Cisco Cisco Aironet 350 Access Points
10
Release Notes for Cisco Aironet 340 and 350 Series Access Points and 350 Series Bridges Running Firmware Version 12.02T1
OL-3868-01
Caveats
•
CSCdy10787—The access point aborts any configuration containing an unknown MIB variable.
When an access point receives a configuration from another access point that is running a newer
firmware version than the receiving access point, the receiving access point aborts the configuration
if it encounters a MIB variable that it does not recognize.
firmware version than the receiving access point, the receiving access point aborts the configuration
if it encounters a MIB variable that it does not recognize.
Workaround: Upgrade access points to the same firmware version before distributing
configurations.
configurations.
•
CSCdy11906—When WEP is enabled and you set all WEP keys to not set, WEP is still enabled but
the web-browser page indicates that WEP is disabled.
the web-browser page indicates that WEP is disabled.
Workaround: To disable WEP, select no encryption from the Use of Data Encryption by Stations is
drop-down menu on the Radio Data Encryption page.
drop-down menu on the Radio Data Encryption page.
•
CSCin18914—IP release or renew not occurring with EAP-TLS+MIC+KH+BWR.
When a client associates with EAP-TLS + 40/128 bit broadcast key + MIC +Keyhash + Broadcast
WEP key rotation (10sec), and IP DHCP release and renew commands are issued, the client releases
the IP address, never receives it again, and remains EAP authenticated. A ping from the access point
to the client appears to succeed, but does not reveal an IP address. The access point association table
shows the IP address for the client as 0.0.0.0.
WEP key rotation (10sec), and IP DHCP release and renew commands are issued, the client releases
the IP address, never receives it again, and remains EAP authenticated. A ping from the access point
to the client appears to succeed, but does not reveal an IP address. The access point association table
shows the IP address for the client as 0.0.0.0.
•
CSCdy27831—When you set the default Unicast Address Filter to disallowed, you must reboot the
access point for the setting to take effect.
access point for the setting to take effect.
•
CSCdy29556—Symbol IP phone continuously associates and authenticates to an access point
configured with multiple VLANs.
configured with multiple VLANs.
When a Symbol IP phone is associated to a VoIP VLAN (Symbol extensions enabled), the phone
associates to the access point and is authenticated approximately every 2 seconds. The Symbol
phone shows a “No Network” error every 1 to 2 minutes.
associates to the access point and is authenticated approximately every 2 seconds. The Symbol
phone shows a “No Network” error every 1 to 2 minutes.
It also appears that Symbol phones do not work well when using a non-primary SSID. It is possible
that the phone does not perform an active probe and therefore does not detect information about the
SSID it associated with in the beacon, causing it to reassociate and re-authenticate.
that the phone does not perform an active probe and therefore does not detect information about the
SSID it associated with in the beacon, causing it to reassociate and re-authenticate.
There is no workaround for this caveat
.
•
CSCdz32333—Repeater bridge link intermittent with LEAP client on non-native VLAN.
An intermittent drop occurs in a bridge link between a root bridge and a non-root bridge acting as a
repeater or non-root device. The drop occurs when a client LEAP authenticates and associates with
the non-root bridge that is acting as a repeater or non-root device. When the client associates to an
SSID that is mapped to the non-native VLAN on the non-root bridge, it subsequently brings down
the bridge link between the root and the non-root that is LEAP authenticated as well. The condition
is intermittent and does not seem to occur if the VLAN is not enabled or if the client is associated
to the root bridge or is using open or WEP authentication to the non-root bridge.
repeater or non-root device. The drop occurs when a client LEAP authenticates and associates with
the non-root bridge that is acting as a repeater or non-root device. When the client associates to an
SSID that is mapped to the non-native VLAN on the non-root bridge, it subsequently brings down
the bridge link between the root and the non-root that is LEAP authenticated as well. The condition
is intermittent and does not seem to occur if the VLAN is not enabled or if the client is associated
to the root bridge or is using open or WEP authentication to the non-root bridge.
There is no workaround for this caveat.
•
CSCdz43069—Symbol phone not working when multicast or FTP traffic is passed.
If an FTP or multicast session is in progress during a Symbol phone session, the phone call may be
dropped and the phone may be unable to roam between subnets. If there are no FTP or multicast
sessions in progress, the Symbol phone operates normally and is able to roam between subnets.
dropped and the phone may be unable to roam between subnets. If there are no FTP or multicast
sessions in progress, the Symbol phone operates normally and is able to roam between subnets.
Workaround: Limit multicast and FTP traffic if using Symbol phones in a proxy Mobile IP
environment.
environment.