Wireless Access

Hello forum,

Could someone explain for what purpose is static inner IP address used for?

Does it have anything to do with RAP VPN pools?

Thanks,

Screenshot or link to document, please.

When Remote APs were first invented, they used a username and password credentials in the local database and a preshared key, instead of certificates.  The parameter you are pointing at would make the inner ip, or VPN address, predictable for that specific RAP.  If you wanted to do a packet capture or RTLS with that RAP it would be helpful to make that inner ip address predictable, so that whatever application you are using knows what ip address to expect that traffic from.  It was rarely used in the past, and it is more rarely used now, because RAP deployments are certificate based.

Hi Colin,

Thanks for the comprehensive answer!

whats old is new again.... one current scenario which calls for static inner IP is when you are using the HPE switches with the 'aruba-vpn' and you want to manage them with Airwave.

Airwave cannot autodiscover the inner IP of a switch, and unlike an AP (which is managed via the controller itself) Airwave needs to have direct IP communication to the switch, ergo it must use the inner IP.

No one wants to have to modify the device in airwave every time it changes inner IP, so most likely use case will be a static inner IP.