Controllerless Networks

 View Only
last person joined: yesterday 

Instant Mode - the controllerless Wi-Fi solution that's easy to set up, is loaded with security and smarts, and won't break your budget
Back to discussions
Expand all | Collapse all

IAP-VPN (GUEST VLAN) Best Design

This thread has been viewed 30 times

  • 1.  IAP-VPN (GUEST VLAN) Best Design

    Posted Dec 31, 2020 04:14 AM
    Hi,

    I'm working to deploy a IAP-VPN just for GUEST vlan with portal in DC.

    My customer wants to have only one vlan for all remotes sites (100) in DC, I suppose the best choice is Centralized L2 or L3.

    What is the best design ?







    ------------------------------
    G_lepers
    ------------------------------


  • 2.  RE: IAP-VPN (GUEST VLAN) Best Design

    EMPLOYEE
    Posted Jan 03, 2021 12:39 AM
    Hi,

    As per the Instant VRD, the recommended/most common modes of deployments are Centralized Layer 2 or Distributed Layer 3..

    In your case, where do you want the gateway of this subnet to be? Do you need the branches to be layer 2 connected and have the gateway in DC? If yes, then you can go with CL2.. Check pages 53-60 in the VRD..

    https://community.arubanetworks.com/browse/articles/blogviewer?BlogKey=1f47bc48-dafb-4b48-9ff1-2973bb3c2f87

    ------------------------------
    Ayman Mukaddam
    ------------------------------

    Original Message


  • 3.  RE: IAP-VPN (GUEST VLAN) Best Design

    Posted Jan 07, 2021 12:34 PM
    Hi,

    In my case I design Centralized L2 (DHCP and gateway in DC), I pushed GUEST in IPSec tunnel directly.

    Thank you for your answer.

    ------------------------------
    G_lepers
    ------------------------------

    Original Message