Best,
I have a problem to make my config complete. I still miss 2 things
1 WPA2 on the SSID 2 BVI mapt to management vlan 10 Can someone help me to realize the 2 things thx. if you still see wrong config I am free to learn
no service pad service timestamps debug datetime msec localtime service timestamps log datetime msec localtime service password-encryption ! hostname WIFI-AP ! logging buffered informational logging rate-limit console 9 no logging console
clock timezone GMT 1 clock summer-time cet-summertime recurring last Sun Mar 2:00 last Sun Oct 3:00 ip domain name S-N ! ! dot11 mbssid dot11 syslog dot11 vlan-name SN-Home-00020000-24 vlan 15 dot11 vlan-name SN-Office-00025000-24 vlan 25 dot11 vlan-name SN-IOT-00030000-24 vlan 30 mbssid ! dot11 ssid S-Guest vlan 15 authentication open
WPA2 Password
mbssid guest-mode dtim-period 90 information-element ssidl advertisement ! dot11 ssid S-OFFICE vlan 25 authentication open
WPA2 Password
mbssid guest-mode dtim-period 80 information-element ssidl advertisement ! dot11 ssid S-IOT vlan 30 authentication open
WPA2 Password
mbssid guest-mode dtim-period 90 information-element ssidl advertisement ! ! ! ip tcp synwait-time 10 ip ssh version 2 bridge irb ! ! interface Dot11Radio0 no ip address no ip route-cache ! encryption vlan 15 mode ciphers aes-ccm ! encryption vlan 25 mode ciphers aes-ccm
encryption vlan 30 mode ciphers aes-ccm ! encryption mode ciphers aes-ccm ! ssid S-Networks-Guest ssid S-Networks-OFFICE ssid S-Networks-IOT
interface Dot11Radio1 no ip address no ip route-cache ! encryption vlan 15 mode ciphers aes-ccm ! encryption vlan 25 mode ciphers aes-ccm
encryption vlan 30 mode ciphers aes-ccm ! encryption mode ciphers aes-ccm ! ssid S-Networks-Guest ssid S-Networks-OFFICE ssid S-Networks-IOT !
interface Dot11Radio0.15 encapsulation dot1Q 15 no ip route-cache bridge-group 15 bridge-group 15 subscriber-loop-control bridge-group 15 block-unknown-source no bridge-group 15 source-learning no bridge-group 15 unicast-flooding bridge-group 15 spanning-disabled
interface Dot11Radio0.25 encapsulation dot1Q 25 no ip route-cache bridge-group 25 bridge-group 25 subscriber-loop-control bridge-group 25 block-unknown-source no bridge-group 25 source-learning no bridge-group 25 unicast-flooding bridge-group 25 spanning-disabled
interface Dot11Radio0.30 encapsulation dot1Q 30 no ip route-cache bridge-group 30 bridge-group 30 subscriber-loop-control bridge-group 30 block-unknown-source no bridge-group 30 source-learning no bridge-group 30 unicast-flooding bridge-group 30 spanning-disabled
interface GigabitEthernet0 no ip address no ip route-cache duplex auto speed auto no keepalive bridge-group 1 no bridge-group 1 source-learning bridge-group 1 spanning-disabled ! interface GigabitEthernet0.15 encapsulation dot1Q 15 no ip route-cache bridge-group 15 no bridge-group 15 source-learning bridge-group 15 spanning-disabled ! interface GigabitEthernet0.20 encapsulation dot1Q 20 no ip route-cache bridge-group 20 no bridge-group 20 source-learning bridge-group 20 spanning-disabled ! interface GigabitEthernet0.30 encapsulation dot1Q 30 no ip route-cache bridge-group 30 no bridge-group 30 source-learning bridge-group 30 spanning-disabled
interface Dot11Radio1.15 encapsulation dot1Q 15 no ip route-cache bridge-group 15 bridge-group 15 subscriber-loop-control bridge-group 15 block-unknown-source no bridge-group 15 source-learning no bridge-group 15 unicast-flooding bridge-group 15 spanning-disabled
interface Dot11Radio1.25 encapsulation dot1Q 25 no ip route-cache bridge-group 25 bridge-group 25 subscriber-loop-control bridge-group 25 block-unknown-source no bridge-group 25 source-learning no bridge-group 25 unicast-flooding bridge-group 25 spanning-disabled
interface Dot11Radio1.30 encapsulation dot1Q 30 no ip route-cache bridge-group 30 bridge-group 30 subscriber-loop-control bridge-group 30 block-unknown-source no bridge-group 30 source-learning no bridge-group 30 unicast-flooding bridge-group 30 spanning-disabled
interface GigabitEthernet1 no ip address no ip route-cache duplex auto speed auto no keepalive bridge-group 1 no bridge-group 1 source-learning bridge-group 1 spanning-disabled ! interface GigabitEthernet1.15 encapsulation dot1Q 15 no ip route-cache bridge-group 15 no bridge-group 15 source-learning bridge-group 15 spanning-disabled ! interface GigabitEthernet1.20 encapsulation dot1Q 20 no ip route-cache bridge-group 20 no bridge-group 20 source-learning bridge-group 20 spanning-disabled ! interface GigabitEthernet1.30 encapsulation dot1Q 30 no ip route-cache bridge-group 30 no bridge-group 30 source-learning bridge-group 30 spanning-disabled
! BVI 1 to VLAN 10 MGM
interface BVI1 ip address 10.0.10.20 255.255.255.0 no ip route-cache ! ip default-gateway 10.0.10.10
no ip http server ip http help-path http://ift.tt/1M5jmKo bridge 1 route ip ! ! ! line con 0 session-timeout 5 exec-timeout 5 0 line vty 0 4 session-timeout 5 access-class vty-acl in exec-timeout 5 0 transport preferred ssh transport input ssh transport output none
No comments:
Post a Comment