Shulou(Shulou.com)06/01 Report--

Preface

This experiment uses AC6005,AP6050 in eNSP to complete the experiment. All configuration is done on AC1.

Experimental topology

Configuration process

Configure the configuration of port VLAN on AC1

Wherein VLAN 100is the service VLAN,VLAN 101is the management VLAN. Configure the port of AC link AP to trunk, and modify PVID to manage VLAN

Vlan batch 100101 / / create VLAN 100and101

#

Interface GigabitEthernet0/0/1

Port link-type trunk

Port trunk allow-pass vlan all

#

Interface GigabitEthernet0/0/3

Port link-type trunk

Port trunk pvid vlan 101to modify PVID to manage VLAN 101,

Port trunk allow-pass vlan all

2. Configure DHCP function of VLANIF interface

Configure AP addresses to automatically obtain and use interface address pools by managing VLAN, and PC addresses are also automatically obtained through the global address pool

Ip pool huawei / / create address pool huawei

Gateway-list 192.168.100.254

Network 192.168.100.0 mask 255.255.255.0

Excluded-ip-address 192.168.100.201 192.168.100.253

Dns-list 192.168.100.254

#

Interface Vlanif100

Ip address 192.168.100.3 255.255.255.0

Dhcp select global / / configure PC to obtain IP addresses through a global address pool

#

Interface Vlanif101

Ip address 192.168.101.1 255.255.255.0

Dhcp select interface / / configure AP to automatically obtain IP addresses through the interface address pool

3. Configure AP to go online

1. Create an AP group

[AC] wlan

[AC-wlan-view] ap-group name ap1

[AC-wlan-ap-group-ap-group1] quit

[AC-wlan-view] regulatory-domain-profile name domain1

[AC-wlan-regulate-domain-domain1] country-code CN

[AC-wlan-regulate-domain-domain1] quit

[AC-wlan-view] ap-group name ap

[AC-wlan-ap-group-ap-group1] regulatory-domain-profile domain1

[AC-wlan-ap-group-ap-group1] quit

[AC-wlan-view] quit

[AC] capwap source interface vlanif 101 / / configure the source interface of AC

2. Bind AP to the AP group

[AC] wlan

[AC-wlan-view] ap auth-mode mac-auth / / defaults to mac authentication and can not be configured

[AC-wlan-view] ap-id 0 ap-mac 00e0-fc7b-7ad0 / / the MAC is the MAC of AP

[AC-wlan-ap-0] ap-name area_1

[AC-wlan-ap-0] ap-group ap / / bind AP group

[AC-wlan-ap-0] quit

3. After powering up the AP, when you execute the command display ap all to see that the "State" field of the AP is "nor", it means that the AP is online normally.

3. Configure business parameters of WLAN

1. Configure the security template

[AC] wlan

[AC-wlan-view] security-profile name sec

[AC-wlan-sec-prof-wlan-security] security wpa2 psk pass-phrase huawei@123 aes / / Authentication type wpa2, password is huawei@123

[AC-wlan-sec-prof-wlan-security] quit

2. Create a SSID template

[AC-wlan-view] ssid-profile name ssid

[AC-wlan-ssid-prof-wlan-ssid] ssid huawei / / configure SSID name is "huawei"

[AC-wlan-ssid-prof-wlan-ssid] quit

3. Create VAP template, configure business data forwarding mode and business VLAN, and reference security template and SSID template.

[AC-wlan-view] vap-profile name vap

[AC-wlan-vap-prof-wlan-vap] forward-mode tunnel / / forwarding mode is tunnel mode

[AC-wlan-vap-prof-wlan-vap] service-vlan vlan-id 100 / / bind business VLAN

[AC-wlan-vap-prof-wlan-vap] security-profile wlan-security

[AC-wlan-vap-prof-wlan-vap] ssid-profile ssid / / bind ssid template

[AC-wlan-vap-prof-wlan-vap] quit

4. Configure the AP group to reference the VAP template, and RF 0 on the AP uses the configuration of the VAP template. Because there is only one AP in the experiment, RF 0 is used.

[AC-wlan-view] ap-group name ap

[AC-wlan-ap-group-ap-group1] vap-profile wlan-vap wlan 1 radio 0

[AC-wlan-ap-group-ap-group1] quit

5. The WLAN service configuration is automatically sent to the AP. After the configuration is completed, check the following information by executing the command display vap ssid huawei. When the "Status" item is displayed as "ON", the VAP on the radio frequency corresponding to the AP has been created successfully.

Configuration verification

Test the connection on STA (PC), click on the signal that SSID is huawei and enter the huawei@123 password to connect.

After the link is successful, you can see the signal:

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.