Application Visibility and Deep Packet Inspection

AppRF is a custom built Layer 7 firewall Firewall is a network security system used for preventing unauthorized access to or from a private network. capability supported for Instant Access Points (IAPs) managed by Aruba Central. It consists of an on-board deep packet inspection and a cloud-based Web Policy Enforcement service that allows creating firewall policies based on types of application.

IAPs with DPI Deep Packet Inspection. DPI is an advanced method of network packet filtering that is used for inspecting data packets exchanged between the devices and systems over a network. DPI functions at the Application layer of the Open Systems Interconnection (OSI) reference model and enables users to identify, categorize, track, reroute, or stop packets passing through a network. capability analyze data packets to identify applications in use and allow you to create access rules to determine client access to applications, application categories, web categories and website URLs Uniform Resource Locator. URL is a global address used for locating web resources on the Internet. based on security ratings. You can also define traffic shaping policies such as bandwidth control and QoS Quality of Service. It refers to the capability of a network to provide better service and performance to a specific network traffic over various technologies. per application for client roles. For example, you can block bandwidth monopolizing applications on a guest role within an enterprise.

See Also:

Enabling Application Visibility Service on APs

To view application usage metrics for WLAN Wireless Local Area Network. WLAN is a 802.11 standards-based LAN that the users access through a wireless connection. clients, enable the Application Visibility service on APs.

To enable the Application Visibility feature, complete the following steps:

  1. In the Aruba Central app, select one of the following options:
    • To select an AP group in the filter:
      1. Set the filter to a group containing at least one AP.

        The dashboard context for the group is displayed.

      2. Under Manage, click Devices > Access Points.

        A list of APs is displayed in the List view.

    • To select an AP in the filter:
      1. Set the filter to Global or a group containing at least one AP.
      2. Under Manage, click Devices > Access Points.

        A list of APs is displayed in the List view.

      3. Click an AP listed under Device Name.

        The dashboard context for the AP is displayed.

      4. Under Manage, click Devices > Access Point.
  2. Click the Config icon.

    The tabs to configure the APs are displayed.

  3. Click Show Advanced.
  4. Click the Services tab.

    The Services page is displayed.

  5. Expand the AppRF accordion.
  6. Select any of the following options for Deep Packet Inspection:
    • All—Performs deep packet inspection on client traffic to application, application categories, website categories, and websites with a specific reputation score.
    • App—Performs deep packet inspection on client traffic to applications and application categories.
    • WebCC—Performs deep packet inspection on client traffic to specific website categories and websites with specific reputation ratings.

    • None—Disables deep packet inspection.

  7. Click Save Settings.