Hi Guys,
I have a customer with 3 WLC Cluster and AirWave. AirWave is used for monitoring and also for SNMP and Syslog messages. So in the WLC Config the AirWave IP appears 3 times:
mgmt-server type amp primary-server 10.20.30.40 profile default-amp
[…]
logging 10.20.30.40
[…]
snmp-server host 10.20.30.40 version 2c public udp-port 162
In the Checkpoint FW, I can see that SNMP and Syslog messages are send from the Mgmt Interface to AirWave. But I see also traffic classified as "Aruba_PAPIs", from the Data VRRP IP Address (not the mgmt) destinated to AirWave. This trafic is dropped because of Address Spoofing...
Is it normal that some PAPI traffic is exchanged between the Controller and AirWave (Airwave does only monitoring)?
Is it possible to force each Controller to use to Mgmt Interface as Source Interface to discuss with AirWave?
Thanks for your answers,
Kind regards,
Nicolas.