IdentiFi (HiPath) Wireless: Who sees 40:00:40:32:XX:XX MAC addresses?

  • 0
  • 1
  • Question
  • Updated 3 years ago
  • Answered
Hello Community

We see many AP3710 injecting a lot of packets on their wired Port with source addresses of the scope of 40:00:40:32:XX:XX. The APs itself seem the be the source of these frames, although their wired interfaces have different addresses from these ones.

We recognize the addresses in
"etsysMultiAuthSessionStationAuthStatus"
and in
"etsysMACLockingLockedEntryCause"

We'd like to know whether it is a specific issue to our environment or it's a general one.

Are there any other users of IdentiFi who recognize such addresses?
Maybe you could do a Compass search over all your switch ports for 40:00:40:32

Any feedback would be welcome!

Kind regards
Christoph
Photo of Christoph

Christoph

  • 1,842 Points 1k badge 2x thumb

Posted 4 years ago

  • 0
  • 1
Photo of Ronald Dvorak

Ronald Dvorak, Embassador

  • 48,894 Points 20k badge 2x thumb
Hi Christoph,

I've checked my installation and don't see such MACs.
Are they only in compass or could you also see the MACs in the switch mac table "show mac"
Could you see them in the client reports of the wireless controller.

Just a shot in the dark... is RADAR enabled?
Photo of Christoph

Christoph

  • 1,842 Points 1k badge 2x thumb
Because of port authentication they they don't get it in the FIB. But they fill up the MACLOCK first arrival station table.

RADAR is not licensed.

The MAC addresses are not listed in the wireless controllers client reports. And I'm pretty much sure they are not sourced by wireless stations.

We have bridged@Ctrl topologies, only.
Photo of Andre Faupl

Andre Faupl

  • 94 Points 75 badge 2x thumb

Hi Christoph,

 

do you have configured the Default Topology for all VNS’s?

You find this under VNS Configuration – WLAN Services – VNSxyz

 

Regards,

Andre

Photo of Frank Kiess

Frank Kiess

  • 60 Points
Hello Community

the error only occurs when the APs encrypt traffic (Data & Control) to the controller.
Who wants to try it should in the Advanced properties of the Access Point to Secure Tunnel switch to "Encrypt control & data traffic between AP & Controller".

Greetings
Hendrik
Photo of Drew C.

Drew C., Community Manager

  • 39,442 Points 20k badge 2x thumb
Welcome to The Hub!
It seems your question is unclear.  I'd recommend that you create a new topic for this to include details on what you need assistance with.