06-24-2011 01:47 PM
VLAN 1: 10.0.0.0/24 - Wired and wireless clients - Domain network with AD, DHCP, DNS etc.
VLAN 101: 192.168.101.0/24 - wireless only
VLAN 102: 192.168.102.0/24 - wireless only
VLAN 103: 192.168.103.0/24 - wireless only
VLAN 101-103 are in a vlan pool internal to the controller. Clients loging on to the student SSID will be put in one of these vlans pseudo-randomly (Mac-address modulus or something like that).
All VLANs have an IP-address as well as IGMP and Inter-VLAN routing enabled.
All Firewall roles are "allowall"
Deny-inter-user-bridging and deny-inter-user-traffic are disabled, as are Drop broadcast and multicast under the VAP profile.
We're testing on an 620 controller with 220.127.116.11 build 28288.
So far I've got it working with all clients on VLAN 1 or wired, but I am unable to make it work on the other VLANs.
Any help would be much appreciated.
06-25-2011 12:39 AM
On VLAN 101 the controllers IP-address is 192.168.101.1. That address is also the the gateway address that the clients get from the DHCP server.
The controller itself has the router on VLAN1 (10.0.0.1) as default gateway. That router has static routes for each of those subnets with the controllers VLAN1 IP-address as gateway, to route traffic back to the internal VLANs.
06-25-2011 05:27 AM
Aruba Customer Engineering
Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base