Why does deny inter-user bridging not working between controllers on a Cluster environment?

MVP
MVP
Q:

Why does deny inter-user bridging not working between controllers on a Cluster environment?



A:

Inter-user bridging prevents the forwarding of Layer-2 traffic between wired or wireless users.  We can configure user role policies that prevent Layer-3 traffic between users or networks but this does not block Layer-2 traffic. This option can be used to prevent traffic, such as Appletalk or IPX, from being forwarded.

Deny inter user traffic works when controller's datapath knows that the traffic is between user to user. In a cluster environment, the different cluster nodes have their own datapath. 

Hence the controllers are only aware of users present on their datapath, but not the users present in other cluster node's datapath.

As a result the datapath cannot deny inter-user traffic, if either of the users are present on different cluster node.

Version history
Revision #:
1 of 1
Last update:
‎09-12-2018 09:16 AM
Updated by:
 
Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: