Aruba wireless Access Points (AP) use IPSec to tunnel traffic back to the Headquarter wireless controller.
The APs IPSec traffic is marked with a Do Not Fragment bit, which causes the ICMP Fragmentation Needed message sent from the Cato Socket back to the local AP.
In this case, the AP is not then adjusting the MTU accordingly, and you can see a failure of the communication between the AP and the controller.
0 comments
Please sign in to leave a comment.