This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Route to external Radius Server on C35

Route to external Radius Server on C35

Peter_Kulmbrein
New Contributor II

‎11-05-2015 05:39 PM

Hello,

I have a little challenge with my new C35 Indentifi Wireless Controller and Radius Authentication as follows:

Setup different topologies tagged with vlan (VLAN 10, VLAN 99) and want to authenticate users on the Wireless Network that is bound to VLAN 10 via 802.1x - so far no problem, but the Radius is situated in a different vlan reachable via the Standardgateway of VLAN 99.

I tried to insert a static route but that didnt work out (invalid gateway ip adress). do i have to take care of anything special when trying to enter a static route?

is there any way to get that solved or do i have to setup ipforwarding on our switches (which our client i suppose doesn't really want to see because of security issues)

any ideas would be appreciated!

Peter
0 Kudos
7 REPLIES 7

Peter_Kulmbrein
New Contributor II

‎11-11-2015 01:13 PM

Hi,

at last the tip with the physical topology did solve the problem - i changed the topology and after that i was able to enter a static route to the radius.

Now everything working fine!

Thanks for help everyone 😉

BR
Peter
0 Kudos

Ronald_Dvorak
Honored Contributor

‎11-11-2015 11:34 AM

That isn't working as the topology of the SenBNoMgmt is bridge@ac.
You should always use at least one "physical" topology so you'd use it to route traffic.

I can't remember if that will work so you'd need to give it a try ... add another bridge@ac topology tagged 99 with a IP in the RADIUS subnet i.e. 172.17.71.99 and check whether the controller could communicate with the RADIUS.

-Ron
0 Kudos

Peter_Kulmbrein
New Contributor II

‎11-11-2015 11:13 AM

Name Mode L2:VlanId,tagged,port L3:IP,GW,DHCP L3:IPv6,Auto-Generated Admin admin N/A,N/A,Admin 172.16.0.21,172.16.0.254,N /A N/A, Bridged at AP untagged b@ap 4094,disable,N/A SenBNoWLAN b@ac 2769,enable,lag1 172.27.69.249,none,none VoiceSenBNo b@ap 2761,enable,N/A SenBNoGast b@ac 62,enable,lag1 10.62.0.21,10.62.0.254,loc al SenBNoBewo b@ac 61,enable,lag1 10.61.0.21,10.61.255.254,l ocal Voice b@ac 2761,disable,esa0 172.27.61.21,none,relay SenBNoMgmt b@ac 2768,enable,lag1 172.27.68.21,172.27.68.254 ,local
IP Adress of our Radius is 172.17.71.7 reachable via 172.27.68.254

BR
Peter
0 Kudos

Ronald_Dvorak
Honored Contributor

‎11-11-2015 10:53 AM

Could you please post a screenshot of controller GUI > Controller > Network > Topologies.
Also please tell me the RADIUS IP.

-Ron
0 Kudos
GTM-P2G8KFN