目的:1.配置网络的互通
2.AC 管理AP发出无线信号
3.三台电脑的互通
4.PC可在三个无线信号间漫游
交换机1配置
sys
vlan batch 100 200 101 102
int e0/0/1
port link-type trunk
port trunk allow-pass vlan all
int e0/0/2
port link-type trunk
port trunk pvid vlan 200
port trunk allow-pass vlan all
int e0/0/3
port link-type trunk
port trunk pvid vlan 200
port trunk allow-pass vlan all
AC1
配置DHCP地址池
sys
vlan batch 100 101 102 200
dhcp enable
ip pool AC1
network 200.0.0.0 mask 24
gateway 200.0.0.1
int vlan 200
ip add 200.0.0.1 24
dhcp select global
q
ip pool AP1
network 101.0.0.0 mask 24
gateway 101.0.0.1
int vlan 101
ip add 101.0.0.1 24
dhcp select global
q
ip pool AP2
network 102.0.0.0 mask 24
gateway 102.0.0.1
int vlan 102
ip add 102.0.0.1 24
dhcp select global
q
int vlan 100
ip add 100.0.0.1 24
q
ip pool AC1
option 43 sub-option 3 ascii 100.0.0.1
q
capwap source int vlan 100 //建立capwap管理隧道
int g0/0/2
port link-type trunk
port trunk allow-pass vlan all
q
wlan
ap-group name AP1
ap-id 0 ap-mac 00E0-FC7E-3080
ap-group AP1
创建AP组
y
wlan
ap-group name AP2
ap-id 1 ap-mac 00E0-FC3A-28E0
ap-group AP2
y
配置国家代码模板
regulatory-domain-profile name username
country-code cn
ap-group name AP1
regulatory-domain-profile username
设置wifi名
ssid-profile name username
ssid username
q
security-profile name username//设置wif密码
security wpa2 psk pass-phrase xxxxxxx aes
q
vap-profile name vap1//创建vap模板
ssid-profile username
security-profile username
forward-mode direct-forward
service-vlan vlan-id 101//指定AP接入用户的vlan流量数据转发vlan
q
ap-group name AP1//指定vap模板使用在AP1组上
vap-profile vap1 wlan 1 radio 0
vap-profile vap1 wlan 1 radio 1
q
q
int g0/0/1
port link-type trunk
port trunk allow-pass vlan all
q
配置AP2发射模板只需将创建给AP1的模板 引入到AP里面即可 但是vap模板需要重新创建
wlan
ap-group name AP2
regulatory-domain-profile username
vap-profile name vap2
ssid-profile username
security-profile username
forward-mode direct-forward
service-vlan vlan-id 102
ap-group name AP2
vap-profile vap2 wlan 1 radio 1
vap-profile vap2 wlan 1 radio 0
q
mobility-group name username//配置漫游组,
member ip-address 100.0.0.1
member ip-address 100.0.0.2
AC2的配置和AC1的配置相同 区别的是AC2只需要配置一个AP组的发射模板
AC2 配置
sys
vlan batch 100 101 102 200
dhcp enable
ip pool AC2
network 200.0.0.0 mask 24
gateway 200.0.0.2
option 43 sub-option 3 ascii 100.0.0.2
int vlan 200
ip add 200.0.0.2 24
dhcp select global
q
ip pool AP3
network 102.0.0.0 mask 24
gateway 102.0.0.2
int vlan 102
ip add 102.0.0.2 24
dhcp select global
q
int vlan 100
ip add 100.0.0.2 24
int g0/0/1
port link-type trunk
port trunk allow-pass vlan all
int g0/0/2
port link-type trunk
port trunk allow-pass vlan all
q
capwap source int vlan 100
wlan
ap-group name AP3
ap-id 3 ap-mac 00E0-FCBD-6CF0
ap-group AP3
regulatory-domain-profile name username
country-code cn
ap-group name AP3
regulatory-domain-profile username
ssid-profile name username
ssid username
q
security-profile name username
security wpa2 psk pass-phrase xxxxxxxxx aes
q
vap-profile name vap3
ssid-profile username
security-profile username
forward-mode direct-forward
service-vlan vlan-id 102
q
ap-group name AP3
vap-profile vap3 wlan 1 radio 0
vap-profile vap3 wlan 1 radio 1
q
mobility-group name username
member ip-address 100.0.0.1
member ip-address 100.0.0.2
交换机2
sys
vlan batch 100 102 101 200
int e0/0/1
port link-type trunk
port trunk allow-pass vlan all
int e0/0/2
port link-type trunk
port trunk pvid vlan 200
port trunk allow-pass vlan all
有不对的地方欢迎大家指正