1. Consoleにアクセスする。初期セットアップ
a. Console port経由でアクセス
b. もしくはケーブルで接続して、自動でDHCPが払い出される。Controllerに172.16.0.254にアクセスする。
2. 時間セット
=================================================================================
1. Consoleにアクセスする。初期セットアップ
=================================================================================
***************** Welcome to the Aruba3600 setup dialog *****************
This dialog will help you to set the basic configuration for the switch.
These settings, except for the Country Code, can later be changed from the
Command Line Interface or Graphical User Interface.
Commands: <Enter> Submit input or use [default value], <ctrl-I> Help
<ctrl-B> Back, <ctrl-F> Forward, <ctrl-A> Line begin, <ctrl-E> Line end
<ctrl-D> Delete, <BackSpace> Delete back, <ctrl-K> Delete to end of line
<ctrl-P> Previous question <ctrl-X> Restart beginning
Enter System name [Aruba3600]:
Enter Switch Role (master|local|standalone|remote-node) [master]:
Enter VLAN 1 interface IP address [172.16.0.254]:
Enter VLAN 1 interface subnet mask [255.255.255.0]:
Enter IP Default gateway [none]: 10.215.200.1
Enter IP Default gateway [none]:
Enter Country code (ISO-3166), <ctrl-I> for supported list: JP3
You have chosen Country code JP3 for Japan (yes|no)?: yes
Enter Time Zone [PST-8:0]: JST+9
Enter Time Zone [PST-8:0]: JST+9:0
Enter Time in UTC [03:57:59]: 12:58:00
Enter Date (MM/DD/YYYY) [6/17/2013]:
Enter Password for admin login (up to 32 chars): ********
Re-type Password for admin login: ********
Enter Password for enable mode (up to 15 chars): ******
Re-type Password for enable mode: ******
Do you wish to shutdown all the ports (yes|no)? [no]:
Current choices are:
System name: Aruba3600
Switch Role: master
VLAN 1 interface IP address: 172.16.0.254
VLAN 1 interface subnet mask: 255.255.255.0
Country code: JP3
Time Zone: JST+9:0
Ports shutdown: no
If you accept the changes the switch will restart!
Type <ctrl-P> to go back and change answer for any question
Do you wish to accept the changes (yes|no)yes
Creating configuration... Done.
System will now restart!
Shutdown processing started
Syncing data...done.
Sending SIGKILL to all processes.
Please stand by while rebooting the system.
0:<7>ide-disk 0.0: shutdown
0:<0>Restarting system.
=================================================================================
step0. 時間セット
=================================================================================
clock timezone JST 9
!
-----------------------------------------------------------
step0. AP設定 コンソールポート
-----------------------------------------------------------
setenv ipaddr 172.16.0.104
setenv netmask 255.255.255.0
setenv gatewayip 172.16.0.254
set serverip 172.16.0.30
set master 172.16.0.30
-----------------------------------------------------------
step0. ControllerのCLIでのAP設定
-----------------------------------------------------------
provision-ap copy-provisioning-params ap-name "RAP-1"
provision-ap installation default
provision-ap ipaddr 172.16.0.104
provision-ap netmask 255.255.255.0
provision-ap gateway 172.16.0.254
provision-ap no external-antenna
provision-ap no usb-dev
provision-ap no usb-dial
provision-ap no usb-init
provision-ap no usb-modeswitch
provision-ap no usb-passwd
provision-ap no usb-tty
provision-ap no usb-type
provision-ap no usb-user
provision-ap no usb-csr
provision-ap master 172.16.0.30
provision-ap server-ip 172.16.0.30
provision-ap ap-group "docomotest"
provision-ap ap-name "RAP-1"
provision-ap no syslocation
provision-ap remote-ap
provision-ap reprovision ap-name "RAP-1"
--------------------------------------------------------------------
Step1: Interface-Setting
--------------------------------------------------------------------
interfaceinterface gigabitethernet 1/3
switchport mode trunk
!
vlan 1e
interface vlan 1
ip address 172.16.0.104 255.255.255.0
!
no ip default-gateway
!
ip default-gateway 172.16.0.254
!
interface vlan 1
no ip address
!Switch IP Address is Modified. Switch should be rebooted now
write memory
relaod
--------------------------------------------------------------------
Step2. Basic Configuration
--------------------------------------------------------------------
control-plane-security
no cpsec-enable
!
ap-group "default"
dot11a-radio-profile rp-monitor-a
dot11g-radio-profile rp-monitor-g
!
web-server profile
session-timeout 3600
telnet cli
loginsession timeout 0
!
--------------------------------------------------------------------
Step3. PSK-Configuration
--------------------------------------------------------------------
aaa profile "docomotest"
initial-role authenticated
authentication-dot1x "default-psk"
!
wlan ssid-profile "docomotest"
essid "docomotest"
wpa-passphrase "1234567890"
opmode wpa2-psk-aes
!
wlan virtual-ap "docomotest"
vlan 1
aaa-profile "docomotest"
ssid-profile "docomotest"
!
ap-group docomotest
virtual-ap "docomotest"
----------------------------------
Step4. AP Setup (Campus AP mode)
----------------------------------
!(console)
set master 10.215.200.197
set serverip 10.215.200.197
save
!(MC's CLI)
provision-ap copy-provisioning-params ap-name "6c:f3:7f:c6:ca:d8"
provision-ap master 172.16.0.30
provision-ap server-ip 172.16.0.30
provision-ap ap-group "docomotest"
provision-ap ap-name "RAP-1"
provision-ap reprovision ap-name "6c:f3:7f:c6:ca:d8"
--------------------------------------------------------------------
Step5. AP Setup (Remote AP mode)
--------------------------------------------------------------------
whitelist-db rap add mac-address 6c:f3:7f:c6:ca:d8 ap-group docomotest ap-name "RAP-1" remote-ip 1.1.1.1
ip local pool VPN 192.168.1.1 192.168.1.100
provision-ap copy-provisioning-params ap-name "6c:f3:7f:c6:ca:d8"
provision-ap master 172.16.0.30
provision-ap server-ip 172.16.0.30
provision-ap ap-group "docomotest"
provision-ap ap-name "RAP-1"
provision-ap remote-ap
provision-ap reprovision ap-name "6c:f3:7f:c6:ca:d8"
----------------------------------
Step6. AP Setup verification
----------------------------------
show ap bss-table
show ap database
show user
!
----------------------------------
Step7. Additional Tuning (GRE mtu setting)
----------------------------------
ap system-profile "RAP"
! mtu 1400 (RAPの場合はrap-gre-mtu 1400のみでOK)
telnet
rap-gre-mtu 1400
!
ap-group docomotest
ap-system-profile "RAP"
!
----------------------------------
Step8. Additional Tuning (Fair-access or Preferred-access)
----------------------------------
wlan traffic-management-profile "preferred-access"
shaping-policy preferred-access
!
wlan traffic-management-profile "fair-access"
shaping-policy fair-access
!
ap-group docomotest
dot11a-traffic-mgmt-profile "fair-access"
dot11g-traffic-mgmt-profile "fair-access"
!
ap-group docomotest
dot11a-traffic-mgmt-profile "preferred-access"
!
--------------------------------------------------------------------
Step9. RF Setting
--------------------------------------------------------------------
rf arm-profile "arm-disable"
assignment disable
no scanning
!
rf dot11a-radio-profile "disable"
no radio-enable
!
rf dot11a-radio-profile "36Ech"
channel 36E
tx-power 127
arm-profile "arm-disable"
!
rf dot11a-radio-profile "52Ech"
channel 52E
tx-power 127
arm-profile "arm-disable"
!
rf dot11a-radio-profile "100Ech"
channel 52E
tx-power 127
arm-profile "arm-disable"
!
rf dot11a-radio-profile "116Ech"
channel 52E
tx-power 127
arm-profile "arm-disable"
!
rf dot11g-radio-profile "disable"
no radio-enable
!
ap-group docomotest
dot11a-radio-profile "36Ech"
dot11g-radio-profile "disable"
!
ap-name "AP-xx"
! virtual-ap "xxx"
! dot11a-radio-profile "36Ech"
! dot11g-radio-profile "11ch"
! dot11a-radio-profile "disable"
!
-----------------------------------------------------------
Step10. Beamformingのオン・オフ
-----------------------------------------------------------
wlan ht-ssid-profile "default"
!
wlan ht-ssid-profile "BF-off"
no vht-txbf-explicit-enable
!以下はオフ
wlan ssid-profile "docomotest"
ht-ssid-profile "BF-off"
!以下はオン
wlan ssid-profile "docomotest"
ht-ssid-profile "default"
-----------------------------------------------------------
Step11. その他、40MHz、80MHz、802.11acをオフ
-----------------------------------------------------------
wlan ht-ssid-profile "profile-name"
no 40MHz-enable
no very-high-throughput-enable
no 80MHz-enable
no vht-txbf-explicit-enable
-----------------------------------------------------------
80MHz オフの注意点
-----------------------------------------------------------
*以下のARM profileでオフにすべき。
*ht-ssid-profile はあくまで SSID(VAP) ごとの設定を変えるもの。ある SSID だけ no 80MHz にしても、AP としては 80MHz すべてでレーダー検出。
*その他、RF Domain profileから80MHzを全部削除すると、全部利用できるようになってしまう。
*show ap bss-table では各 BSSID が 40MHz channel として表示されるが、show ap active でみると、 80MHz channel として表示される(Eがつく)。
rf arm-profile "arm-disable"
no 80MHz-support <<<<<<<<<<<<<<<<<<<<<<<<<
0 件のコメント:
コメントを投稿