Wireless Access

last person joined: 9 minutes ago 

Access network design for branch, remote, outdoor and campus locations with Aruba access points, and mobility controllers.
Expand all | Collapse all

One SSID, multiple VLAN's via Clearpass, but how to selectively allow client isolation?

  • 1.  One SSID, multiple VLAN's via Clearpass, but how to selectively allow client isolation?

    Posted Oct 12, 2017 03:28 PM

    Hello,

     

    I have a TLS secure network and based upon the authentication the clearpass server returns a corresponding role with a vlan in it for the user/device to be on.  This all works great, but one thing I've run across is that For our internal vlan's we allow client to client traffic, but for our BYOD vlan's we want client isolation on.  How is this one when the same SSID is used for both purposes?   The address subnet is different between vlans, so is there a way that I perform this via the controller firewall instead of client isolation?



  • 2.  RE: One SSID, multiple VLAN's via Clearpass, but how to selectively allow client isolation?

    Posted Oct 12, 2017 03:30 PM

    I should mention that I'm running AOS 6.5.x and these are all CAP's.