Table of Contents
switch(config)# interface 2 device-type network-device
Switch(config)# show running config
; JL074A Configuration Editor; Created on release #KB.16.04.0000x
; Ver #10:9b.7f.bf.bb.ff.7c.59.fc.7b.ff.ff.fc.ff.ff.3f.ef:81
hostname "Aruba-3810M-48G-PoEP-1-slot"
module 1 type jl074x
module 2 type jl074y
flexible-module A type JL078A
interface 2
device-type network-device
exit
interface 3
device-type network-device
exit
HTTP Proxy support with ZTP overview
The Aruba switch connects through Public Cloud or infrastructure to access Aruba Activate and Aruba Central.
The switch can use a combination of the Public and Private networks to access Aruba AirWave, and Aruba
ClearPass. In this case, the switch is visible as an Internet asset that can cause data breaching. Routing
connections through the enterprise proxy servers prevents the data breaching.
The ArubaOS-Switch does not set up an HTTP/SSL connection with the public or private server directly. Instead,
the switch sets up a TCP connection with the proxy server.
If the public server is available and reachable through the proxy server, then the switch connection to the
destination server is successful. After establishing the connection, the proxy server behaves as a Network
Address Translation (NAT) device, in which case, the proxy server forwards the received packets to the intended
destinations.
Limitations:
•
HTTPS proxy is not supported.
•
Authenticating the HTTP proxy is not supported.
•
HTTP proxy support is only for IPv4 endpoints.
Configuring ZTP:
When the switch is provisioned for Central or Controller, switch is managed once it is connected to the public
network. In case the user wants to reach the public network through the proxy, then the IP address of the proxy
server must be present in the switch before initiating the Activate or Central connectivity.
In ZTP mode, the proxy IP address can be received using the DHCP option. The ZTP mode works when the
switch is booted with a default configuration. For the switch to connect to public servers through proxy, the proxy
IP must be known through DHCP. The switch requests an IP address from the primary VLAN.
The proxy IP address is received through a vendor-specific DHCP option. The switch parses and uses the proxy
IP address to connect in ZTP mode. Aruba switches reserve suboption -148 under DHCP vendor-specific option
43 for configuring proxy URL.
After the switch is out of ZTP mode, the proxy IP address if configured through CLI takes precedence. Otherwise,
the Aruba OS switch may use the DHCP received proxy IP address for connectivity.
e Proxy Configuration
When configuring the proxy server, the following applications will be taking the proxy route to reach the
destination. You can configure the proxy server as indicated in DHCP or proxy server command.
336
device (switch / AP / router).
Aruba 2930F / 2930M Management and Configuration Guide
for ArubaOS-Switch 16.08
Table of Contents
Troubleshooting
