NAC Guest Portal redundancy

  • 0
  • 1
  • Question
  • Updated 2 months ago
  • Answered
  • (Edited)
Hi all,
we are using Extreme Control with two redundant NAC appliances. The radius part is working fine, but now we want to add redundancy for the guest registration web page, too.

Does anyone have experience with two redundant guest portals in Extreme NAC? Is this a valid setup anyway?
In the EWC we now have set up redirection to the IP of the first NAC portal. At this point DNS could be used to get the redundancy to point to both NAC portals. But I'm not sure if this works out as a whole.

Thanks, Thomas
Photo of Thomas Hilber

Thomas Hilber

  • 168 Points 100 badge 2x thumb

Posted 2 months ago

  • 0
  • 1
Photo of Seth Bean

Seth Bean

  • 218 Points 100 badge 2x thumb
We have two redundant NAC appliances with the same portals.  GTAC helped us setup the configuration on the switches so they pickup the slack of the other if one is out of commission.  The portals work seamlessly.
Photo of Thomas Hilber

Thomas Hilber

  • 168 Points 100 badge 2x thumb
That's a good point to know that the two portals work together.  In our case the wirless controller is making the redirect to the portal. On the controller it's only possible to define one IP address or a FQDN. So maybe it's better to do the redirection on the switches. Could you give me a hint on how the switch configuration looks like?
Photo of SH

SH

  • 3,656 Points 3k badge 2x thumb
Hello Thomas,

if you use DNS Proxy (works with wireless controller) described here:
https://gtacknowledge.extremenetworks.com/articles/How_To/How-To-Determine-What-Type-of-Redirection-...

you can point the 1st DNS entry to NAC1 and an 2nd entry to NAC2. 

Best regards
Stephan