Guest

Preview Tool

Cisco Bug: CSCvu23563 - Cisco 9130 AP does not forward EAP-TLS packets intermittently. drop_memfail counter increasing

Last Modified

Oct 24, 2020

Products (1)

  • Cisco Aironet 1850 Series Access Points

Known Affected Releases

ap-17.2.1.11 ap-17.3.0.87

Description (partial)

Symptom:
EAP-TLS Clients connected to the 9130 AP occasionally become stuck in Auth State.
Client traces and packet captures showed that the AP is not forwarding EAP packets received from the client during this state.
Only way to get the AP out of this state is to reload. But the AP eventually gets stuck again.
sh cont nss stats | i drop is increasing when issue occurs

Conditions:
9130 AP, running 17.2.1.11 code.
EAP-TLS SSID used, could affect other EAP types as well.
Observed when fragmentation is needed due to lower MTU between AP and WLC.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.