Wireless Access

Reply
jpg
New Contributor

Unable to access RAP from the corporate Network

Hello,

I had deploy an Aruba infrastructure with a central controller and remote AP.

There are 2 SSID :

1 For the corporate usage in Bridge mode,

1 For guest in tunnel mode with a captive portal (controller)

It work's well !

I have just an issue concerning access on the RAP, I can ping RAP from the central controller, but not from the corporate network.

In fact, I just want to supervise these Remote AP from a central Network Management Platform.

Are there some access-list applied by default on RAP ?

Thanks a lot for your help !

 

 

Guru Elite

Re: Unable to access RAP from the corporate Network

The way a RAP works, you probably will only be able to ping the ip address of  it from a client that is NOT on the same subnet....



Colin Joseph
Aruba Customer Engineering

Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base

jpg
New Contributor

Re: Unable to access RAP from the corporate Network

I don't try from the same subnet.

I can not ping it from different subnet.

In our case, the Network Management Platform is on the central site, and RAP on remote site.

Thanks

Guru Elite

Re: Unable to access RAP from the corporate Network


jpg wrote:

I don't try from the same subnet.

I can not ping it from different subnet.

In our case, the Network Management Platform is on the central site, and RAP on remote site.

Thanks


Are you trying to ping the RAP's "inner" ip address, or what it gets from that subnet locally?  A RAP is designed to be a hardened device.  If your management server can accept SNMP traps, it is better for the controller to send an AP down trap to it, than try to manage it via ping.

 



Colin Joseph
Aruba Customer Engineering

Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base

jpg
New Contributor

Re: Unable to access RAP from the corporate Network

I try to ping the local subnet IP Address not the Inner IP address,

I don't know what about the 'local ping' , I ask my customer to check this point.

I know about the controller ability to send SNMP Trap when an AP is down, but my customer want a simple way to check Ap availability...sorry...

Are there automatic role applied to the RAP (SYS-AP-ROLE ??)

Thanks

Guru Elite

Re: Unable to access RAP from the corporate Network

In the AP system profile, it is the "session ACL" parameter.  By default it is the ap-uplink-acl firewall policy.

 

If that does not work, please open a TAC case.

 



Colin Joseph
Aruba Customer Engineering

Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base

jpg
New Contributor

Re: Unable to access RAP from the corporate Network

Hello, I Have try to modify the ap-uplink-acl access-list adding a ip permit any any, without success.

As you mentionned I 'll open a case.

Thanks a lot for your help.

 

Super Contributor II

Re: Unable to access RAP from the corporate Network

Please share with us how tech support resolved your issue if they succeed.
Thanks & Regards
Syed Murad Ali
ACMP ACMA CCNA
Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: