Wireless Access

Reply
Occasional Contributor II

What is the purpose of inner IP in IPSEC tunnel in Aruba controller?

Could any one please tell me the purpose of inner IP in IPSEC tunnel between RAP and mobilty controller?

Aruba Employee

Re: What is the purpose of inner IP in IPSEC tunnel in Aruba controller?

The RAP architecture leverages an IPSec VPN tunnel between the AP and controller for securely building the GRE tunnel(s) to the controller. The inner IP then is the VPN protected IPs that are used for the GRE tunnel(s), while the outer IP is used for the IPSec tunnel itself and any NAT traversal.


Charlie Clemmer
Aruba Customer Engineering
Occasional Contributor II

Re: What is the purpose of inner IP in IPSEC tunnel in Aruba controller

Could u brief it little bit
--
*Thanks&Regards,*
Kvsivasakthi,
919750856964
Aruba Employee

Re: What is the purpose of inner IP in IPSEC tunnel in Aruba controller

An Aruba AP will usually have a PAPI management session as well as a GRE tunnel per SSID for transporting wireless client traffic back to the controller for processing. For extra security when running connections over the Internet, an Access Point configured as a RAP (Remote Access Point) will first establish an IPSec VPN tunnel back to the controller. The secure VPN tunnel then carries the PAPI and GRE sessions between the RAP and controller.

 

The PAPI and GRE connections between the RAP and controller will be established via the inner IP address to ensure they traverse down the secure tunnel. 

 


Charlie Clemmer
Aruba Customer Engineering
Occasional Contributor II

Re: What is the purpose of inner IP in IPSEC tunnel in Aruba controller

Thank you very much for the for the explanation.

But I have configured 3 ssids in the RAP,so could you tell me how many
inners ips required to for GRE tunnel??
--
*Thanks&Regards,*
Kvsivasakthi,
919750856964

Re: What is the purpose of inner IP in IPSEC tunnel in Aruba controller

Just a single inner IP for each RAP.


ACMP, ACSA, ACDX #985
If my post addresses your query, give kudos:)
Aruba Employee

Re: What is the purpose of inner IP in IPSEC tunnel in Aruba controller


@Jarvis wrote:
But I have configured 3 ssids in the RAP,so could you tell me how many
inners ips required to for GRE tunnel??


One inner IP per RAP.


Charlie Clemmer
Aruba Customer Engineering
Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: