2017-09-19

iPhone roaming with IPv6

As you know, this has been a challenge!

In summary - using iPhones and roaming between WiFi access points on a network with IPv6 enabled does not work well! It breaks some times - the phone ends up in a state where it thinks it is connected to an AP but there is no traffic working at all (IPv4 or IPv6). Turning WiFi "off" then "on" on the phone fixes.

This has been reported by people using several different routers (which allocate IPv4 and IPv6 addresses) with ubiquiti APs. We did a lot of testing with ubiquiti to try and find the cause, but to no avail. There was suggestion it could be related to the FireBrick, but as the whole process of AP roaming does not involve the "router" device in any way, with no packets to or from it needed or seen, then it cannot be the "router" that is the cause of any problem. The fact it has been seen by others with other routers left it as either ubiquiti or iPhone.

The good news is that it is looking a lot like ubiquiti are off the hook on this one at last. It pretty much has to be an iPhone bug at this point. IPv6 is still not common enough for this have to been noticed a lot, and of course it is only noticed with routers that do IPv6, such as FireBrick.

Dumbing things down...

Having come to an impasse with ubiquiti I gave up, and got some other APs. I went for cheap(ish) xClaim ones. These are made by Ruckus with is a well known name in APs.

They do what they say on the tin, and are quite usable, and simple to set up (if prepared to use their cloud based config). But they do not do "roaming", you just have to trust the device to switch to a new AP when it wants to. This works 100% but means a gap in connectivity, it is far from seamless.

Stepping things up a bit...

Then I decided to then try some higher end ones, the Aruba APs from Hewlett Packard, another good name. I have some IAP-305(RW) APs. The config is web based, very flexible, controller based logic but one of the APs takes on that role so no separate controller needed. You can have a separate controller for larger installations. 255 associations per AP is a lot, and even 15 SSIDs per radio for fun. Lots of bells and whistles (even 3G/4G dongle fall back, PPPoE, VPN, all sorts).

I set them up, and bam, I got my iPhone playing up yet again in exactly the same way.

The good news is I can tinker and fine tune, and turn on and off specific roaming protocols on a per SSID basis. Turning off 802.11r fixed the roaming issue, which confirms it is the 802.11r that is the issue. I left 802.11k and 802.11v on as they seem to cause no issues. The iPhone does support 802.11k and 802.11v so having these enabled helps roaming anyway.

So sounds like we'll have to wait for iPhone to fix 802.11r support. I am raising on the Aruba support forum as well though in case they can help.

22 comments:

  1. Good to hear that you have made progress. I have an iPhone 5 which refuses to roam with Ubiquiti APs. However, an iPhone 6S plus will roam. Very odd.

    ReplyDelete
  2. Glad you have concluded it is probably not a Ubiquiti problem as we have quite a lot of Ubiquiti APs deployed on client sites.

    ReplyDelete
  3. Now you've narrowed the problem down to 802.11r, perhaps Ubiquiti would be able to add an option to disable this.

    It's a shame Apple are apparently so big that they don't have to bother fixing or supporting their products, and instead can just expect others to work around.

    ReplyDelete
    Replies
    1. Sadly I have found that to be the case for years. Apple have always been a bit of an oddball on the technical front. Give me Windows and Microsoft any day.

      Delete
    2. There's nothing to disable with Unifi as 802.11r/k/v is still in beta (its on the testing code branch).

      802.11r without k/v doesn't play well with iOS but "works" with OSX (it doesn't but OSX is hard-coded to roam at RSSI below -75dBm, so it looks like it works).

      All works fine with Android of course....

      Delete
  4. Can we get a bit of a review on the Aruba kit please Adrian?

    For those of you wondering - if Adrian considers Xclaim @ £186 per AP cheap I really would love to see the Aruba stuff in a review.

    Does it make the tea too? :)

    ReplyDelete
    Replies
    1. I'll have to see what I can do - the issue really is that it has a lot of bells as whistles which I am unlikely to user here or in the office, so the review will mostly cover a few APs in office and home "just working". May be interesting if we do Reading Beer Festival or something again, as that would test the load a lot better.

      Delete
    2. Oh, and yeh, the top xClaim are not that cheap are they, sorry. The Aruba do seem to have far too many variants and really do not make it clear which does what in a way I can understand.

      Delete
    3. Well £186 per AP is certainly expensive compared to the consumer crap from the likes of LinkSys, Zyxel, D-Link and Draytek (yes, Draytek APs are consumer crap. We have had to rip them out of client sites at our own cost).

      But the normal top-of-the range Unifi is currently £120 each. That's the UAP-AC-Pro.

      And Unifi now have an "ultimate" product: their HD model. Which is over £300 each. I have one, but only for testing in my own house and do not, yet, recomend any clients buy them. 1.3 Gbps just isn't needed - yet - for most wireless devices given the lines into the premises are normally 80 Mbps to 300 Mbps at best.

      Delete
    4. The UAP-AC-HD isn't their top of the range unit anymore, its the UAP-AC-SHD (4 radios, 5 cpus) which is technically still in beta. Also if you paid over £300 for the HD then they saw you coming, you can get them for £208 (just don't buy from linitx)...

      Delete
    5. Checked accounts. We paid £280 for the HD, plus VAT. The £280 included delivery. Purchase was 3 March when they were first available and we did get it from LinITX as they seemed to be the first people to reliably get hold of one. Will look at the SHD model although hard to believe more than a few percent of SHD users will ever utilise its full potential.

      Delete
    6. linitx have been trying (hard) to reduce their unifi stock levels - they have all sorts of obsolete/ancient kit still there so I'm not using them again until I know they have new stock.

      Last UAP I got from them had a datecode of 2015 (bought in July 2017) so its best to avoid them for a while.

      They're still trying to get rid of the 24V passive-only UAPs which haven't been made in over a year and I see the (completely illegal to use outside in the UK/ETSI area as it only works on C36-48) UAP-AC-Outdoor is still on sale - for the totally ludicrous price of £348 & that's with a 20% "discount". That one hasn't been manufactured in over two years.

      LinITX have lost the plot IMHO.

      Delete
    7. So who's a good alternative?

      Delete
    8. I have bought quite a few from BroadbandBuyer and don't recall any problems.

      But I do remember problems with WiFi Stock (UK) ltd who are an official Unifi dealer. I was most dissatisfied with them.

      Delete
    9. Re: the old UAP-AC-Outdoor that only does 36-48, newer APs aren't much better until the software is fixed, they'll allow switching to an indoor-only channel if radar detect is tripped. (5.6 adds a setting to disable indoor channels per-AP, but it doesn't work properly yet).

      Also related, but sellers seem reluctant to mention it, UAP-AC-M won't do wireless uplink on channels that require DFS (which must be used on all the UK outdoor channels). https://community.ubnt.com/t5/UniFi-Wireless/Why-was-DFS-channel-support-for-wireless-uplink-removed/m-p/1735339#M192730

      Delete
    10. UAP-AC-M wireless uplink comment retracted, as pointed out by a forum poster the release notes now have "DFS channels can not be used for wireless uplink in the US."

      Radar detect related channel switching is still a problem however. Hopefully that will be fixed soon :)

      Delete
  5. Interesting views on LinITX - thanks. Personally I have not had a problem with their firm, but I will bear all that in mind.

    ReplyDelete
    Replies
    1. LinITX are fine. Prices are fair, they're *fast* (dispatching and replying to mail), don't lie about stock levels, and they include UK mains leads.

      FWIW another UK distributor currently lists the old Broadcom-based UAP-AC-Outdoor at 384 *plus* vat. (Not that anyone should buy it).

      Delete
    2. That's true - they do include a UK power cable. But wouldn't it be illegal not to when selling in the UK to a UK customer and delivering to a UK address and accepting payment from a UK source to a UK destination in GBP ?

      Not that this stops some firms from failing to do so.

      Delete
  6. I'd just like to clear up the misinformation that has been posted on this thread.

    We are not trying to reduce our stock levels, we just had a new delivery on the 12th September. Our deliveries are getting larger, not smaller. Stock levels are clearly shown on our website.

    I'm also not sure why 'anonymous' got one with such an old datecode, please get in touch with the details and we will replace it.

    The passive 24v UAP-300 are new stock and we still see new demand for them from some customers who only want a single band model.

    The passive 24v only UAP-AC-LITE and UAP-AC-LR continue to be delivered by Ubiquiti in 5-packs, even in the latest shipment, the singles packs are now 802.3af compliant

    We have just 11 left of the UAP-AC-Outdoor model, and they were supplied to us direct from Ubiqiuiti in late 2016. The price is based on what we paid for them.

    The comment related to DFS relates to FCC regulation in the US, the DFS channels are usable in the UK, for both AP and wireless uplink.

    Nick
    https://linitx.com

    ReplyDelete
  7. A supplier worth looking at for WiFi gear is msdist.
    http://www.msdist.co.uk
    Lovely guys to chat with on the phone and do training with.

    ReplyDelete

Comments are moderated purely to filter out obvious spam, but it means they may not show immediately.

Missing unix/linux/posix file open option

What I would like is a file open option for "create replacement file". The idea is that this makes a new inode in the same mount p...