80:32:e4 mob 0 inform 1 remote 0 wired 0 defvlan 401 exportedvlan

    0 curvlan 401.
    May 7 12:43:32 :522050:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4,IP=N/A User data downloaded to datapath, new Role=pre_nsc-g/79, bw

    Contract=0/0, reason=layer 2 event driven download, idle-timeout=300
    May 7 12:43:32 :522242:  <DBUG> |authmgr|  MAC=00:1e:65:80:32:e4 Station Created Update MMS: BSSID=00:24:6c:b3:67:39 ESSID=nsc-g VLAN=401

    AP-name=FSR0-1ST-06
    May 7 12:43:32 :522026:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4 IP=172.18.202.201 User miss: ingress=0x10292, VLAN=401 flags=0x8040
    May 7 12:43:32 :522049:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4,IP=0.0.0.0 User role updated, existing Role=pre_nsc-g/none, new

    Role=pre_nsc-g/pre_nsc-g, reason=First IP user created
    May 7 12:43:32 :522006:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4 IP=172.18.202.201 User entry added: reason=Sibtye
    May 7 12:43:32 :527004:  <INFO> |mdns|  mdns_parse_auth_useradd_message 248 Auth User ADD: MAC:00:1e:65:80:32:e4, IP:172.18.202.201,

    VLAN:401, Role:pre_nsc-g Name: APName:FSR0-1ST-06 Type:1
    May 7 12:43:32 :522270:  <DBUG> |authmgr|  During User miss marking the user 00:1e:65:80:32:e4 with ingress 0x10292, connection-type 2 as

    wireless, muxtunnel = no
    May 7 12:43:32 :527000:  <DBUG> |mdns|  mdns_client_create 175 MDNS Client created - ip:172.18.202.201 mac:00:1e:65:80:32:e4. AP-name: FSR0-

    1ST-06
    May 7 12:43:32 :527000:  <DBUG> |mdns|  mdns_auth_userinfo_req_message 342 mac(00:1e:65:80:32:e4), ip(172.18.202.201)
    May 7 12:43:32 :522049:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4,IP=172.18.202.201 User role updated, existing Role=pre_nsc-g/pre_nsc-g, new

    Role=pre_nsc-g/pre_nsc-g, reason=User not authenticated for inheriting attributes
    May 7 12:43:32 :527000:  <DBUG> |mdns|  mdns_discover_service_client 3637 Discover client 00:1e:65:80:32:e4 for a particular service
    May 7 12:43:32 :522050:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4,IP=172.18.202.201 User data downloaded to datapath, new Role=pre_nsc-g/79,

    bw Contract=0/0, reason=New user IP processing, idle-timeout=300
    May 7 12:43:32 :527000:  <DBUG> |mdns|  mdns_send_packet_pseudo_mcast 496 MDNS Pkt to SOS: pkt_len=387, buf_len=14336. To=00:1e:65:80:32:e4,

    vlan=401
    May 7 12:43:32 :527000:  <DBUG> |mdns|  mdns_parse_userinfo 371 UserInfo resp=1 ip=172.18.202.201, mac=00:1e:65:80:32:e4, apname=FSR0-1ST-06,

    role=pre_nsc-g, username=, vlan=401
    May 7 12:43:32 :527000:  <DBUG> |mdns|  mdns_parse_auth_userinfo_resp_message 396 UserInfo response completed for ip=172.18.202.201

    mac=00:1e:65:80:32:e4
    May 7 12:43:37 :522137:  <DBUG> |authmgr|  Sibyte-00:1e:65:80:32:e4/172.18.202.201 : User-Agent: Microsoft NCSI.
    May 7 12:43:40 :522138:  <DBUG> |authmgr|  Sibyte-00:1e:65:80:32:e4/172.18.202.201 : User-Agent: Mozilla/5.0 (Windows NT 6.1; Trident/7.0;

    rv:11.0) like Gecko, ret=1, index=14.
    May 7 12:43:55 :522038:  <INFO> |authmgr|  username=jfox MAC=00:1e:65:80:32:e4 IP=172.18.202.201 Authentication result=Authentication

    Successful method=Web server=Internal
    May 7 12:43:55 :522017:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4 IP=?? Derived role 'guest' from server rules: server-group=default,

    authentication=Web
    May 7 12:43:55 :522049:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4,IP=172.18.202.201 User role updated, existing Role=pre_nsc-g/pre_nsc-g, new

    Role=pre_nsc-g/guest, reason=User authenticated with auth type:1 role derivation:2 l3 assigned role:None
    May 7 12:43:55 :522050:  <INFO> |authmgr|  MAC=00:1e:65:80:32:e4,IP=172.18.202.201 User data downloaded to datapath, new Role=guest/3, bw

    Contract=0/0, reason=Download driven by user role setting, idle-timeout=300
    May 7 12:43:55 :522008:  <NOTI> |authmgr|  User Authentication Successful: username=jfox MAC=00:1e:65:80:32:e4 IP=172.18.202.201 role=guest

    VLAN=401 AP=FSR0-1ST-06 SSID=nsc-g AAA profile=nsc-g auth method=Web auth server=Internal
    May 7 12:43:55 :527000:  <DBUG> |mdns|  mdns_parse_auth_userrole_message 287 Auth User ROLE: MAC:00:1e:65:80:32:e4, NAME:jfox,

    ROLE_NAME:guest
    May 7 12:44:05 :522138:  <DBUG> |authmgr|  Sibyte-00:1e:65:80:32:e4/172.18.202.201 : User-Agent: Mozilla/5.0 (Windows NT 6.1; Trident/7.0;

    rv:11.0) like Gecko, ret=1, index=14.



  • 7.  RE: My Captive Portal sessions stop after about 5 mins?

    Posted May 07, 2015 09:36 AM
      |   view attached

    Attachment(s)

    txt
    Debug.txt   19 KB 1 version


  • 8.  RE: My Captive Portal sessions stop after about 5 mins?

    EMPLOYEE
    Posted May 07, 2015 08:29 PM

    The user debug log does not say anything about a user disconnecting after five minutes.  It only includes data from 12:43 to 12:44.



  • 9.  RE: My Captive Portal sessions stop after about 5 mins?
    Best Answer

    Posted May 08, 2015 06:06 AM

    Yes that is when it dropped off? I have resolved the issue!

    It looks like a firewall policy had effected the guest connection? I created a rule to allow new ports but was unable to delete from GUI and had somehow effected the rules?

    I deleted from CLI and re-added and all now ok.

     

    Thanks Colin