1 Reply Latest reply on Jun 1, 2017 7:10 AM by rodrigo.santos

    I'm using a NetVanta 1534 (2nd Generation) switch with firmware R12.3.1 and a NetVanta 160/161 access point with firmware 6.9.2-2. What is happening is that I am using an MAC ACL that only works for a few hours. After that time any device can connect to t

    rodrigo.santos New Member

      I'm using a NetVanta 1534 (2nd Generation) switch with firmware R12.3.1 and a NetVanta 160/161 access point with firmware 6.9.2-2. It's the latest releases...

      What is happening is that I am using an MAC ACL that only works for a few hours.

      After that time any device can connect to the network through the access point.

      I have already tested all access point firmwares but none works...

      After restarting the access points everything returns to normal, until it fails again after a few hours!

       

       

      CONFIGURATION:

       

      !

      !

      ! ADTRAN, Inc. OS version R12.3.1

      ! Boot ROM version 17.09.01.00

      ! Platform: NetVanta 1534, part number 1702590G1

      ! Serial number LBADTN1202AD180

      !

      !

      hostname "BT1.2/1"

      enable password encrypted xxxxxxxxxx

      !

      !

      clock no-auto-correct-DST

      !

      ip subnet-zero

      ip classless

      ip routing

      !

      !

      ip route-cache express

      !

      no auto-config

      !

      event-history on

      no logging forwarding

      no logging email

      !

      service password-encryption

      !

      username "xxxxx" password encrypted "xxxxxxxxxx"

      !

      banner motd #

                       ****** Important ******

       

       

      The vlan 1 interface is enabled with an address of 10.10.10.1

      Telnet access is also enabled.

       

       

       

      #

      !

      !

      !

      !

      !

      !

      dot11ap access-point-control

       

       

      no dos-protection

       

       

      no desktop-auditing dhcp

       

       

      no network-forensics ip dhcp

      !

      !

      !

      !

      ip dhcp excluded-address 172.30.10.2 172.30.10.30

      !

      ip dhcp pool "DHCP"

        network 172.30.10.0 255.255.255.0

        dns-server 172.30.4.253 172.30.4.252

        default-router 172.30.10.1

      !

      !

      !

      !

      !

      vlan 1

        name "Default"

      !

      vlan 2

        name "USERS"

      !

      interface gigabit-switchport 0/1

        no shutdown

        switchport mode trunk

        no lldp send-and-receive

      !

      interface gigabit-switchport 0/2

        no shutdown

        switchport mode trunk

        no lldp send-and-receive

      !

      interface gigabit-switchport 0/3

        no shutdown

        switchport access vlan 2

        no lldp send-and-receive

      !

      interface gigabit-switchport 0/4

        no shutdown

        switchport mode trunk

        no lldp send-and-receive

      !

      interface gigabit-switchport 0/5

        no shutdown

        switchport access vlan 2

        no lldp send-and-receive

      !

      interface gigabit-switchport 0/6

        no shutdown

        switchport mode trunk

        no lldp send-and-receive

      !

      interface gigabit-switchport 0/7

        no shutdown

        switchport mode trunk

        no lldp send-and-receive

      !

      interface gigabit-switchport 0/8

        no shutdown

        switchport mode trunk

        no lldp send-and-receive

      !

      interface gigabit-switchport 0/9

        no shutdown

        switchport mode trunk

        no lldp send-and-receive

      !

      interface gigabit-switchport 0/10

        no shutdown

        switchport access vlan 2

        no lldp send-and-receive

      !

      interface gigabit-switchport 0/11

        no shutdown

        switchport mode trunk

        no lldp send-and-receive

      !

      interface gigabit-switchport 0/12

        no shutdown

        switchport mode trunk

        no lldp send-and-receive

      !

      interface gigabit-switchport 0/13

        no shutdown

        switchport access vlan 2

        no lldp send-and-receive

      !

      interface gigabit-switchport 0/14

        no shutdown

        switchport mode trunk

        no lldp send-and-receive

      !

      interface gigabit-switchport 0/15

        no shutdown

        switchport mode trunk

        no lldp send-and-receive

      !

      interface gigabit-switchport 0/16

        no shutdown

        switchport mode trunk

        no lldp send-and-receive

      !

      interface gigabit-switchport 0/17

        no shutdown

        switchport mode trunk

        no lldp send-and-receive

      !

      interface gigabit-switchport 0/18

        no shutdown

        switchport mode trunk

        no lldp send-and-receive

      !

      interface gigabit-switchport 0/19

        no shutdown

        switchport mode trunk

        no lldp send-and-receive

      !

      interface gigabit-switchport 0/20

        no shutdown

        switchport mode trunk

        no lldp send-and-receive

      !

      interface gigabit-switchport 0/21

        no shutdown

        switchport mode trunk

        no lldp send-and-receive

      !

      interface gigabit-switchport 0/22

        no shutdown

        switchport mode trunk

        no lldp send-and-receive

      !

      interface gigabit-switchport 0/23

        no shutdown

        switchport access vlan 2

        no lldp send-and-receive

      !

      interface gigabit-switchport 0/24

        no shutdown

        switchport access vlan 2

        no lldp send-and-receive

      !

      interface gigabit-switchport 0/25

        no shutdown

        no lldp send-and-receive

      !

      interface gigabit-switchport 0/26

        no shutdown

        no lldp send-and-receive

      !

      interface gigabit-switchport 0/27

        no shutdown

        no lldp send-and-receive

      !

      interface gigabit-switchport 0/28

        no shutdown

        no lldp send-and-receive

      !

      !

      !

      interface vlan 1

        ip address  172.30.4.210  255.255.255.0

        no awcp

        ip route-cache express

        no shutdown

      !

      interface vlan 2

        ip address  172.30.10.1  255.255.255.0

        ip route-cache express

        no shutdown

      !

      !

      interface dot11ap 1 ap-type nv16x

        access-point mac-address 00:19:92:15:11:40

        name DNVT5

        encapsulation 802.1q awcp-vlan 2 native priority 7

        association access-list AUTORIZADOS

      !

      !

      interface dot11ap 1/1 radio-type 802.11bg

        channel 1

        no shutdown

      !

      !

      interface dot11ap 1/1.1

        description Wiz_802.11BG_VAP

        vlan-id 2

        ssid broadcast-mode "DNVT5"

        security mode wpa tkip aes-ccmp psk xxxxxxxxxx

        no shutdown

      !

      !

      interface dot11ap 1/2 radio-type 802.11a

        channel 36

        shutdown

      !

      !

      interface dot11ap 1/2.1

        security mode none

        shutdown

      !

      !

      interface dot11ap 3 ap-type nv16x

        access-point mac-address 00:19:92:13:2A:80

        name DNVT6

        encapsulation 802.1q awcp-vlan 2 native priority 7

        association access-list AUTORIZADOS

      !

      !

      interface dot11ap 3/1 radio-type 802.11bg

        channel 11

        no shutdown

      !

      !

      interface dot11ap 3/1.1

        description Wiz_802.11BG_VAP

        vlan-id 2

        ssid broadcast-mode "DNVT6"

        security mode wpa aes-ccmp psk xxxxxxxxxx

        no shutdown

      !

      !

      interface dot11ap 3/2 radio-type 802.11a

        channel 44

        shutdown

      !

      !

      interface dot11ap 3/2.1

        security mode none

        shutdown

      !

      !

      !

      !

      mac access-list standard AUTORIZADOS

        permit 30:10:B3:0E:9A:89

        permit 90:94:E4:F7:0D:F5

        permit 90:94:E4:07:8C:FA

        permit 90:94:E4:07:8B:C4

        permit 90:94:E4:07:88:A4

        permit 90:94:E4:07:8D:21

        permit 90:94:E4:F7:0F:00

        permit 90:94:E4:F7:0E:02

        permit 90:94:E4:F7:0E:08

        permit 90:94:E4:F7:0D:FD

        permit 90:94:E4:07:88:BA

        permit 90:94:E4:F7:0E:93

        permit 90:94:E4:07:88:F0

        permit 90:94:E4:F7:0E:0E

        permit 90:94:E4:F7:0D:F0

        permit 90:94:E4:07:8C:B6

        permit 90:94:E4:07:88:B2

        permit C8:D3:A3:09:B6:C5

        permit 90:94:E4:07:88:A6

        permit 90:94:E4:07:89:00

        permit 90:94:E4:F6:68:FA

        permit 90:94:E4:F7:0E:9B

        permit 90:94:E4:F7:0F:0F

        permit 90:94:E4:F7:0E:97

        permit 90:94:E4:07:89:43

        permit 90:94:E4:07:8B:D5

        permit 90:94:E4:F7:0E:A1

        permit 90:94:E4:F7:0E:05

        permit 90:94:E4:F7:0E:A5

        permit 90:94:E4:07:8B:13

        permit 90:94:E4:F7:0E:FC

        permit 90:94:E4:07:8B:17

        permit 90:94:E4:F7:0D:5F

        permit 90:94:E4:07:88:D8

        permit 90:94:E4:07:88:A2

        permit 90:94:E4:07:8A:8D

        permit 90:94:E4:F7:0E:0C

        permit 90:94:E4:07:8D:A3

        permit 90:94:E4:07:89:01

        permit 90:94:E4:07:8B:D2

        permit 90:94:E4:F7:0D:94

        permit 90:94:E4:F7:0D:EF

        permit 90:94:E4:07:8B:12

        permit 90:94:E4:F7:0D:9D

        permit 90:94:E4:F7:0D:26

        permit 90:94:E4:F7:0D:85

        permit 90:94:E4:F7:0D:27

        permit 90:94:E4:07:8B:C0

        permit 90:94:E4:07:8B:BD

        permit 90:94:E4:F7:0D:D6

        permit 90:94:E4:F7:0D:D7

        permit 90:94:E4:07:8C:7B

        permit 90:94:E4:F7:0E:64

        permit 90:94:E4:07:88:90

        permit 90:94:E4:07:88:95

        permit 90:94:E4:F7:0E:5D

        permit 90:94:E4:07:8B:1E

        permit 90:94:E4:07:88:BC

        permit 90:94:E4:07:8C:28

        permit 90:94:E4:07:8B:C3

        permit 90:94:E4:F7:0F:03

        permit 90:94:E4:07:88:87

        permit 90:94:E4:07:88:97

        permit 90:94:E4:07:8D:0B

        permit 90:94:E4:F7:0D:FE

        permit 90:94:E4:F7:0D:F7

        permit 90:94:E4:07:89:9B

        permit 90:94:E4:07:8E:08

        permit 90:94:E4:07:89:3C

        permit 90:94:E4:07:8D:41

        permit 90:94:E4:07:8C:74

        permit 90:94:E4:07:8C:6E

        permit 90:94:E4:F7:0E:FA

        permit 90:94:E4:F6:68:1B

        permit 90:94:E4:F7:0F:10

        permit 90:94:E4:07:8A:8A

        permit 90:94:E4:07:8B:C6

        permit 90:94:E4:07:8A:75

        permit 90:94:E4:07:89:F6

        permit 90:94:E4:07:8A:BA

        permit 90:94:E4:07:88:EB

        permit 90:94:E4:F7:0E:FB

        permit 90:94:E4:F7:0D:FC

        permit 90:94:E4:07:8D:75

        permit 90:94:E4:F7:0D:12

        permit 90:94:E4:07:8C:BB

        permit 90:94:E4:07:88:A0

        permit 90:94:E4:F7:0E:F7

        permit 90:94:E4:07:8B:AA

        permit 90:94:E4:07:8B:18

        permit 90:94:E4:07:8C:15

        permit 90:94:E4:F7:0E:60

        permit 90:94:E4:07:8B:D4

        permit 90:94:E4:07:8A:53

        permit 90:94:E4:F7:0E:A0

        permit 90:94:E4:F7:0E:91

        permit 90:94:E4:F7:0D:F6

        permit 90:94:E4:F6:68:EC

        permit 90:94:E4:07:8B:C2

        permit 90:94:E4:F6:68:F9

        permit 90:94:E4:07:8C:0B

        permit 90:94:E4:07:8C:6F

        permit 90:94:E4:07:88:F3

        permit 90:94:E4:F6:67:87

        permit 90:94:E4:07:8B:16

        permit 90:94:E4:F6:69:0B

        permit 90:94:E4:07:8A:6F

        permit 90:94:E4:F7:0D:ED

        permit 90:94:E4:F7:0D:EE

        permit 90:94:E4:07:8A:7A

        permit 90:94:E4:07:89:02

        permit 90:94:E4:07:8B:11

        permit 90:94:E4:07:8D:72

        permit 90:94:E4:F7:0E:9D

        permit 90:94:E4:F7:0E:12

        permit 90:94:E4:07:8A:C1

        permit 90:94:E4:F7:0E:95

        permit C8:D3:A3:09:B7:66

        permit 90:94:E4:07:8A:5B

        permit 90:94:E4:07:8B:F9

        permit 90:94:E4:07:88:86

        permit 90:94:E4:F7:0D:9F

        permit 90:94:E4:07:8B:B3

        permit C8:D3:A3:09:B9:91

        permit 90:94:E4:F7:0D:D8

        permit 90:94:E4:07:88:91

        permit 90:94:E4:07:8D:E0

        permit 90:94:E4:07:88:DA

        permit 90:94:E4:07:8C:11

        permit 90:94:E4:07:8B:D6

        permit FC:DB:B3:EE:BD:B0

        permit 80:4E:81:B4:FF:E6

        permit E4:9A:79:0D:9E:78

        permit 24:DF:6A:79:46:73

        permit 40:E2:30:12:AC:0D

        permit FC:15:B4:AA:B8:B2

        permit 70:18:8B:8B:11:2B

        permit 70:18:8B:8A:FA:4E

        permit FC:15:B4:AA:B8:A9

        permit FC:15:B4:AA:B8:AF

        permit 70:18:8B:8A:E1:9A

        permit FC:15:B4:AA:B8:8E

        permit 70:18:8B:8B:11:97

        permit 0C:84:DC:96:00:24

        permit 70:18:8B:8A:F5:16

        permit FC:15:B4:AA:B8:A8

        permit 0C:84:DC:95:FF:FB

        permit FC:15:B4:AA:B8:B0

        permit 70:18:8B:8A:F4:4F

        permit F1:15:B4:AA:B8:A0

        permit 70:18:8B:8A:F4:A3

        permit F1:15:B4:AA:B8:AB

        permit 0C:84:DC:95:D5:86

        permit F1:15:B4:AA:B8:A2

        permit 0C:84:DC:95:D5:C5

        permit FC:15:B4:AA:B8:A7

        permit 0C:84:DC:96:00:2C

        permit 70:18:8B:8A:F3:D7

        permit FC:15:B4:AA:B8:AA

        permit 70:18:8B:8B:11:62

        permit 70:18:8B:8A:F4:A2

        permit 70:18:8B:8A:F3:CB

        permit 38:AA:3C:37:54:64

        permit F4:B7:E2:BB:04:D3

        permit C8:F7:33:FD:5D:C2

        permit 90:94:E4:F7:0F:05

        permit 90:94:E4:F7:0D:F8

      !

      !

      !

      !

      ip route 0.0.0.0 0.0.0.0 172.30.4.2

      !

      tftp server

      no tftp server overwrite

      http server

      http secure-server

      no snmp agent

      no ip ftp server

      ip ftp server default-filesystem flash

      no ip scp server

      no ip sntp server

      !

      !

      !

      !

      !

      !

      !

      !

      !

      line con 0

        login

      !

      line telnet 0 4

        login

        password encrypted xxxxxxxxxx

        shutdown

      line ssh 0 4

        login local-userlist

        shutdown

      !

      !

      !

      !

      end