Wireless Access

Reply
Occasional Contributor II
Posts: 17
Registered: ‎11-01-2013

captive portal for wired connection and generic AP

Hi all,

 

i've been wondering if i can user Aruba controller for wired user and some generic AP for temporary. here is the network diagram. any thought about how to this ?.

 

Wired and general Ap.PNG

=============================================================

Guru Elite
Posts: 20,819
Registered: ‎03-29-2007

Re: captive portal for wired connection and generic AP

You would need to make the physical port on the Aruba Controller that the Generic L2 switch is plugged into untrusted.

 

Before you do that make sure:

 

- The physical port you make untrusted is a different port than your management port for the controller.  You can have two ports on the controller in the same VLAN, only make the one that is connected to the generic l2 switch untrusted.  If you make the port that you are managing the controller through untrusted, you could lose management access to the controller.

 



Colin Joseph
Aruba Customer Engineering

Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base

Occasional Contributor II
Posts: 17
Registered: ‎11-01-2013

Re: captive portal for wired connection and generic AP

Ic ic, so there is a way provided. And Yes i fully aware about the management access. Another stuck issue and information i needed. How about pefng license. One of our customer, is using our controller to do CoA mac auth, is it still possible to implement pefng policy for wired client.
=============================================================

Guru Elite
Posts: 8,335
Registered: ‎09-08-2010

Re: captive portal for wired connection and generic AP

This feature is called tunneled-node and you would need Aruba switches to perform stateful inspection of the traffic in the controller.

Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Guru Elite
Posts: 20,819
Registered: ‎03-29-2007

Re: captive portal for wired connection and generic AP

Yes.


Colin Joseph
Aruba Customer Engineering

Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base

Occasional Contributor II
Posts: 17
Registered: ‎11-01-2013

Re: captive portal for wired connection and generic AP

@cappalli now i am a bit confuse. did you mean, another box beside our controller. Why aruba call is tunneled node. Our switch is directly connected to the controller.

=============================================================

Guru Elite
Posts: 8,335
Registered: ‎09-08-2010

Re: captive portal for wired connection and generic AP

Are you looking to push all traffic for a certain subnet through the firewall engine or per individual user?

Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Occasional Contributor II
Posts: 17
Registered: ‎11-01-2013

Re: captive portal for wired connection and generic AP

Yep correct certain subnet through firewall engine. So it's need different approach than currently available using untrusted port and a wired profile configuration ?
=============================================================

Search Airheads
Showing results for 
Search instead for 
Did you mean: