Cisco Cisco Aironet 1200 Access Point
12
Open Caveats
OL-3641-01
Caveats
•
CSCin18914—IP release or renew not occurring with EAP-TLS+MIC+KH+BWR.
When a client associates with EAP-TLS + 40/128 bit broadcast key + MIC +Keyhash + Broadcast
WEP key rotation (10sec), and IP DHCP release or renew commands are issued, the client releases
the IP address, never receives it again, and remains EAP authenticated. A ping from the access point
to the client appears to be successful, but does not reveal an IP address. The access point association
table shows the IP address for the client as 0.0.0.0.
WEP key rotation (10sec), and IP DHCP release or renew commands are issued, the client releases
the IP address, never receives it again, and remains EAP authenticated. A ping from the access point
to the client appears to be successful, but does not reveal an IP address. The access point association
table shows the IP address for the client as 0.0.0.0.
•
CSCdz32333—Repeater bridge link intermittent with LEAP client on non-native VLAN.
An intermittent drop occurs in a bridge link between a root bridge and a non-root bridge acting as a
repeater or non-root device. The drop occurs when a client LEAP authenticates and associates with
the non-root bridge that is acting as a repeater or non-root device. When the client associates to an
SSID that is mapped to the non-native VLAN on the non-root bridge, it subsequently brings down
the bridge link between the root and the non-root that is LEAP authenticated as well. The condition
is intermittent and does not seem to occur if the VLAN is not enabled or if the client is associated
to the root bridge or is using open or WEP authentication to the non-root bridge.
repeater or non-root device. The drop occurs when a client LEAP authenticates and associates with
the non-root bridge that is acting as a repeater or non-root device. When the client associates to an
SSID that is mapped to the non-native VLAN on the non-root bridge, it subsequently brings down
the bridge link between the root and the non-root that is LEAP authenticated as well. The condition
is intermittent and does not seem to occur if the VLAN is not enabled or if the client is associated
to the root bridge or is using open or WEP authentication to the non-root bridge.
There is no workaround for this caveat.
•
CSCdy76093—Proxy Mobile IP with multiple authoritative access points continuously sends
update packets.
update packets.
See the
for details and procedures
to correct this problem.
•
CSCdy20169—When a 1200 series access point boots, it sometimes displays this warning:
(Warning) Routine "pktRouterRcvRtn" is unable to Take the forwardTbl Guard semaphore
You can ignore this message.
•
CSCdy27831—When you set the default Unicast Address Filter to disallowed, you must reboot the
access point for the setting to take effect.
access point for the setting to take effect.
•
CSCdy29556—Symbol IP phone continuously associates and authenticates to an access point
configured with multiple VLANs.
configured with multiple VLANs.
When a Symbol IP phone is associated to a VoIP VLAN (Symbol extensions enabled), the phone
associates to the access point and is authenticated approximately every 2 seconds. The Symbol
phone shows a “No Network” error every 1 to 2 minutes.
associates to the access point and is authenticated approximately every 2 seconds. The Symbol
phone shows a “No Network” error every 1 to 2 minutes.
It also appears that Symbol phones do not work well when using a non-primary SSID. It is possible
that the phone does not perform an active probe and therefore does not detect information about the
SSID it associated with in the beacon, causing it to reassociate and re-authenticate.
that the phone does not perform an active probe and therefore does not detect information about the
SSID it associated with in the beacon, causing it to reassociate and re-authenticate.
There is no workaround for this caveat
.
•
CSCdy73695—When a repeater access point receives packets from a root access point while the
repeater is attempting to associate, the repeater sometimes displays this error:
repeater is attempting to associate, the repeater sometimes displays this error:
00:00:10 (Warning): Station <Root MAC address> Associated with Encryption, then
attempted to send an Unencrypted packet to <Repeater MAC address> (length 74)
The error occurs when WEP is not enabled on either the root or the repeater. When an association
response is received by the repeater, it no longer displays the error message and is able to
successfully pass data. However, if a significant amount of traffic, such as multicast traffic, is being
transmitted by the root access point while the repeater is attempting to associate, the repeater may
miss the association response from the root access point and never fully associate. In this case, the
response is received by the repeater, it no longer displays the error message and is able to
successfully pass data. However, if a significant amount of traffic, such as multicast traffic, is being
transmitted by the root access point while the repeater is attempting to associate, the repeater may
miss the association response from the root access point and never fully associate. In this case, the