Wireless Access

Reply
New Contributor
Posts: 2
Registered: ‎05-21-2014

How to get logs for destination traffic?

Hi,

 

Context: to comply with the french law, a company that offers internet guest access has to collect specific information such as data that helps tracking destination traffic. 

Our goal is to offer internet guest access with ClearPass. I know we cannot log destination traffic with that platform.

Is there any way to get this info from the controller? If so, what is the command? Can we send this log to a syslog server?

 

Thanks,

 

Vince

Aruba
Posts: 1,643
Registered: ‎04-13-2009

Re: How to get logs for destination traffic?

You can log this through the firewall policies; and yes, this can be sent to syslog.

 

Example of firewall policy set to log:

 

ip access-list session france-users-log

  user any any permit log

 

------------------------------------------------
Systems Engineer, Northeast USA
ACCX | ACDX | ACMX

New Contributor
Posts: 2
Registered: ‎05-21-2014

Re: How to get logs for destination traffic?

Thanks for the quick answer.

 

Do you have a sample of the log we can get?

Aruba
Posts: 1,643
Registered: ‎04-13-2009

Re: How to get logs for destination traffic?

Example log entry (in Security Log):

 

May 21 10:08:12 :124006:  <WARN> |authmgr|  {0} TCP srcip=192.168.13.148 srcport=54822 dstip=199.127.104.94 dstport=443, action=permit, role=authenticated, policy=allow-all-log

------------------------------------------------
Systems Engineer, Northeast USA
ACCX | ACDX | ACMX

Search Airheads
Showing results for 
Search instead for 
Did you mean: