CAPWAP client HTTP proxy with Hivemanager NG

  • 2
  • Question
  • Updated 3 months ago
  • (Edited)
Hello.

my APs must use the HTTP-Proxy to communicate to the Internet. Now I have some trouble to get the connection working.

I'm using HiveOS 6.5r6 and Hivemanager NG in the cloud.

I tried the following commands:
capwap client transport HTTP
capwap client HTTP proxy name 192.168.254.254 port 8080

The proxy makes no inspection or blocking of traffic. But I can't get a connection to the Hivemanager NG.

Here is the CAPWAP client output:

CAPWAP client:   Enabled
CAPWAP transport mode:  HTTP on TCP
CAPWAP HTTP proxy name:192.168.254.254
CAPWAP HTTP proxy port:8080
DISCOVERY state: Sending Discovery packets to find the CAPWAP server
CAPWAP client IP:        192.168.200.53
CAPWAP server IP:        54.172.0.252
HiveManager Primary Name:
HiveManager Backup Name:
CAPWAP Default Server Name: redirector.aerohive.com
Virtual HiveManager Name:
Server destination Port: 80
CAPWAP send event:       Enabled
CAPWAP DTLS state:       Enabled
CAPWAP DTLS negotiation: Enabled
     DTLS next connect status:   Enable
     DTLS always accept bootstrap passphrase: Enabled
     DTLS session status: Disconnect
     DTLS key type: passphrase
     DTLS session cut interval:     5 seconds
     DTLS handshake wait interval: 60 seconds
     DTLS Max retry count:          3
     DTLS authorize failed:         0
     DTLS reconnect count:          0
Discovery interval:      5 seconds
Heartbeat interval:     30 seconds
Max discovery interval: 10 seconds
Neighbor dead interval:105 seconds
Silent interval:        15 seconds
Wait join interval:     60 seconds
Discovery count:         0
Max discovery count:     3
Retransmit count:        0
Max retransmit count:    2
Primary server tries:    0
Backup server tries:     0
Keepalives lost/sent:    0/0
Event packet drop due to buffer shortage: 0
Event packet drop due to loss connection: 3
and the log output:

1970-01-01 00:14:36 info    capwap: receive event capwap disconnect: eventid = 244: length = 0
1970-01-01 00:14:21 info capwap: receive event capwap disconnect: eventid = 244: length = 0
1970-01-01 00:14:21 info capwap: CAPWAP:get device software version string:(HiveOS 6.5r6 build-149161)
1970-01-01 00:14:21 info capwap: receive event capwap disconnect: eventid = 244: length = 0
1970-01-01 00:14:06 info capwap: receive event capwap disconnect: eventid = 244: length = 0
1970-01-01 00:14:06 info capwap: CAPWAP:get device software version string:(HiveOS 6.5r6 build-149161)
1970-01-01 00:14:06 info capwap: receive event capwap disconnect: eventid = 244: length = 0
1970-01-01 00:13:51 info capwap: receive event capwap disconnect: eventid = 244: length = 0
1970-01-01 00:13:51 info capwap: CAPWAP:get device software version string:(HiveOS 6.5r6 build-149161)
1970-01-01 00:13:51 info capwap: receive event capwap disconnect: eventid = 244: length = 0
1970-01-01 00:13:36 notice capwap: CAPWAP_TCP: connected to 54.172.0.252:80 via 192.168.254.254:8080
1970-01-01 00:13:35 warn capwap: CAPWAP_TCP:read_until: closed
1970-01-01 00:13:33 info capwap: CAPWAP_HM:Ready connecting to HM 54.172.0.252
1970-01-01 00:13:33 info capwap: CAPWAP_HM:use predefine server(TCP), ip=54.172.0.252, port=80
1970-01-01 00:13:33 info capwap: CAPWAP_HM:get capwap server ip (54.172.0.252) for name (redirector.aerohive.com)
1970-01-01 00:13:33 info capwap: CAPWAP_HM:can not find the ip address of hostname (hivemanager),reason:Unknown host
1970-01-01 00:13:33 info capwap: CAPWAP_HM:user doesn't config primary and backup HM's name,use fixed server name and pre-defined server name to try
1970-01-01 00:13:33 info capwap: CAPWAP_HM:get hivemanager name from scd (first:, second:).
1970-01-01 00:13:32 info capwap: CAPWAP_HM:Don't use broadcast because define HTTP mode, ip=0.0.0.0, port=12222
1970-01-01 00:13:32 info capwap: CAPWAP_HM:get capwap server ip (54.172.0.252) for name (redirector.aerohive.com)
1970-01-01 00:13:32 info capwap: CAPWAP_HM:can not find the ip address of hostname (hivemanager),reason:Unknown host
1970-01-01 00:13:32 info capwap: CAPWAP_HM:user doesn't config primary and backup HM's name,use fixed server name and pre-defined server name to try
1970-01-01 00:13:32 info capwap: CAPWAP_HM:get hivemanager name from scd (first:, second:).
1970-01-01 00:13:32 info capwap: CAPWAP_HM:Choose HM IP or name for connecting....
1970-01-01 00:13:32 info capwap: CAPWAP: capwap predefine server name file isn't exist.

Any ideas what I should do now?

Thanks in advance!

EDIT #1: Have corrected some typos
Photo of Marcel Heß

Marcel Heß

  • 27 Posts
  • 4 Reply Likes

Posted 1 year ago

  • 2
Photo of Nathaniel Moore

Nathaniel Moore, Employee

  • 56 Posts
  • 16 Reply Likes
Hi Marcel,

Can you run 'show dns' and 'ping google.com' to verify DNS functionality?

Kind regards,

Nathaniel
Photo of Marcel Heß

Marcel Heß

  • 27 Posts
  • 4 Reply Likes
Hey Nathaniel,

thank you for the fast reply.

Here is the output from show dns:
DNS server from DHCP:
Domain name suffix: UP-LABS.local
Primary : 192.168.254.254
Secondary : 0.0.0.0
Tertiary : 0.0.0.0

and ping google.com:
PING google.com (216.58.205.238) 56(84) bytes of data.
From my point of view it looks like the DNS is working fine.

EDIT #1: Have correted a formating misstake in pre
(Edited)
Photo of Nathaniel Moore

Nathaniel Moore, Employee

  • 56 Posts
  • 16 Reply Likes
Hi Marcel,

Looks good. Can you now try 'capwap ping redirector.aerohive.com'?

Kind regards,

Nathaniel
Photo of Marcel Heß

Marcel Heß

  • 27 Posts
  • 4 Reply Likes
Hey Nathaniel,

here is the output from capwap ping redirector.aerohive.com

CAPWAP ping parameters:
    Destination server: redirector.aerohive.com (54.172.0.252)
    Destination port: 12222
    Count: 5
    Size: 56(82) bytes
    Timeout: 5 seconds
--------------------------------------------------
CAPWAP ping result:
    Request timed out.
    Request timed out.

same with capwap ping redirector.aerohive.com port 80

CAPWAP ping parameters:
    Destination server: redirector.aerohive.com (54.172.0.252)
    Destination port: 80
    Count: 5
    Size: 56(82) bytes
    Timeout: 5 seconds
--------------------------------------------------
CAPWAP ping result:
    Request timed out.
    Request timed out.
Photo of Marcel Heß

Marcel Heß

  • 27 Posts
  • 4 Reply Likes
In the firewall I saw that the both connections were blocked.
It seems to me that the capwap ping doesn't use the proxy.
Photo of Nathaniel Moore

Nathaniel Moore, Employee

  • 56 Posts
  • 16 Reply Likes
Hi Marcel,

We are only officially compatible with Squid-based proxies (not sure what you have?) so that could be an issue.

Typically we advise that customers allow the APs to bypass proxies or use a Squid proxy. As an alternative method to configuring via CLI, it may be worth accessing the web GUI of the AP and try entering the proxy information there to see if it makes any difference to the behaviour.

Whatever changes you decide to make, just ensure the 'capwap ping redirector.aerohive.com' command mentioned earlier is successful.

Kind regards,

Nathaniel
Photo of Marcel Heß

Marcel Heß

  • 27 Posts
  • 4 Reply Likes
Hi Nathaniel,

thank you for the hint.

I'm a little bit confused, that the command  'capwap ping redirector.aerohive.com'  must be successful. Because in my setup it's obvious, that this command doesn't use the configured proxy.

I have tried to set the options via web-gui and had the same behaviour.

Have you got any further ideas?

Best regards.
Photo of Nick Lowe

Nick Lowe, Official Rep

  • 2491 Posts
  • 451 Reply Likes
Hi Marcel,

I would first suggest collecting complete capwap logs:

no capwap client enable
_debug capwap all
debug console
capwap client enable

Thanks,

Nick
(Edited)
Photo of Marcel Heß

Marcel Heß

  • 27 Posts
  • 4 Reply Likes
Hi Nick,

thank you for reply.

Here is the debug output. Is this the normal behaviour?

Many thanks in advance!
[BEGIN] 09.03.2017 14:24:33
AH-AP#_debug capwap all

debug all turned on (0xffffffff)
AH-AP#debug console
AH-AP#capwap client enable
1970-01-01 03:39:06 debug capwap: [capwap_ssl]: do nothing because capwap enable is 0, dtls enable is 1
1970-01-01 03:39:11 debug last message repeated 5 times
1970-01-01 03:39:12 debug capwap: [capwap_ssl]: do nothing because capwap enable is 1, dtls enable is 1
1970-01-01 03:39:13 debug capwap: [capwap_ssl]: do nothing because capwap status is 10, dtls connect status is 4
1970-01-01 03:39:14 debug capwap: [capwap_ssl]: do nothing because capwap status is 10, dtls connect status is 4
1970-01-01 03:39:14 debug capwap: [capwap_htc_basic]: tunnel_close: free all tunnel resource
1970-01-01 03:39:14 debug capwap: [capwap_htc_info]: CAPWAP_TCP:tunnel_out_disconnect: warning: bytes=430 != content_length=1048576
1970-01-01 03:39:14 debug capwap: [capwap_htc_basic]: tunnel_out_disconnect: output disconnected
1970-01-01 03:39:14 debug capwap: [capwap_htc_basic]: tunnel_in_disconnect: input disconnected
1970-01-01 03:39:14 debug capwap: [capwap_basic]: state: Start--->Waitting for HiveAP IP, event: waitting for cli--->none
1970-01-01 03:39:14 debug capwap: [capwap_info]: capwap handle_bonjour_service service old 2 new 2
1970-01-01 03:39:14 debug capwap: [capwap_info]: END->Leave the End State.
1970-01-01 03:39:14 debug capwap: [capwap_basic]: capwap set watch dog:60 priority:5 modid:4
1970-01-01 03:39:14 debug capwap: [capwap_basic]: current parameters:Waitting for HiveAP IP none none
1970-01-01 03:39:14 debug capwap: [capwap_info]: START->Enter the Get Host IP State.
1970-01-01 03:39:14 debug capwap: [capwap_info]: device ip is 192.168.200.53
1970-01-01 03:39:14 debug capwap: [capwap_info]: unregister port:80, proxy port:8080
1970-01-01 03:39:14 debug capwap: [capwap_info]: IP = 0.0.0.0,Port = 0
1970-01-01 03:39:14 debug capwap: [capwap_basic]: state: Waitting for HiveAP IP--->Waitting for HiveManager IP, event: none--->none
1970-01-01 03:39:14 debug capwap: [capwap_info]: capwap handle_bonjour_service service old 2 new 2
1970-01-01 03:39:14 debug capwap: [capwap_info]: START->Leave the Get Host IP State.
1970-01-01 03:39:14 debug capwap: [capwap_basic]: capwap set watch dog:60 priority:5 modid:4
1970-01-01 03:39:14 debug capwap: [capwap_basic]: current parameters:Waitting for HiveManager IP none none
1970-01-01 03:39:14 debug capwap: [capwap_info]: START->Enter the Get HM IP State.
1970-01-01 03:39:14 debug capwap: [capwap_ha]: Choose HM IP or name for connecting....
1970-01-01 03:39:14 debug capwap: [capwap_ha]: get hivemanager name from scd (first:, second:).
1970-01-01 03:39:14 debug capwap: [capwap_ha]: user doesn't config primary and backup HM's name,use fixed server name and pre-defined server name to try
1970-01-01 03:39:14 debug capwap: [capwap_ha]: can not get ip from HM's name:(hivemanager)
1970-01-01 03:39:14 debug capwap: [capwap_ha]: get capwap server ip (54.172.0.252) for name (redirector.aerohive.com)
1970-01-01 03:39:14 debug capwap: [capwap_ha]: Don't use broadcast because define HTTP mode, ip=0.0.0.0, port=12222
1970-01-01 03:39:14 debug capwap: [capwap_info]: register port :12222
1970-01-01 03:39:14 debug capwap: [capwap_htc_basic]: can not get HM's IP address when using TCP transfer mode.
1970-01-01 03:39:15 debug capwap: [capwap_ssl]: do nothing because capwap status is 2, dtls connect status is 4
1970-01-01 03:39:15 debug capwap: [capwap_ha]: get hivemanager name from scd (first:, second:).
1970-01-01 03:39:15 debug capwap: [capwap_ha]: user doesn't config primary and backup HM's name,use fixed server name and pre-defined server name to try
1970-01-01 03:39:15 debug capwap: [capwap_ha]: can not get ip from HM's name:(hivemanager)
1970-01-01 03:39:15 debug capwap: [capwap_ha]: get capwap server ip (54.172.0.252) for name (redirector.aerohive.com)
1970-01-01 03:39:15 debug capwap: [capwap_ha]: use predefine server(TCP), ip=54.172.0.252, port=80
1970-01-01 03:39:15 debug capwap: [capwap_info]: register port :80
1970-01-01 03:39:15 debug capwap: [capwap_ha]: Ready connecting to HM 54.172.0.252
1970-01-01 03:39:15 debug capwap: [capwap_basic]: state: Waitting for HiveManager IP--->Idle, event: none--->none
1970-01-01 03:39:15 debug capwap: [capwap_info]: capwap handle_bonjour_service service old 2 new 2
1970-01-01 03:39:15 debug capwap: [capwap_info]: START->Leave the Get HM IP State.
1970-01-01 03:39:15 debug capwap: [capwap_basic]: capwap set watch dog:60 priority:5 modid:4
1970-01-01 03:39:15 debug capwap: [capwap_basic]: current parameters:Idle none idle_timer
1970-01-01 03:39:15 debug capwap: [capwap_info]: IDLE->Enter the Idle State.
1970-01-01 03:39:15 debug capwap: [capwap_basic]: UNICAST: IP = 54.172.0.252,Port = 80
1970-01-01 03:39:15 debug capwap: [capwap_info]: Clean frag buffer..
1970-01-01 03:39:15 debug capwap: [capwap_info]: unregister port:80, proxy port:8080
1970-01-01 03:39:16 debug capwap: [capwap_ssl]: do nothing because capwap status is 3, dtls connect status is 4
1970-01-01 03:39:16 debug capwap: [capwap_info]: register port :80
1970-01-01 03:39:16 debug capwap: [capwap_htc_basic]: HTTP proxy content length:1048576
1970-01-01 03:39:16 debug capwap: [capwap_htc_basic]: creating a new tunnel
1970-01-01 03:39:16 debug capwap: [capwap_htc_info]: tunnel_new_client ("54.172.0.252", 80, "192.168.254.254", 8080, 1048576)
1970-01-01 03:39:16 debug capwap: [capwap_htc_basic]: Ready connect with remote HTTP tunnel server
1970-01-01 03:39:16 debug capwap: [capwap_htc_basic]: register proxy port :8080
1970-01-01 03:39:16 debug capwap: [capwap_htc_basic]: tunnel_out_connect: ready setup the out connection
1970-01-01 03:39:16 debug capwap: [capwap_htc_basic]: CAPWAP_TCP: setup a TCP connection successfully
1970-01-01 03:39:16 debug capwap: [capwap_htc_info]: http_write_request: POST http://54.172.0.252:80/hm/capwap/index.html?NODEID=D854A2B755C0 HTTP/1.1^M
1970-01-01 03:39:16 debug capwap: [capwap_htc_info]: http_write_header: Host:54.172.0.252:80
1970-01-01 03:39:16 debug capwap: [capwap_htc_info]: http_write_header: Content-Length:1048576
1970-01-01 03:39:16 debug capwap: [capwap_htc_info]: http_write_header: Connection:close
1970-01-01 03:39:16 debug capwap: [capwap_htc_info]: http_write_header: Pragma:no-cache
1970-01-01 03:39:16 debug capw1970-01-01 03:39:17 debug capwap: [capwap_ssl]: do nothing because capwap status is 3, dtls connect status is 4
1970-01-01 03:39:17 debug capwap: [capwap_htc_basic]: Get response from http tunnel server
1970-01-01 03:39:17 debug capwap: [capwap_htc_info]: read until (/) start
1970-01-01 03:39:17 debug capwap: [capwap_htc_info]: read all return error :Resource temporarily unavailable
1970-01-01 03:39:17 debug capwap: [capwap_htc_info]: read until (/) done
1970-01-01 03:39:17 debug capwap: [capwap_htc_basic]: tunnel_out_connect: output connected
1970-01-01 03:39:17 debug capwap: [capwap_htc_info]: write type TUNNEL_OPEN to request
1970-01-01 03:39:17 debug capwap: [capwap_htc_info]: write length 256 to request
1970-01-01 03:39:17 debug capwap: [capwap_htc_info]: tunnel_write_request: TUNNEL_DATA:
1970-01-01 03:39:17 debug capwap: [capwap_htc_basic]: tunnel_write_request: TUNNEL_OPEN (length=1)
1970-01-01 03:39:17 debug capwap: [capwap_htc_info]: tunnel_wr1970-01-01 03:39:22 debug last message repeated 3 times
1970-01-01 03:39:22 debug capwap: [capwap_info]: ah_capwap_idle_timer timed out
1970-01-01 03:39:22 debug capwap: [capwap_basic]: current parameters:Discovery waitting sndpkt maxdis_timer
1970-01-01 03:39:22 debug capwap: [capwap_info]: Enter the wait send phase state: Discovery event: waitting sndpkt timer: maxdis_timer
1970-01-01 03:39:22 debug capwap: [capwap_info]: set timer type is maxdis_timer interval is 10
1970-01-01 03:39:22 debug capwap: [capwap_info]: Leave the wait send phase state
1970-01-01 03:39:22 debug capwap: [capwap_basic]: capwap set watch dog:130 priority:5 modid:4
1970-01-01 03:39:22 debug capwap: [capwap_basic]: CAPWAP: cur_status:Discovery, cur_event:waitting sndpkt, timer to fire:10
1970-01-01 03:39:23 debug capwap: [capwap_ssl]: do nothing because capwap status is 4, dtls connect status is 4
1970-01-01 03:39:32 debug last message repeated 9 times
1970-01-01 03:39:32 debug capwap: [capwap_basic]: state: Discovery--->Discovery, event: waitting sndpkt--->sndpkt
1970-01-01 03:39:32 debug capwap: [capwap_info]: ah_capwap_maxdisco_timer timed out
1970-01-01 03:39:32 debug capwap: [capwap_basic]: current parameters:Discovery sndpkt discovery_timer
1970-01-01 03:39:32 debug capwap: [capwap_info]: DISCOVERY->Enter the send packet phase state: Discovery event: sndpkt timer: discovery_timer
1970-01-01 03:39:32 debug capwap: [capwap_info]: unset timer type is maxdis_timer interval is 0
1970-01-01 03:39:32 debug capwap: [capwap_info]: CAPWAP get box SN from SCD is *REMOVED*
1970-01-01 03:39:32 debug capwap: [capwap_info]: CAPWAP GET WTP HW module from SCD is AP230
1970-01-01 03:39:32 debug capwap: [capwap_info]: Get CLI configuration version:1
1970-01-01 03:39:32 debug capwap: [capwap_info]: CAPWAP GET WTP MAC FROM DCD IS *REMOVED*
1970-01-01 03:39:32 debug capwap: [capwap_info]: the totle len is 210, col msg head len is 8, options len is 190
1970-01-01 03:39:32 debug capwap: 46229188 70 40 02 00 00 00 00 00 00 00 00 01 99 00 c5 0d p@...... ........
1970-01-01 03:39:32 debug capwap: 46229198 00 00 33 74 00 00 00 14 00 01 00 00 00 00 24 00 ..3t.... ......$.
1970-01-01 03:39:32 debug capwap: 462291a8 97 02 02 00 00 00 00 69 30 00 00 00 08 41 65 72 .......i 0....Aer
1970-01-01 03:39:32 debug capwap: 462291b8 6f 68 69 76 65 00 00 69 30 00 04 00 05 41 50 32 ohive..i 0....AP2
1970-01-01 03:39:32 debug capwap: 462291c8 33 30 00 00 69 30 00 05 00 07 36 2e 35 2e 36 2e 30..i0.. ..6.5.6.
1970-01-01 03:39:32 debug capwap: 462291d8 30 00 00 69 30 00 01 00 0e 30 32 33 30 31 36 30 0..i0... .0230160
1970-01-01 03:39:32 debug capwap: 462291e8 33 32 33 31 31 34 31 00 00 69 30 00 14 00 04 00 3231141. .i0.....
1970-01-01 03:39:32 debug capwap: 462291f8 00 00 01 00 00 69 30 00 15 00 04 36 ac 00 fc 00 .....i0. ...6....
1970-01-01 03:39:32 debug capwap: 46229208 00 69 30 00 16 00 04 00 00 33 74 00 00 69 30 00 .i0..... .3t..i0.
1970-01-01 03:39:32 debug capwap: 46229218 17 00 19 48 69 76 65 4f 53 20 36 2e 35 72 36 20 ...HiveO S 6.5r6
1970-01-01 03:39:32 debug capwap: 46229228 62 75 69 6c 64 2d 31 34 39 31 36 31 00 00 69 30 build-14 9161..i0
1970-01-01 03:39:32 debug capwap: 46229238 00 18 00 04 05 00 08 00 00 00 00 26 00 01 07 00 ........ ...&....
1970-01-01 03:39:32 debug capwap: 46229248 00 00 28 00 01 02 00 00 13 88 00 06 d8 54 a2 b7 ..(..... .....T..
1970-01-01 03:39:32 debug capwap: 46229258 55 c0 U.
1970-01-01 03:39:32 debug capwap: [capwap_htc_info]: write type TUNNEL_DATA to request
1970-01-01 03:39:32 debug capwap: [capwap_htc_info]: write length 53760 to request
1970-01-01 03:39:32 debug capwap: [capwap_htc_info]: tunnel_write_request: TUNNEL_DATA:
1970-01-01 03:39:32 debug capwap: 46229188 70 40 02 00 00 00 00 00 00 00 00 01 99 00 c5 0d p@...... ........
1970-01-01 03:39:32 debug capwap: 46229198 00 00 33 74 00 00 00 14 00 01 00 00 00 00 24 00 ..3t.... ......$.
1970-01-01 03:39:32 debug capwap: 462291a8 97 02 02 00 00 00 00 69 30 00 00 00 08 41 65 72 .......i 0....Aer
1970-01-01 03:39:32 debug capwap: 462291b8 6f 68 69 76 65 00 00 69 30 00 04 00 05 41 50 32 ohive..i 0....AP2
1970-01-01 03:39:32 debug capwap: 462291c8 33 30 00 00 69 30 00 05 00 07 36 2e 35 2e 36 2e 30..i0.. ..6.5.6.
1970-01-01 03:39:32 debug capwap: 462291d8 30 00 00 69 30 00 01 00 0e 30 32 33 30 31 36 30 0..i0... .0230160
1970-01-01 03:39:32 debug capwap: 462291e8 33 32 33 31 31 34 31 00 00 69 30 00 14 00 04 00 3231141. .i0.....
1970-01-01 03:39:32 debug capwap: 462291f8 00 00 01 00 00 69 30 00 15 00 04 36 ac 00 fc 00 .....i0. ...6....
1970-01-01 03:39:32 debug capwap: 46229208 00 69 30 00 16 00 04 00 00 33 74 00 00 69 30 00 .i0..... .3t..i0.
1970-01-01 03:39:32 debug
1970-01-01 03:39:37 debug last message repeated 4 times
1970-01-01 03:39:37 debug capwap: [capwap_info]: ah_capwap_discovey_timer timed out
1970-01-01 03:39:37 debug capwap: [capwap_basic]: current parameters:Discovery waitting sndpkt maxdis_timer
1970-01-01 03:39:37 debug capwap: [capwap_info]: Enter the wait send phase state: Discovery event: waitting sndpkt timer: maxdis_timer
1970-01-01 03:39:37 debug capwap: [capwap_info]: set timer type is maxdis_timer interval is 10
1970-01-01 03:39:37 debug capwap: [capwap_info]: Leave the wait send phase state
1970-01-01 03:39:37 debug capwap: [capwap_basic]: capwap set watch dog:130 priority:5 modid:4
1970-01-01 03:39:37 debug capwap: [capwap_basic]: CAPWAP: cur_status:Discovery, cur_event:waitting sndpkt, timer to fire:10
1970-01-01 03:39:38 debug capwap: [capwap_ssl]: do nothing because capwap status is 4, dtls connect status is 4
1970-01-01 03:39:47 debug last message repeated 9 times
1970-01-01 03:39:47 debug capwap: [capwap_basic]: state: Discovery--->Discovery, event: waitting sndpkt--->sndpkt
1970-01-01 03:39:47 debug capwap: [capwap_info]: ah_capwap_maxdisco_timer timed out
1970-01-01 03:39:47 debug capwap: [capwap_basic]: current parameters:Discovery sndpkt discovery_timer
1970-01-01 03:39:47 debug capwap: [capwap_info]: DISCOVERY->Enter the send packet phase state: Discovery event: sndpkt timer: discovery_timer
1970-01-01 03:39:47 debug capwap: [capwap_info]: unset timer type is maxdis_timer interval is 0
1970-01-01 03:39:47 debug capwap: [capwap_info]: CAPWAP get box SN from SCD is *REMOVED*
1970-01-01 03:39:47 debug capwap: [capwap_info]: CAPWAP GET WTP HW module from SCD is AP230
1970-01-01 03:39:47 debug capwap: [capwap_info]: Get CLI configuration version:1
1970-01-01 03:39:47 debug capwap: [capwap_info]: CAPWAP GET WTP MAC FROM DCD IS *REMOVED*
1970-01-01 03:39:47 debug capwap: [capwap_info]: the totle len is 210, col msg head len is 8, options len is 190
1970-01-01 03:39:47 debug capwap: 46229188 70 40 02 00 00 00 00 00 00 00 00 01 9a 00 c5 0d p@...... ........
1970-01-01 03:39:47 debug capwap: 46229198 00 00 33 83 00 00 00 14 00 01 00 00 00 00 24 00 ..3..... ......$.
1970-01-01 03:39:47 debug capwap: 462291a8 97 02 02 00 00 00 00 69 30 00 00 00 08 41 65 72 .......i 0....Aer
1970-01-01 03:39:47 debug capwap: 462291b8 6f 68 69 76 65 00 00 69 30 00 04 00 05 41 50 32 ohive..i 0....AP2
1970-01-01 03:39:47 debug capwap: 462291c8 33 30 00 00 69 30 00 05 00 07 36 2e 35 2e 36 2e 30..i0.. ..6.5.6.
1970-01-01 03:39:47 debug capwap: 462291d8 30 00 00 69 30 00 01 00 0e 30 32 33 30 31 36 30 0..i0... .0230160
1970-01-01 03:39:47 debug capwap: 462291e8 33 32 33 31 31 34 31 00 00 69 30 00 14 00 04 00 3231141. .i0.....
1970-01-01 03:39:47 debug capwap: 462291f8 00 00 01 00 00 69 30 00 15 00 04 36 ac 00 fc 00 .....i0. ...6....
1970-01-01 03:39:47 debug capwap: 46229208 00 69 30 00 16 00 04 00 00 33 83 00 00 69 30 00 .i0..... .3...i0.
1970-01-01 03:39:47 debug capwap: 46229218 17 00 19 48 69 76 65 4f 53 20 36 2e 35 72 36 20 ...HiveO S 6.5r6
1970-01-01 03:39:47 debug capwap: 46229228 62 75 69 6c 64 2d 31 34 39 31 36 31 00 00 69 30 build-14 9161..i0
1970-01-01 03:39:47 debug capwap: 46229238 00 18 00 04 05 00 08 00 00 00 00 26 00 01 07 00 ........ ...&....
1970-01-01 03:39:47 debug capwap: 46229248 00 00 28 00 01 02 00 00 13 88 00 06 d8 54 a2 b7 ..(..... .....T..
1970-01-01 03:39:47 debug capwap: 46229258 55 c0 U.
1970-01-01 03:39:47 debug capwap: [capwap_htc_info]: write type TUNNEL_DATA to request
1970-01-01 03:39:47 debug capwap: [capwap_htc_info]: write length 53760 to request
1970-01-01 03:39:47 debug capwap: [capwap_htc_info]: tunnel_write_request: TUNNEL_DATA:
1970-01-01 03:39:47 debug capwap: 46229188 70 40 02 00 00 00 00 00 00 00 00 01 9a 00 c5 0d p@...... ........
1970-01-01 03:39:47 debug capwap: 46229198 00 00 33 83 00 00 00 14 00 01 00 00 00 00 24 00 ..3..... ......$.
1970-01-01 03:39:47 debug capwap: 462291a8 97 02 02 00 00 00 00 69 30 00 00 00 08 41 65 72 .......i 0....Aer
1970-01-01 03:39:47 debug capwap: 462291b8 6f 68 69 76 65 00 00 69 30 00 04 00 05 41 50 32 ohive..i 0....AP2
1970-01-01 03:39:47 debug capwap: 462291c8 33 30 00 00 69 30 00 05 00 07 36 2e 35 2e 36 2e 30..i0.. ..6.5.6.
1970-01-01 03:39:47 debug capwap: 462291d8 30 00 00 69 30 00 01 00 0e 30 32 33 30 31 36 30 0..i0... .0230160
1970-01-01 03:39:47 debug capwap: 462291e8 33 32 33 31 31 34 31 00 00 69 30 00 14 00 04 00 3231141. .i0.....
1970-01-01 03:39:47 debug capwap: 462291f8 00 00 01 00 00 69 30 00 15 00 04 36 ac 00 fc 00 .....i0. ...6....
1970-01-01 03:39:47 debug capwap: 46229208 00 69 30 00 16 00 04 00 00 33 83 00 00 69 30 00 .i0..... .3...i0.
1970-01-01 03:39:47 debug
1970-01-01 03:39:52 debug last message repeated 4 times
1970-01-01 03:39:52 debug capwap: [capwap_info]: ah_capwap_discovey_timer timed out
1970-01-01 03:39:52 debug capwap: [capwap_basic]: current parameters:Discovery waitting sndpkt maxdis_timer
1970-01-01 03:39:52 debug capwap: [capwap_info]: Enter the wait send phase state: Discovery event: waitting sndpkt timer: maxdis_timer
1970-01-01 03:39:52 debug capwap: [capwap_info]: set timer type is maxdis_timer interval is 10
1970-01-01 03:39:52 debug capwap: [capwap_info]: Leave the wait send phase state
1970-01-01 03:39:52 debug capwap: [capwap_basic]: capwap set watch dog:130 priority:5 modid:4
1970-01-01 03:39:52 debug capwap: [capwap_basic]: CAPWAP: cur_status:Discovery, cur_event:waitting sndpkt, timer to fire:10
1970-01-01 03:39:53 debug capwap: [capwap_ssl]: do nothing because capwap status is 4, dtls connect status is 4
1970-01-01 03:40:02 debug last message repeated 9 times
1970-01-01 03:40:02 debug capwap: [capwap_basic]: state: Discovery--->Discovery, event: waitting sndpkt--->sndpkt
1970-01-01 03:40:02 debug capwap: [capwap_info]: ah_capwap_maxdisco_timer timed out
1970-01-01 03:40:02 debug capwap: [capwap_basic]: current parameters:Discovery sndpkt discovery_timer
1970-01-01 03:40:02 debug capwap: [capwap_info]: DISCOVERY->Enter the send packet phase state: Discovery event: sndpkt timer: discovery_timer
1970-01-01 03:40:02 debug capwap: [capwap_info]: unset timer type is maxdis_timer interval is 0
1970-01-01 03:40:02 debug capwap: [capwap_info]: CAPWAP get box SN from SCD is *REMOVED*
1970-01-01 03:40:02 debug capwap: [capwap_info]: CAPWAP GET WTP HW module from SCD is AP230
1970-01-01 03:40:02 debug capwap: [capwap_info]: Get CLI configuration version:1
1970-01-01 03:40:02 debug capwap: [capwap_info]: CAPWAP GET WTP MAC FROM DCD IS *REMOVED*
1970-01-01 03:40:02 debug capwap: [capwap_info]: the totle len is 210, col msg head len is 8, options len is 190
1970-01-01 03:40:02 debug capwap: 46229188 70 40 02 00 00 00 00 00 00 00 00 01 9b 00 c5 0d p@...... ........
1970-01-01 03:40:02 debug capwap: 46229198 00 00 33 92 00 00 00 14 00 01 00 00 00 00 24 00 ..3..... ......$.
1970-01-01 03:40:02 debug capwap: 462291a8 97 02 02 00 00 00 00 69 30 00 00 00 08 41 65 72 .......i 0....Aer
1970-01-01 03:40:02 debug capwap: 462291b8 6f 68 69 76 65 00 00 69 30 00 04 00 05 41 50 32 ohive..i 0....AP2
1970-01-01 03:40:02 debug capwap: 462291c8 33 30 00 00 69 30 00 05 00 07 36 2e 35 2e 36 2e 30..i0.. ..6.5.6.
1970-01-01 03:40:02 debug capwap: 462291d8 30 00 00 69 30 00 01 00 0e 30 32 33 30 31 36 30 0..i0... .0230160
1970-01-01 03:40:02 debug capwap: 462291e8 33 32 33 31 31 34 31 00 00 69 30 00 14 00 04 00 3231141. .i0.....
1970-01-01 03:40:02 debug capwap: 462291f8 00 00 01 00 00 69 30 00 15 00 04 36 ac 00 fc 00 .....i0. ...6....
1970-01-01 03:40:02 debug capwap: 46229208 00 69 30 00 16 00 04 00 00 33 92 00 00 69 30 00 .i0..... .3...i0.
1970-01-01 03:40:02 debug capwap: 46229218 17 00 19 48 69 76 65 4f 53 20 36 2e 35 72 36 20 ...HiveO S 6.5r6
1970-01-01 03:40:02 debug capwap: 46229228 62 75 69 6c 64 2d 31 34 39 31 36 31 00 00 69 30 build-14 9161..i0
1970-01-01 03:40:02 debug capwap: 46229238 00 18 00 04 05 00 08 00 00 00 00 26 00 01 07 00 ........ ...&....
1970-01-01 03:40:02 debug capwap: 46229248 00 00 28 00 01 02 00 00 13 88 00 06 d8 54 a2 b7 ..(..... .....T..
1970-01-01 03:40:02 debug capwap: 46229258 55 c0 U.
1970-01-01 03:40:02 debug capwap: [capwap_htc_info]: write type TUNNEL_DATA to request
1970-01-01 03:40:02 debug capwap: [capwap_htc_info]: write length 53760 to request
1970-01-01 03:40:02 debug capwap: [capwap_htc_info]: tunnel_write_request: TUNNEL_DATA:
1970-01-01 03:40:02 debug capwap: 46229188 70 40 02 00 00 00 00 00 00 00 00 01 9b 00 c5 0d p@...... ........
1970-01-01 03:40:02 debug capwap: 46229198 00 00 33 92 00 00 00 14 00 01 00 00 00 00 24 00 ..3..... ......$.
1970-01-01 03:40:02 debug capwap: 462291a8 97 02 02 00 00 00 00 69 30 00 00 00 08 41 65 72 .......i 0....Aer
1970-01-01 03:40:02 debug capwap: 462291b8 6f 68 69 76 65 00 00 69 30 00 04 00 05 41 50 32 ohive..i 0....AP2
1970-01-01 03:40:02 debug capwap: 462291c8 33 30 00 00 69 30 00 05 00 07 36 2e 35 2e 36 2e 30..i0.. ..6.5.6.
1970-01-01 03:40:02 debug capwap: 462291d8 30 00 00 69 30 00 01 00 0e 30 32 33 30 31 36 30 0..i0... .0230160
1970-01-01 03:40:02 debug capwap: 462291e8 33 32 33 31 31 34 31 00 00 69 30 00 14 00 04 00 3231141. .i0.....
1970-01-01 03:40:02 debug capwap: 462291f8 00 00 01 00 00 69 30 00 15 00 04 36 ac 00 fc 00 .....i0. ...6....
1970-01-01 03:40:02 debug capwap: 46229208 00 69 30 00 16 00 04 00 00 33 92 00 00 69 30 00 .i0..... .3...i0.
1970-01-01 03:40:07 debug last message repeated 4 times
1970-01-01 03:40:07 debug capwap: [capwap_info]: ah_capwap_discovey_timer timed out
1970-01-01 03:40:07 debug capwap: [capwap_basic]: current parameters:Discovery waitting sndpkt maxdis_timer
1970-01-01 03:40:07 debug capwap: [capwap_info]: Enter the wait send phase state: Discovery event: waitting sndpkt timer: maxdis_timer
1970-01-01 03:40:07 debug capwap: [capwap_info]: set timer type is maxdis_timer interval is 10
1970-01-01 03:40:07 debug capwap: [capwap_info]: Leave the wait send phase state
1970-01-01 03:40:07 debug capwap: [capwap_basic]: capwap set watch dog:130 priority:5 modid:4
1970-01-01 03:40:07 debug capwap: [capwap_basic]: CAPWAP: cur_status:Discovery, cur_event:waitting sndpkt, timer to fire:10
1970-01-01 03:40:08 debug capwap: [capwap_ssl]: do nothing because capwap status is 4, dtls connect status is 4
1970-01-01 03:40:13 debug last message repeated 5 times
1970-01-01 03:40:13 debug capwap: [capwap_cli]: CAPWAP cancel stat update timer
1970-01-01 03:40:13 debug capwap: [capwap_basic]: current parameters:End none none
1970-01-01 03:40:13 debug capwap: [capwap_info]: END->Enter the End State.
1970-01-01 03:40:14 debug capwap: [capwap_ssl]: do nothing because capwap status is 10, dtls connect status is 4
1970-01-01 03:40:15 debug capwap: [capwap_ssl]: do nothing because capwap enable is 0, dtls enable is 1

[END] 09.03.2017 14:26:26

Photo of Nick Lowe

Nick Lowe, Official Rep

  • 2491 Posts
  • 451 Reply Likes
Hi Marcel,

Thanks,

I wanted to see if any further relevant information was logged with the all level of debugging.

1970-01-01 00:13:36 notice capwap: CAPWAP_TCP: connected to 54.172.0.252:80 via 192.168.254.254:8080
1970-01-01 00:13:35 warn capwap: CAPWAP_TCP:read_until: closed

This would indicate to me that your proxy is likely to be sending a TCP RST.

Are you able to take and review a packet capture to see what is happening?

Thanks,

Nick
Photo of Marcel Heß

Marcel Heß

  • 27 Posts
  • 4 Reply Likes
Hi Nick,

I will check the proxy settings again and after that I will provide the Packetcapture.

Best regards,
Marcel
Photo of Marcel Heß

Marcel Heß

  • 27 Posts
  • 4 Reply Likes
Hi Nick,

unfortunately I have no time to provide a packet capture.

The project is on hold.

Maybe, Uwe Dreier can provide it. He as a similar Topic:
https://community.aerohive.com/aerohive/topics/ap-behind-a-cloud-proxy

Thanks and best regards

Marcel
Photo of Uwe Dreier

Uwe Dreier

  • 16 Posts
  • 1 Reply Like
Hi,
I can provide such info, but I cannot provide such info here because it includes sensitive info (public IPs etc.) .. may I have an email address where I can send this info to?
(Edited)
Photo of Uwe Dreier

Uwe Dreier

  • 16 Posts
  • 1 Reply Like
here is what I get with debug .. proxy IP address removed ...

AH-741c80#sh log buf | inc debu
2017-03-13 18:24:56 info    ah_cli: admin:<no _debug all >
2017-03-13 18:24:20 info    ah_cli: admin:<no _debug all>
2017-03-13 18:24:19 debug   last message repeated 6 times
2017-03-13 18:24:13 debug   capwap: [capwap_ssl]: do nothing because capwap status is 0, dtls connect status is 4
2017-03-13 18:24:12 debug   capwap: [capwap_info]: START->Enter the Start State.
2017-03-13 18:24:12 debug   capwap: [capwap_basic]: current parameters:Start  waitting for cli  none
2017-03-13 18:24:12 debug   capwap: [capwap_basic]: capwap set watch dog:60 priority:5 modid:4
2017-03-13 18:24:12 debug   capwap: [capwap_ssl]: do nothing because capwap status is 3, dtls connect status is 4
2017-03-13 18:24:11 debug   capwap: [capwap_info]: unregister port:80, proxy port:80
2017-03-13 18:24:11 debug   capwap: [capwap_htc_basic]: tunnel_in_disconnect: input disconnected
2017-03-13 18:24:11 debug   capwap: [capwap_htc_basic]: tunnel_out_disconnect: output disconnected
2017-03-13 18:24:11 debug   capwap: [capwap_htc_info]: CAPWAP_TCP:tunnel_out_disconnect: warning: bytes=4 != content_length=1048576
2017-03-13 18:24:11 debug   capwap: [capwap_htc_basic]: tunnel_close: free all tunnel resource
2017-03-13 18:24:11 debug   capwap: [capwap_htc_basic]: Get an error in setup a IN CAPWAP_TCP connection.
2017-03-13 18:24:11 debug   capwap: [capwap_htc_info]: CAPWAP_TCP:tunnel_in_connect: no response; peer closed connection
2017-03-13 18:24:11 debug   capwap: [capwap_htc_info]: read until (/) done
2017-03-13 18:24:11 debug   capwap: [capwap_htc_info]: read all return error :Resource temporarily unavailable
2017-03-13 18:24:11 debug   capwap: [capwap_htc_info]: read until (/) start
2017-03-13 18:24:11 debug   capwap: [capwap_htc_basic]: Get response from http tunnel server
2017-03-13 18:24:11 debug   capwap: [capwap_ssl]: do nothing because capwap status is 3, dtls connect status is 4
2017-03-13 18:24:10 debug   capwap: [capwap_htc_info]: http_write_header: Cache-Control:no-cache, no-store, must-revalidate
2017-03-13 18:24:10 debug   capwap: [capwap_htc_info]: http_write_header: Pragma:no-cache
2017-03-13 18:24:10 debug   capwap: [capwap_htc_info]: http_write_header: Connection:close
2017-03-13 18:24:10 debug   capwap: [capwap_htc_info]: http_write_header: Host:54.76.207.46:80
2017-03-13 18:24:10 debug   capwap: [capwap_htc_info]: http_write_request: GET http://54.76.207.46:80/hm/capwap/index.html?NODEID=9C                            5D12741C80 HTTP/1.1^M
2017-03-13 18:24:10 debug   capwap: [capwap_htc_basic]: CAPWAP_TCP: setup a TCP connection successfully
2017-03-13 18:24:10 debug   capwap: [capwap_htc_info]: tunnel_in_connect()
2017-03-13 18:24:10 debug   capwap: [capwap_htc_info]: tunnel_write_data: out_total_raw = 4, total bytes = 4
2017-03-13 18:24:10 debug   capwap: [capwap_htc_basic]: tunnel_write_request: TUNNEL_OPEN (length=1)
2017-03-13 18:24:10 debug   capwap: [capwap_htc_info]: tunnel_write_request: TUNNEL_DATA:
2017-03-13 18:24:10 debug   capwap: [capwap_htc_info]: write length 256 to request
2017-03-13 18:24:10 debug   capwap: [capwap_htc_info]: write type TUNNEL_OPEN to request
2017-03-13 18:24:10 debug   capwap: [capwap_htc_basic]: tunnel_out_connect: output connected
2017-03-13 18:24:10 debug   capwap: [capwap_htc_info]: read until (/) done
2017-03-13 18:24:10 debug   capwap: [capwap_htc_info]: read all return error :Resource temporarily unavailable
2017-03-13 18:24:10 debug   capwap: [capwap_htc_info]: read until (/) start
2017-03-13 18:24:10 debug   capwap: [capwap_htc_basic]: Get response from http tunnel server
2017-03-13 18:24:10 debug   capwap: [capwap_ssl]: do nothing because capwap status is 3, dtls connect status is 4
2017-03-13 18:24:09 debug   capwap: [capwap_htc_info]: http_write_header: Cache-Control:no-cache, no-store, must-revalidate
2017-03-13 18:24:09 debug   capwap: [capwap_htc_info]: http_write_header: Pragma:no-cache
2017-03-13 18:24:09 debug   capwap: [capwap_htc_info]: http_write_header: Connection:close
2017-03-13 18:24:09 debug   capwap: [capwap_htc_info]: http_write_header: Content-Length:1048576
2017-03-13 18:24:09 debug   capwap: [capwap_htc_info]: http_write_header: Host:54.76.207.46:80
2017-03-13 18:24:09 debug   capwap: [capwap_htc_info]: http_write_request: POST http://54.76.207.46:80/hm/capwap/index.html?NODEID=9                            C5D12741C80 HTTP/1.1^M
2017-03-13 18:24:09 debug   capwap: [capwap_htc_basic]: CAPWAP_TCP: setup a TCP connection successfully
2017-03-13 18:24:09 debug   capwap: [capwap_htc_basic]: tunnel_out_connect: ready setup the out connection
2017-03-13 18:24:09 debug   capwap: [capwap_htc_basic]: register proxy port :80
2017-03-13 18:24:09 debug   capwap: [capwap_htc_basic]: Ready connect with remote HTTP tunnel server
2017-03-13 18:24:09 debug   capwap: [capwap_htc_info]: tunnel_new_client ("54.76.207.46", 80, ">>proxy IP<<", 80, 1048576)
2017-03-13 18:24:09 debug   capwap: [capwap_htc_basic]: creating a new tunnel
2017-03-13 18:24:09 debug   capwap: [capwap_htc_basic]: HTTP proxy content length:1048576
2017-03-13 18:24:09 debug   capwap: [capwap_info]: register port :80
2017-03-13 18:24:09 debug   capwap: [capwap_ssl]: do nothing because capwap status is 3, dtls connect status is 4
2017-03-13 18:24:08 debug   capwap: [capwap_info]: unregister port:80, proxy port:80
2017-03-13 18:24:08 debug   capwap: [capwap_info]: Clean frag buffer..
2017-03-13 18:24:08 debug   capwap: [capwap_basic]: UNICAST: IP = 54.76.207.46,Port = 80
2017-03-13 18:24:08 debug   capwap: [capwap_info]: IDLE->Enter the Idle State.
2017-03-13 18:24:08 debug   capwap: [capwap_basic]: current parameters:Idle  none  idle_timer
2017-03-13 18:24:08 debug   capwap: [capwap_basic]: capwap set watch dog:60 priority:5 modid:4
2017-03-13 18:24:08 debug   capwap: [capwap_info]: START->Leave the Get HM IP State.
2017-03-13 18:24:08 debug   capwap: [capwap_info]: capwap handle_bonjour_service service old 0 new 2
2017-03-13 18:24:08 debug   capwap: [capwap_info]: HTTP proxy done its first time connecting to HM
2017-03-13 18:24:08 debug   capwap: [capwap_basic]: state: Waitting for HiveManager IP--->Idle, event: none--->none
2017-03-13 18:24:08 debug   capwap: [capwap_ha]: Ready connecting to HM 54.76.207.46
2017-03-13 18:24:08 debug   capwap: [capwap_info]: register port :80
2017-03-13 18:24:08 debug   capwap: [capwap_ha]: use primary server(TCP), ip=54.76.207.46, port=80
2017-03-13 18:24:08 debug   capwap: [capwap_ha]: use 1 times primary server, 1 times backup server, continue to try CLI configuratio                            n
2017-03-13 18:24:08 debug   capwap: [capwap_ha]: get capwap server ip (54.76.207.46) for name (hmng-prd-ie-cwpm-01.aerohive.com)
2017-03-13 18:24:08 debug   capwap: [capwap_ha]: user has configured primary or backup HM's name
2017-03-13 18:24:08 debug   capwap: [capwap_ha]: get hivemanager name from scd (first:hmng-prd-ie-cwpm-01.aerohive.com, second:).
2017-03-13 18:24:08 debug   capwap: [capwap_ha]: Choose HM IP or name for connecting....
2017-03-13 18:24:08 debug   capwap: [capwap_info]: START->Enter the Get HM IP State.
2017-03-13 18:24:08 debug   capwap: [capwap_basic]: current parameters:Waitting for HiveManager IP  none  none
2017-03-13 18:24:08 debug   capwap: [capwap_basic]: capwap set watch dog:60 priority:5 modid:4
2017-03-13 18:24:08 debug   capwap: [capwap_info]: START->Leave the Get Host IP State.
2017-03-13 18:24:08 debug   capwap: [capwap_info]: capwap handle_bonjour_service service old 0 new 2
2017-03-13 18:24:08 debug   capwap: [capwap_info]: HTTP proxy done its first time connecting to HM
2017-03-13 18:24:08 debug   capwap: [capwap_basic]: state: Waitting for HiveAP IP--->Waitting for HiveManager IP, event: none--->non                            e
2017-03-13 18:24:08 debug   capwap: [capwap_info]: IP = 0.0.0.0,Port = 0
2017-03-13 18:24:08 debug   capwap: [capwap_info]: unregister port:80, proxy port:80
2017-03-13 18:24:08 debug   capwap: [capwap_info]: device ip is 140.231.72.69
2017-03-13 18:24:08 debug   capwap: [capwap_info]: START->Enter the Get Host IP State.
2017-03-13 18:24:08 debug   capwap: [capwap_basic]: current parameters:Waitting for HiveAP IP  none  none
2017-03-13 18:24:08 debug   capwap: [capwap_basic]: capwap set watch dog:60 priority:5 modid:4
2017-03-13 18:24:08 debug   capwap: [capwap_info]: START->Leave the Start State.
2017-03-13 18:24:08 debug   capwap: [capwap_info]: capwap handle_bonjour_service service old 0 new 2
2017-03-13 18:24:08 debug   capwap: [capwap_info]: HTTP proxy done its first time connecting to HM
2017-03-13 18:24:08 debug   capwap: [capwap_basic]: state: Start--->Waitting for HiveAP IP, event: waitting for cli--->none
2017-03-13 18:24:08 debug   capwap: [capwap_info]: unregister port:80, proxy port:80
2017-03-13 18:24:08 debug   last message repeated 4 times
2017-03-13 18:24:04 debug   capwap: [capwap_ssl]: do nothing because capwap status is 0, dtls connect status is 4
2017-03-13 18:24:03 debug   capwap: [capwap_info]: START->Enter the Start State.
2017-03-13 18:24:03 debug   capwap: [capwap_basic]: current parameters:Start  waitting for cli  none
2017-03-13 18:24:03 debug   capwap: [capwap_basic]: capwap set watch dog:60 priority:5 modid:4
2017-03-13 18:24:03 debug   capwap: [capwap_ssl]: do nothing because capwap status is 3, dtls connect status is 4
2017-03-13 18:24:02 debug   capwap: [capwap_info]: unregister port:80, proxy port:80
2017-03-13 18:24:02 debug   capwap: [capwap_htc_basic]: tunnel_in_disconnect: input disconnected
2017-03-13 18:24:02 debug   capwap: [capwap_htc_basic]: tunnel_out_disconnect: output disconnected
2017-03-13 18:24:02 debug   capwap: [capwap_htc_info]: CAPWAP_TCP:tunnel_out_disconnect: warning: bytes=4 != content_length=1048576
2017-03-13 18:24:02 debug   capwap: [capwap_htc_basic]: tunnel_close: free all tunnel resource
2017-03-13 18:24:02 debug   capwap: [capwap_htc_basic]: Get an error in setup a IN CAPWAP_TCP connection.
2017-03-13 18:24:02 debug   capwap: [capwap_htc_info]: CAPWAP_TCP:tunnel_in_connect: no response; peer closed connection
2017-03-13 18:24:02 debug   capwap: [capwap_htc_info]: read until (/) done
2017-03-13 18:24:02 debug   capwap: [capwap_htc_info]: read all return error :Resource temporarily unavailable
2017-03-13 18:24:02 debug   capwap: [capwap_htc_info]: read until (/) start
2017-03-13 18:24:02 debug   capwap: [capwap_htc_basic]: Get response from http tunnel server
2017-03-13 18:24:02 debug   capwap: [capwap_ssl]: do nothing because capwap status is 3, dtls connect status is 4
2017-03-13 18:24:01 debug   capwap: [capwap_htc_info]: http_write_header: Cache-Control:no-cache, no-store, must-revalidate
2017-03-13 18:24:01 debug   capwap: [capwap_htc_info]: http_write_header: Pragma:no-cache
2017-03-13 18:24:01 debug   capwap: [capwap_htc_info]: http_write_header: Connection:close
2017-03-13 18:24:01 debug   capwap: [capwap_htc_info]: http_write_header: Host:54.76.207.46:80
2017-03-13 18:24:01 debug   capwap: [capwap_htc_info]: http_write_request: GET http://54.76.207.46:80/hm/capwap/index.html?NODEID=9C                            5D12741C80 HTTP/1.1^M
2017-03-13 18:24:01 debug   capwap: [capwap_htc_basic]: CAPWAP_TCP: setup a TCP connection successfully
2017-03-13 18:24:01 debug   capwap: [capwap_htc_info]: tunnel_in_connect()
2017-03-13 18:24:01 debug   capwap: [capwap_htc_info]: tunnel_write_data: out_total_raw = 4, total bytes = 4
2017-03-13 18:24:01 debug   capwap: [capwap_htc_basic]: tunnel_write_request: TUNNEL_OPEN (length=1)
2017-03-13 18:24:01 debug   capwap: [capwap_htc_info]: tunnel_write_request: TUNNEL_DATA:
2017-03-13 18:24:01 debug   capwap: [capwap_htc_info]: write length 256 to request
2017-03-13 18:24:01 debug   capwap: [capwap_htc_info]: write type TUNNEL_OPEN to request
2017-03-13 18:24:01 debug   capwap: [capwap_htc_basic]: tunnel_out_connect: output connected
2017-03-13 18:24:01 debug   capwap: [capwap_htc_info]: read until (/) done
2017-03-13 18:24:01 debug   capwap: [capwap_htc_info]: read all return error :Resource temporarily unavailable
2017-03-13 18:24:01 debug   capwap: [capwap_htc_info]: read until (/) start
2017-03-13 18:24:01 debug   capwap: [capwap_htc_basic]: Get response from http tunnel server
2017-03-13 18:24:01 debug   capwap: [capwap_ssl]: do nothing because capwap status is 3, dtls connect status is 4
2017-03-13 18:24:00 debug   capwap: [capwap_htc_info]: http_write_header: Cache-Control:no-cache, no-store, must-revalidate
2017-03-13 18:24:00 debug   capwap: [capwap_htc_info]: http_write_header: Pragma:no-cache
2017-03-13 18:24:00 debug   capwap: [capwap_htc_info]: http_write_header: Connection:close
2017-03-13 18:24:00 debug   capwap: [capwap_htc_info]: http_write_header: Content-Length:1048576
2017-03-13 18:24:00 debug   capwap: [capwap_htc_info]: http_write_header: Host:54.76.207.46:80
2017-03-13 18:24:00 debug   capwap: [capwap_htc_info]: http_write_request: POST http://54.76.207.46:80/hm/capwap/index.html?NODEID=9                            C5D12741C80 HTTP/1.1^M
2017-03-13 18:24:00 debug   capwap: [capwap_htc_basic]: CAPWAP_TCP: setup a TCP connection successfully
2017-03-13 18:24:00 debug   capwap: [capwap_htc_basic]: tunnel_out_connect: ready setup the out connection
2017-03-13 18:24:00 debug   capwap: [capwap_htc_basic]: register proxy port :80
2017-03-13 18:24:00 debug   capwap: [capwap_htc_basic]: Ready connect with remote HTTP tunnel server
2017-03-13 18:24:00 debug   capwap: [capwap_htc_info]: tunnel_new_client ("54.76.207.46", 80, ">>proxy IP<<", 80, 1048576)
2017-03-13 18:24:00 debug   capwap: [capwap_htc_basic]: creating a new tunnel
2017-03-13 18:24:00 debug   capwap: [capwap_htc_basic]: HTTP proxy content length:1048576
2017-03-13 18:24:00 debug   capwap: [capwap_info]: register port :80
2017-03-13 18:24:00 debug   capwap: [capwap_ssl]: do nothing because capwap status is 3, dtls connect status is 4
2017-03-13 18:23:59 debug   capwap: [capwap_info]: unregister port:80, proxy port:80
2017-03-13 18:23:59 debug   capwap: [capwap_info]: Clean frag buffer..
2017-03-13 18:23:59 debug   capwap: [capwap_basic]: UNICAST: IP = 54.76.207.46,Port = 80
2017-03-13 18:23:59 debug   capwap: [capwap_info]: IDLE->Enter the Idle State.
2017-03-13 18:23:59 debug   capwap: [capwap_basic]: current parameters:Idle  none  idle_timer
2017-03-13 18:23:59 debug   capwap: [capwap_basic]: capwap set watch dog:60 priority:5 modid:4
2017-03-13 18:23:59 debug   capwap: [capwap_info]: START->Leave the Get HM IP State.
2017-03-13 18:23:59 debug   capwap: [capwap_info]: capwap handle_bonjour_service service old 0 new 2
2017-03-13 18:23:59 debug   capwap: [capwap_info]: HTTP proxy done its first time connecting to HM
2017-03-13 18:23:59 debug   capwap: [capwap_basic]: state: Waitting for HiveManager IP--->Idle, event: none--->none
2017-03-13 18:23:59 debug   capwap: [capwap_ha]: Ready connecting to HM 54.76.207.46
2017-03-13 18:23:59 debug   capwap: [capwap_info]: register port :80
2017-03-13 18:23:59 debug   capwap: [capwap_ha]: use primary server(TCP), ip=54.76.207.46, port=80
2017-03-13 18:23:59 debug   capwap: [capwap_ha]: get capwap server ip (54.76.207.46) for name (hmng-prd-ie-cwpm-01.aerohive.com)
2017-03-13 18:23:59 debug   capwap: [capwap_ha]: user has configured primary or backup HM's name
2017-03-13 18:23:59 debug   capwap: [capwap_ha]: get hivemanager name from scd (first:hmng-prd-ie-cwpm-01.aerohive.com, second:).
2017-03-13 18:23:59 debug   capwap: [capwap_ha]: Choose HM IP or name for connecting....
2017-03-13 18:23:59 debug   capwap: [capwap_info]: START->Enter the Get HM IP State.
2017-03-13 18:23:59 debug   capwap: [capwap_basic]: current parameters:Waitting for HiveManager IP  none  none
2017-03-13 18:23:59 debug   capwap: [capwap_basic]: capwap set watch dog:60 priority:5 modid:4
2017-03-13 18:23:59 debug   capwap: [capwap_info]: START->Leave the Get Host IP State.
2017-03-13 18:23:59 debug   capwap: [capwap_info]: capwap handle_bonjour_service service old 0 new 2
2017-03-13 18:23:59 debug   capwap: [capwap_info]: HTTP proxy done its first time connecting to HM
2017-03-13 18:23:59 debug   capwap: [capwap_basic]: state: Waitting for HiveAP IP--->Waitting for HiveManager IP, event: none--->non                            e
2017-03-13 18:23:59 debug   capwap: [capwap_info]: IP = 0.0.0.0,Port = 0
2017-03-13 18:23:59 debug   capwap: [capwap_info]: unregister port:80, proxy port:80
2017-03-13 18:23:59 debug   capwap: [capwap_info]: device ip is 140.231.72.69
2017-03-13 18:23:59 debug   capwap: [capwap_info]: START->Enter the Get Host IP State.
2017-03-13 18:23:59 debug   capwap: [capwap_basic]: current parameters:Waitting for HiveAP IP  none  none
2017-03-13 18:23:59 debug   capwap: [capwap_basic]: capwap set watch dog:60 priority:5 modid:4
Photo of Nick Lowe

Nick Lowe, Official Rep

  • 2491 Posts
  • 451 Reply Likes
Hi,

That suggests that the proxy is causing the issue:

Get an error in setup a IN CAPWAP_TCP connection.
no response; peer closed connection
read until (/) done
read all return error :Resource temporarily unavailable

I think that further debugging would require a packet capture.

Nick
(Edited)
Photo of Uwe Dreier

Uwe Dreier

  • 16 Posts
  • 1 Reply Like
thx so far .. I try to get .aerohive.com whitelisted at the proxy to avoid any inspection ..
Photo of Uwe Dreier

Uwe Dreier

  • 16 Posts
  • 1 Reply Like
do you hava any experience using Zscaler cloud proxy environment with your solution?
and as said .. I could send wireshark traces by mail or so, but cannot post it here
Photo of Gary Smith

Gary Smith, Official Rep

  • 299 Posts
  • 61 Reply Likes
Hi Uwe,

Please email the pcaps to gsmith@aerohive.com and I will share with Nick.

Kind Regards,
Gary Smith
Photo of BJ

BJ, Champ

  • 374 Posts
  • 45 Reply Likes
We are considering using ZScaler. Was there a resolution?

Best,
BJ
Photo of Uwe Dreier

Uwe Dreier

  • 1 Post
  • 0 Reply Likes
Hello BJ,
we still do not have a solution - at least not in our environment where we are not using a defautl route towards the internet/zscaler.
BR
Uwe