sysname AC1
vlan 1
vlan 10
vlan 1000      
interface LoopBack1
 ip address 1.1.1.1 255.255.255.255
interface Vlan-interface1
 ip address 192.168.0.100 255.255.255.0
interface Vlan-interface10
 ip address 172.16.10.2 255.255.255.252
interface Vlan-interface1000
 ip address 192.1.100.1 255.255.255.0        
interface GigabitEthernet1/0/1
 port link-mode bridge
 port access vlan 10
interface GigabitEthernet1/0/8
 port link-mode bridge
 port access vlan 1000
 exit
 ip route-static 0.0.0.0 0 172.16.10.1

 sysname S1
 dhcp enable
vlan 1
vlan 10
vlan 100
exit            
dhcp server ip-pool ap
 gateway-list 192.168.100.254
 network 192.168.100.0 mask 255.255.255.0
 option 138 ip-address 1.1.1.1
 exit
dhcp server ip-pool vlan10
 gateway-list 192.168.10.254
 network 192.168.10.0 mask 255.255.255.0
 dns-list 8.8.8.8
exit
interface Vlan-interface10
 ip address 192.168.10.254 255.255.255.0
 exit
interface Vlan-interface100
 ip address 192.168.100.254 255.255.255.0
 exit
interface GigabitEthernet1/0/1
 port link-mode bridge
 port link-type trunk
 port trunk permit vlan 1 10 100 
 port trunk pvid vlan 100
 exit
interface GigabitEthernet1/0/24
 port link-mode route
 ip address 172.16.10.1 255.255.255.252
 exit
 ip route-static 0.0.0.0 0 172.16.10.2

vlan10
interface  GigabitEthernet1/0/1
port link-type trunk
port trunk permit vlan 10

AC1:
dot1x authentication-method eap            配置认证方法为EAP
radius scheme radius1                                配置radius策略为radius1
primary authentication 192.1.100.100        指定授权和认证服务器
primary accounting 192.1.100.100             指定计费服务器
key authentication simple     12345          指定授权和认证服务器的密钥
key accounting simple           12345          指定计费服务器的密钥
nas-ip 192.1.100.1                                        指定接入服务器
exit
domain name dom1         配置域
authentication lan-access radius-scheme radius1           绑定认证策略
authorization lan-access radius-scheme radius1             绑定授权策略
accounting lan-access radius-scheme radius1                 绑定计费策略
exit
wlan auto-ap enable   AP自动发现功能
wlan auto-persistent enable  AP自动固化
wlan service-template 1
ssid test
vlan 10
client forwarding-location ap
client-security authentication-mode dot1x   设置验证模式为dot1x
dot1x domain dom1     绑定dot1x域
service-template enable
wlan ap-group test
vlan 1
ap AP1
ap-model WA6320-SI
radio 1
radio enable
service-template 1