Hi
I really need a help as all my guest and employee wifi client ip had turn out become AP IP while it hit the Firewall. I have few ACL and firewall rules policies get bypass as everyone from WIFI route in by AP are all AP IP.
Below is my network setup:
Aruba AP303 - have 2 VLAN. VLAN 77 (tagged port 8) is for guest wifi users. VLAN 188 (untagged port 8). VLAN 188 is a primary VLAN, and IP of AP is 192.168.188.251
Aruba 2930f switch is sit in between of AP and Firewall, I have set the port 8 to allow both VLAN accessing the same port, i have assigned ip 192.168.188.254 and 192.168.77.254 as their port IP in VLAN.
Firewall have set a monitor and block ip 199.199.199.199 (example), when client access the 199.199.199.199 via the either guest or employee wifi, my firewall show the source ip is from 192.168.188.251 no matter the wifi getting a ip from vlan 77 or 188. if i connect with LAN cable with gateway set as firewall ip, i got the actual source ip recorded, but i i change the NIC gateway to Aruba switch ip (either vlan 77 or 188 ended with 254), i will again get my ip recorded in firewall with my AP IP.
Do you have any clue?