Manuals / Nortel Networks / Computer Equipment / Switch

Nortel Networks 2300 Series manual WSS# set authentication web ssid ourcorp rnd* local, Wired

Models: 2300 Series

1 622

Download 622 pages 48.74 Kb

Page 202

Image 202

202AAA Commands

wired

method1

method2

method3

method4

Applies this authentication rule specifically to users connected to a wired authentication port.

At least one and up to four methods that WSS Software uses to handle authentication. Specify one or more of the following methods in priority order. WSS Software applies multiple methods in the order you enter them.

A method can be one of the following:

•local—Uses the local database of usernames and user groups on the WSS for authentication.

•server-group-name—Uses the defined group of RADIUS servers for authentication. You can enter up to four names of existing RADIUS server groups as methods.

RADIUS servers cannot be used with the EAP-TLS protocol.

For more information, see “Usage.”

Defaults By default, authentication is unconfigured for all clients with network access through AP ports or wired authentication ports on the WSS. Connection, authorization, and accounting are also disabled for these users.

Access Enabled.

Usage You can configure different authentication methods for different groups of users by “wildcarding.” (For details, see “User Wildcards” on page 12.)

You can configure a rule either for wireless access to an SSID, or for wired access through a WSS’s wired authentication port. If the rule is for wireless access to an SSID, specify the SSID name or specify any to match on all SSID names. If the rule is for wired access, specify wired instead of an SSID name.

If you specify multiple authentication methods in the set authentication web command, WSS Software applies them in the order in which they appear in the command, with these results:

•If the first method responds with pass or fail, the evaluation is final.

•If the first method does not respond, WSS Software tries the second method, and so on.

•However, if local appears first, followed by a RADIUS server group, WSS Software overrides any failed searches in the local WSS database and sends an authentication request to the server group.

WSS Software uses a Web-based AAA rule only under the following conditions:

•The client is not denied access by 802.1X or does not support 802.1X.

•The client’s MAC address does not match a MAC authentication rule.

•The fallthru type is web-portal. (For a wireless authentication rule, the fallthru type is specified by the set service-profileauth-fallthrucommand. For a wired authentication rule, the type is specified by the auth-fall-thruoption of the set port type wired-authcommand.)

Examples The following command configures a Web-based AAA rule in the local WSS database for SSID ourcorp and userwildcard rnd*:

WSS# set authentication web ssid ourcorp rnd* local

success: change accepted.

NN47250-100 (Version 02.51)

Page 202

Image 202

Nortel Networks 2300 Series manual WSS# set authentication web ssid ourcorp rnd* local, Wired

Contents

Page Copyright 2007-2008 Nortel Networks. All rights reserved Nortel Networks software license agreement Legal Information Exclusive Remedy Software License Agreement Page SSH Source Code Statement OpenSSL Project License Statements NN47250-100 Version How to get help Introducing the Nortel Wlan 2300 System NN47250-102 Version How to get help Getting help from the Nortel web siteHow to get help NN47250-100 Version Introducing the Nortel Wlan 2300 System Nortel Wlan 2300 System DocumentationInstallation Planning, Configuration, and DeploymentConfiguration and Management Safety and Advisory Notices Bold text Menu Name CommandItalic text Using the Command-Line Interface CLI ConventionsCommand Prompts Clear interface vlan-idip Set enablepassSet port enable disable port-list Clear fdb dynamic port port-list vlan vlan-idMAC Address Notation MAC Address Wildcards Port Lists Command-Line Editing Using CLI Help WSS# show ip telnet WSS# show i?WSS# show ip ? Set ap port-list ap-numname nameUsing the Command-Line Interface NN47250-100 Version Enable Access CommandsDisable See Also enable onWSS# set enablepass Enter old password old-password Set enablepassSyntax set enablepass QuitDisable on Enable on Access Commands NN47250-100 Version Clear port type on Port CommandsPort Type Set port type ap on Set ap on Clear ap onClear ap Clear port countersClear port-group Clear port media-typeClear port mirror Clear port nameClear port type Network Port DefaultsConfiguration from all the specified ports Syntax clear port type port-listMonitor port counters Set port type ap on Set port type wired-auth onWSS# clear port type Key Controls for Monitor Port Counters Display WSS# monitor port countersDisplayed for All Options Output for monitor port countersOctets Number of packets received that were 64 bytes long WSS# reset port Reset portSyntax reset port port-list See Also show port counters onSet ap See Also set port on2360/61-1 to 2382-1 to2380-1 to 2350-1 toSet port See Also reset port onSet port-group Set port media-type WSS# set port-group name server1 1-5 mode onMode on off Syntax set port-group name group-nameport-listmode on off2380# set port media-type 2 rj45 Set port mirrorSyntax set port media-type port-listrj45 Syntax set port mirror source-portobserver observer-portWSS# set port 1 observer WSS# set port 17 name adminpoolSet port name Syntax set port port name nameSet port negotiation Set port poeSet port speed WSS# set port poe 7,9 disableWSS# set port poe 7,9 enable Syntax set port speed port-list10 100 1000 autoSet port trap Syntax set port trap port-listenable disableWSS# set port trap 17-18 enable Set port type apList of physical ports Port-listRadiotype 11a 11b 11g Radio type AP Access Port Defaults Version New values for model option addedWSS# set port type ap 4-6 model 2330 poe enable Set port type wired-authWSS# set port type ap 2 model 2330 poe enable WSS# set ap 1 radio 1 antennatypeNone Wired Authentication Port DefaultsLast-resort Web-portalClear port type on Set port type ap on WSS# set port type wired-authShow port counters Port port-listWSS show port counters octets port Show port-groupOutput for show port-group Syntax show port-group name group-nameShow port media-type GBIC-The Gbic fiber interface is enabledRJ45-The RJ-45 copper interface is enabled Output for show port media-typeShow port mirror Show port poeOutput for show port poe See Also set port poe onSyntax show port status port-list Show port statusOutput for show port status WSS# show port statusWa-Wired authentication port Up-The port is enabledDown-The port is disabled No connector-GBIC slot is emptySystem Services Commands Clear history Clear banner motdSee Also history on Syntax clear prompt Clear promptClear system Wildebeest# clear prompt success change accepted. WSS#Help HelpWSS# clear system location NoneQuickstart Set auto-configHistory See Also clear history onSyntax set auto-config enable disable Set banner motd WSS# set auto-config enable success change acceptedWSS# save config 2360# set vlan 1 port 7 success change acceptedSet confirm Set lengthWSS# set length Set licenseSyntax set length number-of-lines Syntax set license activation-keySee Also show licenses on Set promptSet system contact Syntax set prompt stringSyntax set system countrycode code Set system countrycode23x0#set system contact tamara@example.com 23x0#set system country code CASyntax set system idle-timeout seconds Set system idle-timeoutSee Also show config on WSS# set system idle-timeoutSet system ip-address Set system locationSet system name Syntax set system name stringShow load Show banner motdShow licenses See Also set license onSee Also show system on Show license commandShow system Syntax show systemShow system output Show tech-support System Services Commands System Services Commands NN47250-100 Version Vlan Commands WSS# clear fdb dynamic Clear fdbWSS# clear fdb static vlan blue WSS# clear fdb port 3,5Syntax clear security l2-restrict counters vlan vlan-idall Clear security l2-restrictClear security l2-restrict counters AllSyntax clear vlan vlan-id port port-list tag tag-value Clear vlanWSS# clear security l2-restrict counters vlan abcair Vlan-id Port port-listWSS# clear vlan green port Set vlan port on Show vlan config onSet fdb WSS# clear vlan red port 4 tagSet security l2-restrict Set fdb agingtimeSee Also show fdb agingtime on Syntax set vlan vlan-numname name Enable disableSet vlan name ModeWSS# set vlan 3 name marigold Set vlan portSee Also set vlan port on Syntax set vlan vlan-id port port-list tag tag-valueWSS# set vlan beige port 16 tag Set vlan tunnel-affinityShow fdb Syntax set vlan vlan-idtunnel-affinity numWSS# show fdb all WSS# show fdbSyntax show fdb agingtime vlan vlan-id Show fdb agingtimeOutput for show fdb WSS# show fdb agingtimeSee Also set fdb agingtime on Show fdb countShow roaming station See Also show fdb onOutput for show roaming station Show roaming vlanSee Also show roaming vlan on Syntax show roaming vlan WSS# show roaming vlanOutput for show roaming vlan Show roaming station on Show vlan config onShow security l2-restrict Syntax show security l2-restrict vlan vlan-idallShow tunnel Enabled. Forwarding of Layer 2 traffic from clients isDisabled. Layer 2 forwarding is not restricted Output for show security l2-restrictSyntax show vlan config vlan-id Show vlan configSee Also show vlan config on Output for show tunnelOutput for show vlan config See Also Vlan Commands NN47250-100 Version Quality of Service Commands Clear qosWSS# clear qos dscp-to-qos-map Set qos cos-to-dscp-mapWSS# clear qos Syntax set qos cos-to-dscp-map level dscp dscp-valueSet qos dscp-to-cos-map Show qosSee Also show qos dscp-table on Show qos dscp-tableSee Also show qos on IP Services Commands Set ntp server on Set ntp update-interval onSet ntp on Show ntp onSyntax clear interface vlan-idip Clear interfaceWSS# clear interface mauve ip Clear ip alias Clear ip dns domainSyntax clear ip dns server ip-addr Clear ip dns serverClear ip route WSS# clear ip dns serverSyntax clear ip telnet Clear ip telnetClear ntp server WSS# clear ip telnet success change acceptedWSS# clear ntp update-interval success change accepted Clear ntp update-intervalSyntax clear ntp update-interval Clear snmp communitySyntax clear snmp notify profile profile-name Clear snmp notify profileClear snmp notify target Syntax clear snmp notify target target-numClear snmp usm Clear summertimeClear system ip-address Clear timezoneHost Count num-packets PingCount-5 WSS# ping Set arpSee Also traceroute on Syntax set arp permanent static dynamic ip-addrmac-addrSyntax set arp agingtime seconds Set arp agingtimeSet interface WSS# set arp agingtimeEnables the Dhcp client on the Vlan WSS# set interface default ip 10.10.10.10/24Syntax set interface vlan-idip dhcp-client enable disable Set interface dhcp-clientSet interface dhcp-server WSS# set interface corpvlan ip dhcp-client enableDefault-router ip-addr Clear interface on Show dhcp-client on Show interface onDns-domain Default-routerSet interface status Primary-dns and secondary-dnsSet ip dns Syntax set ip dns enable disableSet ip alias Syntax set ip alias name ip-addrSyntax set ip dns domain name WSS# set ip dns enableSet ip dns domain WSS# set ip dns domain example.comPrimary Set ip dns serverSyntax set ip dns server ip-addrprimary secondary SecondaryEnable Enables the Https server Disable Syntax set ip https server enable disableWSS# set ip https server enable Set ip https serverWSS# set ip route 192.168.4.0 255.255.255.0 10.5.4.2 WSS# set ip route default 10.5.4.1WSS# set ip route 192.168.5.0/24 10.5.5.2 Set ip snmp server Syntax set ip snmp server enable disableWSS# set ip snmp server enable Set ip sshWSS# set ip ssh port Syntax set ip ssh server enable disableSet ip ssh server Crypto generate key on Set ip ssh on Set ip ssh server onSet ip telnet server Syntax set ip telnet server enable disableSet ip telnet Syntax set ip telnet port-numWSS# set ntp enable WSS# set ip telnet server enableSyntax set ntp enable disable Enable Enables the NTP client DisableSet ntp update-interval Set ntp serverSet snmp community Read-notify Notify-only Notify-read-write WSS# set snmp community name switchmgr1 notify-read-writeWSS# set snmp community read-write goodcommunity Set snmp notify profile Default profile-nameDrop send ClientAuthenticationFailureTraps-Generated AutoTuneRadioPowerChangeTraps-GeneratedClientAuthorizationSuccessTraps-Generated ApOperRadioStatusTraps-Generated whenCont RFDetectSpoofedSsidAPTraps-Generated when RFDetectUnAuthorizedSsidTraps-GeneratedSee Also Show snmp notify profile on SNMPv3 with Informs Security unsecured authenticated encryptedSet snmp notify target Snmp-engine-idRetries num Security unsecured authenticated encryptedTimeout num SNMPv3 with TrapsCommunity-string Community string Profile profile-name SNMPv2c with InformsSNMPv2c with Traps WSS# set snmp notify target 2 10.10.40.10 v1 trap SNMPv1 with TrapsSet snmp protocol Syntax set snmp protocol v1 v2c usm all enable disableWSS# set snmp protocol all enable V2cSet snmp usm Set snmp securityWSS# set snmp security encrypted String Engine Snmp-engine-id ip ip-addr local hex hexSpecifies a unique identifier for the Snmp Allow get and set operations and so onSpecifies the access level of the user Auth-pass-phrase string option Start Set summertimeWSS# set snmp usm snmpmgr1 snmp-engine-id local Second , third , fourth , or lastEnd 23x0# set summertime PDT success change acceptedEnd of the time change period Dd-day Set timedateMmm-month Yyyy-yearSyntax set timezone zone-name -hours minutes Set timezone23x0# set timezone PST Syntax show arp ip-addr Show arpOutput for show arp WSS# show arpShow dhcp-client Output for show dhcp-client WSS# show dhcp-clientSyntax show dhcp-server interface vlan-id verbose Show dhcp-serverSee Also set interface dhcp-client on WSS# show dhcp-serverOutput for show dhcp-server Output for show dhcp-server verboseSyntax show interface vlan-id Show interfaceSee Also set interface dhcp-server on WSS# show interfaceShow ip alias Output for show interfaceOutput for show ip dns Show ip dnsOutput for show ip alias Syntax show ip dnsShow ip https Show ip httpsWSS show ip https Syntax show ip route destination Show ip routeOutput for show ip https DestinationOutput for show ip route Show ip telnet Show ip telnetWSS show ip telnet Syntax show ntp Show ntpOutput for show ip telnet WSS show ntpOutput for show ntp SyncedShow snmp counters Show snmp communityShow snmp notify profile Syntax show snmp notify target Show snmp notify targetShow snmp status Syntax show snmp statusSyntax show summertime Show snmp usmShow summertime 23x0# show summertimeShow timedate Show timezoneWSS# telnet TelnetSyntax telnet ip-addr hostname port port-num WSS-remote show vlanTraceroute WSS-remote Session 0 pty tty2.d terminated tt name tty2.dSee Also ping on Error Messages for tracerouteWSS# traceroute server1 AAA Commands Syntax clear accounting admin dot1x system user-wildcard Clear accountingWSS# clear accounting dot1x Nin Clear authentication adminSyntax clear authentication admin user-wildcard SystemSyntax clear authentication console user-wildcard Clear authentication consoleWSS# clear authentication admin Jose WSS# clear authentication console ReginaWSS# clear authentication dot1x ssid finance *@thiscorp.com Clear authentication dot1xClear authentication last-resort WiredWSS# clear authentication mac ssid thatcorp aabbcc Clear authentication macClear authentication proxy WSS# clear authentication proxy ssid mycorpClear location policy Clear authentication webSet authentication proxy on Show aaa on Syntax clear location policy rule-numberWSS# clear location policy Clear mac-userClear mac-user attr Syntax clear mac-user mac-addrWSS# clear mac-user 010203040506 attr filter-id Clear mac-user groupSyntax clear mac-usermac-addr attr attribute-name Syntax clear mac-user mac-addrgroupSyntax clear mac-usergroup group-name Clear mac-usergroupClear mac-usergroup attr WSS# clear mac-usergroup eastcoastersClear mobility-profile Clear userWSS# clear user Nin WSS# clear user Hosni attr session-timeoutClear user attr Syntax clear user username attr attribute-nameClear user group Clear usergroupSyntax clear usergroup group-name attr attribute-name Set accounting admin consoleClear usergroup attr WSS# clear usergroup cardiology attr time-of-dayStart-stop Stop-only WSS# set accounting admin Natasha start-stop localSet accounting dot1x mac web last-resort Method1 Method2 Method3 Method4Web Method1 method2 method3 method4Mac Ssid ssid-nameWSS# set accounting dot1x Nin stop-only sg2 Set accounting systemWSS# set accounting system shorebirds Set authentication admin For more information, see UsageSet authentication console WSS# set authentication admin Jose sg3User-wildcard Method1 Method2 Method3 Method4 Set authentication dot1x WSS# set authentication console * noneOr a period .. For details, see User Wildcards on Already been authenticatedBonded Protocol Method1 Method2 Method3 Method4 Sg1 sg2 sg3 success change accepted Set service-profileauth-fallthru on Show aaa on Set authentication last-resortSet authentication mac WiredSet authentication proxy WSS# set authentication ssid mycorp2 mac ** localSet authentication web WSS# set authentication proxy ssid mycorp ** srvrgrp1WSS# set authentication web ssid ourcorp rnd* local Permit Set location policyDeny Optionally, you can add the suffix .out to the nameEq-Applies the location policy rule to all usernames Show location policy commandClear location policy rule-numbercommand Neq-Applies the location policy rule to all usernamesWSS# set location policy permit vlan floor2 if port 3-7,12 Set mac-userWSS# set location policy deny if user eq *.theirfirm.com Clear location policy on Show location policy onWSS# set mac-user 010203040506 group eastcoasters Syntax set mac-user mac-addrgroup group-nameClear mac-user on Show aaa on Set mac-user attr Syntax set mac-usermac-addr attr attribute-name valueEncryption-type Authentication Attributes for Local UsersEnd-date Mobility-profile Filter-idMobility-profile on By the set dot1x reauth-period command is Service-typeSession-timeout SsidDay wk0900-1700,sa2200-0200 Time-of-day1600,th1000-1600 With start-date,end-date, or bothUrl $u-Username $v-VLAN $s-SSID $p-Service profile nameWSS# set mac-user 010203040506 attr filter-id acl-03.in Vlan-nameWSS# set mac-usergroup eastcoasters attr vlan-name orange For a list of authorization attributes, see onSet mac-usergroup attr Clear mac-user attr on Show aaa onPorts and wired authentication port on the WSS Or wired authentication port on the WSSSet mobility-profile WSS# set mobility-profile mode enable Set mobility-profile modeSyntax set mobility-profile mode enable disable WSS# set mobility-profile name magnolia portWSS# set user admin password chey3nne Syntax set user username password encrypted stringWSS# set user Nin password goody Set userWSS# set user Tamara attr vlan-name orange WSS# set user Nin password 29Jan04Set user attr WSS# set user Tamara attr mobility-profile tulipSyntax set user username group group-name Set user groupSet usergroup WSS# set user Hosni group cardiologySyntax set usergroup group-name attr attribute-name value Syntax set web-portal enable disableSet web-portal Clear usergroup on Clear usergroup attr on Show aaa onShow aaa Show aaa Output User NinShow accounting statistics UP operatingSyntax show accounting statistics WSS# show accounting statisticsRadius server Show accounting statistics OutputLocal WSS database Show location policy Show mobility-profileAAA Commands NN47250-100 Version Syntax clear domain security Mobility Domain CommandsClear domain security 23x0# clear domain securitySet domain security Clear mobility-domainClear mobility-domain member See Also set mobility-domain member onWSS# set domain security required Set mobility-domain memberSyntax set domain security none required Syntax set mobility-domain member ip-addrkey hex-bytesClear mobility-domain on Show mobility-domain config on Set mobility-domain mode member seed-ipSet mobility-domain mode member secondary-seed- ip WSS# set mobility-domain memberWSS# set mobility-domain mode member secondary-seed-ip Set mobility-domain mode seed domain-nameClear mobility-domain member on Show mobility-domain on WSS# show mobility-domain config Show mobility-domain configSyntax show mobility-domain config Show mobility-domainSyntax show mobility-domain Show mobility-domain OutputWSS# show mobility-domain Mobility Domain Commands NN47250-100 Version Syntax clear network-domain Network Domain CommandsClear network-domain 23x0# clear network-domainClear network-domain peer Clear network-domain modeSyntax clear network-domain mode seed member Syntax clear network-domain peer ip-addrallClear network-domain seed-ip Set network-domain mode member seed-ipSee Also set network-domain mode member seed-ip on See Also set network-domain peer onSyntax set network-domain peer ip-addr WSS# set network-domain mode member seed-ipSet network-domain peer Clear network-domain on Show network-domain onSet network domain peer command Set network-domain mode seed domain-nameWSS# set network-domain mode seed domain-name California Show network-domainWSS# show network-domain Show network-domain OutputSyntax show network-domain Output if WSS is the Network Domain seedOutput if WSS is a Network Domain member Network Domain Commands NN47250-100 Version Set ap upgrade-firmware on AP CommandsSet ap radio mode on Set ap radio radio-profile onSet service-profilewpa-ie on Set service-profileweb-portal-acl onSet service-profileauth-psk on Set service-profilersn-ie onSet service-profile psk-phrase on Set service-profile cipher-wep104 onSet service-profile cipher-wep40 on Set service-profile psk-raw onSet radio-profileauto-tunepower-lockdown on Set radio-profileauto-tunepower-config onSet radio-profileauto-tunepower-interval on Set ap radio auto-tunemax-power onClear ap image Syntax clear ap ap-numberimageWSS# clear ap 7 local-switching vlan-profile Clear ap local-switching vlan-profileSyntax clear ap ap-numberlocal-switching vlan-profile See Also set ap image onSyntax clear ap port-listap ap-numradio 1 2 all Clear ap radioRadio-Specific Parameters RadioChannel number for Country of operation 802.11b/g-6802.11a-Lowest valid Option dap removed for APWSS# clear ap 1 boot-configuration Clear ap boot-configurationSyntax clear ap boot-configuration ap-num Clear ap radio load-balancing groupClear radio-profile Short-retry Clear service-profileLong-retry Countermeasures parameter addedSoda success-page Soda failure-pageSoda remediation-acl Soda logout-pageOption force-image-download added Reset apSet ap auto Option radio num auto-tune min-client-rateConfigurable Profile Parameters for APs WSS# set ap autoWSS# set ap auto mode enable Set ap auto modeSyntax set ap auto mode enable disable Set ap auto persistentSyntax set ap auto persistent ap-numall Set ap auto radiotype11a-802.11a WSS# set ap auto persistent 10 success change acceptedWSS# set ap auto radiotype 11b Set ap biasSyntax set ap port-listap ap-numauto bias high low Set ap blink See Also show ap config onSyntax set ap port-list ap ap-num auto blink enable disable WSS# set ap 1 bias lowMode enable disable Set ap boot-configuration ipWSS# set ap 3-4 blink enable Enables or disables the static IP address for the APSet ap boot-configuration mesh psk-phrase Set ap boot-configuration mesh modeWSS# set ap 7 boot-configuration mesh mode enable Set ap boot-configuration mesh psk-raw Syntax set ap ap-numberboot-configuration mesh psk-raw hexSet ap boot-configuration mesh ssid WSS# set ap 7 boot-configuration mesh ssid wlan-meshSet ap boot-configuration switch Switch-ip ip-addrVlan-tag tag-value Set ap boot-configuration vlanEnables or disables use of the specified Vlan tag on the AP Vlan tag value. You can specify a number fromSet ap force-image-download Set ap security on Show ap config on Show ap status onSet ap fingerprint Syntax set ap num fingerprint hexSyntax set ap port-list ap ap-num auto group name WSS# set ap 69 force-image-download enableSet ap group Auto onWSS# set ap 1,4,7 group loadbalance1 Show ap config on Show ap group onSet ap image WSS# set ap 4 group noneSyntax set ap ap-numberlocal-switching mode enable disable Set ap local-switching modeSet ap local-switching vlan-profile WSS# set ap 7 local-switching mode enableSet ap name WSS# set ap 7 local-switching vlan-profile localsSyntax set ap port-list ap ap-numname name WSS# set ap 22 radio 1 antenna-location outdoor Set ap radio antenna-locationWSS# set ap 1 name techpubs IndoorsSet ap radio antennatype See Also set ap radio antennatype onAp port-list Ap ap-num radio 1 radio Set ap radio auto-tune max-power Set ap radio auto-tune min-client-rate WSS# set ap 7 radio 1 auto-tune max-powerSet ap radio auto-tune max-retransmissions Deprecated in WSS Software VersionSet ap radio channel WSS# set ap 11 radio 1 channel 1 tx-powerSet ap radio tx-power on Show ap config on WSS# set ap 5 radio 1 channelSet ap radio load-balancing Set ap radio min-tx-datarateSet ap radio link-calibration Ap ap-numberWSS# set ap 7 radio 1 load-balancing disable Syntax set ap ap-numradio 1 2 load-balancing enable disableSet ap radio load-balancing group Syntax set ap port-listauto radio 1 2 mode enable disable Set ap radio modeWSS# set ap 7 radio 1 load-balancing group room1 Set ap radio radio-profile WSS# set ap 1-5 radio 1 mode enableWSS# set ap 1-3 radio 2 mode enable Radio-profile nameSet ap radio tx-power WSS# set ap 5 radio 1 tx-power Set ap radio channel on Show ap config onSyntax set ap security require optional none Set ap securityWSS# set ap security none WSS# set ap 9 upgrade-firmware disable Set ap upgrade-firmwareSyntax set ap port-listauto upgrade-firmware enable disable Set ap sticky-bitSyntax set band-preference none 11bg 11a Set load-balancing modeSyntax set load-balancing mode enable disable WSS# set band-preference 11aSyntax set load-balancing strictness low med high max WSS# set load-balancing mode disableSet load-balancing strictness MaxSet radio-profile active-scan Syntax set radio-profile name active-scan enable disableSet radio-profile 11g-only WSS# set load-balancing strictness maxSet radio-profile auth-dot1x Set radio-profile auto-tune channel-configWSS# set radio-profile radprof3 active-scan disable Set radio-profile auth-pskSet radio-profile auto-tune channel-holddown WSS# set radio-profile rp2 auto-tune channel-config disableWSS# set radio-profile rp2 auto-tune channel-holddown Set radio-profile auto-tune channel-interval WSS# set radio-profile rp2 auto-tune channel-intervalSet radio-profile auto-tune channel-lockdown Set radio-profile auto-tune power-backoff-timerSet radio-profile auto-tune power-config Syntax set radio-profile name auto-tune channel-lockdownDefaults The default power tuning interval is 300 seconds Set radio-profile auto-tune power-intervalWSS# set radio-profile rp2 auto-tune power-config enable StartedSyntax set radio-profile name auto-tune power-lockdown Set radio-profile auto-tune power-lockdownWSS# set radio-profile rp2 auto-tune power-interval WSS# set radio-profile rp2 auto-tune power-lockdownSet radio-profile beacon-interval Set radio-profile auto-tune power-ramp-intervalWSS# set radio-profile rp2 auto-tune power-ramp-interval Syntax set radio-profile name beacon-interval intervalSet radio-profile cipher-tkip Set radio-profile beaconed-ssidSet radio-profile cipher-ccmp Set radio-profile cipher-wep104WSS# set radio-profile radprof3 countermeasures rogue ConfiguredSet radio-profile countermeasures RogueSet radio-profile crypto-ssid Set radio-profile dtim-intervalSyntax set radio-profile name frag-threshold threshold Set radio-profile frag-thresholdWSS# set radio-profile rp1 frag-threshold Set radio-profile max-rx-lifetime Set radio-profile long-retrySet radio-profile max-tx-lifetime Syntax set radio-profile name mode enable disable Set radio-profile modeDefaults for Radio Profile Parameters WSS# set radio-profile rp1 max-tx-lifetimeWmm-powersave Disable Rfid-mode DisableService-profile Countermeasures11g-only Wmm-powersaveRfid-mode Set radio-profile psk-raw Set radio-profile preamble-lengthSet radio-profile psk-phrase Syntax set radio-profile name preamble-length long shortSyntax set radio-profile name qos-mode svp wmm Set radio-profile qos-modeSet radio-profile rate-enforcement WSS# set radio-profile rp1 qos-mode svpDisables data rate enforcement for the radios in the radio Enables data rate enforcement for the radios in the radioSet radio-profile rfid-mode Set radio-profile rts-threshold Syntax set radio-profile name rfid-mode enable disableWSS# set radio-profile rfid-mode enable Syntax set radio-profile name rts-threshold thresholdDefaults for Service Profile Parameters Set radio-profile service-profileSyntax set radio-profile name service-profile name Cipher-wep104 Disable Cipher-ccmp DisableCipher-tkip Enable Cipher-wep40 DisableRsn-ie Disable No-broadcast DisableProxy-arp Disable Shared-key-auth Disable2.0 12.0,24.0Auto 2.0,5.5,11.0Wpa-ie Disable Portal-acl settingTimeout Web-portal-acl PortalaclWSS# set radio-profile rp2 service-profile wpaclients Set radio-profile tkip-mc-time Set radio-profile shared-key-authSet radio-profile short-retry Set radio-profile wep active-multicast-indexWSS# set radio-profile rp1 wmm-powersave enable Set radio-profile wmm-powersaveSyntax set radio-profile name wmm-powersave enable disable See set service-profilewpa-ie onSyntax set service-profile name attr attribute-name value Set service-profile attrWSS# set service-prof sp2 attr vlan-name blue Syntax set service-profile name auth-dot1x enable disable Set service-profile auth-dot1xWSS# set service-prof sp2 attr mobility-profile tulip WSS# set service-profile wpaclients auth-dot1x disableLast-resort Set service-profile auth-fallthruWeb-portal Syntax set service-profile name auth-psk enable disable Set service-profile auth-pskWSS# set service-profile rndlab auth-fallthru web-portal WSS# set service-profile wpaclients auth-psk enableSyntax set service-profile name beacon enable disable Set service-profile beaconSet service-profile bridging Mesh-service-profile Mesh service profileWSS# set service-profile sp1 cac-mode session Set service-profile cac-modeSyntax set service-profile name cac-mode none session Set service-profilecac-session on Show service-profile onSyntax set service-profile name cac-session max-sessions Set service-profile cac-sessionSet service-profile cipher-ccmp WSS# set service-profile sp1 cac-sessionSyntax set service-profile name cipher-tkip enable disable Set service-profile cipher-tkipWSS# set service-profile sp2 cipher-ccmp enable WSS# set service-profile sp2 cipher-tkip disableWSS# set service-profile sp2 cipher-wep104 enable Set service-profile cipher-wep104Enables 104-bit WEP encryption for WPA clients Syntax set service-profile name cipher-wep40 enable disable Set service-profile cipher-wep40Set service-profile cos WSS# set service-profile sp2 cipher-wep40 enableWSS# set service-profile sp1 cos Set service-profile dhcp-restrictSyntax set service-profile name cos level WSS# set service-profile sp1 dhcp-restrict enableWSS# set service-profile sp1 idle-client-probing disable Set service-profile idle-client-probingSet service-profile keep-initial-vlan Enables keepalivesSee Also show service-profile on Set service-profile load-balancing-exemptWSS# set service-profile sp3 keep-initial-vlan enable Syntax set service-profile name long-retry-count threshold Set service-profile long-retry-countWSS# set service-profile sp3 load-balancing-exempt enable WSS# set service-profile sp1 long-retry-countSyntax set service-profile name mesh mode enable disable Set service-profile meshSet service-profile no-broadcast Enables mesh services for the service profileWSS# set service-profile sp1 no-broadcast enable Set service-profile proxy-arpSyntax set service-profile name no-broadcast enable disable Syntax set service-profile name proxy-arp enable disableWSS# set service-profile sp1 proxy-arp enable Set service-profile psk-phraseSyntax set service-profile name psk-phrase passphrase Set service-profile rsn-ie Set service-profile psk-rawSyntax set service-profile name psk-raw hex Syntax set service-profile name rsn-ie enable disable Set service-profile shared-key-authWSS# set service-profile sprsn rsn-ie enable Syntax set service-profile name short-retry-count threshold Set service-profile short-retry-countWSS# set service-profile sp4 shared-key-auth enable WSS# set service-profile sp1 short-retry-countSet service-profile soda enforce-checks Set service-profile soda agent-directoryNetwork Syntax set service-profile name soda failure-page Set service-profile soda failure-pageWSS# set service-profile sp1 enforce-checks disable Set service-profile soda mode on Show service-profile onSet service-profile soda logout-page Syntax set service-profile name soda logout-pageSyntax set service-profile name soda mode enable disable Set service-profile soda modeWSS# set service-profile sp1 soda logout-page logout.html WSS# set service-profile sp1 soda mode enableSet service-profile soda success-page Set service-profile soda remediation-aclSyntax set service-profile name soda success-page WSS# set service-profile sp1 soda success-page success.html Set service-profile ssid-nameSyntax set service-profile name ssid-name ssid-name WSS# set service-profile clearwlan ssid-name guest Set service-profile ssid-typeSet service-profile static-cos Syntax set service-profile name ssid-type clear cryptoWSS# set service-profile sp1 static-cos enable Set service-profile tkip-mc-timeSyntax set service-profile name static-cos enable disable Syntax set service-profile name tkip-mc-time wait-timeWSS# set service-profile sp3 tkip-mc-time Set service-profile transmit-rates11g-1.0, 2.0, 5.5, 6.0, 9.0, 11.0, 12.0, 18.0 Multicast-rate Beacon-rate rateBeacon-rate Syntax set service-profile name user-idle-timeout seconds Set service-profile user-idle-timeoutSet service-profile web-portal-acl WSS# set service-profile sp1 user-idle-timeoutWSS# set service-profile sp3 web-portal-acl creditsrvr Set service-profile web-portal-formSyntax set service-profile name web-portal-acl aclname Syntax set service-profile name web-portal-form urlWSS# mkdir corpa WSS# dir corpaSet service-profile web-portal-session-timeout Set service-profile web-portal-logoutSet service-profile web-portal-logout logout-url WSS# set service-profile sp1 web-portal-logout mode enableSet service-profile wep active-multicast-index WSS# set service-profile sp1 web-portal-session-timeoutWSS# set service-profile sp2 wep active-multicast-index Set service-profile wep active-unicast-indexWSS# set service-profile sp2 wep active-unicast-index Syntax set service-profile name wep key-index num key value Set service-profile wep key-indexSet service-profile wpa-ie WSS# set service-profile sp2 wep key-index 1 key aabbccddeeSyntax show ap arp ap-number WSS# set service-profile sp2 wpa-ie enableShow ap arp WSS# show ap arpSet ap local-switching mode on Set vlan-profile Show ap configSyntax show ap config port-listradio 1 Output for show ap arpWSS# show ap config Output for show ap config 802.11b 802.11a802.11g Syntax show ap counters port-listradio 1 Show ap unconfigured on Show radio-profile onShow ap counters WSS# show ap countersOutput for show ap counters Use the show sessions network session-id session-idcommand Output for show ap counters Show ap dual-home See Also show sessions network onSyntax show ap fdb ap-number Show ap fdbOutput for show ap fdb WSS# show ap fdbWSS# show ap qos-stats Show ap qos-statsClears the counters after displaying their current values Syntax show ap etherstats port-listap-num Show ap etherstatsOutput for show ap qos-stats WSS# show ap etherstatsOutput for show ap etherstats Syntax show ap mesh-links ap-number Show ap groupShow ap mesh-links WSS# show ap mesh-linksSyntax show ap status terse port-listall radio 1 Show ap statusOutput for show ap mesh-links TersePower settings that are configured by RF Auto Radio state information, to indicate when anConfigured antenna model number TuningWSS# show ap status terse Output for show ap status Image downloading-The AP is receiving a boot But has not yet begun bootingBooting-The AP has asked the WSS for a boot Image downloaded-The AP has received a bootProtection mode remains in effect until Configure succeed state indicates that the APHas received configuration parameters for Sweep Mode indicates that a disabled radio isIndicates that an external antenna was detected But no external antenna is configured onAntenna is configured on the radio but no RadioShow ap vlan Output for show ap status terse and show ap status terseSyntax show ap vlan ap-number Set vlan-profile Set ap local-switching mode onOutput for show ap vlan WSS# show ap vlanSyntax show auto-tune attributes ap ap-numradio 1 2all Show auto-tune attributesOutput for show auto-tune attributes WSS# show auto-tune attributes ap 2 radioShow auto-tune neighbors Set radio-profileauto-tunepower-backoff-timer onSyntax show auto-tune neighbors ap ap-numradio 1 2all Output for show auto-tune neighbors RssiSyntax show ap boot-configuration ap-num Show ap boot-configurationOutput for show ap boot-configuration WSS# show ap boot-configurationConnection Show ap connectionSyntax show ap connection ap-numserial-id serial-ID Serial-id serial-IDWSS# show ap connection Total number of entries Show ap config on Show ap global on Show ap unconfigured onOutput for show ap connection WSS# show ap connection serial-idSyntax show ap global ap-numserial-id serial-ID Show ap globalOutput for show ap global WSS# show ap globalSyntax show ap unconfigured Show ap unconfiguredWSS# show ap unconfigured Show load-balancing group Output for show ap unconfiguredThis WSS switch as a member Show ap connection on Show ap global onWSS# show load-balancing group blue Show radio-profileOutput for show load-balancing group Syntax show radio-profile name ?WSS# show radio-profile default Output for show radio-profile Svp-AP forwarding queues are optimized for Wmm-AP forwarding queues provide standardPriority handling for WMM devices SpectraLink Voice Priority SVPShow service-profile Syntax show service-profile name ?Profile output Clear-Wireless traffic for the Ssid is Output for show service-profileCrypto-Wireless traffic for the Ssid is UnencryptedUser, without requiring a username and password Last-resort-Automatically authenticates the userAllows access to the Ssid requested by None-Denies authentication and prohibitsPreset-The key is configured None-CAC is disabledNone-The key is not configured Session-CAC is based on the number of active802.1X-dynamic authentication Radios in the radio profile mapped to this serviceAuthentication-Lists the authentication methods PSK-preshared key authenticationFieldDescription AP Commands AP Commands NN47250-100 Version Set spantree uplinkfast on STP CommandsShow spantree uplinkfast on Clear spantree portcost Clear spantree portpriClear spantree portvlancost Resets the cost for all VLANsClear spantree portvlanpri Syntax clear spantree statistics port-listvlan vlan-id Clear spantree statisticsSyntax clear spantree portvlanpri port-listall vlan vlan-id WSS# clear spantree statistics 5,11,19-22See Also show spantree statistics on Set spantreeSet spantree backbonefast See Also show spantree onSet spantree hello Set spantree fwddelaySee Also show spantree backbonefast on Set spantree maxage Set spantree portcostSet spantree portfast Snmp Port Path Cost DefaultsSyntax set spantree portfast port port-listenable disable WSS# set spantree portcost 3,4 costSet spantree portvlancost Set spantree portpriSee Also show spantree portfast on Cost cost All Set spantree portvlanpriWSS# set spantree portvlancost 3,4 cost 20 vlan mauve Priority value AllSet spantree priority Set spantree uplinkfastShow spantree WSS# set spantree uplinkfast enableWSS# show spantree vlan default See Also show spantree uplinkfast onBridge Max Age 20 sec Hello Time 2 sec Forward Delay 15 sec Output for show spantree See Also show spantree blockedports on Show spantree backbonefastSyntax show spantree backbonefast See Also set spantree backbonefast on WSS# show spantree blockedports vlan defaultShow spantree blockedports WSS# show spantree backbonefastWSS# show spantree portfast Show spantree portfastSyntax show spantree portfast port-list Uplink fast convergence information for all portsSee Also set spantree portfast on Show spantree portvlancostOutput for show spantree portfast Syntax show spantree portvlancost port-listWSS# show spantree statistics Show spantree statisticsSyntax show spantree statistics port-listvlan vlan-id Statistics for all portsInactive Output for show spantree statistics Output for show spantree statistics Output for show spantree statistics See Also clear spantree statistics on Show spantree uplinkfastOutput for show spantree uplinkfast Syntax show spantree uplinkfast vlan vlan-idSee Also set spantree uplinkfast on STP Commands NN47250-100 Version Syntax clear igmp statistics vlan vlan-id Igmp Snooping CommandsClear igmp statistics Statistics Show igmp statistics on Clear igmp statistics onSee Also show igmp statistics on Set igmpSet igmp lmqi See Also show igmp onSet igmp mrsol Set igmp mrouterSee Also show igmp mrouter on See Also set igmp mrsol mrsi on Set igmp mrsol mrsiSet igmp oqi See Also set igmp mrsol onWSS# set igmp oqi 200 vlan orange Syntax set igmp proxy-report enable disable vlan vlan-idSet igmp proxy-report Vlan vlan-idSet igmp qri WSS# set igmp proxy-report disable vlan orangeSet igmp qi Syntax set igmp qi seconds vlan vlan-idSyntax set igmp qri tenth-seconds vlan vlan-id Syntax set igmp querier enable disable vlan vlan-idSet igmp querier WSS# set igmp qri 50 vlan orangeSee Also show igmp querier on Set igmp receiverSet igmp rv See Also show igmp receiver-table onSyntax show igmp vlan vlan-id Show igmpWSS# set igmp rv 4 vlan orange WSS# show igmp vlan orangeOutput for show igmp Dvmrp PIMMadv-Multicast advertisement Conf Static multicast port configured by anAdministrator Quer-IGMP querySyntax show igmp mrouter vlan vlan-id Show igmp mrouterWSS# show igmp mrouter vlan orange Syntax show igmp querier vlan vlan-id Show igmp querierOutput for show igmp mrouter Set igmp mrouter on Show igmp mrouter onWSS# show igmp querier vlan orange Output for show igmp querier WSS# show igmp querier vlan defaultShow igmp receiver-table See Also set igmp querier onWSS Software displays the multicast receivers on all WSS# show igmp receiver-table vlan orangeWSS# show igmp receiver-table group 237.255.255.0/24 VLANsSee Also set igmp receiver on Show igmp statisticsOutput for show igmp receiver-table Syntax show igmp statistics vlan vlan-idOutput for show igmp statistics See Also clear igmp statistics on Igmp Snooping Commands NN47250-100 Version Clear sessions Session Management CommandsWSS# clear sessions admin WSS# clear sessions consoleWSS# clear sessions telnet client Clear sessions networkSee Also show sessions on WSS# clear sessions network mac-addrShow sessions Console TelnetSee Also clear sessions on Show sessions networkShow sessions telnet client Output Mac-addr mac-addrVerbose output Session-id outputWSS show sessions network user E WSS show sessions networkWSS show sessions network mac-addr 00055d7e981a WSS show sessions network verboseShow sessions network summary Output WSS# show sessions network session-idAdditional show sessions network verbose DescriptionAmount of time the session has been on this AP IP address and port number of the WSS managing the APSerial number and radio number of the AP AAA-VLAN is from Radius or the local databaseShow sessions network session-id Output DOT1X See Also clear sessions network on Session Management Commands NN47250-100 Version Syntax clear security acl acl-name all editbuffer-index Security ACL CommandsClear security acl Clears all security ACLsSet security acl ip acl134 hits #3 WSS# show security acl info allSet security acl ip acl133 hits #1 Set security acl ip acl135 hits #2WSS# clear security acl map acljoe port 4 Clear security acl mapOut Syntax commit security acl acl-nameall Commit security aclWSS# clear security acl map all Type Class MappingSee Also show security acl on Hit-sample-rateRollback security acl Syntax rollback security acl acl-nameallSet security acl By UDP packets Any Priority precedence Minimum delayRoutine precedence Immediate precedenceWSS# set security acl ip acl123 deny 192.168.2.11 WSS# commit security acl allWSS port or ports Set security acl mapWSS set security acl map acl133 port 4 Tag tag-listSyntax set security acl hit-sample-rate seconds Configuration fileSet security acl hit-sample-rate Set security acl ip acl153 hits #3WSS# show security acl hits Show security aclShow security acl dscp Index Counter ACL-nameSyntax show security acl info all editbuffer Show security acl editbufferShow security acl hits WSS# show security acl editbufferSyntax show security acl info acl-nameall editbuffer Show security acl infoSyntax show security acl hits WSS# show security acl infoShow security acl map Show security acl resource-usage Show security acl resource-usage Output True-Security ACLs are mapped True-A default action types is definedFalse-No default action type is defined False-No security ACLs are mappedTrue-Security ACLs are mapped to incoming traffic False-No security ACLs are mapped to incomingCryptography Commands PEM-formatted Crypto ca-certificateEap CertificateCrypto certificate WSS# crypto certificate adminSee Also show crypto ca-certificate on Domain Crypto generate keyCrypto generate request on Crypto generate self-signed on SshCrypto generate request WSS# crypto generate key adminSyntax crypto generate request admin eap web See Also show crypto key ssh onWebaaa option renamed to web WSS# crypto generate request adminEmail Address admin@example.com Maximum string length for State Name increasedCrypto generate self-signed Syntax crypto generate self-signed admin eap webCrypto certificate on Crypto generate key on Syntax crypto otp admin eap web one-time-password WSS# crypto generate self-signed adminCrypto otp See Also crypto pkcs12 on Syntax crypto pkcs12 admin eap web file-location-urlCrypto pkcs12 WSS# crypto generate otp eap hap9iN#ssWSS# crypto otp eap hap9iN#ss See Also crypto otp onWSS# copy tftp//192.168.253.1/2048full.p12 2048full.p12 WSS# crypto pkcs12 eap 2048full.p12Show crypto ca-certificate Output Syntax show crypto ca-certificate admin eap webShow crypto ca-certificate WSS# show crypto ca-certificateCrypto certificate Output Syntax show crypto certificate admin eap webShow crypto certificate WSS# show crypto certificate eapShow crypto key ssh Show crypto key domainSee Also crypto generate key on Cryptography Commands NN47250-100 Version Clear radius Radius and Server Groups CommandsSyntax clear radius deadtime key retransmit timeout Clear server group onClear radius client system-ip See Also set radius proxy client on Clear radius proxy clientClear radius proxy port See Also set radius proxy port onClear radius server Clear server groupSet radius See Also set server group onSet radius client system-ip Syntax set radius proxy client address ip-address Set radius proxy clientSet radius proxy port WSS# set radius proxy client address 10.20.20.9 key radkey1WSS# set radius proxy port 3-4 tag 104 ssid mycorp Set radius serverSsid ssid-name Ssid supported by the third-party AP Encrypted-key-No key Author-password-nortel Set server group Members serverSet server group load-balance 23x0# set server group shorebirds load-balance enable23x0# set server group shorebirds load-balance disable Group-name Server group name of up to 32 charactersRadius and Server Groups Commands NN47250-100 Version 802.1X Management Commands Syntax clear dot1x max-req Clear dot1x bonded-periodClear dot1x max-req WSS# clear dot1x bonded-periodClear dot1x quiet-period Clear dot1x port-controlClear dot1x reauth-max Clear dot1x timeout auth-server Clear dot1x reauth-periodClear dot1x timeout supplicant Clear dot1x tx-periodSet dot1x authcontrol Syntax set dot1x authcontrol enable disableWSS# set dot1x authcontrol enable Set dot1x bonded-periodSet dot1x max-req Set dot1x key-txSee Also show dot1x on WSS# set dot1x max-req Set dot1x port-controlWSS# set dot1x port-control forceauth Set dot1x quiet-period Set dot1x reauthSet dot1x reauth-max Set dot1x reauth-periodSet dot1x timeout auth-server Set dot1x timeout supplicantSet dot1x wep-rekey Syntax set dot1X wep-rekey enable disableSet dot1x tx-period Syntax set dot1x tx-period secondsSet dot1x wep-rekey-period Show dot1xWSS# show dot1x config WSS# show dot1x clientsShow dot1x stats Output WSS # show dot1x stats520 802.1X Management Commands Show rfdetect data on RF Detection CommandsRogue Information Show rfdetect clients on Show rfdetect visible onSyntax clear rfdetect attack-list mac-addr Clear rfdetect attack-listClear rfdetect black-list Syntax clear rfdetect black-list mac-addrClear rfdetect ignore Clear rfdetect ssid-listSyntax clear rfdetect vendor-list client ap mac-addrall Clear rfdetect vendor-listSet rfdetect attack-list WSS# clear rfdetect vendor-list client aabbcc000000Set rfdetect black-list Set rfdetect ignoreSet rfdetect log Syntax set rfdetect log enable disable23x0# set rfdetect log enable 23x0# set rfdetect ignore aabbcc112233Set rfdetect ssid-list Set rfdetect signatureSee Also show log buffer on Syntax set rfdetect vendor-list client ap mac-addr Set rfdetect vendor-listWSS# set rfdetect ssid-list mycorp WSS# set rfdetect vendor-list client aabbcc000000Show rfdetect attack-list Show rfdetect black-listSyntax show rfdetect clients mac mac-addr Show rfdetect clientsShow rfdetect clients Output WSS# show rfdetect clients mac 000c4163fd6dShow rfdetect clients mac Output Syntax show rfdetect countermeasures Show rfdetect countermeasuresWSS# show rfdetect countermeasures See Also set radio-profile countermeasures on Show rfdetect countersShow rfdetect countermeasures Output Syntax show rfdetect countersShow rfdetect data Syntax show rfdetect dataShow rfdetect data Output Syntax show rfdetect ignore Show rfdetect ignoreShow rfdetect mobility-domain WSS# show rfdetect ignore Total number of entriesWSS# show rfdetect mobility-domain Bssid and ssid options addedVendor, Type, and Flags fields added WSS# show rfdetect mobility-domain ssid nrtl-webaaaShow rfdetect mobility-domain Output Show rfdetect mobility-domain ssid or bssid Output Show rfdetect ssid-list Syntax show rfdetect vendor-list Show rfdetect vendor-listShow rfdetect visible WSS# show rfdetect vendor-listShows neighbor information for radio Show ap status commandMac-addr Base MAC address of the Nortel radio Version Vendor, Type, and Flags fields addedSyntax rfping mac mac-addrsession-id session-id RfpingShow rfdetect visible Output Show rfdetect data on Show rfdetect mobility-domain onRfping Output WSS# rfping mac 000e9bbfad13File Management Commands BackupDir on Restore on Syntax backup system tftp/ip-addr/filenameall criticalWSS# backup system tftp/10.10.20.9/sysabak critical Tftp/ip-addr / filenameClear boot config Clear boot backup-configurationCopy Destination-url Syntax copy source-url destination-urlSource-url Be one of the followingWSS# copy floorwss tftp//10.1.1.1/floorwss WSS# copy tftp//10.1.1.107/WSS020101.020 boot1WSS020101.020Delete WSS# copy tftp//10.1.1.1/closetwss closetwssSyntax dir subdirname file core boot0 boot1 WSS# copy testconfig tftp//10.1.1.1/testconfigWSS# delete testconfig DirWSS# dir old WSS# dirWSS# dir file Output for dir Install soda agentWSS# dir boot0 WSS# dir coreSyntax load config url Load configWSS# install soda agent soda.ZIP agent-directory sp1 Uninstall soda agent on Set service-profile soda mode onSyntax md5 boot0 boot1filename WSS# load configWSS# load config testconfig1 Save config on Show boot on Show config onSyntax mkdir subdirname Pubs# md5 boot0WSS040003.020Mkdir WSS# mkdir corp2Syntax reset system force Reset systemWSS# reset system Restore See Also backup on Save configRmdir WSS# save config testconfig1 Set boot backup-configurationSyntax save config filename Syntax set boot backup-configuration filenameSet boot configuration-file Set boot partitionNew fields, Configured boot version and Backup Show bootBoot configuration, added Output for show boot Configuration area. You can specify one of the following Show configSyntax show config area area all Area areaNew options added for remote traffic monitoring snoop Show versionRfdevice changed to rfdetect WSS# show version details Syntax uninstall soda agent agent-directory directory Uninstall soda agentSee Also show boot on WSS# uninstall soda agent agent-directory sp1Install soda agent on Set service-profile soda mode on File Management Commands NN47250-100 Version Syntax clear log trace Trace CommandsClear log trace WSS# clear log traceClear trace Save traceWSS# set trace authentication user jose Set trace authenticationSet trace authorization WSS# save trace traces/trace1Set trace dot1x Level 5 is the defaultUser-readable information. If you do not specify a level Set trace sm WSS# set trace sm mac-addrSyntax show trace all Show traceWSS# show trace Syntax clear snoop filter-name Snoop CommandsClear snoop WSS# clear snoop snoop1WSS# clear snoop map all Clear snoop mapWSS# clear snoop map snoop2 ap 3 radio Examples clear snoop map filter-nameap ap-numradio 1Set snoop WSS# set snoop snoop1 observer 10.10.30.2 snap-length Set snoop mapExamples set snoop map filter-nameap ap-numradio 1 WSS# set snoop map snoop1 ap 3 radio Set snoop modeEnable Stop-after num-pkts Filter. See show snoop stats onSyntax show snoop WSS# set snoop snoop1 mode enable stop-afterShow snoop WSS# show snoopShow snoop info Show snoop mapClear snoop map on Set snoop map on Show snoop on Show snoop statsExamples show snoop stats filter-nameap-numradio 1 Show snoop stats Output Snoop Commands NN47250-100 Version Syntax clear log buffer server ip-addr System Log CommandsClear log WSS# clear log serverSet log Logging state enabled or disabledSeverity Defaults Set log mark Set log trace mbytes See Also show log config onShow log buffer Problems have occurred. These are logged for Reboot or shut downError-The WSS is missing data or is unable to Diagnostic purposes. No action is requiredWSS# show log config Show log configSyntax show log config Show log tracePositive number for example, +100, displays that Conditions are not resolved, the WSS can rebootError-The WSS is missing data or is unable to form Number of log entries starting from the oldestWSS# show log trace facility ? WSS# show log trace +5 facility RogueSystem Log Commands NN47250-100 Version Boot Prompt Commands Syntax autoboot on on OFF off AutobootSee Also boot on Boot autobootBoot Change Boot boot FN=WSS010101.020 DEV=boot1Change on Show on Boot change Boot on Create on Delete on Dhcp on Next on Show onCreate Boot createChange on Delete on Next on Show on Dhcp Boot deleteBoot dhcp Syntax dhcp on on OFF offDiag Syntax dir c d e f boot0 boot1Boot dir Fver on Version onSyntax help command-name Syntax fver c d e f boot0 boot1 filenameBoot fver boot1 FverBoot help fver See Also ls onNext ResetBoot next See Also help onBoot reset ShowOutput for show Compact flash. Boots using nonvolatileBoot show Storage or a flash cardPrimary partition of the flash card in the flash Nonvolatile storage area containing bootPartition Secondary partition of the flash cardTest Boot versionEnables the poweron test flag VersionDir on Fver on Command Index NumericsNN47250-100 320658-G Version Delete 539 Command Index 282 340 Command Index Command Index MAC addresses 12 in user globs Vlan globs Command Index NN47250-100 320658-G Version Page Nortel WLAN-Security Switch 2300 Series Release