Point to multipoint wireless bridge

By 80211 80211Autonomous - point to multipoint bridge

Root bridge config:

SSID:

dot11 ssid BRIDGE
vlan 11
authentication open eap EAP-METHODS
authentication key-management wpa version 2
dot1x credentials EAP-FAST
dot1x eap profile EAP-FAST
infrastructure-ssid
!

5GHz radio config:

interface Dot11Radio1
no ip address
!
encryption vlan 11 mode ciphers aes-ccm
!
ssid BRIDGE
!
antenna gain 0
peakdetect
no dfs band block
traffic-stream priority 5 sta-rates nom-12.0 nom-24.0
traffic-stream priority 6 sta-rates nom-12.0 nom-24.0
speed basic-54.0 m0. m1. m2. m3. m4. m5. m6. m7. m8. m9. m10. m11. m12. m13. m14. m15.
power local 14
power client local
packet retries 20 drop-packet
packet max-retries 3 0 fail-threshold 100 500 priority 5 drop-packet
packet max-retries 3 0 fail-threshold 100 500 priority 6 drop-packet
packet speed 12.0 24.0 priority 6
channel width 40-below
channel 5805
station-role root bridge
distance 1
dot11 qos class video local
admission-control
admit-traffic signaling infinite
!
dot11 qos class voice local
admission-control
admit-traffic narrowband max-channel 75 roam-channel 6
!
dot11 qos class video cell
admission-control
!
dot11 qos class voice cell
admission-control
!
!
interface Dot11Radio1.11
encapsulation dot1Q 11 native
bridge-group 1
bridge-group 1 spanning-disabled
!
interface Dot11Radio1.12
encapsulation dot1Q 12
bridge-group 12
bridge-group 12 spanning-disabled
!
interface Dot11Radio1.97
encapsulation dot1Q 97
bridge-group 97
bridge-group 97 spanning-disabled
!
interface Dot11Radio1.98
encapsulation dot1Q 98
bridge-group 98
bridge-group 98 spanning-disabled
!
interface GigabitEthernet0
no ip address
duplex auto
speed auto
bridge-group 1
!
interface GigabitEthernet0.11
encapsulation dot1Q 11
bridge-group 11
!
interface GigabitEthernet0.12
encapsulation dot1Q 12
bridge-group 12
!
interface GigabitEthernet0.97
encapsulation dot1Q 97
bridge-group 97
!
interface GigabitEthernet0.98
encapsulation dot1Q 98
bridge-group 98
!
interface BVI1
mac-address c84c.7547.1ed5
ip address 10.0.11.44 255.255.255.192
ipv6 address dhcp
ipv6 address autoconfig
ipv6 enable
!
ip default-gateway 10.0.11.1

Site A and B radio configs are identical with the exception of the station-role command (non root bridge)

SSID:

dot11 ssid BRIDGE
vlan 11
authentication open eap EAP-METHODS
authentication key-management wpa version 2
dot1x credentials EAP-FAST
dot1x eap profile EAP-FAST
infrastructure-ssid

interface Dot11Radio1
no ip address
!
encryption vlan 11 mode ciphers aes-ccm
!
ssid BRIDGE
!
antenna gain 0
peakdetect
traffic-stream priority 5 sta-rates nom-12.0 nom-24.0
traffic-stream priority 6 sta-rates nom-12.0 nom-24.0
stbc
speed basic-54.0 m0. m1. m2. m3. m4. m5. m6. m7. m8. m9. m10. m11. m12. m13. m14. m15. a1ssnone a2ssnone a3ssnone
power local 14
power client local
packet max-retries 3 0 fail-threshold 100 500 priority 5 drop-packet
packet max-retries 3 0 fail-threshold 100 500 priority 6 drop-packet
station-role non-root
dot11 qos class video local
admission-control
admit-traffic signaling infinite
!
dot11 qos class voice local
admission-control
admit-traffic narrowband max-channel 75 roam-channel 6
!
dot11 qos class video cell
admission-control
!
dot11 qos class voice cell
admission-control
!
!
interface Dot11Radio1.11
encapsulation dot1Q 11 native
bridge-group 1
bridge-group 1 spanning-disabled
!
interface Dot11Radio1.12
encapsulation dot1Q 12
bridge-group 12
no bridge-group 12 spanning-disabled
!
interface Dot11Radio1.97
encapsulation dot1Q 97
bridge-group 97
no bridge-group 97 spanning-disabled
!
interface Dot11Radio1.98
encapsulation dot1Q 98
bridge-group 98
no bridge-group 98 spanning-disabled
!
interface Dot11Radio1.315
encapsulation dot1Q 315
!
interface GigabitEthernet0
no ip address
duplex auto
speed auto
!
interface GigabitEthernet0.11
encapsulation dot1Q 11 native
bridge-group 1
no bridge-group 1 spanning-disabled
!
interface GigabitEthernet0.12
encapsulation dot1Q 12
bridge-group 12
no bridge-group 12 spanning-disabled
!
interface GigabitEthernet0.97
encapsulation dot1Q 97
bridge-group 97
no bridge-group 97 spanning-disabled
!
interface GigabitEthernet0.98
encapsulation dot1Q 98
bridge-group 98
no bridge-group 98 spanning-disabled
!
interface GigabitEthernet0.315
encapsulation dot1Q 315
!
interface BVI1
mac-address 003a.7de0.0618
ip address 10.0.11.21 255.255.255.192
ipv6 address dhcp
ipv6 address autoconfig
ipv6 enable
!
ip default-gateway 10.0.11.1

Site A and B form EIGRP neigborship and receive the routes from the core switch

EIGRP-IPv4 Neighbors for AS(13)
H Address Interface Hold Uptime SRTT RTO Q Seq
(sec) (ms) Cnt Num
0 10.0.11.2 Vl11 14 01:18:20 12 200 0 1644

SITEA#show ip route eigrp
192.168.13.0/32 is subnetted, 2 subnets
D 192.168.13.1 [90/130816] via 10.0.11.2, 01:18:23, Vlan11
D 192.168.13.3 [90/130816] via 10.0.11.2, 01:18:23, Vlan11
155.1.0.0/24 is subnetted, 9 subnets
D EX 155.1.146.0 [170/282112] via 10.0.11.2, 01:18:23, Vlan11
D EX 155.1.23.0 [170/307712] via 10.0.11.2, 01:18:23, Vlan11
D EX 155.1.13.0 [170/282112] via 10.0.11.2, 01:18:23, Vlan11
D EX 155.1.0.0 [170/26880512] via 10.0.11.2, 01:18:23, Vlan11
D EX 155.1.5.0 [170/307712] via 10.0.11.2, 01:18:23, Vlan11
D EX 155.1.58.0 [170/307712] via 10.0.11.2, 01:18:23, Vlan11
D EX 155.1.45.0 [170/307712] via 10.0.11.2, 01:18:23, Vlan11
D EX 155.1.37.0 [170/307712] via 10.0.11.2, 01:18:23, Vlan11
D EX 155.1.67.0 [170/307712] via 10.0.11.2, 01:18:23, Vlan11
169.254.0.0/24 is subnetted, 1 subnets
D EX 169.254.100.0 [170/282112] via 10.0.11.2, 01:18:23, Vlan11
10.0.0.0/26 is subnetted, 28 subnets
D 10.0.10.0 [90/3072] via 10.0.11.2, 01:18:23, Vlan11
D 10.0.8.0 [90/3072] via 10.0.11.2, 01:18:23, Vlan11
D 10.0.9.0 [90/3072] via 10.0.11.2, 01:18:23, Vlan11
D 10.0.14.0 [90/3072] via 10.0.11.2, 01:18:23, Vlan11
D 10.0.15.0 [90/3072] via 10.0.11.2, 01:18:23, Vlan11
D 10.0.12.0 [90/3072] via 10.0.11.2, 01:18:23, Vlan11
D 10.0.13.0 [90/3072] via 10.0.11.2, 01:18:23, Vlan11
D 10.0.2.0 [90/3072] via 10.0.11.2, 01:18:23, Vlan11
D 10.0.0.0 [90/3072] via 10.0.11.2, 01:18:23, Vlan11
D 10.0.4.0 [90/3072] via 10.0.11.2, 01:18:23, Vlan11
D 10.0.5.0 [90/3072] via 10.0.11.2, 01:18:23, Vlan11
D 10.0.18.0 [90/3072] via 10.0.11.2, 01:18:23, Vlan11
D 10.0.19.0 [90/3072] via 10.0.11.2, 01:18:23, Vlan11
D 10.0.16.0 [90/3072] via 10.0.11.2, 01:18:23, Vlan11
D 10.0.17.0 [90/3072] via 10.0.11.2, 01:18:23, Vlan11
D 10.0.39.0 [90/3072] via 10.0.11.2, 01:18:24, Vlan11
D 10.0.72.0 [90/3072] via 10.0.11.2, 01:18:24, Vlan11
D 10.0.66.0 [90/3328] via 10.0.11.2, 01:18:24, Vlan11
D 10.0.0.64 [90/3072] via 10.0.11.2, 01:18:24, Vlan11
D 10.0.6.64 [90/3072] via 10.0.11.2, 01:18:24, Vlan11
D 10.0.98.0 [90/3072] via 10.0.11.2, 01:18:24, Vlan11
D 10.0.97.0 [90/3072] via 10.0.11.2, 01:18:24, Vlan11
D 10.0.0.128 [90/3072] via 10.0.11.2, 01:18:24, Vlan11
D 10.0.4.128 [90/3072] via 10.0.11.2, 01:18:24, Vlan11
D 10.0.0.192 [90/3072] via 10.0.11.2, 01:18:24, Vlan11
13.0.0.0/32 is subnetted, 1 subnets
D 13.10.10.4 [90/3104] via 10.0.11.2, 01:18:24, Vlan11
14.0.0.0/32 is subnetted, 1 subnets
D 14.10.10.4 [90/131072] via 10.0.11.2, 01:18:24, Vlan11
150.1.0.0/32 is subnetted, 6 subnets
D EX 150.1.6.6 [170/282164] via 10.0.11.2, 01:18:24, Vlan11
D EX 150.1.5.5 [170/410112] via 10.0.11.2, 01:18:24, Vlan11
D EX 150.1.4.4 [170/410112] via 10.0.11.2, 01:18:24, Vlan11
D EX 150.1.3.3 [170/410112] via 10.0.11.2, 01:18:24, Vlan11
D EX 150.1.2.2 [170/410112] via 10.0.11.2, 01:18:24, Vlan11
D EX 150.1.1.1 [170/3104] via 10.0.11.2, 01:18:24, Vlan11
SITEA#

Routes not in the routing table are sent to the default gateway

SITEA#show ip route 10.0.20.18
% Subnet not in table
SITEA#show ip ce
SITEA#show ip cef 10.0.20.18
0.0.0.0/0
nexthop 10.0.11.1 Vlan11
SITEA#

Site B switchport config

SITEB#show cdp neighbors
Capability Codes: R – Router, T – Trans Bridge, B – Source Route Bridge
S – Switch, H – Host, I – IGMP, r – Repeater, P – Phone,
D – Remote, C – CVTA, M – Two-port Mac Relay

Device ID Local Intrfce Holdtme Capability Platform Port ID
non-root-bridge-kid2-room.non-root-bridg
Fas 0/2 163 T B I AIR-AP114 Gig 0
SITEB#show run int fa0/2
Building configuration…

Current configuration : 182 bytes
!
interface FastEthernet0/2
switchport trunk encapsulation dot1q
switchport trunk native vlan 11
switchport mode trunk
ip arp inspection trust
spanning-tree portfast trunk
end

subnets

10.0.11.17
10.0.59.6
10.0.20.18

Site A switchport config

SITEA#show cdp neighbors
Capability Codes: R – Router, T – Trans Bridge, B – Source Route Bridge
S – Switch, H – Host, I – IGMP, r – Repeater, P – Phone,
D – Remote, C – CVTA, M – Two-port Mac Relay

Device ID Local Intrfce Holdtme Capability Platform Port ID
non-root-bridge.non-root-bridge.local
Gig 0/1 178 T B I AIR-SAP37 Gig 0
SITEA#show run int g0/1
Building configuration…

Current configuration : 185 bytes
!
interface GigabitEthernet0/1
switchport trunk encapsulation dot1q
switchport trunk native vlan 11
switchport mode trunk
ip arp inspection trust
spanning-tree portfast trunk
end

10.0.11.9
10.0.31.15
10.0.30.15

connectivity test – there’s reach ability between the sites.

SITE A to B

SITEA#PING 10.0.59.6 source vlan 31

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.0.59.6, timeout is 2 seconds:
Packet sent with a source address of 10.0.31.15
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 1/5/9 ms
SITEA#PING 10.0.59.6 source vlan 315

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.0.59.6, timeout is 2 seconds:
Packet sent with a source address of 10.0.30.15
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 1/5/9 ms

SITEA#ping disney.co

Translating “disney.co”…domain server (10.0.0.5) [OK]

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 76.223.18.1, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 9/15/17 ms
SITEA#ping cnn.com

Translating “cnn.com”…domain server (10.0.0.5) [OK]

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 151.101.129.67, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 17/20/25 ms
SITEA#

 

remote connection from switch/user at site A to site B switch

SITEA#telnet 10.0.59.6 /source-interface vlan31
Trying 10.0.59.6 … Open

User Access Verification

Username: lab
Password:
SITEB#exit

traceroute from site A to site B

SITEA#traceroute
Protocol [ip]:
Target IP address: 10.0.20.18
Source address: 10.0.30.15
Numeric display [n]:
Timeout in seconds [3]:
Probe count [3]:
Minimum Time to Live [1]:
Maximum Time to Live [30]:
Port Number [33434]:
Loose, Strict, Record, Timestamp, Verbose[none]:
Type escape sequence to abort.
Tracing the route to 10.0.20.18

1 10.0.11.2 8 msec 0 msec 8 msec
2 10.0.11.17 8 msec * 0 msec
SITEA#

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.