文档建议反馈控制台
首页
学习
活动
专区
圈层
工具
MCP广场
文章/答案/技术大牛
发布
社区首页 >问答首页 >Cisco Aironet的性能在VLAN中受到了很大的冲击。

Cisco Aironet的性能在VLAN中受到了很大的冲击。
EN

Network Engineering用户
提问于 2016-09-16 12:44:25
回答 2查看 205关注 0票数 3

我管理一个无线网络的50个Aironet 1130 a接入点分布在8个催化剂交换机。这运行非常顺利,直到我不得不使用VLAN标记。现在有无密码的默认(1)和一个新的VLAN (300)与WPA2。

除了VLAN 300路由器所在的网关端口之外,所有交换机的交换机端口都被设置为主干模式。

在这次演习之后,整个网络都慢到了爬行。我缺乏管理VLAN的经验,所以我希望有人能给我一些建议,说明是什么导致了这种影响。

- AP Config --

代码语言:javascript
复制
version 12.4
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
hostname SSH-WL01
!
enable secret 5 ****
!
no aaa new-model
no ip igmp snooping
ip domain name SSH
!
!
no dot11 igmp snooping-helper
dot11 vlan-name Otrum vlan 300
dot11 vlan-name default vlan 1
!
dot11 ssid OpenNet
   vlan 1
   authentication open
   guest-mode
   mbssid guest-mode
   infrastructure-ssid optional
!
dot11 ssid otrum
   vlan 300
   authentication open
   authentication key-management wpa version 2
   mbssid guest-mode
   wpa-psk ascii 7 ****
!
dot11 network-map
power inline negotiation prestandard source
!
!
username admin privilege 15 secret 5 ****
!
bridge irb
!
!
interface Dot11Radio0
 no ip address
 no ip route-cache
 !
 encryption vlan 300 mode ciphers aes-ccm tkip
 !
 ssid OpenNet
 !
 ssid otrum
 !
 mbssid
 station-role root
!
interface Dot11Radio0.1
 encapsulation dot1Q 1 native
 no ip route-cache
 bridge-group 1
 bridge-group 1 subscriber-loop-control
 bridge-group 1 block-unknown-source
 no bridge-group 1 source-learning
 no bridge-group 1 unicast-flooding
 bridge-group 1 spanning-disabled
!
interface Dot11Radio0.300
 encapsulation dot1Q 300
 no ip route-cache
 bridge-group 1
 bridge-group 1 subscriber-loop-control
 bridge-group 1 block-unknown-source
 no bridge-group 1 source-learning
 no bridge-group 1 unicast-flooding
 bridge-group 1 spanning-disabled
!
interface Dot11Radio1
 no ip address
 no ip route-cache
 !
 encryption vlan 300 mode ciphers aes-ccm tkip
 !
 ssid OpenNet
 !
 ssid otrum
 !
 no dfs band block
 mbssid
 speed  basic-6.0 9.0 basic-12.0 18.0 basic-24.0 36.0 48.0 basic-54.0
 channel dfs
 station-role root
!
interface Dot11Radio1.1
 encapsulation dot1Q 1 native
 no ip route-cache
 bridge-group 1
 bridge-group 1 subscriber-loop-control
 bridge-group 1 block-unknown-source
 no bridge-group 1 source-learning
 no bridge-group 1 unicast-flooding
 bridge-group 1 spanning-disabled
!
interface Dot11Radio1.300
 encapsulation dot1Q 300
 no ip route-cache
 bridge-group 1
 bridge-group 1 subscriber-loop-control
 bridge-group 1 block-unknown-source
 no bridge-group 1 source-learning
 no bridge-group 1 unicast-flooding
 bridge-group 1 spanning-disabled
!
interface FastEthernet0
 no ip address
 no ip route-cache
 duplex auto
 speed auto
!
interface FastEthernet0.1
 encapsulation dot1Q 1 native
 no ip route-cache
 bridge-group 1
 no bridge-group 1 source-learning
 bridge-group 1 spanning-disabled
!
interface FastEthernet0.300
 encapsulation dot1Q 300
 no ip route-cache
 bridge-group 255
 no bridge-group 255 source-learning
 bridge-group 255 spanning-disabled
!
interface BVI1
 ip address 172.16.0.1 255.255.0.0
 no ip route-cache
!
ip default-gateway 172.16.254.254
ip http server
no ip http secure-server
ip http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag
snmp-server community SSH RO
snmp-server location Badehuset
bridge 1 route ip
!
!
!
line con 0
line vty 0 4
 login local
!

end

-开关Config --

代码语言:javascript
复制
version 12.2
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname ssh-sw01
!
boot-start-marker
boot-end-marker
!
enable secret 5 ****
enable password ****
!
username admin privilege 15 secret 5 ****
no aaa new-model
system mtu routing 1500
ip subnet-zero
!
!
ip domain-name ssh.local
cluster enable Cluster1 0
!
!
crypto pki trustpoint TP-self-signed-4237220096
 enrollment selfsigned
 subject-name cn=IOS-Self-Signed-Certificate-4237220096
 revocation-check none
 rsakeypair TP-self-signed-4237220096
!
spanning-tree mode pvst
spanning-tree extend system-id
!
vlan internal allocation policy ascending
!
!
interface FastEthernet0/1
 switchport mode trunk
!
interface FastEthernet0/2
 switchport mode trunk
!
interface FastEthernet0/3
 switchport mode trunk
!
interface FastEthernet0/4
 switchport mode trunk
!
interface FastEthernet0/5
 switchport mode trunk
!
interface FastEthernet0/6
 switchport mode trunk
!
interface FastEthernet0/7
 switchport mode trunk
!
interface FastEthernet0/8
 switchport mode trunk
!
interface FastEthernet0/9
 switchport mode trunk
!
interface FastEthernet0/10
 switchport mode trunk
!
interface FastEthernet0/11
 switchport mode trunk
!
interface FastEthernet0/12
 switchport mode trunk
!
interface FastEthernet0/13
 switchport mode trunk
!
interface FastEthernet0/14
 switchport mode trunk
!
interface FastEthernet0/15
 switchport mode trunk
!
interface FastEthernet0/16
 switchport mode trunk
!
interface FastEthernet0/17
 switchport mode trunk
!
interface FastEthernet0/18
 switchport mode trunk
!
interface FastEthernet0/19
 switchport mode trunk
!
interface FastEthernet0/20
 switchport mode trunk
!
interface FastEthernet0/21
 switchport mode trunk
!
interface FastEthernet0/22
 switchport mode trunk
!
interface FastEthernet0/23
 switchport mode access
!
interface FastEthernet0/24
 switchport access vlan 300
 switchport mode access
!
interface GigabitEthernet0/1
 switchport access vlan 10
 switchport mode access
!
interface GigabitEthernet0/2
 switchport mode trunk
!
interface Vlan1
 ip address 172.16.1.1 255.255.0.0
 no ip route-cache
!
interface Vlan10
 ip address 172.17.1.1 255.255.0.0
 no ip route-cache
!
interface Vlan300
 ip address 172.19.1.1 255.255.0.0
 no ip route-cache
!
ip http server
ip http secure-server
!
snmp-server community public RO
snmp-server community public@es0 RO
!
control-plane
!
line con 0
line vty 0 4
 password ****
 login local
 transport input ssh
line vty 5 15
 password ****
 login
!
end
cisco
vlan
performance
aironet
EN

回答 2

Network Engineering用户

发布于 2017-01-17 02:25:45

在不知道开关是什么模型的情况下,接口上的默认MTU是什么?通常情况下,它们默认为1500,加上vlan标记,您可能会超过这一点。这肯定会以您所描述的方式表现出来。在增加数据包大小时,来自其中一个客户端的ping将告诉您(很可能最后的回复是1496)。

要解释这一点,原因是VLAN头增加了4个字节,这将是一个问题。任何适当大小的流(大部分是包含多个数据包或2)将以1500个字节来自客户机和服务器(以及来自Internet)。这些数据包就会被丢弃。

票数 2
EN

Network Engineering用户

发布于 2016-09-18 23:38:54

在桥接组1中应该有无线电.1和vlan 1。建立桥接组2,并将无线电300和vlan 300的子接口放在其中。这是一个关于桥群的文档

看看这是否有帮助。否则,就从基础开始。信道重叠,功率电平是第一步(射频或物理层的无线)。

票数 0
EN
页面原文内容由Network Engineering提供。腾讯云小微IT领域专用引擎提供翻译支持
原文链接:

https://networkengineering.stackexchange.com/questions/34972

复制
相关文章

相似问题

领券

腾讯云开发者

扫码关注腾讯云开发者

扫码关注腾讯云开发者

领取腾讯云代金券

热门产品

热门推荐

更多推荐

Copyright © 2013 - 2026 Tencent Cloud. All Rights Reserved. 腾讯云 版权所有 

深圳市腾讯计算机系统有限公司 ICP备案/许可证号:粤B2-20090059 粤公网安备44030502008569号

腾讯云计算(北京)有限责任公司 京ICP证150476号 |  京ICP备11018762号

问题归档专栏文章快讯文章归档关键词归档开发者手册归档开发者手册 Section 归档