Mobility/Wireless

Reply
Occasional Visitor
Posts: 1
Registered: ‎02-02-2012

Connection problems RFS6000 iPhone4

Hi All,

 

I have a problem since day one and finally want to solve this :)

The issue is, we are unable to connect ANY iPhone 4 to our wifi network. I'm sure I'm missing something but unable to pinpoint it.

Other devices connect without problems...

 

connection fails to Guest network (open no encryption) AND office network

I also tried different versions (5.3, 5.4 and now 5.5) same problem over and over...

 

RFS6000 and 2x an BR650AP.

 

any help would be appreciated!

 

br-rfs6000-DC9967#sho run
!
! Configuration of BR-RFS6000 version 5.5.2.0-011R
!
!
version 2.3
!
!
ip access-list BROADCAST-MULTICAST-CONTROL
 permit tcp any any rule-precedence 10 rule-description "permit all TCP traffic"
 permit udp any eq 67 any eq dhcpc rule-precedence 11 rule-description "permit DHCP replies"
 deny udp any range 137 138 any range 137 138 rule-precedence 20 rule-description "deny windows netbios"
 deny ip any 224.0.0.0/4 rule-precedence 21 rule-description "deny IP multicast"
 deny ip any host 255.255.255.255 rule-precedence 22 rule-description "deny IP local broadcast"
 permit ip any any rule-precedence 100 rule-description "permit all IP traffic"
!
mac access-list PERMIT-ARP-AND-IPv4
 permit any any type ip rule-precedence 10 rule-description "permit all IPv4 traffic"
 permit any any type arp rule-precedence 20 rule-description "permit all ARP traffic"
!
firewall-policy default
 no ip dos tcp-sequence-past-window
 dhcp-offer-convert
 no firewall enable
 alg sip
!
!
mint-policy global-default
!
wlan-qos-policy default
 voice-prioritization
 svp-prioritization
 qos trust dscp
 qos trust wmm
 accelerated-multicast autodetect classification trust
!
radio-qos-policy default
 admission-control voice
 admission-control video
 admission-control best-effort
 admission-control background
!
aaa-policy "Captive Portal"
!
aaa-policy internal-aaa
 authentication server 1 onboard controller
!
dns-whitelist Captive_Portal
 permit www.nu.nl
 permit 192.168.20.254
 permit 192.168.21.254
!
captive-portal welkom
 access-type no-auth
 webpage internal org-name **filtered**
 webpage internal org-signature **filtered** All Rights Reserved.
 use aaa-policy "Captive Portal"
 use dns-whitelist Captive_Portal
!
wlan number1
 description gasten netwerk
 ssid number1
 vlan 2
 bridging-mode tunnel
 encryption-type none
 authentication-type none
 wpa-wpa2 psk **filtered**
 wpa-wpa2 handshake timeout 1000
 wpa-wpa2 handshake attempts 5
 motorola-extensions wmm-load-information
 use captive-portal welkom
 ip dhcp trust
!
wlan number2
 description office network
 ssid number2
 vlan 1
 bridging-mode tunnel
 encryption-type tkip-ccmp
 authentication-type none
 wpa-wpa2 psk **filtered**
 wpa-wpa2 handshake timeout 1000
 wpa-wpa2 handshake attempts 5
 motorola-extensions wmm-load-information
 ip dhcp trust
 !

ap300 default-ap300
 interface radio1
 interface radio2
!
smart-rf-policy default
 channel-list 5GHz 36,40,44,48,52,56,60,64
 channel-list 2.4GHz 11,6
 channel-width 5GHz 20MHz
!

!
dhcp-server-policy "DHCP pool"
 dhcp-pool Office
  network 192.168.20.0/24
  address range 192.168.20.100 192.168.20.200
  domain-name **filtered**
  default-router 192.168.20.254
  dns-server 192.168.16.1
  respond-via-unicast
 dhcp-pool Gasten
  network 192.168.21.0/24
  address range 192.168.21.100 192.168.21.200
  lease 0 8
  domain-name **filtered**
  default-router 192.168.21.254
  dns-server 208.67.222.222 208.67.220.220
  respond-via-unicast
  static-binding hardware-address 54-26-96-99-A9-CB
   ip-address 192.168.21.51
!
!
management-policy default
 no http server
 https server
 ssh
 snmp-server user snmpoperator v3 encrypted des auth md5 0 operator
 banner motd Brocade Mobility Wireless
!
l2tpv3 policy default
!
profile br-rfs6000 default-br-rfs6000
 autoinstall configuration
 autoinstall firmware
 crypto ikev1 policy ikev1-default
  isakmp-proposal default encryption aes-256 group 2 hash sha
 crypto ikev2 policy ikev2-default
  isakmp-proposal default encryption aes-256 group 2 hash sha
 crypto ipsec transform-set default esp-aes-256 esp-sha-hmac
 crypto ikev1 remote-vpn
 crypto ikev2 remote-vpn
 crypto auto-ipsec-secure
 crypto remote-vpn-client
 interface me1
 interface up1
  ip dhcp trust
  qos trust dscp
  qos trust 802.1p
 interface ge1
  ip dhcp trust
  qos trust dscp
  qos trust 802.1p
 interface ge2
  ip dhcp trust
  qos trust dscp
  qos trust 802.1p
 interface ge3
  ip dhcp trust
  qos trust dscp
  qos trust 802.1p
 interface ge4
  ip dhcp trust
  qos trust dscp
  qos trust 802.1p
 interface ge5
  ip dhcp trust
  qos trust dscp
  qos trust 802.1p
 interface ge6
  ip dhcp trust
  qos trust dscp
  qos trust 802.1p
 interface ge7
  ip dhcp trust
  qos trust dscp
  qos trust 802.1p
 interface ge8
  ip dhcp trust
  qos trust dscp
  qos trust 802.1p
 interface wwan1
 interface pppoe1
 use firewall-policy default
 service pm sys-restart
 router ospf
!
profile br650 default-br650
 autoinstall configuration
 autoinstall firmware
 crypto ikev1 policy ikev1-default
  isakmp-proposal default encryption aes-256 group 2 hash sha
 crypto ikev2 policy ikev2-default
  isakmp-proposal default encryption aes-256 group 2 hash sha
 crypto ipsec transform-set default esp-aes-256 esp-sha-hmac
 crypto ikev1 remote-vpn
 crypto ikev2 remote-vpn
 crypto auto-ipsec-secure
 crypto load-management
 crypto remote-vpn-client
 interface radio1
  wlan Gasten bss 1 primary
  wlan Office bss 2 primary
 interface radio2
  wlan Gasten bss 1 primary
  wlan Office bss 2 primary
 interface ge1
  switchport mode trunk
  switchport trunk native vlan 1
  no switchport trunk native tagged
  switchport trunk allowed vlan 1-2
  ip dhcp trust
  qos trust dscp
  qos trust 802.1p
 interface pppoe1
 use firewall-policy default
 logging on
 controller vlan 1
 service pm sys-restart
!
rf-domain default
 location 
 contact 
 timezone Etc/GMT+1
 country-code nl
 channel-list 5GHz 52,56,60,64
 channel-list 2.4GHz 6,11
 override-smartrf channel-list 5GHz 52,56,60,64
 override-smartrf channel-list 2.4GHz 5,6,11
 control-vlan 1
!
br-rfs6000 00-24-38-DC-99-67
 use profile default-br-rfs6000
 use rf-domain default
 hostname br-rfs6000-DC9967
 ip name-server 192.168.16.1
 ip default-gateway 192.168.19.254
 interface up1
  switchport mode access
  switchport access vlan 254
  no ip dhcp trust
  no qos trust dscp
  no qos trust 802.1p
 interface ge1
  switchport mode trunk
  switchport trunk native vlan 1
  no switchport trunk native tagged
  switchport trunk allowed vlan 1-2
  ip dhcp trust
  qos trust dscp
  qos trust 802.1p
 interface ge2
  switchport mode trunk
  switchport trunk native vlan 1
  no switchport trunk native tagged
  switchport trunk allowed vlan 1-2
  ip dhcp trust
  qos trust dscp
  qos trust 802.1p

 interface vlan1
  ip address 192.168.20.254/24
  no ip dhcp client request options all
  no dhcp-relay-incoming
 interface vlan2
  ip address 192.168.21.254/24
  no ip dhcp client request options all
  no dhcp-relay-incoming
 interface vlan254
  ip address 192.168.19.253/24
  no ip dhcp client request options all
  no shutdown
 use dhcp-server-policy "DHCP pool"
 use captive-portal server welkom
 ip dns-server-forward
 logging on
 logging console debugging
 ip routing
!
br650 74-8E-F8-5F-5F-D8
 use profile default-br650
 use rf-domain default
 hostname AP1
 interface vlan1
  description Vlan1
  ip address 192.168.20.1/24
  dhcp-relay-incoming
 interface vlan2
  description Vlan2
  ip address 192.168.21.1/24
  dhcp-relay-incoming
!
br650 74-8E-F8-5F-67-E4
 use profile default-br650
 use rf-domain default
 hostname AP2
 interface vlan1
  description Vlan1
  ip address 192.168.20.2/24
  dhcp-relay-incoming
 interface vlan2
  description vlan2
  ip address 192.168.21.2/24
  dhcp-relay-incoming
!
!
end
br-rfs6000-DC9967#

Broadcom
Posts: 11
Registered: ‎03-16-2014

Re: Connection problems RFS6000 iPhone4

Hello Marcel,

 

We have had all iphone versions connect without any problems. 

I see the post was written about 1 month ago.  Are you still experiencing issues?

 

RH

Join the Community

Get quick and easy access to valuable resource designed to help you manage your Brocade Network.

vADC is now Pulse Secure
Download FREE NVMe eBook