Controller-less WLANs

How to configure Airgroup on IAPs for using Apple Time Machines

The Time Machine feature of Apple requires uses mDNS and hence requires mDNS services to be configured on the IAP when Airgroup is enabled.  We need to customize the configuration of Airgroup services to allow the storage server or time capsule to be discovered on IAPs and hence Mac OS clients will be able to backup to these devices.

 

 

Time Machine is the built-in backup feature of OS X that works with our Macbooks and an external drive, network storage or AirPort Time Capsule. Time Machine automatically backs up the entire Mac including system files, documents and applications.

The time capsule or network storage server must publish an mDNS service with a type of "_adisk._tcp" and this service includs a TXT record necessary for sharing.


We can find more information regarding this feature in the Apple write up here:
https://developer.apple.com/library/mac/documentation/NetworkingInternetWeb/Conceptual/TimeMachineNetworkInterfaceSpecification/TimeMachineRequirements/TimeMachineRequirements.html
 
Environment :
 
Any Aruba IAPs that support Airgroup.
Mac OSX clients.
Airport time capsure or Network Storage Servers using AFP (Apple Filing Protocol) share points.
 
Network Topology : IAPs in one cluster with Network Storage in the same or different VLAN.
 
rtaImage.jpg
 
Following Steps are to be followed on the IAP Virtual Controller:

GUI:
Navigate to More>Services>Airgroup at the top right.
1) Enable “sharing”.
2) Add a custom service with service id’s “_airport._tcp” and “_adisk._tcp”. Then enable the service.

Check "Sharing" and click "New" to create a new service.
 
rtaImage (1).jpg
 
Create a new server name say "timecapsule" and click ok.
 
rtaImage (2).jpg
 
Select the new service "timecapsule" and click "New" under Servic ID to create custom service IDs.
 
rtaImage (3).jpg
 
Reference CLI configuration:
airgroup
enable
 
airgroupservice airplay
disable
description AirPlay
 
airgroupservice airprint
disable
description AirPrint
 
airgroupservice sharing
enable
 
airgroupservice timecapsule
enable
_airport._tcp
_adisk._tcp

With the above configuration we will be able to backup my MacBook pro to Network Storage Server or Time capsule.
 


Verify the airgroup service entries are added correctly:

show airgroupservice


AirGroupService Details
-----------------------
Service     Description        Status    Disallowed-Role  Disallowed-VLAN  ID                          #query-hits  #servers
-------     -----------        ------    ---------------  ---------------  --                          -----------  --------
airplay     AirPlay            Disabled                                    _airplay._tcp               4            0
                                                                           _raop._tcp                  4            0
                                                                           _appletv-v2._tcp            0            0
airprint    AirPrint           Disabled                                    _ipp._tcp                   0            0
                                                                           _pdl-datastream._tcp        0            0
                                                                           _printer._tcp               0            0
                                                                           _scanner._tcp               0            0
                                                                           _universal._sub._ipp._tcp   0            0
                                                                           _universal._sub._ipps._tcp  0            0
                                                                           _printer._sub._http._tcp    0            0
                                                                           _http._tcp                  0            0
                                                                           _http-alt._tcp              0            0
                                                                           _ipp-tls._tcp               0            0
                                                                           _fax-ipp._tcp               0            0
                                                                           _riousbprint._tcp           0            0
                                                                           _cups._sub._ipp._tcp        0            0
                                                                           _cups._sub._fax-ipp._tcp    0            0
                                                                           _ica-networking._tcp        0            0
                                                                           _ptp._tcp                   0            0
                                                                           _canon-bjnp1._tcp           0            0
                                                                           _ipps._tcp                  0            0
                                                                           _ica-networking2._tcp       0            0
itunes      iTunes             Disabled                                    _home-sharing._tcp          0            0
                                                                           _apple-mobdev._tcp          0            0
                                                                           _daap._tcp                  0            0
                                                                           _dacp._tcp                  0            0
remotemgmt  Remote management  Disabled                                    _ssh._tcp                   0            0
                                                                           _sftp-ssh._tcp              0            0
                                                                           _ftp._tcp                   0            0
                                                                           _telnet._tcp                0            0
                                                                           _rfb._tcp                   11           0
                                                                           _net-assistant._tcp         0            0


AirGroupService Details
-----------------------
Service      Description         Status    Disallowed-Role  Disallowed-VLAN  ID                    #query-hits  #servers
-------      -----------         ------    ---------------  ---------------  --                    -----------  --------
sharing      Sharing             Enabled                                     _odisk._tcp           0            0
                                                                             _afpovertcp._tcp      11           0
                                                                             _xgrid._tcp           0            0
chat         Chat                Disabled                                    _presence._tcp        0            0
allowall     Remaining-Services  Disabled                                    _acp-sync._tcp        0            0
                                                                             _file._sub._smb._tcp  0            0
                                                                             _smb._tcp             11           0
                                                                             _net-assistant._udp   0            0
                                                                             _eppc._tcp            0            0
timecapsule                      Enabled                                     _airport._tcp         4            0
                                                                             _adisk._tcp           11           0
Num Services:8
Num Service-ID:43
end of show airgroupservice


We can see the airgroup cache entries for the airport and adisk services:

show airgroup cache entries

Cache Entries
-------------
Name  Type  Class  TTL  Origin  Expiry  Last Update
----  ----  -----  ---  ------  ------  -----------
_airport._tcp.local                 PTR         IN     4500  10.105.70.240  Foreign  Wed Jun 11 10:24:14 2014
_adisk._tcp.local                                             PTR         IN     4500  10.105.70.240  Foreign  Wed Jun 11 10:24:14 2014
server.local                                            AAAA        IN     120   10.105.70.240  Foreign  Wed Jun 11 10:24:14 2014
server.local                                            A           IN     120   10.105.70.240  Foreign  Wed Jun 11 10:24:14 2014
server._adisk._tcp.local                                SRV/NBSTAT  IN     120   10.105.70.240  Foreign  Wed Jun 11 10:24:14 2014
server._adisk._tcp.local                                TXT         IN     4500  10.105.70.240  Foreign  Wed Jun 11 10:24:14 2014
server._airport._tcp.local                                SRV/NBSTAT  IN     120   10.105.70.240  Foreign  Wed Jun 11 10:24:14 2014
server._airport._tcp.local                                TXT         IN     4500  10.105.70.240  Foreign  Wed Jun 11 10:24:14 2014

end of show airgroup cache entries

Also, the client can now see the network storage disk and backup to it on their Macbooks.

 

Client Pcap will show mDNS query and responses for the configured sharing and airport/adisk services for sharing disks on Mac OSX.  Following are a couple of examples:

Airport service:

 

rtaImage (4).jpg

 

AFP_over_TCP:

 

rtaImage (5).jpg

 

 

 

 

Version history
Revision #:
1 of 1
Last update:
‎08-07-2014 07:41 AM
Updated by:
 
Labels (1)
Contributors
Search Airheads
Showing results for 
Search instead for 
Did you mean: 
Is this a frequent problem?

Request an official Aruba knowledge base article to be written by our experts.