Wireless Access

I have an IAP 103 that is setup for Guest. The IAP is connected to a network that is routable to other networks within the office. How can I configure the access rules to deny Guests from accessing internal office networks (192.168.1.1/24, 192.168.2.0/24 and 192.168.3.0/24) but still allow HTTP, HTTPS, and DNS resolution from/to Internet? Typically you configure the access rule to allow first and deny all last but in this case if I followed that method Guest would be able to get to all those networks.

 

Also, what is the "to master IP" access rule option? Would that allow me to deny anyone on the Guest network from being able to access the IAP?

 

Thanks

GM

Assign the following guest final role ACLs should look like this based on your requirements :
allow dns
allow dhcp
Deny internal
allow http/https

Please take a look at the free instant training :
http://www.arubanetworks.com/products/networking/aruba-instant/instant-training/

Get Outlook for iOS

I see the following deny options: - to all destinations - to a particular server - except to a particular server - to a network - except to a network - to domain name - to master IP - to AP network - to AP IP There is no deny Internal Thanks GM

You will need to add / define the internal network under (to a network)
If it is more than one subnet if you cant summarize it , you will need to add another deny rule for that other one

ahh.. Sorry. My mind was stuck on the work internal

 

Thanks

 

I will try and let ya know.

 

GM