Got it
Huawei Enterprise Support Community
Community Forums WLAN
WLAN V200R003&V200R005 Ty...

WLAN V200R003&V200R005 Typical Configuration Examples-Example for Configuring WLAN Services in Layer 2 Inline Networking (Direct Forwarding)

Latest reply: Aug 31, 2017 03:48:13 1279 1 0 0 0
View the author 1#

4.2.2  Example for Configuring WLAN Services in Layer 2 Inline Networking (Direct Forwarding)

Specifications

  • Applicable ACs: AC6605 and AC6005

  • Applicable APs: all APs

Networking Requirements

As shown in Figure 4-3, the AC connects to the upper-layer network and to AP1 and AP2 through the aggregation switch and access switch. The AC and APs communicate through a Layer 2 network. The networking simplifies the network structure of small networks and applies to individual users. The highly-efficient direct forwarding mode is used in this networking.

Deploying a wired network requires a large number of cables and consumes much labor and costs. A wired network is also inflexible for users. To reduce cable layout and save human resources, users can deploy a WLAN that improves network flexibility and maintainability.

Figure 4-3  Networking diagram
3a9849e8b5ef474993657ec6bb57a06b

Data planning

Configuration Item Data
WLAN security WEP open system authentication and no encryption
WLAN service set

Name: huawei-1

SSID: huawei-1

WLAN virtual interface: WLAN-ESS 0

Data forwarding mode: direct forwarding

Name: huawei-2

SSID: huawei-2

WLAN virtual interface: WLAN-ESS 1

Data forwarding mode: direct forwarding

Management VLAN for APs VLAN 100
Service VLANs for APs

AP1: VLAN 101

AP2: VLAN 102

Regions

AP1: 101

AP2: 102

AC carrier ID/AC ID other/1
Management IP address pool for APs 192.168.10.2 to 192.168.10.254/24
Gateway address for APs 192.168.10.1/24 (The gateway is on the AC.)
Public IP address pool for STAs on AP1 192.168.11.2 to 192.168.11.254/24
Public gateway address for STAs on AP1 192.168.11.1/24 (The gateway is on the aggregation switch.)
Public IP address pool for STAs on AP2 192.168.12.2 to 192.168.12.254/24
Public gateway address for STAs on AP2 192.168.12.1/24 (The gateway is on the aggregation switch.)
DHCP server The AC functions as the DHCP server for APs, and the aggregation switch functions as the DHCP server for STAs.

Configuration Procedure

  1. Connect network devices according to Figure 4-3 and ensure connectivity between the AC and the IP backbone network.
  2. Configure the access switch and aggregation switch so that APs can communicate with the AC at Layer 2.
  3. Configure the WLAN service on the AC.
  4. Deliver the WLAN service to APs and verify the configuration.

Configuration Notes

  • The access switch or AC is directly connected to interfaces of APs. AP management packets need to be tagged with the management VLAN ID. APs do not need to be configured.

  • A service IP address pool is configured to allocate IP addresses to STAs, and a management IP address pool is configured to allocate IP addresses to APs. Two pools are configured separately.

  • No ACK mechanism is provided for multicast packet transmission on air interfaces. In addition, wireless links are unstable. To ensure stable transmission of multicast packets, they are usually sent at low rates. If a large number of such multicast packets are sent from the network side, the air interfaces may be congested. You are advised to configure multicast packet suppression to reduce impact of a large number of low-rate multicast packets on the wireless network. Exercise caution when configuring the rate limit; otherwise, the multicast services may be affected.
    • In direct forwarding mode, you are advised to configure multicast packet suppression on switch interfaces connected to APs.
    • In tunnel forwarding mode, you are advised to configure multicast packet suppression on WLAN-ESS interfaces of the AC.
    For details on how to configure traffic suppression, see 4.20.1.4 Multicast Packet Suppression Is Not Configured, and A Large Number of Low-Rate Multicast Packets Affect the Wireless Network.

  • Configure port isolation on the interfaces of the device directly connected to APs. If port isolation is not configured and direct forwarding is used, a large number of unnecessary broadcast packets may be generated in the VLAN, blocking the network and degrading user experience.

  • In tunnel forwarding mode, the management VLAN and service VLAN cannot be the same. Only packets from the management VLAN are transmitted betweeen the AC and APs. Packets from the service VLAN are not allowed between the AC and APs.

  • During AP deployment, you can manually specify the working channels of the APs according to network planning situations or configure the radio calibration function to enable the APs to automatically select the optimal channels.

    If you use the radio calibration function, perform the following steps after delivering configurations to all APs:
    1. Run the channel-mode auto command in the radio profile view to set the channel mode to auto and run the power-mode auto command to set the power mode to auto.
    2. Run the calibrate enable manual command to set the radio calibration mode to manual.
    3. Run the calibrate manual startup command to manually trigger radio calibration.
    4. APs finish radio calibration one hour after the radio calibration is manually triggered. After that, you can perform either of the configurations:
      • (Recommended) run the calibrate enable schedule time time-value command to change the radio calibration mode to scheduled calibration and configure the APs to perform radio calibration in off-peak hours, for example, between 00:00 am and 06:00 am.
      • Run the channel-mode fixed command in the radio profile view to manually fix the working channels of APs and run the power-mode fixed command to fix the AP power. If a new AP gets online, repeat steps 2 to 4.

Procedure

  1. Configure the access switch.

    # Configure the access switch to transparently transmit packets of all service VLANs and tag AP management packets with management VLAN 100. Configure the AP and AC to communicate in VLAN 100. In direct forwarding mode, configure the AC and AC to communicate in service VLANs 101 and 102.

    <Quidway> system-view
[Quidway] vlan batch 101 102 100
[Quidway] interface ethernet 0/0/1
[Quidway-Ethernet0/0/1] port link-type trunk
[Quidway-Ethernet0/0/1] port trunk pvid vlan 100
[Quidway-Ethernet0/0/1] port trunk allow-pass vlan 101 100
[Quidway-Ethernet0/0/1] port-isolate enable
[Quidway-Ethernet0/0/1] quit
[Quidway] interface ethernet 0/0/2
[Quidway-Ethernet0/0/2] port link-type trunk
[Quidway-Ethernet0/0/2] port trunk pvid vlan 100
[Quidway-Ethernet0/0/2] port trunk allow-pass vlan 102 100
[Quidway-Ethernet0/0/2] port-isolate enable
[Quidway-Ethernet0/0/2] quit
[Quidway] interface gigabitethernet 0/0/1
[Quidway-GigabitEthernet0/0/1] port link-type trunk
[Quidway-GigabitEthernet0/0/1] port trunk allow-pass vlan 101 102 100
[Quidway-GigabitEthernet0/0/1] quit

  2. Configure the aggregation switch.

    # Configure the aggregation switch to transparently transmit packets of all service VLANs and management VLAN, configure IP address pools of service VLAN 101 and VLAN 102 on the aggregation switch.

    <Quidway> system-view
[Quidway] vlan batch 101 102 100
[Quidway] dhcp enable
[Quidway] interface gigabitethernet 0/0/1
[Quidway-GigabitEthernet0/0/1] port link-type trunk
[Quidway-GigabitEthernet0/0/1] port trunk allow-pass vlan 101 102 100
[Quidway-GigabitEthernet0/0/1] port-isolate enable
[Quidway-GigabitEthernet0/0/1] quit
[Quidway] interface gigabitethernet 0/0/2
[Quidway-GigabitEthernet0/0/2] port link-type trunk
[Quidway-GigabitEthernet0/0/2] port trunk allow-pass vlan 101 102 100
[Quidway-GigabitEthernet0/0/2] quit
[Quidway] interface Vlanif 101
[Quidway-Vlanif101] ip address 192.168.11.1 24
[Quidway-Vlanif101] dhcp select interface
[Quidway-Vlanif101] quit
[Quidway] interface Vlanif 102
[Quidway-Vlanif102] ip address 192.168.12.1 24
[Quidway-Vlanif102] dhcp select interface
[Quidway-Vlanif102] quit

  3. Configure the AC.
    1. Configure the AC so that the AC and APs can transmit management and service packets.

      # Add GE0/0/1 to VLAN 100, VLAN 101, and VLAN 102.

      <AC6605> system-view
[AC6605] sysname AC
[AC] vlan batch 100 101 102
[AC] interface gigabitethernet 0/0/1
[AC-GigabitEthernet0/0/1] port link-type trunk
[AC-GigabitEthernet0/0/1] port trunk allow-pass vlan 100 to 102
[AC-GigabitEthernet0/0/1] quit

    2. Configure the AC to communicate with upstream devices.

      Configure a route to the upper-layer network on the AC according to service requirements.

    3. Configure the AC as the DHCP server for APs. 

      [AC] dhcp enable
[AC] interface Vlanif 100
[AC-Vlanif100] ip address 192.168.10.1 24
[AC-Vlanif100] dhcp select interface
[AC-Vlanif100] quit

    4. Configure global parameters on the AC.

      # Configure the AC ID, country code, carrier ID, and source interface.

      [AC] wlan ac-global country-code cn
  Warning: Modify the country code may delete configuration on those AP which us
e the global country code and reset them, are you sure to continue?[Y/N]:y 
[AC] wlan ac-global ac id 1 carrier id other
[AC] wlan
[AC-wlan-view] wlan ac source interface vlanif 100

    5. Configure APs and enable them to go online.

      # Set AP authentication mode to MAC address authentication.

      [AC-wlan-view] ap-auth-mode mac-auth

      # Query the AP device type.

      [AC-wlan-view] display ap-type all
  All AP types information:                                                     
  ------------------------------------------------------------------------------
  ID     Type                                                                   
  ------------------------------------------------------------------------------
  17     AP6010SN-GN                                                            
  19     AP6010DN-AGN                                                           
  21     AP6310SN-GN                                                            
  23     AP6510DN-AGN                                                           
  25     AP6610DN-AGN                                                           
  27     AP7110SN-GN                                                            
  28     AP7110DN-AGN                                                           
  29     AP5010SN-GN                                                            
  30     AP5010DN-AGN                                                           
  31     AP3010DN-AGN                                                           
  33     AP6510DN-AGN-US                                                        
  34     AP6610DN-AGN-US                                                        
  35     AP5030DN                                                               
  36     AP5130DN                                                               
  37     AP7030DE                                                               
  38     AP2010DN                                                               
  39     AP8130DN                                                               
  40     AP8030DN                                                               
  42     AP9330DN                                                                
  ------------------------------------------------------------------------------
  Total number: 19

      # Add AP1 and AP2 of the AP6010DN-AGN type offline according to the obtained device type ID (19).

      [AC-wlan-view] ap id 1 type-id 19 mac 60de-4476-e360
[AC-wlan-ap-1] quit
[AC-wlan-view] ap id 2 type-id 19 mac dcd2-fc04-b500
[AC-wlan-ap-2] quit
      # Add APs to AP regions.
      [AC-wlan-view] ap-region id 101
[AC-wlan-ap-region-101] quit
[AC-wlan-view] ap-region id 102
[AC-wlan-ap-region-102] quit
[AC-wlan-view] ap id 1
[AC-wlan-ap-1] region-id 101
[AC-wlan-ap-1] quit
[AC-wlan-view] ap id 2
[AC-wlan-ap-2] region-id 102
[AC-wlan-ap-2] quit
      # Check whether APs have gone online.
      [AC-wlan-view] display ap all
  All AP information:                            
  Normal[2],Fault[0],Commit-failed[0],Commiting[0],Config[0]                    
  Config-failed[0],Download[0],Standby[0],Type-not-match[0]
 ------------------------------------------------------------------------------
  AP    AP                    AP              Profile   AP              AP
                                              /Region
  ID    Type                  MAC             ID        State           Sysname
  ------------------------------------------------------------------------------
  1     AP6010DN-AGN          60de-4476-e360    0/101   normal          ap-1
  2     AP6010DN-AGN          dcd2-fc04-b500    0/102   normal          ap-2
  ------------------------------------------------------------------------------
  Total number: 2,printed: 2
[AC-wlan-view] quit

    6. Configure WLAN-ESS interfaces. 

      [AC] interface wlan-ess 0
[AC-Wlan-Ess0] port hybrid pvid vlan 101
[AC-Wlan-Ess0] port hybrid untagged vlan 101
[AC-Wlan-Ess0] quit
[AC] interface wlan-ess 1
[AC-Wlan-Ess1] port hybrid pvid vlan 102
[AC-Wlan-Ess1] port hybrid untagged vlan 102
[AC-Wlan-Ess1] quit

    7. Configure WLAN service parameters.

      # Configure WMM profiles and radio profiles, retain the default settings of the profiles, and bind the WMM profiles to the radio profiles.

      [AC] wlan
[AC-wlan-view] wmm-profile name huawei-ap1
[AC-wlan-wmm-prof-huawei-ap1] quit
[AC-wlan-view] wmm-profile name huawei-ap2
[AC-wlan-wmm-prof-huawei-ap2] quit
[AC-wlan-view] radio-profile name huawei-ap1 
[AC-wlan-radio-prof-huawei-ap1] wmm-profile name huawei-ap1 
[AC-wlan-radio-prof-huawei-ap1] quit 
[AC-wlan-view] radio-profile name huawei-ap2 
[AC-wlan-radio-prof-huawei-ap2] wmm-profile name huawei-ap2
[AC-wlan-radio-prof-huawei-ap2] quit

      # Create a security profile and retain the default settings: open system authentication and no encryption.

      [AC-wlan-view] security-profile name huawei-ap
[AC-wlan-sec-prof-huawei-ap] quit

      # Configure a traffic profile and retain the default settings.

      [AC-wlan-view] traffic-profile name huawei-ap
[AC-wlan-traffic-prof-huawei-ap] quit

      # Configure service sets for AP1 and AP2, and set the data forwarding mode to direct forwarding. The direct forwarding mode is used by default.

      [AC-wlan-view] service-set name huawei-1
[AC-wlan-service-set-huawei-1] ssid huawei-1
[AC-wlan-service-set-huawei-1] wlan-ess 0
[AC-wlan-service-set-huawei-1] service-vlan 101
[AC-wlan-service-set-huawei-1] security-profile name huawei-ap
[AC-wlan-service-set-huawei-1] traffic-profile name huawei-ap
[AC-wlan-service-set-huawei-1] forward-mode direct-forward
[AC-wlan-service-set-huawei-1] quit
[AC-wlan-view] service-set name huawei-2
[AC-wlan-service-set-huawei-2] ssid huawei-2
[AC-wlan-service-set-huawei-2] wlan-ess 1
[AC-wlan-service-set-huawei-2] service-vlan 102
[AC-wlan-service-set-huawei-2] security-profile name huawei-ap
[AC-wlan-service-set-huawei-2] traffic-profile name huawei-ap
[AC-wlan-service-set-huawei-2] forward-mode direct-forward
[AC-wlan-service-set-huawei-2] quit

    8. Configure VAPs and deliver configurations to the APs. 

      [AC-wlan-view] ap 1 radio 0
[AC-wlan-radio-1/0] radio-profile name huawei-ap1  
[AC-wlan-radio-1/0] service-set name huawei-1
[AC-wlan-radio-1/0] quit
[AC-wlan-view] commit ap 1
  Warning: Committing configuration may cause service interruption,continue?[Y/N
] y
[AC-wlan-view] ap 2 radio 0
[AC-wlan-radio-2/0] radio-profile name huawei-ap2
[AC-wlan-radio-2/0] service-set name huawei-2
[AC-wlan-radio-2/0] quit
[AC-wlan-view] commit ap 2
  Warning: Committing configuration may cause service interruption,continue?[Y/N
] y

  4. Enable radio calibration to allow APs to automatically select optimal channels.

    # Configure radio calibration. By default, the radio mode and power mode are both auto in the radio profile, and the radio calibration mode is manual. The configuration procedure is therefore not provided here. If the radio calibration mode is manual, run the calibrate manual startup command to manually trigger radio calibration.

    <AC6605> system-view
[AC6605] wlan
[AC6605-wlan-view] calibrate manual startup

    # Run the display actual channel-power all command to check the channel and power of a radio. Assume that there are three online APs on the AC. The command output shows that AP channels have been automatically assigned through the radio calibration function.

    [AC6605-wlan-view] display actual channel-power all
  --------------------------------------------------------                      
   RADIO  CHANNEL POWER-LEVEL POWER(dbm) CHANNEL-BANDWIDTH                      
  --------------------------------------------------------                      
   1/0    1       10          17         20MHz
   2/0    11      9           18         20MHz
   3/0    6       8           18         20MHz
  --------------------------------------------------------

    # APs finish radio calibration one hour after the radio calibration is manually triggered. After that, change the radio calibration mode to scheduled calibration and configure the APs to start radio calibration at 3:00 am.

    [AC6605-wlan-view] calibrate enable schedule time 03:00:00

    # Commit the configuration.

    [AC6605-wlan-view] commit ap 1   
  Warning: Committing configuration may cause service interruption,continue?[Y/N
 ]y 
[AC6605-wlan-view] commit ap 2  
  Warning: Committing configuration may cause service interruption,continue?[Y/N
 ]y 
[AC6605-wlan-view] commit ap 3 
  Warning: Committing configuration may cause service interruption,continue?[Y/N
 ]y
    # Configure a calibration channel set to specify the channels on which the AP implements radio calibration. This example configures a calibration channel set for the 2.4 GHz radio, which consists of channels 1, 5, 9, and 13.
    [AC6605-wlan-view] calibrate 2.4g 20mhz channel-set 1,5,9,13
    To configure a calibration channel set for the 5 GHz radio, run the calibrate 5g 20mhz channel-set channel-value command.

  5. Test the WLAN service configuration.

    • The WLANs with the SSID huawei-1 or huawei-2 are available for wireless PCs after the configuration is complete.
    • The wireless PCs obtain IP addresses after they associate with the WLANs. Users do not need to enter a password because open system authentication is used.
    • Wireless users can log in to the corresponding web pages.
From group: WLAN

Like (0) Dislike (0) Favorite(0) Share Report
Previous: WLAN V200R003&V200R005 Typical Configuration Examples- Example for Configuring WLAN Services in a Layer 3 Inline Networking (Direct Forwarding)
Next: WLAN V200R003&V200R005 Typical Configuration Examples-Common Misconfigurations
(0) (0)
2#
WoodWood
Created Aug 31, 2017 03:48:13

WLAN V200R003&V200R005 Typical Configuration Examples-Example for Configuring WLAN Services in Layer 2 Inline Networking (Direct Forwarding)-2437499-1
View more
  • x
  • convention:
Back to list

Comment

Advanced
B Color Image Link Quote Code Smilies
You need to log in to comment to the post Login | Register
Comment

Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " User Agreement."

My Followers

Login and enjoy all the member benefits

Login
Huawei Website Support About Huawei Privacy User Agreement Terms of Use Cookies Cookie Settings
Huawei Enterprise Huawei Carrier Forum Training & Certification

Contact Us: e_online@huawei.com Copyright © 2022 Huawei Technologies Co., Ltd. All rights reserved.

APP

Block
Are you sure to block this user?
Users on your blacklist cannot comment on your post,cannot mention you, cannot send you private messages.
Reminder
Please bind your phone number to obtain invitation bonus.