Security

last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

can the default data routing for destination network in ClearPass be changed? if so how.

This thread has been viewed 0 times

  • 1.  can the default data routing for destination network in ClearPass be changed? if so how.

    Posted Aug 31, 2019 01:25 PM

    In Tech Note: ClearPass 6.x Service, section CPPM Auxiliary Traffic Route Selection, it says when CPPM is configured with both interfaces that If the destination network is not in either management or data subnets, then the data interface will be used by default.

     

    Can this be changed, if so how? We want the management subnet to be used.

     

    In our current setup everything is using the  management port but now our management wants us to use the data port for the guest network (guest is currently in the controllers).



  • 2.  RE: can the default data routing for destination network in ClearPass be changed? if so how.

    EMPLOYEE
    Posted Aug 31, 2019 01:44 PM

    Could you try adding route like below and verify:

     

    network ip add mgmt -d 0/0 -g<mgmt port gateway>