Hi community,
I have some questions regarding Aruba tunneled node feature, which is still not very clear to me even after reading some documents about it:
1) In per-port tunneled node (PPTN), why do we need to configure an end-user port to access a transport vlan? The document said that the vlan is used locally inside GRE tunnel, but for what purpose? Is there any advantage/disadvantage when we configure these ports to access the same/different vlans?
2) In per-user tunneled node (PUTN), the following sample configuration on the switch was given in Wired Policy Enforcement Solution Guide:
As far as I understand, the vlan which will be assigned to user is 604, and their traffic will be tunneled to the controller for processing (in role "quarantine"). The part that I'm not clear is that what if there's a vlan definition in "quarantine" role, say vlan 605? Then user will be assigned vlan 604 or 605?
Any help would be appreciated.
Thank you,