Wireless Access

last person joined: an hour ago 

Access network design for branch, remote, outdoor and campus locations with Aruba access points, and mobility controllers.
Expand all | Collapse all

Unable to access RAP from the corporate Network

  • 1.  Unable to access RAP from the corporate Network

    Posted Feb 07, 2013 05:44 AM

    Hello,

    I had deploy an Aruba infrastructure with a central controller and remote AP.

    There are 2 SSID :

    1 For the corporate usage in Bridge mode,

    1 For guest in tunnel mode with a captive portal (controller)

    It work's well !

    I have just an issue concerning access on the RAP, I can ping RAP from the central controller, but not from the corporate network.

    In fact, I just want to supervise these Remote AP from a central Network Management Platform.

    Are there some access-list applied by default on RAP ?

    Thanks a lot for your help !

     

     



  • 2.  RE: Unable to access RAP from the corporate Network

    Posted Feb 07, 2013 06:22 AM

    The way a RAP works, you probably will only be able to ping the ip address of  it from a client that is NOT on the same subnet....



  • 3.  RE: Unable to access RAP from the corporate Network

    Posted Feb 07, 2013 06:25 AM

    I don't try from the same subnet.

    I can not ping it from different subnet.

    In our case, the Network Management Platform is on the central site, and RAP on remote site.

    Thanks



  • 4.  RE: Unable to access RAP from the corporate Network

    Posted Feb 07, 2013 06:36 AM

    @jpg wrote:

    I don't try from the same subnet.

    I can not ping it from different subnet.

    In our case, the Network Management Platform is on the central site, and RAP on remote site.

    Thanks


    Are you trying to ping the RAP's "inner" ip address, or what it gets from that subnet locally?  A RAP is designed to be a hardened device.  If your management server can accept SNMP traps, it is better for the controller to send an AP down trap to it, than try to manage it via ping.

     



  • 5.  RE: Unable to access RAP from the corporate Network

    Posted Feb 07, 2013 06:48 AM

    I try to ping the local subnet IP Address not the Inner IP address,

    I don't know what about the 'local ping' , I ask my customer to check this point.

    I know about the controller ability to send SNMP Trap when an AP is down, but my customer want a simple way to check Ap availability...sorry...

    Are there automatic role applied to the RAP (SYS-AP-ROLE ??)

    Thanks



  • 6.  RE: Unable to access RAP from the corporate Network

    Posted Feb 07, 2013 06:56 AM

    In the AP system profile, it is the "session ACL" parameter.  By default it is the ap-uplink-acl firewall policy.

     

    If that does not work, please open a TAC case.

     



  • 7.  RE: Unable to access RAP from the corporate Network

    Posted Feb 11, 2013 03:41 AM

    Hello, I Have try to modify the ap-uplink-acl access-list adding a ip permit any any, without success.

    As you mentionned I 'll open a case.

    Thanks a lot for your help.

     



  • 8.  RE: Unable to access RAP from the corporate Network

    Posted Feb 13, 2013 05:48 AM
    Please share with us how tech support resolved your issue if they succeed.