45 AP-AC 上线

一 无线上WEB页面

1 创建vlan 56

[AC-KongZhi]vlan 56

2 退出

[AC-KongZhi-vlan56]quit

3 进入vlan三层口 配置IP地址

[AC-KongZhi]interface  Vlan-interface  56
[AC-KongZhi-Vlan-interface56]ip address  192.168.56.55 24

4 在AC控制器与Host主机的接口上能通关vlan 56

[AC-KongZhi-GigabitEthernet1/0/2]port link-type  access
[AC-KongZhi-GigabitEthernet1/0/2]port access  vlan  56

5 创建用户给定用户的密码

[AC-KongZhi]local-user admin class manage
New local user added.
[AC-KongZhi-luser-manage-admin]pa
[AC-KongZhi-luser-manage-admin]password s
[AC-KongZhi-luser-manage-admin]password simple  jxym@h3c.com

6 开启网络服务的类型 ssh telnet terminal http https

 [AC-KongZhi]service-type ssh telnet terminal http https

7 给账户的权限是管理员的身份

 [AC-KongZhi]authorization-attribute user-role network-admin
 [AC-KongZhi]authorization-attribute user-role network-operator

8 开启 http https ssh telnet 功能

[AC-KongZhi]ip http enable
[AC-KongZhi]ip https enable
[AC-KongZhi] ssh server enable
[AC-KongZhi] telnet  server enable

二  AP上线 能从AC上获取到地址

1 创建vlan10 vlan172   //10是管理AP 172是业务

[AC-KongZhi]vlan 172
[AC-KongZhi]vlan 10

2 进入vlan三层口配置网关

[AC-KongZhi-Vlan-interface172]ip address  172.16.2.1 24
quit/return/ctrl+Z
[AC-KongZhi]interface  Vlan-interface  1
[ACKongZhi-Vlan-interface10]ip address  10.3.3.1 24

3 配置DHCP

3.1 开启DHCP 功能
[AC-KongZhi]dhcp  enable

3.2 创建DHCP地址池 名字为 vlan10
[AC-KongZhi]dhcp server ip-pool  vlan10

3.3 配置DHCP地址池的网络地址和子网掩码
[AC-KongZhi-dhcp-pool-vlan10]network 10.3.3.0 mask  255.255.255.0

3.4 配置DHCP地址池的网关
[AC-KongZhi-dhcp-pool-vlan10]gateway-list 10.3.3.1

3.5 配置DHCP地址池的租期为 30天
[AC-KongZhi-dhcp-pool-vlan10]expired day 60

3.6 配置DHCP地址池的DNS 1.1.1.1
[AC-KongZhi-dhcp-pool-vlan10]dns-list 1.1.1.1

3.7 这条命令禁止特定IP地址10.3.3.253被分配给任何设备
[AC-KongZhi-dhcp-pool-vlan10]forbidden-ip 10.3.3.253

脚本
#
dhcp server ip-pool vlan10
 gateway-list 10.3.3.1
 network 10.3.3.0 mask 255.255.255.0
 dns-list 1.1.1.1
 expired day 60
 forbidden-ip 10.3.3.2
#
return

3.8 脚本
#
dhcp server ip-pool vlan172
 gateway-list 172.16.2.1
 network 172.16.2.0 mask 255.255.255.0
 dns-list 1.1.1.1
 expired day 60
 forbidden-ip 172.16.2.253
#

4 AP完成基础接口调试并上线到AC

4.1 进入到接口 interface GigabitEthernet1/0/3
[AC-KongZhi]interface GigabitEthernet1/0/3

4.2 进入到该接口改为二层接口
[AC-KongZhi-GigabitEthernet1/0/3]port link-mode bridge
sys
4.3 该接口的类型是 trunk
[AC-KongZhi-GigabitEthernet1/0/3]port link-type trunk

4.4 执行 undo port trunk permit vlan 1 后，这个权限会被撤销，VLAN 1的流量将不再通过这个端口。
[AC-KongZhi-GigabitEthernet1/0/3]undo port trunk permit vlan 1

4.5 VLAN 10的流量通过这个Trunk端口。permit 关键词表示允许，而 vlan 10 指的是虚拟局域网10。
[AC-KongZhi-GigabitEthernet1/0/3]port trunk permit vlan 10

4.6 这个命令设置了端口的PVID。PVID是端口默认的VLAN ID，用于未标记帧（untagged frames）的传输。当端口接收到一个未标记的帧时，它会使用PVID来标记这个帧，然后将其转发到相应的VLAN。在这个例子中，PVID被设置为VLAN 10，意味着所有通过这个端口的未标记帧将被默认视为属于VLAN 10。
[AC-KongZhi-GigabitEthernet1/0/3]port trunk pvid vlan 10
#
interface GigabitEthernet1/0/3
 port link-mode bridge
 port link-type trunk
 undo port trunk permit vlan 1
 port trunk permit vlan 10
 port trunk pvid vlan 10
 combo enable fiber
#

5 我们使用此命令查看到AP已经正确获取到AP段地址

5.1 在AC上查看
 [AC-KongZhi]display  dhcp  server ip-in-use

5.2 在AP上查看
<H3C>display  wlan  ap

6  查看 显示设备的制造商信息

[AC-KongZhi]display  device  manuinfo

7 AP 自动注册

[AC-KongZhi]wlan auto-ap enable  

[AC-KongZhi]wlan auto-ap persistent  all  // 自动AP 固化到手的AP

备注:
[AC-KongZhi]wlan auto-persistent enable  // 开启自动AP自动固化功能
上面的二选一

8 固定自动注册 AP

[AC-KongZhi]wlan  auto-ap persistent  name 7e6f-c826-0a00
[AC-KongZhi]wlan rename-ap   7e6f-c826-0a00  test06

9 配置AP测试

9.0 配置 服务模板
[AC-KongZhi]wlan service-template 1
[AC-KongZhi-wlan-st-1] ssid mmm
 [AC-KongZhi-wlan-st-1] service-template enable

9.1 切换无线切入点
[AC-KongZhi-wlan-ap-test05]    wlan ap test06 model WA6320-HCL
[AC-KongZhi]wlan ap test03    //进入t ap名字 test03 视图

9.2 配置确保使用该服务模板的无线客户端将被分配到VLAN 172
[AC-KongZhi-wlan-ap-test06-radio-1]service-template  1 vlan 172
[HCL]Get ssid: mmm.
[HCL]Get ap mac: 7e6f-c826-0a00.
[HCL]Processing service BSS create event from STAMGR.
[AC-KongZhi-wlan-ap-test06-radio-1]%Jul 22 12:36:11:891 2024 AC-KongZhi STAMGR/6/SERVICE_ON: -MDC=1; BSS 7e6f-c826-0a10 was created after service template 1 with SSID mmm was bound to radio 1 on AP test06.

9.3 启用无线射频功能
[AC-KongZhi-wlan-ap-test06-radio-1]radio  enable
[AC-KongZhi-wlan-ap-test06-radio-1]%Jul 22 12:39:39:852 2024 AC-KongZhi WEB/5/LOGOUT: -MDC=1; admin 92.168.56.34 .

9.4 设置无线信道
[AC-KongZhi-wlan-ap-test06-radio-1]channel 36

9.5 配置无线信号最大传输功率
[AC-KongZhi-wlan-ap-test06-radio-1]max-power  20

9.6 配置无线信道带宽
[AC-KongZhi-wlan-ap-test06-radio-1]channel band-width  80
This operation might cause channel change. Continue? [Y/N]:y

9.7 AP容纳客户的数量
[AC-KongZhi-wlan-ap-test06-radio-1]client max-count  128

脚本    #
#
 radio 1
  channel 36
  max-power 20
  radio enable
  channel band-width 80
  service-template 1 vlan 172
  client max-count 128
#

错误示范
1 少了这一条命令
[AC-KongZhi-wlan-ap-test05-radio-1] service-template 1 vlan 172

三 扩展

1  配置AP发现AC的方式以IPv6地址类型优先
[AC-KongZhi-wlan-ap-test03]provision
[AC-KongZhi-wlan-ap-test03-prvs]ac discovery  policy  ipv6

2 配置AP连接AC的优先级
[AC-KongZhi-wlan-ap-test03]priority 7  
 
3 开启单播配置策略
[AC-KongZhi]wlan  capwap  discovery-policy  unicast  

4 配置AP组   students(test03 test04)      apples(test05)   teacher(test06 07)

4.1 创建组名字为 teachers
[AC-KongZhi]wlan ap-group  teachers
[AC-KongZhi-wlan-ap-group-teachers]

4.2 在组中增加成员
[AC-KongZhi-wlan-ap-group-teachers]ap test06
[AC-KongZhi-wlan-ap-group-teachers]ap test07

4.3  配置AP序列号入组规则
[AC-KongZhi-wlan-ap-group-teachers]serial-id  cc

4.4  配置AP MAC地址入组规则
[AC-KongZhi-wlan-ap-group-teachers]mac-address  ?
  H-H-H  MAC address

4.5 配置IPv4/ipv6网段入组规则
[AC-KongZhi-wlan-ap-group-teachers]if-match  ipv6 ?
  X:X::X:X    IPv6 address
  X:X::X:X/M  IPv6 address / IPv6 prefix length <1-128>

[AC-KongZhi-wlan-ap-group-teachers]if-match  ip ?
  X.X.X.X  IP address

5 配置预配置智能加载功能(默认打开)
[AC-KongZhi-wlan-ap-group-teachers]provision  auto-recovery  ?
  disable  Specify ACs for the AP
  enable   Specify ACs for the AP
[AC-KongZhi-wlan-ap-group-teachers]provision  auto-recovery  

6 开启AP管理的告警功能 (默认关闭)
[AC-KongZhi]snmp-agent  trap  enable  wlan ap

7 配置LED闪烁模式
[AC-KongZhi-wlan-ap-test07]led-mode ?
  always-on  All LEDs are always on
  awake      Only the power LED flashes once every minute
  normal     Default mode for LEDs
  quiet      All LEDs are always off
备注:
    always-on：所有LED指示灯始终亮着。
    awake：只有电源LED每分钟闪烁一次。
    normal：LED指示灯的默认模式。
    quiet：所有LED指示灯始终关闭。

8  AP 组的维护信息
<AC-KongZhi>display wlan  ap all
<AC-KongZhi>display wlan  ap all verbose
<AC-KongZhi>display wlan  ap all address
<AC-KongZhi>display wlan  ap  name  test03 address
<AC-KongZhi>display wlan  ap all feature capwap
<AC-KongZhi>display wlan  ap  all  connection-record
<AC-KongZhi>display wlan  ap  all  online-time
<AC-KongZhi>display wlan  ap  all  ?
    >                      Redirect it to a file
  >>                     Redirect it to a file in append mode
  address                The ip address and mac address
  client-number          Display client quantity
  connection-record      AP connection information
  continuous-mode        The radio continuous mode
  description            AP description
  feature                Feature information
  gps                    Display AP GPS information
  group                  Display AP groups to which the specified APs belong
  interface              Interface information
  online-time            AP online duration
  radio                  AP radio information
  region-code            Region code
  running-configuration  Display AP running-configuration information
  total-online-duration  AP total online duration
  verbose                Detailed information
  |                      Matching output
          
备注:
    Redirect it to a file：将输出重定向到一个文件中。
    Redirect it to a file in append mode：将输出以追加模式重定向到一个文件中。
    address：显示AP的IP地址和MAC地址。
    client-number：显示连接到AP的客户端数量。
    connection-record：显示AP的连接信息。
    continuous-mode：显示无线电的持续模式。
    description：显示AP的描述信息。
    feature：显示特性信息。
    gps：显示AP的GPS信息。
    group：显示指定AP所属的AP组。
    interface：显示接口信息。
    online-time：显示AP在线时长。
    radio：显示AP的无线电信息。
    region-code：显示区域代码。
    running-configuration：显示AP的运行配置信息。
    total-online-duration：显示AP的总在线时长。
    verbose：显示详细信息。
    |：通常与管道操作相关，用于匹配输出。
          
9 射频管理
9.1 进入射频 radio 1
[AC-KongZhi]wlan radio ?
  channel             Channel configuration
  continuous-service  Continuous service configuration
  disable             Diasable all radio   
  enable              Enable all radio
  max-power           Maximum transmit power configuration
  power-lock          Configure power lock parameters

备注:
    channel：配置无线电的信道。
    continuous-service：配置无线电的持续服务。
    disable：禁用所有的无线电接口。
    enable：启用所有的无线电接口。
    max-power：配置无线电的最大传输功率。
    power-lock：配置功率锁定参数。

参考:
[AC-KongZhi]wlan radio power-lock  default all  5g

9.2 配置射频模式
[AC-KongZhi-wlan-ap-test05-radio-1]type ?
  dot11a   802.11a
  dot11ac  802.11ac(5GHz)
  dot11an  802.11n(5GHz)
  dot11ax  802.11ax(5GHz)
备注:
    dot11a：802.11a，通常用于5GHz频段，支持54Mbps的传输速率。
    dot11ac：802.11ac，是802.11a的扩展，支持更高的传输速率和更宽的频带，通常用于5GHz频段。
    dot11an：802.11n，是802.11a的扩展，支持更高的传输速率和多输入多输出(MIMO)技术，通常用于5GHz频段。
    dot11ax：802.11ax，是802.11ac的进一步扩展，支持更高的传输速率和更高效的频谱利用，通常用于5GHz频段。

参考:
[AC-KongZhi-wlan-ap-test05-radio-1]type dot11ac
This operation might log off all clients. Continue? [Y/N]:y

9.3 配置射频工作信道
[AC-KongZhi-wlan-ap-test05-radio-1]channel ?
  INTEGER      Legal channels: 36, 40, 44, 48, 52, 56, 60, 64, 149, 153, 157,
               161, 165
  auto         Configure automatic channel selection
  auto-select  Configure the channel auto-select list parameters
  band-width   Specify the channel bandwidth

备注:
INTEGER：直接指定一个合法的信道号。例如，如果你想要设置信道为36，你可以输入：
[AC-KongZhi-wlan-ap-test05-radio-1]channel 36
注意，信道号必须是列表中提供的合法信道之一。

auto：配置为自动选择信道。这通常用于让AP根据当前的无线环境自动选择最佳信道。你可以输入：
[AC-KongZhi-wlan-ap-test05-radio-1]channel auto

auto-select：配置自动选择信道的列表参数。这可能允许你设置一个信道列表，让AP从中自动选择。具体的命令格式可能需要进一步的参数，例如：
[AC-KongZhi-wlan-ap-test05-radio-1]channel auto-select [参数]

参考:
[AC-KongZhi-wlan-ap-test05-radio-1]channel  64

9.4 配置信道带宽值
band-width：指定信道的带宽。这可能需要你指定一个带宽值，例如20MHz, 40MHz, 80MHz等。具体的命令格式可能是：
[AC-KongZhi-wlan-ap-test05-radio-1]channel band-width [带宽值]俺考

参考:
[AC-KongZhi-wlan-ap-test05-radio-1]channel band-width  80
This operation might cause channel change. Continue? [Y/N]:y

9.5 配置工作信道
[AC-KongZhi-wlan-ap-test05-radio-1]channel auto ?
  lock    Lock the current channel
  unlock  Unlock the current channel
备注:
lock：锁定当前的信道。当你使用这个选项时，AP将停止自动选择信道，并保持在当前选定的信道上，即使这个信道可能不是最优选择。
unlock：解锁当前的信道。这个选项允许AP恢复自动选择信道的功能。

9.6  配置射频天线类型
[AC-KongZhi-wlan-ap-test05-radio-1]antenna type  ?
  internal  Internal antenna
备注:

internal：内置天线。这表示AP使用的是内置的天线，而不是外部连接的天线。

#
 version 7.1.064, Alpha 7165
#
 sysname AC
#
wlan global-configuration
#
 irf mac-address persistent timer
 irf auto-update enable
 undo irf link-delay
 irf member 1 priority 1
#
 dhcp enable
#
 xbar load-single
 password-recovery enable
 lpu-type f-series
#
vlan 1
#
vlan 10
#
vlan 56
#
vlan 172
#
dhcp server ip-pool vlan10
 gateway-list 10.0.0.1
 network 10.0.0.0 mask 255.255.255.0
 expired day 30
#
dhcp server ip-pool vlan172
 gateway-list 172.16.1.1
 network 172.16.1.0 mask 255.255.255.0
 expired day 30
#
wlan service-template 1
 ssid www
 service-template enable
#
interface NULL0
#
interface Vlan-interface10
 ip address 10.0.0.1 255.255.255.0
#
interface Vlan-interface56
 ip address 192.168.56.3 255.255.255.0
#
interface Vlan-interface172
 ip address 172.16.1.1 255.255.255.0
#
interface GigabitEthernet1/0/0
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/1
 port link-mode bridge
 port link-type trunk
 undo port trunk permit vlan 1
 port trunk permit vlan 10
 port trunk pvid vlan 10
 combo enable fiber
#
interface GigabitEthernet1/0/2
 port link-mode bridge
 port link-type trunk
 undo port trunk permit vlan 1
 port trunk permit vlan 10
 port trunk pvid vlan 10
 combo enable fiber
#
interface GigabitEthernet1/0/3
 port link-mode bridge
 port link-type trunk
 undo port trunk permit vlan 1
 port trunk permit vlan 10
 port trunk pvid vlan 10
 combo enable fiber
#
interface GigabitEthernet1/0/4
 port link-mode bridge
 port access vlan 56
 combo enable fiber
#
interface GigabitEthernet1/0/5
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/6
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/7
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/8
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/9
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/10
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/11
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/12
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/13
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/14
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/15
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/16
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/17
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/18
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/19
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/20
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/21
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/22
 port link-mode bridge
 combo enable fiber
#
interface GigabitEthernet1/0/23
 port link-mode bridge
 combo enable fiber
#
interface Ten-GigabitEthernet1/0/24
 port link-mode bridge
 combo enable fiber
#
interface Ten-GigabitEthernet1/0/25
 port link-mode bridge
 combo enable fiber
#
interface Ten-GigabitEthernet1/0/26
 port link-mode bridge
 combo enable fiber
#
interface Ten-GigabitEthernet1/0/27
 port link-mode bridge
 combo enable fiber
#
 scheduler logfile size 16
#
line class aux
 user-role network-operator
#
line class console
 user-role network-admin
#
line class tty
 user-role network-operator
#
line class vty
 user-role network-operator
#
line aux 0
 user-role network-operator
#
line con 0
 user-role network-admin
#
line vty 0 31
 user-role network-operator
#
domain system
#
 domain default enable system
#
role name level-0
 description Predefined level-0 role
#
role name level-1
 description Predefined level-1 role
#
role name level-2
 description Predefined level-2 role
#
role name level-3
 description Predefined level-3 role
#
role name level-4
 description Predefined level-4 role
#
role name level-5
 description Predefined level-5 role
#
role name level-6
 description Predefined level-6 role
#
role name level-7
 description Predefined level-7 role
#
role name level-8
 description Predefined level-8 role
#
role name level-9
 description Predefined level-9 role
#
role name level-10
 description Predefined level-10 role
#
role name level-11
 description Predefined level-11 role
#
role name level-12
 description Predefined level-12 role
#
role name level-13
 description Predefined level-13 role
#
role name level-14
 description Predefined level-14 role
#
user-group system
#
local-user admin class manage
 password hash $h$6$Yoe/6NA7YzHWvhcN$t5eGcLBL9NRMJBScuXiwuwcRoo9DNLpGaoKQwYFy70j57Ya85GQSgDZm8eKeLDUZPlKZuoLZD4sPjyvPO2IxCA==
 service-type pad ssh telnet terminal http https
 authorization-attribute user-role network-admin
 authorization-attribute user-role network-operator
#
 ip http enable
 ip https enable
#
 wlan auto-ap enable
#
wlan ap-group default-group
 vlan 1
#
wlan virtual-ap-group default-virtualapgroup
#
wlan ap student01 model WA6320-HCL 
 serial-id H3C_80-E3-D8-CA-02-00
 vlan 1
 radio 1
  channel 36
  max-power 14
  radio enable
  channel band-width 40 
  service-template 1 vlan 172
  client max-count 128
 radio 2
 gigabitethernet 1
#
wlan ap student02 model WA6320-HCL 
 serial-id H3C_80-E3-DE-8D-03-00
 vlan 1
 radio 1
  channel 36
  max-power 16
  radio enable
  channel band-width 40 
  service-template 1 vlan 172
  client max-count 128
 radio 2
 gigabitethernet 1
#
return

 

原文地址：https://blog.csdn.net/qq_56248592/article/details/140621702

免责声明：本站文章内容转载自网络资源，如本站内容侵犯了原著者的合法权益，可联系本站删除。更多内容请关注自学内容网（zxcms.com）！