Good morning friends.
A few days ago I had a problem with my nobreaks from one of the racks of my company, and since the electricity here is unstable, I have several power outages throughout the week. There are 8 stacked switches distributed in 2 circuits and one nobreak for each circuit.
In these racks, I have several Aruba APS distributed and I realize that when the power fails and the switch loses connection, the APS seem to get lost and start to do ArpND attack on the network, with many APS packets. (detected by the core).
Sometimes, it seems these APS get the entire MAC table of the switch, as if it were responsible for the routing of the packets.
Is it possible that this happens in case of communication failure between the AP and the controller ?! any way to make sure that in case of failure the AP simply does not transmit signal ?!
"Attack ( arpNd ) detected on vlan.0.2 [ InPort(lag.0.104) LEN(78) DA(33:33:00:00:00:02) SA(9C:1C:12:C3:22:AA) C-TAG(8100:0002) ETYPE(86DD) SIP(fe80::9e1c:12ff:fec3:22aa) DIP(ff02::2) VER(6) PROTO(58) TOS(0) TTL(255) FLOW(0) ICMP(133:0) ]"
Thank you!