Wireless Access

last person joined: an hour ago 

Access network design for branch, remote, outdoor and campus locations with Aruba access points, and mobility controllers.
Expand all | Collapse all

HTTP traffic fails with PEF + Dynamic Segmentation

  • 1.  HTTP traffic fails with PEF + Dynamic Segmentation

    Posted Mar 03, 2020 07:45 AM

    Hi there,

     

    Currently facing a strange issue.

    I'm connecting a Polycom Phone that is using a secondary role. The role has an Allow all rule.

    The phone can connect to SIP and LDAP, but it fails to provision with HTTP. But if I connect it directly to the voice VLAN, without a secondary role, everything works.

    Also, I can see the HTTP requests on my server, and it is answering back. The server itself can even contact the phone.

    Any idea what can be messing with the HTTP traffic?

     

    Thanks



  • 2.  RE: HTTP traffic fails with PEF + Dynamic Segmentation

    Posted Mar 04, 2020 03:52 AM

    Do you have jumbo frames enabled between the switch, controller and every link/device in between?

     

    The tunneling adds a GRE header which might result in the packet to be too large at some point in the path between controller and switch (or vice versa).



  • 3.  RE: HTTP traffic fails with PEF + Dynamic Segmentation

    Posted Mar 04, 2020 05:24 AM

    Setting the 7005 "Firewall MTU" seems to fix it.

    Thanks.



  • 4.  RE: HTTP traffic fails with PEF + Dynamic Segmentation

    Posted Mar 04, 2020 05:35 AM

    Related to MTU:

     

    - I'm using dynamic segmentation; the controller listen on VLAN 1001.

    - I would like to use Jumbo from the switches to the controllers

    - But the controller does not allow me to set the MTU of VLAN 1001 to more than 1500 bytes

     

    Any idea why?

     

    Thanks