yorknong 发表于 2018-7-13 10:34:04

Cisco AP base configure-gino

  此设置使用数字证书认证,一个SSID,无子接口。
  aaa new-model
  !
  !
  aaa group server radius rad_eap
  server 10.x.x.x auth-port 1645 acct-port 1646
  !
  aaa group server radius rad_mac
  !
  aaa group server radius rad_acct
  !
  aaa group server radius rad_admin
  !
  aaa group server tacacs+ tac_admin
  !
  aaa group server radius rad_pmip
  !
  aaa group server radius dummy
  !
  aaa authentication login eap_methods group rad_eap
  aaa authentication login mac_methods local
  aaa authorization exec default local
  aaa accounting network acct_methods start-stop group rad_acct
  !
  aaa session-id common
  !
  !
  dot11 syslog
  !
  dot11 ssid XXXX
  authentication open eap eap_methods
  authentication key-management wpa
  guest-mode
  !
  !
  !
  bridge irb
  !
  !
  interface Dot11Radio0
  no ip address
  no ip route-cache
  !
  encryption mode ciphers tkip
  !
  ssid XXXX
  !
  speedbasic-1.0 basic-2.0 basic-5.5 basic-11.0 basic-6.0 basic-9.0 basic-12.0 basic-18.0 basic-24.0 basic-36.0 basic-48.0 basic-54.0
  station-role root
  bridge-group 1
  bridge-group 1 subscriber-loop-control
  bridge-group 1 block-unknown-source
  no bridge-group 1 source-learning
  no bridge-group 1 unicast-flooding
  bridge-group 1 spanning-disabled
  !
  interface FastEthernet0
  no ip address
  no ip route-cache
  duplex auto
  speed auto
  bridge-group 1
  no bridge-group 1 source-learning
  bridge-group 1 spanning-disabled
  !
  interface BVI1
  ip address 10.x.x.x 255.255.255.0
  no ip route-cache
  !
  ip default-gateway 10.x.x.1
  ip http server
  no ip http secure-server
  snmp-server community efeihu RO
  radius-server host 10.x.x.x.x auth-port 1645 acct-port 1646 key xxxxxx
  bridge 1 route ip
  !
  !
  !
  line con 0
  line vty 0 4
  !
  end
页: [1]
查看完整版本: Cisco AP base configure-gino