Empire

Wireless-New
No edit summary
 
(100 intermediate revisions by 2 users not shown)
Line 1: Line 1:
[[Category:IT]]
==Configuration==
==Configuration==
{| class="wikitable"
{| class="wikitable"
!Cisco 1600
!Cisco 1600
|-
|-
!Hostname!! BVI IP !! Location !! Notes
!Hostname!! BVI IP !! MAC Address !!  Location !! Notes
|-
|-
| PDAP-1|| 10.2.1.1 || ||  
| PDAP-1|| [http://10.2.1.1 10.2.1.1] || ac7e.8a9b.e1f0/5897.bddd.7634 || || Root
|-
|-
| PDAP-2|| 10.2.1.2 ||  ||  
| PDAP-2|| [http://10.2.1.2 10.2.1.2] || 5897.bdb5.e6e8 ||  || Root
|-
|-
| PDAP-3|| 10.2.1.3 || ||
| PDAP-3|| [http://10.2.1.3 10.2.1.3] || ac7e.8a9b.d320/ac7e.8aa3.c880 || Regio || Root
|-
|-
| PDAP-4|| 10.2.1.4 || ||  
| PDAP-4|| [http://10.2.1.4 10.2.1.4] || ac7e.8a9b.d790/ac7e.8aa3.ccf0 || monster room ||
|-
|-
| PDAP-5|| 10.2.1.5 || ||  
| PDAP-5|| [http://10.2.1.5 10.2.1.5] || ac7e.8a69.c1c0/ac7e.8a65.c180 || Navarr woods || Root
|-
|-
| PDAP-6|| 10.2.1.6 ||  ||  
| PDAP-6|| [http://10.2.1.6 10.2.1.6] || ac7e.8a9b.d2a0/ac7e.8aa3.c7f0 ||  God || Root
|-
|-
| PDAP-7|| 10.2.1.7 || ||  
| PDAP-7|| [http://10.2.1.7 10.2.1.7] || 5897.bddd.7542 || Navarr toilet || Root
|-
|-
| PDAP-8|| 10.2.1.8 ||  ||  
| PDAP-8|| [http://10.2.1.8 10.2.1.8] || 44ad.d9e5.bce0/44ad.d9e9.bb50 ||  || Repeater
|-
|-
| PDAP-9|| 10.2.1.9 ||   ||
| PDAP-9|| [http://10.2.1.9 10.2.1.9] || ac7e.8a69.be80/ac7e.8a65.be40 || Marches || Repeater
|-
|-
| PDAP-10|| 10.2.1.10 ||  ||
| PDAP-10|| [http://10.2.1.10 10.2.1.10] ||  || || Root
|-
|-
| PDAP-11|| 10.2.1.11 || ||  
| PDAP-11|| [http://10.2.1.11 10.2.1.11] || ac7e.8a9b.d280/ac7e.8aa3.c7d0 || Encounter || Non-root Bridge
|-
|-
| PDAP-12|| 10.2.1.12 || ||
| PDAP-12|| [http://10.2.1.12 10.2.1.12] || ac7e.8a9a.1cc0/ac7e.8aa2.1230 || Server Room || Root Bridge
|-
|-
| PDAP-13|| 10.2.1.13 || ||
| PDAP-13|| [http://10.2.1.13 10.2.1.13] || ac7e.8a9b.df00/ac7e.8aa3.d460 || Hub ||
|-
|-
| PDAP-14|| 10.2.1.14 || ||
| PDAP-14|| [http://10.2.1.14 10.2.1.14] || ac7e.8a69.c250/ac7e.8a65.c210 || Sentinel gate || Root
|-
|-
| PDAP-15|| 10.2.1.15 ||  ||
| PDAP-15|| [http://10.2.1.15 10.2.1.15] || ac7e.8a9b.da30/ac7e.8aa3.cf90 ||  ||
|-
|-
| PDAP-16|| 10.2.1.16 || ||
| PDAP-16|| [http://10.2.1.16 10.2.1.16] || ac7e.8aa8.16e0/ac7e.8aaa.16f0 || ||
|-
|-
| PDAP-17|| 10.2.1.17 || ||
| PDAP-17|| [http://10.2.1.17 10.2.1.17] || 04da.d2cf.a330/04da.d2d1.a150 || MC || Repeater
|-
|-
| PDAP-18|| 10.2.1.18 || ||   
| PDAP-18|| [http://10.2.1.18 10.2.1.18] || ac7e.8a69.b010/5897.bdb5.e6e7 || Bar ||  Repeater
|-
|-
| PDAP-19|| 10.2.1.19 || ||
| PDAP-19|| [http://10.2.1.19 10.2.1.19] || 0c27.24e1.8d10/0c27.24e3.8d00 || Wintermark Toilets || Root
|-
|-
| PDAP-20|| 10.2.1.20 || ||
| PDAP-20|| [http://10.2.1.20 10.2.1.20] || 04da.d28a.0ca0/04da.d28c.0cd0 || Server room || Root
|}
|}


Line 50: Line 50:
!Cisco 702W
!Cisco 702W
|-
|-
!Hostname!! BVI IP !! Location !! Notes
!Hostname!! BVI IP !! MAC addresses !! Location !! Notes
|-
|-
| PDAP-30|| 10.2.1.30 || ||  
| PDAP-30|| [http://10.2.1.30 10.2.1.30] || bcf1.f276.a7e0/bcf1.f276.a7f0 || ||
|-
|-
| PDAP-31|| 10.2.1.31 || ||  
| PDAP-31|| [http://10.2.1.31 10.2.1.31] || bcf1.f276.a920/bcf1.f276.a930 || || ||
|-
|-
| PDAP-32|| 10.2.1.32 ||  ||  
| PDAP-32|| [http://10.2.1.32 10.2.1.32] ||  || || ||
|-
|-
| PDAP-33|| 10.2.1.33 ||  ||
| PDAP-33|| [http://10.2.1.33 10.2.1.33] ||  || || ||
|-
|-
| PDAP-34|| 10.2.1.34 || ||  
| PDAP-34|| [http://10.2.1.34 10.2.1.34] || 0038.df45.4cc0/0038.df45.4cd0 || || ||
|-
|-
| PDAP-35|| 10.2.1.35 || ||  
| PDAP-35|| [http://10.2.1.35 10.2.1.35] || 0038.df42.c440/0038.df42.c450 || Matt Cave || ||
|-
|-
| PDAP-36|| 10.2.1.36 || ||  
| PDAP-36|| [http://10.2.1.36 10.2.1.36] || bcf1.f276.b1a0/bcf1.f276.b1b0 || Server room interior || ||
|-
|-
| PDAP-37|| 10.2.1.37 ||  ||  
| PDAP-37|| [http://10.2.1.37 10.2.1.37] ||  || ||
|-
|-
| PDAP-38|| 10.2.1.38 ||  ||  
| PDAP-38|| [http://10.2.1.38 10.2.1.38] || bcf1.f276.aaa0/bcf1.f276.aab0 ||  Plot cave ||
|-
|-
| PDAP-39|| 10.2.1.39 ||   ||   
| PDAP-39|| [http://10.2.1.39 10.2.1.39] || d42c.44d3.6960/d42c.44d3.6970  ||  ||
|-
|-
|}
|}


=Config file 1600=
{| class="wikitable"
Dot11 ssid PDCREW<br />
!Ubiquiti LBE-5AC-Gen2
authentication open<br />
|-
authentication key-management wpa<br />
!Hostname!! IP !! MAC Address !! Mode !! Location !! Notes
wpa-psk ascii ******<br />
|-
Guest-mode<br />
| PDBR-1 || [https://10.3.1.1 10.3.1.1] || 24:5A:4C:3C:1B:AD || AP PtP || Server room || -> Matt cave ||
Exit<br />
|-
<br />
| PDBR-2 || [https://10.3.1.2 10.3.1.2] || 70:A7:41:44:2B:59  || Station PtP || Matt cave ||
Dot11 ssid PD_BACK<br />
|-
authentication open<br />
| PDBR-5 || [https://10.3.1.5 10.3.1.5] || 70:A7:41:44:29:D8  || AP PtP || Server room || -> Navar ||
authentication key-management wpa<br />
|-
wpa-psk ascii ******<br />
| PDBR-6 || [https://10.3.1.6 10.3.1.6] || 70:A7:41:44:3C:28 || Station PtP || Navar toilets ||
infrastructure-ssid optional<br />
|-
Exit<br />
| PDBR-7 || [https://10.3.1.7 10.3.1.7] || F4:E2:C6:34:81:F4  || AP PtP || Server room || -> RAT ||
<br />
|-
Int dot11 0<br />
| PDBR-8 || [https://10.3.1.8 10.3.1.8] || F4:E2:C6:34:86:83 || Station PtP || RAT ||
world-mode dot11d country-code GB outdoor<br />
|-
speed range<br />
| PDBR-9 || [https://10.3.1.9 10.3.1.8] || F4:E2:C6:34:30:DD || AP PtP || Server room || -> Regio ||
power local maximum<br />
|-
encryption mode ciphers tkip<br />
| PDBR-10 || [https://10.3.1.10 10.3.1.10] || F4:E2:C6:34:88:99 || Station PtP || Regio ||
dot11 extension aironet<br />
|}
ssid PDCREW<br />
 
Stat root access<br />
{| class="wikitable"
No shut<br />
!Ubiquiti NanoBridge M5
Exit<br />
|-
<br />
!Hostname!! IP !! MAC Address !!  Location !! Notes
Int dot11 1<br />
|-
world-mode dot11d country-code GB outdoor<br />
| PDBR-3 || [https://10.3.1.3 10.3.1.3] || 24:A4:3C:B6:16:16 || ||
speed range<br />
|-
power local maximum<br />
| PDBR-4 || [https://10.3.1.4 10.3.1.4] || 24:A4:3C:B6:14:3A || ||
encryption mode ciphers tkip<br />
|}
dot11 extension aironet<br />
 
ssid PDCREW<br />
{| class="wikitable"
ssid PD_BACK<br />
! Switches
station-role root access-point fallback repeater<br />
|-
No shut<br />
!Hostname!! IP !! MAC Address !!  Location !! Notes
Exit<br />
|-
| core-sw-201 || [https://10.1.0.201 10.1.0.201] ||  || ||
|-
| GOD-sw-202 || [https://10.1.0.202 10.1.0.202] || || ||
|}
 
=Configuring 1600=
==PDCREW and PD_PUBLIC on the 2.4GHz radio, PD_BACK on 5GHz for mesh==
# Process, copy the config below, edit it to replace the AP name and BVI address to match. Set the passwords and snmp details
#Connect to the AP via the console port
# `enable` to get control
# `write erase` to clear the existing config
# `reload` confirm when promted. You do not want to copy any changes if asked
# when the AP has restarted, once again `enable`
# `conf t` to enter config mode
# paste in your config
# `write mem` to save the config
# wait for about a minute you should see chatter about the radio doing things
<nowiki>
hostname PDAP-18
!
!
!
dot11 syslog
dot11 vlan-name BACKHAUL vlan 1
dot11 vlan-name CREW vlan 12
dot11 vlan-name PUBLIC vlan 13
!
dot11 ssid PDCREW
  vlan 12
  authentication open
  authentication key-management wpa
  mbssid guest-mode
  wpa-psk ascii *****
!
dot11 ssid PD_BACK
  authentication open
  authentication key-management wpa
  infrastructure-ssid
  wpa-psk ascii *****
!
dot11 ssid PD_PUBLIC
  vlan 13
  authentication open
  mbssid guest-mode
!
!
dot11 network-map
dot11 guest
!
!
bridge irb
!
!
!
interface Dot11Radio0
no ip address
!
encryption vlan 1 mode ciphers tkip
!
encryption vlan 12 mode ciphers tkip
!
ssid PDCREW
!
ssid PD_PUBLIC
!
mbssid
dot11 dot11r pre-authentication over-ds
dot11 dot11r reassociation-time value 200
world-mode dot11d country-code GB outdoor
speed range
power local maximum
station-role root access-point
!
interface Dot11Radio0.1
encapsulation dot1Q 1 native
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 spanning-disabled
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
!
interface Dot11Radio0.12
encapsulation dot1Q 12
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 spanning-disabled
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
!
interface Dot11Radio0.13
encapsulation dot1Q 13
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 spanning-disabled
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
!
interface Dot11Radio1
no ip address
!
encryption mode ciphers tkip
!
ssid PD_BACK
!
world-mode dot11d country-code GB outdoor
speed range
power local maximum
dot11 dot11r pre-authentication over-ds
dot11 dot11r reassociation-time value 200
 
station-role root access-point fallback repeater
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
!
interface GigabitEthernet0
no ip address
no ip route-cache
duplex auto
speed auto
bridge-group 1
bridge-group 1 spanning-disabled
no bridge-group 1 source-learning
!
interface BVI1
ip address 10.2.1.18 255.0.0.0
no ip route-cache
!
snmp-server view dot11view ieee802dot11 included
snmp-server community public view dot11view RO
snmp-server community PDNET RO
snmp-server location LOCATION
snmp-server chassis-id NAME
!
bridge 1 protocol ieee
bridge 1 route ip
!
interface dot11Radio 0
no shut
interface dot11Radio 1
no shut
interface BVI 1
no shut
interface GigabitEthernet0
no shut
 
end
</nowiki>


=Config file 702=
=Config file 702=
Dot11 ssid PDCREW<br />
<nowiki>
authentication open<br />
Dot11 ssid PDCREW
authentication key-management wpa<br />
authentication open
wpa-psk ascii ******<br />
authentication key-management wpa
Guest-mode<br />
wpa-psk ascii ******
Exit<br />
Guest-mode
<br />
Exit
<br />
 
Int dot11 0<br />
Int dot11 0
world-mode dot11d country-code GB outdoor<br />
world-mode dot11d country-code GB outdoor
speed range<br />
speed range
power local maximum<br />
power local maximum
encryption mode ciphers tkip<br />
encryption mode ciphers tkip
dot11 extension aironet<br />
dot11 extension aironet
ssid PDCREW<br />
ssid PDCREW
Stat root access<br />
Stat root access
No shut<br />
No shut
Exit<br />
Exit
<br />
 
Int dot11 1<br />
Int dot11 1
world-mode dot11d country-code GB outdoor<br />
world-mode dot11d country-code GB outdoor
speed range<br />
speed range
power local maximum<br />
power local maximum
encryption mode ciphers tkip<br />
encryption mode ciphers tkip
dot11 extension aironet<br />
dot11 extension aironet
ssid PDCREW<br />
ssid PDCREW
station-role root access-point<br />
station-role root access-point
No shut<br />
No shut
Exit<br />
exit
</nowiki>

Latest revision as of 13:27, 26 April 2024

Configuration

Cisco 1600
Hostname BVI IP MAC Address Location Notes
PDAP-1 10.2.1.1 ac7e.8a9b.e1f0/5897.bddd.7634 Root
PDAP-2 10.2.1.2 5897.bdb5.e6e8 Root
PDAP-3 10.2.1.3 ac7e.8a9b.d320/ac7e.8aa3.c880 Regio Root
PDAP-4 10.2.1.4 ac7e.8a9b.d790/ac7e.8aa3.ccf0 monster room
PDAP-5 10.2.1.5 ac7e.8a69.c1c0/ac7e.8a65.c180 Navarr woods Root
PDAP-6 10.2.1.6 ac7e.8a9b.d2a0/ac7e.8aa3.c7f0 God Root
PDAP-7 10.2.1.7 5897.bddd.7542 Navarr toilet Root
PDAP-8 10.2.1.8 44ad.d9e5.bce0/44ad.d9e9.bb50 Repeater
PDAP-9 10.2.1.9 ac7e.8a69.be80/ac7e.8a65.be40 Marches Repeater
PDAP-10 10.2.1.10 Root
PDAP-11 10.2.1.11 ac7e.8a9b.d280/ac7e.8aa3.c7d0 Encounter Non-root Bridge
PDAP-12 10.2.1.12 ac7e.8a9a.1cc0/ac7e.8aa2.1230 Server Room Root Bridge
PDAP-13 10.2.1.13 ac7e.8a9b.df00/ac7e.8aa3.d460 Hub
PDAP-14 10.2.1.14 ac7e.8a69.c250/ac7e.8a65.c210 Sentinel gate Root
PDAP-15 10.2.1.15 ac7e.8a9b.da30/ac7e.8aa3.cf90
PDAP-16 10.2.1.16 ac7e.8aa8.16e0/ac7e.8aaa.16f0
PDAP-17 10.2.1.17 04da.d2cf.a330/04da.d2d1.a150 MC Repeater
PDAP-18 10.2.1.18 ac7e.8a69.b010/5897.bdb5.e6e7 Bar Repeater
PDAP-19 10.2.1.19 0c27.24e1.8d10/0c27.24e3.8d00 Wintermark Toilets Root
PDAP-20 10.2.1.20 04da.d28a.0ca0/04da.d28c.0cd0 Server room Root
Cisco 702W
Hostname BVI IP MAC addresses Location Notes
PDAP-30 10.2.1.30 bcf1.f276.a7e0/bcf1.f276.a7f0
PDAP-31 10.2.1.31 bcf1.f276.a920/bcf1.f276.a930
PDAP-32 10.2.1.32
PDAP-33 10.2.1.33
PDAP-34 10.2.1.34 0038.df45.4cc0/0038.df45.4cd0
PDAP-35 10.2.1.35 0038.df42.c440/0038.df42.c450 Matt Cave
PDAP-36 10.2.1.36 bcf1.f276.b1a0/bcf1.f276.b1b0 Server room interior
PDAP-37 10.2.1.37
PDAP-38 10.2.1.38 bcf1.f276.aaa0/bcf1.f276.aab0 Plot cave
PDAP-39 10.2.1.39 d42c.44d3.6960/d42c.44d3.6970
Ubiquiti LBE-5AC-Gen2
Hostname IP MAC Address Mode Location Notes
PDBR-1 10.3.1.1 24:5A:4C:3C:1B:AD AP PtP Server room -> Matt cave
PDBR-2 10.3.1.2 70:A7:41:44:2B:59 Station PtP Matt cave
PDBR-5 10.3.1.5 70:A7:41:44:29:D8 AP PtP Server room -> Navar
PDBR-6 10.3.1.6 70:A7:41:44:3C:28 Station PtP Navar toilets
PDBR-7 10.3.1.7 F4:E2:C6:34:81:F4 AP PtP Server room -> RAT
PDBR-8 10.3.1.8 F4:E2:C6:34:86:83 Station PtP RAT
PDBR-9 10.3.1.8 F4:E2:C6:34:30:DD AP PtP Server room -> Regio
PDBR-10 10.3.1.10 F4:E2:C6:34:88:99 Station PtP Regio
Ubiquiti NanoBridge M5
Hostname IP MAC Address Location Notes
PDBR-3 10.3.1.3 24:A4:3C:B6:16:16
PDBR-4 10.3.1.4 24:A4:3C:B6:14:3A
Switches
Hostname IP MAC Address Location Notes
core-sw-201 10.1.0.201
GOD-sw-202 10.1.0.202

Configuring 1600

PDCREW and PD_PUBLIC on the 2.4GHz radio, PD_BACK on 5GHz for mesh

  1. Process, copy the config below, edit it to replace the AP name and BVI address to match. Set the passwords and snmp details
  2. Connect to the AP via the console port
  3. `enable` to get control
  4. `write erase` to clear the existing config
  5. `reload` confirm when promted. You do not want to copy any changes if asked
  6. when the AP has restarted, once again `enable`
  7. `conf t` to enter config mode
  8. paste in your config
  9. `write mem` to save the config
  10. wait for about a minute you should see chatter about the radio doing things
hostname PDAP-18
!
!
!
dot11 syslog
dot11 vlan-name BACKHAUL vlan 1
dot11 vlan-name CREW vlan 12
dot11 vlan-name PUBLIC vlan 13
!
dot11 ssid PDCREW
   vlan 12
   authentication open
   authentication key-management wpa
   mbssid guest-mode
   wpa-psk ascii *****
!
dot11 ssid PD_BACK
   authentication open
   authentication key-management wpa
   infrastructure-ssid
   wpa-psk ascii *****
!
dot11 ssid PD_PUBLIC
   vlan 13
   authentication open
   mbssid guest-mode
!
!
dot11 network-map
dot11 guest
!
!
bridge irb
!
!
!
interface Dot11Radio0
 no ip address
 !
 encryption vlan 1 mode ciphers tkip
 !
 encryption vlan 12 mode ciphers tkip
 !
 ssid PDCREW
 !
 ssid PD_PUBLIC
 !
 mbssid
 dot11 dot11r pre-authentication over-ds
 dot11 dot11r reassociation-time value 200
 world-mode dot11d country-code GB outdoor
 speed range
 power local maximum
 station-role root access-point
!
interface Dot11Radio0.1
 encapsulation dot1Q 1 native
 bridge-group 1
 bridge-group 1 subscriber-loop-control
 bridge-group 1 spanning-disabled
 bridge-group 1 block-unknown-source
 no bridge-group 1 source-learning
 no bridge-group 1 unicast-flooding
!
interface Dot11Radio0.12
 encapsulation dot1Q 12
 bridge-group 1
 bridge-group 1 subscriber-loop-control
 bridge-group 1 spanning-disabled
 bridge-group 1 block-unknown-source
 no bridge-group 1 source-learning
 no bridge-group 1 unicast-flooding
!
interface Dot11Radio0.13
 encapsulation dot1Q 13
 bridge-group 1
 bridge-group 1 subscriber-loop-control
 bridge-group 1 spanning-disabled
 bridge-group 1 block-unknown-source
 no bridge-group 1 source-learning
 no bridge-group 1 unicast-flooding
!
interface Dot11Radio1
 no ip address
 !
 encryption mode ciphers tkip
 !
 ssid PD_BACK
 !
 world-mode dot11d country-code GB outdoor
 speed range
 power local maximum
 dot11 dot11r pre-authentication over-ds
 dot11 dot11r reassociation-time value 200

 station-role root access-point fallback repeater
 bridge-group 1
 bridge-group 1 subscriber-loop-control
 bridge-group 1 block-unknown-source
 no bridge-group 1 source-learning
 no bridge-group 1 unicast-flooding
!
interface GigabitEthernet0
 no ip address
 no ip route-cache
 duplex auto
 speed auto
 bridge-group 1
 bridge-group 1 spanning-disabled
 no bridge-group 1 source-learning
!
interface BVI1
 ip address 10.2.1.18 255.0.0.0
 no ip route-cache
!
snmp-server view dot11view ieee802dot11 included
snmp-server community public view dot11view RO
snmp-server community PDNET RO
snmp-server location LOCATION
snmp-server chassis-id NAME
!
bridge 1 protocol ieee
bridge 1 route ip
!
interface dot11Radio 0
no shut
interface dot11Radio 1
no shut
interface BVI 1
no shut
interface GigabitEthernet0
no shut

end

Config file 702

Dot11 ssid PDCREW
authentication open
authentication key-management wpa
wpa-psk ascii ******
Guest-mode
Exit

Int dot11 0
world-mode dot11d country-code GB outdoor
speed range
power local maximum
encryption mode ciphers tkip
dot11 extension aironet
ssid PDCREW
Stat root access
No shut
Exit

Int dot11 1
world-mode dot11d country-code GB outdoor
speed range
power local maximum
encryption mode ciphers tkip
dot11 extension aironet
ssid PDCREW
station-role root access-point
No shut
exit
Retrieved from ‘https://www.profounddecisions.co.uk/mediawiki-crew-pd/index.php?title=Wireless-New&oldid=5440