Wireless Access

last person joined: yesterday 

Access network design for branch, remote, outdoor, and campus locations with HPE Aruba Networking access points and mobility controllers.
Back to discussions
Expand all | Collapse all

Session close logging

This thread has been viewed 1 times

  • 1.  Session close logging

    Posted Nov 19, 2015 02:18 AM

    We configured logging on a session rule and succesfully have new hits logged to syslog, e.g.

    authmgr[1908]: <124006> <WARN> <ARUBA>  {20416} TCP srcip=10.1.1.1 srcport=1092 dstip=10.1.2.1 dstport=8020, action=permit, role=authenticated, policy=auth-acl

     

    Is there a possibility to log a session close aswell? Especially interested in the TCP RST/FIN/Timeout messages as you would have on other firewalls. If a log total of incoming/outgoing bytes/packets would be possible, please share aswell :-)



  • 2.  RE: Session close logging
    Best Answer

    EMPLOYEE
    Posted Nov 19, 2015 07:52 AM

    there is no way to log the tcp flags or final timeout of a connection etc. As for bytes/packets etc., at a per flow level that requires something like openFlow which we currently do not have. For now, you may have to resort to inline passive solutions to achieve the same functionality.

     

    regards

    -jeff