Escolar Documentos
Profissional Documentos
Cultura Documentos
LAB 1
Real Labs V2
www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
6504-A
router ospf 1
passive-interface default
no passive-interface Vlan129
network 192.168.129.2 0.0.0.0 area 0
default-information originate always
6504-B
router ospf 1
passive-interface default
no passive-interface Vlan129
network 192.168.129.3 0.0.0.0 area 0
Verification:
6504-B#show ip route
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
6504-A
interface Vlan129
ip address 192.168.129.2 255.255.255.0
standby version 2
standby 1 ip 192.168.129.1
standby 1 priority 255
standby 1 preempt
standby 1 authentication md5 key-string Cisco123
!
interface Vlan130
ip address 192.168.130.2 255.255.255.0
standby version 2
standby 1 ip 192.168.130.1
standby 1 priority 255
standby 1 preempt
standby 1 authentication md5 key-string Cisco123
!
interface Vlan136
ip address 192.168.136.2 255.255.255.0
standby version 2
standby 1 ip 192.168.136.1
standby 1 priority 255
standby 1 preempt
standby 1 authentication md5 key-string Cisco123
!
interface Vlan137
ip address 192.168.137.2 255.255.255.0
standby version 2
standby 1 ip 192.168.137.1
standby 1 priority 255
standby 1 preempt
standby 1 authentication md5 key-string Cisco123
!
interface Vlan138
ip address 192.168.138.2 255.255.255.0
!
interface Vlan141
ip address 192.168.141.2 255.255.255.0
standby version 2
standby 2 ip 192.168.141.1
standby 2 priority 90
standby 2 authentication md5 key-string Cisco123
!
interface Vlan142
ip address 192.168.142.2 255.255.255.0
standby version 2
standby 2 ip 192.168.142.1
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
standby 2 priority 90
standby 2 authentication md5 key-string Cisco123
!
interface Vlan143
ip address 192.168.143.2 255.255.255.0
standby version 2
standby 2 ip 192.168.143.1
standby 2 priority 90
standby 2 authentication md5 key-string Cisco123
!
interface Vlan172
ip address 172.16.0.2 255.255.255.0
!
router ospf 1
passive-interface default
no passive-interface Vlan129
network 192.168.129.0 0.0.0.255 area 0
default-information originate always
6504-B
interface Vlan129
ip address 192.168.129.3 255.255.255.0
standby version 2
standby 1 ip 192.168.129.1
standby 1 priority 90
standby 1 authentication md5 key-string Cisco123
!
interface Vlan130
ip address 192.168.130.3 255.255.255.0
standby version 2
standby 1 ip 192.168.130.1
standby 1 priority 90
standby 1 authentication md5 key-string Cisco123
!
interface Vlan136
ip address 192.168.136.3 255.255.255.0
standby version 2
standby 1 ip 192.168.136.1
standby 1 priority 90
standby 1 authentication md5 key-string Cisco123
!
interface Vlan137
ip address 192.168.137.3 255.255.255.0
standby version 2
standby 1 ip 192.168.137.1
standby 1 priority 90
standby 1 authentication md5 key-string Cisco123
!
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
interface Vlan138
ip address 192.168.138.3 255.255.255.0
!
interface Vlan141
ip address 192.168.141.3 255.255.255.0
standby version 2
standby 2 ip 192.168.141.1
standby 2 priority 255
standby 2 preempt
standby 2 authentication md5 key-string Cisco123
!
interface Vlan142
ip address 192.168.142.3 255.255.255.0
standby version 2
standby 2 ip 192.168.142.1
standby 2 priority 255
standby 2 preempt
standby 2 authentication md5 key-string Cisco123
!
interface Vlan143
ip address 192.168.143.3 255.255.255.0
standby version 2
standby 2 ip 192.168.143.1
standby 2 priority 255
standby 2 preempt
standby 2 authentication md5 key-string Cisco123
Verification:
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
6504-A
spanning-tree vlan 129-130,136-137 priority 0
spanning-tree vlan 141-143,300-301 priority 4096
interface Port-channel1
switchport trunk encapsulation dot1q
switchport mode trunk
!
interface Port-channel2
switchport trunk encapsulation dot1q
switchport mode trunk
!
interface Port-channel3
switchport trunk encapsulation dot1q
switchport mode trunk
!
port-channel load-balance src-dst-ip
interface GigabitEthernet1/1
switchport trunk encapsulation dot1q
switchport mode trunk
channel-group 1 mode on
!
interface GigabitEthernet1/2
switchport trunk encapsulation dot1q
switchport mode trunk
channel-group 1 mode on
interface range GigabitEthernet4/21-22
switchport trunk encapsulation dot1q
switchport mode trunk
channel-group 2 mode on
interface range GigabitEthernet4/10-11
switchport trunk encapsulation dot1q switchport mode trunk
channel-group 3 mode on
6504-B
spanning-tree vlan 129-130,136-137 priority 4096
spanning-tree vlan 141-143,300-301 priority 0
interface Port-channel1
switchport trunk encapsulation dot1q
switchport mode trunk
!
interface Port-channel2
switchport trunk encapsulation dot1q
switchport mode trunk
!
interface GigabitEthernet1/1
switchport trunk encapsulation dot1q
switchport mode trunk
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
channel-group 1 mode on
!
interface GigabitEthernet1/2
switchport trunk encapsulation dot1q
switchport mode trunk
channel-group 1 mode on
interface GigabitEthernet4/20
switchport trunk encapsulation dot1q
switchport mode trunk
channel-group 2 mode on
interface GigabitEthernet4/22
switchport trunk encapsulation dot1q
switchport mode trunk
channel-group 2 mode on
2960-Central Switch
Spanning-tree portfast bpdufilter default
Verification:
6504-A#show spanning-tree root
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
6504-A
mls qos
mls qos map cos-dscp 0 10 18 26 34 46 48 54
int Gi4/3
priority-queue out
mls qos trust dscp
int Gi4/5
priority-queue out
mls qos trust dscp
int Gi4/20
priority-queue out
mls qos trust cos
int Gi4/22
priority-queue out
mls qos trust cos
int Gi4/1
priority-queue out
mls qos trust dscp
int Gi4/47
priority-queue out
mls qos trust dscp
priority-queue out
mls qos trust ip-precedence
Remote-3560
mls qos
mls qos map cos-dscp 0 10 18 26 34 46 48 54
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
6504-A
default-router 192.168.132.1
interface Gi4/3
description L3500-1
interface Gi4/5
description L3500-2
interface Vlan300
ip helper-address 192.168.132.2
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
6504-B
default-router 192.168.133.1
interface Gi4/1
description L3500-4
interface Vlan301
ip helper-address 192.168.133.3
2960-central
interface Fa0/1
description L3500-3
interface Vlan301
ip helper-address 192.168.133.3
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
3560-remote
default-router 192.168.149.1
interface Vlan149
ip helper-address 192.168.149.1
interface Gi0/1
description L1260-1
interface Gi0/2
description L1260-2
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
5508-1
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
5508-2
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
Verification:
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
Assume the IP Add of WLC has already been configured so you just need to select correct location & device type.
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
1260-BR1
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
speed auto
!
interface FastEthernet0.129
encapsulation dot1Q 129 native
no ip route-cache
bridge-group 1
no bridge-group 1 source-learning
bridge-group 1 spanning-disabled
!
interface FastEthernet0.143
encapsulation dot1Q 143
no ip route-cache
bridge-group 2
no bridge-group 2 source-learning
bridge-group 2 spanning-disabled
interface BVI1
ip address 192.168.129.101 255.255.255.0
no ip route-cache
!
ip default-gateway 192.168.129.1
1260-BR2
interface Dot11Radio1
no ip address
no ip route-cache
!
ssid WGB
!
no dfs band block
channel dfs
station-role workgroup-bridge
infrastructure-client
!
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
interface Dot11Radio1.1
encapsulation dot1Q 129 native
no ip route-cache
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
bridge-group 1 spanning-disabled
!
interface Dot11Radio1.143
encapsulation dot1Q 143
no ip route-cache
bridge-group 2
bridge-group 2 subscriber-loop-control
bridge-group 2 block-unknown-source
no bridge-group 2 source-learning
no bridge-group 2 unicast-flooding
bridge-group 2 spanning-disabled
!
interface FastEthernet0
no ip address
no ip route-cache
duplex auto
speed auto
!
interface FastEthernet0.129
encapsulation dot1Q 129 native
no ip route-cache
bridge-group 1
no bridge-group 1 source-learning
bridge-group 1 spanning-disabled
!
interface FastEthernet0.143
encapsulation dot1Q 143
no ip route-cache
bridge-group 2
no bridge-group 2 source-learning
bridge-group 2 spanning-disabled
!
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
interface BVI1
ip address 192.168.129.102 255.255.255.0
no ip route-cache
!
ip default-gateway 192.168.129.1
SSID [WGB] :
UNII-1/Lower Band (5.150 to 5.250 GHz) Non-overlapping channels 36, 40, 44, 48
UNII-2/Middle Band (5.250 to 5.350 GHz) Non-overlapping channels 52, 56, 60, 64
UNII-2 Extended (5.470 to 5.725 GHz) Non-overlapping channels 100, 104, 108, 112, 120, 124, 128, 136, 140
UNII-3/Upper Band (5.725 to 5.825 GHz) on-overlapping channels 149, 153, 157, 161, 165
1260-BR2
interface Dot11Radio1
mobile station scan 5180 5200 5220 5240
mobile station ignore neighbor-list
mobile station period 10 threshold 79
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
Goto Policy Elements -> Authoriztion and permissions -> network access -> authorization profiles.
in ACS goto Policy Elements > Session Conditions > Network Conditions > End Station Filters
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
In ACS go to Access Policies > Access Services > Default Network Access > Authorization
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
Goto controller -> mobility management -> mobility groups -> edit all
On 5508-1
11:11:11:11:11:11 192.168.129.31
22:22:22:22:22:22 192.168.129.32
On 5508-2
22:22:22:22:22:22 192.168.129.32
11:11:11:11:11:11 192.168.129.31
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
Goto ACS
Access Policies > Access Services > Deafult Network Access > Authorization
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
In previous question we changed AP status to H-REAP and modified switch port states.
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
On 5508-1,2
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
On 5508-3
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
On 5508-4
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
Now add 5508-1, 5508-2, 5508-4 to mobility list of 5508-3 and vice-versa
(example is shown on 5508-1 and 5508-3)
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
On
5508-1,5508-2,5508-4
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
On 5508-3
Goto 5508-3
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
On 5508-1,5508-2,5508-3,5508-4
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
on 5508-1
make it RF leader
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
5. WCS
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
Select the left sidebar menu, choose System->Status->NMSP Connection Status to verify
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
6. WLAN Services
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
CME configuration:
ephone 1
mac xxxx.xxxx.xxxx
type 7925
button 1:x
www.cciewirelesslabs.com www.cciewirelesslabs.com
25-June-2013 1st Release 15-June-2013
www.cciewirelesslabs.com www.cciewirelesslabs.com