What precautions should I take when the WLAN dual-link backup solution is deployed


When configuring dual-link backup, set the same heartbeat interval on the active and standby ACs. Additionally, the ACs cannot be used as service gateways, their service configurations must be consistent, and they must use different IP address pools.

Other related questions:
Precautions for configuring port isolation on S series switches
Precautions for configuring port isolation on S series switches (except the S1700) are as follows: 1. Port isolation takes effect only for interfaces on the same switch, and cannot take effect for interfaces on different switches. 2. Interfaces in a port isolation group are isolated from each other, but interfaces in different port isolation groups can communicate. If the group-id parameter is not specified, interfaces are added to port isolation group 1 by default. 3. For S series switches, the default port isolation mode is Layer 2 isolation and Layer 3 interworking. To configure Layer 2 and Layer 3 isolation, run the port-isolate mode all command in the system view.

What precautions should I take when using multicast addresses on an S series switches
Class D IP addresses are used as multicast addresses, ranging from to Not all class D IP addresses can be allocated randomly. Similar to unicast addresses, many reserved addresses exist. The reserved addresses are classified into the following types: - Permanent multicast group addresses ranging from to are network protocol addresses allocated by IANA to the local network. When packets are sent, the TTL of the packets is 1. Therefore, the router does not forward packets from the local network segment. For example, base addresses (reserved group addresses) are multicast group addresses. indicates all the hosts and routers joining multicast groups on a subnet. indicates all the routers joining multicast groups on a subnet. indicates Distance Vector Multicast Routing Protocol (DVMRP) routers. indicates PIMv2 routers. indicates IGMPv3 routers. - User group addresses ranging from to are valid on the entire network and can be used. These addresses include the following special reserved addresses: to not local addresses. When packets are sent from these addresses, the TTL is greater than 1. indicates the NTP address. indicates the NSS address. indicates Tibco multicast 1. 232/8: indicates the SSM group address. 233/8: indicates the GLOP group address. - Local management group addresses ranging from to are valid in the local management domain only. They are private addresses and cannot be used on public networks.

Configuration of dual-link uplink backup
AR routers have two uplinks. If the two links both use the PPPoE dial-up method, the route backup method can be used to back up the two links. For example, the AR router has two dial-up interfaces: Dialer 1 and Dialer 2, and the active link and backup link can be determined by configuring the priority of static routes. On field networks, when the PPPoE dial-up or authentication fails, or the IP address cannot be obtained, the router may need to automatically switch over to the backup route. However, the backup route takes over the active route only when the state of the Dialer1 interface changes to Down. In addition, a Dialer interface is a virtual logical interface, whose state is Snoofing Up. Therefore, the state of the Dialer1 interface cannot change to Down even if the PPPoE dial-up fails. A configuration scheme is described as follows to resolve this problem: [Huawei] acl 3000 //Create the ACL list for NAT. [Huawei-acl-adv-3000] rule permit ip //The list can be accessed by all users in general. The access can also be limited based on actual requirements. [Huawei-acl-adv-3000] quit [Huawei] interface dialer 1 //Create the virtual dial-up interface. [Huawei-Dialer1] link-protocol ppp [Huawei-Dialer1] ppp chap user 123456 //Username authenticated by CHAP [Huawei-Dialer1] ppp chap password cipher huawei@123 //Password authenticated by CHAP [Huawei-Dialer1] ppp pap local-user 123456 password cipher huawei@123 //Username and password authenticated by PAP [Huawei-Dialer1] ip address ppp-negotiate //Obtain the IP address by PPP negotiation. [Huawei-Dialer1] dialer user user1 [Huawei-Dialer1] dialer bundle 1 //Set the number of the Dialer bundle to 1. [Huawei-Dialer1] dialer number 1 autodial //This command is added to ensure that the state of the Dialer interface changes to Down when the PPPoE dial-up fails. [Huawei-Dialer1] dialer-group 1 [Huawei-Dialer1] nat outbound 3000 //NAT conversion list [Huawei-Dialer1] quit [Huawei] dialer-rule [Huawei-dialer-rule] dialer-rule 1 ip permit [Huawei-dialer-rule] quit [Huawei] interface gigabitethernet 0/0/0 //Enter the view of the interface connecting to the operator. [Huawei-GigabitEthernet0/0/0] pppoe-client dial-bundle-number 1 //Enable the PPPoE Client function and bind the PPPoE client to the created Dialer interface. [Huawei-GigabitEthernet0/0/0] quit [Huawei] ip route-static dialer 1 preference 60 //Create the default route which directs to the Dialer1 interface, which indicates that when the active link is normal, the route to the external networks through the Dialer1 interface is used with higher priority. [Huawei] ip route-static dialer 2 preference 100 //When the active link is abnormal and the dial-up fails, the active link automatically switches over to the backup link which connects to the external networks through the Dialer2 interface.

What are precautions for deploying the WLAN hot standby plan
Currently, Huawei products support dual link hot standby. When dual link hot standby is deployed, the interval at which heartbeat packets are transmitted must be the same on the active and standby ACs, no AC can function as a service gateway, service configurations must be the same on the active and standby ACs, and the active and standby ACs must use different IP address pools.

If you have more questions, you can seek help from following ways:
To iKnow To Live Chat
Scroll to top