Unable to access AP Administration from another subnet

Unable to access AP Administration from another subnet
Unable to access AP Administration from another subnet
2021-11-04 16:04:23 - last edited 2021-11-05 00:55:43
Model: EAP225
Hardware Version: V3
Firmware Version: 5.0.5

When I am on the wired or wireless network in the 192.168.3.0/24 network (example 192.168.3.10), I am ABLE to connect to the Administration.

 

PROBLEM:

When I am on the OpenVPN, I am set to the 21 network in 192.168.21.0/24 (example 192.168.21.10)

  1. I can PING the AP ip located at 192.168.3.254 - No problem!
  2. I am UNABLE to connect to the Administration.
  3. I can access any machines on the 3 network.
  4. Only the Access Point management is unavailable.

 

Is there a setup I am missing in the adminsitration?

I tried putting my MAC address in the management filters. no luck

 

Any clue?

0
0
#1
Options
7 Reply
Re:Unable to access AP Administration from another subnet
2021-11-05 02:10:20

@MastaP Hey,do you mean that you have configured open vpn on the controller, and then after connecting to the vpn, devices on your external network cannot access your controller via IP?

0
0
#2
Options
Re:Unable to access AP Administration from another subnet
2021-11-05 02:55:30

@Yannie, thanks

I am just saying that when I access the AP web interface with a device that is under another network than the AP, the web interface does not respond, although I can ping it. 
 

Hoping this is clearer. 

0
0
#3
Options
Re:Unable to access AP Administration from another subnet
2021-11-05 08:10:11

@MastaP Sorry, just want to confirm more information.

1. your post mentions open vpn so I want to confirm if your EAP is working in controller mode ?
2. if they work in controller mode, how do you access the management interface of the EAP locally ?

0
0
#4
Options
Re:Unable to access AP Administration from another subnet
2021-11-05 12:49:40 - last edited 2021-11-05 16:50:00

@Yannie 

Sorry I am not sure about the nomenclature/naming here and not able to tell you if it is the controller or not.

 

So let me explain our structure, hopping it helps you defining if it is as a controller or AP. From my point of view our pfSense is the Controller.. 
 

  • The EAP is NOT providing the IPs to the connected clients. The DHCP server delivering IPs is on pfSense at 192.168.3.1
  • The EAP is at 192.168.3.254. And all machines access it's interface via https://192.168.3.254 (Any machine under network 3 can access it)
  • When users connect WIFI to the SSID of the EAP, their gateway is 192.168.3.1 (the pfSense). And they get an IP in the .3 network
  • When I connect with VPN which is provided by my pfSense, the giventip is in the 21 subnet. 192.168.21.x 
  • When I am on open vpn client ( in the 21 subnet), I can access ALL machines in the (3) network. EXCEPT the EAP (although I can ping 192.168.3.254 without problem, event when I am on VPN)

 

hoping this helps you help me?

If not, please indicate how I can get more info. 

0
0
#5
Options
Re:Unable to access AP Administration from another subnet
2021-11-10 21:12:15

@MastaP 

 

If I am understanding you correctly, you need to enable "Layer-3 Accessibility".  This will allow you to access the AP Interface from other subnets.

 

----

0
0
#6
Options
Re:Unable to access AP Administration from another subnet
2021-11-10 21:31:06

@ADIT Mmm Interesting.

I thought this was for SSH access only.

I am trying to access it thought the Web interface.

Thanks!

0
0
#7
Options
Re:Unable to access AP Administration from another subnet
2021-11-10 21:35:15

@MastaP 

 

Look at the pic, Web Interface.  SSH has it's own L3 setting.

0
0
#8
Options