Blogs

Tunneled Node for Campus Switches

By gillespie posted Dec 20, 2016 10:00 AM

  

Simplicity is core to our Aruba Mobile First architecture.  So is security.  So when our development team comes up with a new feature that delivers both, we get excited because we know it will be a win for our customers.  Tunneled Node for wired switches is what I am talking about so keep reading to learn more.

tunnel blog 3.JPG

Just the basics please

In a traditional wired campus network, access switches have the job of forwarding user traffic to and from distribution switches.  And in flatter, 2 tier networks, they do this directly to a core switch.  Our Aruba wireless solution uses a mobility architecture, which encapsulates a user’s wireless traffic between the access points and mobility controllers using tunnels.  We have now applied this tunnel concept to our wired switches with a new feature called Tunneled Node which is available, license free, in the ArubaOS-Switch 16.02 release.

 

Per-port Tunneled Node for Aruba switches provides a separate tunnel to transport network traffic on a per-port basis to an Aruba Controller.  Authentication and network policies are applied and enforced at the Controller, just as they are for APs.

 

Why

The main purpose of Tunneled Node is to use the controller as a unified policy enforcement point for traffic from both wired and wireless clients.  Using a unified policy simplifies policy management and ensure consistent access and permissions.  It delivers the following benefits:

tunnel blog 2.JPG

How it does it

  • A single GRE tunnel transports all traffic to and from ‘tunneled’ interfaces.
  • Traffic from other interfaces is forwarded normally by the switch.
  • Management and control traffic is not tunneled.

tunnel blog 1b.png

Which Aruba switches support Tunneled Node?

Using the ArubaOS-Switch 16.02 software release, the following switches support per-port Tunneled Node:

 

For more details

Learn more about Tunneled Node for Aruba campus switches in the ArubaOS-Switch Management and Configuration Guide .  If you would like to see how to enable and configure the tunneled node feature on your Aruba-OS Switch device, check out the Aruba Solutions Exchange.


#2930F
2 comments
7 views

Comments

gillespie
Oct 06, 2017 02:42 PM

Hi!  Yes, each switch counts as a device so needs a license.  Thanks.

MiniMe
Oct 06, 2017 12:42 AM

If I have 1 switch, does it means that I have to purchase 1 AP/PEF license on the controller like the previous MAS switch?