WLAN-案例-4-旁挂三层组网(直接转发/隧道转发)
7/旁挂三层组网直接转发
其实做到这里应该很明白一个道理,
就是如何下AP正常上线,
无论你是二层组网,还是二层组网,
无认你是直连组网还是旁挂组网,
最终都需要先完成一件事儿,就是AP上线,
而AP的上线无外乎几个点,
1 和AC 的连接,
2 获得正常的IP地址(管理VLAN的地址)
3 CAPWAP源接口
其它的不说,
只要看一下几台交换机的配置即可
Access
interface Ethernet0/0/2
port link-type trunk
port trunk pvid vlan 10
port trunk allow-pass vlan 10 to 11 20 30
port-isolate enable group 1
#
interface Ethernet0/0/1
port link-type trunk
port trunk allow-pass vlan 10 to 11 20 30
coresw2
interface GigabitEthernet0/0/3
port link-type trunk
port trunk allow-pass vlan 10 to 11 20 30
#
interface GigabitEthernet0/0/2 //连接AC的接口
port link-type trunk
port trunk allow-pass vlan 10 to 11 //直接转发模式,业务数据不用到AC
#
interface GigabitEthernet0/0/1
port link-type trunk
port trunk allow-pass vlan 10 to 11 20 30
Vlanif10 192.168.10.1/24 up up
Vlanif11 192.168.11.2/24 up up
Vlanif20 192.168.20.2/24 up up
Vlanif30 192.168.30.2/24 up up
interface Vlanif10
ip address 192.168.10.1 255.255.255.0
dhcp select relay
dhcp relay server-ip 192.168.11.1
##
interface Vlanif11
ip address 192.168.11.2 255.255.255.0
AC
interface GigabitEthernet0/0/1
port link-type trunk
port trunk allow-pass vlan 10 to 11 20 30
#
interface Vlanif11
ip address 192.168.11.1 255.255.255.0
dhcp select global
#
ip pool ap
gateway-list 192.168.10.1
network 192.168.10.0 mask 255.255.255.0
option 43 sub-option 3 ascii 192.168.11.1 //通过三层的方式 告诉AP,AC是哪一台
#
其它的就不用说了吧
看好是哪种转发模式,是直接转发的,那么业务流量不走AC
如果是隧道模式的话,就会走AC,
这取决于和AC相连的交换机接口,是否需要放行业务VLAN
8/旁挂三层组网隧道转发
遵循隧道模式的原则,所有的数据都 会走AC,所以在关键接口上一定要放行相应的业备流量
interface GigabitEthernet0/0/1
port link-type trunk
port trunk allow-pass vlan 20 30
#
interface GigabitEthernet0/0/3
port link-type trunk
port trunk allow-pass vlan 10 to 11 20 30
#
interface GigabitEthernet0/0/2 //连接AC的接口
port link-type trunk
port trunk allow-pass vlan 10 to 11 20 30
其它就没啥区别了,
-----------------------------------------
CCIE成长之路 --- 梅利
