Why is there no traffic data in syslog when a client roams between APs?
Zyxel Employee
In scenarios where you are using syslog to analyze AP and station use, you might observe instances where there is no traffic shown in the logs despite the station being connected.
Here are some key points to understand the behavior:
1. Syslog simply forwards event logs. If an event (like a client disconnection) occurs without recorded traffic, it is likely because the client left before any traffic reached the AP's interface.
2. The logs might display zero traffic data if the variables capturing traffic data are not updated promptly. This is due to the fast transition of station between APs during roaming.
3. Different log updates occur at different times. For example, STA Tx (transmit) and Rx (receive) are updated upon receiving STA management frames. If roaming happens too quickly, the AP may miss these frames, leading to zero traffic logs.
To better capture traffic data, consider monitoring client connections for a longer period.
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 144 Nebula Ideas
- 94 Nebula Status and Incidents
- 5.6K Security
- 237 USG FLEX H Series
- 267 Security Ideas
- 1.4K Switch
- 71 Switch Ideas
- 1.1K Wireless
- 40 Wireless Ideas
- 6.3K Consumer Product
- 246 Service & License
- 383 News and Release
- 83 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.2K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 83 About Community
- 71 Security Highlight