1. Preface
usually divides AP into fat AP (Fat AP) and thin AP (Fit AP), among which fat AP includes local management and cloud management models.
AC deployment methods are divided into side-mount and direct connection modes, and gateway deployment is divided into AC gateway and other gateways.
2. AC deployment method
1. The simplest deployment method, that is, AP is directly connected to the AC port, the AC itself configures the gateway and VLAN, and the client uses AC as the gateway to access the Internet. This method is AC gateway + direct connection to layer 2 + thin AP mode + centralized forwarding or local forwarding.
. The gateway is not on the AC, the AP and AC are in the same VLAN, and the client accesses the Internet through AC centralized forwarding. This method is other gateways + direct connection to layer 2 + thin AP mode + centralized forwarding or local forwarding.
. The gateway is not on the AC, and the AP and AC are not in the same VLAN. AP looks for AC through layer three Option43. The client accesses the Internet through AC centralized forwarding. This method is other gateways + layer three connection + thin AP mode + centralized forwarding.
4. The gateway is not on the AC, and the AP and AC are not in the same VLAN. AP looks for AC through Layer 3 Option43. The client surfs the Internet through local forwarding, and the client and AP are in the same vlan. This method is other gateways + layer 3 connection + thin AP mode + local forwarding.
5. The gateway is not on the AC, the AP and the AC are not in the same VLAN, the AP looks for the AC through Layer 3 Option43, the client accesses the Internet through local forwarding, and the client and the AP are not in the same VLAN, this method is other gateways + Layer 3 connection + thin AP mode + local forwarding + management service separation.
2. Fat AP
1. The interface to connect to AP with local management
with VLAN is access. The DHCP server should exist in this VLAN. Log in to AP to configure SSID. The AP and the client are in the same VLAN.
, trunk mode local management
connects to AP as trunk, configure PVID as the management VLAN, there should be a DHCP server in the management VLAN, and other VLANs are allowed to be service VLANs. Log in to AP to configure SSID, and AP and client are not in the same VLAN.
, Cloud Management Mode
Huasan Cloud Shop Network https://oasis.h3c.com/
is the same as the above two modes. When the AP obtains IP and can connect to the external network, you can use SN to register the cloud Shop Network, configure the SSID in a unified manner, and automatically issue the configuration.
. Thin AP
1. AC management of the same VLAN. Local forwarding
connects to the AP interface as access. There should be a DHCP server in this VLAN. The AP looks for AC through broadcast. After the AP, AC, and client are in the same VLAN.
. The same VLAN AC management. Centrally forwarded
is connected to the AP interface as access. There should be a DHCP server in this VLAN. The AP looks for AC through broadcast and forwards centrally through AC. After going online, the AP and AC are in the same VLAN, and the client is in the VLAN specified by the AC. The maximum bandwidth of centrally forwarded is determined by the AC.
, Layer 3 connection AC management Local forwarding
connection to AP is access. A DHCP server should exist in this VLAN. The DHCP server should be configured with the Option 43 option to specify the IP address of the AC. The AP connects to the AC through routing. After it is launched, the AP and the client are in the same VLAN.
Example:
Assuming the current AC IP is 192.168.2.2/24, the wireless aggregation management and business segments are both 192.168.3.0/24, and each segment should be configured with DHCP service. The
wireless aggregation switch connects to the AP port as access, and specifies that the VLAN is a hybrid segment for management services.
layer three online configuration, and DHCP is configured in the VLAN where the AP management section is located, such as:
dhcp server ip-pool vlan5 gateway-list 192.168.1.1 network 192.168.1.0 mask 255.255.255.0 dns-list 114.114.114.114 option 43 hex 8007000001030303 online conversion tool https://tool.520101.com/wangluo/jinzhizhuanhuan/
Description
option43 format brief description: 80 07 00 00 01 02 02 02 0280: Fixed value, no need to change; 07: Length field, byte length of data followed by it; 00 00: Fixed value, no need to change; 01: Indicates the number of IP addresses afterwards, here is an IP address; 02 02 02 02: IP address AC configuration
default forwarding VLAN is 1, local forwarding is all
AP configuration
wireless service does not set VLAN
4, layer three connection AC management The interface for centralized forwarding
to connect to AP is access. There should be a DHCP server in this VLAN, and the DHCP server should configure the Option 43 option to specify the IP address of the AC. The AP connects to the AC through routing. After the AP is online, the AP and AC are in different networks, and the client is in the VLAN specified by the AC.
5, Layer 3 connection AC management management service separation Local forwarding
connection AP interface is trunk, configure PVID as the management VLAN, there should be a DHCP server in the management VLAN, and the DHCP server should configure the Option 43 option to specify the IP address of the AC. The AP connects to the AC through routing, allowing other VLANs to be service VLANs. After going online, the AP and AC are in different networks, and the client can maximize bandwidth utilization through the local forwarding mode in the VLAN specified by the AC.
Example:
H3 official typical tutorial https://www.h3c.com/cn/d_202108/1436703_30005_0.htm (Note that there is a little error in the official tutorial, the official has not modified it yet)
Assume that the current AC IP is 192.168.2.2/24, the wireless aggregation management section is 192.168.3.0/24, and the wireless aggregation business section is 192.168.4.0/24, and each segment should be configured with DHCP service.
layer three online configuration, and DHCP is configured in the VLAN where the AP management section is located, such as:
dhcp server ip-pool vlan5 gateway-list 192.168.1.1 network 192.168.1.0 mask 255.255.255.0 dns-list 114.114.114.114 option 43 hex 8007000001030303 online conversion tool https://tool.520101.com/wangluo/jinzhizhuanhuan/
Description
option43 format brief description: 80 07 00 00 01 02 02 02 0280: Fixed value, no need to change; 07: Length field, byte length of data followed by it; 00 00: Fixed value, no need to change; 01: Indicates the number of IP addresses afterwards, here is an IP address; 02 02 02 02: IP address wireless aggregation switch connects to the AP port and configures the default VLAN. This VLAN is a management VLAN, allowing service VLANs to pass
interface GigabitEthernet1/0/20 port link-mode bridge port link-type trunk port trunk permit vlan all port trunk pvid vlan 3AC configuration simple version
means that the default VLAN is 1, the local forwarding VLAN is all
AP configuration focus, loading the MAP file, that is, changing the AP interface to trunk, at this time, the VLANs allowed to pass are service VLANs, and all VLANs can also be configured to simplify the configuration.
MAP file content:
system-viewvlan 4quitinterface GigabitEthernet 1/0/1port link-type trunkport trunk permit vlan 4
When binding a wireless service, directly specify the service VLAN
At this time, the management VLAN is the VLAN set by the switch pvid, and the service VLAN is the VLAN set when binding a wireless service.
4. Summary
Personal users, from the perspective of cost saving, they can use the fat AP/cloud management model without purchasing AC and authorization; small enterprise users can use the same vlan centralized forwarding model; large enterprises should use the three-layer connection and management business separation method, which is safer and faster.
