[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

HP Layer 3 Mobility

Posted on 2014-07-15
4
Medium Priority
?
278 Views
Last Modified: 2014-08-06
Hello experts.  I have an issue that is completely perplexing me.  I have setup an HP MSM 720 WLC with HP 460 AP's.   The Access network is set to IP 172.16.0.124/25 and Internet Network is 10.1.10.1.  My wireless at my main location uses Vlan's 210 for Guest (Open, captive portal, 10.0.4.0/23), 215 for Employee (WPA2-PSK, 10.0.0.0/23) and 220 for private (802.1x, 10.0.6.0/23).  

The HP WLC controls the authentication and access for the Guest and Employee network.  It handles DHCP, DNS and everything else.  However, for Private it forwards authentication to our RADIUS server and DHCP/DNS to our DC.  So it basically does nothing other than broadcast the private SSID.  Everything at our main location works just fine.  Everyone can connect to their respective SSID's and browse the internet and access the resources they are supposed to.  

However, when I try to place an AP at a remote site (LanLink Metro Ethernet) the AP provisions just fine and I can connect and get to the internet using Guest and Employee, but Private doesn't work.  I can connect to it just fine and it obviously forwards my authentication credentials to my RADIUS server, but it won't pull an IP address.  Even if I assign a correct IP address and default gateway it still shows limited connectivity and I can't ping anything local.  I'm hoping someone with experience setting up HP wireless can help on this as I am at a loss.  If you need more info or screen shots please let me know.  Thanks.
0
Comment
Question by:cmhtech
  • 3
4 Comments
 
LVL 47

Expert Comment

by:Craig Beck
ID: 40202859
Have you configured the AP/VSC to tunnel traffic back to the WLC or is it terminating traffic locally at the remote switch?
0
 

Author Comment

by:cmhtech
ID: 40232756
Terribly sorry this project ended up being put on the back burner and I never got a notification about this reply.  I am attempting to use the MTM to tunnel the traffic from the AP  to the WLC.  What is weird is after I checked the MTM and then set my Private network in local networks it worked for about 2 hours and then went back to giving me limited connectivity.
0
 

Accepted Solution

by:
cmhtech earned 0 total points
ID: 40234051
Nevermind I figured it out.  Every manual I read kept talking about home networks and user based networks and other useless crap that isn't needed to configure this correctly.  All I did was remove my private network from the local networks group, add a static route on the HP WiFi controller to point all traffic for my private network to the WLC access network default gateway, turned off DNS Interception and enabled Mobility Traffic Manager/Block users.
0
 

Author Closing Comment

by:cmhtech
ID: 40243220
Figured it out
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Originally, this post was published on Monitis Blog, you can check it here . It goes without saying that technology has transformed society and the very nature of how we live, work, and communicate in ways that would’ve been incomprehensible 5 ye…
In this article I will be showing you how to subnet the easiest way possible for IPv4 (Internet Protocol version 4). This article does not cover IPv6. Keep in mind that subnetting requires lots of practice and time.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…

834 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question