Cloud Managed Networks

Hello

I have Aruba OS 10 with Aruba Central with a foundation WLAN gateway license.

I need to configure a remote AP like we did on the old version 6.x, The AP will be connected to different sites to give wireless to corporate users.  This will be not a branch office or anything like that, the AP will be taken to different sites constantly 

I want to know if this remote AP config is now what you call microbranch and does it work with the license I have right? the WLAN Gateway license

Thanks

Carlos

Hello

I have Aruba OS 10 with Aruba Central with a foundation WLAN gateway license.

I need to configure a remote AP like we did on the old version 6.x, The AP will be connected to different sites to give wireless to corporate users.  This will be not a branch office or anything like that, the AP will be taken to different sites constantly 

I want to know if this remote AP config is now what you call microbranch and does it work with the license I have right? the WLAN Gateway license

Thanks

Carlos

Yeah, Aruba in their wisdom decided to axe remote APs in classic wireless setups, so now you need both an extra dedicated gateway in VPNC/branch mode, and an EXTREMELY expensive central license and complicated redundant WLAN configuration in Central to do what RAP used to do.

A total fail for Aruba in my opinion. I had a customer that backtracked on their AOS10 Central decision because of the massive cost and configuration overhead this requires.

Original Message:
Sent: Jun 28, 2024 11:56 AM
From: cdelarosa
Subject: remote aps and aruba os 10

Hello

I have Aruba OS 10 with Aruba Central with a foundation WLAN gateway license.

I need to configure a remote AP like we did on the old version 6.x, The AP will be connected to different sites to give wireless to corporate users.  This will be not a branch office or anything like that, the AP will be taken to different sites constantly 

I want to know if this remote AP config is now what you call microbranch and does it work with the license I have right? the WLAN Gateway license

Thanks

Carlos

just be aware that you also can have an IAP-VPN solution in which you dont require Aruba Central. All you need is Instant APs at remote sites and an existing controller (non-AOS10 ) 

Yeah, Aruba in their wisdom decided to axe remote APs in classic wireless setups, so now you need both an extra dedicated gateway in VPNC/branch mode, and an EXTREMELY expensive central license and complicated redundant WLAN configuration in Central to do what RAP used to do.

A total fail for Aruba in my opinion. I had a customer that backtracked on their AOS10 Central decision because of the massive cost and configuration overhead this requires.

Original Message:
Sent: Jun 28, 2024 11:56 AM
From: cdelarosa
Subject: remote aps and aruba os 10

Hello

I have Aruba OS 10 with Aruba Central with a foundation WLAN gateway license.

I need to configure a remote AP like we did on the old version 6.x, The AP will be connected to different sites to give wireless to corporate users.  This will be not a branch office or anything like that, the AP will be taken to different sites constantly 

I want to know if this remote AP config is now what you call microbranch and does it work with the license I have right? the WLAN Gateway license

Thanks

Carlos

Hello Ariyap there is no aruba os 8 or anything, all its on aruba os 10 gateways and AP

They just want to configure ONE ap as a remote AP thats all

So they need to change their WLAN Gateways subcriptions to SD branch foundation license to have a WLAN infraestructure with gateways like i have it now with the WLAN Gateway license + the microbranch

The Sd branch will give me both features ariyap? thats what i understand

Thanks

just be aware that you also can have an IAP-VPN solution in which you dont require Aruba Central. All you need is Instant APs at remote sites and an existing controller (non-AOS10 ) 

Yeah, Aruba in their wisdom decided to axe remote APs in classic wireless setups, so now you need both an extra dedicated gateway in VPNC/branch mode, and an EXTREMELY expensive central license and complicated redundant WLAN configuration in Central to do what RAP used to do.

A total fail for Aruba in my opinion. I had a customer that backtracked on their AOS10 Central decision because of the massive cost and configuration overhead this requires.

Original Message:
Sent: Jun 28, 2024 11:56 AM
From: cdelarosa
Subject: remote aps and aruba os 10

Hello

I have Aruba OS 10 with Aruba Central with a foundation WLAN gateway license.

I need to configure a remote AP like we did on the old version 6.x, The AP will be connected to different sites to give wireless to corporate users.  This will be not a branch office or anything like that, the AP will be taken to different sites constantly 

I want to know if this remote AP config is now what you call microbranch and does it work with the license I have right? the WLAN Gateway license

Thanks

Carlos

Also Ariyap the microbranch i suppose that it can go up the IP with a dchp IP address and do a tunnel when you configure it, so you can take the AP wherever you want, you just need the ipsect port open to establish the VPN tunnel, and as soon as the user connects it, it will just connect automatically to central and start showing the SSIDS

We just need one SSID with wpa3 enterprise on it for some users that will be moving between different places, it need access to clearpass, but I guess that the only one that need access to that its the gateway not the ap itself 

Hello Ariyap there is no aruba os 8 or anything, all its on aruba os 10 gateways and AP

They just want to configure ONE ap as a remote AP thats all

So they need to change their WLAN Gateways subcriptions to SD branch foundation license to have a WLAN infraestructure with gateways like i have it now with the WLAN Gateway license + the microbranch

The Sd branch will give me both features ariyap? thats what i understand

Thanks

just be aware that you also can have an IAP-VPN solution in which you dont require Aruba Central. All you need is Instant APs at remote sites and an existing controller (non-AOS10 ) 

Yeah, Aruba in their wisdom decided to axe remote APs in classic wireless setups, so now you need both an extra dedicated gateway in VPNC/branch mode, and an EXTREMELY expensive central license and complicated redundant WLAN configuration in Central to do what RAP used to do.

A total fail for Aruba in my opinion. I had a customer that backtracked on their AOS10 Central decision because of the massive cost and configuration overhead this requires.

Original Message:
Sent: Jun 28, 2024 11:56 AM
From: cdelarosa
Subject: remote aps and aruba os 10

Hello

I have Aruba OS 10 with Aruba Central with a foundation WLAN gateway license.

I need to configure a remote AP like we did on the old version 6.x, The AP will be connected to different sites to give wireless to corporate users.  This will be not a branch office or anything like that, the AP will be taken to different sites constantly 

I want to know if this remote AP config is now what you call microbranch and does it work with the license I have right? the WLAN Gateway license

Thanks

Carlos

yes thats right

Also Ariyap the microbranch i suppose that it can go up the IP with a dchp IP address and do a tunnel when you configure it, so you can take the AP wherever you want, you just need the ipsect port open to establish the VPN tunnel, and as soon as the user connects it, it will just connect automatically to central and start showing the SSIDS

We just need one SSID with wpa3 enterprise on it for some users that will be moving between different places, it need access to clearpass, but I guess that the only one that need access to that its the gateway not the ap itself 

Hello Ariyap there is no aruba os 8 or anything, all its on aruba os 10 gateways and AP

They just want to configure ONE ap as a remote AP thats all

So they need to change their WLAN Gateways subcriptions to SD branch foundation license to have a WLAN infraestructure with gateways like i have it now with the WLAN Gateway license + the microbranch

The Sd branch will give me both features ariyap? thats what i understand

Thanks

just be aware that you also can have an IAP-VPN solution in which you dont require Aruba Central. All you need is Instant APs at remote sites and an existing controller (non-AOS10 ) 

Yeah, Aruba in their wisdom decided to axe remote APs in classic wireless setups, so now you need both an extra dedicated gateway in VPNC/branch mode, and an EXTREMELY expensive central license and complicated redundant WLAN configuration in Central to do what RAP used to do.

A total fail for Aruba in my opinion. I had a customer that backtracked on their AOS10 Central decision because of the massive cost and configuration overhead this requires.

Original Message:
Sent: Jun 28, 2024 11:56 AM
From: cdelarosa
Subject: remote aps and aruba os 10

Hello

I have Aruba OS 10 with Aruba Central with a foundation WLAN gateway license.

I need to configure a remote AP like we did on the old version 6.x, The AP will be connected to different sites to give wireless to corporate users.  This will be not a branch office or anything like that, the AP will be taken to different sites constantly 

I want to know if this remote AP config is now what you call microbranch and does it work with the license I have right? the WLAN Gateway license

Thanks

Carlos

for configuration example you can refer to technote on microbranch series

yes thats right

Also Ariyap the microbranch i suppose that it can go up the IP with a dchp IP address and do a tunnel when you configure it, so you can take the AP wherever you want, you just need the ipsect port open to establish the VPN tunnel, and as soon as the user connects it, it will just connect automatically to central and start showing the SSIDS

We just need one SSID with wpa3 enterprise on it for some users that will be moving between different places, it need access to clearpass, but I guess that the only one that need access to that its the gateway not the ap itself 

Hello Ariyap there is no aruba os 8 or anything, all its on aruba os 10 gateways and AP

They just want to configure ONE ap as a remote AP thats all

So they need to change their WLAN Gateways subcriptions to SD branch foundation license to have a WLAN infraestructure with gateways like i have it now with the WLAN Gateway license + the microbranch

The Sd branch will give me both features ariyap? thats what i understand

Thanks

just be aware that you also can have an IAP-VPN solution in which you dont require Aruba Central. All you need is Instant APs at remote sites and an existing controller (non-AOS10 ) 

Yeah, Aruba in their wisdom decided to axe remote APs in classic wireless setups, so now you need both an extra dedicated gateway in VPNC/branch mode, and an EXTREMELY expensive central license and complicated redundant WLAN configuration in Central to do what RAP used to do.

A total fail for Aruba in my opinion. I had a customer that backtracked on their AOS10 Central decision because of the massive cost and configuration overhead this requires.

Original Message:
Sent: Jun 28, 2024 11:56 AM
From: cdelarosa
Subject: remote aps and aruba os 10

Hello

I have Aruba OS 10 with Aruba Central with a foundation WLAN gateway license.

I need to configure a remote AP like we did on the old version 6.x, The AP will be connected to different sites to give wireless to corporate users.  This will be not a branch office or anything like that, the AP will be taken to different sites constantly 

I want to know if this remote AP config is now what you call microbranch and does it work with the license I have right? the WLAN Gateway license

Thanks

Carlos

Thanks Ariyap 

Thats a really good technote! 

Keep doing them please, i see that you have many, they are really helpful! 

for configuration example you can refer to technote on microbranch series

yes thats right

Also Ariyap the microbranch i suppose that it can go up the IP with a dchp IP address and do a tunnel when you configure it, so you can take the AP wherever you want, you just need the ipsect port open to establish the VPN tunnel, and as soon as the user connects it, it will just connect automatically to central and start showing the SSIDS

We just need one SSID with wpa3 enterprise on it for some users that will be moving between different places, it need access to clearpass, but I guess that the only one that need access to that its the gateway not the ap itself 

Hello Ariyap there is no aruba os 8 or anything, all its on aruba os 10 gateways and AP

They just want to configure ONE ap as a remote AP thats all

So they need to change their WLAN Gateways subcriptions to SD branch foundation license to have a WLAN infraestructure with gateways like i have it now with the WLAN Gateway license + the microbranch

The Sd branch will give me both features ariyap? thats what i understand

Thanks

just be aware that you also can have an IAP-VPN solution in which you dont require Aruba Central. All you need is Instant APs at remote sites and an existing controller (non-AOS10 ) 

Yeah, Aruba in their wisdom decided to axe remote APs in classic wireless setups, so now you need both an extra dedicated gateway in VPNC/branch mode, and an EXTREMELY expensive central license and complicated redundant WLAN configuration in Central to do what RAP used to do.

A total fail for Aruba in my opinion. I had a customer that backtracked on their AOS10 Central decision because of the massive cost and configuration overhead this requires.

Original Message:
Sent: Jun 28, 2024 11:56 AM
From: cdelarosa
Subject: remote aps and aruba os 10

Hello

I have Aruba OS 10 with Aruba Central with a foundation WLAN gateway license.

I need to configure a remote AP like we did on the old version 6.x, The AP will be connected to different sites to give wireless to corporate users.  This will be not a branch office or anything like that, the AP will be taken to different sites constantly 

I want to know if this remote AP config is now what you call microbranch and does it work with the license I have right? the WLAN Gateway license

Thanks

Carlos

Hello Ariyap i saw the technote back when i asked you, but I just got one other question about this

For the gateway that is the VPNC which is inside the internal network,  with a private IP address 

I guess its like the remote AP back in the aruba os 6 that I would need to do a virtual IP on the firewall pointing to the private IP of the VPNC gateway right? so I need the firewall admin to do this? this would be virtual IP with the port 4500 udp pointing to the private IP address of the vpnc

Thanks Ariyap 

Thats a really good technote! 

Keep doing them please, i see that you have many, they are really helpful! 

for configuration example you can refer to technote on microbranch series

yes thats right

Also Ariyap the microbranch i suppose that it can go up the IP with a dchp IP address and do a tunnel when you configure it, so you can take the AP wherever you want, you just need the ipsect port open to establish the VPN tunnel, and as soon as the user connects it, it will just connect automatically to central and start showing the SSIDS

We just need one SSID with wpa3 enterprise on it for some users that will be moving between different places, it need access to clearpass, but I guess that the only one that need access to that its the gateway not the ap itself 

Hello Ariyap there is no aruba os 8 or anything, all its on aruba os 10 gateways and AP

They just want to configure ONE ap as a remote AP thats all

So they need to change their WLAN Gateways subcriptions to SD branch foundation license to have a WLAN infraestructure with gateways like i have it now with the WLAN Gateway license + the microbranch

The Sd branch will give me both features ariyap? thats what i understand

Thanks

just be aware that you also can have an IAP-VPN solution in which you dont require Aruba Central. All you need is Instant APs at remote sites and an existing controller (non-AOS10 ) 

Yeah, Aruba in their wisdom decided to axe remote APs in classic wireless setups, so now you need both an extra dedicated gateway in VPNC/branch mode, and an EXTREMELY expensive central license and complicated redundant WLAN configuration in Central to do what RAP used to do.

A total fail for Aruba in my opinion. I had a customer that backtracked on their AOS10 Central decision because of the massive cost and configuration overhead this requires.

Original Message:
Sent: Jun 28, 2024 11:56 AM
From: cdelarosa
Subject: remote aps and aruba os 10

Hello

I have Aruba OS 10 with Aruba Central with a foundation WLAN gateway license.

I need to configure a remote AP like we did on the old version 6.x, The AP will be connected to different sites to give wireless to corporate users.  This will be not a branch office or anything like that, the AP will be taken to different sites constantly 

I want to know if this remote AP config is now what you call microbranch and does it work with the license I have right? the WLAN Gateway license

Thanks

Carlos

When i say virtual ip i mean port forward

im not sure if other vendor use that name besides fortinet firewall 

Hello Ariyap i saw the technote back when i asked you, but I just got one other question about this

For the gateway that is the VPNC which is inside the internal network,  with a private IP address 

I guess its like the remote AP back in the aruba os 6 that I would need to do a virtual IP on the firewall pointing to the private IP of the VPNC gateway right? so I need the firewall admin to do this? this would be virtual IP with the port 4500 udp pointing to the private IP address of the vpnc

Thanks Ariyap 

Thats a really good technote! 

Keep doing them please, i see that you have many, they are really helpful! 

for configuration example you can refer to technote on microbranch series

yes thats right

Also Ariyap the microbranch i suppose that it can go up the IP with a dchp IP address and do a tunnel when you configure it, so you can take the AP wherever you want, you just need the ipsect port open to establish the VPN tunnel, and as soon as the user connects it, it will just connect automatically to central and start showing the SSIDS

We just need one SSID with wpa3 enterprise on it for some users that will be moving between different places, it need access to clearpass, but I guess that the only one that need access to that its the gateway not the ap itself 

Hello Ariyap there is no aruba os 8 or anything, all its on aruba os 10 gateways and AP

They just want to configure ONE ap as a remote AP thats all

So they need to change their WLAN Gateways subcriptions to SD branch foundation license to have a WLAN infraestructure with gateways like i have it now with the WLAN Gateway license + the microbranch

The Sd branch will give me both features ariyap? thats what i understand

Thanks

just be aware that you also can have an IAP-VPN solution in which you dont require Aruba Central. All you need is Instant APs at remote sites and an existing controller (non-AOS10 ) 

Yeah, Aruba in their wisdom decided to axe remote APs in classic wireless setups, so now you need both an extra dedicated gateway in VPNC/branch mode, and an EXTREMELY expensive central license and complicated redundant WLAN configuration in Central to do what RAP used to do.

A total fail for Aruba in my opinion. I had a customer that backtracked on their AOS10 Central decision because of the massive cost and configuration overhead this requires.

Original Message:
Sent: Jun 28, 2024 11:56 AM
From: cdelarosa
Subject: remote aps and aruba os 10

Hello

I have Aruba OS 10 with Aruba Central with a foundation WLAN gateway license.

I need to configure a remote AP like we did on the old version 6.x, The AP will be connected to different sites to give wireless to corporate users.  This will be not a branch office or anything like that, the AP will be taken to different sites constantly 

I want to know if this remote AP config is now what you call microbranch and does it work with the license I have right? the WLAN Gateway license

Thanks

Carlos

yes thats the way to do it. you need a static 1:1 NAT on your firewall.

When i say virtual ip i mean port forward

im not sure if other vendor use that name besides fortinet firewall 

Hello Ariyap i saw the technote back when i asked you, but I just got one other question about this

For the gateway that is the VPNC which is inside the internal network,  with a private IP address 

I guess its like the remote AP back in the aruba os 6 that I would need to do a virtual IP on the firewall pointing to the private IP of the VPNC gateway right? so I need the firewall admin to do this? this would be virtual IP with the port 4500 udp pointing to the private IP address of the vpnc

Thanks Ariyap 

Thats a really good technote! 

Keep doing them please, i see that you have many, they are really helpful! 

for configuration example you can refer to technote on microbranch series

yes thats right

Also Ariyap the microbranch i suppose that it can go up the IP with a dchp IP address and do a tunnel when you configure it, so you can take the AP wherever you want, you just need the ipsect port open to establish the VPN tunnel, and as soon as the user connects it, it will just connect automatically to central and start showing the SSIDS

We just need one SSID with wpa3 enterprise on it for some users that will be moving between different places, it need access to clearpass, but I guess that the only one that need access to that its the gateway not the ap itself 

Hello Ariyap there is no aruba os 8 or anything, all its on aruba os 10 gateways and AP

They just want to configure ONE ap as a remote AP thats all

So they need to change their WLAN Gateways subcriptions to SD branch foundation license to have a WLAN infraestructure with gateways like i have it now with the WLAN Gateway license + the microbranch

The Sd branch will give me both features ariyap? thats what i understand

Thanks

just be aware that you also can have an IAP-VPN solution in which you dont require Aruba Central. All you need is Instant APs at remote sites and an existing controller (non-AOS10 ) 

Yeah, Aruba in their wisdom decided to axe remote APs in classic wireless setups, so now you need both an extra dedicated gateway in VPNC/branch mode, and an EXTREMELY expensive central license and complicated redundant WLAN configuration in Central to do what RAP used to do.

A total fail for Aruba in my opinion. I had a customer that backtracked on their AOS10 Central decision because of the massive cost and configuration overhead this requires.

Original Message:
Sent: Jun 28, 2024 11:56 AM
From: cdelarosa
Subject: remote aps and aruba os 10

Hello

I have Aruba OS 10 with Aruba Central with a foundation WLAN gateway license.

I need to configure a remote AP like we did on the old version 6.x, The AP will be connected to different sites to give wireless to corporate users.  This will be not a branch office or anything like that, the AP will be taken to different sites constantly 

I want to know if this remote AP config is now what you call microbranch and does it work with the license I have right? the WLAN Gateway license

Thanks

Carlos