245
| IAP-VPN Deployment
Aruba Instant 6.5.0.0-4.3.0.0 | User Guide
DHCP Scope and VPN Forwarding Modes Mapping
The following table provides a summary of the DHCP scope and VPN forwarding modes mapping:
Options
Local
Local,
L2
Local,
L3
Centralize
d, L2
Centralize
d, L3
Distribute
d, L2
Distribute
d, L3
DHCP
server
VC
VC
VC
DHCP Server
in the
Datacenter
DHCP Server
in the
Datacenter
and VC acts
as a relay
agent
VC
VC
Default
Gateway
for clients
VC
Default
Gateway
in the
local
network
VC
Controller or
a router in
the
Datacenter
VC
Controller or
a router in
the
Datacenter
VC
Corporate
Traffic
Source-
NAT is
performe
d with
inner IP of
the IPsec
tunnel
Not
applicabl
e
Source-
NAT is
performe
d with
inner IP of
the IPsec
tunnel
L2 reachable
Routed
L2 reachable
Routed
Internet
Traffic
Source-
NAT is
performe
d with
local IP of
the VC
Locally
bridged
Routed
Source-NAT
is performed
with local IP
of the VC
Source-NAT
is performed
with local IP
of the VC
Source-NAT
is performed
with local IP
of the VC
Source-NAT
is performed
with local IP
of the VC
Branch
access
from
datacente
r
No
No
No
Yes
Yes
Yes
Yes
Table 51:
DHCP Scope and VPN Forwarding Modes Matrix
Configuring IAP and Controller for IAP-VPN Operations
This section describes the configuration procedures for the IAP and the controller to realize generic use cases.
For information on specific deployment scenarios, see
IAP-VPN Deployment Scenarios on page 396
.
This section describes the configuration procedures to perform on the IAP for generic use cases. For
information on specific deployment scenarios, see
IAP-VPN Deployment Scenarios on page 396
.
Configuring an IAP Network for IAP-VPN Operations
An IAP network requires the following configurations for IAP-VPN operations.
1.