Extreme Networks

Joshua_Beddingf · ‎04-12-2017

We have a mixture of 3825 and 3715 APs . After upgrading to v10 software we updated the AP firmware as usual. Trouble is we can get all 1,037 APs up to v10 firmware, wait a few days, and about 4 APs will show up with v9 firmware. Wait another day and the number jumps to 7. The same 7. I can set for Controlled upgrade, upgrade these 7, ssh into the AP, see it has v10 software, reboot, log back in to verify v10 software. I can set the controller to "Always Upgrade APs to default image" which is v10. No matter what within a couple days an AP or 2 show up with old v9 firmware. APs I have ssh'd into and seen the v10 as well as having the controller list them as v10. This cycle of events has repeated 4 times in the last 10 days.

It is as if they are factory resetting themselves for some reason. Does anyone know what is wrong? Are they just bad APs that need to be RMA'd?

Joshua_Beddingf · ‎04-12-2017

I have now set the problem APs to 1400. Trouble is the primary and backup tunnels were fine. There are over two dozen APs at each of these locations and no more than 2 failing at any location.

I have changed the MTU settings and I am going through the upgrade process again. It will be a few days before the problem creeps back up. Fingers crossed.

Hawkins__Bruce · ‎04-12-2017

I would just question whether the upgrade is ever truly finishing "successfully" even though you are reporting that you SSH to the affected APs and see the v10 version reported at the CLI. In my experience, if you leave the MTU set to the default of 1500 for APs that connect back across a WAN/VPN/MetroE/Dark Fiber/Extended LAN etc sort of link ... that will lead to a lot of packet fragmentation which can lead to many things ... instability in the tunnels the AP uses back to both local and foreign controllers ... unreliable passing of the configuration from controller to AP ... and AP firmware upgrades that either take too long to complete ... or complete but the end result is a corrupted image ... or it may never finish at all. This is usually due to the fact that fragmented packets have to be resent and when resent they sometimes arrive out of order. Can you please tell me if the MTU for the APs in question are still using the default of 1500 and if so ... resize them appropriately using the following KCS article as a guideline for doing so? https://gtacknowledge.extremenetworks.com/articles/Solution/IdentiFi-Wireless-AP-s-do-not-have-backu...

Joshua_Beddingf · ‎04-12-2017

They are all at schools which the ISP routes back to the controller site as "local" traffic. But it does have to leave and be routed. The problem APs are at 3 different locations. The two controllers are also at two geographically separated location. We are not having this problem from any APs homed to the second controller.

Hawkins__Bruce · ‎04-12-2017

Are many/any of those APs connecting/registering with their controller(s) over a WAN/VPN??

Extreme Networks

Extreme 3825i APs keep "downgrading" to older firmware

Extreme 3825i APs keep "downgrading" to older firmware