Wireless Access

last person joined: yesterday 

Access network design for branch, remote, outdoor, and campus locations with HPE Aruba Networking access points and mobility controllers.
Back to discussions
Expand all | Collapse all

PBR per SSID

This thread has been viewed 0 times

  • 1.  PBR per SSID

    Posted Mar 16, 2017 03:58 PM

    Hello All,

     

    I have a Controller with 3 SSID in tunnel mode.

    I need that each SSID go to a different default gateway.

     

    It's possible to do it using PBR? Each SSID are a differnet network. Can I create a rule to forward the traffic basead on Wireless user network?

     

    Regards,

    Paulo R.



  • 2.  RE: PBR per SSID

    EMPLOYEE
    Posted Mar 16, 2017 06:02 PM

    Hi Paulo,

     

    Can you give us more information on what you are trying to achieve?

     

    I understood that you have 3 SSIDs - 3 subnets. Is your controller acting as L3 or L2? If it is L2 you could have different VRF's on the router/switch and each one will have it's own routing table, hence different default gateway.

     

    Again, with more information probably more help could be given.

     

     

    Borja

     

     

     

     



  • 3.  RE: PBR per SSID

    Posted Mar 17, 2017 03:28 AM

    Hey!

     

    If you just want them to end up on different VLANs that´s super easy to configure either in the Virtual AP profile of each SSID or on the role that the AAA profile places the users in.

     

    Cheers,



  • 4.  RE: PBR per SSID

    EMPLOYEE
    Posted Mar 17, 2017 04:19 AM

    Hi Christoffer,

     

    yes, you are right! If he only needs default gateway it is as easy as you said.

     

    Not sure why I thought he wanted a default route for each SSID (subnet) - I guess that the Policy Based Routing made me think that!!

     

    Anyways, thanks

     

    regards

    Borja



  • 5.  RE: PBR per SSID

    Posted Mar 17, 2017 07:20 AM

    Hello,

     

    Let me explain better my case:

     

    We have a shared infrastructure that need 3 different access (3 different companys).

     

    On the Access Point, I can delivery only 1 VLAN. So, the AP will use this VLAN to get IP address and communicate with the Controller.

     

    On Controller side, I have 4 different VLANs (trunk).

     

    VLAN A: Communicate with Access Points

    VLAN B: Company 1

    VLAN C: Company 2

    VLAN D: Company 3

     

    VLAN A will tunnel all the traffic to Controller.

    VLAN B,C and D has your own DHCP Server and default Gateway above the Controller.

     

    What I need:

     

    3 SSID (company 1,2,3) and route each SSID to a different Default Gateway.

     

    How is the best way to archive it? Create a PBR? Using L2 (the Access Point has only 1 VLAN) ?

     

    Thank you,

    Paulo R.



  • 6.  RE: PBR per SSID

    MVP EXPERT
    Posted Mar 17, 2017 07:34 AM

    The client will take the default gateway assigned to them via DHCP. Whatever is the default gateway for the client, that will do your routing between VLAN's.