Wireless Access

Reply
Contributor I
Posts: 56
Registered: ‎08-28-2008

Provision AP from internet behind a NAT

Hi,

 

I need to provision a AP175P that are behind a firewall. The controller can be reached using Internet (The controller are with a Public IP). The controller are on site A and AP on site B. The communication are only via Internet Link.

 

The AP receive a LAN IP via DHCP and this IP have a NAT 1:1 with a public IP.
 After first boot, the AP upgrade successful through TFTP. After the second boot, we receive this message on AP Console:

 

AP rebooted Thu Mar 20 15:08:44 BRT 2014; SAPD: Rebooting after setting cert_cap=1. Need to open a secure channel(IPSEC)

On third boot, the AP show this message:

 

AP rebooted Fri Dec 31 16:02:32 PST 1999; Unable to set up IPSec tunnel to saved lms, Error:RC_ERROR_TUN_IP_ERR

 

This messages are showed before I provision the AP on controller.

 

Regards,

Paulo Raponi

Guru Elite
Posts: 20,761
Registered: ‎03-29-2007

Re: Provision AP from internet behind a NAT

You cannot provision a Campus AP through a NAT boundary.

 



Colin Joseph
Aruba Customer Engineering

Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base

Occasional Contributor I
Posts: 7
Registered: ‎05-28-2013

Re: Provision AP from internet behind a NAT

thanks

MVP
Posts: 288
Registered: ‎08-27-2012

Re: Provision AP from internet behind a NAT

To provision an AP across the Internet you would need to provision the AP as a RAP. Same functionality, but it'll use an IPSec tunnel.
ACDX #419 | ACMP |
Guru Elite
Posts: 20,761
Registered: ‎03-29-2007

Re: Provision AP from internet behind a NAT

Tsd25108,

Can you please tell him in detail how to do that?


Colin Joseph
Aruba Customer Engineering

Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base

Search Airheads
Showing results for 
Search instead for 
Did you mean: