Wireless Access

Reply
Frequent Contributor II

Aruba LMS IP Question in RAP access Public IP VMC

托管环境.jpg

We have the aboved network, and we send lms ip is 47.104.193.111 as follow:

(AOS83) [mynode] #show ap system-profile rap

AP system profile "rap"
-----------------------
Parameter Value
--------- -----
RF Band g
Recovery Mode auto
RF Band for AM mode scanning all
Native VLAN ID 1
Tunnel Heartbeat Interval 1
Session ACL ap-uplink-acl
Corporate DNS Domain N/A
SNMP sysContact N/A
LED operating mode (11n/11ac APs only) normal
LED override Disabled
Driver log level warnings
Console log level emergencies
SAP MTU N/A
RAP MTU 1200 bytes
LMS IP 47.104.193.111
Backup LMS IP N/A

 

Why when we debuy rap ipsec connection, we found our LMS IP 47.104.193.111 have been changed into 52.4.31.172 ???

 

Jul 2 16:02:50 isakmpd[3839]: <103063> <3839> <DBUG> |ike| 111.37.21.182:25649-> xauth_responder_recv_ipreq peer:111.37.21.182
Jul 2 16:02:50 isakmpd[3839]: <103063> <3839> <DBUG> |ike| 111.37.21.182:25649-> xauth_responder_recv_statusack peer:111.37.21.182
Jul 2 16:02:50 isakmpd[3839]: <103063> <3839> <DBUG> |ike| 111.37.21.182:25649-> xauth_responder_recv_userrep peer:111.37.21.182
Jul 2 16:02:50 isakmpd[3839]: <103063> <3839> <DBUG> |ike| 111.37.21.182:25649-> xauth_responder_send_iprep peer:111.37.21.182 innerip:172.16.200.20
Jul 2 16:02:50 isakmpd[3839]: <103063> <3839> <DBUG> |ike| 111.37.21.182:25649-> xauth_responder_send_iprep: Sending Aruba LMS IP 52.4.31.172

Frequent Contributor II

Re: Aruba LMS IP Question in RAP access Public IP VMC

We never set the ip 52.4.31.172 in  anywhere 

 

and we even never khow where this ip come from ?

Re: Aruba LMS IP Question in RAP access Public IP VMC

but you have 172.31.4.52 defined and the debug print likely has an endianness issue (e.g. harmeless accidental swapping of the byte order of the debug string).

 

For basic rap connectivity you dont need to put anything in the lms-ip field, simply reprovisioning the AP with master=your public ip would be enough. Besides, as you can see, the controller ignores this and sends the IP of the controller itself to the RAP, so it can communicate up the ipsec tunnel to the actual switch IP of the controller

 

 

 

Frequent Contributor II

Re: Aruba LMS IP Question in RAP access Public IP VMC

172.31.5.52 is our lookback ip 172.31.5.52/255.255.255.255

Frequent Contributor II

Re: Aruba LMS IP Question in RAP access Public IP VMC

172.31.5.52 is our lookback ip 172.31.5.52/255.255.255.255

our vlan1 ip is 172.31.5.51/255.255.240.0

Frequent Contributor II

Re: Aruba LMS IP Question in RAP access Public IP VMC

Frequent Contributor II

Re: Aruba LMS IP Question in RAP access Public IP VMC

(AOS83) [mynode] #show ip interface bri

Interface IP Address / IP Netmask Admin Protocol VRRP-IP
vlan 1 172.31.4.51 / 255.255.240.0 up up
loopback 172.31.4.52 / 255.255.255.255 up up
mgmt unassigned / unassigned up up
(AOS83) [mynode] #show controller-ip

Switch IP Address: 172.31.4.52

Switch IP is configured to be loopback interface

Switch IPv6 address is not configured.

 

If you think the problem because the loopback ip ,we can remove the loopback ip , It maybe same problem

Frequent Contributor II

Re: Aruba LMS IP Question in RAP access Public IP VMC

Please take a look the ip address now ! and VMC send 52.4.31.172 is not controller IP!!!!!

 

Controller  Ip is 172.31.4.52 and 47.104.193.111  ONLY!!!

 

(AOS83) [mynode] #show ip interface bri

Interface IP Address / IP Netmask Admin Protocol VRRP-IP
vlan 1 172.31.4.51 / 255.255.240.0 up up
loopback unassigned / unassigned up up
mgmt unassigned / unassigned up up
(AOS83) [mynode] #show controller-ip

Switch IP Address: 172.31.4.51

Switch IP is configured to be Vlan Interface: 1

Switch IPv6 address is not configured.

(AOS83) [mynode] #

Frequent Contributor II

Re: Aruba LMS IP Question in RAP access Public IP VMC

(AOS83) [mynode] #show ip interface bri

Interface IP Address / IP Netmask Admin Protocol VRRP-IP
vlan 1 172.31.4.51 / 255.255.240.0 up up
loopback 172.31.4.52 / 255.255.255.255 up up
mgmt unassigned / unassigned up up
(AOS83) [mynode] #show controller-ip

Switch IP Address: 172.31.4.52

Switch IP is configured to be loopback interface

Switch IPv6 address is not configured.

 

ap system-profile "rap"
lms-ip 47.104.193.111
ap-console-password 70af4f67be883683097e00475e9595cbc5b0f76b629f3b60
bkup-passwords 64411df59b3d25b256a07de2e464f85004b11f8c1bb8be17
!
ap system-profile "rap_apsys_ui"
session-acl ""
lms-ip 172.31.4.51
ap-console-password 617a97df5078ffe812346fc49a1519e08a12f034a3699eeb
bkup-passwords a9cfa3576fcf7fa0b34191567cb5f20a14101ff563a5fb8c

 

Snap102.jpg

 

Re: Aruba LMS IP Question in RAP access Public IP VMC

it is a simple byte ordering issue - it's not really sending that IP, it's backwards due to VM vs. appliance byte ordering, it's cosmetic.

 

 

Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: