Инструменты пользователя
cisco:air-lap
Различия
Здесь показаны различия между двумя версиями данной страницы.
| Предыдущая версия справа и слева Предыдущая версия Следующая версия | Предыдущая версия | ||
|
cisco:air-lap [2021/07/04 19:39] alex [Настройка мульти ssid] |
cisco:air-lap [2021/07/07 06:19] (текущий) alex |
||
|---|---|---|---|
| Строка 26: | Строка 26: | ||
| Interface 10.215.130.124 | Interface 10.215.130.124 | ||
| + | Отключаю функцию поиска по DNS | ||
| no ip domain lookup | no ip domain lookup | ||
| + | |||
| + | Отключаю web | ||
| + | (config)#no ip http server | ||
| При необходимости меняю адрес | При необходимости меняю адрес | ||
| Строка 35: | Строка 39: | ||
| (config)#exit | (config)#exit | ||
| - | Задаю имя точки доступа, пароль на вход и enable рижим | + | Задаю имя точки доступа, пароль на вход и enable режим |
| #configure terminal | #configure terminal | ||
| (config)#hostname ИМЯ | (config)#hostname ИМЯ | ||
| Строка 47: | Строка 51: | ||
| (config)#exit | (config)#exit | ||
| - | Настрайка SSID | + | Настройка SSID |
| #configure terminal | #configure terminal | ||
| (config)#dot11 ssid NAME1 | (config)#dot11 ssid NAME1 | ||
| Строка 122: | Строка 126: | ||
| 8021x auth in prog 0 allowed 0 | 8021x auth in prog 0 allowed 0 | ||
| - | ==== Настройка мульти ssid ==== | + | ==== Настройка multi ssid ==== |
| + | Подключаюсь консолью (9600) удаляю старые настройки и перегружаю | ||
| #erase nvram: | #erase nvram: | ||
| Erasing the nvram filesystem will remove all configuration files! Continue? [confirm] | Erasing the nvram filesystem will remove all configuration files! Continue? [confirm] | ||
| Строка 131: | Строка 136: | ||
| Proceed with reload? [confirm] | Proceed with reload? [confirm] | ||
| + | После перезагрузки вхожу в режим конфигурирования. Пароль Cisco (с большой буквы). | ||
| + | enable | ||
| + | |||
| + | Смотрю IP настроенные в точке доступа | ||
| >sh ip interface br | >sh ip interface br | ||
| Interface IP-Address OK? Method Status Protocol | Interface IP-Address OK? Method Status Protocol | ||
| Строка 137: | Строка 146: | ||
| Dot11Radio1 unassigned YES unset administratively down down | Dot11Radio1 unassigned YES unset administratively down down | ||
| FastEthernet0 unassigned YES other up up | FastEthernet0 unassigned YES other up up | ||
| + | |||
| + | При необходимости меняю адрес | ||
| >enable | >enable | ||
| Password: | Password: | ||
| Строка 142: | Строка 153: | ||
| Enter configuration commands, one per line. End with CNTL/Z. | Enter configuration commands, one per line. End with CNTL/Z. | ||
| (config)#interface BVI1 | (config)#interface BVI1 | ||
| - | (config-if)#ip address 10.215.130.124 255.255.255.0 | + | (config-if)#ip address 192.168.0.100 255.255.255.0 |
| (config-if)#ex | (config-if)#ex | ||
| - | (config)# no ip http server | + | Отключаю функцию поиска по DNS |
| + | (config)#no ip domain lookup | ||
| - | #sh ip interface br | + | Отключаю web |
| - | Interface IP-Address OK? Method Status Protocol | + | (config)#no ip http server |
| - | BVI1 10.215.130.124 YES manual up up | + | |
| - | Dot11Radio0 unassigned YES unset administratively down down | + | |
| - | Dot11Radio1 unassigned YES unset administratively down down | + | |
| - | FastEthernet0 unassigned YES other up up | + | |
| + | Задаю имя точки доступа, пароль на вход и enable режим | ||
| #conf t | #conf t | ||
| - | (config)#hostname garage | + | (config)#hostname ИМЯ |
| - | (config)#enable secret Rk0nbr^2o2o | + | (config)#enable secret PASSWORD1 |
| - | (config)#username cisco privilege 15 password Rk0nbr^2o2o | + | (config)#username USER privilege 15 secret PASSWORD2 |
| + | или так | ||
| + | (config)#username USER privilege 15 password PASSWORD2 | ||
| - | (config)#dot11 ssid My-WI-FI | + | Настройка SSID |
| + | (config)#dot11 ssid NAME1 | ||
| (config-ssid)#authentication open | (config-ssid)#authentication open | ||
| (config-ssid)#authentication key-management wpa | (config-ssid)#authentication key-management wpa | ||
| - | (config-ssid)#wpa-psk ascii 7 047F011216384A54361703060B0D | + | (config-ssid)#wpa-psk ascii 7 хэш пароля |
| + | или | ||
| + | (config-ssid)#wpa-psk ascii 0 пароль | ||
| (config-ssid)#vlan 1 | (config-ssid)#vlan 1 | ||
| (config-ssid)#mbssid guest-mode | (config-ssid)#mbssid guest-mode | ||
| (config-ssid)#exit | (config-ssid)#exit | ||
| - | (config)#dot11 ssid banana | + | (config)#dot11 ssid NAME2 |
| (config-ssid)#authentication open | (config-ssid)#authentication open | ||
| (config-ssid)#authentication key-management wpa | (config-ssid)#authentication key-management wpa | ||
| - | (config-ssid)#wpa-psk ascii 0 FR74#372794 | + | (config-ssid)#wpa-psk ascii 0 пароль |
| (config-ssid)#vlan 3 | (config-ssid)#vlan 3 | ||
| (config-ssid)#mbssid guest-mode | (config-ssid)#mbssid guest-mode | ||
| (config-ssid)#ex | (config-ssid)#ex | ||
| + | Настраиваю радио интерфейс для первого вэлана | ||
| (config)#int d0.1 | (config)#int d0.1 | ||
| (config-subif)#encapsulation dot1Q 1 native | (config-subif)#encapsulation dot1Q 1 native | ||
| Строка 180: | Строка 195: | ||
| (config-subif)#ex | (config-subif)#ex | ||
| + | Настраиваю радио интерфейс для третьего вэлана | ||
| (config)#int d0.3 | (config)#int d0.3 | ||
| (config-subif)#encapsulation dot1Q 3 | (config-subif)#encapsulation dot1Q 3 | ||
| Строка 185: | Строка 201: | ||
| (config-subif)#ex | (config-subif)#ex | ||
| - | (config)#int fa | + | Настраиваю сетевые интерфейсы под вэланы |
| (config)#int fastEthernet 0.1 | (config)#int fastEthernet 0.1 | ||
| (config-subif)#encapsulation dot1Q 1 native | (config-subif)#encapsulation dot1Q 1 native | ||
| (config-subif)#bridge-group 1 | (config-subif)#bridge-group 1 | ||
| (config-subif)#ex | (config-subif)#ex | ||
| - | |||
| (config)#int fastEthernet 0.3 | (config)#int fastEthernet 0.3 | ||
| (config-subif)#encapsulation dot1Q 3 | (config-subif)#encapsulation dot1Q 3 | ||
| Строка 197: | Строка 212: | ||
| (config)#ex | (config)#ex | ||
| + | Проверяю что получилось | ||
| #sh ip interface br | #sh ip interface br | ||
| Interface IP-Address OK? Method Status Protocol | Interface IP-Address OK? Method Status Protocol | ||
| - | BVI1 10.215.130.124 YES NVRAM up up | + | BVI1 192.168.0.100 YES NVRAM up up |
| Dot11Radio0 unassigned YES NVRAM administratively down down | Dot11Radio0 unassigned YES NVRAM administratively down down | ||
| Dot11Radio0.1 unassigned YES unset administratively down down | Dot11Radio0.1 unassigned YES unset administratively down down | ||
| Строка 208: | Строка 224: | ||
| FastEthernet0.3 unassigned YES unset up up | FastEthernet0.3 unassigned YES unset up up | ||
| + | Настраиваю радио интерфейс для мульти ssid | ||
| #conf t | #conf t | ||
| - | Enter configuration commands, one per line. End with CNTL/Z. | ||
| (config)#int d0 | (config)#int d0 | ||
| (config-if)#mbssid | (config-if)#mbssid | ||
| Строка 219: | Строка 235: | ||
| (config-if)#no shutdown | (config-if)#no shutdown | ||
| - | garage#sh ip interface br | + | #sh ip interface br |
| Interface IP-Address OK? Method Status Protocol | Interface IP-Address OK? Method Status Protocol | ||
| BVI1 10.215.130.124 YES NVRAM up up | BVI1 10.215.130.124 YES NVRAM up up | ||
| Строка 234: | Строка 250: | ||
| Building configuration... | Building configuration... | ||
| - | Current configuration : 2466 bytes | ||
| - | ! | ||
| - | version 12.4 | ||
| - | no service pad | ||
| - | service timestamps debug datetime msec | ||
| - | service timestamps log datetime msec | ||
| - | service password-encryption | ||
| - | ! | ||
| - | hostname garage | ||
| - | ! | ||
| - | enable secret 5 $1$PioM$4Nr3bXp6V/X6vtB0zIecw. | ||
| - | ! | ||
| - | no aaa new-model | ||
| - | no ip domain lookup | ||
| - | ip domain name klotik.ru | ||
| - | ! | ||
| - | ! | ||
| - | ! | ||
| - | dot11 ssid My-WI-FI | ||
| - | vlan 1 | ||
| - | authentication open | ||
| - | authentication key-management wpa | ||
| - | mbssid guest-mode | ||
| - | wpa-psk ascii 7 047F011216384A54361703060B0D | ||
| - | ! | ||
| - | dot11 ssid banana | ||
| - | vlan 3 | ||
| - | authentication open | ||
| - | authentication key-management wpa | ||
| - | mbssid guest-mode | ||
| - | wpa-psk ascii 7 052D3458750F1D5E4B524E46 | ||
| - | ! | ||
| - | power inline negotiation prestandard source | ||
| - | ! | ||
| - | ! | ||
| - | username Cisco privilege 15 password 7 0336505B080D33721C064B0A | ||
| - | ! | ||
| - | bridge irb | ||
| - | ! | ||
| - | ! | ||
| - | interface Dot11Radio0 | ||
| - | no ip address | ||
| - | no ip route-cache | ||
| - | ! | ||
| - | encryption vlan 1 mode ciphers aes-ccm | ||
| - | ! | ||
| - | encryption vlan 3 mode ciphers aes-ccm | ||
| - | ! | ||
| - | ssid My-WI-FI | ||
| - | ! | ||
| - | ssid banana | ||
| - | ! | ||
| - | mbssid | ||
| - | channel 2457 | ||
| - | station-role root | ||
| - | ! | ||
| - | interface Dot11Radio0.1 | ||
| - | encapsulation dot1Q 1 native | ||
| - | no ip route-cache | ||
| - | bridge-group 1 | ||
| - | bridge-group 1 subscriber-loop-control | ||
| - | bridge-group 1 block-unknown-source | ||
| - | no bridge-group 1 source-learning | ||
| - | no bridge-group 1 unicast-flooding | ||
| - | bridge-group 1 spanning-disabled | ||
| - | ! | ||
| - | interface Dot11Radio0.3 | ||
| - | encapsulation dot1Q 3 | ||
| - | no ip route-cache | ||
| - | bridge-group 3 | ||
| - | bridge-group 3 subscriber-loop-control | ||
| - | bridge-group 3 block-unknown-source | ||
| - | no bridge-group 3 source-learning | ||
| - | no bridge-group 3 unicast-flooding | ||
| - | bridge-group 3 spanning-disabled | ||
| - | ! | ||
| - | interface Dot11Radio1 | ||
| - | no ip address | ||
| - | no ip route-cache | ||
| - | shutdown | ||
| - | no dfs band block | ||
| - | channel dfs | ||
| - | station-role root | ||
| - | bridge-group 1 | ||
| - | bridge-group 1 subscriber-loop-control | ||
| - | bridge-group 1 block-unknown-source | ||
| - | no bridge-group 1 source-learning | ||
| - | no bridge-group 1 unicast-flooding | ||
| - | bridge-group 1 spanning-disabled | ||
| - | ! | ||
| - | interface FastEthernet0 | ||
| - | no ip address | ||
| - | no ip route-cache | ||
| - | duplex auto | ||
| - | speed auto | ||
| - | ! | ||
| - | interface FastEthernet0.1 | ||
| - | encapsulation dot1Q 1 native | ||
| - | no ip route-cache | ||
| - | bridge-group 1 | ||
| - | no bridge-group 1 source-learning | ||
| - | bridge-group 1 spanning-disabled | ||
| - | ! | ||
| - | interface FastEthernet0.3 | ||
| - | encapsulation dot1Q 3 | ||
| - | no ip route-cache | ||
| - | bridge-group 3 | ||
| - | no bridge-group 3 source-learning | ||
| - | bridge-group 3 spanning-disabled | ||
| - | ! | ||
| - | interface BVI1 | ||
| - | ip address 10.215.130.124 255.255.255.0 | ||
| - | no ip route-cache | ||
| - | ! | ||
| - | ip http server | ||
| - | no ip http secure-server | ||
| - | ip http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag | ||
| - | bridge 1 route ip | ||
| - | ! | ||
| - | ! | ||
| - | ! | ||
| - | line con 0 | ||
| - | line vty 0 4 | ||
| - | login local | ||
| - | ! | ||
| - | end | ||
| - | | ||
| - | # | ||
| + | Просмотр подключенных клиентов | ||
| sh dot11 associations all-client | sh dot11 associations all-client | ||
| Address : ace3.4265.d64e Name : NONE | Address : ace3.4265.d64e Name : NONE | ||
cisco/air-lap.1625427543.txt.gz · Последние изменения: 2021/07/04 19:39 — alex
Инструменты страницы
Если не указано иное, содержимое этой вики предоставляется на условиях следующей лицензии: GNU Free Documentation License 1.3
