Wireless Access

Reply
Highlighted
Occasional Contributor II

Bridged vlan SSID clients no network

Bridge forwarding mode SSID clients only receiving DHCP from gateway which is the firewall at this location

Firewall is the gateway and DHCP it's tagged 251 to a Aruba 2920 layer 2 switch and AP 275 tagged 251

SSID has vlan 251

Eth 0 bridged forward - native 1, tagged 251 (same throughout the set up)

Clients connect get dhcp but have no access to anything else not even ping. did packet tracing and see things coming through but they are lost

Only Arp allowed

the switch sees the Mac addresses of the clients on the SSID the firewall also see the same.

Any thoughts???
Super Contributor II

Re: Bridged vlan SSID clients no network

As I understand correctly the client doesn't get an IP address.
Do you see a DHCP offer for the client from the firewall?

Willem Bargeman ACMX#935 | ACCX #822

Please give me kudos if my post was useful!
If your issue is solved mark the post as solution!
Occasional Contributor II

Re: Bridged vlan SSID clients no network

Client does receive DHCP

It will receive an IP address default gateway and DNS
Guru Elite

Re: Bridged vlan SSID clients no network

EDIT:  someone else answered.


*Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba Networks or Hewlett Packard Enterprise.*
ArubaOS 8.4 User Guide
InstantOS 8.3 User Guide
Airheads Knowledgebase
Airheads Learning Videos
Aruba Central Documentation
Sign up for Security Alerts
Aruba Technical Webinars
Super Contributor II

Re: Bridged vlan SSID clients no network

And what is not working?

Willem Bargeman ACMX#935 | ACCX #822

Please give me kudos if my post was useful!
If your issue is solved mark the post as solution!
Occasional Contributor II

Re: Bridged vlan SSID clients no network

The SSID clients who receive a DHCP address are not able to reach the internet (8.8.8.8),ping their gateway (fw) or devices on the vlan.

The firewall which gave them the DHCP address is not able to ping them either.

Occasional Contributor II

Re: Bridged vlan SSID clients no network

Could this be a user role issue?

Even though they are bridged and not tunneling back to the controller , does initial user role apply here?

Super Contributor II

Re: Bridged vlan SSID clients no network

Does the client have an ARP entry for the firewall?
Is there any firewall rule configured within the user role?
Do you see some traffic reaching the firewall?

Willem Bargeman ACMX#935 | ACCX #822

Please give me kudos if my post was useful!
If your issue is solved mark the post as solution!
Super Contributor II

Re: Bridged vlan SSID clients no network

Yes the initial role is here also applied

Willem Bargeman ACMX#935 | ACCX #822

Please give me kudos if my post was useful!
If your issue is solved mark the post as solution!
Occasional Contributor II

Re: Bridged vlan SSID clients no network

Yes we see ARP entries

Rules to allow any any

Firewall only sees ARP traffic
Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: