DHCP option 78 with multiple controllers?

  • 0
  • 1
  • Problem
  • Updated 7 months ago
  • Not a Problem
Howdy,

I am currently testing two C35 controllers - as part of our testing we were able to get some access points provisioned fine on a subnet existing on the two controllers in a HA pair.

However, I have been trying to get the access points to provision on an external network using DHCP option 78. The attribute string I have tested with is 1 0.0.0.0 1.1.1.1 in hex without spaces however the access point does not seem to pick this up - at least not visibly.

Nothing in /tmp/log indicates the DHCP options have been picked up, there are also several entries with:
Mar 21 13:10:37 cap: 01090:ru_connect_to_ma.c:991-ru_connect_to_ac_ru_manager()-  IP https://devices.extremenetworks.com, state URL_ITEM_STATE_PENDING, flag URL_ITEM_FLAG_STATIC_HWC, retries 2, timestamp 55000, standby 300000 pversion 2
Mar 21 13:10:37 cap: 01090:ru_connect_to_ma.c:1016-ru_connect_to_ac_ru_manager()-  HWC IP https://devices.extremenetworks.com, state URL_ITEM_STATE_PENDING, diff_ticks 1000, TO_ticks 300000
On a likely unrelated note, we're not able to get it to statically provision either using:
cset authip 1 0.0.0.0
capply
csave
reboot
It shows the following logs:
Mar 21 13:28:31 cap: 01090:ru_connect_to_ma.c:1016-ru_connect_to_ac_ru_manager()-  HWC IP 0.0.0.0, state URL_ITEM_STATE_NO_ANSWER, diff_ticks 2000, TO_ticks 5000
Mar 21 13:28:32 cap: 01090:ru_mgmt.c:2741-whsl_trans()-S_EDISC 159
It is able to communicate fine with the controller and curl the web interface of the controller just fine.

Any ideas here?

Thanks
Photo of Humza

Humza

  • 170 Points 100 badge 2x thumb

Posted 7 months ago

  • 0
  • 1
Photo of Doug Hyde

Doug Hyde, Technical Support Manager

  • 20,616 Points 20k badge 2x thumb
What's the DHCP server type? 
Photo of Doug Hyde

Doug Hyde, Technical Support Manager

  • 20,616 Points 20k badge 2x thumb
Photo of Humza

Humza

  • 170 Points 100 badge 2x thumb
I'm guessing you're asking the vendor of the DHCP server - it's Juniper, and the configuration is fairly generic and straight forward. I've simply inputted the HEX values directly on DHCP option 78.

Is the format I have provided correct? This isn't clearly documented in any of the GTAC documents.

Statically setting it is not preferred as we have many AP's to deploy at various different sites and it's massively impractical. However, for testing purposes I have already completed the steps in that GTAC article and that also does not work (snippets from the log are provided in the OP).

I appreciate there are probably two different problems in play here - the DHCP options not being picked up, and the fact that the access point isn't able to provision in the first place.
Photo of John Romero

John Romero

  • 310 Points 250 badge 2x thumb
Option 78 should be 1 0.0.0.0    1 1.1.1.1 
Photo of Humza

Humza

  • 170 Points 100 badge 2x thumb
I have tried both 1 0.0.0.0 1 1.1.1.1 and 1 0.0.0.0 1.1.1.1 in HEX, obviously without spaces. There aren't many useful entries in the log, but if it was working I would expect it to pick up the controller's IP address.

Also any ideas why the static provisioning isn't working either?
Photo of Ronald Dvorak

Ronald Dvorak, Embassador

  • 49,962 Points 20k badge 2x thumb
could you try 2 x.x.x.x y.y.y.y
Photo of Humza

Humza

  • 170 Points 100 badge 2x thumb
Unfortunately, exactly the same issue here.
Photo of Doug Hyde

Doug Hyde, Technical Support Manager

  • 20,616 Points 20k badge 2x thumb
cset authipaddr 1 <controller ip> 
capply
csave
(wait 30 seconds)
reboot

after the reboot check the config....
cget config global | grep <ip of controller> 
Photo of Humza

Humza

  • 170 Points 100 badge 2x thumb
Thanks Doug,

That is exactly what I've done a few times already. The controller IP address appears fine in the configuration file but it can't seem to connect to the controller, even though I'm able to curl the controller on port 5825 just fine. 
Mar 21 16:09:17 cap: 01093:ru_connect_to_ma.c:991-ru_connect_to_ac_ru_manager()-  IP 10.5.1.100, state URL_ITEM_STATE_NO_ANSWER, flag URL_ITEM_FLAG_STATIC_HWC, retries 4, timestamp 106000, standby 0 pversion 1
Mar 21 16:09:17 cap: 01093:ru_connect_to_ma.c:1016-ru_connect_to_ac_ru_manager()-  HWC IP 10.5.1.100, state URL_ITEM_STATE_NO_ANSWER, diff_ticks 5000, TO_ticks 5000
Mar 21 16:09:17 cap: 01093:ru_connect_to_ma.c:1021-ru_connect_to_ac_ru_manager()-  HWC IP 10.5.1.100, state URL_ITEM_STATE_NO_ANSWER, curr retries 3, total retries 5
Mar 21 16:09:17 cap: 01093:ru_connect_to_ma.c:1035-ru_connect_to_ac_ru_manager()-  HWC IP 10.5.1.100, state URL_ITEM_STATE_NO_ANSWER, retrying 4
Mar 21 16:09:17 cap: 01093:ru_connect_to_ma.c:663-ru_discov_send_legacy_connect_req()- Attempting connection 4 to RU_manager 10.5.1.100
Mar 21 16:09:17 cap: 01093:ru_connect_to_ma.c:665-ru_discov_send_legacy_connect_req()-my sn=1804Y-1293000000
Mar 21 16:09:18 cap: 01093:ru_mgmt.c:2741-whsl_trans()-S_EDISC 236
Mar 21 16:09:18 cap: 01093:ru_connect_to_ma.c:991-ru_connect_to_ac_ru_manager()-  IP 10.5.1.100, state URL_ITEM_STATE_NO_ANSWER, flag URL_ITEM_FLAG_STATIC_HWC, retries 5, timestamp 111000, standby 0 pversion 1
Mar 21 16:09:18 cap: 01093:ru_connect_to_ma.c:1016-ru_connect_to_ac_ru_manager()-  HWC IP 10.5.1.100, state URL_ITEM_STATE_NO_ANSWER, diff_ticks 1000, TO_ticks 5000
Mar 21 16:09:19 cap: 01093:ru_mgmt.c:2741-whsl_trans()-S_EDISC 235
Mar 21 16:09:19 cap: 01093:ru_connect_to_ma.c:991-ru_connect_to_ac_ru_manager()-  IP 10.5.1.100, state URL_ITEM_STATE_NO_ANSWER, flag URL_ITEM_FLAG_STATIC_HWC, retries 5, timestamp 111000, standby 0 pversion 1
Mar 21 16:09:19 cap: 01093:ru_connect_to_ma.c:1016-ru_connect_to_ac_ru_manager()-  HWC IP 10.5.1.100, state URL_ITEM_STATE_NO_ANSWER, diff_ticks 2000, TO_ticks 5000
Is there something I need to do on the controller to allow external provisioning?
Photo of Craig Guilmette

Craig Guilmette, Employee

  • 2,752 Points 2k badge 2x thumb
Make sure the default route/Gateway is set on the controller, under network/ routing protocols. 
Photo of Humza

Humza

  • 170 Points 100 badge 2x thumb
Default route was already set, and the controller can be curl'ed successfully on port 5825 and for testings sake the AP is on the same subnet as the management interface of the controller so that wouldn't make any difference.
(Edited)
Photo of Craig Guilmette

Craig Guilmette, Employee

  • 2,752 Points 2k badge 2x thumb
Is the AP reg box checked on the front panel ESA port that leads to the subnet the AP's are on? Make sure the AP's would not route to the controller via the admin port as admin port does not support AP reg. 
Photo of Humza

Humza

  • 170 Points 100 badge 2x thumb
Ah, thank you Craig. It wasn't obvious from the documentation that the administration / management port could not be used for AP registration. I'll give this a go now.
Photo of Brian Anderson

Brian Anderson

  • 722 Points 500 badge 2x thumb
as part of our testing we were able to get some access points provisioned fine on a subnet existing on the two controllers in a HA pair.
When you mentioned this in the original post, wouldn't think the ap reg check box would be the issue.
Photo of Doug Hyde

Doug Hyde, Technical Support Manager

  • 20,616 Points 20k badge 2x thumb
Seems like the controller is not answering the ap's request. Without looking at the big picture (full configs and logs) it's hard to tell what's wrong. I would suggest contacting the GTAC - https://www.extremenetworks.com/support/contact/
(Edited)
Photo of Umut Aydin

Umut Aydin, Escalation Support Engineer

  • 2,300 Points 2k badge 2x thumb
Hi,

please check if you have duplicate IP anywhere?tracert..
Or you have 2 DHCP Server which causing issue during providing/getting IP for the AP.
Try to set a static IP on the AP.

Good luck.

Regards
Umut Aydin