As the programmer at a small non-profit I'm also the assumed IT guy. Computer stuff is all the same right? sigh
Anyway, we have a small building served by a single Unifi AP-LR, yes it is old. This has been fantastic until recently.
The configuration:
- We broadcast 2 ssids. One for staff and one for guests.
- Each network has its own vlan and connects directly to our UTM box.
- All block actions are logged.
- The guest network has access only to the internet and no access to any other part of our network.
- No captive portal.
- Each wireless network has its own /24 address block.
- Snort IDS on WAN
- Transparent Squid Proxy
This has all worked fine until this week.
The symptoms:
- Some devices work on the guest ssid but others time out when accessing the internet. However,
- All devices get an ip address.
- DNS queries work on all devices.
- Some services and webpages work on the "broken" devices but most do not but DNS is working on the broken pages.
- The devices that I am testing with are both phones, one android, and one iPhone that fail to connect.
- Laptops seem to work fine.
- The devices that fail do work properly on the other ssid.
- There are no log entries showing traffic from those phones being dropped or blocked. All services seem to be playing nice.
- The AP also doesn't seem to want to inform the controller so I have no data there. Yes, I know how to ssh in and set-inform.
- We have plenty of dhcp leases available.
Any ideas? Thanks for your help!
tl;dr
Some devices work on our guest wireless while others simultaneously do not.
No comments:
Post a Comment