由浅入深玩转华为WLAN—19 漫游系列(7)不同AC之间二层漫游【二层上线+直连式+直接转发模式】

2020-03-31 17:55:54 1027

转载自微信公众号:网络之路博客 



说明

之前介绍过在AC间漫游的新概念以及一些处理过程,对比AC内漫游相对从配置角度来说不是非常大,只是转发的过程有点小变化,这个可以参考之前介绍的转发过程即可。


二层漫游的数据包转发过程(该图中直接转发与隧道转发方式没差别)

图片关键词

漫游前数据包的走向
1、STA发送数据给HAP
2、HAP收到数据报文后,发送给HAC(如果是旁挂模式的处理方式,则不太一样,在隧道模式下会转发给HAC,而直接转发方式下,直接由网关交换机直接处理业务报文交给上层设备)
3、HAC收到以后,直接把业务报文送给上层网络


漫游后数据包的走向
1、STA发送数据给FAP
2、FAP收到数据报文后,发送给HAC(如果是旁挂模式处理方式如上)
3、FAC收到以后,直接把业务报文送给上层网络。(这里其实还是通过隧道发送给HAC,由HAC转发个上层网络,具体的分析可以看后面的配置部分)

说明:这里还是以官方给的拓扑做介绍,ENSP目前无法支持AC间漫游,所以这里无法演示。

配置的讲解,AP上线以及WLAN业务与R3并无区别,所以这里不做过多介绍,具体可以参考之前的AC内漫游,都有详细讲解。

Switch_1配置

[Huawei-SW1] vlan batch 100 101
[Huawei-SW1] interface gigabitethernet 0/0/1
[Huawei-SW1-GigabitEthernet0/0/1] port link-type trunk
[Huawei-SW1-GigabitEthernet0/0/1] port trunk pvid vlan 100
[Huawei-SW1-GigabitEthernet0/0/1] port trunk allow-pass vlan 100 101
[Huawei-SW1-GigabitEthernet0/0/1] quit
[Huawei-SW1] interface gigabitethernet 0/0/2
[Huawei-SW1-GigabitEthernet0/0/2] port link-type trunk
[Huawei-SW1-GigabitEthernet0/0/2] port trunk allow-pass vlan 100 101
[Huawei-SW1-GigabitEthernet0/0/2] quit


Switch_2配置

[Huawei-SW2] vlan batch 100 101
[Huawei-SW2] interface gigabitethernet 0/0/1
[Huawei-SW2-GigabitEthernet0/0/1] port link-type trunk
[Huawei-SW2-GigabitEthernet0/0/1] port trunk pvid vlan 100
[Huawei-SW2-GigabitEthernet0/0/1] port trunk allow-pass vlan 100 101
[Huawei-SW2-GigabitEthernet0/0/1] quit
[Huawei-SW2] interface gigabitethernet 0/0/2
[Huawei-SW2-GigabitEthernet0/0/2] port link-type trunk
[Huawei-SW2-GigabitEthernet0/0/2] port trunk allow-pass vlan 100 101
[Huawei-SW2-GigabitEthernet0/0/2] quit


AC-1的配置(只包含AP上线以及WLAN业务配置)

[Huawei-AC_1] dhcp enable
[Huawei-AC_1] vlan batch 100 101
[Huawei-AC_1] interface gigabitethernet 0/0/1
[Huawei-AC_1-GigabitEthernet0/0/1] port link-type trunk
[Huawei-AC_1-GigabitEthernet0/0/1] port trunk allow-pass vlan 100 101
[Huawei-AC_1-GigabitEthernet0/0/1] quit


[Huawei-AC_1] interface gigabitethernet 0/0/2
[Huawei-AC_1-GigabitEthernet0/0/2] port link-type trunk
[Huawei-AC_1-GigabitEthernet0/0/2] port trunk allow-pass vlan 100 101
[Huawei-AC_1-GigabitEthernet0/0/2] quit

[Huawei-AC_1] interface vlanif 100
[Huawei-AC_1-vlanif100] ip address 192.168.100.1 255.255.255.0
[Huawei-AC_1-vlanif100] dhcp select interface
[Huawei-AC_1-vlanif100] dhcp server excluded-ip-address 192.168.100.2
[Huawei-AC_1-vlanif100] quit

[Huawei-AC_1] interface vlanif 101
[Huawei-AC_1-vlanif101] ip address 192.168.101.1 255.255.255.0
[Huawei-AC_1-vlanif101] dhcp select interface
[Huawei-AC_1-vlanif101] quit

[Huawei-AC_1] interface wlan-ess 1
[Huawei-AC_1-Wlan-Ess1] port hybrid pvid vlan 101
[Huawei-AC_1-Wlan-Ess1] port hybrid untagged vlan 101

[Huawei-AC_1] wlan
[Huawei-AC_1-wlan-view] wlan ac source interface vlanif 100
[Huawei-AC_1-wlan-view] ap id 1 type-id 19 mac 60de-4476-e360
[Huawei-AC_1-wlan-view] wmm-profile name wmm id 1
[Huawei-AC_1-wlan-wmm-prof-wmm] quit
[Huawei-AC_1-wlan-view] radio-profile name radio id 1
[Huawei-AC_1-wlan-radio-prof-radio] wmm-profile name wmm
[Huawei-AC_1-wlan-radio-prof-radio] quit
[Huawei-AC_1-wlan-view] security-profile name security id 1
[Huawei-AC_1-wlan-sec-prof-security] quit
[Huawei-AC_1-wlan-view] traffic-profile name traffic id 1
[Huawei-AC_1-wlan-traffic-prof-traffic] quit
[Huawei-AC_1-wlan-view] service-set name huawei1 id 1
[Huawei-AC_1-wlan-service-set-huawei1] ssid huawei1
[Huawei-AC_1-wlan-service-set-huawei1] wlan-ess 1
[Huawei-AC_1-wlan-service-set-huawei1] security-profile name security
[Huawei-AC_1-wlan-service-set-huawei1] traffic-profile name traffic
[Huawei-AC_1-wlan-service-set-huawei1] service-vlan 101
[Huawei-AC_1-wlan-service-set-huawei1] vlan-mobility-group 101 (可选)
[Huawei-AC_1-wlan-service-set-huawei1] quit

AC-2的配置(只包含AP上线以及WLAN业务配置)

[Huawei-AC_2] vlan batch 100 101
[Huawei-AC_2] interface gigabitethernet 0/0/1
[Huawei-AC_2-GigabitEthernet0/0/1] port link-type trunk
[Huawei-AC_2-GigabitEthernet0/0/1] port trunk allow-pass vlan 100 101
[Huawei-AC_2-GigabitEthernet0/0/1] quit


[Huawei-AC_2] interface gigabitethernet 0/0/2
[Huawei-AC_2-GigabitEthernet0/0/2] port link-type trunk
[Huawei-AC_2-GigabitEthernet0/0/2] port trunk allow-pass vlan 100 101
[Huawei-AC_2-GigabitEthernet0/0/2] quit

[Huawei-AC_2] interface vlanif 100
[Huawei-AC_2-vlanif100] ip address 192.168.100.2 255.255.255.0

[Huawei-AC_2] interface wlan-ess 1
[Huawei-AC_2-Wlan-Ess1] port hybrid pvid vlan 101
[Huawei-AC_2-Wlan-Ess1] port hybrid untagged vlan 101

[Huawei-AC_2] wlan
[Huawei-AC_2-wlan-view] wlan ac source interface vlanif 100
[Huawei-AC_2-wlan-view] ap id 1 type-id 19 mac 60de-4476-e360
[Huawei-AC_2-wlan-view] wmm-profile name wmm id 1
[Huawei-AC_2-wlan-wmm-prof-wmm] quit
[Huawei-AC_2-wlan-view] radio-profile name radio id 1
[Huawei-AC_2-wlan-radio-prof-radio] wmm-profile name wmm
[Huawei-AC_2-wlan-radio-prof-radio] quit
[Huawei-AC_2-wlan-view] security-profile name security id 1
[Huawei-AC_2-wlan-sec-prof-security] quit
[Huawei-AC_2-wlan-view] traffic-profile name traffic id 1
[Huawei-AC_2-wlan-traffic-prof-traffic] quit
[Huawei-AC_2-wlan-view] service-set name huawei1 id 1
[Huawei-AC_2-wlan-service-set-huawei1] ssid huawei1
[Huawei-AC_2-wlan-service-set-huawei1] wlan-ess 1
[Huawei-AC_2-wlan-service-set-huawei1] security-profile name security
[Huawei-AC_2-wlan-service-set-huawei1] traffic-profile name traffic
[Huawei-AC_2-wlan-service-set-huawei1] service-vlan 101
[Huawei-AC_2-wlan-service-set-huawei1] vlan-mobility-group 101 (可选)
[Huawei-AC_2-wlan-service-set-huawei1] quit

漫游功能相关配置

[AC_1] master-controller enable
[AC_1] master controller
[AC_1-master-controller] ac id 1 ip 192.168.100.1
[AC_1-master-controller] ac id 2 ip 192.168.100.2
[AC_1-master-controller] mobility-group name mobility
[AC_1-mc-mg-mobility] member ac id 1
[AC_1-mc-mg-mobility] member ac id 2
说明:AC_1的配置,它作为master controller,然后在controller里面定义了漫游组,属于同一个漫游组的AC之间是可以漫游的。


[AC_2-wlan-view] master-controller ip 192.168.100.1
而AC_2的配置比较简单,只需要指定controller在哪即可,漫游组信息由master告诉其他AC成员。

下发业务给AP

[Huawei-AC_1] wlan
[Huawei-AC_1-wlan-view] ap 1 radio 0
[Huawei-AC_1-wlan-radio-1/0] radio-profile name radio
[Huawei-AC_1-wlan-radio-1/0] service-set name huawei1
[Huawei-AC_1-wlan-radio-1/0] quit
[Huawei-AC_1-wlan-view] commit ap 1
Warning: Committing configuration may cause service interruption,continue?[Y/N]y


[Huawei-AC_2] wlan
[Huawei-AC_2-wlan-view] ap 1 radio 0
[Huawei-AC_2-wlan-radio-1/0] radio-profile name radio
[Huawei-AC_2-wlan-radio-1/0] service-set name huawei1
[Huawei-AC_2-wlan-radio-1/0] quit
[Huawei-AC_2-wlan-view] commit ap 1
Warning: Committing configuration may cause service interruption,continue?[Y/N]y

测试

这里把一个客户端连接到AP_1上后,可以通过命令查看

[Huawei-AC_1-wlan-view] display station assoc-info all
——————————————————————————
STA MAC AP ID RADIO ID SS ID SSID
——————————————————————————
0025-86aa-0d1c 1 0 1 huawei1
——————————————————————————
Total stations: 1
目前该客户端关联上来了,当把客户端从AP_1移动到AP_2的范围内

[Huawei-AC_2-wlan-view] display station assoc-info all
——————————————————————————
STA MAC AP ID RADIO ID SS ID SSID
——————————————————————————
0025-86aa-0d1c 1 0 1 huawei1
——————————————————————————
Total stations: 1

这时候AP_2上面已经有关于客户端的信息了。

[Huawei-AC_2-wlan-view] display station roam-track sta 0025-86aa-0d1c
Access SSID:huawei1 Rx/Tx:Rx-Rate/Tx-Rate Mbps
——————————————————————————
L2/L3 AC IP
AP/Radio BSSID TIME In Rx/Tx RSSI Out Rx/Tx RSSI
——————————————————————————
— 192.168.100.1
1/0 60de-4476-e360 2014/01/03 11:46:12 61/61 -51 46/13 -48
L2 192.168.100.2
1/0 dcd2-fc04-b500 2014/01/03 11:48:17 61/61 -58 -/- –
——————————————————————————
Number of roam track: 1

在AC上面通过漫游命令查看该MAC地址,可以看到从100.1的AC漫游到了100.2的AC上面,L2表示二层漫游。

说明:

ENSP目前无法支持AC间漫游,所以这里无法演示。

配置的讲解,AP上线以及WLAN业务与R3并无区别,所以这里不做过多介绍,具体可以参考之前的AC内漫游,都有详细讲解。


网络之路博客公众号提供Cisco、华为、H3C、防火墙、VPN、无线等网络知识点分享与应用,想了解更多企业技术应用与组网案例,关注我们(公众号菜单栏陆续在更新排列,不管你是青铜入坑的小白没有学习方向感到迷茫,还是想提升段位充实自己来升职加薪,都有您需要的哦)

电话咨询
邮件咨询
在线地图