Wireless Access

What is Difference between Decrypt-Tunnel & Tunnel Mode. Please explain in simple words.

Thank You

Hi

The main difference is this:

• Decrypt-tunnnel: The traffic is decrypted in the access point. Therefore, the traffic between the AP and the controller is ethernet over GRE. Careful! This mode only works if control plane security is enabled.

• Tunnel mode: The traffic is decrypted in the mobility controller. Therefore, the traffic between the AP and the controller is 802.11 over GRE.

 Regards

I tried using Decrypt-tunnel on an AP-105 and couldn't get it to work.  The controller could provision the AP and it would show connected, however the radios never turned on.  When I changed it back to Tunnel it started working. 

Is there a limitation as to which APs can support Decrypt-tunnel or is this the control plane security you mentioned?  Where do you enable the control plane security?

Thanks!

Hi

Make sure you have enabled Control Plane Security.

Regards

Control Plane Security being enabled is Mandatory for Decrypt Tunnel.  If you do not have control plane security enabled, enabling it will entail a 10-minute outage as all of your access points certify themselves with the controller.  Is it worth that to turn Decrypt-Tunnel on?

For the installation I'm working on it's not important.  Just want to make sure I know for future use.  May do an installation in the future where that would be a viable solution and it would be good to know before hand.

Thanks!

Thanks Samuel Pérez Buñuel. That is what i am looking for.

Thanks again

---

@aedwards wrote:

For the installation I'm working on it's not important.  Just want to make sure I know for future use.  May do an installation in the future where that would be a viable solution and it would be good to know before hand.

 

Thanks!

---