HPE Community
M and MSM Series
1753767 Members
5519 Online
108799 Solutions
New Discussion

Re: Isolate two access controlled VSC on MSM Controller

 
Poilou
Occasional Contributor

‎09-02-2011 12:54 AM - last edited on ‎12-01-2013 06:12 AM by

‎09-02-2011 12:54 AM - last edited on ‎12-01-2013 06:12 AM by

Isolate two access controlled VSC on MSM Controller

Hello. Since I have no answer on my previous post, I think I should reformulate my question :

 

Configuration :

Controller MSM 760.

2 access controlled VSC working fine (VSC A and VSC B)

2 relay dhcp working fine

 

The problem is that a host on the VSC A is able to ping the LAN interface of VSC B and inversly.

For the moment, even host on VSC A can ping hosts on VSC B and inversly.

I really like to make those two VSC perfectly isolated.

 

 

I tried many things :

  • Use the firewall, but it only apply on internet port. The routing between the two networks is done on the LAN port
  • Put everybody on the internet port instead of using the LAN port for AP. Same result.
  • Use VLAN : even with VLANs, the access controll option force the traffic to pass thru the controller, which do the inter-vlan routing job.

I'm sure you'll have the answer, so... thanks in advance.

Poilou

 

P.S. This thread has been moved from Communications, Wireless (Legacy ITRC forum) to MSM Series. -HP Forum Moderator

0 Kudos
3 REPLIES 3
Poilou
Occasional Contributor

‎10-19-2011 02:18 AM

‎10-19-2011 02:18 AM

Re: Isolate two access controlled VSC on MSM Controller

I'm sorry to UP this topic. We have for the moment no answer and no idea.

Thanks in advance

0 Kudos
adil
Occasional Visitor

‎12-21-2011 05:48 AM

‎12-21-2011 05:48 AM

Re: Isolate two access controlled VSC on MSM Controller

Hi,

 

   Open the VSC A and go to Wireless clients > Allow traffic between : (Choose no)             then Save

   Open the VSC B and go to Wireless clients > Allow traffic between : (Choose all)     (it's by default all)   then Save

 

Now the wireless clients from the two VSCs should be isolated.

 

Whish it helps.

 

 

Adil

0 Kudos
BenBen486
New Member

‎01-12-2012 06:14 AM

‎01-12-2012 06:14 AM

Re: Isolate two access controlled VSC on MSM Controller

Hi

 

Allow me to extend as I have the exact same issue.

 

Except that I am trying to restrict communication between users of one VSC to EQUIPMENT - not users - of the other VSC.

 

In essence, have have all the management interfaces of the network equipment in one VSC, my gust connect through another one, and at this moment they can connect to the equipment web GUI (switches/AP) from their guest VSC. routed by the MSM.

 

Not very secure. Can I restrict that and stop intervlan routing on the MSM?

0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.