Unstable 802.1x/VLAN on GS1900-8

lgp

We're experiencing instabilities around clients that authenticate with 802.1x doesn't get redirected to the correct VLAN. A cable disconnect/connect or reboot may help. On a Windows client these commands helped: netsh lan reconnectipconfig /releaseipconfig /renew. Any tips to improve this?

Zyxel_Melen

Hi @lgp

Could you help to clarify:

1. Does this issue happen randomly? Or it is happening periodically?
2. Is there other switches in this network? If so, do these switches have this issue?

Since the switch assign VLAN bases on the Radius reply attributes, so need you to capture the Radius packets on the Radius server to check the attributes when issue happens.

• If the assign VLAN is incorrect, then this issue is on the Radius server.
• If it is correct, please check the MAC table on the GS1900. And collect the tech support file for us to investigate further. (Require item: Radius packets, tech support file.)

P.S.1. Check MAC table path: Menu > Monitor > MAC table

P.S.2. Collect diagnostic file: Maintenance > Configuration > Backup

lgp

It happens almost daily with our macOS and Windows clients. The GS1900 is connected to a larger network running Aruba/HPE switches and these has been very stable and working fine.

running-config.cfg.zip

I have included the Mac table and running configuration. I will try to check for Radius packets.

Zyxel_Melen

Hi @lgp

Thanks for the information. Please help to select the tech-support before download in Maintenance > Configuration > Backup page. It will collect other information for us to investigate this issue.

Additionally, from the MAC table, it seems like port 1 is the uplink port. May I know which port and VLAN had this issue? Also, in your topology, the GS1900 acts as an access switch. Are there any HPE/Aruba switch acts as an access switch? Or the switches you mentioned are aggregate/core switches?