spamApTask0: Sep 22 11:26:03.453: %CAPWAP-3-CCO_ASD_LOG_ERROR: spam_lrad.c:94457 CCO ASD logging failed on AP-MAC 00:2c:c8:62:17:50, reason: Index not found unable to delete tmp log
*spamApTask0: Sep 22 11:26:03.452: %CAPWAP-3-DTLS_CON_CLOSED: capwap_ac_dtls.c:149 Not sending DTLS session closed notification to CAPWAP for AP 2c:5a:0f:53:2c:e0
*spamApTask0: Sep 22 11:26:03.452: %CAPWAP-3-DTLS_CLOSED_ERR: capwap_ac_sm.c:7130 2c:5a:0f:53:2c:e0: DTLS connection closed forAP 10:228:135:13 (57718), Controller: 10:228:135:1 (5246) Multiple Join Request
*osapiBsnTimer: Sep 22 11:26:00.170: %SIM-3-ARP_SND_FAIL: sim.c:1692 Unable to send ARP Request. Local MAC: 68:CA:E4:40:20:60.Ip Addr: 1.135.228.10Interface # 1. Vlan Id: 0
*sntpReceiveTask: Sep 22 11:26:00.076: %DNS-3-GETADDRINFO_ERR: dns_query.c:240 Internal Error: getaddrinfo failed for 2.ciscome.pool.ntp.org
*sntpReceiveTask: Sep 22 11:26:00.076: %DNS-3-GETADDRINFO_ERR: dns_query.c:240 Internal Error: getaddrinfo failed for 1.ciscome.pool.ntp.org
*sntpReceiveTask: Sep 22 11:26:00.075: %DNS-3-GETADDRINFO_ERR: dns_query.c:240 Internal Error: getaddrinfo failed for 0.ciscome.pool.ntp.org
*spamApTask0: Sep 22 11:25:58.457: %LWAPP-3-LWAPP_JOIN_AP_JOIN_ERR: capwap_ac_sm.c:4953 The system has received a join request from AP 10.228.135.13 that doesn'tsupport image download through GUI. Change the image downloadmode to either TFTP or CCO

 - Could you start by using and or configuring a 'local' NTP server on the 1852 , such as you use on the intranet and that the controller can reach (too).

 M.

 - As for , >...%SIM-3-ARP_SND_FAIL , please check this thread : https://community.cisco.com/t5/wireless/strange-error-sim-3-arp-snd-fail-in-logging/td-p/1180653 , check if actions mentioned can help.

 M.

8.5.171  should be JF14 , I checked matrix. I mentioned different release, that should be a test. diff release should be have a master and supporting list to 18xx 16xx 17xx.

as I mentioned, I have 2500 in current wlc, and I want to use ME to build connection on 18xx to 16xx and 17xx.

of course in diff vlan

The system has received a join request from AP 10.228.135.13 that doesn'tsupport image download through GUI. Change the image downloadmode to either TFTP or CCO

whether I need to use a degrade verson on 1700, then can be auto upgrade during the connected with ME?

ap3g2 ap3g2-k9w8-mx.153-3.JF14

AIR-AP1850-K9-ME-8-5-171-0

my 2500 also 8.5.171, I tested. connected 1700 to 2500 , then get JF14 version from controller, reset all config, change connection to ME. still have same issue on DLTS...

Hello Arshad,

Thanks. As @Rich R mentioned, I find out the zip file as before, ap3g2-k9w8-mx.153-3.JF14 that is the target package in zip file ap3g2, however, that still not correct. I mean, that should be not a version problem. 

you can see, in 8.10.xxx.x , 1850 still can mount a 1700. (1600 should be can be use in previous version, 8.5.xxx.x)

from AP side, you can see, there should be a problem on DTLS-5-SEND_ALERT duing the sendjoin...

The Contoller should be close the DTLS with some reason.

*Sep 22 03:32:37.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 10.228.135.1 peer_port: 5246
*Sep 22 03:32:37.251: %CAPWAP-5-DTLSREQSUCC: DTLS connection created sucessfully peer_ip: 10.228.135.1 peer_port: 5246
*Sep 22 03:32:37.255: %CAPWAP-5-SENDJOIN: sending Join Request to 10.228.135.1
*Sep 22 03:32:42.251: %CAPWAP-5-SENDJOIN: sending Join Request to 10.228.135.1
*Sep 22 03:32:42.255: %DTLS-5-ALERT: Received WARNING : Close notify alert from 10.228.135.1
*Sep 22 03:32:42.255: %DTLS-5-SEND_ALERT: Send FATAL : Close notify Alert to 10.228.135.1:5246
*Sep 22 03:32:42.255: AP has SHA2 MIC certificate - Using SHA2 MIC certificate for DTLS.

I mentioned, I tried 2500 as controller, 1700 can be enrolled. I think that should be not a problem on AP. maybe on ME Controller.