I also have this scenario which it seems it's possible as far I see on your aruba central demo page
on the central site we have 2 controllers with wlan license with corporate SSID which have their vlan on their network and the DHCP is a windows dhcp one
In that gateway, which is on the corporate building we have for example vlan 5, 4
Can I use that same vlan on the microbranch? I see that I can even pick the gateway and pick the vlan the gateway has. It will pick the IP of the Windows dhcp in the central site just like the remote AP in version 6.
I'm asking this because, that user network has all the permissions on the firewalls, and it would be good if this is like this.
Original Message:
Sent: Aug 18, 2024 11:41 PM
From: ariyap
Subject: remote aps and aruba os 10
yes thats the way to do it. you need a static 1:1 NAT on your firewall.
------------------------------
If my post was useful accept solution and/or give kudos.
Any opinions expressed here are solely my own and not necessarily that of HPE or Aruba.
Original Message:
Sent: Aug 18, 2024 11:21 PM
From: cdelarosa
Subject: remote aps and aruba os 10
When i say virtual ip i mean port forward
im not sure if other vendor use that name besides fortinet firewall
Original Message:
Sent: Aug 18, 2024 11:11 PM
From: cdelarosa
Subject: remote aps and aruba os 10
Hello Ariyap i saw the technote back when i asked you, but I just got one other question about this
For the gateway that is the VPNC which is inside the internal network, with a private IP address
I guess its like the remote AP back in the aruba os 6 that I would need to do a virtual IP on the firewall pointing to the private IP of the VPNC gateway right? so I need the firewall admin to do this? this would be virtual IP with the port 4500 udp pointing to the private IP address of the vpnc
Original Message:
Sent: Jul 10, 2024 10:46 AM
From: cdelarosa
Subject: remote aps and aruba os 10
Thanks Ariyap
Thats a really good technote!
Keep doing them please, i see that you have many, they are really helpful!
Original Message:
Sent: Jul 04, 2024 02:38 AM
From: ariyap
Subject: remote aps and aruba os 10
for configuration example you can refer to technote on microbranch series
------------------------------
If my post was useful accept solution and/or give kudos.
Any opinions expressed here are solely my own and not necessarily that of HPE or Aruba.
Original Message:
Sent: Jul 04, 2024 01:48 AM
From: ariyap
Subject: remote aps and aruba os 10
yes thats right
------------------------------
If my post was useful accept solution and/or give kudos.
Any opinions expressed here are solely my own and not necessarily that of HPE or Aruba.
Original Message:
Sent: Jul 04, 2024 01:46 AM
From: cdelarosa
Subject: remote aps and aruba os 10
Also Ariyap the microbranch i suppose that it can go up the IP with a dchp IP address and do a tunnel when you configure it, so you can take the AP wherever you want, you just need the ipsect port open to establish the VPN tunnel, and as soon as the user connects it, it will just connect automatically to central and start showing the SSIDS
We just need one SSID with wpa3 enterprise on it for some users that will be moving between different places, it need access to clearpass, but I guess that the only one that need access to that its the gateway not the ap itself
Original Message:
Sent: Jul 03, 2024 11:39 PM
From: cdelarosa
Subject: remote aps and aruba os 10
Hello Ariyap there is no aruba os 8 or anything, all its on aruba os 10 gateways and AP
They just want to configure ONE ap as a remote AP thats all
So they need to change their WLAN Gateways subcriptions to SD branch foundation license to have a WLAN infraestructure with gateways like i have it now with the WLAN Gateway license + the microbranch
The Sd branch will give me both features ariyap? thats what i understand
Thanks
Original Message:
Sent: Jul 02, 2024 08:23 PM
From: ariyap
Subject: remote aps and aruba os 10
just be aware that you also can have an IAP-VPN solution in which you dont require Aruba Central. All you need is Instant APs at remote sites and an existing controller (non-AOS10 )
------------------------------
If my post was useful accept solution and/or give kudos.
Any opinions expressed here are solely my own and not necessarily that of HPE or Aruba.
Original Message:
Sent: Jul 02, 2024 07:22 AM
From: Keyser
Subject: remote aps and aruba os 10
Yeah, Aruba in their wisdom decided to axe remote APs in classic wireless setups, so now you need both an extra dedicated gateway in VPNC/branch mode, and an EXTREMELY expensive central license and complicated redundant WLAN configuration in Central to do what RAP used to do.
A total fail for Aruba in my opinion. I had a customer that backtracked on their AOS10 Central decision because of the massive cost and configuration overhead this requires.
Original Message:
Sent: Jun 28, 2024 11:56 AM
From: cdelarosa
Subject: remote aps and aruba os 10
Hello
I have Aruba OS 10 with Aruba Central with a foundation WLAN gateway license.
I need to configure a remote AP like we did on the old version 6.x, The AP will be connected to different sites to give wireless to corporate users. This will be not a branch office or anything like that, the AP will be taken to different sites constantly
I want to know if this remote AP config is now what you call microbranch and does it work with the license I have right? the WLAN Gateway license
Thanks
Carlos