How to route Wi-Fi guest traffic from Aruba AP 515 to SonicWALL TZ670 on separate VLAN

RobertM

Hello All, I'm new here and this is my first post.

I have a question for network experts.

Here is the current physical setup.

Aruba AP 515 (10 of them) running in control less setup. One is acting as conductor.

All APs are connected to Aruba 2930m switch.

Switch is connected to X0 (LAN) interface on firewall Switch runs with default settings, VLAN1 only.

DHCP is running on firewall.

What needs to be set up to route guest Wi-Fi on a separate VLAN from everything else?

Will this scenario work?

On TZ670, set up VLAN sub-interface on X0 (LAN) interface like X0:V30 with its own IP and DHCP.

On Aruba 2930 tag ports for VLAN 30.

On Aruba AP 515 specify static VLAN 30 on guest Wi-Fi.

Thank you,

Robert

Arkwright

I don't know about the Aruba side, but the Sonicwall side sounds good.

MarkD

If your "conductor" - actually the Aruba Virtual controller or VC has a network that has a primary usage of Guest, all your clients are allocated private IP address and the VC performs the NAT translation

Unless you change the client IP assignment to network assigned, then you can Tag this to the VLAN for your X:30 sub interface and create the necessary rules from the Zone assigned the X0:30