Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 4 subscribers
  • Views 7872 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

WLAN-Probleme nach Update auf 9.510-5 - "WPA IE from (Re)AssocReq did not match with msg 2/4" - STA WPA failure

StefanB�nneken
 
Hallo zusammen,
 
nach dem Update auf 9.510-5 bei einem meiner Kunden haben wir starke Probleme mit der Stabilität des WLANs.
Aufbau: 11 AP55C - WPA2 Enterprise - (aktuell) 2,4Ghz
 
Ohne (bisher) erkennbares Muster werden die Clients mehrmals pro Stunde abgemeldet, bzw. versuchen sich an einem anderen AP anzumelden, was dann aber fehlschlägt. Teilweise wird die Verbindung nach einigen Sekunden / Minuten wieder automatisch neu aufgebaut, im extremsten Fall ist ein Neustart des betroffenen AP (insgesamt 11 im Einsatz) notwendig.
 
Zum Zeitpunkt der Verbindungsprobleme lassen sich folgende Einträge mehrfach im Log finden:
 
/var/log/wireless.log:2018:09:03-10:55:10 A4004712113XXXX hostapd: wlan1: STA ac:2b:6e:XX:XX:XX WPA: WPA IE from (Re)AssocReq did not match with msg 2/4
/var/log/wireless.log:2018:09:03-10:55:10 A4004712113XXXX awelogger[605]: id="4105" severity="info" sys="System" sub="WiFi" name="STA WPA failure" ssid="SSID" ssid_id="WLAN1.0" bssid="00:1a:8c:XX:XX:XX" sta="ac:2b:6e:XX:XX:XX" reason_code="2"
 
Der Fehler "STA WPA failure - reason_code="2"" sollte laut Changelog durch 9.510-5 behoben worden sein.
 
Wir haben bereits folgende Maßnahmen unternommen:
 
- Neustart der SOPHOS UTM SG
- mehrfacher Neustart aller APs
- Neustart eines APs, wenn die Verbindungsprobleme um diesen AP sich häufen
- Änderung der Frequenz von 5Ghz auf 2,4 Ghz
- Aktivierung und Deaktivierung "Dyn Chan"
 
Alles leider ohne Erfolg.
 
Ich wundere mich besonders über die Meldung: "WPA IE from (Re)AssocReq did not match with msg 2/4", kann aber nicht zu 100% zuordnen, ob AP oder Client die Fehlerursache ist.
 
Ist jemandem dieses Problem bekannt?
 
 
Vollständiger Log von heute morgen (nur ein Client):
 
/var/log/wireless.log:2018:09:03-08:43:19 A40047121XXXXXX hostapd: wlan1: STA ac:2b:6e:XX:XX:XX IEEE 802.11: authenticated
/var/log/wireless.log:2018:09:03-08:43:19 A40047121XXXXXX hostapd: wlan1: STA ac:2b:6e:XX:XX:XX IEEE 802.11: associated (aid 4)
/var/log/wireless.log:2018:09:03-08:43:19 A40047121XXXXXX awelogger[605]: id="4103" severity="info" sys="System" sub="WiFi" name="STA authentication" ssid="SSID" ssid_id="WLAN1.0" bssid="00:1a:8c:XX:XX:XX" sta="ac:2b:6e:XX:XX:XX" status_code="0"
/var/log/wireless.log:2018:09:03-08:43:19 A40047121XXXXXX awelogger[605]: id="4104" severity="info" sys="System" sub="WiFi" name="STA association" ssid="SSID" ssid_id="WLAN1.0" bssid="00:1a:8c:XX:XX:XX" sta="ac:2b:6e:XX:XX:XX" status_code="0"
/var/log/wireless.log:2018:09:03-08:43:19 A40047121XXXXXX hostapd: wlan1: STA ac:2b:6e:XX:XX:XX IEEE 802.1X: STA identity 'host/PC.domain.local'
/var/log/wireless.log:2018:09:03-08:43:19 A40047121XXXXXX hostapd: wlan1: STA ac:2b:6e:XX:XX:XX WPA: pairwise key handshake completed (RSN)
/var/log/wireless.log:2018:09:03-08:43:19 A40047121XXXXXX hostapd: wlan1: STA ac:2b:6e:XX:XX:XX RADIUS: starting accounting session 5B8CCDF8-0000000E
/var/log/wireless.log:2018:09:03-08:43:19 A40047121XXXXXX hostapd: wlan1: STA ac:2b:6e:XX:XX:XX IEEE 802.1X: authenticated - EAP type: 25 (unknown)
/var/log/wireless.log:2018:09:03-08:43:19 A40047121XXXXXX awelogger[605]: id="4101" severity="info" sys="System" sub="WiFi" name="STA connected" ssid="SSID" ssid_id="WLAN1.0" bssid="00:1a:8c:XX:XX:XX" sta="ac:2b:6e:XX:XX:XX"
/var/log/wireless.log:2018:09:03-10:53:31 A40047121XXXXXX awelogger[605]: id="4102" severity="info" sys="System" sub="WiFi" name="STA disconnected" ssid="SSID" ssid_id="WLAN1.0" bssid="00:1a:8c:XX:XX:XX" sta="ac:2b:6e:XX:XX:XX"
/var/log/wireless.log:2018:09:03-10:55:07 A40047121XXXXXX hostapd: wlan1: STA ac:2b:6e:XX:XX:XX IEEE 802.11: authenticated
/var/log/wireless.log:2018:09:03-10:55:07 A40047121XXXXXX hostapd: wlan1: STA ac:2b:6e:XX:XX:XX IEEE 802.11: associated (aid 3)
/var/log/wireless.log:2018:09:03-10:55:07 A40047121XXXXXX awelogger[605]: id="4103" severity="info" sys="System" sub="WiFi" name="STA authentication" ssid="SSID" ssid_id="WLAN1.0" bssid="00:1a:8c:XX:XX:XX" sta="ac:2b:6e:XX:XX:XX" status_code="0"
/var/log/wireless.log:2018:09:03-10:55:07 A40047121XXXXXX awelogger[605]: id="4104" severity="info" sys="System" sub="WiFi" name="STA association" ssid="SSID" ssid_id="WLAN1.0" bssid="00:1a:8c:XX:XX:XX" sta="ac:2b:6e:XX:XX:XX" status_code="0"
/var/log/wireless.log:2018:09:03-10:55:08 A40047121XXXXXX hostapd: wlan1: STA ac:2b:6e:XX:XX:XX IEEE 802.1X: STA identity 'host/PC.domain.local'
/var/log/wireless.log:2018:09:03-10:55:10 A40047121XXXXXX hostapd: wlan1: STA ac:2b:6e:XX:XX:XX WPA: WPA IE from (Re)AssocReq did not match with msg 2/4
/var/log/wireless.log:2018:09:03-10:55:10 A40047121XXXXXX awelogger[605]: id="4105" severity="info" sys="System" sub="WiFi" name="STA WPA failure" ssid="SSID" ssid_id="WLAN1.0" bssid="00:1a:8c:XX:XX:XX" sta="ac:2b:6e:XX:XX:XX" reason_code="2"
/var/log/wireless.log:2018:09:03-10:55:10 A40047121XXXXXX hostapd: wlan1: STA ac:2b:6e:XX:XX:XX IEEE 802.11: authenticated
/var/log/wireless.log:2018:09:03-10:55:10 A40047121XXXXXX awelogger[605]: id="4103" severity="info" sys="System" sub="WiFi" name="STA authentication" ssid="SSID" ssid_id="WLAN1.0" bssid="00:1a:8c:XX:XX:XX" sta="ac:2b:6e:XX:XX:XX" status_code="0"
/var/log/wireless.log:2018:09:03-10:55:10 A40047121XXXXXX awelogger[605]: id="4104" severity="info" sys="System" sub="WiFi" name="STA association" ssid="SSID" ssid_id="WLAN1.0" bssid="00:1a:8c:XX:XX:XX" sta="ac:2b:6e:XX:XX:XX" status_code="0"
/var/log/wireless.log:2018:09:03-10:55:10 A40047121XXXXXX hostapd: wlan1: STA ac:2b:6e:XX:XX:XX IEEE 802.11: associated (aid 3)
/var/log/wireless.log:2018:09:03-10:55:10 A40047121XXXXXX hostapd: wlan1: STA ac:2b:6e:XX:XX:XX IEEE 802.1X: STA identity 'host/PC.domain.local'
/var/log/wireless.log:2018:09:03-10:55:10 A40047121XXXXXX hostapd: wlan1: STA ac:2b:6e:XX:XX:XX WPA: pairwise key handshake completed (RSN)
/var/log/wireless.log:2018:09:03-10:55:10 A40047121XXXXXX hostapd: wlan1: STA ac:2b:6e:XX:XX:XX RADIUS: starting accounting session 5B8CCDF8-00000017
/var/log/wireless.log:2018:09:03-10:55:10 A40047121XXXXXX hostapd: wlan1: STA ac:2b:6e:XX:XX:XX IEEE 802.1X: authenticated - EAP type: 25 (unknown)
/var/log/wireless.log:2018:09:03-10:55:10 A40047121XXXXXX awelogger[605]: id="4101" severity="info" sys="System" sub="WiFi" name="STA connected" ssid="SSID" ssid_id="WLAN1.0" bssid="00:1a:8c:XX:XX:XX" sta="ac:2b:6e:XX:XX:XX"
/var/log/wireless.log:2018:09:03-11:12:07 A40047121XXXXXX awelogger[605]: id="4102" severity="info" sys="System" sub="WiFi" name="STA disconnected" ssid="SSID" ssid_id="WLAN1.0" bssid="00:1a:8c:XX:XX:XX" sta="ac:2b:6e:XX:XX:XX"
/var/log/wireless.log:2018:09:03-11:12:21 A40047121XXXXXX hostapd: wlan1: STA ac:2b:6e:XX:XX:XX IEEE 802.11: authenticated
/var/log/wireless.log:2018:09:03-11:12:21 A40047121XXXXXX hostapd: wlan1: STA ac:2b:6e:XX:XX:XX IEEE 802.11: associated (aid 3)
/var/log/wireless.log:2018:09:03-11:12:21 A40047121XXXXXX awelogger[605]: id="4103" severity="info" sys="System" sub="WiFi" name="STA authentication" ssid="SSID" ssid_id="WLAN1.0" bssid="00:1a:8c:XX:XX:XX" sta="ac:2b:6e:XX:XX:XX" status_code="0"
/var/log/wireless.log:2018:09:03-11:12:21 A40047121XXXXXX awelogger[605]: id="4104" severity="info" sys="System" sub="WiFi" name="STA association" ssid="SSID" ssid_id="WLAN1.0" bssid="00:1a:8c:XX:XX:XX" sta="ac:2b:6e:XX:XX:XX" status_code="0"
/var/log/wireless.log:2018:09:03-11:12:21 A40047121XXXXXX hostapd: wlan1: STA ac:2b:6e:XX:XX:XX IEEE 802.1X: STA identity 'host/PC.domain.local'
/var/log/wireless.log:2018:09:03-11:12:21 A40047121XXXXXX hostapd: wlan1: STA ac:2b:6e:XX:XX:XX WPA: WPA IE from (Re)AssocReq did not match with msg 2/4
/var/log/wireless.log:2018:09:03-11:12:21 A40047121XXXXXX awelogger[605]: id="4105" severity="info" sys="System" sub="WiFi" name="STA WPA failure" ssid="SSID" ssid_id="WLAN1.0" bssid="00:1a:8c:XX:XX:XX" sta="ac:2b:6e:XX:XX:XX" reason_code="2"
/var/log/wireless.log:2018:09:03-11:12:21 A40047121XXXXXX hostapd: wlan1: STA ac:2b:6e:XX:XX:XX IEEE 802.11: authenticated
/var/log/wireless.log:2018:09:03-11:12:21 A40047121XXXXXX hostapd: wlan1: STA ac:2b:6e:XX:XX:XX IEEE 802.11: associated (aid 3)
/var/log/wireless.log:2018:09:03-11:12:21 A40047121XXXXXX awelogger[605]: id="4103" severity="info" sys="System" sub="WiFi" name="STA authentication" ssid="SSID" ssid_id="WLAN1.0" bssid="00:1a:8c:XX:XX:XX" sta="ac:2b:6e:XX:XX:XX" status_code="0"
/var/log/wireless.log:2018:09:03-11:12:21 A40047121XXXXXX awelogger[605]: id="4104" severity="info" sys="System" sub="WiFi" name="STA association" ssid="SSID" ssid_id="WLAN1.0" bssid="00:1a:8c:XX:XX:XX" sta="ac:2b:6e:XX:XX:XX" status_code="0"
/var/log/wireless.log:2018:09:03-11:12:22 A40047121XXXXXX hostapd: wlan1: STA ac:2b:6e:XX:XX:XX IEEE 802.1X: STA identity 'host/PC.domain.local'
/var/log/wireless.log:2018:09:03-11:12:22 A40047121XXXXXX hostapd: wlan1: STA ac:2b:6e:XX:XX:XX WPA: pairwise key handshake completed (RSN)
/var/log/wireless.log:2018:09:03-11:12:22 A40047121XXXXXX hostapd: wlan1: STA ac:2b:6e:XX:XX:XX RADIUS: starting accounting session 5B8CCDF8-00000019
/var/log/wireless.log:2018:09:03-11:12:22 A40047121XXXXXX hostapd: wlan1: STA ac:2b:6e:XX:XX:XX IEEE 802.1X: authenticated - EAP type: 25 (unknown)
/var/log/wireless.log:2018:09:03-11:12:22 A40047121XXXXXX awelogger[605]: id="4101" severity="info" sys="System" sub="WiFi" name="STA connected" ssid="SSID" ssid_id="WLAN1.0" bssid="00:1a:8c:XX:XX:XX" sta="ac:2b:6e:XX:XX:XX"
/var/log/wireless.log:2018:09:03-11:13:26 A40047121XXXXXX awelogger[605]: id="4102" severity="info" sys="System" sub="WiFi" name="STA disconnected" ssid="SSID" ssid_id="WLAN1.0" bssid="00:1a:8c:XX:XX:XX" sta="ac:2b:6e:XX:XX:XX"
/var/log/wireless.log:2018:09:03-11:13:32 A40047121XXXXXX hostapd: wlan1: STA ac:2b:6e:XX:XX:XX IEEE 802.11: authenticated
/var/log/wireless.log:2018:09:03-11:13:32 A40047121XXXXXX hostapd: wlan1: STA ac:2b:6e:XX:XX:XX IEEE 802.11: associated (aid 3)
/var/log/wireless.log:2018:09:03-11:13:32 A40047121XXXXXX awelogger[605]: id="4103" severity="info" sys="System" sub="WiFi" name="STA authentication" ssid="SSID" ssid_id="WLAN1.0" bssid="00:1a:8c:XX:XX:XX" sta="ac:2b:6e:XX:XX:XX" status_code="0"
/var/log/wireless.log:2018:09:03-11:13:32 A40047121XXXXXX awelogger[605]: id="4104" severity="info" sys="System" sub="WiFi" name="STA association" ssid="SSID" ssid_id="WLAN1.0" bssid="00:1a:8c:XX:XX:XX" sta="ac:2b:6e:XX:XX:XX" status_code="0"
/var/log/wireless.log:2018:09:03-11:13:33 A40047121XXXXXX hostapd: wlan1: STA ac:2b:6e:XX:XX:XX IEEE 802.1X: STA identity 'host/PC.domain.local'
/var/log/wireless.log:2018:09:03-11:13:34 A40047121XXXXXX hostapd: wlan1: STA ac:2b:6e:XX:XX:XX WPA: WPA IE from (Re)AssocReq did not match with msg 2/4
/var/log/wireless.log:2018:09:03-11:13:34 A40047121XXXXXX awelogger[605]: id="4105" severity="info" sys="System" sub="WiFi" name="STA WPA failure" ssid="SSID" ssid_id="WLAN1.0" bssid="00:1a:8c:XX:XX:XX" sta="ac:2b:6e:XX:XX:XX" reason_code="2"
/var/log/wireless.log:2018:09:03-11:13:34 A40047121XXXXXX hostapd: wlan1: STA ac:2b:6e:XX:XX:XX IEEE 802.11: authenticated
/var/log/wireless.log:2018:09:03-11:13:34 A40047121XXXXXX hostapd: wlan1: STA ac:2b:6e:XX:XX:XX IEEE 802.11: associated (aid 3)
/var/log/wireless.log:2018:09:03-11:13:34 A40047121XXXXXX hostapd: wlan1: STA ac:2b:6e:XX:XX:XX IEEE 802.1X: STA identity 'host/PC.domain.local'
/var/log/wireless.log:2018:09:03-11:13:34 A40047121XXXXXX awelogger[605]: id="4103" severity="info" sys="System" sub="WiFi" name="STA authentication" ssid="SSID" ssid_id="WLAN1.0" bssid="00:1a:8c:XX:XX:XX" sta="ac:2b:6e:XX:XX:XX" status_code="0"
/var/log/wireless.log:2018:09:03-11:13:34 A40047121XXXXXX awelogger[605]: id="4104" severity="info" sys="System" sub="WiFi" name="STA association" ssid="SSID" ssid_id="WLAN1.0" bssid="00:1a:8c:XX:XX:XX" sta="ac:2b:6e:XX:XX:XX" status_code="0"
/var/log/wireless.log:2018:09:03-11:13:34 A40047121XXXXXX hostapd: wlan1: STA ac:2b:6e:XX:XX:XX WPA: pairwise key handshake completed (RSN)
/var/log/wireless.log:2018:09:03-11:13:34 A40047121XXXXXX hostapd: wlan1: STA ac:2b:6e:XX:XX:XX RADIUS: starting accounting session 5B8CCDF8-0000001A
/var/log/wireless.log:2018:09:03-11:13:34 A40047121XXXXXX hostapd: wlan1: STA ac:2b:6e:XX:XX:XX IEEE 802.1X: authenticated - EAP type: 25 (unknown)
/var/log/wireless.log:2018:09:03-11:13:34 A40047121XXXXXX awelogger[605]: id="4101" severity="info" sys="System" sub="WiFi" name="STA connected" ssid="SSID" ssid_id="WLAN1.0" bssid="00:1a:8c:XX:XX:XX" sta="ac:2b:6e:XX:XX:XX"


This thread was automatically locked due to age.
  • 0

    Hallo Stefan,

    Erstmal herzlich willkommen hier in der Community !

    Was sagt Sophos dazu?

    MfG - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson

    Hallo Bob,

     

    danke für die Antwort. Korrigier mich, wenn ich falsch liege, aber wir benötigen einen Premium Support-Vertrag um Sophos direkt kontaktieren zu können, oder? (den wir leider nicht haben)

    Dies wurde mir zumindest beim letzten mal gesagt, als ich ein Ticket bei Sophos eröffnen wollte und deckt sich mit den Informationen, die ich hier finde:

    https://www.sophos.com/de-de/support/technical-support.aspx

  • 0 in reply to StefanB�nneken

    Hallo Stefan,

    das ist so korrekt.
    Möchtest du aber trotzdem den Sophos Support einschalten musst du das Ticket über deinen Sophos Partner/Reseller erstellen lassen.

    Gruß
    DKKDG

  • 0 in reply to StefanB�nneken

    (Sorry, Stefan, but my German-speaking brain isn't creating thoughts at the moment. [:(])

    If you have a knowledgeable Sophos Solution Partner, you're better off paying them than paying for Premium Support.  All Premium buys you is the ability to open your own tickets.  I don't let any of my clients buy Premium, but I would recommend it to organizations that can't find a strong partner.  It takes time to learn how to work with support organizations and most IT folks already have too much on their plates.

    MfG - Bob (Bitte auf Deutsch weiterhin.)

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0

    Bist Du bezüglich Deines Problems weiter gekommen? Wenn ja, was war die Lösung?

Unfiltered HTML