Wireless Access

last person joined: 12 hours ago 

Access network design for branch, remote, outdoor, and campus locations with HPE Aruba Networking access points and mobility controllers.
Back to discussions
Expand all | Collapse all

Does Aruba Support Port Isolation and how to do it?

This thread has been viewed 1 times

  • 1.  Does Aruba Support Port Isolation and how to do it?

    Posted Jun 08, 2014 11:59 AM

    How can I achive Port Isolation to connect many users on the same SSID and each one on specific VLAN



  • 2.  RE: Does Aruba Support Port Isolation and how to do it?
    Best Answer

    EMPLOYEE
    Posted Jun 08, 2014 12:01 PM
    You can’t assign individual VLANs to every user automatically, but you can enable “Deny inter-user bridging” which will stop wireless clients from being able to communicate with each other.

    Sent from Surface Pro


  • 3.  RE: Does Aruba Support Port Isolation and how to do it?

    Posted Jun 08, 2014 05:03 PM
    Couldn't you do it with derivation?


  • 4.  RE: Does Aruba Support Port Isolation and how to do it?

    Posted Jun 08, 2014 06:03 PM

    I'm sure there's some way you could rig it up with your RADIUS server, but it'd be a hassle.  The trick would be getting the RADIUS server to respond with a unique VLAN for each user that connects.

     

    The controller performs stateful firewall inspection and it can deny inter-user traffic as Tim pointed out.  Using roles and firewall policies, there shouldn't be any need to use VLANs for separation, unless PCI compliance is necessary.



  • 5.  RE: Does Aruba Support Port Isolation and how to do it?

    EMPLOYEE
    Posted Jun 08, 2014 06:15 PM
    I guess the question should be: what is the use case? Are you trying to replicate cisco private VLAN?