Let me explain a little bit? I am using the controller as a router and wrote an ACL for that. No user database. Today I saw lots of drops on the states that not initiated from inside. e.g.
udp 17 161 src=10.10.16.139 dst=31.59.94.201 sport=19489 dport=46173 src=31.59.94.201 dst=10.10.16.139 sport=46173 dport=19489 [ASSURED] mark=0 use=1
related packet dropped by aruba is:
May 22 16:56:19 :124006: <WARN> |authmgr| {15698740} UDP srcip=31.59.94.201 srcport=46173 dstip=10.10.16.139 dstport=19489, action=deny, policy=wrd_mgmt_dny
I changed the src IP addresses. So there seems to be something wrong. I like to find it.
show datapath user counters
Datapath User Table Statistics
------------------------------
Current Entries(L2) 0
Current Entries(L3-v4) 5
Current Entries(L3-v6) 0
Total Current Entries(L2,L3) 5
Pending Deletes 0
High Water Mark 10166
Maximum Entries 65535
Total Entries 20329
Allocation Failures 0
Max link length 4
Aggregated User Entry Statistics
--------------------------------
Current Entries 5
High Water Mark 10161
Alloc Failures 0
Maximum Entries 12287
Total Entries 20319
Invalid/Denied V4 Users 80
Invalid/Denied V6 Users 0
Force Delete(IPIP) 0
Mac Mismatch 0
User L2 add fail 0
User L3 add fail 0
User L2 del fail 0
User L3 del fail 0
Pending User del High 10161