• Downloads
• AX411 Access Point Configuration Example: Layer 3 Mode (CLI)    

AX411 Access Point Configuration Example: Layer 3 Mode (CLI)

The following example shows one way to use the JUNOS CLI to configure the services gateway so that access points are in Layer 3 management mode similar to the factory default configuration of the built-in ports on the SRX650 Services Gateway. The example shown in the procedure below is based on configuring Gigabit Ethernet ports 0 through 4 on a GPIM installed in slot 1 of an SRX650 Services Gateway, but you can adapt it for use in other situations. For information about other configurations, see the JUNOS Software WLAN Configuration and Administration Guideand the JUNOS Software Interfaces and Routing Configuration Guide for Security Devices.

1. Establish a CLI session with the services gateway and log in to the device.
2. Enter configuration mode:
   configure [edit]admin@srx650–tp#
3. Create logical interfaces for the ports to which the access points are connected:
   admin@srx650–tp# set interfaces ge–1/0/0 unit 0 family inet address 192.168.4.1/24 admin@srx650–tp# set interfaces ge–1/0/1 unit 0 family inet address 192.168.5.1/24 admin@srx650–tp# set interfaces ge–1/0/2 unit 0 family inet address 192.168.6.1/24 admin@srx650–tp# set interfaces ge–1/0/3 unit 0 family inet address 192.168.7.1/24 admin@srx650–tp# set interfaces ge–1/0/4 unit 0 family inet address 192.168.8.1/24
4. Configure DHCP gateway addresses for each of the ports:
   admin@srx650–tp# set system services dhcp pool 192.168.4.0/24 address-range low 192.168.4.2 high 192.168.4.254admin@srx650–tp# set system services dhcp pool 192.168.5.0/24 address-range low 192.168.5.2 high 192.168.5.254admin@srx650–tp# set system services dhcp pool 192.168.6.0/24 address-range low 192.168.6.2 high 192.168.6.254admin@srx650–tp# set system services dhcp pool 192.168.7.0/24 address-range low 192.168.7.2 high 192.168.7.254admin@srx650–tp# set system services dhcp pool 192.168.8.0/24 address-range low 192.168.8.2 high 192.168.8.254
5. Configure DHCP address pools for each of the ports:
   admin@srx650–tp# set system services dhcp pool 192.168.4.0/24 router 192.168.4.1admin@srx650–tp# set system services dhcp pool 192.168.5.0/24 router 192.168.5.1admin@srx650–tp# set system services dhcp pool 192.168.6.0/24 router 192.168.6.1admin@srx650–tp# set system services dhcp pool 192.168.7.0/24 router 192.168.7.1admin@srx650–tp# set system services dhcp pool 192.168.8.0/24 router 192.168.8.1
6. Add each logical interface to a valid security zone:
   admin@srx650–tp# set security zones security-zone trust interfaces ge–1/0/0.0admin@srx650–tp# set security zones security-zone trust interfaces ge–1/0/1.0admin@srx650–tp# set security zones security-zone trust interfaces ge–1/0/2.0admin@srx650–tp# set security zones security-zone trust interfaces ge–1/0/3.0admin@srx650–tp# set security zones security-zone trust interfaces ge–1/0/4.0
7. Commit your changes:
   admin@srx650–tp# commitcommit complete