华为无线AP三层注册上线

1、拓扑

2、AC配置

vlan batch 10 20 100 200

interface GigabitEthernet0/0/1
 port link-type trunk
 port trunk allow-pass vlan 20

ip route-static 192.168.100.0 255.255.255.0 192.168.20.1
#
capwap source interface vlanif20

WLAN

 ap auth-mode no-auth
 ap-confirm  all
 ssid-profile name ssid
  ssid yiqing

 security-profile name secu
  security wpa-wpa2 psk pass-phrase %^%#;TLG.VJir3{%;|2sng}UxCLnF%d*-E>M+i.p"FoL
%^%# aes-tkip

 vap-profile name vap1
  service-vlan vlan-id 200
  ssid-profile ssid
  security-profile secu

 ap-group name default
  radio 0
   vap-profile vap1 wlan 1
  radio 1
   vap-profile vap1 wlan 1
  radio 2
   vap-profile vap1 wlan 1

 3、交换机CE1配置

vlan batch 20 100 200
#
dhcp enable
#
vlan 100
 description ap-vlan
#
vlan 200
 description sta-vlan

ip pool vlan100
 gateway-list 192.168.100.254 
 network 192.168.100.0 mask 255.255.255.0
 dns-list 223.5.5.5 
 option 43 sub-option 3 ascii 192.168.20.2
#
ip pool vlan200
 gateway-list 192.168.200.254 
 network 192.168.200.0 mask 255.255.254.0
 dns-list 223.5.5.5 
#
interface Vlanif20
 ip address 192.168.20.1 255.255.255.252
#
interface Vlanif100
 ip address 192.168.100.254 255.255.255.0
#
interface Vlanif200
 ip address 192.168.200.254 255.255.254.0

interface GE1/0/0
 undo shutdown
 port link-type trunk
 port trunk allow-pass vlan 20
#
interface GE1/0/1
 undo shutdown
 port link-type trunk
 port trunk allow-pass vlan 100 200

4、接入交换机配置

vlan batch 100 200

interface GigabitEthernet0/0/1
 port hybrid pvid vlan 100
 port hybrid tagged vlan 200
 port hybrid untagged vlan 100
 stp edged-port enable
#
interface GigabitEthernet0/0/2
 port hybrid pvid vlan 100
 port hybrid tagged vlan 200
 port hybrid untagged vlan 100
 stp edged-port enable
#
interface GigabitEthernet0/0/3
 port link-type trunk
 port trunk allow-pass vlan 100 200

5、AP上线流程

AP上上线流程
(1)、AP获取IP地址

(2)、AP发送discover request  #寻找AC
(3)、AC回复discover response #回应AP

(4)、  DTLS connect  AP和AC建立DTLS连接
(5)、AP发送join request   #加入请求
(6)、AC join response     #加入回应  此包中携带希望AP的软件版本，如果AP当前的版本和AC期望版本不一致会进行升级，升级完成之后AP重启
(7)、image date  #AP下载升级版本(第一次会更新)
(8)、AP configiation status request   #AP请求下发配置
(9)、AC configiation status response   #AC下发配置回应
(10)、 AP change state event  request  #AP请求改变状态
(11)、AC change state  event response   #AC回应改变状态

维持capwap隧道
(12)、keep alive   
(13)、keep alive
(14)、echo request
(15)、echo response

配置改变更新
(16)、configuration update request  #AC发送更新配置请求
(17)、configuration update response   #AP响应更新配置请求