![]() The following image shows an example of a CAPWAP packet capture, where you can see: the Layer 2 header the sniffed traffic encapsulated into Internet Protocol for transport CAPWAP encapsulated into UDP for sniffer purpose and encapsulated into IP CAPWAP control traffic on UDP port 5246 and CAPWAP payload. l Decode the traffic as IP to check inner CAPWAP traffic. Run Wireshark on the host/server to capture CAPWAP traffic from the controller.In the above syntax, the ‘2’ captures the control and data message-’1′ would capture only the control message, and ‘0’ would disable it. WTP 0-FortiAP2223X11000107 Sniff: intf port2 enabled (control and data message) Choose which traffic to capture, the interface to which the FortiAP is connected, and the FortiAP’s serial number: diagnose wireless-controller wlac sniff 2.Configure the host/server to which CAPWAP traffic is forwarded: diagnose wireless-controller wlac sniff-cfg 88888Ĭurrent Sniff Server: 192.168.25.41, 23352.You can also set up a host or server to which you can forward the CAPWAP traffic: The data itself is encrypted by the wireless security mechanism.ĭata traffic is helpful to troubleshoot most of the issues related to station association, EAP authentication, WPA key exchange, roaming, and FortiAP configuration. Data traffic on UDP port 5247 is not encrypted.Note that some issues are related to the keep-alive for control and data channel. WTP 0-FortiAP2223X11000107 Plain Control: enabled l On the FortiAP: cw_diag plain-ctl 1 On the controller: diagnose wireless-controller wlac plain-ctl 1.Enable plain control on the controller and on the FortiAP to capture clear control traffic on UDP port 5246.The first recommended technique consists of sniffing the CAPWAP traffic. L CAPWAP packet sniffer l Wireless traffic packet sniffer CAPWAP packet sniffer This section describes the following recommended packet sniffing techniques: Capturing the traffic between the controller and the FortiAP can help you identify most FortiAP and client connection issues.
0 Comments
Leave a Reply. |