Mobile Officer at Aruba Networks

The most important thing for a mobile employee is to receive all corporate services, regardless of his location. In this regard, I really like the slogan of Aruba Networks: "People Move Networks Must Follow". Consider this concept.



First of all, I want to note that now more and more often employees refuse to carry their laptops with them, preferring tablets and smartphones. Constantly dragging laptops becomes more the prerogative of techies, although again, everyone has everything individually. This is me to the fact that support for mobile platforms is simply a necessary criterion for organizing comfortable access.





')

For example, our employee wants to work comfortably from home or in a hotel. Get access to telephony, mail and CRM system. In this case, with all the devices familiar to him and without additional fuss.



For such cases, we use RAP 2.







This remote access point is enough just to plug a patchcord into the network, after which you will be provided with Wi-Fi access to your work network with all security policies, while not receiving delays in the Internet, since the rest of the traffic will follow a short route through your provider , I do not use the corporate network.



The scheme of work is the same as with the older piece of hardware - RAP 5.







I already discussed the nuances of split tunneling in the article: Aruba OS 6.1 and Split Tunnel on RAP 5 . When you configure the RAP 2 profile on the controller, everything is the same.



By the way, on the RAP 2 there is one LAN port, if you wish, you can even prokin a clear voice vlan to it and hook on a SIP or H.323 phone.



I also want to note that the remote point not only provides access, but also provides an adequate level of access control and protection of the radio space, as it is part of the Aruba infrastructure.







Now consider the case when our employee is mobile to the impossibility and he needs access always and everywhere. For this, Aruba has a mobile client, the Virtual Intranet Access Client, for different platforms, it is especially nice that there are mobile platforms, and without requiring a jailbreak and root.







It's cool that the client, like RAP, works in split-tunneling mode, and also knows how to determine when it is directly in the corporate wireless network, without bothering you with additional authorization.