Controllerless Networks

last person joined: yesterday 

Instant Mode - the controllerless Wi-Fi solution that's easy to set up, is loaded with security and smarts, and won't break your budget
Back to discussions
Expand all | Collapse all

IAP virtual controller manage APs via site-to-site VPN

This thread has been viewed 0 times

  • 1.  IAP virtual controller manage APs via site-to-site VPN

    Posted Jan 08, 2013 10:13 AM

    hy all,

     

    i'm having an issue trying to configure an IAP-93 to be managed via site-to-site VPN from a IAP-93 with a Virtual Controller enabled.

    i've checked that each can access other (ping), and checked also that each of them have the autojoin enabled.

     

    did i miss something ?

    should i disable auto-join and add them manually ?

     

    any clues /advices are welcome :)



  • 2.  RE: IAP virtual controller manage APs via site-to-site VPN

    Posted Jan 08, 2013 10:10 PM

    Okay what are you trying to do?

    You got a IAPs 93 on a remote site and you want to manage it via web but you cannot and you can ping it?

     

    Okay do you happen to have the ports open?  at least the administration of the IAP on version 6.2 the administration port its 4343... im not sure in older releases if its the same ports.... if it just use por https...

    Check the ports the rules  to see if you filering that port.... if you are open it and try again



  • 3.  RE: IAP virtual controller manage APs via site-to-site VPN

    Posted Jan 09, 2013 10:09 AM

    It is impossible if you try to join 2 IAP-93 on different subnet.

    Instant AP will only autojoin on the same subnet.

     

    Try layer-2 VPN, it might works.

     



  • 4.  RE: IAP virtual controller manage APs via site-to-site VPN

    Posted Jan 09, 2013 10:20 AM
    @slickers wrote:

    It is impossible if you try to join 2 IAP-93 on different subnet.

    Instant AP will only autojoin on the same subnet.

     

    Try layer-2 VPN, it might works.

     

    why ?

     

    can you explain how to auto-join works ?

    my reseller told that i could join 2 IAP-93 using VPN, so i'm pretty confused :(



  • 5.  RE: IAP virtual controller manage APs via site-to-site VPN

    Posted Jan 09, 2013 12:53 PM

    well your reseller is confused... im a reseller also but in my country and you cant do that...

    Because thas how it works... they must be in the same network,  in the same vlan...

    When you turn an IAP he will try looking for a IAP for a VC(virtual controller),  in the same subnet... if he is not able to find one then he will form a new VC.  He does this via papi protocol and aruba propietary protocols and this is just done by the L2 network.

     

    Now if you have it in different vlans, or network, then he will be not able to ifnd the other IAP...  This is how it works.

    They will be 2 differente Virtual clusters...

    The only way you can do that would be with a GRE tunnel or something like that in which you can build inside the VPN tunnel and pass the vlan to the other site...



  • 6.  RE: IAP virtual controller manage APs via site-to-site VPN

    Posted Jan 10, 2013 04:26 AM

    any chance this would work using L2TP/IPSEC VPN  instead of IPSEC VPN ?