01-05-2017 11:44 AM
I need to do a packet capture to troubleshoot an iPad connection issue with an application. I know that you can do a packet capture from the controller, but not sure how to set it up for capturing for a client.
Solved! Go to Solution.
01-05-2017 11:55 AM
You can run the mac os x wireless diagnostic tool to troubleshoot wireless/network issues in combination with the Controller show datapath session table to see what ports are getting dropped or allowed :
More effectively you can use the controllers capabilities to do a packet capture based on the wireless traffic seen by the Aruba Aps:
Lead Mobility Engineer @ Integration Partners
AMFX | ACMX | ACDX | ACCX | CWAP | CWDP | CWNA
01-05-2017 08:06 PM
01-09-2017 06:07 AM
presuming your VAP is in tunnel mode, to do a capture from the controller datapath of a single users traffic, look into the following CLI commands:
packet-capture destination ip-address <ip of pc with wireshark running> packet-capture datapath wifi-client <mac> all (or decrypted)
"all" includes the wifi traffic that is probably going to be encrypted - whether you need that depends on whether your problem is more at the mac layer or not. If you just want the IP traffic of a single client, then use "decryped" instead of "all".
The wireshark pc can be anything that is reachable from the controller, make sure it has it's firewall disabled etc. Perhaps validate on a known working user before capturing on a suspect user. The traffic is encapsulated in GRE and will traverse most networks without any drama.
Don't forget to disable it with "no packet-capture datapath wifi-client" when you are finished.
hope that helps.