Controller Based WLANs

Benefits and limitations of IP classification feature with Aruba OS 6.5
Q:

Benefits and limitations of IP classification feature with Aruba OS 6.5



A:

IP classification service helps in identifying the malicious IP addresses and the origin. 

This feature once enabled will cause all L3 traffic to be classified. All the sessions shall be classified with reputation (either malicious or clean) and geolocation (as originating from a specific location, which can be either country or more specific city) information. 


Benefits

  • Identify and prevent any attack from the malicious hosts.
  • Identifying the geolocation of traffic originating from or destined to.
  • Identifying the location from where maximum spyware/malware/DDOS attacks are originated from.
  • Geolocation visibility information about the traffic flows.
  • Ability to formulate firewall policies based on geolocation of IP address to permit/deny traffic.


Limitations:

  • This feature is not support in Bridge Mode
  • For split-tunnel mode, this feature is applicable only for split-tunneled traffic destined to the controller.
  • IP classification database is available from the vendor only for IPv4 addresses 
Version History
Revision #:
2 of 2
Last update:
‎03-24-2017 07:55 PM
Updated by:
 
Labels (1)
Contributors
Search Airheads
Showing results for 
Search instead for 
Did you mean: 
Is this a frequent problem?

Request an official Aruba knowledge base article to be written by our experts.