Topology
The topology can be saved locally, and then enlarged to view, so that it can be seen more clearly. (Drag to a new window to open it)
Solve the problem of low rate and low signal restricting user access and offline
This function is suitable for scenarios where the overall signal coverage of the WLAN network is good, and the low-signal or low-rate STAs at the edge of the coverage area are restricted from accessing the WLAN network.
The other is the offline function, that is, in the case of intensive WLAN deployment, it can detect users with weak automatic offline signals and low speed records, so that they can associate with a better WLAN network.
Specific placement
[AC6605-wlan-view]radio-profile id 2
[AC6605-wlan-radio-prof-5G]sta-access-limit signal-strength enable
[AC6605-wlan-radio-prof-5G]sta-access-limit signal- Strength threshold -80
Description: The access function for users with weak signal is turned on, if the user whose -80dBm is not reached, the access will be denied.
[AC6605-wlan-radio-prof-5G]sta-access-limit rate enable
[AC6605-wlan-radio-prof-5G]sta-access-limit rate rate-value rate_11
Description: This function is to enable low rate to refuse access Access function, if the rate is lower than 11M, access is denied
[AC6605-wlan-radio-prof-5G]sta-forced-offline signal-strength switch enable
[AC6605-wlan-radio-prof-5G]sta-forced-offline signal-strength threshold -90
Description: This function is enabled Low signal let users offline function, when the signal is lower than -90dBm, the user will be automatically disassociated
[AC6605-wlan-radio-prof-5G]sta-forced-offline rate switch enable
[AC6605-wlan-radio-prof-5G]sta-forced-offline rate rate-value 10
Description, this function is to enable the low rate User offline function, when the rate is reduced by 10% of the normal rate, the user will be automatically disassociated
8.6.8 Implementation of Load Balancing
The role of load balancing is when the enterprise deploys a wireless network, but the customer is always used to connecting to the first SSID, causing the AP to be busy, while the surrounding APs are very idle, which will not achieve the maximum utilization of resources, and will also cause frequent drops. Line, it is more likely to cause the AP to crash and restart directly. The realization of load balancing is that the AP periodically reports the number of users or traffic bearers associated with the AC to the AC. The AC uses parameters to define whether the newly connected client is associated with the AP. If the AP is checked that the threshold has exceeded the threshold, The AP will be told to reject the client association, and thus associate with other SSIDs, or automatically associate with other SSIDs, and the client will not feel it.
Load balancing mode is divided into static and dynamic
1. If it is static, it is considered that the APs that need load balancing are manually added to a group, and then the AC implements load balancing for these APs according to the load balancing algorithm.
2. If it is dynamic, you only need to enable it. Before accessing the AP, the client sends a broadcast Probe Request message to scan the surrounding APs. After the AP receives the STA detection signal, it reports to the AC. The AC dynamically forms a group of all APs reporting the client, and then determines whether to allow the client to access according to the load balancing group algorithm.
Load balancing methods are divided into session-based or traffic-based
1. Based on the session, it is based on the defined threshold, and the AC load balancing algorithm is used to determine whether the AP exceeds the threshold. If it exceeds, the client is notified to associate with another AP to access.
2. Based on the flow, the flow threshold is defined. When the flow processed by the AP has exceeded the defined threshold, the client is notified to associate with another AP to access.
Note: As for which one to use depends on the actual situation. For example, if there are few AP deployments, you can use static configuration. If there are too many APs, you must deploy dynamic ones, because static has many restrictions.
In our environment, we can use static deployment, such as deploying multiple APs in the visitor hall, but we don't want a situation where one AP is overloaded while other APs are not used.
[AC6605]wlan
[AC6605-wlan-view]load-balance-group name guest
[AC6605-wlan-load-group-guest]member ap-id 1 radio-id 0
[AC6605-wlan-load-group-guest]member ap-id 2 radio-id 0
[AC6605-wlan-load-group-guest]session gap 20
[AC6605-wlan-load-group-guest]associate-threshold 10
Description: A load balancing group is defined, and then the AP is associated 1 and AP 2 are bound with radio frequency. The session-based is enabled here. If the user association difference between AP 1 and AP 2 is greater than 20%, the AC will tell the following AP to automatically associate the client with the lighter load Above the AP.
[AC6605-wlan-load-group-guest]
Of course, traffic gap can also be enabled based on traffic. After the difference, it will automatically load balance to other APs, which can be determined according to your own specific environment.
Points to note about static load balancing
l All APs in a load balancing group must work in the same frequency band (for example, 2.4G or 5G).
l An AP's radio can only be added to one load balancing group. If it is a multi-frequency AP,
load balancing is achieved between APs of the same radio frequency . In other words, a dual-band AP can join two load balancing groups at the same time.
l The working channels of members (that is, AP radios) in the same load balancing group must be different.
l Each load balancing group has limited members and supports up to three.
l When configuring load balancing, all APs that need to be configured with load balancing must be configured in the same AP domain and on the same AC
By the way, the configuration of dynamic load balancing
[AC6605] wlan
[AC6605-wlan-view] sta-load-balance enable
[AC6605-wlan-view] sta-load-balance mode session
[AC6605-wlan-view] sta-load- balance session gap 20
[AC6605-wlan-view] sta-load-balance associate-threshold 5
[AC6605-wlan-view] sta-load-balance enable
Description: The dynamic load balancing function is enabled and it is session-based. When the AP When there is a 20% difference, it will be associated with other APs. This is very useful in the case of medium and large WLAN deployments.
8.6.9 Final Wireless Summary
Regarding the realization of wireless, a large part of it is actually defined on the AC. In the case of APs, the main points are to pay attention to several points. One is whether the AC can establish a CAWAP tunnel. This is very important. The second layer is on the same network segment and the same VLAN is enough, while the layer 3 can only be achieved through DHCP Option 43, and most of the AC configuration can be called repeatedly, just need to clarify the idea. The key is that the VLAN of the layer 2 network is released, and you need to consider whether it is If roaming exists, which VLANs need to be released, such as wired and wireless traffic, management traffic, etc., including those connected to the uplink. And some isolation technologies can be deployed on the AC, of course, can also be deployed on the gateway, it is recommended to deploy on the AC, because the traffic can be dried directly on the AP, there is no need to send it to the core layer.
It is also recommended that the wireless traffic is distinguished from the priority traffic, and multiple VLANs can be divided separately, one for Guest and the other for other wireless departments in the intranet. The configuration is the same. Note that the port of the switch is released, etc. problem.
Teaser next Monday
Firewall configuration strategy, NAT, VPN and other technologies, to achieve access to the Internet, branches, and employees on business trips can dial into the company's intranet normally
Depending on the situation, you may only publish one or both of them, depending on whether you have much demand for the series. If you find it useful, you can leave a message, and the blogger will take the time to typeset and organize it.
This article was first published on the public account: Network Road Blog