On 15 Sep 2017, at 20:52, Hector J Rios wrote:
80MR4:AAA override VLAN lost on inter-controller roaming
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvb21254
That definitely sounds like it could be our problem. I’ll look into
it. Thanks!
Even if you're hitting this bug, we've encountered similar behavior
before (not related to roaming); we use AAA override for all clients,
and never actually let clients fall into the default WLAN interface.
Regardless, we've seen clients in this default WLAN interface (and even
getting IP addresses). It's been somewhat random, and with a very low
number of clients, but not a behavior we want (since clients potentially
might get access to resources they shouldn't).
To mitigate this we set the default WLAN interfaces to a VLAN not even
present on the trunk towards the WLC, so that clients that might end up
there won't be able to reach anything. We probably should've filed a bug
when we first noticed this behavior, but the fix was quicker than going
through the TAC-dance, and has worked ever since (-:
--
Joachim
**********
Participation and subscription information for this EDUCAUSE Constituent Group
discussion list can be found at http://www.educause.edu/discuss.
