This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Network Policy Questions for a new Extreme User.

Network Policy Questions for a new Extreme User.

Go to solution
coadmin
New Contributor

‎06-26-2025 08:53 AM

We are a new Extreme organization coming from HP/Aruba. We are implementing Extreme APs, and that is going great. We are now almost ready to start replacing our existing switches with Extrem,e and I have some questions. 

We have 7 buildings, each with multiple data closets. Each closet will have mostly the same hardware and network configuration, but not completely the same. 

1. Should I have a network policy for each data closet? 

2. Do I try to implement VLANS and such at a policy level, or is it just easier to console in and do it?

3. How do you provide static IPs for the switches with EIQ? It isn't obvious to me yet. 

Thank you for any help!

0 Kudos
1 ACCEPTED SOLUTION

Go to solution
Brian_Anderson1
Contributor II

‎06-27-2025 06:15 AM

Probably a bit much to cover in a post, would recommend having someone look at your set up and help setup your Policy Manager etc.

I'll try to answer with a 30,000 ft view.

1.  I would say no, usually policies are created based on the access you want a device.  Say cameras get x vlan and perhaps only access internet if they are cloud cameras.

2. I would setup vlans at policy level.  When a device authenticates (you didn't mention nac or other auth, so this might not pertain to you), the switch will set the vlan on the port no matter where you plug it in.  If you have different vlans for same type of device, i.e. Camera in building 1 has vlan 10 and camera in building 2 has vlan 20, you can setup Vlan Islands, so that you can keep the same role, but the vlan applied to that location is different.

3.  On your switch XIQ (I presume you mean the cloudIQ platform), click on the Configure/Device Configuration, turn on Mgmt Interface Settings and set your IP there.

View solution in original post

0 Kudos
1 REPLY 1

Go to solution
Brian_Anderson1
Contributor II

‎06-27-2025 06:15 AM

Probably a bit much to cover in a post, would recommend having someone look at your set up and help setup your Policy Manager etc.

I'll try to answer with a 30,000 ft view.

1.  I would say no, usually policies are created based on the access you want a device.  Say cameras get x vlan and perhaps only access internet if they are cloud cameras.

2. I would setup vlans at policy level.  When a device authenticates (you didn't mention nac or other auth, so this might not pertain to you), the switch will set the vlan on the port no matter where you plug it in.  If you have different vlans for same type of device, i.e. Camera in building 1 has vlan 10 and camera in building 2 has vlan 20, you can setup Vlan Islands, so that you can keep the same role, but the vlan applied to that location is different.

3.  On your switch XIQ (I presume you mean the cloudIQ platform), click on the Configure/Device Configuration, turn on Mgmt Interface Settings and set your IP there.

0 Kudos
GTM-P2G8KFN