Wireless Access

Occasional Contributor II

OSPF and Master-Local active-active with VRRP

we have two controllers Master and localrunning VRRP in active-active deployment, with redundancy between both.

the design were deployed in L2 deployment,, the user vlans were created on the WLCs and core switch.


interface vlan IPs were created too , the default route one WLCs is core switch.


how should be the configuration to switch it L3 and use OSPF so we can remove these VLANs from core switch ??



Guru Elite

Re: OSPF and Master-Local active-active with VRRP

You should only use OSPF if you have a user VLAN/subnet that would need to dynamically change or switch between two Aruba controllers.  If you do not have WLCs that are redundant to each other, just use a static route.




Let me restate this.  OSPF in the Aruba controller is designed to provide reachability for a user VLAN when controllers are physically separated.  It is most commonly used when you have two remote access point controllers that are in separate datacenters; when access points fail over from one remote access point controller to another, the first controller will stop advertising reachability into your network for the user VLAN and the second controller will start advertising it.  That is designed so that a user vlan will "follow" your access points from one controller to a backup controller and your network will dynamically provide reachability for that VLAN via OSPF.  That is the primary intended use; RAP controllers in different datacenters backing each other up.


In a Campus WLAN there are quite a few better options besides OSPF:


- If your Aruba WLCs are  just bridging user traffic to your layer 3 switches (preferred), there is nothing for you to do, because if your access points are failing over to your second controller, they are just bridging user traffic to the same L3 Vlan and user traffic will continue

- If your Aruba WLCs are the default gateway for your clients, you would put a VRRP between your Aruba WLCs and just point a static route from your infrastructure to the VRRP for your client VLAN(s)  so that you will always have reachability.


In your situation you have active/active, but do you have some sort of redundancy between them?  If you only have two controllers and they have redundancy, you should use master/backup master (active/passive).


*Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba Networks or Hewlett Packard Enterprise.*
ArubaOS 8.3 User Guide
InstantOS 8.3 User Guide
Airheads Knowledgebase
Airheads Learning Videos
Search Airheads
Showing results for 
Search instead for 
Did you mean: