一 流程
一 无线上WEB页面
1 创建vlan 56
[AC-KongZhi]vlan 562 退出
[AC-KongZhi-vlan56]quit3 进入vlan三层口 配置IP地址
[AC-KongZhi]interface Vlan-interface 56
[AC-KongZhi-Vlan-interface56]ip address 192.168.56.55 244 在AC控制器与Host主机的接口上能通关vlan 56
[AC-KongZhi-GigabitEthernet1/0/2]port link-type access
[AC-KongZhi-GigabitEthernet1/0/2]port access vlan 565 创建用户给定用户的密码
[AC-KongZhi]local-user admin class manage
New local user added.
[AC-KongZhi-luser-manage-admin]pa
[AC-KongZhi-luser-manage-admin]password s
[AC-KongZhi-luser-manage-admin]password simple jxym@h3c.com6 开启网络服务的类型 ssh telnet terminal http https
[AC-KongZhi]service-type ssh telnet terminal http https7 给账户的权限是管理员的身份
[AC-KongZhi]authorization-attribute user-role network-admin
[AC-KongZhi]authorization-attribute user-role network-operator8 开启 http https ssh telnet 功能
[AC-KongZhi]ip http enable
[AC-KongZhi]ip https enable
[AC-KongZhi] ssh server enable
[AC-KongZhi] telnet server enable
二 AP上线1 创建vlan10 vlan172 //10是管理AP 172是业务
[AC-KongZhi]vlan 172
[AC-KongZhi]vlan 102 进入vlan三层口配置网关
[AC-KongZhi-Vlan-interface172]ip address 172.16.2.1 24
quit/return/ctrl+Z
[AC-KongZhi]interface Vlan-interface 1
[ACKongZhi-Vlan-interface10]ip address 10.3.3.1 243 配置DHCP
3.1 开启DHCP 功能
[AC-KongZhi]dhcp enable3.2 创建DHCP地址池 名字为 vlan10
[AC-KongZhi]dhcp server ip-pool vlan103.3 配置DHCP地址池的网络地址和子网掩码
[AC-KongZhi-dhcp-pool-vlan10]network 10.3.3.0 mask 255.255.255.03.4 配置DHCP地址池的网关
[AC-KongZhi-dhcp-pool-vlan10]gateway-list 10.3.3.13.5 配置DHCP地址池的租期为 30天
[AC-KongZhi-dhcp-pool-vlan10]expired day 603.6 配置DHCP地址池的DNS 1.1.1.1
[AC-KongZhi-dhcp-pool-vlan10]dns-list 1.1.1.13.7 这条命令禁止特定IP地址10.3.3.253被分配给任何设备
[AC-KongZhi-dhcp-pool-vlan10]forbidden-ip 10.3.3.253脚本
#
dhcp server ip-pool vlan10
gateway-list 10.3.3.1
network 10.3.3.0 mask 255.255.255.0
dns-list 1.1.1.1
expired day 60
forbidden-ip 10.3.3.2
#
return3.8 脚本
#
dhcp server ip-pool vlan172
gateway-list 172.16.2.1
network 172.16.2.0 mask 255.255.255.0
dns-list 1.1.1.1
expired day 60
forbidden-ip 172.16.2.253
#4 AP完成基础接口调试并上线到AC
4.1 进入到接口 interface GigabitEthernet1/0/3
[AC-KongZhi]interface GigabitEthernet1/0/34.2 进入到该接口改为二层接口
[AC-KongZhi-GigabitEthernet1/0/3]port link-mode bridge
sys
4.3 该接口的类型是 trunk
[AC-KongZhi-GigabitEthernet1/0/3]port link-type trunk4.4 执行 undo port trunk permit vlan 1 后,这个权限会被撤销,VLAN 1的流量将不再通过这个端口。
[AC-KongZhi-GigabitEthernet1/0/3]undo port trunk permit vlan 14.5 VLAN 10的流量通过这个Trunk端口。permit 关键词表示允许,而 vlan 10 指的是虚拟局域网10。
[AC-KongZhi-GigabitEthernet1/0/3]port trunk permit vlan 104.6 这个命令设置了端口的PVID。PVID是端口默认的VLAN ID,用于未标记帧(untagged frames)的传输。当端口接收到一个未标记的帧时,它会使用PVID来标记这个帧,然后将其转发到相应的VLAN。在这个例子中,PVID被设置为VLAN 10,意味着所有通过这个端口的未标记帧将被默认视为属于VLAN 10。
[AC-KongZhi-GigabitEthernet1/0/3]port trunk pvid vlan 10
#
interface GigabitEthernet1/0/3
port link-mode bridge
port link-type trunk
undo port trunk permit vlan 1
port trunk permit vlan 10
port trunk pvid vlan 10
combo enable fiber
#5 我们使用此命令查看到AP已经正确获取到AP段地址
5.1 在AC上查看
[AC-KongZhi]display dhcp server ip-in-use5.2 在AP上查看
<H3C>display wlan ap6 查看 显示设备的制造商信息
[AC-KongZhi]display device manuinfo7 AP 自动注册
[AC-KongZhi]wlan auto-ap enable[AC-KongZhi]wlan auto-ap persistent all // 自动AP 固化到手的AP
备注:
[AC-KongZhi]wlan auto-persistent enable // 开启自动AP自动固化功能
上面的二选一
8 固定自动注册 AP
[AC-KongZhi]wlan auto-ap persistent name 7e6f-c826-0a00
[AC-KongZhi]wlan rename-ap 7e6f-c826-0a00 test069 配置AP测试
9.0 配置 服务模板
[AC-KongZhi]wlan service-template 1
[AC-KongZhi-wlan-st-1] ssid mmm
[AC-KongZhi-wlan-st-1] service-template enable9.1 切换无线切入点
[AC-KongZhi-wlan-ap-test05] wlan ap test06 model WA6320-HCL
[AC-KongZhi]wlan ap test03 //进入t ap名字 test03 视图9.2 配置确保使用该服务模板的无线客户端将被分配到VLAN 172
[AC-KongZhi-wlan-ap-test06-radio-1]service-template 1 vlan 172
[HCL]Get ssid: mmm.
[HCL]Get ap mac: 7e6f-c826-0a00.
[HCL]Processing service BSS create event from STAMGR.
[AC-KongZhi-wlan-ap-test06-radio-1]%Jul 22 12:36:11:891 2024 AC-KongZhi STAMGR/6/SERVICE_ON: -MDC=1; BSS 7e6f-c826-0a10 was created after service template 1 with SSID mmm was bound to radio 1 on AP test06.9.3 启用无线射频功能
[AC-KongZhi-wlan-ap-test06-radio-1]radio enable
[AC-KongZhi-wlan-ap-test06-radio-1]%Jul 22 12:39:39:852 2024 AC-KongZhi WEB/5/LOGOUT: -MDC=1; admin 92.168.56.34 .9.4 设置无线信道
[AC-KongZhi-wlan-ap-test06-radio-1]channel 369.5 配置无线信号最大传输功率
[AC-KongZhi-wlan-ap-test06-radio-1]max-power 209.6 配置无线信道带宽
[AC-KongZhi-wlan-ap-test06-radio-1]channel band-width 80
This operation might cause channel change. Continue? [Y/N]:y9.7 AP容纳客户的数量
[AC-KongZhi-wlan-ap-test06-radio-1]client max-count 128脚本 #
#
radio 1
channel 36
max-power 20
radio enable
channel band-width 80
service-template 1 vlan 172
client max-count 128
#
二 实操图示脚本
创建AC的用户的名字/密码/服务/权限
对应的接口类型
[AC]display vlan all
VLAN ID: 1
VLAN type: Static
Route interface: Not configured
Description: VLAN 0001
Name: VLAN 0001
Tagged ports: None
Untagged ports:
GigabitEthernet1/0/0 GigabitEthernet1/0/5
GigabitEthernet1/0/6 GigabitEthernet1/0/7
GigabitEthernet1/0/8 GigabitEthernet1/0/9
GigabitEthernet1/0/10 GigabitEthernet1/0/11
GigabitEthernet1/0/12 GigabitEthernet1/0/13
GigabitEthernet1/0/14 GigabitEthernet1/0/15
GigabitEthernet1/0/16 GigabitEthernet1/0/17
GigabitEthernet1/0/18 GigabitEthernet1/0/19
GigabitEthernet1/0/20 GigabitEthernet1/0/21
GigabitEthernet1/0/22 GigabitEthernet1/0/23
Ten-GigabitEthernet1/0/24
Ten-GigabitEthernet1/0/25
Ten-GigabitEthernet1/0/26
Ten-GigabitEthernet1/0/27
VLAN ID: 10
VLAN type: Static
Route interface: Configured
IPv4 address: 10.0.0.1
IPv4 subnet mask: 255.255.255.0
Description: VLAN 0010
Name: VLAN 0010
Tagged ports: None
Untagged ports:
GigabitEthernet1/0/1 GigabitEthernet1/0/2
GigabitEthernet1/0/3
VLAN ID: 56
VLAN type: Static
Route interface: Configured
IPv4 address: 192.168.56.3
IPv4 subnet mask: 255.255.255.0
Description: VLAN 0056
Name: VLAN 0056
Tagged ports: None
Untagged ports:
GigabitEthernet1/0/4
VLAN ID: 172
VLAN type: Static
Route interface: Configured
IPv4 address: 172.16.1.1
IPv4 subnet mask: 255.255.255.0
Description: VLAN 0172
Name: VLAN 0172
Tagged ports: None
Untagged ports:
WLAN-BSS1/0/1 WLAN-BSS1/0/2
[AC]配置接口的IP地址
配置DHCP 服务器
AC下发地址到AP 配置能通过对vlan放行
配置服务器模板
