All,
From what I have read so far both messages are referring to the Keys
being updated on the clients. The first one is stating that the clients
is sending one key while the AP/Network is expecting another.
The second message for M1, M3 & M5 is stating the the EAPOL-Key message
from AP to client has reached a maximum. So the client is not
getting/acknowledging or rerequesting important key information from the
AP/Network.
Thanks.
Jorge Bodden
Jorge Bodden wrote:
We are beginning to pilot a voice application on our wireless
network. We are a Cisco LWAPP shop. On the voice SSID we are using
WPS-PSK. Randomly we get tags that lose connectivity to the
application server as well as the rest of the network. This can
happen to one or more tags at any given incident.
The logs are as follows for two different instances of the issue;
*Jul 9 10:48:14 10.168.248.50 [SECURITY] 1x_eapkey.c 344: EAPOL Key
message with invalid authenticator replay counter (got 00 00 00 00 00
00 00 05, expected 00 00 00 00 00 00 00 07) from mobile 00:09:ef:02:13:f7
Jul 9 14:41:20 10.168.248.50 [SECURITY] 1x_ptsm.c 391: MAX EAPOL-Key
M1*/(also have seen the numbers 3 & 5 on the same type of messages)
/*retransmissions reached for mobile 00:09:ef:02:13:f7
*In the first message it seems like the AP is getting a frame that is
being retransmitted, even though it is expecting another frame in the
sequence. Does this mean that frame *00 00 00 00 00 00 00 05 *was
sent and is being received out of sequence? Or does it mean that
frame *00 00 00 00 00 00 00 05 *was sent, never received or
acknowledged, therefore needing a retransmission.
I don't even understand what the second log entry means.
I have a little bit of literature that I am going to read this
evening. I just wanted to see if anyone in this group has come
across, these types of error messages.
Thanks in advance for all your help.
Jorge Bodden
--------------------
This electronic message is intended to be for the use only of the
named recipient, and may contain information that is confidential or
privileged. If you are not the intended recipient, you are hereby
notified that any disclosure, copying, distribution or use of the
contents of this message is strictly prohibited. If you have received
this message in error or are not the named recipient, please notify us
immediately by contacting the sender at the electronic mail address
noted above, and delete and destroy all copies of this message. Thank
you.
**********
Participation and subscription information for this EDUCAUSE
Constituent Group discussion list can be found at
http://www.educause.edu/groups/.
--------------------
This electronic message is intended to be for the use only of the
named recipient, and may contain information that is confidential or
privileged. If you are not the intended recipient, you are hereby
notified that any disclosure, copying, distribution or use of the
contents of this message is strictly prohibited. If you have received
this message in error or are not the named recipient, please notify us
immediately by contacting the sender at the electronic mail address
noted above, and delete and destroy all copies of this message. Thank
you.
--------------------
This electronic message is intended to be for the use only of the named
recipient, and may contain information that is confidential or privileged. If
you are not the intended recipient, you are hereby notified that any
disclosure, copying, distribution or use of the contents of this message is
strictly prohibited. If you have received this message in error or are not the
named recipient, please notify us immediately by contacting the sender at the
electronic mail address noted above, and delete and destroy all copies of this
message. Thank you.
**********
Participation and subscription information for this EDUCAUSE Constituent Group
discussion list can be found at http://www.educause.edu/groups/.