Wireless Access

Reply
Occasional Contributor I

Trusted or not trusted

On my controllers I have a management port and my data port.  I know that the mgnt port needs to be trusted.  Does the data port need to trusted also?

Re: Trusted or not trusted

That depends.  If you move to Untrusted, then you are essentially invoking the firewall of the controller and then things like AAA profiles, roles, and policies come into play.  

Seth R. Fiermonti
Consulting Systems Engineer - ACCX, ACDX, ACMX
Email: seth@hpe.com
-----
If you found my post helpful, please give kudos

Re: Trusted or not trusted

The global wired AAA profile controls this behavior by the way.  Keep in mind that the port AND/OR the VLAN can be set to untrusted on the controller.  

Seth R. Fiermonti
Consulting Systems Engineer - ACCX, ACDX, ACMX
Email: seth@hpe.com
-----
If you found my post helpful, please give kudos
Aruba

Re: Trusted or not trusted

If its the main (only) egress port on the controller, yes you want the port trusted (default) or your user table will fill up with all the wired MACs that can be seen from this port.   e.g. hundreds of entries pretty quickly.

Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: