Wireless Access

Reply
Occasional Contributor I
Posts: 8
Registered: ‎04-28-2009

Bridged Access Point and UDP 4500 Traffic Burst

I've seen this issue mentioned in a few post, but I haven't seen a clear solution.

 

We've got a branch office connected over a private MPLS WAN link. The site has got 2 AP65 Access Points set up in Bridge Mode (campus APs and CPSEC).


We are currently seeing a recurring issue where there is a large amount of IPSEC NATT traffic (udp 4500) from the Head Office controller to one Access Point.

This AP/Controller traffic quickly uses up all the available bandwidth between the branch and head office and all other inter site traffic is negatively impacted.

 

Any ideas on what to look for?

 

We are currently running Aruba OS version 5.0.4.9.

 

Thanks

 

L

Guru Elite
Posts: 21,037
Registered: ‎03-29-2007

Re: Bridged Access Point and UDP 4500 Traffic Burst

[ Edited ]

If your bridge SSID is the only one on that access point, you should not see alot of UDP4500 traffic.  If you also have a tunneled SSID, like a guest SSID, that is likely where your traffic is being generated.

 

[Mod note: removed quote of OP]



Colin Joseph
Aruba Customer Engineering

Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base

Occasional Contributor I
Posts: 8
Registered: ‎04-28-2009

Re: Bridged Access Point and UDP 4500 Traffic Burst

Hi cjoseph,

 

That is what I would expect.

 

There is a tunnelled guest SSID but I believe tunnelled traffic to the controller uses GRE.

 

In addition, the UDP 4500 traffic bursts occur when there is minimal or no user activity on the bridged or tunnelled SSIDs. I have verified this using Airwave and netflow traffic stats.

 

Regards

 

L

Guru Elite
Posts: 21,037
Registered: ‎03-29-2007

Re: Bridged Access Point and UDP 4500 Traffic Burst

Make sure that "Drop Broacast and Multicast" is enabled on the Virtual AP for that guest SSID.  Downstream broadcasts are a major unseen cause of traffic.



Colin Joseph
Aruba Customer Engineering

Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base

Occasional Contributor I
Posts: 8
Registered: ‎04-28-2009

Re: Bridged Access Point and UDP 4500 Traffic Burst

Thanks!

 

I'll give that a go and monitor for a few days.

 

 

L

 

Search Airheads
Showing results for 
Search instead for 
Did you mean: