Curious if anyone has experienced a sudden barrage of controller traffic to the Internet (more than likely to RAPs or VIA users). We have a 1gb Internet circuit that was fully pegged yesterday, which we found through our monitoring tool that the Aruba controller was the culprit. Digging through our firewall also showed IPSEC as the top talkers, which further points to our remote sites on RAPs as the culprit.
However, when digging further through Airwave, all RAPs are showing normal connectivity speeds.
We've seen this a few times now over the course of the last year and because it comes and goes it's never been able to be sniffed to the packet level.
Just curious if anyone has experienced a similar situation, either with a massive broadcast storm or maybe even erroneous management traffic being sent from the controller. Our monitoring tool, firewall, Airwave and controller don't give us the full picture. Like chasing the wind.