Wireless Access

Reply
Occasional Contributor II

PEF

I'm sure this is an easy question, but how do you see firewall rule hits and traffic being dropped by the firewall in the controller?

Thank you,

Guru Elite

Re: PEF

You can see traffic being denied by running:

show datapath session table | include D

Or for a specific IP:
show datapath session table 1.2.3.4 | include D

Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Aruba

Re: PEF

At a higher level, you can also see what Rule and Role hits are being hit from the WebUI.  It won't give you granular details, but can help to see what protocol...in what policy....in what role is being denied.  

 

Monitoring --> Firewall Hits (under Controller on left)

 

 

------------------------------------------------
Systems Engineer, Northeast USA
ACCX | ACDX | ACMX

Re: PEF

show acl hits

 is another useful one to use in conjunction with the others suggested.


If my post is helpful please give kudos, or mark as solved if it answers your post.

ACCP, ACCX #817, ACMP, ACMX #294
Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: