Hi all, I just noticed Cisco finally posted a comprehensive list of event definitions for the 3000 concentrator. If you have access, you can d/l it from:http://www.cisco.com/cgi-bin/tablebuild.pl/vpn3000-3desRegards,Mike
FYI, the bug id is CSCsb88424. Supposedly fixed in 3.2(116.21), however it looks like it was not, or I ran across a different strain of the bug. DEs are investigating now.
I ran across the same problem and it turned out to be a bug. The JOIN message from the AP was being fragmented (into three packets) and not properly understood by the controller, resulting in the controller claiming the AP had an invalid cert. If y...
"no sysopt connection permit-ipsec" is the default mode for this sysopt, and is necessary to keep it at "no" if you would like to apply an acl to the ingress interface.As far as the acl to use, that's something you'll have to construct based on what ...