Wireless Access

Reply
Super Contributor II
Posts: 429
Registered: ‎01-19-2011

RAP pool

I  am trying to understand the exact method that Aruba (3000 series controllers running 6.1.3.5) use to manage the inner IP addresses. A TAC case was opened as part of another issue and lack of IP addresses was also discovered. I was told the controller Strong Swan to manage IPsec connection but this does not detail how the IP addresses are managed. If the RAP starts up and receives IP address then afterwards loses its connection to the controller (but stays powered up) does the RAP rebootstrap and pick up a new IP address B. If this connection is flapping how often will it receive a new IP address. TAC say that a rebootstrap does not result in the RAP picking up a new address.

Guru Elite
Posts: 20,760
Registered: ‎03-29-2007

Re: RAP pool

True.   Normally a reboot will trigger a new IP address.  An access point will try as many times as the "IPSEC Retries" number in the AP system profile before it reboots".  The controller tries to keep the same ip address on a rebootstrap but if the SA (security association) from the access point is gone, it will give it a new inner ip address.  A rebootstrap does not ALWAYS result in the RAP picking up a new ip address.  It depends on how long the AP takes to re-establish connectivity once it rebootstraps.



Colin Joseph
Aruba Customer Engineering

Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base

Super Contributor II
Posts: 429
Registered: ‎01-19-2011

Re: RAP pool

TAC seems to think that the controller will hold the address for 6 minutes but with a possible 500 RAPs operating across WAN links that may experience issues, a pool of 512 may not be enough. for example if a site with 5 APs is flapping.

Guru Elite
Posts: 20,760
Registered: ‎03-29-2007

Re: RAP pool

If that is what TAC says, they probably know something.  It would take that number.

 

The "inner" ip addresses are so plentiful that it takes nothing to increase them.  If you feel you need to increase that number, go ahead!

 



Colin Joseph
Aruba Customer Engineering

Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base

Super Contributor II
Posts: 429
Registered: ‎01-19-2011

Re: RAP pool

Are there any resources available documenting the way the addresses are managed, I've drawn a blank with TAC for an explanation on this. I applaud the functionality of the Aruba equipment but they are light years behind Cisco with documenting functions.

Guru Elite
Posts: 20,760
Registered: ‎03-29-2007

Re: RAP pool

Matt Finnie,

Every set of documentation begins with a request. The documentation consists of the most requested information. If you have a case open you can ask to have it escalated so you can obtain the information you require. To request to have it permanently added, enter it in the ideas portal on the support site.




Colin Joseph
Aruba Customer Engineering

Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base

Search Airheads
Showing results for 
Search instead for 
Did you mean: