Security

Upcoming community maintenance Oct. 27th through Oct. 29th
For more info click here
Reply
Highlighted
New Contributor

VIA VPN Client on Guest network

Hi,

I want to be able to use a VIA VPN client on a Guest network based on Aruba Central.

The Guest network is "isolated", meaning it has its own VLAN and clients are getting IP addresses from a DHCP server on a firewall.

All ports are open on the firewall (just for testing) and the Access Type for guests are set to unrestricted.

The clients can access Internet, but when starting the VIA VPN clients, clients are getting an error message, saying "Network is down or URL is not reachable"

Highlighted
Guru Elite

Re: VIA VPN Client on Guest network

You need port UDP 4500 and port TCP 443 for VIA to work fully.  I would go to the VIA VPN controller and type "show datapath session table <public ip address of guest network>" while you are trying to connect to see if the traffic is even hitting the controller on ports TCP 443 and UDP 4500


*Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba Networks or Hewlett Packard Enterprise.*
ArubaOS 8.5 User Guide
InstantOS 8.5 User Guide
Airheads Knowledgebase
Airheads Video Knowledge Base
Remote Access Point Solution Guide
ArubaOS Consolidated Release Notes
ArubaOS 8 ViA VPN Solution Guide
Highlighted
New Contributor

Re: VIA VPN Client on Guest network

Hi Colin,

On my Guest SSID, I have set the Access Type as Network-based, and allow access to DHCP, DNS, HTTP, HTTPS and UDP 4500.

Doing a show datapath as you suggested, I do not see any UDP 4500 on the controller.

I have attached a .txt file, showing the output from show datapath.

xxx.xxx is the originator, and yyy.yyy is the receiver

Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: