3台40G插卡的AC,共4000台AP和4000条License,,需采用2+1冷备结合License组功能的方案实现既可以管理所有AP,又可以在不增加License的前提下备份。
组网:AC1和AC2为主,AC3为备。
配置思路:
1、先配置License组,在AC1和AC2上各注册两千条License,AC3通过共享组同步AC1和AC2的License;
[AC1] wlan ap-license-group
[AC1-wlan-ap-license-group] local ip 10.1.1.1
[AC1-wlan-ap-license-group] member ip 10.1.1.3 backup
[AC1-wlan-ap-license-group] member ip 10.1.1.2
[AC1-wlan-ap-license-group] ap-license-synchronization enable
#
[AC2] wlan ap-license-group
[AC2-wlan-ap-license-group] local ip 10.1.1.2
[AC2-wlan-ap-license-group] member ip 10.1.1.3 backup
[AC2-wlan-ap-license-group] member ip 10.1.1.1
[AC2-wlan-ap-license-group] ap-license-synchronization enable
#
[AC3] wlan ap-license-group
[AC3-wlan-ap-license-group] local ip 10.1.1.3 backup
[AC3-wlan-ap-license-group] member ip 10.1.1.1
[AC3-wlan-ap-license-group] member ip 10.1.1.2
[AC3-wlan-ap-license-group] ap-license-synchronization enable
2、分别在三台AC上配置AP模板,主AC配置高优先级和抢占模式,备AC配置backup AC指向主。
[AC1] wlan ap sushe-1 model WA5530
[AC1-wlan-ap- sushe-1]priority 7
[AC1-wlan-ap-
sushe-1]wlan tunnel-preempt enable
#
[AC2] wlan ap jiaoshi-1 model WA5530
[AC2-wlan-ap- jiaoshi-1]priority 7
[AC2-wlan-ap- jiaoshi-1]wlan tunnel-preempt enable
#
[AC3] wlan ap sushe-1 model WA5530
[AC3-wlan-ap- sushe-1]backup-ac ip 10.1.1.1
#
[AC3] wlan ap jiaoshi-1 model WA5530
[AC3-wlan-ap- jiaoshi-1]backup-ac ip 10.1.1.2
3、配置核心交换机上的dhcp server,需给所属不同主AC的AP分配不同的dhcp option 43
[SW]dhcp server ip-pool sushe
[SW-dhcp-pool-sushe]gateway-list 192.168.1.254
[SW-dhcp-pool-sushe]network 192.168.1.0 mask 255.255.255.0
[SW-dhcp-pool-sushe]option 43 hex 800B0000 020A0101 010A0101 03
#
[SW]dhcp server ip-pool jiaoshi
[SW-dhcp-pool-s jiaoshi]gateway-list 192.168.2.254
[SW-dhcp-pool- jiaoshi]network 192.168.2.0 mask 255.255.255.0
[SW-dhcp-pool- jiaoshi]option 43 hex 800B0000 020A0101 020A0101 03
4、验证结果
正常情况下,AP分别在AC1和AC2上为R/M状态,在AC3上都为I,当AC1故障时,AC3上的分属AC1的AP即变成R/M,当AC1恢复后,AC1随机抢占为主,AC3所有AP的在线状态又变成I。主备互相切换完成时间都为30秒左右。
注意事项:
1、License组配置完后,AC1和AC3会建立隧道,AC2和AC3建立隧道,AC1和AC2不会建立隧道,但配置中都必须互相体现出member ip。
2、需要将业务的dhcp server ,网关都上移到其他设备,比如核心上或bas上,这种方案只能实现ap的备份。
该案例暂时没有网友评论
✖
案例意见反馈
亲~登录后才可以操作哦!
确定你的邮箱还未认证,请认证邮箱或绑定手机后进行当前操作