RE: [WIRELESS-LAN] ArubaOS 8.5.0.11 or 8.6.0.6 Experiences?
We're scheduled to upgrade our 7220 Cluster from 8.5.0.9 to 8.5.0.11 per HP/Aruba's recommendation to patch some CVEs. https://support.hpe.com/hpesc/public/docDisplay?docId=emr_na-hpesbnw04072en_ us We have not been happy with 8.5.0.9 since our upgrade to it this past fall. I am hopeful 8.5.0.11 will be a better experience, but I certainly will not be holding my breath. We are still working with Aruba TAC to figure out a Windows laptop sleep mode issue we have been experiencing since our 8.5.0.9 upgrade. We currently have 200 Series, 300 Series, and 500 Series deployed. Wish us luck! Nick Rauer Manager of Networking and Telecommunications Wheaton College - Massachusetts P 508-286-3212 W <https://wheatoncollege.edu/> https://wheatoncollege.edu/ From: The EDUCAUSE Wireless Issues Community Group Listserv [mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Johnson, Christopher Sent: Thursday, December 17, 2020 3:50 PM To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: [WIRELESS-LAN] ArubaOS 8.5.0.11 or 8.6.0.6 Experiences? We're considering doing some pre-emptive maintenance before winter-break ends to resolve a couple issues, and was curious if anyone is running ArubaOS 8.5.0.11 or 8.6.0.6 (200/220 and 270 Series APs) and what their experiences have been? Christopher Johnson Wireless Network Engineer Office of Technology Solutions | Illinois State University (309) 438-8444 Stay connected with ISU IT news and tips with @ISU IT Help on Facebook <https://www.facebook.com/ISUITHelp/> and Twitter <https://twitter.com/ISUITHelp> ** Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the person who sent the message, copy and paste their email address and forward the email reply. Additional participation and subscription information can be found at https://www.educause.edu/community ** Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the person who sent the message, copy and paste their email address and forward the email reply. Additional participation and subscription information can be found at https://www.educause.edu/community
RE: [WIRELESS-LAN] iOS 14 Causing ARP Spoofing Events on Aruba Controllers
We just wrapped up a week's worth of troubleshooting with Aruba TAC and a group of Aruba developers to troubleshoot a similar issue. They ultimately recommended we disable blacklisting clients for “Arp Spoof”. They did not correlate the issue related to the iOS update, though. I still have the case open, and will pass along the message. We are also seeing users complaining of their Windows 10 devices intermittently not connecting to an SSID after waking from sleep mode. We are still investigating that issue. We have an MM/MC dual 7220 Cluster running 8.5.0.9 / AP300,AP500 series Deployed. Thanks, Nick Rauer Manager of Networking and Telecommunications Wheaton College – Massachusetts From: The EDUCAUSE Wireless Issues Community Group Listserv [mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Michael Hulko Sent: Monday, September 21, 2020 1:10 PM To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: Re: [WIRELESS-LAN] iOS 14 Causing ARP Spoofing Events on Aruba Controllers Yup.. we had to disable the “Arp Spoof” settings in the IDS profiles. We have other irons in the fire so we are not able to do much to investigate this issue at this time. M From: The EDUCAUSE Wireless Issues Community Group Listserv mailto:WIRELESS-LAN@listserv.educause.edu> > on behalf of "McClintic, Thomas" mailto:thomas.mcclin...@uth.tmc.edu> > Reply-To: The EDUCAUSE Wireless Issues Community Group Listserv mailto:WIRELESS-LAN@listserv.educause.edu> > Date: Friday, September 18, 2020 at 11:46 AM To: "WIRELESS-LAN@listserv.educause.edu <mailto:WIRELESS-LAN@listserv.educause.edu> " mailto:WIRELESS-LAN@listserv.educause.edu> > Subject: [WIRELESS-LAN] iOS 14 Causing ARP Spoofing Events on Aruba Controllers We have begun seeing an impact with iOS 14 on our various SSIDs with ARP Spoofing events. We had not seen an event this year until July 9th (the date beta was released). There has been a large increase since the 16th of the events. The events seem to occur randomly as we are starting to troubleshoot. They still occur even when clients disable the privacy setting for the network. Since our blacklist interval is set to 30 minutes this is causing an interruption of service when it occurs. Has anyone else seen similar events? I have opened a TAC case to assist. Thanks TJ McClintic UTHealth | The University of Texas Health Science Center at Houston Houston’s Health University Communications Technology | Network Operations 7000 Fannin | Suite M60 | Houston, TX 77030 713.486.9269 netops | 713.486.2271 office ** Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the person who sent the message, copy and paste their email address and forward the email reply. Additional participation and subscription information can be found at https://www.educause.edu/community ** Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the person who sent the message, copy and paste their email address and forward the email reply. Additional participation and subscription information can be found at https://www.educause.edu/community ** Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the person who sent the message, copy and paste their email address and forward the email reply. Additional participation and subscription information can be found at https://www.educause.edu/community
RE: [WIRELESS-LAN] Who has transitioned away from Aruba, and why?
We installed 100+ AP-515s in every other room in our brand new Dorm that we opened back in September 2019. Because of the use of 515’s in this building, it forced our hand to move to 8.x sooner than expected. The entire months of September, October, and November we had very similar issues. We sent out a mass email to the students with information on the Intel driver bug and still had issues even after that mess. After working with TAC for days, we finally decided to upgrade to 8.5.0.4 per Aruba recommendation. Since the upgrade, our students were able to make it through finals with minimal issues. I am attempting to stay optimistic that things will remain smooth when they return from break, but I am preparing for the worst. Let's hope they figure things out in the new year! Nick Rauer Manager of Networking and Telecommunications Wheaton College – Massachusetts W <https://wheatoncollege.edu/> https://wheatoncollege.edu/ From: The EDUCAUSE Wireless Issues Community Group Listserv [mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of David Morton Sent: Thursday, January 9, 2020 11:39 AM To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: Re: [WIRELESS-LAN] Who has transitioned away from Aruba, and why? Ryan, we have been experiencing some of the very same issues. Since installing 515s and resulting 8.5.x code in our offices (always our first step to any migration) we too have experienced unexplained periods of no connectivity. In most or all the cases I’ve personally experienced, I believe that I remain connected at an 802.11 standpoint but will have that 30 seconds to a couple of minutes of no IP connectivity. We have now deployed 515s and 8.5.x in one of our residence halls so I am concerned about their experience as well. Just before the holiday break we had a series of very high-profile outages that impacted our students leading up to and during finals week. The issue got so bad that our CIO had to issue a letter to students explaining the problem and what we are doing about it. This is the first time that this level of communication was needed in my 15 years at the UW using Aruba. We too are a heavy Juniper shop and have recently received a MIST demo kit. We haven’t done anything with it yet due to lack of resources, but if things continue on the current path we may give it a more serious look. David David Morton Director, Network & Telecom Design/Architecture University of Washington dmorton @uw.edu tel 206.221.7814 PS I am currently on medical leave so if you wish to reply off-list, please direct it to Amel Caldwell, amelc@ uw.edu <http://uw.edu> On Jan 9, 2020, at 8:15 AM, Turner, Ryan H mailto:rhtur...@email.unc.edu> > wrote: All: We’ve been an Aruba shop for a very long time and have around 10,000 access points. While every relationship with vendors have their ups and downs, my frustration with the Aruba is finally peaking to the point that I am considering making the enormous move to choose a different vendor. The biggest reason is with the 8.X code train, and bugs that we just don’t consider appropriate to use in production. It has been one thing after the other, and my extremely talented and qualified Network Architect (Keith Miller) might as well be on the Aruba payroll as much work as he has been doing for them to solve bugs. Just when we think we have one fixed, another one crops up. The big one as of late is with 515s running 8.5 code train. We have them deployed in one of our IT buildings. Periodically, people that are connected to these APs in the 5G band will stop working. To the user, they are browsing a site, then it becomes unresponsive. If they are on their phone, they will disconnect from wifi and everything works fine on cell. Nothing makes an 802.11 network look worse than switching to cell and seeing a problem resolve. Normally, if the users disconnect then reconnect, their problems will go ahead (but I think they end up connecting in the 2.4G band). We’ve been working on this problem with them for months. It always seems as though we have to prove there is a real issue. I’m fed up with it. We are a sophisticated shop. If we have a problem, 9 times out of 10 when we bring it to the vendor, it is a real problem. I’m extra frustrated that due to issues we’ve seen in ResNet on the 8.3X train that we don’t want to abandon our 6 train on main campus. To Aruba’s credit, we purchased around 1,000 515s last year (I think around February). When they could not get good code to support them on, Aruba bought back half of them. I asked for them to buy back half because I thought for sure with the 315s that we would have instead, the issues would be fixed by the time the 315s ran out. Not looking to be the case. So, with that rant over, we are seriously considering looking to move away from Aruba (unless they get their ac
