Wireless Access

Reply
Occasional Contributor I
Posts: 7
Registered: ‎08-25-2011

Enforce DHCP Monitoring

We will be rolling out enforce DHCP for all AAA profiles, but I have questions about monitoring.  It seems that 2 log messages are associated with packets being dropped because IP was not obtained through DHCP:

 

May 28 10:11:05 authmgr[3524]: <522026> <INFO> |authmgr| MAC="MAC" IP="IP" User miss: ingress=0x1001c, VLAN=598 flags=0x40

 

May 27 15:04:44 authmgr[3524]: <522141> <DBUG> |authmgr| "MAC" IP "IP": drop pkt as ip not assigned through dhcp.

 

Where "MAC" and "IP" are placeholders for legitimate values.

 

In order to produce the debug mssg I have to enable “logging level debugging user process authmgr” which includes many additional mssgs not require in our environment.  Both logs create a line for each dropped packet - excessive for our needs.

 

Is there a way to monitor or flag clients which are in violation of the enforce DHCP policy without creating thousands of log mssgs?  Is there a suppressible trigger in AirWave?

 

Thanks,

 

Tony

MVP
Posts: 1,414
Registered: ‎10-25-2011

Re: Enforce DHCP Monitoring

have you tried
logging level debugging user process dhcpd

and

logging level debugging network subcat dhcp

maybe these can help.
Pasquale Monardo | Senior Network Solutions Consultant
ACDX #420 | ACMP
[If you found my post helpful, please give kudos!]
Occasional Contributor I
Posts: 7
Registered: ‎08-25-2011

Re: Enforce DHCP Monitoring

I did try both logging levels suggested, but I did not notice any related log messages.  I am not running DHCP on the controller.

Search Airheads
Showing results for 
Search instead for 
Did you mean: