07-14-2021 07:25 AM
Hi everyone,
I´ve some strange situation with Android Smartphones in our Aerohive/Extreme Network (Mix of AP250 and 305C) environment.
The Android devices itself get´s an valid IP and authenticated to the Wifi but shows the information “maybe don´t have internet connection”.
Actual Workaround: Ping the device. The first 2 packages are lost, but than the device replies and shows connected.
I´ve started this discussion last year, but with Covid-19 the situation stuck.
I´ve also found that we are not the only one with this situation.
I can confirm that DNS port 53 and 853 is open for this dedicated Wifi VLAN on our firewall.
I´ve added the DNS ports for the native VLAN of the APs to this internal DNS server, now.
Does anyone has an idea, if this won´t help, how we could troubleshoot this?
Thankful for every idea!
Solved! Go to Solution.
09-07-2022 02:06 AM
Hi,
I want to send an update about this topic.
We found the root cause for our problem, but I´m unsure how to solve it.
The ARP-cache on our firewall which is also the Gateway for our Guest Network seems to get some wrong information from the Aerohive environment.
The Guest Wifi has a short Lease time on DHCP side (5min, increased to 15min now).
The client itself gets the correct IP from DHCP Server (same VLAN/subnet, Windows Server), but the Firewall still get´s the wrong information after a arp-cache clear.
We deleted the "wrong" client in the IQ Management and cleared the ARP-cache once again and the problem was solved for this device.
We found an option in the "Management Options" called "disable Proxy-ARP":
Would it make sense to activate this option in a Wifi environment?
Arp-Caches are written on the Gateway and Switch devices.
11-02-2022 01:27 AM
Hi,
after activating this option, those problems are gone.
11-03-2022 06:55 AM
where is that "disable Proxy-ARP": option? within the XIQ?
11-04-2022 05:20 AM
Hi, the option is in your definied Network policy -> Additional Settings -> Network services -> Management Options -> "Disable Proxy-Arp" which needs to be checked.
a month ago
I just wanted to update this for the current version. This "disable proxy arp" solved a nightmare of an issue we had where any android device would not get any connectivity for hours after initially joining. However the issue returned recently and I found that this configuration has changed. In Configure - Network Policies - *location* - Management Settings - Management Options, it now has a slider for the Proxy ARP. Even though ours was still disabled, the android behavior returned. We changed it from disabled to ARP Suppression and the androids started working again