Hey Chris - Unfortunately, I don't have any more information. The fact that it was a bug only came out in a conference call with some CCA developers our former VP forced upon Cisco after a huge string of issues, this included, took our network down a couple of times. When the issue itself happened, no one at Cisco could help and I only discovered it using the lateral thinking that comes after 20+ hours in a freezing server room... :) I wouldn't mind more information on it myself.
As for why, I think it has something to do with the way Perfigo configures the virtual Ethernet ports that causes some sort of ARP clash, as if the virtual MAC it generates is conflicting or something. What was weird was that the CASes themselves could ping each other but it wouldn't span across VLANs... Drove me dippy. We even brought in our Linux expert to see if he could make heads or tails of it before stumbling across the fix. I'm glad I could help though! I get so much help from this list I feel like I can hardly repay it all! :) - Sean ---- Sean Hennessey Networking and Information Security Systems Administrator The University of Portland -----Original Message----- From: Cisco Clean Access Users and Administrators [mailto:[EMAIL PROTECTED] On Behalf Of Christopher Chin Sent: Thursday, August 21, 2008 1:46 PM To: [email protected] Subject: Re: Cannot access Clean Access Server after reinstalling software from CD Holy crap.... thanks, Sean. This exact thing has been adding headache to my already big woes concerning certs with the 4.1.3.1 -> 4.1.6 upgrade. I've been trying to do the recommended cert juggling bring it all back, but one unit in our CAS HA-pair decided not to play on the network. It was there, had link and everything.... but just wouldn't respond. And since it was alive via the heartbeat, this confused the hell out of the active member of the pair. The 'clear-arp' worked ... but I'm surprised that's necessary... this problem has been going on for days! If you have more information about that bug, I'd certainly like to read up on it. Thanks, - Christopher
