Legal Disclaimer: The resource assets in this website may include abbreviated and/or legacy terminology for HPE Aruba Networking products. See www.arubanetworks.com for current and complete HPE Aruba Networking product lines and names.
Enabling GRE over IPsec for Tunnel and Mixed Modes
The Tunnel Orchestrator service establishes either IPsec Internet Protocol security. IPsec is a protocol suite for secure IP communications that authenticates and encrypts each IP packet in a communication session. tunnels or GRE Generic Routing Encapsulation. GRE is an IP encapsulation protocol that is used to transport packets over a network. tunnels between the access point (AP) and each of the Gateways present in the cluster. The IPsec tunnels provide end-to-end encryption of data traffic between the AP and the Gateway cluster. Based on the tunnel type to client's UAC, the AP can encapsulate client traffic in either GRE over IPsec or GRE without IPsec.
To configure secure data tunnels between AP and Gateway cluster, complete the following steps:
- In the WebUI, set the filter to a group that contains at least one AP.
The dashboard context for the group is displayed. - Under , click > .
- Click the icon.
The tabs to configure APs are displayed. - Click , and click the tab.
The Security details page is displayed. - Click the accordion.
- To enable IPsec tunnel for data traffic, turn on the toggle button.
- Click .
The toggle button is disabled by default. When this toggle button is enabled, the AP sends client traffic to Gateway through GRE over IPsec. When this toggle button is disabled, the AP sends client traffic to Gateway through GRE only.
