Wireless Access

Reply
Highlighted
Occasional Contributor II

Bridged vlan SSID clients no network

Bridge forwarding mode SSID clients only receiving DHCP from gateway which is the firewall at this location

Firewall is the gateway and DHCP it's tagged 251 to a Aruba 2920 layer 2 switch and AP 275 tagged 251

SSID has vlan 251

Eth 0 bridged forward - native 1, tagged 251 (same throughout the set up)

Clients connect get dhcp but have no access to anything else not even ping. did packet tracing and see things coming through but they are lost

Only Arp allowed

the switch sees the Mac addresses of the clients on the SSID the firewall also see the same.

Any thoughts???

Accepted Solutions
Highlighted
Occasional Contributor II

Re: Bridged vlan SSID clients no network

Solution!

Found an policy entry was put in the valid user table denying that vlan

Removed the deny from the valid user table.

Clients are now connected to network and internet

View solution in original post


All Replies
Highlighted
MVP Expert

Re: Bridged vlan SSID clients no network

As I understand correctly the client doesn't get an IP address.
Do you see a DHCP offer for the client from the firewall?

Willem Bargeman ACMX#935 | ACCX #822

Please give me kudos if my post was useful!
If your issue is solved mark the post as solution!
Highlighted
Occasional Contributor II

Re: Bridged vlan SSID clients no network

Client does receive DHCP

It will receive an IP address default gateway and DNS
Highlighted
Guru Elite

Re: Bridged vlan SSID clients no network

EDIT:  someone else answered.


*Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba Networks or Hewlett Packard Enterprise.*
ArubaOS 8.5 User Guide
InstantOS 8.5 User Guide
Airheads Knowledgebase
Airheads Learning Videos
Remote Access Point Solution Guide
ArubaOS Consolidated Release Notes
ArubaOS 8 ViA VPN Solution Guide
Highlighted
MVP Expert

Re: Bridged vlan SSID clients no network

And what is not working?

Willem Bargeman ACMX#935 | ACCX #822

Please give me kudos if my post was useful!
If your issue is solved mark the post as solution!
Highlighted
Occasional Contributor II

Re: Bridged vlan SSID clients no network

The SSID clients who receive a DHCP address are not able to reach the internet (8.8.8.8),ping their gateway (fw) or devices on the vlan.

The firewall which gave them the DHCP address is not able to ping them either.

Highlighted
Occasional Contributor II

Re: Bridged vlan SSID clients no network

Could this be a user role issue?

Even though they are bridged and not tunneling back to the controller , does initial user role apply here?

Highlighted
MVP Expert

Re: Bridged vlan SSID clients no network

Does the client have an ARP entry for the firewall?
Is there any firewall rule configured within the user role?
Do you see some traffic reaching the firewall?

Willem Bargeman ACMX#935 | ACCX #822

Please give me kudos if my post was useful!
If your issue is solved mark the post as solution!
Highlighted
MVP Expert

Re: Bridged vlan SSID clients no network

Yes the initial role is here also applied

Willem Bargeman ACMX#935 | ACCX #822

Please give me kudos if my post was useful!
If your issue is solved mark the post as solution!
Highlighted
Occasional Contributor II

Re: Bridged vlan SSID clients no network

Yes we see ARP entries

Rules to allow any any

Firewall only sees ARP traffic
Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: