Bras ME60维护手册
2016年12月
园区网Bras ME60 维护手册
目 录
一、设备配置脚本........................................................................................................ 2 二、新设备(用户)开局脚本.................................................................................... 9
2.1 2.2 2.3 2.4 2.5 2.6
汇聚/接入交换机开局 ...................................................................................................... 9 配置纯Portal拨号业务 ................................................................................................. 10 配置静态IP业务(绑定用户IP) ............................................................................... 11 配置静态IP业务(不绑定用户IP) ........................................................................... 12 配置Portal拨号业务+固定IP ...................................................................................... 13 配置Portal拨号业务(绑定用户IP) ......................................................................... 14
三、维护命令.............................................................................................................. 15
3.1.1 3.1.2 3.1.3 3.1.4 3.1.5 3.1.6 3.1.7
查看域 ............................................................................................................................. 15 查看域内用户状态 ......................................................................................................... 16 查看网络联通性 ............................................................................................................. 16 查看总用户数 ................................................................................................................. 16 强制某用户下线 ............................................................................................................. 17 查看地址池占用率 ......................................................................................................... 17 查用巡检命令 ................................................................................................................. 17
1 / 18
园区网Bras ME60 维护手册
一、 设备配置脚本
设备配置较多,仅列出维护相关部分
radius-server group wgyxy
radius-server authentication 192.168.100.100 1812 weight 0 radius-server accounting 192.168.100.100 1813 weight 0 radius-server shared-key hwme60 radius-server nas-ip-address 192.168.100.1 radius-server attribute translate
undo radius-server user-name domain-included #
radius-server authorization 192.168.100.100 shared-key hwme60 # #
acl number 6000
rule 20 permit tcp source user-group portal destination-port eq www rule 25 permit tcp source user-group portal destination-port eq 8080 rule 30 permit tcp source user-group portal destination-port eq 801 rule 35 permit tcp source user-group portal destination-port eq 802 rule 40 permit tcp source user-group portal destination-port eq 803 rule 45 permit tcp source user-group portal destination-port eq 804 rule 50 permit tcp source user-group portal destination-port eq 443 #
acl number 6001
rule 5 permit ip source user-group portal destination ip-address 192.168.100.100 0 rule 10 permit ip source user-group portal destination ip-address 127.0.0.1 0
rule 15 permit ip source ip-address 192.168.100.100 0 destination user-group portal rule 20 permit ip source ip-address 127.0.0.1 0 destination user-group portal
rule 25 permit ip source ip-address 10.10.10.0 0.0.1.255 destination user-group portal rule 30 permit ip source user-group portal destination ip-address 10.10.10.0 0.0.1.255 rule 35 permit ip source ip-address 10.19.0.0 0.0.0.255 destination user-group portal rule 40 permit ip source user-group portal destination ip-address 10.19.0.0 0.0.0.255 rule 45 permit ip source ip-address 10.3.1.0 0.0.0.255 destination user-group portal rule 50 permit ip source user-group portal destination ip-address 10.3.1.0 0.0.0.255 rule 55 permit ip source ip-address 202.97.224.68 0.0.0.1 destination user-group portal rule 60 permit ip source user-group portal destination ip-address 202.97.224.68 0.0.0.1
2 / 18
园区网Bras ME60 维护手册
rule 65 permit ip source ip-address 101.7.8.9 0 destination user-group portal rule 70 permit ip source user-group portal destination ip-address 101.7.8.9 0 #
acl number 6002
rule 30 permit ip source user-group portal destination ip-address any rule 35 permit ip source ip-address any destination user-group portal # #
ip pool 3jiao_ap_dong bas local gateway 10.10.31.1 255.255.255.0 section 0 10.10.31.2 10.10.31.254 excluded-ip-address 10.10.31.2 10.10.31.9 dns-server 202.97.224.68 202.97.224.69
# ip pool 3jiao_ap_xi bas local gateway 10.10.30.1 255.255.255.0 section 0 10.10.30.2 10.10.30.254 excluded-ip-address 10.10.30.2 10.10.30.9 dns-server 202.97.224.68 202.97.224.69 #
ip pool guanli bas local gateway 10.11.255.254 255.255.0.0 section 0 10.11.0.1 10.11.255.253 excluded-ip-address 10.11.0.1 10.11.255.253
# ip pool portal bas local gateway 10.50.0.1 255.255.0.0 section 0 10.50.0.2 10.50.255.254 excluded-ip-address 10.50.100.100 dns-server 202.97.224.68 202.97.224.69 # # aaa
local-user huawei password irreversible-cipher $1a$:a(TQ#W local-user huawei state block fail-times 3 interval 5 authentication-scheme default0 authentication-scheme default1 authentication-scheme default authentication-mode local radius authentication-scheme pppoe authentication-mode none 3 / 18 园区网Bras ME60 维护手册 authentication-scheme radius # authorization-scheme default # accounting-scheme default0 accounting-scheme default1 accounting-scheme pppoe accounting-mode none accounting-scheme jrzk accounting-scheme radius accounting interim interval 10 # domain default0 ip-pool qinshi-1 dns primary-ip 202.97.224.68 dns second-ip 202.97.224.69 user-group portal web-server 192.168.100.100 web-server url http://192.168.100.100/index_3.html web-server url-parameter domain default1 domain default_admin domain portal authentication-scheme radius accounting-scheme radius radius-server group wgyxy domain guanli authentication-scheme pppoe accounting-scheme pppoe ip-pool guanli # interface Eth-Trunk1 description to-HW-S12708 [20G] mode user-termination load-balance packet-all # interface Eth-Trunk1.1 description portal_bohao user-vlan 101 148 qinq 2111 2114 user-vlan 101 148 qinq 2141 user-vlan 101 148 qinq 2171 user-vlan 101 148 qinq 2211 2213 user-vlan 201 248 qinq 2213 user-vlan 101 148 qinq 2240 4 / 18