Hi, I've been searching for configuring L3 GRE tunnel bw two controllers, I didn't find good resources so far, I only find information about L2 GRE and it works just fine when I configured it.
I need to confiugre L3 GRE between two controllers, one on the Operation zone (OZ) that has the SSID and authentication config for Guest with preshard key authentication, the other one is on the DMZ where the dhcp server exist and should serve the Guest usser for IP address and at then end route the Guest traffic.
I need to know the flow of the traffic from connection to authentication, to getting the IP address to access the network resources.
I have configured the following:
1- Controller on the OZ:
Guest VLAN.
Wireless configuration for preshard key authentication for the guest ssid.
tunnel interface with ip address, tunnel source, tunnel destination, mtu, keepalive.
User deriviation rule to put the user that connect to guest SSID to a role and apply access list to that role to redirect all the traffic to the tunnel interface.
2- Controller on DMZ:
Guest VLAN.
IP address for the interface of the Guest VLAN.
Ip helper address on the Guest VLAN interface (to point to the DHCP server on the DMZ network).
tunnel interface with ip address, tunnel source, tunnel destination, mtu, keepalive.
On both controller there is a static route to point to a firewall that allow routing on the network as well as policy network traffic.
I did configure the same network for L2 GRE and it is worked, when I switched to L3 GRE, client doesn't get an IP address from DHCP and I can't find it on the OZ controller...
shall I add a routing for the L3 GRE to work! ; I configured both tunnel sides as a trusted; anyone has configured User Diversification and it is working for directing guest traffic to the tunnel interface?
Thank you and have a great day.