Aruba Mesh Network and Mesh IAP

Mesh Network Overview

The mesh solution effectively expands and configures network coverage for outdoor and indoor enterprises in a wireless environment. The mesh network automatically reconfigures broken or blocked paths when traffic traverses across mesh Instant Access Point (IAP). This feature provides increased reliability by allowing the network to continue operating even when an IAP is non-functional or if the device fails to connect to the network.

A mesh network requires at least one valid wired or 3GThird Generation of Wireless Mobile Telecommunications Technology. See W-CDMA. uplink connection. The mesh network must be provisioned by plugging into the wired network for the first time.

Mesh IAPs

The IAPs that are configured for mesh can either operate as mesh portals or as mesh points based on the uplink type.

IAP as Mesh Portal

Any provisioned IAP that has a valid wired or 3G uplink connection functions as a mesh portal. A mesh portal acts as a gateway between the wireless mesh network and the enterprise wired LANLocal Area Network. A LAN is a network of connected devices within a distinct geographic area such as an office or a commercial establishment and share a common communications line or wireless link to a server.. The mesh roles are automatically assigned based on the IAP configuration. The mesh portal can also act as a virtual controller.

The mesh portal reboots after 5 minutes, when it loses its uplink connectivity to a wired network.

IAP as Mesh Point

The IAP without an ethernet link functions as a mesh point. The mesh point establishes an all-wireless path to the mesh portal and provides traditional WLANWireless Local Area Network. WLAN is a 802.11 standards-based LAN that the users access through a wireless connection. services such as client connectivity, IDSIntrusion Detection System. IDS monitors a network or systems for malicious activity or policy violations and reports its findings to the management system deployed in the network. capabilities, user role association, and QoSQuality of Service. It refers to the capability of a network to provide better service and performance to a specific network traffic over various technologies. for LAN-to-mesh communication to the clients, and performs mesh backhaul or network connectivity. The mesh points authenticate to the mesh portal and establish a secured link using AESAdvanced Encryption Standard. AES is an encryption standard used for encrypting and protecting electronic data. The AES encrypts and decrypts data in blocks of 128 bits (16 bytes), and can use keys of 128 bits, 192 bits, and 256 bits. encryption.

A mesh point also supports LAN bridging by connecting any wired device to the downlink port of the mesh point. In the case of single ethernet port platforms such as Instant AP-105, you can convert the Eth0 uplink port to a downlink port by enabling Eth0 Bridging.
Redundancy is observed in a mesh network when two Instant APs have valid uplink connections, and most mesh points try to mesh directly with one of the two portals.

There can be a maximum of eight mesh points per mesh portal in a mesh network. When mesh IAPs boot up, they detect the environment to locate and associate with their nearest neighbor. The mesh IAPs determine the best path to the mesh portal ensuring a reliable network connectivity.

In a dual-radio, the 2.4 GHzGigahertz. radio is always used for client traffic, and the 5 GHz radio is always used for both mesh-backhaul and client traffic.

Automatic Mesh Role Assignment

Aruba Central (on-premises) supports enhanced role detection during IAP boot-up and IAP running time. When a mesh point discovers that the EthernetEthernet is a network protocol for data transmission over LAN. 0 port link is up, it sends loop detection packets to check the availability of Ethernet 0 link. If the Ethernet 0 link is available, the mesh point reboots as a mesh portal. Else, the mesh point does not reboot.

Mesh Role Detection during System Boot-Up

If the ethernet link is down during Instant AP boot-up, the IAP acts as a mesh point. If the Ethernet link is up, the IAP continues to detect if the network is reachable in the following scenarios:

In a static IP address scenario, the IAP acts as a mesh portal if it successfully pings the controller. Otherwise, it acts as a mesh point.
In case of DHCPDynamic Host Configuration Protocol. A network protocol that enables a server to automatically assign an IP address to an IP-enabled device from a defined range of numbers configured for a given network. , the IAP acts as a mesh portal when it obtains the IP address successfully. Otherwise, it acts as a mesh point.
In case of IPv6, IAPs do not support the static IP address but only support DHCP for detection of network reachability.

If the IAP has a 3G or 4GFourth Generation of Wireless Mobile Telecommunications Technology. See LTE. USBUniversal Serial Bus. USB is a connection standard that offers a common interface for communication between the external devices and a computer. USB is the most common port used in the client devices. modem plugged, it always acts as a mesh portal. If the IAP is set to Ethernet 0 bridging, it always acts as a mesh point

Mesh Role Detection during System Running Time

The mesh point uses the Loop Protection for Secure Jack Port feature to detect the loop when the ethernet is up. If the loop is detected, the Instant AP reboots. Otherwise, the Instant AP does not reboot and the mesh role continues to act as a mesh point.

Setting up Instant Mesh Network

To provision Instant APs as mesh Instant APs, complete the following steps:

Connect the Instant APs to a wired switch.
Ensure that the virtual controller key is synchronized and the country code is configured.
Ensure that a valid SSIDService Set Identifier. SSID is a name given to a WLAN and is used by the client to access a WLAN network. is configured on the Instant AP.
If the Instant AP has a factory default SSID (Instant SSID), delete the SSID.
If an ESSIDExtended Service Set Identifier. ESSID refers to the ID used for identifying an extended service set. is enabled on the virtual controller, disable it and reboot the Instant AP cluster.
Disconnect the Instant APs that you want to deploy as mesh points from the switch, and place the Instant APs at a remote location. The Instant APs come up without any wired uplink connection and function as mesh points. The Instant APs with valid uplink connections function as mesh portals.

Configuring Wired Bridging on Eth0 for Mesh Point

Aruba Central (on-premises) supports wired bridging on the Eth0 port of an Instant AP. You can configure wired bridging, if the Instant AP is configured to function as a mesh point.

To configure support for wired bridging on the Eth0 port of an Instant AP from Aruba Central (on-premises) UI, complete the following steps:

In the Network Operations app, select one of the following options:
- To select an AP group in the filter:
  1. Set the filter to a group containing at least one AP.
    The dashboard context for the group is displayed.
  2. Under Manage, click Devices > Access Points.
    A list of APs is displayed in the List view.
- To select an AP in the filter:
  1. Set the filter to Global or a group containing at least one AP.
  2. Under Manage, click Devices > Access Points.
    A list of APs is displayed in the List view.
  3. Click an AP listed under Device Name.
    The dashboard context for the AP is displayed.
  4. Under Manage, click Devices > Access Point.
Click the Config icon.
The tabs to configure the APs are displayed.
Click the Access Points tab.
The Access Points table is displayed.
To edit an AP, select an AP in the Access Points table, and then click the edit icon.
Click the Uplink tab.
To configure a non-native uplink VLANVirtual Local Area Network. In computer networking, a single Layer 2 network may be partitioned to create multiple distinct broadcast domains, which are mutually isolated so that packets can only pass between them through one or more routers; such a domain is referred to as a Virtual Local Area Network, Virtual LAN, or VLAN., specify the number of VLANs in the Uplink Management VLAN text-box.
From the Eth0 Mode drop-down list, select any of the following:
- Uplink—Select this option to change the Eth0 bridging mode to the uplink port.
- Downlink—Select this option to change the Eth0 bridging mode to the downlink port.
Click Save Settings.

After configuring the support for wired bridging on the Eth0 port of an Instant AP, ensure that you reboot the Instant AP.

Mesh Cluster Function

Aruba Central (on-premises) introduces the mesh cluster function for easy deployments of Instant APs. You can configure the ID, password, and also provision Instant APs to a specific mesh cluster.

In a cluster-based scenario, you can configure unlimited mesh profiles in a network. When an Instant AP boots up, it attempts to find a mesh cluster configuration. The Instant AP fetches a pre-existing mesh cluster configuration, if any. Otherwise, it uses the default mesh configuration in which the SSID, password, and cluster name are generated by the virtual controller key.

Instant APs that belong to the same mesh network can establish mesh links with each other. The Instant APs can establish a mesh link in a standalone scenario also. However, the network role election does not take place in a standalone environment. Users can set the same mesh cluster configuration to establish mesh links with other networks. For more information on mesh cluster configuration, refer to the Mesh Instant AP Configuration chapter of Aruba Instant User Guide.

Send Feedback