Wireless Access

Reply
New Contributor
Posts: 4
Registered: ‎04-11-2012

cannot use TMG as a transparent proxy in different vlans

Hi all,

Recently I've set up a TMG to use as transparent proxy for my guest WIFI. We have two aruba controllers in 2 different sites both configured as masters with different vlans. The TMG is connected on the same core switch as one of the 2 controllers.

I am having some problems setting up my guest client to use the TMG as a transparent proxy in the second site.
 

Aruba B -----> Core B ------> Core A --------> Aruba A & TMG

The site-A users get the TMG as their default gateway and by applying the

useranysvc-http

permit

policy on the guest role they have internet access.

The site-B users:

- cannot get the TMG as their default gateway because we have different vlans on the switches

- if they get Core B as their default gateway, they reach the point where they authenticate(secure login) and then nothing….. I gathered that I need to amend the internet policy(applied on the guest role) so that the guest traffic would be redirect to the TMG.

Something like the screen shot below:

 the TMG has 172.31.199.10 as IP address

 

useranysvc-httpdst-nat ip 172.31.199.10

 

Any ideas how I need to change this rule?

 

Thank you

Search Airheads
Showing results for 
Search instead for 
Did you mean: