|
旁挂二层直接转发及手工信道调优
规划表 | AP管理VLAN | | | STA业务VLAN | | | DHCP服务器 | Router作为PC1的DHCP服务器 AC作为AP的DHCP服务器 Core SW作为STA的DHCP服务器 | | AP地址池 | 192.168.200.2~192.168.200.199/24 | | STA地址池 | 有线STA 192.168.10.2~192.168.10.199/24 | 无线STA 192.168.101.3 ~ 92.168.101.199/24 | | AC源接口IP | VLANIF 100:192.168.100.1/24 | | AP组 | 名称:zurkj 引用模板:VAP模板zurkj 引用域管理模板:zurkj | | 域管理模板 | 名称:zurkj 国家代码:CN 调优信道集合:配置2.4G和5G调优带宽和调优信道 | | 安全模板 | 名称:zurkj 安全策略:WPA2+PSK+AES 密码:qwe123123 | | SSID模板 | | | VAP模板 | 名称:zurkj 转发模式:遂道转发 业务VLAN:101 引用模板:安全模板zurkj SSID模板zurkj | | 空口扫描模板 | 名称:zurkj 探测信道集合:调优信道 空口扫描间隔时间:60000豪秒 空口扫描持续时间:60豪秒 | | RRM模板 | 名称:zurkj 信道自动调优:开启 功率自动调优:开启 | | 2G射频模板 | 名称:radio2g 引用模板:空口扫描模板zurkj;RRM模板zurkj | | 5G射频模板 | 名称:radio5g 引用模板:空口扫描模板zurkj;RRM模板zurkj |
注意:遂道转发模式下,管理VLAN和业务VLAN不能配置成同一个VLAN,并且AP和AC之间只能放通管理VLAN,不能放通业务VLAN。 周边设备通信配置 JRSW <Huawei>system-view [Huawei]sysname jrsw. [jrsw]vlan 100 //创建VLAN [jrsw-vlan100]quit [jrsw]interface gigabitethernet 0/0/2 [jrsw-GigabitEthernet0/0/2]port link-type trunk [jrsw-GigabitEthernet0/0/2]port trunk pvid vlan100 [jrsw-GigabitEthernet0/0/2]port trunk allow-passvlan 100 [jrsw-GigabitEthernet0/0/2]undo port trunkallow-pass vlan 1 [jrsw-GigabitEthernet0/0/2]port-isolate enable //配置端口隔离 [jrsw-GigabitEthernet0/0/2]quit [jrsw]interface gigabitethernet 0/0/1 [jrsw-GigabitEthernet0/0/1]port link-type trunk [jrsw-GigabitEthernet0/0/1]port trunk allow-passvlan 100 [jrsw-GigabitEthernet0/0/1]undo port trunkallow-pass vlan 1 [jrsw-GigabitEthernet0/0/1]quit
CoreSW <Huawei>system-view [Huawei]sysname CoreSW [CoreSW]interface gigabitethernet 0/0/1 [CoreSW-GigabitEthernet0/0/1]port link-type trunk [CoreSW-GigabitEthernet0/0/1]port trunk allow-passvlan 100 [CoreSW-GigabitEthernet0/0/1]undo port trunkallow-pass vlan 1 [CoreSW-GigabitEthernet0/0/1]quit [CoreSW]interface GigabitEthernet 0/0/2 [CoreSW-GigabitEthernet0/0/2]port link-type trunk [CoreSW-GigabitEthernet0/0/2]port trunk allow-passvlan [CoreSW-GigabitEthernet0/0/2]port trunk allow-passvlan 100 101 [CoreSW-GigabitEthernet0/0/2]undo port trunkallow-pass vlan 1 [CoreSW-GigabitEthernet0/0/2]quit [CoreSW]interface gigabitethernet 0/0/3 [CoreSW-GigabitEthernet0/0/3]port link-type trunk [CoreSW-GigabitEthernet0/0/3]port trun pvid vlan101 [CoreSW-GigabitEthernet0/0/3]port trunk allow-passvlan 101 [CoreSW-GigabitEthernet0/0/3]undo port trunkallow-pass vlan 1 [CoreSW-GigabitEthernet0/0/3]quit [CoreSW]dhcp enable //开启DHCP服务 [CoreSW]interface vlanif 101 //创建VLANIF101接口 [CoreSW-Vlanif101]ip address 192.168.101.1 24 //配置地址 [CoreSW-Vlanif101]dhcp select global //DHCP服务选择全局 [CoreSW-Vlanif101]quit [CoreSW]ip pool vlan101 //创建DHCP地址池 [CoreSW-ip-pool-vlan101]gateway-list 192.168.101.1 //配置网关地址 [CoreSW-ip-pool-vlan101]network 192.168.101.0 mask24 //配置网段及掩码 [CoreSW-ip-pool-vlan101]excluded-ip-address192.168.101.200 192.168.101.254 //配置不参与地址池的IP地址 [CoreSW-ip-pool-vlan101]excluded-ip-address192.168.101.2 [CoreSW-ip-pool-vlan101]lease day 2 hour 0 minute0 //配置DHCP租约 [CoreSW-ip-pool-vlan101]dns-list 114.114.114.1148.8.8.8 //配置DNS [CoreSW-ip-pool-vlan101]quit [CoreSW]ip route-static 0.0.0.0 0.0.0.0192.168.101.2 //配置默认路由
Gateway <Huawei>system-view [Huawei]sysname Gateway [Gateway]dhcp enable [Gateway]interface gigabitethernet 0/0/2 [Gateway-GigabitEthernet0/0/2]ip address192.168.10.1 24 [Gateway-GigabitEthernet0/0/2]dhcp select interface //DHCP服务选择接口 [Gateway-GigabitEthernet0/0/2]dhcp serverexcluded-ip-address 192.168.10.200 192 .168.10.254 [Gateway-GigabitEthernet0/0/2]dhcp server leaseday 2 hour 0 minute 0 [Gateway-GigabitEthernet0/0/2]dhcp server dns-list114.114.114.114 8.8.8.8 [Gateway-GigabitEthernet0/0/2]quit [Gateway]interface gigabitethernet 0/0/0 [Gateway-GigabitEthernet0/0/0]ip address192.168.101.2 24 [Gateway-GigabitEthernet0/0/0]quit
AC <AC6005>system-view [AC6005]sysname ac [ac]vlan batch 100 101 //批量创建VLAN [ac]interface gigabitethernet 0/0/1 [ac-GigabitEthernet0/0/1]port link-type trunk [ac-GigabitEthernet0/0/1]port trunk allow-passvlan 100 101 [ac-GigabitEthernet0/0/1]undo port trunkallow-pass vlan 1 [ac-GigabitEthernet0/0/1]quit [ac]dhcp enale //开启DHCP服务 [ac]interface vlanif 100 [ac-Vlanif100]ip address 192.168.100.1 24 [ac-Vlanif100]dhcp select global [ac-Vlanif100]quit [ac]ip pool vlan100 [ac-ip-pool-vlan100]gateway-list 192.168.100.1 [ac-ip-pool-vlan100]network 192.168.100.0 mask 24 [ac-ip-pool-vlan100]excluded-ip-address192.168.100.200 192.168.100.254 [ac-ip-pool-vlan100]lease day 2 hour 0 minute 0 [ac-ip-pool-vlan100]dns-list 114.114.114.1148.8.8.8 [ac-ip-pool-vlan100]quit 配置AP上线 配置AP组/域管理模板,并AP组引用域管理模板 [ac-wlan-view]ap-group name zurkj //创建AP组“zurkj” [ac-wlan-ap-group-zurkj]quit [ac-wlan-view]regulatory-domain-profile name zurkj //创建域管理模板“zurkj” [ac-wlan-regulate-domain-zurkj]country-code cn //配置国家代码“CN” [ac-wlan-regulate-domain-zurkj]quit [ac-wlan-view]ap-group name zurkj [ac-wlan-ap-group-zurkj]regulatory-domain-profilezurkj //引用“zurkj”域管理模板 [ac-wlan-ap-group-zurkj]quit [AC-wlan-view]quit 配置AC源接口 [ac]capwap source interface vlanif 100 //配置AC源接口 离线导入AP [AC]wlan [ac-wlan-view]ap auth-mode sn-auth //配置AP认证为SN认证模式 [ac-wlan-view]ap-id 0 ap-sn 210235448310C762C05C //创建AP编号并导入AP SN [ac-wlan-ap-0]ap-name ap1 //命名AP名为“ap1” [ac-wlan-ap-0]ap-group zurkj //配置AP属于“zurkj”组 [ac-wlan-ap-0]quit 配置安全模板 [ac-wlan-view]security-profile name zurkj //创建安全模板 [ac-wlan-sec-prof-zurkj]security wpa2 pskpass-phrase qwe123123 aes //配置安全 [ac-wlan-sec-prof-zurkj]quit 配置SSID模板 [ac-wlan-view]ssid-profile name zurkj //创建SSID模板“zurkj” [ac-wlan-ssid-prof-zurkj]ssid zurkj //配置SSID为“zurkj” [ac-wlan-ssid-prof-zurkj]quit 配置VAP模板 [ac-wlan-view]vap-profile name zurkj //创建VAP模板“zurkj” [ac-wlan-vap-prof-zurkj]forward-mode tunnel //配置转发模式为“遂道” [ac-wlan-vap-prof-zurkj]service-vlan vlan-id 101 //配置业务服务VLAN [ac-wlan-vap-prof-zurkj]security-profile zurkj //引用“zurkj”安全模板 [ac-wlan-vap-prof-zurkj]ssid-profile zurkj //引用“zurkj”SSID模板 [ac-wlan-vap-prof-zurkj]quit 在AP组内引用VAP模板 [ac-wlan-view]ap-group name zurkj [ac-wlan-ap-group-zurkj]vap-profile zurkj wlan 1radio 0 //引用“zurkj”VAP模板至WLAN1 2.4G射频 [ac-wlan-ap-group-zurkj]vap-profile zurkj wlan 1radio 1 //引用“zurkj”VAP模板至WLAN1 5G射频 [ac-wlan-ap-group-zurkj]quit 下面配置射频调优 配置开启射频调优功能让AP自动选择最佳信道和最佳发射功率 注意默认情况已经是开启状态,这样操作仅作为手动配置信道及功率后的反射开启操作! [AC-wlan-view]rrm-profile name zurkj [AC-wlan-rrm-prof-zurkj]undo calibrate auto-channel-selectdisable //不执行关闭自动信道选择调优
[AC-wlan-rrm-prof-zurkj]undo calibrateauto-txpower-select disable //不执行关闭自动发射功率选择调优
[AC-wlan-rrm-prof-zurkj]quit 在域管理模板下配置调优信道集合 [ac-wlan-view]regulatory-domain-profile name zurkj //进入域管理 [ac-wlan-regulate-domain-zurkj]dca-channel 2.4gchannel-set 1,6,11 //配置2.4G自动信道分配 信道选择1,6,11
[ac-wlan-regulate-domain-zurkj]dca-channel 5gbandwidth 20mhz //配置5G自动信道带宽为20Mhz [ac-wlan-regulate-domain-zurkj]dca-channel 5gchannel-set 149,153,157,161,165 //配置5G自动信道分配 信道选择149,153,157,161,165 [ac-wlan-regulate-domain-zurkj]quit
创建空口扫描模板“zurkj”并配置调优信道集合、扫描间隔时间和扫描持续时间 [ac-wlan-view]air-scan-profile name zurkj //创建空口扫描模板 [ac-wlan-air-scan-prof-zurkj]scan-channel-setdca-channel //配置调优信道集合 [ac-wlan-air-scan-prof-zurkj]scan-period 60 //配置扫描周期60毫秒 [ac-wlan-air-scan-prof-zurkj]scan-interval 60000 //配置扫描间隔为60000毫秒 [ac-wlan-air-scan-prof-zurkj]quit 创建2G射频模板“radio2g”,并在模板下引用RRM模板“zurkj”和空口扫描模板“zurkj” [ac-wlan-view]radio-2g-profile name radio2g //创建2g射频模板 [ac-wlan-radio-2g-prof-radio2g]rrm-profile zurkj //引用“zurkj” RRM模板 [ac-wlan-radio-2g-prof-radio2g]air-scan-profilezurkj //引用“zurkj”空口扫描模板 [ac-wlan-radio-2g-prof-radio2g]quit 创建5G射频模板“radio5g”,并在模板下引用RRM模板“zurkj”和空口扫描模板“zurkj” [ac-wlan-view]radio-5g-profile name radio5g [ac-wlan-radio-5g-prof-zurkj]rrm-profile zurkj [ac-wlan-radio-5g-prof-zurkj]air-scan-profilezurkj [ac-wlan-radio-5g-prof-zurkj]quit 在“zurkj”AP组中引用2G/5G射频模板 [ac-wlan-view]ap-group name zurkj [ac-wlan-ap-group-zurkj]radio-2g-profile radio2gradio 0 //引用2G模板“radio2g” [ac-wlan-ap-group-zurkj]radio-5g-profile radio5gradio 1 [ac-wlan-ap-group-zurkj]quit 配置射频调优模式为手动调优,并手动触发射频调优 [ac-wlan-view]calibrate enable manual //开启手工调优 [ac-wlan-view]calibrate manual startup //启动手工调优 Channel auto replan start. Channel auto replan process 16%. Channel auto replan process 33%. …… 等待执行手工调优一小时后,调优结束。将射频调优模式改为定时调优,并将调优时间定在用户空闲时间 [ac-wlan-view]calibrate enable schedule time3:00:00 //开启计划调优时间为3:00:00 检验配置结果 [ac-wlan-view]display vap ssid zurkj //查看虚拟访问点zurkj Info: This operation may take a few seconds,please wait. WID : WLAN ID ----------------------------------------------------------------------- AP ID AP name RfID WID BSSID Status Auth type STA SSID ----------------------------------------------------------------------- 0 ap1 0 1 00E0-FCEF-67E0 ON WPA2-PSK 2 zurkj 0 ap1 1 1 00E0-FCEF-67F0 ON WPA2-PSK 0 zurkj ----------------------------------------------------------------------- Total: 2 [ac-wlan-view]display station ssid zurkj //查看SSID下工作站情况 Rf/WLAN: Radio ID/WLAN ID Rx/Tx: link receive rate/link transmitrate(Mbps) -------------------------------------------------------------------------------- STA MAC AP ID Ap name Rf/WLAN Band Type Rx/Tx RSSI VLAN IP a ddress -------------------------------------------------------------------------------- 5489-982c-09b7 0 ap1 0/1 2.4G - -/- - 101 192. 168.101.198 5489-9881-651f 0 ap1 0/1 2.4G - -/- - 101 192. 168.101.199 -------------------------------------------------------------------------------- Total: 2 2.4G: 2 5G: 0
测试通信: STA>ping 192.168.10.199 Ping 192.168.10.199: 32 data bytes, Press Ctrl_Cto break From 192.168.10.199: bytes=32 seq=1 ttl=127time=187 ms From 192.168.10.199: bytes=32 seq=2 ttl=127time=188 ms From 192.168.10.199: bytes=32 seq=3 ttl=127time=171 ms From 192.168.10.199: bytes=32 seq=4 ttl=127time=156 ms From 192.168.10.199: bytes=32 seq=5 ttl=127time=187 ms --- 192.168.10.199 ping statistics --- 5packet(s) transmitted 5packet(s) received 0.00%packet loss round-tripmin/avg/max = 156/177/188 ms | 
|Archiver|手机版|小黑屋|祖瑞科技 全国计算机 网络IT运维社区!
( 沪ICP备16021636号-2 )
发表于 2021-2-19 00:12:41
