资源描述
XXX地市升级221版本的“N+1”冗余配置手册
此文档主要增加了两处配置:
——1. 在配置Redundancy时,需要主备AC之间互指,主AC和主AC之间也要互指
——2. Wireless下
cluster-master-support enable 可看到全局的radio
no cluster-master-support enable 只能看到本AC的radio
一、配置
目前RFS7000的版本存在着”N+1”冗余切换的问题,现RFS7000-4.0.1.2-221CR.img的版本已经解决了此问题,但是在使用此版本时请注意以下事项:
1. Standby AC上需要使用最小的IP地址去和其他的Primary AC进行Redundancy member的建立。如果Standby AC没有最小的IP地址,那么就需要局方提供一个最小的地址,配置到Standby AC上(类似于Loopback地址)需要路由出去。(需要提前向局方申请)
最小地址——是指在Redundancy Cluster 里的最小。
2. 在配置Redundancy时,需要主备AC之间互指,主AC和主AC之间也要互指
2. 对Redundancy Cluster里的所有AC的Radio进行统一的规划和部署
3. 对Redundancy Cluster里的所有AC的WLAN进行统一的规划和部署
4. 在Standby AC 配置manual mapping
配置参考:
上图中采用两主一备的冗余方式,备机的IP地址是58.215.72.218,在Redundancy Cluster里是最大的,如果用这个地址去建立Redundancy关系就会有问题,我们采用以下步骤解决:
1. 需启用一个最小的IP地址在备机上:(需要提前向局方申请并路由此地址)
AC:58.215.72.218
interface vlan5
ip address 5.5.5.1/30
2. 用这个最小的地址去建立冗余关系
AC:58.215.72.218 (standy)
redundancy interface-ip 5.5.5.1
redundancy mode standby
redundancy auto-revert enable
redundancy auto-revert-period 2
redundancy dhcp-server enable
redun dhcp-force-election
redundancy member-ip 58.215.72.202
redundancy member-ip 58.215.72.206
redundancy enable
AC:58.215.72.202(primary)
redundancy interface-ip 58.215.72.202
redundancy member-ip 58.215.72.206
redundancy dhcp-server enable
redun dhcp-force-election
redundancy member-ip 5.5.5.1
redundancy enable
AC:58.215.72.206(primary)
redundancy interface-ip 58.215.72.206
redundancy member-ip 58.215.72.202
redundancy dhcp-server enable
redun dhcp-force-election
redundancy member-ip 5.5.5.1
redundancy enable
3. 建立成功以后,在主AC上看到的DHCP 的状态是Standby,备AC上看到的是Running
AC:58.215.72.218 (standy)
Standby-218#sh dhcp status
DHCP Server is Running on following interfaces
vlan218
Standby-218#
AC:58.215.72.202(primary)
202(config)#sh dhcp status
DHCP Server is in Standby
202(config)#
AC:58.215.72.206(primary)
206(config)#sh dhcp status
DHCP Server is in Standby
206(config)#
4. 冗余关系建立,查看Radio和 show run,可以查看到整个Cluster里的Radio,这时要求对整个Cluster里的Radio进行统一的规划,否则可能会造成冲突。
Wireless下
cluster-master-support enable 可看到全局的radio
no cluster-master-support enable 只能看到本AC的radio
AC:58.215.72.218 (standy)
Standby-218#sh wireless radio
IDX AP MAC RADIO-BSSID TYPE STATE CHANNEL POWER ADOPTED-BY
1 00-23-68-23-06-80 00-23-68-08-DB-50 11bg normal 1 (rnd) 20(20) 58.215.72.202
2 00-15-70-A3-62-27 00-15-70-AA-A2-10 11bg normal 11 (rnd) 20(20) 58.215.72.202
3 00-15-70-A3-5E-D2 00-15-70-AA-97-F8 11bg normal 1 (rnd) 20(20) 58.215.72.206
4 00-23-68-23-0A-FD 00-23-68-09-16-CC 11bg normal 6 (rnd) 20(20) 58.215.72.206
Standby-218#
Standby-218#sh run | b wireless
wireless
secure-wispe-default-secret 0 defaultS
max-users 8192
manual-wlan-mapping enable
load-balance by-count
wlan 1 enable
wlan 1 ssid moto-202
wlan 2 enable
wlan 2 ssid moto-206
radio add 1 00-23-68-23-06-80 11bg ap300
radio 1 description xxxxx
radio 1 radio-number 1
radio 1 bss 1 1
radio add 2 00-15-70-A3-62-27 11bg ap300
radio 2 radio-number 1
radio 2 bss 1 1
radio add 3 00-15-70-A3-5E-D2 11bg ap300
radio 3 radio-number 1
radio 3 bss 1 2
radio add 4 00-23-68-23-0A-FD 11bg ap300
radio 4 radio-number 1
radio 4 bss 1 2
radio default-11a bss 1 1
radio default-11a bss 2 2
radio default-11b bss 1 1
radio default-11b bss 2 2
radio default-11bg bss 1 1
radio default-11bg bss 2 2
radio default-11an bss 1 1
radio default-11an bss 2 2
radio default-11bgn bss 1 1
radio default-11bgn bss 2 2
no ap-ip default-ap switch-ip
smart-rf
radio 1 radio-mac 00-23-68-08-DB-50
radio 2 radio-mac 00-15-70-AA-A2-10
radio 3 radio-mac 00-15-70-AA-97-F8
radio 4 radio-mac 00-23-68-09-16-CC
!
AC:58.215.72.202(primary)
202(config)#sh wireless radio
IDX AP MAC RADIO-BSSID TYPE STATE CHANNEL POWER ADOPTED-BY
1 00-23-68-23-06-80 00-23-68-08-DB-50 11bg normal 1 (rnd) 20(20) 58.215.72.202
2 00-15-70-A3-62-27 00-15-70-AA-A2-10 11bg normal 11 (rnd) 20(20) 58.215.72.202
3 00-15-70-A3-5E-D2 00-15-70-AA-97-F8 11bg normal 1 (rnd) 20(20) 58.215.72.206
4 00-23-68-23-0A-FD 00-23-68-09-16-CC 11bg normal 6 (rnd) 20(20) 58.215.72.206
202(config)#
202(config)#sh run | b wireless
wireless
secure-wispe-default-secret 0 defaultS
max-users 8192
wlan 1 enable
wlan 1 ssid moto-202
radio add 1 00-23-68-23-06-80 11bg ap300
radio 1 description xxxxx
radio 1 radio-number 1
radio add 2 00-15-70-A3-62-27 11bg ap300
radio 2 radio-number 1
radio add 3 00-15-70-A3-5E-D2 11bg ap300
radio 3 radio-number 1
radio add 4 00-23-68-23-0A-FD 11bg ap300
radio 4 radio-number 1
no ap-ip default-ap switch-ip
smart-rf
radio 1 radio-mac 00-23-68-08-DB-50
radio 2 radio-mac 00-15-70-AA-A2-10
radio 3 radio-mac 00-15-70-AA-97-F8
radio 4 radio-mac 00-23-68-09-16-CC
!
wireless
AC:58.215.72.206(primary)
206(config)#sh wireless radio
IDX AP MAC RADIO-BSSID TYPE STATE CHANNEL POWER ADOPTED-BY
1 00-23-68-23-06-80 00-23-68-08-DB-50 11bg normal 1 (rnd) 20(20) 58.215.72.202
2 00-15-70-A3-62-27 00-15-70-AA-A2-10 11bg normal 11 (rnd) 20(20) 58.215.72.202
3 00-15-70-A3-5E-D2 00-15-70-AA-97-F8 11bg normal 1 (rnd) 20(20) 58.215.72.206
4 00-23-68-23-0A-FD 00-23-68-09-16-CC 11bg normal 6 (rnd) 20(20) 58.215.72.206
206(config)#
206(config)#sh run | b wireless
wireless
secure-wispe-default-secret 0 defaultS
max-users 8192
wlan 2 enable
wlan 2 ssid moto-206
radio add 1 00-23-68-23-06-80 11bg ap300
radio 1 description xxxxx
radio 1 radio-number 1
radio add 2 00-15-70-A3-62-27 11bg ap300
radio 2 radio-number 1
radio add 3 00-15-70-A3-5E-D2 11bg ap300
radio 3 radio-number 1
radio add 4 00-23-68-23-0A-FD 11bg ap300
radio 4 radio-number 1
radio 4 antenna-mode primary
no ap-ip default-ap switch-ip
smart-rf
radio 1 radio-mac 00-23-68-08-DB-50
radio 2 radio-mac 00-15-70-AA-A2-10
radio 3 radio-mac 00-15-70-AA-97-F8
radio 4 radio-mac 00-23-68-09-16-CC
!
wireless
5. 对Radio的统一规划和部署
上图中,每个AC有两个单频的AP,那么AC-202和AC-206的Radio索引可以相互错开使用
AC:58.215.72.218 (整个cluster的radio 都要在备机上配置)
radio add 1 00-23-68-23-06-80 11bg ap300
radio 1 description xxxxx
radio 1 radio-number 1
radio add 2 00-15-70-A3-62-27 11bg ap300
radio 2 radio-number 1
radio add 3 00-15-70-A3-5E-D2 11bg ap300
radio 3 radio-number 1
radio add 4 00-23-68-23-0A-FD 11bg ap300
radio 4 radio-number 1
radio 4 antenna-mode primary
AC:58.215.72.202 (primary)
radio add 1 00-23-68-23-06-80 11bg ap300
radio 1 description xxxxx
radio 1 radio-number 1
radio add 2 00-15-70-A3-62-27 11bg ap300
radio 2 radio-number 1
AC:58.215.72.206 (primary)
radio add 3 00-15-70-A3-5E-D2 11bg ap300
radio 3 radio-number 1
radio add 4 00-23-68-23-0A-FD 11bg ap300
radio 4 radio-number 1
radio 4 antenna-mode primary
6.对WLAN的统一规划和部署
如果AC-202的WLAN 1 的SSID是MOTO-202,AC-206的WLAN 1 的SSID是MOTO-206那么当切换到备机上该如何配置呢?我们建议也是相互错开配置。
AC:58.215.72.218 (standy)
wlan 1 enable
wlan 1 ssid moto-202
wlan 2 enable
wlan 2 ssid moto-206
AC:58.215.72.202 (primary)
wlan 1 enable
wlan 1 ssid moto-202
AC:58.215.72.206(primary)
wlan 2 enable
wlan 2 ssid moto-206
6. 如果发生切换,那么备机上的Radio将会广播所有的SSID,所以我们需要在备机上做Manual mapping
AC:58.215.72.218 (standy)
wireless
secure-wispe-default-secret 0 defaultS
max-users 8192
manual-wlan-mapping enable------------------启用manual mapping
load-balance by-count
wlan 1 enable
wlan 1 ssid moto-202
wlan 2 enable
wlan 2 ssid moto-206
radio add 1 00-23-68-23-06-80 11bg ap300
radio 1 description xxxxx
radio 1 radio-number 1
radio 1 bss 1 1---------------------------------------AC-202的Radio,只广播WLAN1
radio add 2 00-15-70-A3-62-27 11bg ap300
radio 2 radio-number 1
radio 2 bss 1 1---------------------------------------AC-202的Radio,只广播WLAN1
radio add 3 00-15-70-A3-5E-D2 11bg ap300
radio 3 radio-number 1
radio 3 bss 1 2---------------------------------------AC-206的Radio,只广播WLAN2
radio add 4 00-23-68-23-0A-FD 11bg ap300
radio 4 radio-number 1
radio 4 bss 1 2---------------------------------------AC-206的Radio,只广播WLAN2
radio default-11a bss 1 1
radio default-11a bss 2 2
radio default-11b bss 1 1
radio default-11b bss 2 2
radio default-11bg bss 1 1
radio default-11bg bss 2 2
radio default-11an bss 1 1
radio default-11an bss 2 2
radio default-11bgn bss 1 1
radio default-11bgn bss 2 2
no ap-ip default-ap switch-ip
smart-rf
radio 1 radio-mac 00-23-68-08-DB-50
radio 2 radio-mac 00-15-70-AA-A2-10
radio 3 radio-mac 00-15-70-AA-97-F8
radio 4 radio-mac 00-23-68-09-16-CC
!
Wireless
三台AC的最终配置信息
AC:58.215.72.218 (standy)
Standby-218#sh run
!
! configuration of RFS7000 Standby-218 version 4.0.1.2-221CR
!
version 1.4
!
!
aaa authentication login default local none
service prompt crash-info
!
hostname Standby-218
!
network-element-id 10.99.30.0/24
!
username "admin" password 1 8e67bb26b358e2ed20fe552ed6fb832f397a507d
username "admin" privilege superuser
username "operator" password 1 fe96dd39756ac41b74283a9292652d366d73931f
!
!
!
spanning-tree mst cisco-interoperability enable
spanning-tree mst configuration
name My Name
!
country-code cn
redundancy interface-ip 5.5.5.1
redundancy mode standby
redundancy auto-revert enable
redundancy auto-revert-period 2
redundancy dhcp-server enable
redundancy member-ip 58.215.72.202
redundancy member-ip 58.215.72.206
redundancy enable
logging buffered 4
logging console 4
snmp-server engineid netsnmp 6b8b45674b7331c9
snmp-server sysname Standby-218
snmp-server manager v2
snmp-server manager v3
snmp-server user snmptrap v3 encrypted auth md5 0x6dc0eaa10ae8575dd807804d8d372f82
snmp-server user snmpmanager v3 encrypted auth md5 0x6dc0eaa10ae8575dd807804d8d372f82
snmp-server user snmpoperator v3 encrypted auth md5 0x02e7041f9b1ad7d0622ef6d64a0ad98e
firewall dhcp-snoop-conflict-detection disable
firewall dhcp-snoop-conflict-logging disable
ip dhcp option ap300 189 ascii
ip http server
ip http secure-trustpoint default-trustpoint
ip http secure-server
ip ssh
ip telnet
no service pm sys-restart
license AP c2efa622a9d5f29186d3511aac9893c9d286d9fa0c1bb7505d775e9ee717a89a0b5c15b27fafa167
no firewall stateful-packet-inspection l2
!
wireless
secure-wispe-default-secret 0 defaultS
max-users 8192
manual-wlan-mapping enable
load-balance by-count
wlan 1 enable
wlan 1 ssid moto-202
wlan 2 enable
wlan 2 ssid moto-206
radio add 1 00-23-68-23-06-80 11bg ap300
radio 1 description xxxxx
radio 1 radio-number 1
radio 1 bss 1 1
radio add 2 00-15-70-A3-62-27 11bg ap300
radio 2 radio-number 1
radio 2 bss 1 1
radio add 3 00-15-70-A3-5E-D2 11bg ap300
radio 3 radio-number 1
radio 3 bss 1 2
radio add 4 00-23-68-23-0A-FD 11bg ap300
radio 4 radio-number 1
radio 4 bss 1 2
radio default-11a bss 1 1
radio default-11a bss 2 2
radio default-11b bss 1 1
radio default-11b bss 2 2
radio default-11bg bss 1 1
radio default-11bg bss 2 2
radio default-11an bss 1 1
radio default-11an bss 2 2
radio default-11bgn bss 1 1
radio default-11bgn bss 2 2
no ap-ip default-ap switch-ip
smart-rf
radio 1 radio-mac 00-23-68-08-DB-50
radio 2 radio-mac 00-15-70-AA-A2-10
radio 3 radio-mac 00-15-70-AA-97-F8
radio 4 radio-mac 00-23-68-09-16-CC
!
wireless
!
!
radius-server local
!
interface ge1
switchport mode trunk
switchport trunk native vlan 1
switchport trunk allowed vlan none
switchport trunk allowed vlan add 1,218,
ip dhcp trust
!
interface ge2
switchport access vlan 1
ip dhcp trust
!
interface ge3
switchport access vlan 1
ip dhcp trust
!
interface ge4
switchport access vlan 1
ip dhcp trust
!
interface me1
ip address 10.1.1.100/24
!
interface vlan1
no ip address
!
interface vlan218
ip address 58.215.72.218/30
!
interface vlan5
ip address 5.5.5.1/30
!
ip dhcp pool ap202
default-router 10.99.30.1
option ap300 58.215.72.202,58.215.72.218
network 10.99.30.0/24
address range 10.99.30.2 10.99.30.254
ip dhcp pool ap206
default-router 10.99.110.1
option ap300 58.215.72.206,58.215.72.218
network 10.99.110.0/24
address range 10.99.110.2 10.99.110.254
ip dhcp pool local
network 58.215.72.216/30
!
service dhcp
!
rtls
rfid
espi
sole
!
ip route 0.0.0.0/0 58.215.72.217
!
line con 0
line vty 0 24
!
end
Standby-218#
AC:58.215.72.202
202#sh run
!
! configuration of RFS7000 202 version 4.0.1.2-221CR
!
version 1.4
!
!
aaa authentication login default local none
service prompt crash-info
!
hostname 202
!
network-element-id RFS7000
!
username "admin" password 1 8e67bb26b358e2ed20fe552ed6fb832f397a507d
username "admin" privilege superuser
username "operator" password 1 fe96dd39756ac41b74283a9292652d366d73931f
!
!
!
spanning-tree mst cisco-interoperability enable
spanning-tree mst configuration
name My Name
!
country-code cn
redundancy interface-ip 58.215.72.202
redundancy interface-ip 58.215.72.206
redundancy dhcp-server enable
redundancy member-ip 5.5.5.1
redundancy enable
logging buffered 4
logging console 4
snmp-server engineid netsnmp 6b8b45673a4fc9eb
snmp-server sysname 202
snmp-server manager v2
snmp-server manager v3
snmp-server user snmptrap v3 encrypted auth md5 0x5910eb61f34c38bfc3e4237db7ade0e3
snmp-server user snmpmanager v3 encrypted auth md5 0x5910eb61f34c38bfc3e4237db7ade0e3
snmp-server user snmpoperator v3 encrypted auth md5 0xb258cf3264406c59c6ac43a401412052
firewall dhcp-snoop-conflict-detection disable
firewall dhcp-snoop-conflict-logging disable
ip dhcp option ap300 189 ascii
ip http server
ip http secure-trustpoint default-trustpoint
ip http secure-server
ip ssh
ip telnet
no service pm sys-restart
license AP 0ae0abeee37ac7c3b4f4c550489509361f06101e30d8e1d351a54705fb9bef5c0a4e3f9d2306c4a8
no firewall stateful-packet-inspection l2
!
wireless
secure-wispe-default-secret 0 defaultS
max-users 8192
wlan 1 enable
wlan 1 ssid moto-202
radio add 1 00-23-68-23-06-80 11bg ap300
radio 1 description xxxxx
radio 1 radio-number 1
radio add 2 00-15-70-A3-62-27 11bg ap300
radio 2 radio-number 1
radio add 3 00-15-70-A3-5E-D2 11bg ap300
radio 3 radio-number 1
radio add 4 00
展开阅读全文
浙ICP备2021020529号-1 | 浙B2-20240490 
