Wireless Access

 View Only
  • 1.  Aruba Gateway 9004 High Unicast Traffic

    Posted 30 days ago

    Hello all,

    I'm facing two issues with an Aruba Gateway 9004 used with Aruba Central and my customer's WLAN network containing 60 IAPs Tunneled to the Gateway. It is a Gateway Cluster connected to a VSX Core Aruba 8320s, each Gateway has an Ether channel with a total of 2Gb bandwidth to each Core switch (not in MC-LAG ! ). APs are connected to Access Switches and Access Switches in MC-LAG to the Core switches all with 10Gb bandwidth.

    The first issue I am facing is that when I get a Spanning-Tree TCN on the network I have brief loss of connectivity to the Gateways, I loose in average 5 pings which is enough to disturb the IPSEC tunnels making me loosing as well connectivity to the APs, it is not very severe but annoying. I did several tests:

     - Set the STP Port Type in Edge in the LAG to the Gateway to stop TCs receiving in the Gateways but same issue

     - Ping other devices throughout the network but they are not affected by STP TCs no losses

    The second issue I am facing is a very high throughput of average 55k PPS ~ 1Gb per port of the LAG clogging the physical ports and I loose connectivity to the Gateway and APs for a short some time. I checked the bandwidth graphics for each SSID at the same time but we are far away from 1Gb usage. I checked the logs in the Core Switches no logs are shown at that particular time and no STP TCs occurred. Looks like generated traffic from the Gateway it self but not sure. I was not able to capture traffic at that time.

    Here an output of one physical interface from the LAG (both show nearly the same values):

     Rate                               RX                   TX        Total (RX+TX)
     ---------------- -------------------- -------------------- --------------------
     Mbits / sec                    948.54                67.65              1016.19
     KPkts / sec                     91.31                 6.82                98.13
       Unicast                       91.31                 6.79                98.10
       Multicast                      0.00                 0.02                 0.02
       Broadcast                      0.00                 0.01                 0.01
     Utilization                     94.85                 6.76               101.61

    In central I see as well a peak of Unicast Traffic outbound the Gateway's interface:

    Did someone maybe saw this problem as well?

    Best Regards,

    Diogo Baltazar



  • 2.  RE: Aruba Gateway 9004 High Unicast Traffic

    Posted 30 days ago

    You mention gateways, IAPs, Central, and tunneling...is this an IAP-VPN setup?  Or are you trying to describe an AOS 10 setup?

    Spanning tree on the gateways - disable that.  Gateways should almost never have STP enabled, that should be handled at the switching level.



    ------------------------------
    Carson Hulcher, ACEX#110
    ------------------------------



  • 3.  RE: Aruba Gateway 9004 High Unicast Traffic

    Posted 30 days ago

    Hi,

    Yes I have an AOS10 setup. Looks something like that:

    I will disable STP on the Gateways, anyway I found that STP TCNs are somehow flushing Gateway's MACs from the MAC Address which is causing the packet loss, I will purpose to my customer a cleanup of the Access Layer in order to reduce TCN events as much, they shouldn't happen unless a link fails.

    For the high traffic peak I have no answer, I applied today a bandwidth monitoring on all interfaces to see if I can find where it goes or where it comes from, today I got it again, did you experience something like that?

    Interface G 0/0/1 - Main Gateway

    Interface G 0/0/0 - Main Gateway

    I have no logs for that time frame, got no packet loss detected but stil 76.000 pps it's more than 1Gb traffic on a 1 Gb interface. Last time it occured I could see interface traffic at the maximum, you can check on my first Post.

    Thanks in advance,

    Best Regards 

    Diogo