• 一个ll Files
Arubaos 8.6.0.0Help Center
你在这里: Home > Managed Devices > 零接触式配置概述

Zero-TouchProvisioning Overview

Traditionally, the deployment of控制器s是一个多步骤的过程控制器information and local configurations were first pre-provisioned. After the托管设备connected to the network, it established a secure tunnel to the master and downloaded the global configuration.ZTP零触摸配置。ZTP是一种设备配置机制,可自动,快速地配置设备,或有时无手动干预。automates deployment of托管设备s插头n-play。这托管设备now learns the required information from the network and provisions itself automatically一个rubaOS允许托管设备自动从中获得其本地和全局配置和许可证限制移动大师

本节包括以下主题:

For more information about the procedures to prepare your network forZTP零触摸配置。ZTP是一种设备配置机制,可自动,快速地配置设备,或有时无手动干预。, 看Using ZTP to Provision a Managed Device

为什么要使用ZTP?

ZTP零触摸配置。ZTP是一种设备配置机制,可自动,快速地配置设备,或有时无手动干预。offers the following advantages over a standard托管设备configuration:

简单部署

降低运营成本

限制配置错误

一个托管设备configured usingZTP零触摸配置。ZTP是一种设备配置机制,可自动,快速地配置设备,或有时无手动干预。automatically discovers the移动大师, downloads its local configuration from that移动大师, and is provisioned with its device role, and country code.

本地配置是特定于托管设备。That is, not the global configuration shared by a network of托管设备s。这包括,但不限于,IP地址es andVLANsVirtual Local Area Network. In computer networking, a single Layer 2 network may be partitioned to create multiple distinct broadcast domains, which are mutually isolated so that packets can only pass between them through one or more routers; such a domain is referred to as a Virtual Local Area Network, Virtual LAN, or VLAN.

Once the托管设备已准备就绪,可以通过两种方式中的任何一种来获得其全局配置:

这administrator enters the global configuration via the WebUI orCLI命令行接口。带有命令行壳的控制台接口,允许用户执行文本输入为命令,并将这些命令转换为适当的函数。of the移动大师

托管设备移动大师

可以使用批量编辑功能从中央位置修改多个设备的设备特定配置。用户可以将通用设备配置应用于一组设备,而无需单独更新每个设备。批量编辑支持但不限于以下配置:

时区

日光储蓄时间设置

VLANsVirtual Local Area Network. In computer networking, a single Layer 2 network may be partitioned to create multiple distinct broadcast domains, which are mutually isolated so that packets can only pass between them through one or more routers; such a domain is referred to as a Virtual Local Area Network, Virtual LAN, or VLAN.

托管设备IP addresses

DHCP动态主机配置协议。一个网络协议使服务器能够从为给定网络配置的定义数字范围自动将IP地址分配给启用IP的设备。pools

Managed Device配置模式

管理员可以选择配置模式,以选择如何选择托管设备is supplied with its own IP address, role, country code, and configuration settings.

Once the托管设备了解初级的IP地址移动大师, 这托管设备contacts that移动大师and retrieves its configuration from its assigned configuration node.

Before you deploy a托管设备, use you must create a configuration for that device at a configuration node on移动大师移动大师将此配置推到托管设备当设备在网络上活跃时。

一个rubaOS支持以下供应模式托管设备s

auto:In this mode, the托管设备

obtains its IP address fromDHCP动态主机配置协议。一个网络协议使服务器能够从为给定网络配置的定义数字范围自动将IP地址分配给启用IP的设备。

获得其角色,国家代码和IP地址移动大师以及任何定义的次要移动大师from 激活中的供应规则

retrieves its configuration from a configuration node on移动大师

迷你设定:In this mode, the托管设备

has its role set to local (local) when mini-setup is initiated

obtains its IP address fromDHCP动态主机配置协议。一个网络协议使服务器能够从为给定网络配置的定义数字范围自动将IP地址分配给启用IP的设备。

is configured through the console with its country code and the IP address of the primary移动大师(可选)次要移动大师IP

retrieves its local configuration group from the primary移动大师

全设置:In this mode, the托管设备

通过控制台配置其角色将其角色设置为本地(本地)

被配置为通过静态IP的手动配置获得其IP地址,DHCP动态主机配置协议。一个网络协议使服务器能够从为给定网络配置的定义数字范围自动将IP地址分配给启用IP的设备。, 或者pppoePoint-to-Point Protocol over Ethernet. PPPoE is a method of connecting to the Internet, typically used with DSL services, where the client connects to the DSL modem.

is configured through the console with its country code and the IP address of the primary移动大师(可选)次要移动大师IP

retrieves its configuration from a configuration node on the primary移动大师

Managed Device地址池

每个托管设备needs a pool of addresses it can dynamically assign to APs or users on each of itsVLANsVirtual Local Area Network. In computer networking, a single Layer 2 network may be partitioned to create multiple distinct broadcast domains, which are mutually isolated so that packets can only pass between them through one or more routers; such a domain is referred to as a Virtual Local Area Network, Virtual LAN, or VLAN., and a separate IP address that托管设备用来创建一个格雷通用路由封装。GRE是一种IP封装协议,用于通过网络运输数据包。隧道到移动大师移动大师can assign IP these addresses to托管设备s使用动态地址池。这些池允许网络管理员创建一个通用配置托管设备与各个分支机构独特的单个设置的接口。如果托管设备s也是DHCP动态主机配置协议。一个网络协议使服务器能够从为给定网络配置的定义数字范围自动将IP地址分配给启用IP的设备。该位置其他设备的服务器,较小DHCP动态主机配置协议。一个网络协议使服务器能够从为给定网络配置的定义数字范围自动将IP地址分配给启用IP的设备。pools for those individual branches can be dynamically carved out from a largerDHCP动态主机配置协议。一个网络协议使服务器能够从为给定网络配置的定义数字范围自动将IP地址分配给启用IP的设备。pool.

一个rubaOS8.0.0.0支持可以应用于层次结构节点的三种不同类型的地址池

纳特池:一个NAT网络地址解读。NAT是一种通过在交通路由设备上运输时,通过在Internet协议(IP)数据包数据包标头中修改网络地址信息(Internet协议(IP)数据包标头)中的网络地址信息。pool is used to assign IP addresses to aVLANVirtual Local Area Network. In computer networking, a single Layer 2 network may be partitioned to create multiple distinct broadcast domains, which are mutually isolated so that packets can only pass between them through one or more routers; such a domain is referred to as a Virtual Local Area Network, Virtual LAN, or VLAN.接口托管设备。这range of addresses in this pool is available for use for anyDHCP动态主机配置协议。一个网络协议使服务器能够从为给定网络配置的定义数字范围自动将IP地址分配给启用IP的设备。- 启用托管设备when it is added to that specific node in the configuration hierarchy. When you add a托管设备,从NAT网络地址解读。NAT是一种通过在交通路由设备上运输时,通过在Internet协议(IP)数据包数据包标头中修改网络地址信息(Internet协议(IP)数据包标头)中的网络地址信息。pool on that hierarchy node and is and leased to the device. The IP addresses in aNAT网络地址解读。NAT是一种通过在交通路由设备上运输时,通过在Internet协议(IP)数据包数据包标头中修改网络地址信息(Internet协议(IP)数据包标头)中的网络地址信息。pool are dynamic (leased) rather than static (permanently assigned), so addresses no longer in use are automatically returned to the pool for reallocation.

Tunnel pools:隧道池定义了一系列IP地址托管设备s创建一个格雷通用路由封装。GRE是一种IP封装协议,用于通过网络运输数据包。隧道到达移动大师。当您添加一个托管设备控制器,从该层次结构节点上的隧道池中删除了一个IP地址,并已租用到该设备。不再使用的地址会自动返回池进行重新分配。

VLAN池:一个VLANVirtual Local Area Network. In computer networking, a single Layer 2 network may be partitioned to create multiple distinct broadcast domains, which are mutually isolated so that packets can only pass between them through one or more routers; such a domain is referred to as a Virtual Local Area Network, Virtual LAN, or VLAN.pool allocates a block of IP addresses for each托管设备。这托管设备充当DNSDomain Name System. A DNS server functions as a phone book for the intranet and Internet users. It converts human-readable computer host names into IP addresses and IP addresses into host names. It stores several records for a domain name such as an address 'A' record, name server (NS), and mail exchanger (MX) records. The Address 'A' record is the most important record that is stored in a DNS server, because it provides the required IP address for a network peripheral or element.代理服务器并动态分配IP地址从其分配的池分配给每个AP或客户端VLANVirtual Local Area Network. In computer networking, a single Layer 2 network may be partitioned to create multiple distinct broadcast domains, which are mutually isolated so that packets can only pass between them through one or more routers; such a domain is referred to as a Virtual Local Area Network, Virtual LAN, or VLAN.。一个VLANVirtual Local Area Network. In computer networking, a single Layer 2 network may be partitioned to create multiple distinct broadcast domains, which are mutually isolated so that packets can only pass between them through one or more routers; such a domain is referred to as a Virtual Local Area Network, Virtual LAN, or VLAN.pool allocates multiple addresses to each托管设备VLANVirtual Local Area Network. In computer networking, a single Layer 2 network may be partitioned to create multiple distinct broadcast domains, which are mutually isolated so that packets can only pass between them through one or more routers; such a domain is referred to as a Virtual Local Area Network, Virtual LAN, or VLAN., unlike the tunnel pool, which assigns a single tunnel IP address to each托管设备

Zero-TouchProvisioning Workflows

托管设备obtains its IP address throughDHCP动态主机配置协议。一个网络协议使服务器能够从为给定网络配置的定义数字范围自动将IP地址分配给启用IP的设备。by sending aDHCP动态主机配置协议。一个网络协议使服务器能够从为给定网络配置的定义数字范围自动将IP地址分配给启用IP的设备。discover on the default uplink port. The default uplink port is configured as an access port inVLANVirtual Local Area Network. In computer networking, a single Layer 2 network may be partitioned to create multiple distinct broadcast domains, which are mutually isolated so that packets can only pass between them through one or more routers; such a domain is referred to as a Virtual Local Area Network, Virtual LAN, or VLAN.4094。

接下来,它将尝试从激活中检索配置参数。如果是托管设备在从激活中检索配置参数时,它将在30秒内重试。这托管设备一直试图从每30秒激活中检索供应参数,直到成功或管理员通过启动迷你设定或全设置来中断自动提供。

To interrupt the auto provisioning process, enter the string迷你设定or全设置at the initial setup dialog prompt shown below.

自动提供正在进行中。选择以下选项之一覆盖或调试...

'enable-debug':启用自动配置调试日志

“ disable-debug':禁用自动提供的调试日志

'mini-setup' : Stop auto-provisioning and start mini setup dialog for smart-local role

“ FullSetup”:停止自动提供并开始为任何角色开始完整的设置对话框

Enter Option (partial string is acceptable):_

ZTP支持矩阵

Table 1:平台和一个rubaOSVersion Support for ZTP

7005

7008

7010

7030

7024

7210

7220

7240

7280

9004

一个rubaOS8。2.2.6

0/0/3

0/0/7

0/0/15

0/0/7

0/0/23

0/0/5

0/0/5

0/0/5

Na

Na

一个rubaOS8。3.0.9

0/0/3

0/0/7

0/0/15

0/0/7

0/0/23

0/0/5

0/0/5

0/0/5

Na

Na

一个rubaOS8。4.0.4

一个ll ports except 0/0/1

一个ll ports except 0/0/1

一个ll ports except 0/0/1

一个ll ports except 0/0/1

一个ll ports except 0/0/1

一个ll ports except 0/0/1

一个ll ports except 0/0/1

ZTP零触摸配置。ZTP是一种设备配置机制,可自动,快速地配置设备,或有时无手动干预。端口:除0/0/1以外的所有端口

Na

Na

一个rubaOS8.5.0.2

一个ll ports except 0/0/1

一个ll ports except 0/0/1

一个ll ports except 0/0/1

一个ll ports except 0/0/1

一个ll ports except 0/0/1

一个ll ports except 0/0/1

一个ll ports except 0/0/1

一个ll ports except 0/0/1

Na

一个ll ports except 0/0/1

一个rubaOS8。6.0.0

一个ll ports except 0/0/1

一个ll ports except 0/0/1

一个ll ports except 0/0/1

一个ll ports except 0/0/1

一个ll ports except 0/0/1

一个ll ports except 0/0/1

一个ll ports except 0/0/1

一个ll ports except 0/0/1

Na

一个ll ports except 0/0/1
/*]]>*/
Baidu