I just upgraded UTM to 9.701-6 and now the flow monitor and exported IPFIX for my AP-30 WIFI access points detect VXLAN for around 99% of the traffic and not the traffic within the encapsulation. It seems to be only affecting the AP-30 access points. I'm guessing because the access points are now using VXLAN encapsulation techniques? But now instead of specific apps, the majority is only firing on the VXLAN app signature and all that traffic is going transparent. I attached a before and after the 9.701-6 upgrade screenshots of exported IPFIX to show this major change. I would like to see the apps within the access points like before and not 99% of VXLAN. This seems like a bug to me in the flow data or signatures associated. Any thoughts? I'm using AP-30's and AP-10's but the AP-10's don't seem affected.
This thread was automatically locked due to age.
