What is Aerohives approach If 200+ AP's were deployed in a flat network with one open user profile? How do you protect the network from excessive broadcasts? Expected number of devices 1200+ Single open SSID?
1. Make sure proxy-arp is still enabled (it defaults to on, so it should be)
2. I would map an IP policy to the user profile on which allows DHCP, but blocks broadcasts on the subnet. The "Guest-Internet-Access-Only" default policy is a good place to start, though you may want to customize it if the clients need to access anything besides just the plain internet.
Hi, are there any recommendations around this scenario, i.e. for large broadcast domains on the Aerohive switches? Or should we just follow normal standards regarding this? Normally I would think a /22 or below would require splitting up.
I'm looking at a similar deployment size as the one mentioned and one much larger in a couple of months time and we wondered if the large broadcast domain would be an issue for the Aerohive switches.
I suppose if we are strict with the AP firewall rules that should help?