Wireless Access

last person joined: 9 hours ago 

Access network design for branch, remote, outdoor, and campus locations with HPE Aruba Networking access points and mobility controllers.
Back to discussions
Expand all | Collapse all

Aruba Controller 6.4 HA via LMS + Central Licensing

This thread has been viewed 0 times

  • 1.  Aruba Controller 6.4 HA via LMS + Central Licensing

    Posted Jan 17, 2018 09:42 PM

    Hi to all,

     

       We are currently testing the behaviour of Aruba Controller 6.4 in our LAB, our setup is Contrller 1(192.168.1.12) as Production and Controller 2(20.20.20.2) as DR as simulation environment.

     

     we are able to execute FastFailover with both controllers as Master with licenses each.

     

    1.as per guide, both controllers must have same config. does it require identical config like both must have same VLAN for AP (via internal DHCP for AP discovery) ?

     

    2. how about the users? once APs failover to controller 2, can users be able to access the internal network of production?

     

    3. will there be any ipsec tunnel in between controllers? or AP to controller only?

     

    we are quite new to this HA FastFailover, any recommendations, will be greatly appreciated.

     

     



  • 2.  RE: Aruba Controller 6.4 HA via LMS + Central Licensing

    EMPLOYEE
    Posted Jan 17, 2018 09:59 PM
    @harveyysip wrote:

    Hi to all,

     

       We are currently testing the behaviour of Aruba Controller 6.4 in our LAB, our setup is Contrller 1(192.168.1.12) as Production and Controller 2(20.20.20.2) as DR as simulation environment.

     

     we are able to execute FastFailover with both controllers as Master with licenses each.

     

    1.as per guide, both controllers must have same config. does it require identical config like both must have same VLAN for AP (via internal DHCP for AP discovery) ? Make the second controller a local and it will have a copy of the global configuration.  It will also participate in centralized licensing automatically.  The "identical config" is only so that the user has the same experience during failover.  99% of people make the second controller a local, and the global config is the same.  You can use VLAN names in the Virtual AP that represent different VLANs on each controller.  During fast failover, clients are deauthed, so they will acquire the new ip address range, if needed.

     

    2. how about the users? once APs failover to controller 2, can users be able to access the internal network of production?

     They should be able to.  During failover, all users are deauthed, so they will acquire a new ip address, if needed.

    3. will there be any ipsec tunnel in between controllers? or AP to controller only?  If that second controller is a local, it will have an ipsec tunnel to a master.  APs have an active and standby tunnel to the two controllers they will be contacting.

     

    we are quite new to this HA FastFailover, any recommendations, will be greatly appreciated.

     

     

     



  • 3.  RE: Aruba Controller 6.4 HA via LMS + Central Licensing

    Posted Jan 22, 2018 01:39 AM

    Hi Cjoseph, 

     

      Thank you very much for your response.

     

    we are simulating these 2 controllers in an "over WAN setup".

     

    a. what will happen if the Prod Controller goes down? 

    b. can we still implement  Master-local central licensing over WAN(L3) ?

    c. will DR controller be able to manage the failover APs?

    d.can users be able to reach the Prod apps once they get new I.Ps from DR controller? *while Prod Controller is down*

    e. is there a need for a switch like Aruba MAS that is capable of aruba GRE tunnel?

     

     

    thank you very much!