I understand that I can configure a RAP to offer DHCP. I am pretty sure this is only possible if the RAP is connected to a Trunked connection. Reading the RAP VRD page 162 suggests an unlikely scenario in a hotel. The configuration shows using VLAN 188 for the Bridge VLAN. How would we know the Hotel had a trunk and that VLAN 188 was tagged? You wouldnt :-) I would love to be able to use a RAP with backup SSID and DHCP on a non-trunked network. Am I missing something?
I am just studying. No particular use case. Here is what is written in the VRD..
"The backup mode is very useful for telecommuter solutions, especially when the RAP is connected toa network that has a captive portal. When a travelling employee connects the RAP to the wired port ofa hotel network that uses captive portal, the RAP will not be able to connect to the controller. So, theRAP broadcasts the backup SSID. The user can now connect to the backup SSID and when he opensa web browser, the captive portal page is displayed. From perspective of the hotel’s captive portal, thetraffic originates from the MAC address and IP address of the RAP because the RAP is configured toScr-NAT the user traffic. After the user authenticates to the captive portal, the RAP can establish aconnection the controller. After the connectivity to the controller is established, the RAP disables thebackup SSID, broadcasts the standard SSIDs, and enables the configured wired ports"
In addition it says to use the RAP built in DHCP server...
"The user role assigned to the authenticated clients of the backup SSID shouldsource-NAT all user traffic, except DHCP. For example, create a backup-userrole with a policy that uses any any svc-dhcp permit followed by any any anyroute src-nat rule. Also, use the internal DCP server of the RAP to provideDHCP services for users on backup SSID."
Correct. The Source-NAT rule makes it so that it does not matter what VLANs are trunked to the AP. User traffic will be source natted out of the RAP's ip address.
I thought I had tried without a trunk in the past and it didnt work. I must have had something else wrong. I will give it another shot.
At Aruba, we believe that the most dynamic customer experiences happen at the Edge. Our mission is to deliver innovative solutions that harness data at the Edge to drive powerful business outcomes.
© Copyright 2021 Hewlett Packard Enterprise Development LPAll Rights Reserved.