Support User Manuals

Dell 6.2 Server User Manual

Open as PDF

of 869

h. In the IP tab, provide the IP address of the RAP and click OK.

VPN Local Pool Configuration

The VPN local pool is used to assign an IP Address to the IAP after successful XAUTH VPN.

(host) # ip local pool "rapngpool" <startip> <endip>

VPN Profile Configuration

The VPN profile configuration defines the server used to authenticate the IAP (internal or an external server) and

the role for IAP user. This role is used to define src-nat rule to Radius server to get Dynamic Radius proxy working.

(host) (config) #ip access-list session iaprole

(host) (config-sess-iaprole)#any host <radius-server-ip> any src-nat

(host) (config-sess-iaprole)#any any any permit

(host) (config-sess-iaprole)#!

(host) (config) #user-role iaprole

(host) (config-role) #session-acl iaprole

(host) (config-role) #!

(host) (config) #aaa authentication vpn default-iap

(host) (VPN Authentication Profile "default-iap") #server-group default

(host) (VPN Authentication Profile "default-iap") #default-role iaprole

For more information on VPN profile configuration, see the

Dell PowerConnect W-Series Instant Access Point Guide

.

Radius proxy for VPN connected IAPs

The Radius proxy for VPN connected IAPs functionality defines the server used to authenticate the IAP (internal or

an external server) and the role for IAP user. This role is used to define src-nat rule to Radius server to get Dynamic

Radius proxy working.

(host) (config) #ip access-list session iaprole

(host) (config-sess-iaprole)#any host <radius-server-ip> any src-nat

(host) (config-sess-iaprole)#any any any permit

(host) (config-sess-iaprole)#!

(host) (config) #user-role iaprole

(host) (config-role) #session-acl iaprole

(host) (config-role) #!

(host) (config) #aaa authentication vpn default-iap

(host) (VPN Authentication Profile "default-iap") #server-group default

(host) (VPN Authentication Profile "default-iap") #default-role iaprole

For more information on configuration of RADIUS proxy for VPN connected IAPs, see the

Dell PowerConnect W-

Series Instant Access Point User Guide.

Viewing Branch Status

To view the details of the branch information connected to the controller, issue the show iap table command.

Example

This example shows the details of the branches connected to the controller:

(host) (config) #show iap table

Branch Key Index Status Inner IP MAC Address

---------- ----- ------ -------- -----------

d8f6095a01f89b7aea4340c080c3e3c8bd062758461c32c92-

d

8 DOWN 0.0.0.0

d8:c7:c8:c0:01:6-

c

DellPowerConnectW-SeriesArubaOS6.2 | User Guide InstantAP VPN Support | 729

previous next