Cisco 1240 WLAN-Bridge erstellen

Hallo!

Bin neu hier! Komme gleich zur Sache:

Ich bin grade dabei 2 Cisco Aironet 1240 Access Points über WLAN zu verbinden. Es soll damit eine Richtfunk strecke aufgebaut werden. Es funktioniert so weit, jedoch möchte ich gern mehrere VLANS über die bridge haben. Ich hoffe mir kann hier jemand weiterhelfen.. Achja ist das WLAN mit meiner konfiguration eigentlich genügend geschützt oder sollte ich lieber alles durch einen VPN Tunnel im WLAN schicken.

Als Anhang noch die Konfigurationsparameter:

AP01
!
version 12.4
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
hostname RFK01
!
enable secret 5 $1$uZ37$mU99N4qM158Jqkyu1/ga50
!
username test
clock timezone GTM 1
ip subnet-zero
ip domain name MERDERNET.local
ip name-server 10.0.1.1
ip name-server 10.0.1.1
!
!
no aaa new-model
!
dot11 ssid RFK
authentication open
!
!
bridge irb
!
!
interface Dot11Radio0
no ip address
no ip route-cache
!
ssid RFK
!
short-slot-time
speed basic-1.0 basic-2.0 basic-5.5 6.0 9.0 basic-11.0 12.0 18.0 24.0 36.0 48.0 54.0
channel 2412
station-role root
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
bridge-group 1 spanning-disabled
!
interface FastEthernet0
no ip address
no ip route-cache
duplex auto
speed auto
bridge-group 1
no bridge-group 1 source-learning
bridge-group 1 spanning-disabled
!
interface BVI1
ip address 10.0.1.51 255.255.255.0
no ip route-cache
!
ip default-gateway 10.0.1.200
no ip http server
ip http secure-server
ip http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag
ip radius source-interface BVI1
!
!
control-plane
!
bridge 1 route ip
!
!
!
line con 0
transport preferred all
transport output all
line vty 0 4
login
transport preferred all
transport input all
transport output all
line vty 5 15
login
transport preferred all
transport input all
transport output all
!
sntp server 10.0.1.1
end

AP02

!
version 12.4
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
hostname RFK02
!
enable secret 5 $1$uZ37$mU99N4qM158Jqkyu1/ga50
!
username merkel
clock timezone GTM 1
ip subnet-zero
ip domain name MERDERNET.local
ip name-server 10.0.1.1
ip name-server 10.0.1.1
!
!
no aaa new-model
!
dot11 ssid RFK
authentication open
infrastructure-ssid
!
!
!
bridge irb
!
!
interface Dot11Radio0
no ip address
no ip route-cache
!
ssid RFK
!
short-slot-time
speed basic-1.0 basic-2.0 basic-5.5 6.0 9.0 basic-11.0 12.0 18.0 24.0 36.0 48.0 54.0
station-role workgroup-bridge
bridge-group 1
bridge-group 1 spanning-disabled
!
interface FastEthernet0
no ip address
no ip route-cache
duplex auto
speed auto
bridge-group 1
bridge-group 1 spanning-disabled
!
interface BVI1
ip address 10.0.1.52 255.255.255.0
no ip route-cache
!
ip default-gateway 10.0.1.200
no ip http server
ip http secure-server
ip http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag
ip radius source-interface BVI1
!
!
control-plane
!
bridge 1 route ip
!
!
!
line con 0
transport preferred all
transport output all
line vty 0 4
login
transport preferred all
transport input all
transport output all
line vty 5 15
login
transport preferred all
transport input all
transport output all
!
sntp server 10.0.1.1
end

Please also mark the comments that contributed to the solution of the article

Content-Key: 240390

Url: https://administrator.de/contentid/240390

Printed on: April 20, 2024 at 00:04 o'clock

2 Comments

Latest comment

Mit dem Ausdruck "VLANs über die Bridge haben" meinst du vermutlich 802.1q tagged Frames auf der Bridge zu übertragen, richtig ?
Dafür müssen die Switchports Ports natürlich "tagged" sein !
Leider unterschlägst du genau diese wichtige Info

Cisco supportet aber 802.1q tagged Frames im Bridge Mode problemlos !
Hier findest du einen fertige Konfig zum Abtippen:

http://www.cisco.com/c/en/us/support/docs/wireless/aironet-1100-series/ ...