Wireless Access

Occasional Contributor II

Captive portal split tunnel

I'm trying to setup a split-tunnel with captive portal on remote AP's. However, the only examples I'm finding are those with the controller being the DHCP server for those guest users.


The setup isn't the same:

- RAP is connected on remote switch with vlan 1000 tagged.

- VLAN 1000 L3 is a Cisco router provided by the service provider and is the DHCP server (192.168.1.x) and DNS server.

- There is no L3 communication between this router and the controller

- CapPortal should be provided by the controller


How do I proceed with this?

Guru Elite

Re: Captive portal split tunnel

Split Tunnel is only supported when DHCP is obtained from a VLAN that is on the central controller.  DHCP could be provided by the controller or another device that is providing DHCP on that l2 VLAN on the controller.


The reason for this is that the user must have an addressable ip address to be able to communicate back to the datacenter.  If the user gets a non-routable address from the local site, this is not possible.

*Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba Networks or Hewlett Packard Enterprise.*
ArubaOS 8.5 User Guide
InstantOS 8.5 User Guide
Airheads Knowledgebase
Airheads Learning Videos
Aruba Central Documentation
Sign up for Security Alerts
Aruba Technical Webinars
Search Airheads
Showing results for 
Search instead for 
Did you mean: