Controllerless Networks

Reply
New Contributor

Looking to enable Network-based restrictions on IAP via Airwave to narrow what clients can access

I am looking to restrict client access within the instant config (Airwave) to prevent clients from access specific resources outside their vlan.

Guru Elite

Re: Looking to enable Network-based restrictions on IAP via Airwave to narrow what clients can acces

When you edit an SSID, the 4th tab (Access) is where you can set network based restrictions for either the SSID or roles.



Thanks,
Tim

Tim Cappalli | Aruba Security
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
New Contributor

Re: Looking to enable Network-based restrictions on IAP via Airwave to narrow what clients can acces

Thank you however when i apply the restrictions in the following manner.

 

allow dhcp to dhcpserver 

allow dns to dns server

allow http to internal webserver

then

deny all to all destinations to prevent other access 

i get no ip address on the client

Guru Elite

Re: Looking to enable Network-based restrictions on IAP via Airwave to narrow what clients can acces

You need to allow DHCP to any.  The client's first request is not directed at a DHCP server, it is a broadcast, so with your current settings, it will get dropped.


*Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba Networks or Hewlett Packard Enterprise.*
ArubaOS 8.3 User Guide
InstantOS 8.3 User Guide
Airheads Knowledgebase
Airheads Learning Videos
Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: