Aruba Central supports the feature isolates clients from one another and disables all peer-to-peer communication within the network. Client isolation disables inter-client communication by allowing only client to controller traffic from clients to flow in the network. All other traffic from the client that is not destined to the controller or configured servers will not be forwarded by the Instant AP.
This feature enhances the security of the network and protects it from vulnerabilities. can only be configured through the CLI. When is configured, the Instant AP learns the IP, subnetSubnet is the logical division of an IP network. mask, MACMedia Access Control. A MAC address is a unique identifier assigned to network interfaces for communications on a network. , and other essential information of the controller and the DNSDomain Name System. A DNS server functions as a phone book for the intranet and Internet users. It converts human-readable computer host names into IP addresses and IP addresses into host names. It stores several records for a domain name such as an address 'A' record, name server (NS), and mail exchanger (MX) records. The Address 'A' record is the most important record that is stored in a DNS server, because it provides the required IP address for a network peripheral or element. server. A subnet table of trusted destinations is then populated with this information. Wired servers used in the network should be manually configured into this subnet table to serve clients. The destination MAC of data packets sent by the client is validated against this subnet table and only the data packets destined to the trusted addresses in the subnet table are forwarded by the Instant AP. All other data packets are dropped.
feature is supported only in IPv4 networks. This feature does not support and affects and services.
Enabling Client Isolation Feature for Wireless Networks in Aruba Central
To enable the Client Isolation feature, complete the following steps:
1. In the app, set the filter to a group that contains at least one AP.
The dashboard context for the group is displayed.
2. Under , click > .
A list of access points is displayed in the view.
3. Click the icon.
The tabs to configure the access points are displayed.
4. Click the tab.
The WLANsWireless Local Area Network. WLAN is a 802.11 standards-based LAN that the users access through a wireless connection. details page is displayed.
5. In the page, click .
The page is displayed.
6. Click and expand .
7. Turn on the toggle switch.
8. Click .
