碼上歡樂
相關內容    簡體    繁體

WLAN-案例-2-旁掛二層組網(直接轉發/隧道轉發)

本文轉載自   查看原文   2020-12-12 16:16   508    HUAWEI-WLAN

3/旁掛二層組網直接轉發

 

 

交換機上需要在trunk上允許管理的和業務的同時跑

直連和旁掛配置上有什么區別嗎?

交換機部份,

不用說了,trunk+pvid ,(AC-AP的管理VLAN)放行管理vlan 以及業務vlan

核心交換

用來分擔 AC的業務VLAN下放IP地址,所以要配置DHCP,還要連接上行的路由器

 

具體配置

Access-sw

interface Ethernet0/0/1

 port link-type trunk

 port trunk pvid vlan 10

 port trunk allow-pass vlan 10 20

 

interface Ethernet0/0/2

 port link-type trunk

 port trunk pvid vlan 10

 port trunk allow-pass vlan 10 20

 

coresw

#

interface GigabitEthernet0/0/1

 port link-type access

 port default vlan 20

#

interface GigabitEthernet0/0/2

 port link-type trunk

 port trunk pvid vlan 10

 port trunk allow-pass vlan 10 20

#

interface GigabitEthernet0/0/3

 port link-type trunk

 port trunk pvid vlan 10

 port trunk allow-pass vlan 10 20

 

IP及DHCP(業務)

interface Vlanif20

 ip address 192.168.20.2 255.255.255.0

 dhcp select interface

 

AC配置

interface GigabitEthernet0/0/1

 port link-type trunk

 port trunk pvid vlan 10

 port trunk allow-pass vlan 10 20

#

interface Vlanif10

 ip address 192.168.10.1 255.255.255.0

 dhcp select interface

 

#

wlan

security-profile name wfy

  security wpa2 psk pass-phrase %^%#X~g/A70^SCf1zEDOU9sQ0]q;;,!'rL\!,FY'0XBX%^%# aes

ssid-profile name wfy

  ssid wfy

vap-profile name wfy

  service-vlan vlan-id 20

  ssid-profile wfy

  security-profile wfy

  默認就是直接轉發,所以沒有顯示

ap-group name wfy

ap-id 0 type-id 69 ap-mac 00e0-fc13-43a0 ap-sn 210235448310656FF341

  ap-name wfy

  ap-group wfy

[AC6005-wlan-view]ap-group name wfy

[AC6005-wlan-ap-group-wfy]vap-profile wfy wlan 1 radio all

 

ap-group name wfy

  radio 0

   vap-profile wfy wlan 1

  radio 1

   vap-profile wfy wlan 1

  radio 2

   vap-profile wfy wlan 1

 

 

 

4/旁掛二層組網隧道轉發

 

Accesssw

interface Ethernet0/0/1

 port link-type trunk

 port trunk pvid vlan 10

 port trunk allow-pass vlan 10 20

#

interface Ethernet0/0/2

 port link-type trunk

 port trunk pvid vlan 10

 port trunk allow-pass vlan 10 20

 

coresw

interface GigabitEthernet0/0/3

 port link-type trunk

 port trunk pvid vlan 10

 port trunk allow-pass vlan 10 20 //這里必須要放行20,因為業務數據也要經過AC

#

interface GigabitEthernet0/0/2

 port link-type trunk

 port trunk pvid vlan 10

 port trunk allow-pass vlan 10 20  //同上

#

interface GigabitEthernet0/0/1     //連接路由器

 port link-type access

 port default vlan 20

ip pool vlan20

 gateway-list 192.168.20.1

 network 192.168.20.0 mask 255.255.255.0

 excluded-ip-address 192.168.20.2

 

interface Vlanif20

 ip address 192.168.20.2 255.255.255.0

 dhcp select global

 

AC配置

interface GigabitEthernet0/0/1

 port link-type trunk

 port trunk pvid vlan 10

 port trunk allow-pass vlan 10 20

#

Dhcp enable

interface Vlanif10

 ip address 192.168.10.1 255.255.255.0

 dhcp select interface

 

AP上線之前,查IP地址有沒有收到

Interface                         IP Address/Mask      Physical   Protocol  

NULL0                             unassigned           up         up(s)     

Vlanif1                           192.168.10.109/24       up         up  

並且可以和AC通信

<wfy>ping 192.168.10.1

  PING 192.168.10.1: 56  data bytes, press CTRL_C to break

    Reply from 192.168.10.1: bytes=56 Sequence=1 ttl=255 time=60 ms

    Reply from 192.168.10.1: bytes=56 Sequence=2 ttl=255 time=60 ms

Reply from 192.168.10.1: bytes=56 Sequence=3 ttl=255 time=40 ms

 

WLAN配置

Wlan   其它的都和直連一樣,只有一點區別,就是forward-mode – tunnel

vap-profile name wfy

  forward-mode tunnel

  service-vlan vlan-id 20

  ssid-profile wfy

  security-profile wfy

 

 

 

 

 

--------------------------------------

CCIE成長之路   --- 梅利

 


免責聲明!

本站轉載的文章為個人學習借鑒使用,本站對版權不負任何法律責任。如果侵犯了您的隱私權益,請聯系本站郵箱yoyou2525@163.com刪除。



猜您在找 WLAN-案例-4-旁掛三層組網(直接轉發/隧道轉發) WLAN-案例-1直連二層組網(直接轉發發/隧道轉發) WLAN-案例-3-直連三層組網(直接轉發/隧道轉發) 實驗三+二層旁掛式WLAN組網設計 AC(V2R6&R7版本)配置旁掛二層組網直接轉發示例【AP+二層交換機+三層交換機+旁掛AC+出口網關】 華為無線WLAN二層 三層組網實例 實驗3:二層直連式WLAN組網設計 二層轉發原理 交換機二層轉發原理 二層、三層交換機介紹及轉發原理
 
粵ICP備18138465號   © 2018-2025 CODEPRJ.COM