Controller-less WLANs

What is Centralized BID Allocation(CBA)?

by on ‎04-09-2015 04:27 AM

Aruba Instant 6.3.1.1-4.0 and above.

Scenario ;

If user wants to use multiple controllers for load balancing, then s/he needs the support of Centralized BID allocation(AOS 6.4 Onwards)  to provide BID to the branch IAP.
This is a feature done in 6.4 controller release and available only with 6.4 and above.
The only configuration Supported for this feature is Master-Local setup in the controllers.
Any of the  controllers in the Master-Local setup can act as a VPN endpoint, but BID allocation will be done only by the Master Controller. 

Use case diagram 

 

rtaImage (2).jpg

 

 

CBA flow diagram 

rtaImage (3).jpg

Load Balancer Will have a rule to forward all packets from different IAP’s to different controllers. 

IAP sends the encrypted register request in IPsec tunnel to the Load balancer 
Load Balancer will forward the IPsec packet to Local controller. 
Local controller will decrypt the packet and finds that it’s a register request forwards it to the Master controller.
Master Controller will process the Register request and responses with a BID to the Local Controller 
Local will encrypt the response it received from Master and sends it in the IPsec tunnel 
Load balancer will forward the encrypted packet to the IAP  

show and debug commands on local

(3600-132.50) #show iap table
Name              VC MAC Address     Status  Inner IP       Assigned Subnet   Assigned Vlan
----              --------------     ------  --------       ---------------   -------------
Instant-C3:EB:0C  24:de:c6:c3:eb:15  UP      10.17.132.227  10.17.133.48/29   401,402

show log system 100 | include IAP
Nov 12 06:17:23 :342005:  <DBUG> |IAP manager Pro|  handle_iap_up:92 !!!new IAP branch up with inner IP10.17.132.227
Nov 12 06:17:23 :342005:  <DBUG> |IAP manager Pro|  rx_raw_message:568 LOCAL received reg-req(df630b5e0164026baff1b223b00800bf816f5c325ba2292b9b)
Nov 12 06:17:23 :342005:  <DBUG> |IAP manager Pro|  rx_raw_message:574 Fwding reg-req to Master with keydf630b5e0164026baff1b223b00800bf816f5c325ba2292b9b
Nov 12 06:17:23 :342005:  <DBUG> |IAP manager Pro|  papi_handler:1769 IAP_MSG_REGISTER_LOCAL iapmgr in LOCAL received the response from MASTER recv_len 35 seq_no 0
Branch Add message in the Local controller
Nov 12 06:17:23 :342005:  <DBUG> |IAP manager Pro|  handle_iap_dpp_branch_add: new branch df630b5e0164026baff1b223b00800bf816f5c325ba2292b9b/10.17.132.227
Nov 12 06:17:23 :342005:  <DBUG> |IAP manager Pro|  handle_iap_dpp_branch_add: added branch df630b5e0164026baff1b223b00800bf816f5c325ba2292b9b
Nov 12 06:17:23 :342005:  <DBUG> |IAP manager Pro|  handle_backup_branches:142 Adding in inrIPandBrnchID ip10.17.132.227 brkey df630b5e0164026baff1b223b00800bf816f5c325ba2292b9b in backup controller
Nov 12 06:17:23 :342005:  <DBUG> |IAP manager Pro|  handle_backup_branches:160 creating branch with key df630b5e0164026baff1b223b00800bf816f5c325ba2292b9b in backup controller
Nov 12 06:17:23 :342005:  <DBUG> |IAP manager Pro|  create_subnet_info:245 adding to perSubnetInfo max-bid 25 subnet name 50.50.50.0-50.50.50.255,10
Nov 12 06:17:23 :342005:  <DBUG> |IAP manager Pro|  create_subnet_info:245 adding to perSubnetInfo max-bid 32768 subnet name Centralized,L2-402
Nov 12 06:17:28 :342005:  <DBUG> |IAP manager Pro|  dpp_proc_gre_tunnel: gre tunnel created for 10.17.132.227
Nov 12 06:17:28 :342005:  <DBUG> |IAP manager Pro|  dpp_proc_vlan: vlan 401 added for 10.17.132.227/65551
Nov 12 06:17:34 :342005:  <DBUG> |IAP manager Pro|  dpp_proc_vlan: vlan 402 added for 10.17.132.227/65551
Nov 12 06:17:34 :342005:  <DBUG> |IAP manager Pro|  dpp_proc_route: route to 10.17.133.48/255.255.255.248 via 10.17.132.227 added


(3600-132.38) ##show iap table
Name               VC MAC Address     Status  Inner IP       Assigned Subnet   Assigned Vlan
----               --------------     ------  --------       ---------------   -------------
Instant-C3:EB:0C   24:de:c6:c3:eb:15  UP      10.17.132.227

show log system 100 | include IAP
Nov 11 18:52:14 :342005:  <DBUG> |IAP manager Pro|  handle_iap_up:92 !!!new IAP branch up with inner IP10.17.132.227
Nov 11 18:52:14 :342005:  <DBUG> |IAP manager Pro|  register_iap_bid:317 Received from IAP - key='df630b5e0164026baff1b223b00800bf816f5c325ba2292b9b'; ip='10.17.132.227'; mac_addr='24dec6c3eb15';subnet_count='3'; subnet='50.50.50.0-50.50.50.255,10'; bid='-1'; max branch='25'; subnet='Centralized,L2-402'; bid='-1'; max branch='32768'; subnet='10.17.133.0-10.17.133.255,5'; bid='-1'; max branch='32'; back_up='no';trusted_branch=no
Nov 11 18:52:14 :342005:  <DBUG> |IAP manager Pro|  register_iap_bid:349 Adding in inrIPandBrnchID ip 10.17.132.227brkey df630b5e0164026baff1b223b00800bf816f5c325ba2292b9b
Nov 11 18:52:14 :342005:  <DBUG> |IAP manager Pro|  register_iap_bid:537 bid for '50.50.50.0-50.50.50.255,10' subnet = 1
Nov 11 18:52:14 :342005:  <DBUG> |IAP manager Pro|  register_iap_bid:537 bid for 'Centralized,L2-402' subnet = 8
Nov 11 18:52:14 :342005:  <DBUG> |IAP manager Pro|  register_iap_bid:537 bid for '10.17.133.0-10.17.133.255,5' subnet = 6
Nov 11 18:52:14 :342005:  <DBUG> |IAP manager Pro|  handle_iap_dpp_branch_add: new branch df630b5e0164026baff1b223b00800bf816f5c325ba2292b9b/10.17.132.227
Nov 11 18:52:14 :342005:  <DBUG> |IAP manager Pro|  handle_iap_dpp_branch_add: added branch df630b5e0164026baff1b223b00800bf816f5c325ba2292b9b
Nov 11 18:52:14 :342005:  <DBUG> |IAP manager Pro|  papi_handler:1786 MASTER is sending the response to LOCALSeqNo 0

Search Airheads
Showing results for 
Search instead for 
Did you mean: 
Is this a frequent problem?

Request an official Aruba knowledge base article to be written by our experts.