aruba操作手册

jimmy1215
1 ℃
2020-02-03

整理文档很辛苦，赏杯茶钱您下走！

还剩 ... 页未读，继续阅读 >>

免费阅读已结束，点击下载阅读编辑剩下 ... 页

阅读已结束，您可以下载文档离线阅读编辑

资源描述

无线控制器配置手册一无线控制器初始化配置无线控制器刚启动的时候，是没有任何配置的，需要进行初始化配置才能进行管理。启动无线控制器，进入到以下界面：EnterSystemname[Aruba3200]:Aruba-masterEnterVLAN1interfaceIPaddress[172.16.0.254]:172.16.0.254EnterVLAN1interfacesubnetmask[255.255.255.0]:255.255.255.0EnterIPDefaultgateway[none]:EnterSwitchRole,(master|local)[master]:masterEnterCountrycode(ISO-3166),ctrl-Iforsupportedlist:CNYouhavechosenCountrycodeGBforUnitedKingdom(yes|no)?:yesEnterTimeZone[PST-8:0]:GMT-0:0EnterTimeinGMT[14:27:05]:14:27:05EnterDate(MM/DD/YYYY)[2/20/2007]:11/03/2008EnterPasswordforadminlogin(upto32chars):adminRe-typePasswordforadminlogin:adminEnterPasswordforenablemode(upto15chars):enableRe-typePasswordforenablemode:******Doyouwishtoshutdownalltheports(yes|no)?[no]:noCurrentchoicesare:Systemname:Aruba_masterVLAN1interfaceIPaddress:172.16.0.254VLAN1interfacesubnetmask:255.255.255.0IPDefaultgateway:noneSwitchRole:masterTimeZone:GMT-0:0Portsshutdown:noIfyouacceptthechangestheswitchwillrestart!Typectrl-PtogobackandchangeanswerforanyquestionDoyouwishtoacceptthechanges(yes|no)yesCreatingconfiguration...Done.Systemwillnowrestart!初始化配置完成后，设备会重新启动重启完成以后进入到以下配置界面，用刚刚初始化配置的用户名和密码进行登陆。(Aruba_master)User:adminPassword:*****(Aruba-master)enablePassword:******二VLAN的创建(Aruba-master)#configureterminalEnterConfigurationcommands,oneperline.EndwithCNTL/Z(Aruba-master)(config)#vlan200(Aruba-master)(config-subif)#interfacevlan200(Aruba-master)(config-subif)#ipaddress172.16.51.2255.255.255.0(Aruba-master)(config-subif)#interfaceloopback(Aruba-master)(config-loop)#ipaddress172.16.51.3SwitchIPAddressisModified.Switchshouldberebootednow.(Aruba-master)(config)#interfacevlan1(Aruba-master)(config-subif)#noipaddress(Aruba-master)(config-loopinterfacefastethernet1/0)#(Aruba-master)(config-if)#switchportaccessvlan200(Aruba-master)(config-if)#exit三配置缺省路由(Aruba-master)(config)#ipdefault-gateway172.16.51.1(Aruba-master)exit(config)#(Aruba-master)#writememSavingConfiguration...ConfigurationSaved(Aruba_2400_Test_System)#reloadDoyoureallywanttoresetthesystem(y/n):ySystemwillnowrestart!配置完成后，可以用、WLANsSSIDS、和AAA配置文件4.1配置SSIDfrofile1点击Configurationadvancedservicesallprofiles,如下图所示2建立一个SSID配置文件点击WirelessLANSSIDProfile在右边空白处增加一个配置文件ssid-office.如下图所示NewSSIDProfileSsid-officeNetworkName(SSID)officeEncryptionWEPSize10HexWEPKey12345678903点击Apply保存配4.2配置AAAprofile1点击WirelessLANAAA-Profile在右边空白处增加一个配置文件AAA-office.如下图所示AAAProfileAAA-office2在右边AAAprofileaaa-office配置intialrole和MACauthenticationdefaultroleInitialrolelogonMACauthenticationdefaultroleauthentication4.3配置虚拟APprofile1点击WirelessLANVirtualAPProfile在右边空白处增加一个配置文件VAP-office.如下图所示2在左边菜单VirtualAPprofileVAP-office,选相应的VLAN1给虚拟AP3点击进入VirtualAPprofileVAP-officeSSIDprofile菜单，在右边SSIDProfile选择ssid-office，点APPLY保存4点击进入VirtualAPprofileVAP-officeAAAprofile菜单，在右边AAAProfile选择AAA-office，点APPLY保存五将虚拟AP分配到相应的AP组1点击ConfigurateionwirelessAPConfigurationAPGroup2选取default组,点击Edit按钮进入AP组配置菜单。在wirelessLANVirtualAP左边VirtualAPs增加VAP-office，在以前定义好的，点AAPLAY保存3增加好以后，会看到在左栏菜单会多一个VAP-office的虚拟AP五防火墙策略1点击ConfigurationSecurityAccessControl选择policies,定义防火墙访问策略，点击Add增加一条新的策略2进入SecurityFirewallPoliciesAddNewPolicy菜单，定义用户的访问规则。六用户角色配置1点击ConfigurationSecurityAccessControl选择UserRoles,定义用户角色，点击Add增加一个新的角色2SecurityUserRolesAddRole，在ChoosefromConfiguration选取定义好的策略policy-office。点Done完成添加一条策略，可以继续完成添加多条策略。3点击Apply保存，建立一个Roles-office七MAC地址认证1点击ConfigurationSecurityAuthenticationL2Authentication页面2进入SecurityAuthenticationL2AuthenticationMACAuthenticationProfiledefault定义MAC地址认证的格式，有三种：none：aabbccddeeffcolon:aa:bb:cc:dd:ee:ffDash:aa-bb-cc-dd-ee-ffCase:lower是小写Upper是大写3点击进入ConfigurationSecurityAuthenticationServersInternalDB页面，在左边点击AddUser添加要进行认证的MAC地址4添加用户名、密码、角色，点Apply保存。Role是自己预先定义的角色。usernameaa:bb:cc:dd:ee:ffpasswordaa:bb:cc:dd:ee:ffRoleauthentication5进入ConfigurationSecurityAuthenticationAAAProfileaaa-office页面，Initalrole选择logon角色，MACauthenticationDefault选择Authentication。（这两个角色可以是自己定义的角色）6最后进入到ConfigurationwirelessAPConfigurationAPGroupEditdefault如下图：WirelessLANVAP-officeAAAProfile下拉菜单中调用刚才建好的aaa-office八常用的控制器查看命令showapactiveshowapdatabaseshowipinterfacebriefshowvlanshowiprouteshowuser-table