02-10-2011 09:30 AM
I am in the middle of a project where the customer wants to log its guest users activities to the session level (knowing what server and TCP/UDP port every guest user accessed) and I was thinking if Airwave can collect that level of information.
If not, is there any way to configure the Aruba Controller to log that somehow? May be using a Syslog server?
02-10-2011 08:00 PM
You need to enable logging on the permit ACL for your guest network and then send it to a syslog server to see the ip addresses and ports.
Aruba Customer Engineering
Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base
Validated Reference Design Guides : http://community.arubanetworks.com/t5/Validated-Reference-Design/tkb-p/Aruba-VRDs
02-11-2011 02:35 AM
02-11-2011 07:01 AM
02-11-2011 10:33 AM
Please add your vote on this feature at
Thanks, my vote is there. The URL came out broke, so I am reposting it, in case someone else need to vote (hope mine did not brake):
So, with that said, it is my understand that (hopefully) the loggin process did not demand too much process from the controller? Or it can be an issue?
02-24-2011 12:08 PM
We use Scrutinizer for this. It collects the netflows from our Cisco router(s) and analyzes the traffic. It also collects sFlow information.
They do have a free version with limitations, but won't cost you more than the hardware to run the product.
Of course since our information is collected from the router, it gives all traffic, from all users, and not just wireless users. I don't know your network configuration or equipment, but it may be possible to configure your switch to send information only from the port(s) to which your Aruba equipment is connected.
I only evaluated the program several years ago. After it was purchased the implementation was turned over to another engineer. Since then pricing/licensing has changed, along with increased functionality and features. It can get very complicated and granular if you need that information.
I haven't played with reports, but at any given moment I can go into any of our offices and tell you where any (and every) user is going, and which ports they are using.
Not sure if that is something that would be useful to you or not, you'd have to check it out and see.