09-27-2013 08:26 AM
I have setup a new DHCP server just for the wireless clients. In the setup I have the address of the server setup as an IP Address Helper. The controller cannot see the server. I have even setup a VLAN IP of one of the scopes on the server. I cannot ping the IP from the scope on the controller. If I take a laptop assign the same IP that is assigned for the controller I can ping the laptop and from the laptop I can ping the server. I take the laptop out and have the controller in place of the laptop and cannot ping it or ping the server from the controller. TAC suggested giving the controller an IP on the same subnet as the server, which did not help. Just seeing if some one else has any suggestions. Thanks in advance.
09-30-2013 07:29 AM
When we had Aruba deploy the system they said all we needed was a default route back to our core switch and from there it is forwarded.
Whatever is doing routing on that user subnet needs to be able to ping the DHCP server, NOT the controller. Only a captive portal WLAN requires that an ip address be on the controller's interface on that VLAN. If you are using 802.1x, and you are just bridging the user traffic to another layer 3 switch, the layer 3 switch has the ip address on that subnet, does the routing and has the ip helper-address command. That layer 3 switch needs to be able to ping the DHCP server, NOT the Aruba controller, because it is just bridging traffic.
If, on the other hand, the controller is the default gateway for your clients, the controller needs the ip address, helper address and should be able to ping the DHCP server. Your clients should also be permitting DHCP traffic with an "any any service dhcp" statement in the role.
Aruba Customer Engineering
Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base