Hi Guys,
Today I would like to discuss about WLAN networks, because lately I meet a lot of people interested about how to improve the network and make the services running more efficient. In the situation you have hundreds of APs and thousands on users, communication environment should be efficient. Let's consider a simple WLAN network with 1 AC, 1 access switch and a couple of APs.
![[Insider Sharing] Tweaking WLAN-1292629-1](data/attachment/forum/dm/ecommunity/uploads/2014/0626/19/53ac0a6318b08.PNG)
1. First point is to configure port isolation feature on the access switch in order to prevent:
- unnecessary packets to be broadcasted in the VLANs or
- WLAN users connected to different APs to communicate with each other at Layer 2.
configuration :
#
interface GigabitEthernet0/0/1
port-isolate enable group 1
#
interface GigabitEthernet0/0/2
port-isolate enable group 1
#
2. Configure user isolation on AC level. Packets cannot be transmitted between WLAN users associated with the same VAP. All user traffic must be forwarded by the gateway, and all WLAN users communicate through the gateway.
Configuration:
[AC6605-wlan-view] service-set name Guest
[AC6605-wlan-service-set-Guest] user-isolate
3. Rate limit the download and upload traffic per user inside a SSID to a specific value, in order to protect network resources.
For instance rate limit the upstream traffic on each user in a VAP bound to traffic profile p1 to 2048 kbit/s
<AC6605> system-view
[AC6605] wlan
[AC6605-wlan-view] traffic-profile name p1
[AC6605-wlan-traffic-prof-p1] rate-limit client up 2048
4. Enable signal-strength-based power adjustment on for APs.
The traditional radio power control function sets the power of an AP to a fixed value to keep the power of all users connecting to the AP the same.
You can run the power auto-adjust enable command to enable signal-strength-based power adjustment. This function enables an AP to detect the signal strength of a user in a timely manner. If the AP detects that the signal strength of the user is strong (for example, the user is near the AP), the AP reduces its transmit power when sending packets. If the AP detects that the signal strength of the user is weak (for example, the user is far from the AP), the AP uses the normal transmit power to send radio signals.
<AC6605> system-view
[AC6605] wlan
[AC6605-wlan-view] radio-profile name test
[AC6605-wlan-radio-prof-test] power auto-adjust enable
5. Restrict weak signal users to access the network resource.
On a WLAN, an AP may receive weak radio signals from some STAs. After these STAs associate with the AP, these STAs work at a low rate, affecting the network throughput. The function that restricts access from weak-signal STAs can prevent these STAs from accessing the WLAN, reducing the impact of these STAs on other ones and improving WLAN performance.
In the case of good WLAN signal coverage, this function can be used to restrict WLAN access from weak-signal STAs at the edge of the coverage area.
<AC6605> system-view
[AC6605] wlan
[AC6605-wlan-view] radio-profile name huawei
[AC6605-wlan-radio-prof-huawei] sta-access-limit signal-strength enable
[AC6605-wlan-radio-prof-huawei] sta-access-limit signal-strength threshold -75
6. Enable forced logout of weak-signal STAs.
<AC6605> system-view
[AC6605] wlan
[AC6605-wlan-view] radio-profile name huawei
[AC6605-wlan-radio-prof-huawei] sta-forced-offline signal-strength switch enable
[AC6605-wlan-radio-prof-huawei] sta-forced-offline signal-strength threshold -75
7. Enable forced logout of low-rate STAs.
<AC6605> system-view
[AC6605] wlan
[AC6605-wlan-view] radio-profile name huawei
[AC6605-wlan-radio-prof-huawei] sta-forced-offline rate switch enable
So those are my 7 tweaks. If you have any other proposals please input on this thread.
Thank you.
