Wireless Access

 View Only

  • 1.  RAP VPN vs IAP VPN

    Posted Jul 08, 2020 11:46 AM

    Hi, 

     

    My customer is having a cloud first strategy and 95% of the workload is on Azure cloud. I am trying to build a solution with Aruba RAP but realize that Aruba controller can not deployed in Azure Cloud / not available on Azure Marketplace. So i am thinking to use Vitual Gateway on Azure and use IAP-VPN. But I am not sure whether some of the use cases that is supported on RAP VPN is supported with IAP VPN. What features I will not get with IAP VPN solution which are supported with RAP VPN. 

     

     



  • 2.  RE: RAP VPN vs IAP VPN

    Posted Jul 08, 2020 12:12 PM
    Look here:

    * https://community.arubanetworks.com/t5/Controllerless-Networks/RAP-or-IAP-with-VPN-to-MC/td-p/525209 (differences)
    * https://www.arubanetworks.com/assets/so/SG_IAP-VPN.pdf (overall solution with the microbranch and virtual gateway)



    Sent from Mail for Windows 10


  • 3.  RE: RAP VPN vs IAP VPN

    Posted Jul 08, 2020 12:42 PM

    I am looking for more information. RAP VPN supports priritise SIP traffic on the VPN to RAP, does it supported with IAP VPN.

     

    Some more use cases such as certificate based authetication with Azure AD, Split Tunnel on one SSID and Full Tunnel on another SSID and use Wired ports on the RAP for local printer / IP Phone. Does it all work with IAP VPN solution? 



  • 4.  RE: RAP VPN vs IAP VPN

    Posted Jul 08, 2020 01:25 PM
    Did you read the doc I provided earlier ? Most of those questions are answered there

    https://www.arubanetworks.com/assets/so/SG_IAP-VPN.pdf

    Yes , all those are possible with an IAP.
    IAPs have a built in firewall so you prioritize certain traffic like VoIP.
    Based on the AP you purchase you can provide wired network connectivity to local devices (303H , 505H) provide additional ports



    Thank you

    Victor Fabian

    Pardon typos sent from Mobile


  • 5.  RE: RAP VPN vs IAP VPN

    Posted Jul 09, 2020 01:34 PM

    Thank you. While i read the document, i came across a point [Marked yellow in attached document] where it is mentioned in centralized L2 it is possible to have tunnel all traffic or split tunnel traffic based on user role. 

     

    Is it applicable to a single ssid ? I have ask from customer to tunnel normal users traffic to data center but power user traffic to internet locally on same ssid. Can i do it by implementing cppm integrated with vgw on cloud and on prem AD ? 

    Capture.PNG

     



  • 6.  RE: RAP VPN vs IAP VPN

    Posted Jul 10, 2020 02:51 PM

    The feature i am looking for similar to mixed mode in ArubaOS 10. Will it be supported here? 



Related Content