For some remote office where we only have couple users and a printer we just send out 303H and 8 port switch so no need for 9004 or anything like that.
Found the interface ACL place for IAPs, I think it's under Security -> IDS/IPS (weird place though) --> Firewall Settings --> Access Rules
Aruba documentation is very much "Aruba documentation like" also in this regard, for example "To AP Network—Traffic to the specified Instant AP network is allowed. After selecting this option, specify the domain name in the IP text box."
So what domain name am I supposed to enter in a IP text box and what "AP Network" actually is... anything behind the IAP? How does this differ from just specifying destination addresses? If I need to specify IP addresses anyway
I'm wondering as this is inbound rule, do I actually need anything here besides our management network? Isn't the VPNC <-> IAP control traffic specified in the role at the VPNC. Though am I blocking something by adding just management policy here...