Wireless Access

Reply
Occasional Contributor II
Posts: 21
Registered: ‎09-12-2012

PEF

I'm sure this is an easy question, but how do you see firewall rule hits and traffic being dropped by the firewall in the controller?

Thank you,

Guru Elite
Posts: 8,637
Registered: ‎09-08-2010

Re: PEF

You can see traffic being denied by running:

show datapath session table | include D

Or for a specific IP:
show datapath session table 1.2.3.4 | include D

Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Aruba
Posts: 1,644
Registered: ‎04-13-2009

Re: PEF

At a higher level, you can also see what Rule and Role hits are being hit from the WebUI.  It won't give you granular details, but can help to see what protocol...in what policy....in what role is being denied.  

 

Monitoring --> Firewall Hits (under Controller on left)

 

 

------------------------------------------------
Systems Engineer, Northeast USA
ACCX | ACDX | ACMX

Aruba
Posts: 1,290
Registered: ‎08-29-2007

Re: PEF

show acl hits

 is another useful one to use in conjunction with the others suggested.


If my post is helpful please give kudos, or mark as solved if it answers your post.

ACCP, ACMP, ACMX #294
mclarke@arubanetworks.com
Search Airheads
Showing results for 
Search instead for 
Did you mean: