Wireless Access

last person joined: 2 hours ago 

Access network design for branch, remote, outdoor, and campus locations with HPE Aruba Networking access points and mobility controllers.
Back to discussions
Expand all | Collapse all

Datapath Session Table - AOS 6.1.3.4

This thread has been viewed 1 times

  • 1.  Datapath Session Table - AOS 6.1.3.4

    Posted Feb 11, 2013 06:42 AM

    I ran in to an issue at a customes site on Friday when trying to interogate the datapath session table for a particular client, on closer inspection the table didn't have any "denied traffic" in the session table. i've re-confirmed this today on our corporate controller were it fails todisplay any "denied traffic" for the entire datatpath session table, both controllers were 3000 controllers running 6.1.3.4 code.

     

    Is this a recongnised issue?



  • 2.  RE: Datapath Session Table - AOS 6.1.3.4

    Posted Feb 11, 2013 09:23 AM

    i think you never see blocked connection in datapath because are "blocked",

    you can see firewall hits counters

    maybe you can see somethin in syslog if you enable it and creade a block rule with log flag in firewall if you want to see discarded connection details

     

    for example this is my blocked session log

    "Jan 18 09:33:00 :124006:  <WARN> |authmgr|  {24} ICMP srcip=192.168.0.100 dstip=192.168.1.128, type=8, code=0, sequence=2091, id=8214, action=deny, role=Ospiti-guest-logon, policy=bloccaspoof





  • 3.  RE: Datapath Session Table - AOS 6.1.3.4

    Posted Feb 11, 2013 09:33 AM

    No this is definitely something that used to be there, I've used it many a time, just doesn't appear to be there now.



  • 4.  RE: Datapath Session Table - AOS 6.1.3.4
    Best Answer

    Posted Feb 11, 2013 10:39 AM

    you're right, flag D..