09-27-2016 09:31 AM
Hello right now we got a captive portal with a dmz conroller
We got a vlan that just exist in the controllers
So we got multiple controllers with a vlan 999 a dmz controller also with that vlan 999. We got tunnel GRE that connect all the controllers with the DMZ controller, and on the DMZ controller has the exit to internet. We nat that vlan 999 through the ip of the dmz controller that has acccess to internet.
Now if we want to put a clearpass that willl be just used for Guest. Where should we put this clearpass?
In the DMZ? which would be the best practice?
Product Manager - Aruba Networks
09-27-2016 10:38 AM - edited 09-27-2016 10:42 AM
It may depend on the specifics of the site, but I have my CPG server on an inside network, so things like ldap, backups, etc. of the CPPM/CPG all stay inside.
University of Delaware