[index] AWCプラグイン(AT-VST-APL版) リファレンスマニュアル 3.12.0
awplus> enable ↓ awplus#
awplus# configure terminal ↓ Enter configuration commands, one per line. End with CNTL/Z. awplus(config)#※以後、プロンプトおよびコマンドの応答は省略します。
wireless
security 1 mode wpa-personal key passphrase1 versions wpa2 wpa3 security 2 mode wpa-personal key passphrase2 versions wpa2 wpa3
network 1 ssid Network hide-ssid band-steering security 1 network 2 ssid Management hide-ssid band-steering security 2 network 17 ssid Network hide-ssid band-steering security 1 network 18 ssid Management hide-ssid band-steering security 2
ap-profile local radio 1 enable vap 0 network 1 vap 1 network 2 radio 2 enable zero-wait-dfs enable vap 0 network 17 vap 1 network 18
end wireless ap-configuration apply ap local configure terminal
bridge 1 bridge 2
Note本クイックツアーでは、2.4GHzと5GHzの同一番号のVAPをブリッジに所属させ同じセグメントで運用しています。
2.4GHzと5GHzのVAPを異なるセグメントで運用する場合は、VAPごとにIPアドレスを設定し、エンティティーとファイアウォールの設定を変更してください。
interface vap1.0 bridge-group 1 interface vap1.1 bridge-group 2 interface vap2.0 bridge-group 1 interface vap2.1 bridge-group 2
end wireless ap-configuration apply ap local configure terminal
interface br1 ip address 192.168.10.1/24 interface br2 ip address 192.168.100.1/24
interface eth1 ip address 192.168.1.200/24
zone private network dhcp ip subnet 0.0.0.0/0 interface br1 ip subnet 0.0.0.0/0 interface br2 network lan1 ip subnet 192.168.10.0/24 network lan2 ip subnet 192.168.100.0/24
zone public network wan ip subnet 0.0.0.0/0 interface eth1 host eth1 ip address 192.168.1.200
application dhcp protocol udp dport 67 to 68
firewall rule 10 permit dhcp from private.dhcp to private.dhcp rule 20 permit any from private.lan1 to private.lan1 rule 30 permit any from private.lan2 to private.lan2 rule 40 permit any from private.lan1 to public rule 50 permit any from private.lan2 to public rule 60 permit any from public.wan.eth1 to public.wan rule 70 permit any from public.wan to public.wan.eth1 protect
nat rule 10 masq any from private to public enable
ip dhcp pool pool10 network 192.168.10.0 255.255.255.0 range 192.168.10.100 192.168.10.131 dns-server 192.168.10.1 default-router 192.168.10.1 lease 0 2 0 ip dhcp pool pool100 network 192.168.100.0 255.255.255.0 range 192.168.100.100 192.168.100.131 dns-server 192.168.100.1 default-router 192.168.100.1 lease 0 2 0
service dhcp-server
ip route 0.0.0.0/0 192.168.1.1
atmf network-name AMF001
atmf virtual-link id 1 ip 192.168.1.200 remote-id 1 remote-ip 192.168.1.254AMFマスターと正しくAMFバーチャルリンクを疎通すると、AMFネットワーク参加のログが表示されます。
end
awplus# copy running-config startup-config ↓ Building configuration... [OK]また、write fileコマンド、write memoryコマンドでも同じことができます。
awplus# write memory ↓ Building configuration... [OK]
! wireless security 1 mode wpa-personal key passphrase1 versions wpa2 wpa3 security 2 mode wpa-personal key passphrase2 wersions wpa2 wpa3 network 1 ssid Network hide-ssid band-steering security 1 network 2 ssid Management hide-ssid band-steering security 2 network 17 ssid Network hide-ssid band-steering security 1 network 18 ssid Management hide-ssid band-steering security 2 ap-profile local radio 1 enable vap 0 network 1 vap 1 network 2 radio 2 enable zero-wait-dfs enable vap 0 network 17 vap 1 network 18 ap local ! bridge 1 bridge 2 ! interface vap1.0 bridge-group 1 ! interface vap1.1 bridge-group 2 ! interface vap2.0 bridge-group 1 ! interface vap2.1 bridge-group 2 ! interface br1 ip address 192.168.10.1/24 ! interface br2 ip address 192.168.100.1/24 ! interface eth1 ip address 192.168.1.200/24 ! zone private network dhcp ip subnet 0.0.0.0/0 interface br1 ip subnet 0.0.0.0/0 interface br2 network lan1 ip subnet 192.168.10.0/24 network lan2 ip subnet 192.168.100.0/24 ! zone public network wan ip subnet 0.0.0.0/0 interface eth1 host eth1 ip address 192.168.1.200 ! application dhcp protocol udp dport 67 to 68 ! firewall rule 10 permit dhcp from private.dhcp to private.dhcp rule 20 permit any from private.lan1 to private.lan1 rule 30 permit any from private.lan2 to private.lan2 rule 40 permit any from private.lan1 to public rule 50 permit any from private.lan2 to public rule 60 permit any from public.wan.eth1 to public.wan rule 70 permit any from public.wan to public.wan.eth1 protect ! nat rule 10 masq any from private to public enable ! ip dhcp pool pool10 network 192.168.10.0 255.255.255.0 range 192.168.10.100 192.168.10.131 dns-server 192.168.10.1 default-router 192.168.10.1 lease 0 2 0 ip dhcp pool pool100 network 192.168.100.0 255.255.255.0 range 192.168.100.100 192.168.100.131 dns-server 192.168.100.1 default-router 192.168.100.1 lease 0 2 0 ! service dhcp-server ! ip route 0.0.0.0/0 192.168.1.1 ! atmf network-name AMF001 ! atmf virtual-link id 1 ip 192.168.1.200 remote-id 1 remote-ip 192.168.1.254 end