Brocade Communications Systems RFS4000, RFS6000, RFS7000

Brocade Mobility RFS4000, RFS6000 and RFS7000 CLI Reference Guide 685

53-1001931-01

Wireless configuration commands 20

authentication-type

[eap|hotspot|kerberos|

mac-auth|none]

Sets the authentication type for this WLAN.

•eap – EAP authentication (802.1X).

•hotspot – Web based authentication.

•kerberos – Kerberos authentication (encryption will change

to WEP128 if its not already wep128/keyguard).

•mac-auth – MAC authentication (RADIUS lookup of MAC

address).

•none – No authentication is used.

wlan <1-256>

aap-ipfilter-rules [in|out]

{<1-20>|AAP_IPF_RULE}

Configures AAP IP Filter rules

•in - In direction

•out - Out direction

•<1-20> - A single index

•<AAP_IPF_RULE> - A list (for example: 1.3.7) or a range

(for example 3-7) of indices

client-bridge-backhaul

enable

Enables the client bridge backhaul capability on this wlan.

deny-static-client Drop packets from static clients

description <description> Sets the description for this WLAN. Use to identify the selected

WLAN.

dot11i [handshake | key|

key-rotation |

key-rotation-inter val|

opp-pmk-caching |

phrase|pmk-caching |

preauthentication |

second-key|

tkip-cntrmeas-hold-time|

wpa2-tkip]

Modifies tkip/ccmp (802.11i) related parameters.

•handshake timeout <100-5000> retransmit <1-10> – Sets

a handshake for the timeout and retransmission intervals.

•timeout <100-5000> – Sets the timeout (in

milliseconds) between retries.

•retransmit <1-10> – Sets the number of retransmission

attempts.

•key [0 <secret-key>|2 <secret-key>|<s ecret-key>] –

Configure the key (PMK).

•0 <secret-key>– Password is specified unencrypted.

•2 <secret-key>– Password is encrypted with

password-encryption secret.

•<secret-key> – The 256bit (64 hex characters) long key.

•key-rotation enable – Controls the p eriodic update o f

broadcast keys for associated wireless clients.

•key-rotation-interval <30-86400> – Configures the

broadcast key rotation interval in seconds.

•opp-pmk-caching – Enables the opportunistic use of cached

pairwise master key s (fast roaming w ith

eap/802.1X).

•phrase [0 <secret-key>|2 <secret-key>| <secret-key>] –

Configures the passphrase.

•0 <secret-key> – Password is specified unencrypted.

•2 <secret-key> – Password is encrypted with

password-encryption secret.

•<secret-key> – Set a passphrase between 8 and 63

characters.

•pmk-caching – Enables the use of cached pairwise master

keys (fast roaming wit h eap/802.1X).

•preauthentication – Enables support for 802.11i

pre-authentication.