Wireless Access

Reply
cdj
Contributor I
Posts: 72
Registered: ‎07-17-2013

VLAN Hopping?

Does Aruba have a best practice or mitagation apparoch to VLAN Hopping due to 802.1Q tagging?

 

The simple answer to me is to, configure the port (the port the AP's are connected to) as an access port.

Guru Elite
Posts: 8,634
Registered: ‎09-08-2010

Re: VLAN Hopping?

If you are using tunneled SSIDs, the ports should definitely be configured as access ports.


Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Guru Elite
Posts: 21,261
Registered: ‎03-29-2007

Re: VLAN Hopping?

Cappalli is right. In addition every packet passes through the Aruba firewall, so any traffic you do not want on any VLAN, just block it on the firewall policy for that user role.


Colin Joseph
Aruba Customer Engineering

Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base

cdj
Contributor I
Posts: 72
Registered: ‎07-17-2013

Re: VLAN Hopping?

Thanks.

Search Airheads
Showing results for 
Search instead for 
Did you mean: