I have two 7205-US controllers in an HA active/standby pair. While on a wired connection I am able to access the management interface over SSH/HTTPS of both. While on the internal WLAN I am unable to access either the SSH interface or HTTPS interface.
I ran a packet capture and I see the HTTPS session establishes a TCP 3 way handshake, so there appears to be bidirectional routing working. Once I sent the TLS 1.2 Client Hello, I get no further response from the controller. TCP retransmissions occur until the client finally sends a TCP reset, tearing the session down.
I'm unsure why this is happening as I can access the secondary (passive) controller on the WLAN without issue. Is there anything specifically that would cause this in terms of settings to prevent/deny a user access to the management interface?