Manualshelf

Owners manual

ManualsBrandsARUBA NETWORKS ManualsComputers & LaptopsAruba Instant IAP-325 IEEE 802.11ac 1.69 Gbit/s Wireless Access Point - 2.40 GHz, 5 GHz - 8 x Antenna(s) - 8 x Internal Antenna(
211212213214215216217218219220
Aruba Instant 6.4.0.2-4.1 | User Guide VPN Configuration | 211
Chapter 14
VPN Configuration
This chapter describes the following VPN configuration procedures:
l Understanding VPN Features on page 211
l Configuring a Tunnel from an IAP to Aruba Mobility Controller on page 211
l Configuring Routing Profiles on page 222
Understanding VPN Features
As IAPs use a Virtual Controller architecture, the IAP network does not require a physical controller to provide the
configured WLAN services. However, a physical controller is required for terminating Virtual Private Networks
(VPN) tunnels from the IAP networks at branch locations to datacenters, where the Aruba controller acts as a VPN
concentrator.
When the VPNis configured, the IAP acting as the Virtual Controller creates a VPN tunnel to an Aruba mobility
controller in your corporate office. The controller acts as a VPN end-point and does not supply the IAP with any
configuration.
The VPNfeatures are recommended for:
l Enterprises with many branches that do not have a dedicated VPN connection to the corporate office.
l Branch offices that require multiple APs.
l Individuals working from home, connecting to the VPN.
The survivability feature of IAPs with the VPN connectivity of RAPs allows you to provide corporate connectivity on
non-corporate networks.
Configuring a Tunnel from an IAP to Aruba Mobility Controller
IAP supports the configuration of tunneling protocols such as Generic Routing Encapsulation (GRE), IPsec, and
L2TPv3. This section describes the procedure for configuring VPN host settings on an IAP to enable communication
with a controller in a remote location:
l Configuring an IPSec Tunnel on page 211
l Enabling Automatic Configuration of GRETunnel on page 213
l Manually Configuring a GRETunnel on page 215
l Configuring an L2TPv3 Tunnel on page 216
Configuring an IPSec Tunnel
An IPsec tunnel is configured to ensure that the data flow between the networks is encrypted. When configured, the
IPSec tunnel to the controller secures corporate data.
You can configure an IPSec tunnel from Virtual Controller using the Instant UI or CLI.
In the Instant UI
To configure a tunnel using the IPSec protocol:
1. Click the More > VPN link at the top right corner of the Instant UI. The Tunneling window is displayed.
2. Select Aruba IPSec from the Protocol drop-down list.