Wired Intelligent Edge

last person joined: 3 days ago 

Bring performance and reliability to your network with the Aruba Core, Aggregation, and Access layer switches. Discuss the latest features and functionality of the ArubaOS-Switch and ArubaOS-CX devices, and find ways to improve security across your network to bring together a mobile first solution.

How to monitor dynamic segmentation

This thread has been viewed 6 times
  • 1.  How to monitor dynamic segmentation

    Posted Oct 15, 2021 03:51 AM
    We're using dynamic segmentation with 6300 and 2930 series switches. Everything works when everything is OK but does anyone have any idea how to monitor failed tunnel establishments? Just had a case where we had configured everything on Clearpass, but the controllers didn't have that role configured yet and the tunnel failed. In this case it was 2930F, but there wasn't anything useful in the logs.

    Debug logs had this:
    "0014:22:08:45.65 TNT mtnodeUserCtrl:User b4b686-fde288 bootstrap nack Reason:12X"

    But it's not very useful to have all the switches do debug logging all the time.

    Besides "never configure anything incorrectly", any thoughts?