Controllerless Networks

Reply
Highlighted
New Contributor

Instant AP + AirWave + Zero Touch Provisionning (ZTP) : a configuration example for ISC DHCP server

Hello,

 

I'm new to Aruba wifi and Airwave and I'm currently deploying a 150 AP
Instant infrastructure on two campuses, so ZTP and Airwave is a big
concern for me. We are an Unix shop here, so we use ISC DHCP servers.

 

Aruba Instant documentation gives details only for Microsoft DHCP
server. This post is just to share the ISC DHCP server configuration
that has taken hours of fiddling for me ;-) .

 

In '/etc/dhcp/dhcpd.conf', nothing is needed at the global level.

 

At the subnet level, we have a group that shares common options for
the host declarations. Here we assign fixed IPv4 addresses according
to the MAC addresses, but YMMV.

 

# subnet WIFI-ADM-P
subnet 10.10.2.0 netmask 255.255.255.0  {

        option routers 10.10.2.1;
	
        group {	
                option domain-search        "obspm.fr";
                option domain-name-servers  10.10.10.21,10.10.10.24,10.10.20.21;
                option ntp-servers          ntp-p.obspm.fr, ntp-m.obspm.fr;
                option domain-name          "obspm.fr";
                
                option vendor-class-identifier      "ArubaInstantAP";
                option vendor-encapsulated-options  "Foo:Bar:Baz,10.10.10.74,yourpsk";

                host ap-p-bperr-dio-coul-test-303-1.obspm.fr {
                        stash-agent-options true;
                        hardware ethernet b0:b8:67:ce:73:c6;
                        fixed-address 10.10.2.2;
                        option host-name "ap-p-test-303-1.obspm.fr";
                }

                host ap-p-bperr-dio-149-test-345-1.obspm.fr {
                        stash-agent-options true;
                        hardware ethernet 90:4c:81:c0:b8:ca;
                        fixed-address 10.10.2.3;
                        option host-name "ap-p-test-345-1.obspm.fr";
                }
		
        }
}

The important parts are:

 

    option vendor-class-identifier      "ArubaInstantAP";
    option vendor-encapsulated-options  "Foo:Bar:Baz,10.10.10.74,yourpsk";

The first one makes the server look for the option 60 (Vendor class
identifier) provided by the AP in a DHCP DISCOVER. For an Instant AP,
this is always "ArubaInstantAP".

 

The second one makes the server add an option 43 in its DHCP OFFER
with the specified content. The content is a three fields
comma-separated string, with no spaces in it. In this example:

 

  • 'Foo:Bar:Baz': the colon-separated organisation string for e.g. the
    folder hierarchy in Airwave: Foo → Bar → Baz
  • '10.10.10.74': the Airwave server IPv4 address (not tested with IPv6)
  • 'yourpsk': the preshared key between the Instant Cluster and Airwave you chose

 

Having this two vendor DHCP options in a subnet scope permits to have
multiple vendor objects (e. g. IP phones and wifi AP) to peacefully
coexist in the same DHCP server configuration. Or two different
Instant clusters with different organisation strings.

 

Hope this will help you.

 

 

New Contributor

Re: Instant AP + AirWave + Zero Touch Provisionning (ZTP) : a configuration example for ISC DHCP ser

Mmmh... My format (code, bullets) is not rendered properly. Sorry for this, I can't figure why, it displays OK in Rich Text but not in Preview.

 

Edit : it was my settings: ignore HTML was checked. Sorry for the noise.

Moderator

Re: Instant AP + AirWave + Zero Touch Provisionning (ZTP) : a configuration example for ISC DHCP ser

hi Emmanuel,

Nice write up, a minor point - I think this comment:

 

The first one makes the server look for the option 60 (Vendor class
identifier) provided by the AP in a DHCP DISCOVER. For an Instant AP,
this is always "ArubaInstantAP".

 

should say that it "makes the server add option 60 == ArubaInstantAP to the OFFER"

 

AFAIK, if you want to detect a specific option 60 in the DISCOVER then you need to use class/subclass/allow member to match and then handle it.

regards,

-jeff