Wireless Access

 View Only
Back to discussions
Expand all | Collapse all

Adding additional 7220 controller and configuring cluster. What happens to existing APs that were connected to the first controller?

This thread has been viewed 16 times

  • 1.  Adding additional 7220 controller and configuring cluster. What happens to existing APs that were connected to the first controller?

    Posted Mar 18, 2025 04:25 AM

    My wireless infrastructure consists of one 7220 aruba controller running 8.10. I'm adding a secondary controller and configuring a cluster for HA purposes.I'm planning to migrate APs to the new VRRP VIP address gradually by updating option 43 on respective DHCP scopes.

    My understanding is that when the cluster forms, existing APs will continue to operate normally and the cluster will load balance AP, client traffic, and take care of roaming. At this point they will be directed to the first WLC IP address (not the VRRP IP) and the controller will take care of HA functions. I understand if this WLC dies, then there's no HA functions, I will be upgrading option 43 for all the APs gradually. is this accurate?

    what will happen when I update option 43 on the APs? will I have to re-approve the APs? or will the cluster just know their Mac addresses and know that they have been approved?

    Thanks



    ------------------------------
    arubagod
    ------------------------------


  • 2.  RE: Adding additional 7220 controller and configuring cluster. What happens to existing APs that were connected to the first controller?

    Posted Mar 18, 2025 04:30 AM

    Is that cluster, as in controllers managed by a Mobility Conductor? Or is it just controllers?

    If you have a real cluster, with MCR, the VRRP would just be used for the discovery of the cluster. After that, with the cluster configuration, the controller IPs that the APs will form their tunnels to are downloaded and the APs will connect directly to there.

    If you have a real cluster, with MCR, the controllers are in the same group and share the AP allowlist, so you should not need to re-approve the APs.



    ------------------------------
    Herman Robers
    ------------------------
    If you have urgent issues, always contact your HPE Aruba Networking partner, distributor, or Aruba TAC Support. Check https://www.arubanetworks.com/support-services/contact-support/ for how to contact HPE Aruba Networking TAC. Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or HPE Aruba Networking.

    In case your problem is solved, please invest the time to post a follow-up with the information on how you solved it. Others can benefit from that.
    ------------------------------

    Original Message


  • 3.  RE: Adding additional 7220 controller and configuring cluster. What happens to existing APs that were connected to the first controller?

    Posted Mar 18, 2025 07:23 PM
    Hi,
    Yes, it will be a cluster. Currently, I've been utilizing the primary and backup LMS feature on the AP groups for redundancy.

    I'm planning to configure a real cluster with MCR. My understanding, in AOS 8.10 is that the VRRP on the cluster configuration will be used for CoA. and the VRRP on the layer 2 redundancy settings will be the VIP used for the APs to find the cluster.

    So the APs will get the node list with the new cluster VIP. I will also update option 43 on the APs DHCP scopes to find the controller.

    I'm a little bit confused how APs are going to learn the cluster IP. I have option 43 configure on all my DHCP scopes pointing to the controller IP address. I'm going to update option 43 with the VIP IP address. what is the process the AP determine the LSM in a cluster? option 43, node-list, etc?

    Thanks



    Original Message


  • 4.  RE: Adding additional 7220 controller and configuring cluster. What happens to existing APs that were connected to the first controller?

    Posted Mar 19, 2025 08:48 AM

    In cluster there is not so much LMS/backup-LMS. Most important is that the AP finds one of the cluster members (so may be through VRRP), it then registers and receives the cluster topology with all members, bucket-maps, etc, and decide which gateway to 'ancor' to. I think if you have a backup-LMS, the AP will connect there if it fails to connect to the primary LMS.

    There is quite some VRD/VSG/Youtube content out there that should describe in more detail how it works.



    ------------------------------
    Herman Robers
    ------------------------
    If you have urgent issues, always contact your HPE Aruba Networking partner, distributor, or Aruba TAC Support. Check https://www.arubanetworks.com/support-services/contact-support/ for how to contact HPE Aruba Networking TAC. Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or HPE Aruba Networking.

    In case your problem is solved, please invest the time to post a follow-up with the information on how you solved it. Others can benefit from that.
    ------------------------------

    Original Message


  • 5.  RE: Adding additional 7220 controller and configuring cluster. What happens to existing APs that were connected to the first controller?

    Posted Mar 20, 2025 12:42 AM

    There are two VRRP configurations to consider for clusters: a manual VRRP VIP and the cluster RADIUS dynamic authorization VRRP VIP.

    The manual configuration is just that, you have to manually setup everything about the VRRP instance.  Having at least one VRRP VIP configured manually is useful for the purpose of AP discovery and is the IP address I use in DHCP option 43.

    The cluster dynamic authorization VRRP instance is configured as part of the lc-cluster profile entry, and is used as the source for RADIUS communications so that a downed node will not result in a failed dynamic authorization attempt from the RADIUS server.



    ------------------------------
    Carson Hulcher, ACEX#110
    ------------------------------

    Original Message


Related Content