Wireless Access

last person joined: 3 hours ago 

Access network design for branch, remote, outdoor, and campus locations with HPE Aruba Networking access points and mobility controllers.
Back to discussions
Expand all | Collapse all

RAP: Bridge mode with Always operational Mode

This thread has been viewed 4 times

  • 1.  RAP: Bridge mode with Always operational Mode

    Posted Jun 12, 2013 01:18 AM

    Hi Friends,

     

    We have deployed some campus AP's with Tunnel forwarding mode in our campus. These users are authenticated with MAC Authentication, Now we want to expand our network to the remote location, The idea is to apply RAP in Bridge mode with Always operational mode to provide access to the users at remote locations, Plaese advice does the MAC authentications support with bridge forwarding mode.

     



  • 2.  RE: RAP: Bridge mode with Always operational Mode

    Posted Jun 12, 2013 05:15 AM

    The mac-authentication is not done on the AP.  -> is sent to the controller. The controller wil use the authentication server or its local internal database to check the mac-adres.

    In bridge mode, there is a tunnel from the AP for 802.1x traffic.  This is the only traffic that is sent to the controller when the ssid is in bridge mode.  No special rules are needed.  The AP automagically does that.

     

    You can use Split-tunnel mode.

    In the policy you have to create some rules.

     

    the trafffic who match the rules with action=" permit" wil use the tunnel

    the traffic who macht the rules with action = "route src-nat" wil bridge the traffic localy

     

    I hopte this makes it a little bit clear.

     (if not contact me via Skype)

     

    http://community.arubanetworks.com/aruba/attachments/aruba/108/1002/1/split-tunneling.pdf

    http://community.arubanetworks.com/t5/Access-Points-and-Mesh-Routers/Split-tunnel-for-RAP-s/td-p/67452