Got it
Huawei Enterprise Support Community
Community Forums WLAN
WLAN V200R003&V200R005 Ty...

WLAN V200R003&V200R005 Typical Configuration Examples-Example for Configuring WLAN Services in Layer 3 Bypass Networking (Direct Forwarding)

Latest reply: Aug 31, 2017 03:54:53 1356 1 0 0 0
View the author 1#

Hi, everyone! Today I’m going to introduce WLAN V200R003& V200R005 typical configuration examples-example for configuring WLAN services in layer 3 bypass networking (direct forwarding).


4.2.7  Example for Configuring WLAN Services in Layer 3 Bypass Networking (Direct Forwarding)


Specifications

  • Applicable ACs: AC6605 and AC6005

  • Applicable APs: all APs

Networking Requirements

As shown in Figure 4-8, an aggregation switch connects to the upper-layer network, and the AC is connected to the aggregation switch in bypass mode. The AC connects to AP1 and AP2 through the aggregation switch and access switch. The AC and APs communicate through a Layer 3 network. The networking allows replacement of the AC on large networks and applies to enterprise users. The highly-efficient direct forwarding mode is used in this networking for data packet management.

Deploying a wired network requires a large number of cables and consumes much labor and costs. A wired network is also inflexible for users. To reduce cable layout and save human resources, users can deploy a WLAN that improves network flexibility and maintainability.

Figure 4-8  Networking
31054d4ddce64f6a93d16e61509ecda9

Data Plan

Configuration ItemData
WLAN securityWEP open system authentication and no encryption
WLAN service set

Name: huawei-1

SSID: huawei-1

WLAN virtual interface: WLAN-ESS 0

Data forwarding mode: direct forwarding

Name: huawei-2

SSID: huawei-2

WLAN virtual interface: WLAN-ESS 1

Data forwarding mode: direct forwarding

Management VLAN for APsVLAN: 200
Service VLANs for APs

AP1: VLAN 101

AP2: VLAN 102

AC carrier ID/AC IDother/1
Source address for the WLAN AC172.16.10.1/24
Management IP address pool for APs192.168.10.2 to 192.168.10.254/24
Gateway address for APs192.168.10.1/24 (The gateway is on the aggregation switch.)
Public IP address pool for users on AP1192.168.11.2 to 192.168.11.254/24
Public gateway address for users on AP1192.168.11.1/24 (The gateway is on the aggregation switch.)
Public IP address pool for users on AP2192.168.12.2 to 192.168.12.254/24
Public gateway address for users on AP2192.168.12.1/24 (The gateway is on the aggregation switch.)
DHCP serverThe AC functions as the DHCP server for APs, and the aggregation switch functions as the DHCP server for STAs.

Configuration Procedure

  1. Connect network devices according to Figure 4-8 and ensure connectivity between the AC and the IP backbone network.

  2. Configure the access switch and aggregation switch so that the route between the AC and AP is reachable.

  3. Configure the WLAN service on the AC.

  4. Deliver the WLAN service to APs and verify the configuration.

Configuration Notes

  • The access switch or AC is directly connected to interfaces of APs. AP management packets need to be tagged with the management VLAN ID. APs do not need to be configured.

  • A service IP address pool is configured to allocate IP addresses to STAs, and a management IP address pool is configured to allocate IP addresses to APs. Two pools are configured separately.

  • No ACK mechanism is provided for multicast packet transmission on air interfaces. In addition, wireless links are unstable. To ensure stable transmission of multicast packets, they are usually sent at low rates. If a large number of such multicast packets are sent from the network side, the air interfaces may be congested. You are advised to configure multicast packet suppression to reduce impact of a large number of low-rate multicast packets on the wireless network. Exercise caution when configuring the rate limit; otherwise, the multicast services may be affected.For details on how to configure traffic suppression, see 4.20.1.4 Multicast Packet Suppression Is Not Configured, and A Large Number of Low-Rate Multicast Packets Affect the Wireless Network.

    • In direct forwarding mode, you are advised to configure multicast packet suppression on switch interfaces connected to APs.

    • In tunnel forwarding mode, you are advised to configure multicast packet suppression on WLAN-ESS interfaces of the AC.

  • Configure port isolation on the interfaces of the device directly connected to APs. If port isolation is not configured and direct forwarding is used, a large number of unnecessary broadcast packets may be generated in the VLAN, blocking the network and degrading user experience.

  • In tunnel forwarding mode, the management VLAN and service VLAN cannot be the same. Only packets from the management VLAN are transmitted betweeen the AC and APs. Packets from the service VLAN are not allowed between the AC and APs.

  • During AP deployment, you can manually specify the working channels of the APs according to network planning situations or configure the radio calibration function to enable the APs to automatically select the optimal channels.

    If you use the radio calibration function, perform the following steps after delivering configurations to all APs:

    • (Recommended) run the calibrate enable schedule time time-value command to change the radio calibration mode to scheduled calibration and configure the APs to perform radio calibration in off-peak hours, for example, between 00:00 am and 06:00 am.

    • Run the channel-mode fixed command in the radio profile view to manually fix the working channels of APs and run the power-mode fixed command to fix the AP power. If a new AP gets online, repeat steps 2 to 4.

  1. Run the channel-mode auto command in the radio profile view to set the channel mode to auto and run the power-mode auto command to set the power mode to auto.

  2. Run the calibrate enable manual command to set the radio calibration mode to manual.

  3. Run the calibrate manual startup command to manually trigger radio calibration.

  4. APs finish radio calibration one hour after the radio calibration is manually triggered. After that, you can perform either of the configurations:

Procedure

  1. Configure the access switch.

    # Configure the access switch to tag AP management packets with the management VLAN ID. Layer 3 networking is deployed between the AC and AP. Configure the access switch to communicate with the aggregation switch in VLAN 100. In direct forwarding mode, configure the AP to communicate with the AC in service VLAN 101 and service VLAN 102.

    <Quidway> system-view[Quidway] vlan batch 100 to 102[Quidway] interface ethernet 0/0/1[Quidway-Ethernet0/0/1] port link-type trunk[Quidway-Ethernet0/0/1] port trunk pvid vlan 100[Quidway-Ethernet0/0/1] port trunk allow-pass vlan 101 100[Quidway-Ethernet0/0/1] port-isolate enable[Quidway-Ethernet0/0/1] quit[Quidway] interface ethernet 0/0/2[Quidway-Ethernet0/0/2] port link-type trunk[Quidway-Ethernet0/0/2] port trunk pvid vlan 100[Quidway-Ethernet0/0/2] port trunk allow-pass vlan 102 100[Quidway-Ethernet0/0/2] port-isolate enable[Quidway-Ethernet0/0/2] quit[Quidway] interface gigabitethernet 0/0/1[Quidway-GigabitEthernet0/0/1] port link-type trunk[Quidway-GigabitEthernet0/0/1] port trunk allow-pass vlan 100 to 102[Quidway-GigabitEthernet0/0/1] quit


  2. Configure the aggregation switch.

    # Enable DHCP relay on the aggregation switch to allow interconnection between VLAN 200 and VLAN 100, configure the aggregation switch to communicate with the AC in VLAN 200, and configure IP address pools of service VLAN 101 and VLAN 102 on the aggregation switch.

    964cc331bf494dc88d68667c776a039b NOTE:
    The S5700 is used as an example. The command varies on different devices.

    Configure a route to the upper-layer network on the aggregation switch according to service requirements.

    <Quidway> system-view[Quidway] vlan batch 100 to 102 200[Quidway] dhcp enable[Quidway] interface Vlanif 100[Quidway-Vlanif100] ip address 192.168.10.1 24[Quidway-Vlanif100] dhcp select relay[Quidway-Vlanif100] dhcp relay server-ip 172.16.10.1[Quidway-Vlanif100] quit[Quidway] interface vlanif 200[Quidway-Vlanif200] ip address 172.16.10.254 24[Quidway-Vlanif200] quit[Quidway] interface Vlanif 101[Quidway-Vlanif101] ip address 192.168.11.1 24[Quidway-Vlanif101] dhcp select interface[Quidway-Vlanif101] quit[Quidway] interface Vlanif 102[Quidway-Vlanif102] ip address 192.168.12.1 24[Quidway-Vlanif102] dhcp select interface[Quidway-Vlanif102] quit[Quidway] interface gigabitethernet 0/0/1[Quidway-GigabitEthernet0/0/1] port link-type trunk[Quidway-GigabitEthernet0/0/1] port trunk allow-pass vlan 101 102 100[Quidway-GigabitEthernet0/0/1] quit[Quidway] interface gigabitethernet 0/0/2[Quidway-GigabitEthernet0/0/2] port link-type trunk[Quidway-GigabitEthernet0/0/2] port trunk allow-pass vlan 101 102 200[Quidway-GigabitEthernet0/0/2] quit


  3. Configure the AC.

    1. Configure the AC so that the AC and APs can transmit management and service packets.


      # Add GE0/0/1 to VLAN 101, VLAN 102, and VLAN 200.

      <AC6605> system-view[AC6605] sysname AC[AC] vlan batch 101 102 200[AC] interface gigabitethernet 0/0/1[AC-GigabitEthernet0/0/1] port link-type trunk[AC-GigabitEthernet0/0/1] port trunk allow-pass vlan 101 102 200[AC-GigabitEthernet0/0/1] quit


    2. Configure the AC's wireless-side interface and enable the DHCP server function on the AC. The AC functions as the DHCP server for APs.


      [AC] dhcp enable[AC] interface Vlanif 200[AC-Vlanif200] ip address 172.16.10.1 24[AC-Vlanif200] dhcp select global[AC-Vlanif200] quit


    3. Configure global parameters on the AC.

      # Configure the AC ID, country code, carrier ID, and source interface.

      [AC] wlan ac-global country-code cn
  Warning: Modify the country code may delete configuration on those AP which us
e the global country code and reset them, are you sure to continue?[Y/N]:y [AC] wlan ac-global ac id 1 carrier id other[AC] wlan[AC-wlan-view] wlan ac source interface vlanif 200

      # Configure the AP address pool.

      [AC] ip pool huawei-ap[AC-ip-pool-huawei-ap] gateway-list 192.168.10.1[AC-ip-pool-huawei-ap] network 192.168.10.0 mask 24[AC-ip-pool-huawei-ap] option 43 sub-option 3 ascii 172.16.10.1[AC-ip-pool-huawei-ap] quit[AC] ip route-static 192.168.10.0 24 172.16.10.254


    4. Configure APs and enable them to go online.

      # Set AP authentication mode to MAC address authentication.

      [AC-wlan-view] ap-auth-mode mac-auth

      # Query the AP device type.

      [AC-wlan-view] display ap-type all  All AP types information:                                                     
  ------------------------------------------------------------------------------
  ID     Type                                                                   
  ------------------------------------------------------------------------------
  17     AP6010SN-GN                                                            
  19     AP6010DN-AGN                                                           
  21     AP6310SN-GN                                                            
  23     AP6510DN-AGN                                                           
  25     AP6610DN-AGN                                                           
  27     AP7110SN-GN                                                            
  28     AP7110DN-AGN                                                           
  29     AP5010SN-GN                                                            
  30     AP5010DN-AGN                                                           
  31     AP3010DN-AGN                                                           
  33     AP6510DN-AGN-US                                                        
  34     AP6610DN-AGN-US                                                        
  35     AP5030DN                                                               
  36     AP5130DN                                                               
  37     AP7030DE                                                               
  38     AP2010DN                                                               
  39     AP8130DN                                                               
  40     AP8030DN                                                               
  42     AP9330DN                                                                
  ------------------------------------------------------------------------------
  Total number: 19

      # Add AP1 and AP2 of the AP6010DN-AGN type offline according to the obtained device type ID (19).

      [AC-wlan-view] ap id 1 type-id 19 mac 60de-4476-e360[AC-wlan-ap-1] quit[AC-wlan-view] ap id 2 type-id 19 mac dcd2-fc04-b500[AC-wlan-ap-2] quit

      # Add APs to AP regions.

      [AC-wlan-view] ap-region id 101[AC-wlan-ap-region-101] quit[AC-wlan-view] ap-region id 102[AC-wlan-ap-region-102] quit[AC-wlan-view] ap id 1[AC-wlan-ap-1] region-id 101[AC-wlan-ap-1] quit[AC-wlan-view] ap id 2[AC-wlan-ap-2] region-id 102[AC-wlan-ap-2] quit

      # Check whether APs have gone online.

      [AC-wlan-view] display ap all  All AP information:                            
  Normal[2],Fault[0],Commit-failed[0],Commiting[0],Config[0]                    
  Config-failed[0],Download[0],Standby[0],Type-not-match[0]
 ------------------------------------------------------------------------------
  AP    AP                    AP              Profile   AP              AP
                                              /Region
  ID    Type                  MAC             ID        State           Sysname
  ------------------------------------------------------------------------------
  1     AP6010DN-AGN          60de-4476-e360    0/101   normal          ap-1
  2     AP6010DN-AGN          dcd2-fc04-b500    0/102   normal          ap-2
  ------------------------------------------------------------------------------
  Total number: 2,printed: 2[AC-wlan-view] quit


    5. Configure WLAN-ESS interfaces.


      [AC] interface wlan-ess 0[AC-Wlan-Ess0] port hybrid pvid vlan 101[AC-Wlan-Ess0] port hybrid untagged vlan 101[AC-Wlan-Ess0] quit[AC] interface wlan-ess 1[AC-Wlan-Ess1] port hybrid pvid vlan 102[AC-Wlan-Ess1] port hybrid untagged vlan 102[AC-Wlan-Ess1] quit


    6. Configure WLAN service parameters.


      # Configure WMM profiles and radio profiles, retain the default settings of the profiles, and bind the WMM profiles to the radio profiles.

      [AC] wlan[AC-wlan-view] wmm-profile name huawei-ap1[AC-wlan-wmm-prof-huawei-ap1] quit[AC-wlan-view] wmm-profile name huawei-ap2[AC-wlan-wmm-prof-huawei-ap2] quit[AC-wlan-view] radio-profile name huawei-ap1 [AC-wlan-radio-prof-huawei-ap1] wmm-profile name huawei-ap1 [AC-wlan-radio-prof-huawei-ap1] quit [AC-wlan-view] radio-profile name huawei-ap2 [AC-wlan-radio-prof-huawei-ap2] wmm-profile name huawei-ap2[AC-wlan-radio-prof-huawei-ap2] quit

      # Create a security profile and retain the default settings: open system authentication and no encryption.

      [AC-wlan-view] security-profile name huawei-ap[AC-wlan-sec-prof-huawei-ap] quit

      # Configure a traffic profile and retain the default settings.

      [AC-wlan-view] traffic-profile name huawei-ap[AC-wlan-traffic-prof-huawei-ap] quit

      # Configure service sets for AP1 and AP2, and set the data forwarding mode to direct forwarding. The direct forwarding mode is used by default.

      [AC-wlan-view] service-set name huawei-1[AC-wlan-service-set-huawei-1] ssid huawei-1[AC-wlan-service-set-huawei-1] wlan-ess 0[AC-wlan-service-set-huawei-1] service-vlan 101[AC-wlan-service-set-huawei-1] security-profile name huawei-ap[AC-wlan-service-set-huawei-1] traffic-profile name huawei-ap[AC-wlan-service-set-huawei-1] forward-mode direct-forward[AC-wlan-service-set-huawei-1] quit[AC-wlan-view] service-set name huawei-2[AC-wlan-service-set-huawei-2] ssid huawei-2[AC-wlan-service-set-huawei-2] wlan-ess 1[AC-wlan-service-set-huawei-2] service-vlan 102[AC-wlan-service-set-huawei-2] security-profile name huawei-ap[AC-wlan-service-set-huawei-2] traffic-profile name huawei-ap[AC-wlan-service-set-huawei-2] forward-mode direct-forward[AC-wlan-service-set-huawei-2] quit


    7. Configure VAPs and deliver configurations to the APs.


      [AC-wlan-view] ap 1 radio 0[AC-wlan-radio-1/0] radio-profile name huawei-ap1  [AC-wlan-radio-1/0] service-set name huawei-1[AC-wlan-radio-1/0] quit[AC-wlan-view] commit ap 1
  Warning: Committing configuration may cause service interruption,continue?[Y/N
] y[AC-wlan-view] ap 2 radio 0[AC-wlan-radio-2/0] radio-profile name huawei-ap2[AC-wlan-radio-2/0] service-set name huawei-2[AC-wlan-radio-2/0] quit[AC-wlan-view] commit ap 2
  Warning: Committing configuration may cause service interruption,continue?[Y/N
] y


  4. Enable radio calibration to allow APs to automatically select optimal channels.


    # Configure radio calibration. By default, the radio mode and power mode are both auto in the radio profile, and the radio calibration mode is manual. The configuration procedure is therefore not provided here. If the radio calibration mode is manual, run the calibrate manual startup command to manually trigger radio calibration.

    <AC6605> system-view[AC6605] wlan[AC6605-wlan-view] calibrate manual startup

    # Run the display actual channel-power all command to check the channel and power of a radio. Assume that there are three online APs on the AC. The command output shows that AP channels have been automatically assigned through the radio calibration function.

    [AC6605-wlan-view] display actual channel-power all
  --------------------------------------------------------                      
   RADIO  CHANNEL POWER-LEVEL POWER(dbm) CHANNEL-BANDWIDTH                      
  --------------------------------------------------------                      
   1/0    1       10          17         20MHz
   2/0    11      9           18         20MHz
   3/0    6       8           18         20MHz
  --------------------------------------------------------

    # APs finish radio calibration one hour after the radio calibration is manually triggered. After that, change the radio calibration mode to scheduled calibration and configure the APs to start radio calibration at 3:00 am.

    [AC6605-wlan-view] calibrate enable schedule time 03:00:00

    # Commit the configuration.

    [AC6605-wlan-view] commit ap 1   
  Warning: Committing configuration may cause service interruption,continue?[Y/N
 ]y [AC6605-wlan-view] commit ap 2  
  Warning: Committing configuration may cause service interruption,continue?[Y/N
 ]y [AC6605-wlan-view] commit ap 3 
  Warning: Committing configuration may cause service interruption,continue?[Y/N
 ]y
    # Configure a calibration channel set to specify the channels on which the AP implements radio calibration. This example configures a calibration channel set for the 2.4 GHz radio, which consists of channels 1, 5, 9, and 13.
    [AC6605-wlan-view] calibrate 2.4g 20mhz channel-set 1,5,9,13
    To configure a calibration channel set for the 5 GHz radio, run the calibrate 5g 20mhz channel-set channel-value command.


  5. Test the WLAN service configuration.


  • The WLANs with the SSID huawei-1 or huawei-2 are available for wireless PCs after the configuration is complete.

  • The wireless PCs obtain IP addresses when they successfully associate with the WLANs.

From group: WLAN

If you have any problems, please post them in our Community. We are happy to solve them for you!

Like (0) Dislike (0) Favorite(0) Share Report
Previous: WLAN V200R003&V200R005 Typical Configuration Examples-Example for Configuring WLAN Services in Layer 3 Bypass Networking (Tunnel Forwarding)
Next: WLAN V200R003&V200R005 Typical Configuration Examples-Example for Configuring WLAN Services in a Layer 3 Inline Networking (Tunnel Forwarding)
(0) (0)
2#
WoodWood
Created Aug 31, 2017 03:54:53

WLAN V200R003&V200R005 Typical Configuration Examples-Example for Configuring WLAN Services in Layer 3 Bypass Networking (Direct Forwarding)-2437571-1
View more
  • x
  • convention:
Back to list

Comment

Advanced
B Color Image Link Quote Code Smilies
You need to log in to comment to the post Login | Register
Comment

Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " User Agreement."

My Followers

Login and enjoy all the member benefits

Login
Huawei Website Support About Huawei Privacy User Agreement Terms of Use Cookies Cookie Settings
Huawei Enterprise Huawei Carrier Forum Training & Certification

Contact Us: e_online@huawei.com Copyright © 2022 Huawei Technologies Co., Ltd. All rights reserved.

APP

Block
Are you sure to block this user?
Users on your blacklist cannot comment on your post,cannot mention you, cannot send you private messages.
Reminder
Please bind your phone number to obtain invitation bonus.