chopin_ita Inserito: 1 marzo 2023 Segnala Share Inserito: 1 marzo 2023 Ciao a tutti A casa ho vari access point Cisco con relativo controller ma il segnale non arriva nel garage dove mi serve collegare un dispositivo WiFi, così ho recuperato un WiFi extender Xiaomi Mi WiFi Extender Pro che ho messo nel piano di mezzo. Configurato, collegato al SSID WiFi propagato dai Cisco etc. Collegando poi un client al extender, esso funziona solo se gli imposto IP statico, diversamente in DHCP il client fa la request, ma il Cisco gliela blocca e non la forwarda al DHCP server. Purtroppo il client lato WiFi non può usare IP fisso. Inutile riservare il MAC sul DHCP server... tanto manco gli arriva la richiesta. Sapete come uscirne? Link al commento Condividi su altri siti More sharing options...
Andrea Annoni Inserita: 1 marzo 2023 Segnala Share Inserita: 1 marzo 2023 Bisogna vedere la configurazione di entrambi gli apparati......ma a naso potrebbe essere un problema del repeater....... oppure del cisco se ha la funzione di client isolation (dove si vede arrivare più richieste da un unico mac: quello del repeater) Link al commento Condividi su altri siti More sharing options...
chopin_ita Inserita: 1 marzo 2023 Autore Segnala Share Inserita: 1 marzo 2023 54 minuti fa, Andrea Annoni ha scritto: Bisogna vedere la configurazione di entrambi gli apparati......ma a naso potrebbe essere un problema del repeater....... oppure del cisco se ha la funzione di client isolation (dove si vede arrivare più richieste da un unico mac: quello del repeater) Il repeater NON ha il DHCP interno, ma chiaramente si appoggia ad un DHCP già sulla rete. Da me il DHCP è sul router. Sul cisco purtroppo io non ho dimestichezza con il suo sistema operativo. Le cose basilari di fanno da interfaccia grafica sul WLAN Controller. In pratica... l'extender si registra sul SSID del Cisco ed esso acquisisce un IP dinamico dal DHCP, ma parliamo del IP del extender. Di fatto poi i client collegati al extender si registrano anche essi, ma il DHCP non va. Ho fatto un altra prova: siccome anche sul WLAN Controller posso accendere un DHCP... dopo aver spento quello sul ruter l'ho acceso sul Cisco e nemmeno in questo modo vengono rilasciati gli IP ai client del Extender. Per prova ho anche acceso un access point commerciale da 4 soldi, messo il DHCP su di esso, generato un SSID e registrato l'extender li sopra... e così invece funziona. Quindi è proprio il Cisco. Quindi mi suggerisci di documentarmi su questa CLIENT ISOLATION? Provo... grazie Link al commento Condividi su altri siti More sharing options...
chopin_ita Inserita: 1 marzo 2023 Autore Segnala Share Inserita: 1 marzo 2023 leggendo un po' se non ho capito male CLIENT ISOLATION è un concetto generico che poi Cisco traduce con la configurazione del PEER TO PEER BLOCKING e sempre se non capisco male ha a che vedere con la comuicazione tra wireless client. Per esempio se è il SSID della rete GUEST, allora abiliti l'isolamento così di diversi client non si vedono tra loro AIUTO !!! Link al commento Condividi su altri siti More sharing options...
Andrea Annoni Inserita: 1 marzo 2023 Segnala Share Inserita: 1 marzo 2023 Il client isolation nasce per far si che i client connessi all'AP non si vedano tra di loro. Funzione solitamente utile in ambito di accessi pubblici. La gestione di questa funzione può avvenire in diversi modi......una può essere a livello mac; in questo caso Cisco non lo ricordo a memoria; comunque potrebbe essere anche il WDS o il Multicast. Magari fai uno screen della sezione radio o un export della config Link al commento Condividi su altri siti More sharing options...
chopin_ita Inserita: 1 marzo 2023 Autore Segnala Share Inserita: 1 marzo 2023 in allegato lo show della wlan (Cisco Controller) >show wlan 2 WLAN Identifier.................................. 2 Profile Name..................................... HOME_bridge Network Name (SSID).............................. HOME_bridge Status........................................... Enabled MAC Filtering.................................... Disabled Broadcast SSID................................... Enabled AAA Policy Override.............................. Disabled Network Admission Control Client Profiling Status Radius Profiling ............................ Disabled DHCP ....................................... Disabled HTTP ....................................... Disabled Local Profiling ............................. Disabled DHCP ....................................... Disabled HTTP ....................................... Disabled Radius-NAC State............................... Disabled SNMP-NAC State................................. Disabled Quarantine VLAN................................ 0 Maximum Clients Allowed.......................... Unlimited Security Group Tag............................... Unknown(0) --More-- or (q)uit (Cisco Controller) >clear (Cisco Controller) clear> (Cisco Controller) clear> (Cisco Controller) clear>exit (Cisco Controller) >show wlan 2 WLAN Identifier.................................. 2 Profile Name..................................... HOME_bridge Network Name (SSID).............................. HOME_bridge Status........................................... Enabled MAC Filtering.................................... Disabled Broadcast SSID................................... Enabled AAA Policy Override.............................. Disabled Network Admission Control Client Profiling Status Radius Profiling ............................ Disabled DHCP ....................................... Disabled HTTP ....................................... Disabled Local Profiling ............................. Disabled DHCP ....................................... Disabled HTTP ....................................... Disabled Radius-NAC State............................... Disabled SNMP-NAC State................................. Disabled Quarantine VLAN................................ 0 Maximum Clients Allowed.......................... Unlimited Security Group Tag............................... Unknown(0) Maximum number of Clients per AP Radio........... 200 ATF Policy....................................... 0 Number of Active Clients......................... 1 Exclusionlist Timeout............................ 180 seconds Session Timeout.................................. 86400 seconds User Idle Timeout................................ 300 seconds Sleep Client..................................... disable Sleep Client Timeout............................. 720 minutes Sleep Client Auto Auth Feature................... Enabled Web Auth Captive Bypass Mode..................... Enabled User Idle Threshold.............................. 0 Bytes NAS-identifier................................... none CHD per WLAN..................................... Enabled Webauth DHCP exclusion........................... Disabled Interface........................................ management Multicast Interface.............................. Not Configured WLAN IPv4 ACL.................................... unconfigured WLAN IPv6 ACL.................................... unconfigured WLAN Layer2 ACL.................................. unconfigured mDNS Status...................................... Disabled mDNS Profile Name................................ unconfigured DHCP Server...................................... Default DHCP Scope Name.................................. none Central NAT...................................... Disabled Central NAT Peer-Peer Blocking................... Disabled DHCP Address Assignment Required................. Disabled Static IP client tunneling....................... Disabled Tunnel Profile................................... Unconfigured EoGRE Override VLAN state........................ disable EoGRE Override VLAN ID........................... 0 Quality of Service............................... Silver Per-BSSID Rate Limits............................ Upstream Downstream Average Data Rate................................ 0 0 Average Realtime Data Rate....................... 0 0 Burst Data Rate.................................. 0 0 Burst Realtime Data Rate......................... 0 0 Per-Client Rate Limits........................... Upstream Downstream Average Data Rate................................ 0 0 Average Realtime Data Rate....................... 0 0 Burst Data Rate.................................. 0 0 Burst Realtime Data Rate......................... 0 0 Per-WLAN Rate Limits............................. Upstream Downstream Average Data Rate................................ 0 0 Average Realtime Data Rate....................... 0 0 Burst Data Rate.................................. 0 0 Burst Realtime Data Rate......................... 0 0 Scan Defer Priority.............................. 4,5,6 Scan Defer Time.................................. 100 milliseconds WMM.............................................. Allowed WMM UAPSD Compliant Client Support............... Disabled Media Stream Multicast-direct.................... Disabled CCX - AironetIe Support.......................... Enabled CCX - Gratuitous ProbeResponse (GPR)............. Disabled CCX - Diagnostics Channel Capability............. Disabled Dot11-Phone Mode (7920).......................... Disabled Wired Protocol................................... 802.1P (Tag=0) Passive Client Feature........................... Disabled Peer-to-Peer Blocking Action..................... Forward-Upstream Radio Policy..................................... 802.11b and 802.11g only DTIM period for 802.11a radio.................... 1 DTIM period for 802.11b radio.................... 1 Radius Servers Authentication................................ Global Servers Accounting.................................... Global Servers Interim Update............................. Enabled Interim Update Interval.................... 0 Framed IPv6 Acct AVP ...................... Prefix Authorization ACA............................. Disabled Accounting ACA................................ Disabled Dynamic Interface............................. Disabled Dynamic Interface Priority.................... wlan Local EAP Authentication......................... Disabled Radius NAI-Realm................................. Disabled Radius Authentication caching.................... Disabled Mu-Mimo.......................................... Enabled Security 802.11 Authentication:........................ Open System FT Support.................................... Adaptive Static WEP Keys............................... Disabled 802.1X........................................ Disabled Wi-Fi Protected Access (WPA/WPA2/WPA3)........ Enabled WPA (SSN IE)............................... Disabled WPA2 (RSN IE).............................. Enabled WPA3 (RSN IE).............................. Disabled WPA2/WPA3 Encryption Ciphers TKIP Cipher............................. Disabled CCMP128/AES Cipher...................... Enabled CCMP256 Cipher.......................... Disabled GCMP128 Cipher.......................... Disabled GCMP256 Cipher.......................... Disabled OSEN IE.................................... Disabled Auth Key Management 802.1x.................................. Disabled 802.1x-SHA2............................. Disabled PSK..................................... Enabled PSK-SHA2................................ Disabled CCKM.................................... Disabled FT-1X(802.11r).......................... Disabled FT-PSK(802.11r)......................... Disabled OSEN-1X................................. Disabled SUITEB-1X............................... Disabled SUITEB192-1X............................ Disabled OWE..................................... Disabled SAE..................................... Disabled OWE Transition Mode........................ Disabled OWE Transition Mode WLAN id................ 0 Auto Key PSK .............................. Disabled FT Reassociation Timeout................... 20 FT Over-The-DS mode........................ Enabled GTK Randomization.......................... Disabled SKC Cache Support.......................... Disabled CCKM TSF Tolerance......................... 1000 Wi-Fi Direct policy configured................ Disabled EAP-Passthrough............................... Disabled CKIP ......................................... Disabled Web Based Authentication...................... Disabled Web Authentication Timeout.................... 300 Web-Passthrough............................... Disabled Mac-auth-server............................... 0.0.0.0 Web-portal-server............................. 0.0.0.0 qrscan-des-key................................ Conditional Web Redirect...................... Disabled Splash-Page Web Redirect...................... Disabled Auto Anchor................................... Disabled FlexConnect Local Switching................... Enabled FlexConnect Central Association............... Disabled flexconnect Central Dhcp Flag................. Disabled flexconnect nat-pat Flag...................... Disabled flexconnect Dns Override Flag................. Disabled flexconnect PPPoE pass-through................ Disabled flexconnect local-switching IP-source-guar.... Disabled FlexConnect Vlan based Central Switching ..... Disabled FlexConnect Local Authentication.............. Disabled FlexConnect Learn IP Address.................. Enabled Flexconnect Post-Auth IPv4 ACL................ Unconfigured Flexconnect Post-Auth IPv6 ACL................ Unconfigured Client MFP.................................... Optional PMF........................................... Disabled PMF Association Comeback Time................. 1 PMF SA Query RetryTimeout..................... 200 Tkip MIC Countermeasure Hold-down Timer....... 60 Eap-params.................................... Disabled AVC Visibilty.................................... Disabled Flex Avc Profile Name............................ HOME_bridge OpenDns Profile Name............................. None OpenDns Wlan Mode................................ ignore OpenDns Wlan Dhcp Option 6....................... disable Flow Monitor Name................................ None Split Tunnel Configuration Split Tunnel................................. Disabled Call Snooping.................................... Disabled Roamed Call Re-Anchor Policy..................... Disabled SIP CAC Fail Send-486-Busy Policy................ Enabled SIP CAC Fail Send Dis-Association Policy......... Disabled KTS based CAC Policy............................. Disabled Assisted Roaming Prediction Optimization......... Disabled 802.11k Neighbor List............................ Enabled 802.11k Neighbor List Dual Band.................. Disabled 802.11v Directed Multicast Service............... Enabled 802.11v BSS Max Idle Service..................... Enabled 802.11v BSS Transition Service................... Enabled 802.11v BSS Transition Disassoc Imminent......... Disabled 802.11v BSS Transition Disassoc Timer............ 200 802.11v BSS Transition OpRoam Disassoc Timer..... 40 802.11v BSS Transition Neigh List Dual Band...... Disabled DMS DB is empty Band Select...................................... Enabled Load Balancing................................... Client-Count Based Multicast Buffer................................. Disabled Universal Ap Admin............................... Disabled Broadcast Tagging................................ Disabled PRP.............................................. Disabled Fast Receive..................................... Disabled 11ax Downlink MU-MIMO............................ Enabled 11ax Uplink MU-MIMO.............................. Enabled 11ax Downlink OFDMA.............................. Enabled 11ax Uplink OFDMA................................ Enabled Wifi Alliance Multiband Operation................ Disabled 11ax Target Wake Time............................ Enabled Mobility Anchor List WLAN ID IP Address Status Priority ------- --------------- ------ -------- 802.11u........................................ Disabled MSAP Services.................................. Disabled Local Policy ---------------- Priority Policy Name -------- --------------- QoS Fastlane Status.............................. Disable Selective Reanchoring Status..................... Disable Lobby Admin Access............................... Disabled Fabric Status -------------- Fabric status.................................... Disable Vnid Name........................................ Vnid............................................. 0 Applied SGT Tag.................................. 0 Peer Ip Address.................................. 0.0.0.0 Flex Acl Name.................................... Flex IPv6 Acl Name............................... Flex Avc Policy Name............................. U3-Interface................................... Disable U3-Reporting Interval.......................... 30 Link al commento Condividi su altri siti More sharing options...
Messaggi consigliati
Crea un account o accedi per commentare
Devi essere un utente per poter lasciare un commento
Crea un account
Registrati per un nuovo account nella nostra comunità. è facile!
Registra un nuovo accountAccedi
Hai già un account? Accedi qui.
Accedi ora