UniFi多VLAN环境设置实例

综述

 

本文旨在介绍如何在多楼宇、多楼层的大型局域网中,组建多VLAN的有线&无线网络及相关设备的主要设置。

 

组网拓扑

 

组网说明

A座UniFi设备管理VLAN为VLAN 101,无线业务VLAN为VLAN 400和VLAN 401;

B座UniFi设备管理VLAN为VLAN 102,无线业务VLAN为VLAN 500和VLAN 501;

UniFi Controller位于VLAN 3中;

A、B座UniFi switch 和AP 通过DHCP option 43,实现与UniFi Controller之间的L3 adoption。

 

配置说明

核心和汇聚交换机相关配置命令:

核心交换机(Huawei S9300)配置:

vlan 101 A座UniFi设备管理vlan)

vlan 102B座UniFi设备管理vlan)

ip pool 101(pool name)

network 192.168.101.0 mask 255.255.255.0

dns-list 202.102.224.68

gateway-list 192.168.101.1

option 43 hex 0104C0A8030A(L3 adoption详见https://help.ubnt.com/hc/en-us/articles/204909754-UniFi-Layer-3-methods-for-UAP-adoption-and-management#Section_4

 

ip pool 102(pool name)

network 192.168.102.0 mask 255.255.255.0

dns-list 202.102.224.68

gateway-list 192.168.102.1

option 43 hex 0104C0A8030A

 

interface Vlanif 101
ip address 192.168.101.1 24
dhcp select global

 

interface Vlanif 102
ip address 192.168.102.1 24
dhcp select global

 

A座汇聚层交换机(Huawei S5700)配置:

vlan 101

interface GigabitEthernet 1/0/48 (连接UniFi switch的端口)
port link-type trunk

port trunk pvid vlan 101
port trunk permit vlan all

 

B座汇聚层交换机(Huawei S5700)配置:

vlan 102

interface GigabitEthernet 1/0/48 (连接UniFi switch的端口)
port link-type trunk

port trunk pvid vlan 102
port trunk permit vlan all

UniFI Controller主要配置

保持Networks > LAN默认设置

保持UniFi交换机Management VLAN默认设置

新建VLAN 400、401、500、501

SSID映射到对应VLAN