python自动化管理和zabbix监控网络设备(无线AC控制瘦ap配置部分)

已于 2024-03-04 15:20:27 修改
阅读量662 收藏 7
点赞数 6
分类专栏: hw 数通路由&交换 文章标签: 自动化 zabbix 运维
于 2024-02-27 17:45:24 首次发布
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/bmxch/article/details/136328334
版权

目录

前言

拓扑

一、AC-SW1

二、Core-sw1

三、Core-sw2

四、汇聚层

五、AC1

六、SW1-6

七、DMZ区域

前言

具体原理和操作可以访问我的主页视频

白帽小丑的个人空间-白帽小丑个人主页-哔哩哔哩视频

拓扑

一、AC-SW1

sys
sysname AC-SW1
vlan batch 100 200 210 220 230 240 250


stp region-configuration 
region-name huawei
revision-level 1
instance 3 vlan 200 210 220
instance 4 vlan 230 240 250
instance 5 vlan 100
active region-configuration
q

interface gi0/0/1
port link-type trunk
port trunk allow-pass vlan all

interface gi0/0/2
port link-type trunk
port trunk allow-pass vlan all

interface gi0/0/3
port link-type trunk
port trunk allow-pass vlan all

二、Core-sw1

sys
sysname core-sw1
vlan batch 10 20 30 40 50 60 100 
vlan batch 200 210 220 230 240 250 


stp region-configuration 
region-name huawei
revision-level 1
instance 1 vlan 10 20 30
instance 2 vlan 40 50 60
instance 3 vlan 200 210 220
instance 4 vlan 230 240 250
instance 5 vlan 100
active region-configuration
q


stp instance 1 root primary
stp instance 3 root primary
stp instance 5 root primary

stp instance 2 root secondary
stp instance 4 root secondary


inter gi0/0/1
port link trunk
port trunk all vlan all

inter gi0/0/2
port link trunk
port trunk all vlan all

  interface Eth-Trunk 1
  p l t
  p t a v all
  inter gi0/0/3
  eth-trunk 1
  inter gi0/0/4
  eth-trunk 1
q



interface Vlanif 10
ip address 172.16.0.252 23
vrrp vrid 10 virtual-ip 172.16.1.254
vrrp vrid 10 priority 120

interface Vlanif 20
ip address 172.16.2.252 23
vrrp vrid 10 virtual-ip 172.16.3.254
vrrp vrid 10 priority 120

interface Vlanif 30
ip address 172.16.4.252 23
vrrp vrid 10 virtual-ip 172.16.5.254
vrrp vrid 10 priority 120

interface Vlanif 40
ip address 172.16.6.252 23
vrrp vrid 10 virtual-ip 172.16.7.254
vrrp vrid 10 priority 100

interface Vlanif 50
ip address 172.16.8.252 23
vrrp vrid 10 virtual-ip 172.16.9.254
vrrp vrid 10 priority 100

interface Vlanif 60
ip address 172.16.10.252 23
vrrp vrid 10 virtual-ip 172.16.11.254
vrrp vrid 10 priority 100


dhcp enable
ip pool vlan10
network 172.16.0.0 mask 23
gateway-list 172.16.1.254
dns-list 192.168.150.1
excluded-ip-address 172.16.1.1 172.16.1.253
excluded-ip-address 172.16.0.252 172.16.0.253
q

interface Vlanif 10 
dhcp select global
q

ip pool vlan20
network 172.16.2.0 mask 23
gateway-list 172.16.3.254
dns-list 192.168.150.1
excluded-ip-address 172.16.3.1 172.16.3.253
excluded-ip-address 172.16.2.252 172.16.2.253
q

interface Vlanif 20
dhcp select global
q

ip pool vlan30
network 172.16.4.0 mask 23
gateway-list 172.16.5.254
dns-list 192.168.150.1
excluded-ip-address 172.16.5.1 172.16.5.253
excluded-ip-address 172.16.4.252 172.16.4.253
q

interface Vlanif 30 
dhcp select global
q

ip pool vlan40
network 172.16.6.0 mask 23
gateway-list 172.16.7.254
dns-list 192.168.150.1
excluded-ip-address 172.16.7.1 172.16.7.253
excluded-ip-address 172.16.6.252 172.16.6.253
q

interface Vlanif 40
dhcp select global
q

ip pool vlan50
network 172.16.8.0 mask 23
gateway-list 172.16.9.254
dns-list 192.168.150.1
excluded-ip-address 172.16.9.1 172.16.9.253
excluded-ip-address 172.16.8.252 172.16.8.253
q

interface Vlanif 50
dhcp select global
q

ip pool vlan60
network 172.16.10.0 mask 23
gateway-list 172.16.11.254
dns-list 192.168.150.1
excluded-ip-address 172.16.11.1 172.16.11.253
excluded-ip-address 172.16.10.252 172.16.10.253
q

interface Vlanif 60
dhcp select global
q




interface Vlanif 200
ip address 172.200.1.251 23
vrrp vrid 20 virtual-ip 172.200.1.254
vrrp vrid 20 priority 120

interface Vlanif 210
ip address 172.210.3.251 23
vrrp vrid 20 virtual-ip 172.210.3.254
vrrp vrid 20 priority 120

interface Vlanif 220
ip address 172.220.5.251 23
vrrp vrid 20 virtual-ip 172.220.5.254
vrrp vrid 20 priority 120

interface Vlanif 230
ip address 172.230.7.251 23
vrrp vrid 20 virtual-ip 172.230.7.254
vrrp vrid 20 priority 100

interface Vlanif 240
ip address 172.240.9.251 23
vrrp vrid 20 virtual-ip 172.240.9.254
vrrp vrid 20 priority 100

interface Vlanif 250
ip address 172.250.11.251 23
vrrp vrid 20 virtual-ip 172.250.11.254
vrrp vrid 20 priority 100

interface Vlanif 100
ip address 192.168.100.251 24
vrrp vrid 20 virtual-ip 192.168.100.254
vrrp vrid 20 priority 120

  vlan 70
  inter vlan 70
  ip address 10.1.70.1 30
  inter gi0/0/5
  p l ac
  p de vlan 70


inter loop 0
ip address 2.2.2.2 32

router id 2.2.2.2
ospf 1
area 0	
network 10.1.70.0 0.0.0.3
network 172.16.0.0 255.255.254.0
network 172.16.2.0 255.255.254.0
network 172.16.4.0 255.255.254.0
network 172.16.6.0 255.255.254.0
network 172.16.8.0 255.255.254.0
network 172.16.10.0 255.255.254.0
network 172.200.0.0 255.255.254.0
network 172.210.2.0 255.255.254.0
network 172.220.4.0 255.255.254.0
network 172.230.6.0 255.255.254.0
network 172.240.8.0 255.255.254.0
network 172.250.10.0 255.255.254.0
network 192.168.100.0 255.255.255.0
network 2.2.2.2 0.0.0.0 
quit



#无线配置
inter gi0/0/6
port link t
p t a v all


dhcp enable
ip pool vlan200
network 172.200.0.0 mask 23
gateway-list 172.200.1.254
dns-list 192.168.150.1
excluded-ip-address 172.200.1.1 172.200.1.253
q

interface Vlanif 200 
dhcp select global
q

ip pool vlan210
network 172.210.2.0 mask 23
gateway-list 172.210.3.254
dns-list 192.168.150.1
excluded-ip-address 172.210.3.1 172.210.3.253
q

interface Vlanif 210
dhcp select global
q

ip pool vlan220
network 172.220.4.0 mask 23
gateway-list 172.220.5.254
dns-list 192.168.150.1
excluded-ip-address 172.220.5.1 172.220.5.253
q

interface Vlanif 220 
dhcp select global
q

ip pool vlan230
network 172.230.6.0 mask 23
gateway-list 172.230.7.254
dns-list 192.168.150.1
excluded-ip-address 172.230.7.1 172.230.7.253
q

interface Vlanif 230
dhcp select global
q

ip pool vlan240
network 172.240.8.0 mask 23
gateway-list 172.240.9.254
dns-list 192.168.150.1
excluded-ip-address 172.240.9.1 172.240.9.253
q

interface Vlanif 240
dhcp select global
q

ip pool vlan250
network 172.250.10.0 mask 23
gateway-list 172.250.11.254
dns-list 192.168.150.1
excluded-ip-address 172.250.11.1 172.250.11.253
q

interface Vlanif 250
dhcp select global
q


ip pool vlan100
network 192.168.100.0 mask 24
gateway-list 192.168.100.254
dns-list 192.168.150.1
excluded-ip-address 192.168.100.126 192.168.100.253
q


interface Vlanif 100
dhcp select global
q


inter gi0/0/6
port link trunk
port trunk allow vlan all

三、Core-sw2

sys
sysname core-sw2
vlan batch 10 20 30 40 50 60 100 
vlan batch 200 210 220 230 240 250 
 
 
stp region-configuration 
region-name huawei
revision-level 1
instance 1 vlan 10 20 30
instance 2 vlan 40 50 60
instance 3 vlan 200 210 220
instance 4 vlan 230 240 250
instance 5 vlan 100
active region-configuration
q
 
 
stp instance 1 root secondary
stp instance 3 root secondary
stp instance 5 root secondary
 
stp instance 2 root primary
stp instance 4 root primary
 
 
 
inter gi0/0/1
port link trunk
port trunk all vlan all
 
inter gi0/0/2
port link trunk
port trunk all vlan all
 
  interface Eth-Trunk 1
  p l t
  p t a v all
  inter gi0/0/3
  eth-trunk 1
  inter gi0/0/4
  eth-trunk 1
 
 
 

 
 
interface Vlanif 10
ip address 172.16.0.253 23
vrrp vrid 10 virtual-ip 172.16.1.254
vrrp vrid 10 priority 100
 
interface Vlanif 20
ip address 172.16.2.253 23
vrrp vrid 10 virtual-ip 172.16.3.254
vrrp vrid 10 priority 100
 
interface Vlanif 30
ip address 172.16.4.253 23
vrrp vrid 10 virtual-ip 172.16.5.254
vrrp vrid 10 priority 100
 
interface Vlanif 40
ip address 172.16.6.253 23
vrrp vrid 10 virtual-ip 172.16.7.254
vrrp vrid 10 priority 120
 
interface Vlanif 50
ip address 172.16.8.253 23
vrrp vrid 10 virtual-ip 172.16.9.254
vrrp vrid 10 priority 120
 
interface Vlanif 60
ip address 172.16.10.253 23
vrrp vrid 10 virtual-ip 172.16.11.254
vrrp vrid 10 priority 120
 
 
dhcp enable
ip pool vlan10
network 172.16.0.0 mask 23
gateway-list 172.16.1.254
dns-list 192.168.150.1
excluded-ip-address 172.16.0.1 172.16.0.254
q
 
interface Vlanif 10 
dhcp select global
q
 
ip pool vlan20
network 172.16.2.0 mask 23
gateway-list 172.16.3.254
dns-list 192.168.150.1
excluded-ip-address 172.16.2.1 172.16.2.254
q
 
interface Vlanif 20
dhcp select global
q
 
ip pool vlan30
network 172.16.4.0 mask 23
gateway-list 172.16.5.254
dns-list 192.168.150.1
excluded-ip-address 172.16.4.1 172.16.4.254
q
 
interface Vlanif 30 
dhcp select global
q
 
ip pool vlan40
network 172.16.6.0 mask 23
gateway-list 172.16.7.254
dns-list 192.168.150.1
excluded-ip-address 172.16.6.1 172.16.6.254
q
 
interface Vlanif 40
dhcp select global
q
 
ip pool vlan50
network 172.16.8.0 mask 23
gateway-list 172.16.9.254
dns-list 192.168.150.1
excluded-ip-address 172.16.8.1 172.16.8.254
q
 
interface Vlanif 50
dhcp select global
q
 
ip pool vlan60
network 172.16.10.0 mask 23
gateway-list 172.16.11.254
dns-list 192.168.150.1
excluded-ip-address 172.16.10.1 172.16.10.254
q
 
interface Vlanif 60
dhcp select global
q
 
 
 
interface Vlanif 200
ip address 172.200.1.252 23
vrrp vrid 20 virtual-ip 172.200.1.254
vrrp vrid 20 priority 100
 
interface Vlanif 210
ip address 172.210.3.252 23
vrrp vrid 20 virtual-ip 172.210.3.254
vrrp vrid 20 priority 100
 
interface Vlanif 220
ip address 172.220.5.252 23
vrrp vrid 20 virtual-ip 172.220.5.254
vrrp vrid 20 priority 100
 
interface Vlanif 230
ip address 172.230.7.252 23
vrrp vrid 20 virtual-ip 172.230.7.254
vrrp vrid 20 priority 120
 
interface Vlanif 240
ip address 172.240.9.252 23
vrrp vrid 20 virtual-ip 172.240.9.254
vrrp vrid 20 priority 120
 
interface Vlanif 250
ip address 172.250.11.252 23
vrrp vrid 20 virtual-ip 172.250.11.254
vrrp vrid 20 priority 120
 
interface Vlanif 100
ip address 192.168.100.252 24
vrrp vrid 20 virtual-ip 192.168.100.254
vrrp vrid 20 priority 100
 
 
 
  vlan 80
  inter vlan 80
  ip address 10.1.80.1 30
 
 
  inter gi0/0/5
  p l ac
  p de vlan 80
 
 
inter loop 0
ip address 3.3.3.3 32
 
router id 3.3.3.3
ospf 1
silent-interface Vlanif 10
silent-interface Vlanif 20
silent-interface Vlanif 30
silent-interface Vlanif 40
silent-interface Vlanif 50
silent-interface Vlanif 60
silent-interface Vlanif 200
silent-interface Vlanif 210
silent-interface Vlanif 220
silent-interface Vlanif 230
silent-interface Vlanif 240
silent-interface Vlanif 250
silent-interface Vlanif 100
area 0
network 10.1.80.0 0.0.0.3
network 172.16.0.0 255.255.254.0
network 172.16.2.0 255.255.254.0
network 172.16.4.0 255.255.254.0
network 172.16.6.0 255.255.254.0
network 172.16.8.0 255.255.254.0
network 172.16.10.0 255.255.254.0
network 172.200.0.0 255.255.254.0
network 172.210.2.0 255.255.254.0
network 172.220.4.0 255.255.254.0
network 172.230.6.0 255.255.254.0
network 172.240.8.0 255.255.254.0
network 172.250.10.0 255.255.254.0
network 192.168.100.0 255.255.255.0
network 3.3.3.3 0.0.0.0 
q
 
#无线配置

inter gi0/0/6
port link trunk
port trunk allow vlan all

dhcp enable
ip pool vlan200
network 172.200.0.0 mask 23
gateway-list 172.200.1.254
dns-list 192.168.150.1
excluded-ip-address 172.200.1.251 172.200.1.253
excluded-ip-address 172.200.0.1 172.200.0.254
q

interface Vlanif 200 
dhcp select global
q

ip pool vlan210
network 172.210.2.0 mask 23
gateway-list 172.210.3.254
dns-list 192.168.150.1
excluded-ip-address 172.210.3.251 172.210.3.253
excluded-ip-address 172.210.2.1 172.210.2.254
q

interface Vlanif 210
dhcp select global
q

ip pool vlan220
network 172.220.4.0 mask 23
gateway-list 172.220.5.254
dns-list 192.168.150.1
excluded-ip-address 172.220.5.251 172.220.5.253
excluded-ip-address 172.220.4.1 172.220.4.254
q

interface Vlanif 220 
dhcp select global
q

ip pool vlan230
network 172.230.6.0 mask 23
gateway-list 172.230.7.254
dns-list 192.168.150.1
excluded-ip-address 172.230.7.251 172.230.7.253
excluded-ip-address 172.230.6.1 172.230.6.254
q

interface Vlanif 230
dhcp select global
q

ip pool vlan240
network 172.240.8.0 mask 23
gateway-list 172.240.9.254
dns-list 192.168.150.1
excluded-ip-address 172.240.9.251 172.240.9.253
excluded-ip-address 172.240.8.1 172.240.8.254
q

interface Vlanif 240
dhcp select global
q

ip pool vlan250
network 172.250.10.0 mask 23
gateway-list 172.250.11.254
dns-list 192.168.150.1
excluded-ip-address 172.250.11.251 172.250.11.253
excluded-ip-address 172.250.10.1 172.250.10.254
q

interface Vlanif 250
dhcp select global
q


ip pool vlan100
network 192.168.100.0 mask 24
gateway-list 192.168.100.254
dns-list 192.168.150.1
excluded-ip-address 192.168.100.1 192.168.100.125
excluded-ip-address 192.168.100.251 192.168.100.253
q

interface Vlanif 100
dhcp select global
q

四、汇聚层

汇聚层配置见python自动化管理和zabbix监控网络设备(有线网络和路由配置部分)-CSDN博客的汇聚层的sum-sw1-2两台设备配置

五、AC1

sys
sysname AC1
vlan batch 100 200 210 220 230 240 250


stp region-configuration 
region-name huawei
revision-level 1
instance 3 vlan 200 210 220
instance 4 vlan 230 240 250
instance 5 vlan 100
active region-configuration
q


interface Vlanif 200
ip address 172.200.1.253 23


interface Vlanif 210
ip address 172.210.3.253 23


interface Vlanif 220
ip address 172.220.5.253 23


interface Vlanif 230
ip address 172.230.7.253 23


interface Vlanif 240
ip address 172.240.9.253 23


interface Vlanif 250
ip address 172.250.11.253 23


interface Vlanif 100
ip address 192.168.100.253 24

inter gi0/0/1
port link trun
port trun a vlan all
quit


wlan
ap auth-mode no-auth
quit
capwap source ip-address 192.168.100.253


wlan
ap-mac 00e0-fc21-40b0
ap-name RA1_AP

ap-mac 00e0-fc70-64c0
ap-name RA2_AP

ap-mac 00e0-fc37-3860
ap-name HL_AP

ap-mac 00e0-fcab-0a90
ap-name CF_AP

ap-mac 00e0-fc7f-5cc0
ap-name DI_AP

ap-mac 00e0-fc19-4ff0
ap-name ET_AP


wlan
ap-group name RA1
regulatory-domain-profile defualt
Y
ap-group name RA2
regulatory-domain-profile defualt
Y
ap-group name HL
regulatory-domain-profile defualt
Y
ap-group name CF
regulatory-domain-profile defualt
Y
ap-group name DI
regulatory-domain-profile defualt
Y
ap-group name ET
regulatory-domain-profile defualt
Y


ap-name RA1_AP
ap-group RA1
Y
quit

ap-name RA2_AP
ap-group RA2
Y
quit

ap-name HL_AP
ap-group HL
Y
quit

ap-name CF_AP
ap-group CF
Y
quit

ap-name DI_AP
ap-group DI
Y
quit

ap-name ET_AP
ap-group ET
Y
quit


#RA1调优
wlan
security-profile name RA1
security wpa2 psk pass-phrase Aa1bB2Cc3 aes
quit

wlan
ssid-profile name Room_Area1
ssid Room_Area1
quit

wlan
vap-profile name Room_Area1
security-profile RA1
ssid-profile Room_Area1
forward-mode tunnel
service-vlan vlan-id 200
quit

#开启4G和5G频段

wlan
ap-name RA1_AP
vap-profile Room_Area1 wlan 1 radio 0
vap-profile Room_Area1 wlan 1 radio 1

quit





wlan
security-profile name RA2
security wpa2 psk pass-phrase De4FgH5iJ aes
quit

wlan
ssid-profile name Room_Area2
ssid Room_Area2
quit

wlan
vap-profile name Room_Area2
security-profile RA2
ssid-profile Room_Area2
forward-mode tunnel
service-vlan vlan-id 210
quit

开启4G和5G频段

wlan
ap-name RA2_AP
vap-profile Room_Area2 wlan 1 radio 0
vap-profile Room_Area2 wlan 1 radio 1

quit


HL_AP

wlan
security-profile name HL_AP
security wpa2 psk pass-phrase K6lLmNo7P aes
quit

wlan
ssid-profile name Hotel_Lobby
ssid Hotel_Lobby
quit

wlan
vap-profile name Hotel_Lobby
security-profile HL_AP
ssid-profile Hotel_Lobby
forward-mode tunnel
service-vlan vlan-id 220
quit

开启4G和5G频段


wlan
ap-name HL_AP
vap-profile Hotel_Lobby wlan 1 radio 0
vap-profile Hotel_Lobby wlan 1 radio 1

quit


流量限速,上行和下行限速为3M
traffic-profile name wlan-traffic-HL_AP
rate-limit client down 3000     
rate-limit client up 3000
vap-profile name HL_AP
traffic-profile wlan-traffic-HL_AP

禁止低速率
ap-name HL_AP
radio-2g-profile name 0
dot11bg basic-rate 6 9 
ap-name HL_AP
radio-5g-profile name 0
dot11a basic-rate 6 9 
q

CF_AP

wlan
security-profile name CF_AP
security wpa2 psk pass-phrase Qr8sT9uUv aes
quit

wlan
ssid-profile name Conference
ssid Conference
quit

wlan
vap-profile name Conference
security-profile CF_AP
ssid-profile Conference
forward-mode tunnel
service-vlan vlan-id 230
quit

开启4G和5G频段

wlan
ap-name CF_AP
vap-profile Conference wlan 1 radio 0
vap-profile Conference wlan 1 radio 1

quit


流量限速,上行和下行限速为3M
traffic-profile name wlan-traffic-CF_AP
rate-limit client down 3000     
rate-limit client up 3000
vap-profile name CF_AP
traffic-profile wlan-traffic-CF_AP

禁止低速率
ap-name CF_AP
radio-2g-profile name 0
dot11bg basic-rate 6 9 
ap-name CF_AP
radio-5g-profile name 0
dot11a basic-rate 6 9 

DI_AP
wlan
security-profile name DI_AP
security wpa2 psk pass-phrase Wx5Yz6A7B aes
quit

wlan
ssid-profile name Dining
ssid Dining
quit

wlan
vap-profile name Dining
security-profile DI_AP
ssid-profile Dining
forward-mode tunnel
service-vlan vlan-id 240
quit

开启4G和5G频段

wlan
ap-name DI_AP
vap-profile Dining wlan 1 radio 0
vap-profile Dining wlan 1 radio 1

quit


流量限速,上行和下行限速为3M
traffic-profile name wlan-traffic-DI_AP
rate-limit client down 3000     
rate-limit client up 3000
vap-profile name DI_AP
traffic-profile wlan-traffic-DI_AP

禁止低速率
ap-name DI_AP
radio-2g-profile name 0
dot11bg basic-rate 6 9 
ap-name DI_AP
radio-5g-profile name 0
dot11a basic-rate 6 9 
q

ET_AP
wlan
security-profile name ET_AP
security wpa2 psk pass-phrase Wx5Yz6A7B aes
quit

wlan
ssid-profile name Entertainment
ssid Entertainment
quit

wlan
vap-profile name Entertainment
security-profile ET_AP
ssid-profile Entertainment
forward-mode tunnel
service-vlan vlan-id 250
quit

开启4G和5G频段

wlan
ap-name ET_AP
vap-profile Entertainment wlan 1 radio 0
vap-profile Entertainment wlan 1 radio 1

quit


流量限速,上行和下行限速为3M
traffic-profile name wlan-traffic-ET_AP
rate-limit client down 3000     
rate-limit client up 3000
vap-profile name ET_AP
traffic-profile wlan-traffic-ET_AP

禁止低速率
ap-name ET_AP
radio-2g-profile name 0
dot11bg basic-rate 6 9 
ap-name ET_AP
radio-5g-profile name 0
dot11a basic-rate 6 9 
q

六、SW1-6

SW1

system-view
sysname SW1
vlan batch 10 100 200

  inter gi0/0/1
  port link-type trunk
  port trunk allow-pass vlan 10 100 200
  quit

  inter gi0/0/2
  port link-type trunk
  port trunk allow-pass vlan 10 100 200
  quit

  inter gi0/0/3
  port link-type access
  port default vlan 10
  quit


stp region-configuration 
region-name huawei
revision-level 1
instance 1 vlan 10 20 30
instance 2 vlan 40 50 60
instance 3 vlan 200 210 220
instance 4 vlan 230 240 250
instance 5 vlan 100
active region-configuration
q

vlan 200
interface g 0/0/4
port link-type trunk
port trunk allow vlan 100 200
port trunk pvid vlan 100
q

SW2

system-view
sysname SW2
vlan batch 20 100 210

  inter gi0/0/1
  port link-type trunk
  port trunk allow-pass vlan 20 100 210
  quit

  inter gi0/0/2
  port link-type trunk
  port trunk allow-pass vlan 20 100 210
  quit

  inter gi0/0/3
  port link-type access
  port default vlan 20
  quit

stp region-configuration 
region-name huawei
revision-level 1
instance 1 vlan 10 20 30
instance 2 vlan 40 50 60
instance 3 vlan 200 210 220
instance 4 vlan 230 240 250
instance 5 vlan 100
active region-configuration
q

interface g 0/0/4
port link-type trunk
port trunk allow vlan 100 210
port trunk pvid vlan 100
q

SW3

system-view
sysname SW3
vlan batch 30 100 220

  inter gi0/0/1
  port link-type trunk
  port trunk allow-pass vlan 30 100 220
  quit

  inter gi0/0/2
  port link-type trunk
  port trunk allow-pass vlan 30 100 220
  quit

  inter gi0/0/3
  port link-type access
  port default vlan 30
  quit

stp region-configuration 
region-name huawei
revision-level 1
instance 1 vlan 10 20 30
instance 2 vlan 40 50 60
instance 3 vlan 200 210 220
instance 4 vlan 230 240 250
instance 5 vlan 100
active region-configuration
q

interface g 0/0/4
port link-type trunk
port trunk allow vlan 100 220
port trunk pvid vlan 100
q

SW4

system-view
sysname SW4
vlan batch 40 100 230

  inter gi0/0/1
  port link-type trunk
  port trunk allow-pass vlan 40 100 230
  quit

  inter gi0/0/2
  port link-type trunk
  port trunk allow-pass vlan 40 100 230
  quit

  inter gi0/0/3
  port link-type access
  port default vlan 40
  quit

stp region-configuration 
region-name huawei
revision-level 1
instance 1 vlan 10 20 30
instance 2 vlan 40 50 60
instance 3 vlan 200 210 220
instance 4 vlan 230 240 250
instance 5 vlan 100
active region-configuration
q

interface g 0/0/4
port link-type trunk
port trunk allow vlan 100 230
port trunk pvid vlan 100
q

SW5

system-view
sysname SW5
vlan batch 50 100 240

  inter gi0/0/1
  port link-type trunk
  port trunk allow-pass vlan 50 100 240
  quit

  inter gi0/0/2
  port link-type trunk
  port trunk allow-pass vlan 50 100 240
  quit

  inter gi0/0/3
  port link-type access
  port default vlan 50
  quit

stp region-configuration 
region-name huawei
revision-level 1
instance 1 vlan 10 20 30
instance 2 vlan 40 50 60
instance 3 vlan 200 210 220
instance 4 vlan 230 240 250
instance 5 vlan 100
active region-configuration
q

interface g 0/0/4
port link-type trunk
port trunk allow vlan 100 240
port trunk pvid vlan 100
q

SW6

system-view
sysname SW6
vlan batch 60 100 250

  inter gi0/0/1
  port link-type trunk
  port trunk allow-pass vlan 60 100 250
  quit

  inter gi0/0/2
  port link-type trunk
  port trunk allow-pass vlan 60 100 250
  quit

  inter gi0/0/3
  port link-type access
  port default vlan 60
  quit

stp region-configuration 
region-name huawei
revision-level 1
instance 1 vlan 10 20 30
instance 2 vlan 40 50 60
instance 3 vlan 200 210 220
instance 4 vlan 230 240 250
instance 5 vlan 100
active region-configuration
q

interface g 0/0/4
port link-type trunk
port trunk allow vlan 100 250
port trunk pvid vlan 100
q

七、DMZ区域

DMZ区域见python自动化管理和zabbix监控网络设备(有线网络和路由配置部分)-CSDN博客DMZ-SW1配置

白帽小丑
关注
专栏目录
zabbix监控网络设备(华为AC)
qq_39043100的博客
07-29 2920
登陆到华为AC里面开启SNMP协议 版本V3是最好的,我这里选v2c是因为不懂用v3。 之后选择团体管理/组管理,新创建一个团体 然后去测试 [root@test133 ~]# snmpwalk -v 2c -c test20200728 192.168.50.6 格式snmpwalk -v 版本号 -c 团体名字 设备内网IP地址 这样就是开启snmp成功了 然后去https://share.zabbix.com/search?searchword=HUAWEI&search_cat=
Zabbix支持的主要监控方式
热门推荐
cheng10cc的博客
07-12 1万+
Zabbix支持的主要监控方式Zabbix主要有Agent, Trapper, SNMP, JMX, IPMI这几种监控方式,下面主要就监控原理和优缺点介绍一下这几种方式。 Zabbix支持的主要监控方式 Agent监控方式 Trapper监控方式 SNMP监控方式 JMX监控方式 IPMI监控方式 结论Agent监控方式在Agent监控方式下,zabbix-agent会主动收集本机的监控信息并通
zabbix-unifi:使用 Zabbix 监控 Unifi AP
06-06
zabbix-unifi 使用 Zabbix 监控 Unifi AP。 这些存储库包含来自 Sadman 的原始脚本和我的一些更改(单独的分支)。 原始来源可以在找到。 这是安装指南: 将 unifi.conf 包含到您的 Zabbix Agent 配置中 将 perl 矿工脚本推送到 Unifi 设备 将 XML 导入您的 Zabbix 模板 调整 Zabbix 宏以使用正确的用户名和密码 矿工脚本参数: 命令: unifi_miner.pl [-o object] [-i id] [-k key] [-l location] [-s site] [-u username] [-p password] [-v controller_ver] [-a action] [-d debug_level] [-n null_replacer] 参数: -o [ wlan ] Co
CentOS7 部署 Zabbix 监控平台———监控网络设备,Linux 主机、Windows 主机
最新发布
2401_85191843的博客
09-06 1114
R1(config)#snmp-server community 123456 ro #设置被服务器轮询的只读共同体。| 被监控端1(CentOS7) | CentOS7 | VM2 | 192.168.100.120 || 被监控端2(Win7) | Win7 | VM2 | 192.168.100.130 |架构做比较的架构,一般适用于跨机房、跨网络的中型网络架构的监控。1)编辑 Apache 服务针对 Zabbix 的前端配置为。| 主机 | 操作系统 | 网卡 | IP地址 |
zabbix自定义监控项-统计AP在线、离线数量(AC:H3C WX5540H)
夜邢的博客
07-04 2930
zabbix 自定义监控项,监控H3C AC WX5540H AP总数、在线AP数、离线AP数; zabbix使用公式
zabbix使用SNMP监控思科无线控制器WLC
gsls200808的专栏
09-28 5367
本文参考 1.Oid-20180802-Cisco WLC 监控 Client/AP 数,https://blog.csdn.net/u012251305/article/details/81369623 2.Cisco WLC Discovery,https://share.zabbix.com/network_devices/cisco/cisco-wlc-discovery 参考的第二...
zabbix监控ap_h3c交换口流量
weixin_33851604的博客
11-14 1086
安装lamp环境、以及zabbix相关组件 yum -y install gccgcc-c++ libxml2 libxml2-devel net-snmp net-snmp-devel libcurl libssh2httpd php php-devel mysql mysql-server yum -ygroupinstall "Develop...
Python自动化导出zabbix数据并发邮件脚本
12-31
Zabbix没有报表导出的功能,于是通过编写脚本导出zabbix数据并发邮件。效果如下: 下面是脚本,可根据自己的具体情况修改: #!/usr/bin/python` `#coding:utf-8` `import MySQLdb` `import time,datetime` `import...
zabbix 华为网络设备模板
01-15
使用"zabbix 华为网络设备模板",用户不仅可以定制化监控策略,还能享受到Zabbix提供的自动化和扩展性,如触发器联动、自定义脚本、告警通知等。通过与华为设备的深度集成,Zabbix可以帮助企业实现高效、全面的网络...
Zabbix ac6005监控模板
04-21
Zabbix ac6005监控模板 CPU内存 温度 接入的MAC等的监控
监控方案(zabbix,nagios,cacti)
01-26
这是我们公司线上生产环境的监控方案,zabbix,nagios,cacti的安装部署以及主要功能,优缺点等,已实践!!!
Zabbix如何通过ssh监控获取网络设备数据
09-29
主要介绍了Zabbix如何通过ssh监控获取网络设备数据,文中通过示例代码介绍的非常详细,对大家的学习或者工作具有一定的参考学习价值,需要的朋友可以参考下
掌控无线网络,尽在Python之下:WiFiControl库
gitblog_00068的博客
06-26 409
掌控无线网络,尽在Python之下:WiFiControl库 pywificontrolPython API to control Wi-Fi connectivity项目地址:https://gitcode.com/gh_mirrors/py/pywificontrol 1、项目介绍 WiFiControl 是一个简单的Python库,专为控制设备的无线连接而设计。它允许您在客户端模式和热点模...
Zabbix6.2利用模板和自定义监控监控华为AR3260路由器
WINDOWS SERVER 2003使用组策略禁用U盘
03-09 3032
5:根据实际情况输入主机名称,可见名称,我用的模板是Zabbix自带的Huawei VRP by SNMP模板,主机和群组可以用系统自带的也可以自己新建。32:监控项选择之前建立的温度监控项,功能可以选择的很多最后的值,平均值等根据实际情况选择,结果我们选择大于35度报警,为了测试。23:名称根据实际情况取,类型选择SNMP代理,键值可以随意输入英文它不起什么作用,SNMP OID输入之前取得的OID值,然后点击测试。7:IP地址输入路由器的IP地址,其它的信息都不需要更改,然后点击添加。
zabbx监控之添加监控主机
第一天
05-20 318
登录zabbix管理后台 创建群组 选择配置> 主机> 创建群组 首先创建一个群组,方面后面把主机添加到这个群组中,不创建也行,选择默认的群组 创建主机 选择配置> 主机> 创建主机 填写主机名称,主机名称为 zabbix-agent配置中添加的hostname agent代理程序的接口IP地址填写zabbix-agent 的地址即可,点击确定即可 群组,选择上面创建...
zabbix——实现高效网络监控
XX_HK的博客
12-13 1277
其中,Zabbix是一个功能强大且开源的网络监控工具,被广泛应用于各种规模的企业和组织中。本文将介绍如何使用Zabbix来实现高效的网络监控zabbix监控架构在实际监控架构中,zabbix根据网络环境、监控规模等 分了如下两种架构: server-client 、server-proxy-client。看到上面的界面我们zabbix监控系统的server平台就搭建成功了,接下来我们就可以配置agent端了。说了这么多关于zabbix的理论知识,接下来我们就开始搭建zabbix监控系统平台吧。
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包

打赏作者

白帽小丑

你的鼓励将是我创作的最大动力

¥1 ¥2 ¥4 ¥6 ¥10 ¥20
扫码支付:¥1
获取中
扫码支付

您的余额不足,请更换扫码支付或充值

打赏作者

实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值