Hello I am involved in mulitple branch deployment connected via Internet to Head office where ClearPass will be located. Two issues I am dealing with for 802.1X designing EAP-PEAP for Corporate users. 200 Branches.
1. Branches have IAP's. I want to use EAP for Corporate users. I have been told that I cannot simply run EAP in scenario below. I must do some kind of tunnel from branch IAP to head office.
Branches have IAP with (Private IP address)> .....<Internet Public IP>.........<(Private IP) Head office ClearPass location.
If this is true. It means, I must add a controller at the head office to do site to site VPN.
2. Above scenario (tunnelled) creates problem for us. Currtly multiple branches have same IP addresses assinged.
Can I deploy without tunne? if not, how do I resolved the multi - branch same private IP address issue.
Clarification need from your response. I will need a samll controller at the branch location or head office?
and how I deal with my issued number 2. Mulitple branches with same private IP addresses. Tunnel will creat problem?
Controller at the head end office and you'd have to get creative with NAT to use the same IP space everywhere.
At Aruba, we believe that the most dynamic customer experiences happen at the Edge. Our mission is to deliver innovative solutions that harness data at the Edge to drive powerful business outcomes.
© Copyright 2020 Hewlett Packard Enterprise Development LPAll Rights Reserved.