|
FortiGate may be unable to manage the FortiAP, even though the Security Fabric Connection is enabled on the interface.
Packet captures indicate that the FortiGate is not responding to the CAPWAP traffic it receives.
2024-04-04 11:47:18.130238 Network in 10.20.47.101.5246 -> 10.20.47.97.5246: udp 284
2024-04-04 11:47:19.129022 Network in 10.20.47.101.5246 -> 10.20.47.97.5246: udp 284
2024-04-04 11:47:20.128723 Network in 10.20.47.101.5246 -> 10.20.47.97.5246: udp 284
Crashlog may indicate that the capwap ac daemon (cw_acd) and capwap wtp daemon(cw_wtpd) are restarting every few seconds:
diagnose debug crashlog read
16375: 2024-04-04 12:11:27 the killed daemon is /bin/cw_wtpd: status=0x100
16376: 2024-04-04 12:11:28 the killed daemon is /bin/cw_acd: status=0x100
16377: 2024-04-04 12:11:30 the killed daemon is /bin/cw_wtpd: status=0x100
16378: 2024-04-04 12:11:30 the killed daemon is /bin/cw_acd: status=0x100
16379: 2024-04-04 12:11:33 the killed daemon is /bin/cw_wtpd: status=0x100
16380: 2024-04-04 12:11:33 the killed daemon is /bin/cw_acd: status=0x100
16381: 2024-04-04 12:11:35 the killed daemon is /bin/cw_wtpd: status=0x100
16382: 2024-04-04 12:11:36 the killed daemon is /bin/cw_acd: status=0x100
16383: 2024-04-04 12:11:38 the killed daemon is /bin/cw_wtpd: status=0x100
16384: 2024-04-04 12:11:38 the killed daemon is /bin/cw_acd: status=0x100
High CPU utilization may be intermittently observed for these daemons that are crashing:
cw_acd 24967 R 67.4 1.5 1
cw_acd 24989 R 26.5 0.6 2
cw_wtpd 24990 R 15.6 0.6 1
cw_acd 25000 R 58.8 1.4 6
Additionally, the following errors may be present in the cw_acd debug output;
diagnose debug application cw_acd -1
diagnose debug enable
00000.545 511 cwUdpSocketInit: bind failed for sock (9) --Address already in use
00000.545 511 cwWtpInit: failed to get UDP socket (-1) for capwap sniff
00000.545 511 /bin/cw_wtpd/main: cwWtpInit() failed.
This issue has been resolved in FortiOS v7.2.9, v7.4.4, v7.6.0. As a workaround, reboot the FortiGate.
|
