@soapdish wrote:
When I use a vlan on the controller with an IP so it does the routing I can ping from the wireless laptop and ping the wireless laptop.
When I just drop the authenticated user into a layer 2 vlan that is routed by the core switch I can ping from the wireless laptop but I cannot ping to the wireless laptop.
My rule is "allow all". Nothing in the log showing drops, and no apparent state in the datapath session table...
Any ideas?
Case 1:
Routing on controller
client ((( AP ------ (vlan with IP address)controller ------- core
client -> ping -> core : works
core -> ping -> client : works
Case 2: Routing on core
client ((( AP ------ (vlan)controller ------- core
client -> ping -> core: works
core -> ping -> client : does not work
Could you run a traceroute from the wired client connected to the core going to the client IP and see where it is breaking? Is the link between the controller and core configured as trunk?