My wireless APs are currently running 29.6.1.  On some of my networks, I've notice that my aps are sending Accounting-Stop much earlier than they are supposed to.  On my MAB ssid, I have a captive portal set up to send a disconnect request after successful login.  This is when I'm used to seeing Accounting-Stop (after Disconnect-Ack).  Since the stop is being sent too early, (directly after MAB authentication) my radius server assumes they have already disconnected, so it's not sending a disconnect to the AP.     Has anyone seen this?  I have a ticket open, but I'm curious. ... View more

So i've run into an interesting issue.  We have a guest portal configured on ClearPass, which sends a COA disconnect request on port 3799.  Yesterday, we noticed that guests were still locked within the walled garden after authenticating.  After looking at a packet capture, the connection looks as expected: Guest signs in, CPPM send disconnect, AP sends disconnect-ACK... but the client is still locked.  Reauthenticating manually works, since the client is already registered.     My question is: Why are my APs all of a sudden unable to disconnect clients via COA, and most importantly, why are they sending the disconnect-ACK, when the client is clearly still connected? ... View more