Symptom
ACLs, AVC settings are missing from access points.
At the time when the AP settings go missing, messages similar to the following may be seen in the WLC msglog:
Capwap Retransmission Queue Full for AP 38:ed:18:cd:f0:60
with "debug capwap errors enable" in effect, errors similar to the following may be seen:
*spamReceiveTask: Aug 22 22:21:09.342: [PA] 00:11:0a:04:60:4d Unable to get RadId. Sending of PMK cache entry to all APs in flexconnect group failed :: bssid 00:00:00:00:00:00
*spamApTask1: Aug 22 22:21:43.809: [PA] 38:ed:18:cd:f0:60 Queue already full
*spamApTask1: Aug 22 22:21:43.809: [PA] 38:ed:18:cd:f0:60 Failed to send [XXX] payload
For the "Failed to send [XXX] payload" errors, a variety of values of [XXX] may be seen:
Conditions
Seen with FlexConnect APs, especially with the following conditions:
* FlexConnect ACLs and/or AVC in use
* large number of WLANs in use
Workaround
Re-apply from the WLC again
Further Problem Description
This bug is addressed via the implementation of a new command:
"config advanced capwap-message-aggregation enable"
This setting always should be enabled when using FlexConnect. (It is enabled
by default in 8.6, disabled by default in earlier AireOS versions.)
