Manuals / Nortel Networks / Computer Equipment / Switch

Nortel Networks 2300 Series manual Show security acl resource-usage Output

Models: 2300 Series

1 622

Page 476

476Security ACL Commands

L4 global	: True
No rules	: False
Non-IP rules	: False
Root in first	: True
Static default action	: False

No per-user (MAC) mapping : True

Out mapping	: False
In mapping	: True
No VLAN or PORT mapping	: False
No VPORT mapping	: True

Table 73 explains the fields in the show security acl resource-usageoutput.

Table 1: show security acl resource-usage Output

Field	Description

Number of rules	Number of security ACEs currently mapped to ports or VLANs.

Number of leaf nodes	Number of security ACL data entries stored in the rule tree.

Stored rule count	Number of security ACEs stored in the rule tree.

Leaf chain count	Number of chained security ACL data entries stored in the rule tree.

Longest leaf chain	Longest chain of security ACL data entries stored in the rule tree.

Number of non-leaf	Number of nodes with no data entries stored in the rule tree.
nodes

Uncompressed Rule	Number of security ACEs stored in the rule tree, including duplicates—
Count	ACEs in ACLs applied to multiple ports, virtual ports, or VLANs.

Maximum node depth	Number of data elements in the rule tree, from the root to the furthest data
	entry (leaf).

Sub-chain count	Sum of action types represented in all security ACL data entries.

PSCBs in primary	Number of pattern search control blocks (PSCBs) stored in primary node
memory	memory.

PSCBs in secondary	Number of PSCBs stored in secondary node memory.
memory

Leaves in primary	Number of security ACL data entries stored in primary leaf memory.

Leaves in secondary	Number of ACL data entries stored in secondary leaf memory.

Sum node depth	Total number of security ACL data entries.

Fragmentation control	Control value for handling fragmented IP packets.
	Note: The current WSS Software version filters only the first packet of a
	fragmented IP packet and passes the remaining fragments.

UC switchdest	Control value for handling fragmented IP packets.
	Note: The current WSS Software version filters only the first packet of a
	fragmented IP packet and passes the remaining fragments.

NN47250-100 (Version 02.51)

Page 476

Image 476

Nortel Networks 2300 Series manual Show security acl resource-usage Output

Contents

Page Copyright 2007-2008 Nortel Networks. All rights reserved Nortel Networks software license agreement Legal Information Exclusive Remedy Software License Agreement Page SSH Source Code Statement OpenSSL Project License Statements NN47250-100 Version How to get help Introducing the Nortel Wlan 2300 System NN47250-102 Version How to get help Getting help from the Nortel web siteHow to get help NN47250-100 Version Introducing the Nortel Wlan 2300 System Nortel Wlan 2300 System DocumentationConfiguration and Management Planning, Configuration, and DeploymentInstallation Safety and Advisory Notices Italic text Menu Name CommandBold text Using the Command-Line Interface CLI ConventionsCommand Prompts Set enablepass Set port enable disable port-listClear interface vlan-idip Clear fdb dynamic port port-list vlan vlan-idMAC Address Notation MAC Address Wildcards Port Lists Command-Line Editing Using CLI Help WSS# show i? WSS# show ip ?WSS# show ip telnet Set ap port-list ap-numname nameUsing the Command-Line Interface NN47250-100 Version Access Commands DisableEnable See Also enable onSet enablepass Syntax set enablepassWSS# set enablepass Enter old password old-password QuitDisable on Enable on Access Commands NN47250-100 Version Port Commands Port Type Set port type ap on Set ap onClear port type on Clear ap onClear ap Clear port countersClear port-group Clear port media-typeClear port mirror Clear port nameNetwork Port Defaults Configuration from all the specified portsClear port type Syntax clear port type port-listWSS# clear port type Set port type ap on Set port type wired-auth onMonitor port counters Key Controls for Monitor Port Counters Display WSS# monitor port countersOctets Output for monitor port countersDisplayed for All Options Number of packets received that were 64 bytes long Reset port Syntax reset port port-listWSS# reset port See Also show port counters onSet ap See Also set port on2382-1 to 2380-1 to2360/61-1 to 2350-1 toSet port-group See Also reset port onSet port WSS# set port-group name server1 1-5 mode on Mode on offSet port media-type Syntax set port-group name group-nameport-listmode on offSet port mirror Syntax set port media-type port-listrj452380# set port media-type 2 rj45 Syntax set port mirror source-portobserver observer-portWSS# set port 17 name adminpool Set port nameWSS# set port 1 observer Syntax set port port name nameSet port negotiation Set port poeWSS# set port poe 7,9 disable WSS# set port poe 7,9 enableSet port speed Syntax set port speed port-list10 100 1000 autoSyntax set port trap port-listenable disable WSS# set port trap 17-18 enableSet port trap Set port type apRadiotype 11a 11b 11g Radio type Port-listList of physical ports AP Access Port Defaults Version New values for model option addedSet port type wired-auth WSS# set port type ap 2 model 2330 poe enableWSS# set port type ap 4-6 model 2330 poe enable WSS# set ap 1 radio 1 antennatypeWired Authentication Port Defaults Last-resortNone Web-portalWSS# set port type wired-auth Show port countersClear port type on Set port type ap on Port port-listShow port-group Output for show port-groupWSS show port counters octets port Syntax show port-group name group-nameGBIC-The Gbic fiber interface is enabled RJ45-The RJ-45 copper interface is enabledShow port media-type Output for show port media-typeShow port mirror Show port poeOutput for show port poe See Also set port poe onShow port status Output for show port statusSyntax show port status port-list WSS# show port statusUp-The port is enabled Down-The port is disabledWa-Wired authentication port No connector-GBIC slot is emptySystem Services Commands See Also history on Clear banner motdClear history Clear prompt Clear systemSyntax clear prompt Wildebeest# clear prompt success change accepted. WSS#Help WSS# clear system locationHelp NoneSet auto-config HistoryQuickstart See Also clear history onSyntax set auto-config enable disable WSS# set auto-config enable success change accepted WSS# save configSet banner motd 2360# set vlan 1 port 7 success change acceptedSet confirm Set lengthSet license Syntax set length number-of-linesWSS# set length Syntax set license activation-keySet prompt Set system contactSee Also show licenses on Syntax set prompt stringSet system countrycode 23x0#set system contact tamara@example.comSyntax set system countrycode code 23x0#set system country code CASet system idle-timeout See Also show config onSyntax set system idle-timeout seconds WSS# set system idle-timeoutSet system ip-address Set system locationSet system name Syntax set system name stringShow banner motd Show licensesShow load See Also set license onShow license command Show systemSee Also show system on Syntax show systemShow system output Show tech-support System Services Commands System Services Commands NN47250-100 Version Vlan Commands Clear fdb WSS# clear fdb static vlan blueWSS# clear fdb dynamic WSS# clear fdb port 3,5Clear security l2-restrict Clear security l2-restrict countersSyntax clear security l2-restrict counters vlan vlan-idall AllClear vlan WSS# clear security l2-restrict counters vlan abcairSyntax clear vlan vlan-id port port-list tag tag-value Vlan-id Port port-listSet vlan port on Show vlan config on Set fdbWSS# clear vlan green port WSS# clear vlan red port 4 tagSee Also show fdb agingtime on Set fdb agingtimeSet security l2-restrict Enable disable Set vlan nameSyntax set vlan vlan-numname name ModeSet vlan port See Also set vlan port onWSS# set vlan 3 name marigold Syntax set vlan vlan-id port port-list tag tag-valueSet vlan tunnel-affinity Show fdbWSS# set vlan beige port 16 tag Syntax set vlan vlan-idtunnel-affinity numWSS# show fdb all WSS# show fdbShow fdb agingtime Output for show fdbSyntax show fdb agingtime vlan vlan-id WSS# show fdb agingtimeShow fdb count Show roaming stationSee Also set fdb agingtime on See Also show fdb onSee Also show roaming vlan on Show roaming vlanOutput for show roaming station Syntax show roaming vlan WSS# show roaming vlanShow roaming station on Show vlan config on Show security l2-restrictOutput for show roaming vlan Syntax show security l2-restrict vlan vlan-idallEnabled. Forwarding of Layer 2 traffic from clients is Disabled. Layer 2 forwarding is not restrictedShow tunnel Output for show security l2-restrictShow vlan config See Also show vlan config onSyntax show vlan config vlan-id Output for show tunnelOutput for show vlan config See Also Vlan Commands NN47250-100 Version Quality of Service Commands Clear qosSet qos cos-to-dscp-map WSS# clear qosWSS# clear qos dscp-to-qos-map Syntax set qos cos-to-dscp-map level dscp dscp-valueSet qos dscp-to-cos-map Show qosSee Also show qos on Show qos dscp-tableSee Also show qos dscp-table on IP Services Commands Set ntp update-interval on Set ntp onSet ntp server on Show ntp onWSS# clear interface mauve ip Clear interfaceSyntax clear interface vlan-idip Clear ip alias Clear ip dns domainClear ip dns server Clear ip routeSyntax clear ip dns server ip-addr WSS# clear ip dns serverClear ip telnet Clear ntp serverSyntax clear ip telnet WSS# clear ip telnet success change acceptedClear ntp update-interval Syntax clear ntp update-intervalWSS# clear ntp update-interval success change accepted Clear snmp communityClear snmp notify profile Clear snmp notify targetSyntax clear snmp notify profile profile-name Syntax clear snmp notify target target-numClear snmp usm Clear summertimeClear system ip-address Clear timezoneCount-5 PingHost Count num-packets Set arp See Also traceroute onWSS# ping Syntax set arp permanent static dynamic ip-addrmac-addrSet arp agingtime Set interfaceSyntax set arp agingtime seconds WSS# set arp agingtimeWSS# set interface default ip 10.10.10.10/24 Syntax set interface vlan-idip dhcp-client enable disableEnables the Dhcp client on the Vlan Set interface dhcp-clientWSS# set interface corpvlan ip dhcp-client enable Default-router ip-addrSet interface dhcp-server Clear interface on Show dhcp-client on Show interface onDefault-router Set interface statusDns-domain Primary-dns and secondary-dnsSyntax set ip dns enable disable Set ip aliasSet ip dns Syntax set ip alias name ip-addrWSS# set ip dns enable Set ip dns domainSyntax set ip dns domain name WSS# set ip dns domain example.comSet ip dns server Syntax set ip dns server ip-addrprimary secondaryPrimary SecondarySyntax set ip https server enable disable WSS# set ip https server enableEnable Enables the Https server Disable Set ip https serverWSS# set ip route 192.168.5.0/24 10.5.5.2 WSS# set ip route default 10.5.4.1WSS# set ip route 192.168.4.0 255.255.255.0 10.5.4.2 Syntax set ip snmp server enable disable WSS# set ip snmp server enableSet ip snmp server Set ip sshSyntax set ip ssh server enable disable Set ip ssh serverWSS# set ip ssh port Crypto generate key on Set ip ssh on Set ip ssh server onSyntax set ip telnet server enable disable Set ip telnetSet ip telnet server Syntax set ip telnet port-numWSS# set ip telnet server enable Syntax set ntp enable disableWSS# set ntp enable Enable Enables the NTP client DisableSet ntp update-interval Set ntp serverSet snmp community WSS# set snmp community read-write goodcommunity WSS# set snmp community name switchmgr1 notify-read-writeRead-notify Notify-only Notify-read-write Drop send Default profile-nameSet snmp notify profile AutoTuneRadioPowerChangeTraps-Generated ClientAuthorizationSuccessTraps-GeneratedClientAuthenticationFailureTraps-Generated ApOperRadioStatusTraps-Generated whenCont RFDetectSpoofedSsidAPTraps-Generated when RFDetectUnAuthorizedSsidTraps-GeneratedSee Also Show snmp notify profile on Security unsecured authenticated encrypted Set snmp notify targetSNMPv3 with Informs Snmp-engine-idSecurity unsecured authenticated encrypted Timeout numRetries num SNMPv3 with TrapsSNMPv2c with Traps SNMPv2c with InformsCommunity-string Community string Profile profile-name WSS# set snmp notify target 2 10.10.40.10 v1 trap SNMPv1 with TrapsSyntax set snmp protocol v1 v2c usm all enable disable WSS# set snmp protocol all enableSet snmp protocol V2cWSS# set snmp security encrypted Set snmp securitySet snmp usm Snmp-engine-id ip ip-addr local hex hex Specifies a unique identifier for the SnmpString Engine Allow get and set operations and so onSpecifies the access level of the user Auth-pass-phrase string option Set summertime WSS# set snmp usm snmpmgr1 snmp-engine-id localStart Second , third , fourth , or lastEnd of the time change period 23x0# set summertime PDT success change acceptedEnd Set timedate Mmm-monthDd-day Yyyy-year23x0# set timezone PST Set timezoneSyntax set timezone zone-name -hours minutes Show arp Output for show arpSyntax show arp ip-addr WSS# show arpShow dhcp-client Output for show dhcp-client WSS# show dhcp-clientShow dhcp-server See Also set interface dhcp-client onSyntax show dhcp-server interface vlan-id verbose WSS# show dhcp-serverOutput for show dhcp-server Output for show dhcp-server verboseShow interface See Also set interface dhcp-server onSyntax show interface vlan-id WSS# show interfaceShow ip alias Output for show interfaceShow ip dns Output for show ip aliasOutput for show ip dns Syntax show ip dnsWSS show ip https Show ip httpsShow ip https Show ip route Output for show ip httpsSyntax show ip route destination DestinationOutput for show ip route WSS show ip telnet Show ip telnetShow ip telnet Show ntp Output for show ip telnetSyntax show ntp WSS show ntpOutput for show ntp SyncedShow snmp notify profile Show snmp communityShow snmp counters Show snmp notify target Show snmp statusSyntax show snmp notify target Syntax show snmp statusShow snmp usm Show summertimeSyntax show summertime 23x0# show summertimeShow timedate Show timezoneTelnet Syntax telnet ip-addr hostname port port-numWSS# telnet WSS-remote show vlanTraceroute WSS-remote Session 0 pty tty2.d terminated tt name tty2.dWSS# traceroute server1 Error Messages for tracerouteSee Also ping on AAA Commands Syntax clear accounting admin dot1x system user-wildcard Clear accountingClear authentication admin Syntax clear authentication admin user-wildcardWSS# clear accounting dot1x Nin SystemClear authentication console WSS# clear authentication admin JoseSyntax clear authentication console user-wildcard WSS# clear authentication console ReginaClear authentication dot1x Clear authentication last-resortWSS# clear authentication dot1x ssid finance *@thiscorp.com WiredClear authentication mac Clear authentication proxyWSS# clear authentication mac ssid thatcorp aabbcc WSS# clear authentication proxy ssid mycorpClear authentication web Set authentication proxy on Show aaa onClear location policy Syntax clear location policy rule-numberClear mac-user Clear mac-user attrWSS# clear location policy Syntax clear mac-user mac-addrClear mac-user group Syntax clear mac-usermac-addr attr attribute-nameWSS# clear mac-user 010203040506 attr filter-id Syntax clear mac-user mac-addrgroupClear mac-usergroup Clear mac-usergroup attrSyntax clear mac-usergroup group-name WSS# clear mac-usergroup eastcoastersClear mobility-profile Clear userWSS# clear user Hosni attr session-timeout Clear user attrWSS# clear user Nin Syntax clear user username attr attribute-nameClear user group Clear usergroupSet accounting admin console Clear usergroup attrSyntax clear usergroup group-name attr attribute-name WSS# clear usergroup cardiology attr time-of-dayWSS# set accounting admin Natasha start-stop local Set accounting dot1x mac web last-resortStart-stop Stop-only Method1 Method2 Method3 Method4Method1 method2 method3 method4 MacWeb Ssid ssid-nameWSS# set accounting system shorebirds Set accounting systemWSS# set accounting dot1x Nin stop-only sg2 Set authentication admin For more information, see UsageSet authentication console WSS# set authentication admin Jose sg3User-wildcard Method1 Method2 Method3 Method4 Set authentication dot1x WSS# set authentication console * noneBonded Already been authenticatedOr a period .. For details, see User Wildcards on Protocol Method1 Method2 Method3 Method4 Sg1 sg2 sg3 success change accepted Set authentication last-resort Set authentication macSet service-profileauth-fallthru on Show aaa on WiredSet authentication proxy WSS# set authentication ssid mycorp2 mac ** localSet authentication web WSS# set authentication proxy ssid mycorp ** srvrgrp1WSS# set authentication web ssid ourcorp rnd* local Set location policy DenyPermit Optionally, you can add the suffix .out to the nameShow location policy command Clear location policy rule-numbercommandEq-Applies the location policy rule to all usernames Neq-Applies the location policy rule to all usernamesSet mac-user WSS# set location policy deny if user eq *.theirfirm.comWSS# set location policy permit vlan floor2 if port 3-7,12 Clear location policy on Show location policy onClear mac-user on Show aaa on Syntax set mac-user mac-addrgroup group-nameWSS# set mac-user 010203040506 group eastcoasters Set mac-user attr Syntax set mac-usermac-addr attr attribute-name valueEnd-date Authentication Attributes for Local UsersEncryption-type Mobility-profile on Filter-idMobility-profile Service-type Session-timeoutBy the set dot1x reauth-period command is SsidTime-of-day 1600,th1000-1600Day wk0900-1700,sa2200-0200 With start-date,end-date, or both$u-Username $v-VLAN $s-SSID $p-Service profile name WSS# set mac-user 010203040506 attr filter-id acl-03.inUrl Vlan-nameFor a list of authorization attributes, see on Set mac-usergroup attrWSS# set mac-usergroup eastcoasters attr vlan-name orange Clear mac-user attr on Show aaa onSet mobility-profile Or wired authentication port on the WSSPorts and wired authentication port on the WSS Set mobility-profile mode Syntax set mobility-profile mode enable disableWSS# set mobility-profile mode enable WSS# set mobility-profile name magnolia portSyntax set user username password encrypted string WSS# set user Nin password goodyWSS# set user admin password chey3nne Set userWSS# set user Nin password 29Jan04 Set user attrWSS# set user Tamara attr vlan-name orange WSS# set user Tamara attr mobility-profile tulipSet user group Set usergroupSyntax set user username group group-name WSS# set user Hosni group cardiologySyntax set web-portal enable disable Set web-portalSyntax set usergroup group-name attr attribute-name value Clear usergroup on Clear usergroup attr on Show aaa onShow aaa Show aaa Output User NinShow accounting statistics UP operatingSyntax show accounting statistics WSS# show accounting statisticsLocal WSS database Show accounting statistics OutputRadius server Show location policy Show mobility-profileAAA Commands NN47250-100 Version Mobility Domain Commands Clear domain securitySyntax clear domain security 23x0# clear domain securityClear mobility-domain Clear mobility-domain memberSet domain security See Also set mobility-domain member onSet mobility-domain member Syntax set domain security none requiredWSS# set domain security required Syntax set mobility-domain member ip-addrkey hex-bytesSet mobility-domain mode member seed-ip Set mobility-domain mode member secondary-seed- ipClear mobility-domain on Show mobility-domain config on WSS# set mobility-domain memberClear mobility-domain member on Show mobility-domain on Set mobility-domain mode seed domain-nameWSS# set mobility-domain mode member secondary-seed-ip Show mobility-domain config Syntax show mobility-domain configWSS# show mobility-domain config Show mobility-domainWSS# show mobility-domain Show mobility-domain OutputSyntax show mobility-domain Mobility Domain Commands NN47250-100 Version Network Domain Commands Clear network-domainSyntax clear network-domain 23x0# clear network-domainClear network-domain mode Syntax clear network-domain mode seed memberClear network-domain peer Syntax clear network-domain peer ip-addrallSet network-domain mode member seed-ip See Also set network-domain mode member seed-ip onClear network-domain seed-ip See Also set network-domain peer onWSS# set network-domain mode member seed-ip Set network-domain peerSyntax set network-domain peer ip-addr Clear network-domain on Show network-domain onSet network-domain mode seed domain-name WSS# set network-domain mode seed domain-name CaliforniaSet network domain peer command Show network-domainShow network-domain Output Syntax show network-domainWSS# show network-domain Output if WSS is the Network Domain seedOutput if WSS is a Network Domain member Network Domain Commands NN47250-100 Version AP Commands Set ap radio mode onSet ap upgrade-firmware on Set ap radio radio-profile onSet service-profileweb-portal-acl on Set service-profileauth-psk onSet service-profilewpa-ie on Set service-profilersn-ie onSet service-profile cipher-wep104 on Set service-profile cipher-wep40 onSet service-profile psk-phrase on Set service-profile psk-raw onSet radio-profileauto-tunepower-config on Set radio-profileauto-tunepower-interval onSet radio-profileauto-tunepower-lockdown on Set ap radio auto-tunemax-power onClear ap image Syntax clear ap ap-numberimageClear ap local-switching vlan-profile Syntax clear ap ap-numberlocal-switching vlan-profileWSS# clear ap 7 local-switching vlan-profile See Also set ap image onClear ap radio Radio-Specific ParametersSyntax clear ap port-listap ap-numradio 1 2 all Radio802.11b/g-6 802.11a-Lowest validChannel number for Country of operation Option dap removed for APClear ap boot-configuration Syntax clear ap boot-configuration ap-numWSS# clear ap 1 boot-configuration Clear ap radio load-balancing groupClear radio-profile Clear service-profile Long-retryShort-retry Countermeasures parameter addedSoda failure-page Soda remediation-aclSoda success-page Soda logout-pageReset ap Set ap autoOption force-image-download added Option radio num auto-tune min-client-rateConfigurable Profile Parameters for APs WSS# set ap autoSet ap auto mode Syntax set ap auto mode enable disableWSS# set ap auto mode enable Set ap auto persistentSet ap auto radiotype 11a-802.11aSyntax set ap auto persistent ap-numall WSS# set ap auto persistent 10 success change acceptedSyntax set ap port-listap ap-numauto bias high low Set ap biasWSS# set ap auto radiotype 11b See Also show ap config on Syntax set ap port-list ap ap-num auto blink enable disableSet ap blink WSS# set ap 1 bias lowSet ap boot-configuration ip WSS# set ap 3-4 blink enableMode enable disable Enables or disables the static IP address for the APWSS# set ap 7 boot-configuration mesh mode enable Set ap boot-configuration mesh modeSet ap boot-configuration mesh psk-phrase Set ap boot-configuration mesh psk-raw Syntax set ap ap-numberboot-configuration mesh psk-raw hexSet ap boot-configuration mesh ssid WSS# set ap 7 boot-configuration mesh ssid wlan-meshSet ap boot-configuration switch Switch-ip ip-addrSet ap boot-configuration vlan Enables or disables use of the specified Vlan tag on the APVlan-tag tag-value Vlan tag value. You can specify a number fromSet ap security on Show ap config on Show ap status on Set ap fingerprintSet ap force-image-download Syntax set ap num fingerprint hexWSS# set ap 69 force-image-download enable Set ap groupSyntax set ap port-list ap ap-num auto group name Auto onShow ap config on Show ap group on Set ap imageWSS# set ap 1,4,7 group loadbalance1 WSS# set ap 4 group noneSet ap local-switching mode Set ap local-switching vlan-profileSyntax set ap ap-numberlocal-switching mode enable disable WSS# set ap 7 local-switching mode enableSyntax set ap port-list ap ap-numname name WSS# set ap 7 local-switching vlan-profile localsSet ap name Set ap radio antenna-location WSS# set ap 1 name techpubsWSS# set ap 22 radio 1 antenna-location outdoor IndoorsSet ap radio antennatype See Also set ap radio antennatype onAp port-list Ap ap-num radio 1 radio Set ap radio auto-tune max-power WSS# set ap 7 radio 1 auto-tune max-power Set ap radio auto-tune max-retransmissionsSet ap radio auto-tune min-client-rate Deprecated in WSS Software VersionWSS# set ap 11 radio 1 channel 1 tx-power Set ap radio tx-power on Show ap config onSet ap radio channel WSS# set ap 5 radio 1 channelSet ap radio min-tx-datarate Set ap radio link-calibrationSet ap radio load-balancing Ap ap-numberSet ap radio load-balancing group Syntax set ap ap-numradio 1 2 load-balancing enable disableWSS# set ap 7 radio 1 load-balancing disable WSS# set ap 7 radio 1 load-balancing group room1 Set ap radio modeSyntax set ap port-listauto radio 1 2 mode enable disable WSS# set ap 1-5 radio 1 mode enable WSS# set ap 1-3 radio 2 mode enableSet ap radio radio-profile Radio-profile nameSet ap radio tx-power WSS# set ap 5 radio 1 tx-power Set ap radio channel on Show ap config onWSS# set ap security none Set ap securitySyntax set ap security require optional none Set ap upgrade-firmware Syntax set ap port-listauto upgrade-firmware enable disableWSS# set ap 9 upgrade-firmware disable Set ap sticky-bitSet load-balancing mode Syntax set load-balancing mode enable disableSyntax set band-preference none 11bg 11a WSS# set band-preference 11aWSS# set load-balancing mode disable Set load-balancing strictnessSyntax set load-balancing strictness low med high max MaxSyntax set radio-profile name active-scan enable disable Set radio-profile 11g-onlySet radio-profile active-scan WSS# set load-balancing strictness maxSet radio-profile auto-tune channel-config WSS# set radio-profile radprof3 active-scan disableSet radio-profile auth-dot1x Set radio-profile auth-pskWSS# set radio-profile rp2 auto-tune channel-holddown WSS# set radio-profile rp2 auto-tune channel-config disableSet radio-profile auto-tune channel-holddown Set radio-profile auto-tune channel-interval WSS# set radio-profile rp2 auto-tune channel-intervalSet radio-profile auto-tune power-backoff-timer Set radio-profile auto-tune power-configSet radio-profile auto-tune channel-lockdown Syntax set radio-profile name auto-tune channel-lockdownSet radio-profile auto-tune power-interval WSS# set radio-profile rp2 auto-tune power-config enableDefaults The default power tuning interval is 300 seconds StartedSet radio-profile auto-tune power-lockdown WSS# set radio-profile rp2 auto-tune power-intervalSyntax set radio-profile name auto-tune power-lockdown WSS# set radio-profile rp2 auto-tune power-lockdownSet radio-profile auto-tune power-ramp-interval WSS# set radio-profile rp2 auto-tune power-ramp-intervalSet radio-profile beacon-interval Syntax set radio-profile name beacon-interval intervalSet radio-profile beaconed-ssid Set radio-profile cipher-ccmpSet radio-profile cipher-tkip Set radio-profile cipher-wep104Configured Set radio-profile countermeasuresWSS# set radio-profile radprof3 countermeasures rogue RogueSet radio-profile crypto-ssid Set radio-profile dtim-intervalWSS# set radio-profile rp1 frag-threshold Set radio-profile frag-thresholdSyntax set radio-profile name frag-threshold threshold Set radio-profile max-tx-lifetime Set radio-profile long-retrySet radio-profile max-rx-lifetime Set radio-profile mode Defaults for Radio Profile ParametersSyntax set radio-profile name mode enable disable WSS# set radio-profile rp1 max-tx-lifetimeRfid-mode Disable Service-profileWmm-powersave Disable CountermeasuresRfid-mode Wmm-powersave11g-only Set radio-profile preamble-length Set radio-profile psk-phraseSet radio-profile psk-raw Syntax set radio-profile name preamble-length long shortSet radio-profile qos-mode Set radio-profile rate-enforcementSyntax set radio-profile name qos-mode svp wmm WSS# set radio-profile rp1 qos-mode svpSet radio-profile rfid-mode Enables data rate enforcement for the radios in the radioDisables data rate enforcement for the radios in the radio Syntax set radio-profile name rfid-mode enable disable WSS# set radio-profile rfid-mode enableSet radio-profile rts-threshold Syntax set radio-profile name rts-threshold thresholdSyntax set radio-profile name service-profile name Set radio-profile service-profileDefaults for Service Profile Parameters Cipher-ccmp Disable Cipher-tkip EnableCipher-wep104 Disable Cipher-wep40 DisableNo-broadcast Disable Proxy-arp DisableRsn-ie Disable Shared-key-auth Disable12.0,24.0 Auto2.0 2.0,5.5,11.0Portal-acl setting TimeoutWpa-ie Disable Web-portal-acl PortalaclWSS# set radio-profile rp2 service-profile wpaclients Set radio-profile shared-key-auth Set radio-profile short-retrySet radio-profile tkip-mc-time Set radio-profile wep active-multicast-indexSet radio-profile wmm-powersave Syntax set radio-profile name wmm-powersave enable disableWSS# set radio-profile rp1 wmm-powersave enable See set service-profilewpa-ie onWSS# set service-prof sp2 attr vlan-name blue Set service-profile attrSyntax set service-profile name attr attribute-name value Set service-profile auth-dot1x WSS# set service-prof sp2 attr mobility-profile tulipSyntax set service-profile name auth-dot1x enable disable WSS# set service-profile wpaclients auth-dot1x disableWeb-portal Set service-profile auth-fallthruLast-resort Set service-profile auth-psk WSS# set service-profile rndlab auth-fallthru web-portalSyntax set service-profile name auth-psk enable disable WSS# set service-profile wpaclients auth-psk enableSet service-profile beacon Set service-profile bridgingSyntax set service-profile name beacon enable disable Mesh-service-profile Mesh service profileSet service-profile cac-mode Syntax set service-profile name cac-mode none sessionWSS# set service-profile sp1 cac-mode session Set service-profilecac-session on Show service-profile onSet service-profile cac-session Set service-profile cipher-ccmpSyntax set service-profile name cac-session max-sessions WSS# set service-profile sp1 cac-sessionSet service-profile cipher-tkip WSS# set service-profile sp2 cipher-ccmp enableSyntax set service-profile name cipher-tkip enable disable WSS# set service-profile sp2 cipher-tkip disableEnables 104-bit WEP encryption for WPA clients Set service-profile cipher-wep104WSS# set service-profile sp2 cipher-wep104 enable Set service-profile cipher-wep40 Set service-profile cosSyntax set service-profile name cipher-wep40 enable disable WSS# set service-profile sp2 cipher-wep40 enableSet service-profile dhcp-restrict Syntax set service-profile name cos levelWSS# set service-profile sp1 cos WSS# set service-profile sp1 dhcp-restrict enableSet service-profile idle-client-probing Set service-profile keep-initial-vlanWSS# set service-profile sp1 idle-client-probing disable Enables keepalivesWSS# set service-profile sp3 keep-initial-vlan enable Set service-profile load-balancing-exemptSee Also show service-profile on Set service-profile long-retry-count WSS# set service-profile sp3 load-balancing-exempt enableSyntax set service-profile name long-retry-count threshold WSS# set service-profile sp1 long-retry-countSet service-profile mesh Set service-profile no-broadcastSyntax set service-profile name mesh mode enable disable Enables mesh services for the service profileSet service-profile proxy-arp Syntax set service-profile name no-broadcast enable disableWSS# set service-profile sp1 no-broadcast enable Syntax set service-profile name proxy-arp enable disableSyntax set service-profile name psk-phrase passphrase Set service-profile psk-phraseWSS# set service-profile sp1 proxy-arp enable Syntax set service-profile name psk-raw hex Set service-profile psk-rawSet service-profile rsn-ie WSS# set service-profile sprsn rsn-ie enable Set service-profile shared-key-authSyntax set service-profile name rsn-ie enable disable Set service-profile short-retry-count WSS# set service-profile sp4 shared-key-auth enableSyntax set service-profile name short-retry-count threshold WSS# set service-profile sp1 short-retry-countNetwork Set service-profile soda agent-directorySet service-profile soda enforce-checks Set service-profile soda failure-page WSS# set service-profile sp1 enforce-checks disableSyntax set service-profile name soda failure-page Set service-profile soda mode on Show service-profile onSet service-profile soda logout-page Syntax set service-profile name soda logout-pageSet service-profile soda mode WSS# set service-profile sp1 soda logout-page logout.htmlSyntax set service-profile name soda mode enable disable WSS# set service-profile sp1 soda mode enableSyntax set service-profile name soda success-page Set service-profile soda remediation-aclSet service-profile soda success-page Syntax set service-profile name ssid-name ssid-name Set service-profile ssid-nameWSS# set service-profile sp1 soda success-page success.html Set service-profile ssid-type Set service-profile static-cosWSS# set service-profile clearwlan ssid-name guest Syntax set service-profile name ssid-type clear cryptoSet service-profile tkip-mc-time Syntax set service-profile name static-cos enable disableWSS# set service-profile sp1 static-cos enable Syntax set service-profile name tkip-mc-time wait-time11g-1.0, 2.0, 5.5, 6.0, 9.0, 11.0, 12.0, 18.0 Set service-profile transmit-ratesWSS# set service-profile sp3 tkip-mc-time Beacon-rate Beacon-rate rateMulticast-rate Set service-profile user-idle-timeout Set service-profile web-portal-aclSyntax set service-profile name user-idle-timeout seconds WSS# set service-profile sp1 user-idle-timeoutSet service-profile web-portal-form Syntax set service-profile name web-portal-acl aclnameWSS# set service-profile sp3 web-portal-acl creditsrvr Syntax set service-profile name web-portal-form urlWSS# mkdir corpa WSS# dir corpaSet service-profile web-portal-logout Set service-profile web-portal-logout logout-urlSet service-profile web-portal-session-timeout WSS# set service-profile sp1 web-portal-logout mode enableSet service-profile wep active-multicast-index WSS# set service-profile sp1 web-portal-session-timeoutWSS# set service-profile sp2 wep active-unicast-index Set service-profile wep active-unicast-indexWSS# set service-profile sp2 wep active-multicast-index Set service-profile wep key-index Set service-profile wpa-ieSyntax set service-profile name wep key-index num key value WSS# set service-profile sp2 wep key-index 1 key aabbccddeeWSS# set service-profile sp2 wpa-ie enable Show ap arpSyntax show ap arp ap-number WSS# show ap arpShow ap config Syntax show ap config port-listradio 1Set ap local-switching mode on Set vlan-profile Output for show ap arpWSS# show ap config Output for show ap config 802.11g 802.11a802.11b Show ap unconfigured on Show radio-profile on Show ap countersSyntax show ap counters port-listradio 1 WSS# show ap countersOutput for show ap counters Use the show sessions network session-id session-idcommand Output for show ap counters Show ap dual-home See Also show sessions network onShow ap fdb Output for show ap fdbSyntax show ap fdb ap-number WSS# show ap fdbClears the counters after displaying their current values Show ap qos-statsWSS# show ap qos-stats Show ap etherstats Output for show ap qos-statsSyntax show ap etherstats port-listap-num WSS# show ap etherstatsOutput for show ap etherstats Show ap group Show ap mesh-linksSyntax show ap mesh-links ap-number WSS# show ap mesh-linksShow ap status Output for show ap mesh-linksSyntax show ap status terse port-listall radio 1 TerseRadio state information, to indicate when an Configured antenna model numberPower settings that are configured by RF Auto TuningWSS# show ap status terse Output for show ap status But has not yet begun booting Booting-The AP has asked the WSS for a bootImage downloading-The AP is receiving a boot Image downloaded-The AP has received a bootConfigure succeed state indicates that the AP Has received configuration parameters forProtection mode remains in effect until Sweep Mode indicates that a disabled radio isBut no external antenna is configured on Antenna is configured on the radio but noIndicates that an external antenna was detected RadioShow ap vlan Output for show ap status terse and show ap status terseSet vlan-profile Set ap local-switching mode on Output for show ap vlanSyntax show ap vlan ap-number WSS# show ap vlanShow auto-tune attributes Output for show auto-tune attributesSyntax show auto-tune attributes ap ap-numradio 1 2all WSS# show auto-tune attributes ap 2 radioSyntax show auto-tune neighbors ap ap-numradio 1 2all Set radio-profileauto-tunepower-backoff-timer onShow auto-tune neighbors Output for show auto-tune neighbors RssiShow ap boot-configuration Output for show ap boot-configurationSyntax show ap boot-configuration ap-num WSS# show ap boot-configurationShow ap connection Syntax show ap connection ap-numserial-id serial-IDConnection Serial-id serial-IDShow ap config on Show ap global on Show ap unconfigured on Output for show ap connectionWSS# show ap connection Total number of entries WSS# show ap connection serial-idShow ap global Output for show ap globalSyntax show ap global ap-numserial-id serial-ID WSS# show ap globalWSS# show ap unconfigured Show ap unconfiguredSyntax show ap unconfigured Output for show ap unconfigured This WSS switch as a memberShow load-balancing group Show ap connection on Show ap global onShow radio-profile Output for show load-balancing groupWSS# show load-balancing group blue Syntax show radio-profile name ?WSS# show radio-profile default Output for show radio-profile Wmm-AP forwarding queues provide standard Priority handling for WMM devicesSvp-AP forwarding queues are optimized for SpectraLink Voice Priority SVPShow service-profile Syntax show service-profile name ?Profile output Output for show service-profile Crypto-Wireless traffic for the Ssid isClear-Wireless traffic for the Ssid is UnencryptedLast-resort-Automatically authenticates the user Allows access to the Ssid requested byUser, without requiring a username and password None-Denies authentication and prohibitsNone-CAC is disabled None-The key is not configuredPreset-The key is configured Session-CAC is based on the number of activeRadios in the radio profile mapped to this service Authentication-Lists the authentication methods802.1X-dynamic authentication PSK-preshared key authenticationFieldDescription AP Commands AP Commands NN47250-100 Version Show spantree uplinkfast on STP CommandsSet spantree uplinkfast on Clear spantree portcost Clear spantree portpriClear spantree portvlanpri Resets the cost for all VLANsClear spantree portvlancost Clear spantree statistics Syntax clear spantree portvlanpri port-listall vlan vlan-idSyntax clear spantree statistics port-listvlan vlan-id WSS# clear spantree statistics 5,11,19-22Set spantree Set spantree backbonefastSee Also show spantree statistics on See Also show spantree onSee Also show spantree backbonefast on Set spantree fwddelaySet spantree hello Set spantree maxage Set spantree portcostSnmp Port Path Cost Defaults Syntax set spantree portfast port port-listenable disableSet spantree portfast WSS# set spantree portcost 3,4 costSee Also show spantree portfast on Set spantree portpriSet spantree portvlancost Set spantree portvlanpri WSS# set spantree portvlancost 3,4 cost 20 vlan mauveCost cost All Priority value AllSet spantree priority Set spantree uplinkfastWSS# set spantree uplinkfast enable WSS# show spantree vlan defaultShow spantree See Also show spantree uplinkfast onBridge Max Age 20 sec Hello Time 2 sec Forward Delay 15 sec Output for show spantree Syntax show spantree backbonefast Show spantree backbonefastSee Also show spantree blockedports on WSS# show spantree blockedports vlan default Show spantree blockedportsSee Also set spantree backbonefast on WSS# show spantree backbonefastShow spantree portfast Syntax show spantree portfast port-listWSS# show spantree portfast Uplink fast convergence information for all portsShow spantree portvlancost Output for show spantree portfastSee Also set spantree portfast on Syntax show spantree portvlancost port-listShow spantree statistics Syntax show spantree statistics port-listvlan vlan-idWSS# show spantree statistics Statistics for all portsInactive Output for show spantree statistics Output for show spantree statistics Output for show spantree statistics Show spantree uplinkfast Output for show spantree uplinkfastSee Also clear spantree statistics on Syntax show spantree uplinkfast vlan vlan-idSee Also set spantree uplinkfast on STP Commands NN47250-100 Version Igmp Snooping Commands Clear igmp statisticsSyntax clear igmp statistics vlan vlan-id Statistics Show igmp statistics on Clear igmp statistics onSet igmp Set igmp lmqiSee Also show igmp statistics on See Also show igmp onSee Also show igmp mrouter on Set igmp mrouterSet igmp mrsol Set igmp mrsol mrsi Set igmp oqiSee Also set igmp mrsol mrsi on See Also set igmp mrsol onSyntax set igmp proxy-report enable disable vlan vlan-id Set igmp proxy-reportWSS# set igmp oqi 200 vlan orange Vlan vlan-idWSS# set igmp proxy-report disable vlan orange Set igmp qiSet igmp qri Syntax set igmp qi seconds vlan vlan-idSyntax set igmp querier enable disable vlan vlan-id Set igmp querierSyntax set igmp qri tenth-seconds vlan vlan-id WSS# set igmp qri 50 vlan orangeSet igmp receiver Set igmp rvSee Also show igmp querier on See Also show igmp receiver-table onShow igmp WSS# set igmp rv 4 vlan orangeSyntax show igmp vlan vlan-id WSS# show igmp vlan orangeOutput for show igmp Dvmrp PIMConf Static multicast port configured by an AdministratorMadv-Multicast advertisement Quer-IGMP queryWSS# show igmp mrouter vlan orange Show igmp mrouterSyntax show igmp mrouter vlan vlan-id Show igmp querier Output for show igmp mrouterSyntax show igmp querier vlan vlan-id Set igmp mrouter on Show igmp mrouter onWSS# show igmp querier vlan orange WSS# show igmp querier vlan default Show igmp receiver-tableOutput for show igmp querier See Also set igmp querier onWSS# show igmp receiver-table vlan orange WSS# show igmp receiver-table group 237.255.255.0/24WSS Software displays the multicast receivers on all VLANsShow igmp statistics Output for show igmp receiver-tableSee Also set igmp receiver on Syntax show igmp statistics vlan vlan-idOutput for show igmp statistics See Also clear igmp statistics on Igmp Snooping Commands NN47250-100 Version Session Management Commands WSS# clear sessions adminClear sessions WSS# clear sessions consoleClear sessions network See Also show sessions onWSS# clear sessions telnet client WSS# clear sessions network mac-addrShow sessions Console TelnetShow sessions network Show sessions telnet client OutputSee Also clear sessions on Mac-addr mac-addrVerbose output Session-id outputWSS show sessions network WSS show sessions network mac-addr 00055d7e981aWSS show sessions network user E WSS show sessions network verboseShow sessions network summary Output WSS# show sessions network session-idAdditional show sessions network verbose DescriptionIP address and port number of the WSS managing the AP Serial number and radio number of the APAmount of time the session has been on this AP AAA-VLAN is from Radius or the local databaseShow sessions network session-id Output DOT1X See Also clear sessions network on Session Management Commands NN47250-100 Version Security ACL Commands Clear security aclSyntax clear security acl acl-name all editbuffer-index Clears all security ACLsWSS# show security acl info all Set security acl ip acl133 hits #1Set security acl ip acl134 hits #3 Set security acl ip acl135 hits #2Out Clear security acl mapWSS# clear security acl map acljoe port 4 Commit security acl WSS# clear security acl map allSyntax commit security acl acl-nameall Type Class MappingHit-sample-rate Rollback security aclSee Also show security acl on Syntax rollback security acl acl-nameallSet security acl By UDP packets Any Minimum delay Routine precedencePriority precedence Immediate precedenceWSS# set security acl ip acl123 deny 192.168.2.11 WSS# commit security acl allSet security acl map WSS set security acl map acl133 port 4WSS port or ports Tag tag-listConfiguration file Set security acl hit-sample-rateSyntax set security acl hit-sample-rate seconds Set security acl ip acl153 hits #3Show security acl Show security acl dscpWSS# show security acl hits Index Counter ACL-nameShow security acl editbuffer Show security acl hitsSyntax show security acl info all editbuffer WSS# show security acl editbufferShow security acl info Syntax show security acl hitsSyntax show security acl info acl-nameall editbuffer WSS# show security acl infoShow security acl map Show security acl resource-usage Show security acl resource-usage Output True-A default action types is defined False-No default action type is definedTrue-Security ACLs are mapped False-No security ACLs are mappedTrue-Security ACLs are mapped to incoming traffic False-No security ACLs are mapped to incomingCryptography Commands Crypto ca-certificate EapPEM-formatted CertificateSee Also show crypto ca-certificate on WSS# crypto certificate adminCrypto certificate Crypto generate key Crypto generate request on Crypto generate self-signed onDomain SshWSS# crypto generate key admin Syntax crypto generate request admin eap webCrypto generate request See Also show crypto key ssh onWSS# crypto generate request admin Email Address admin@example.comWebaaa option renamed to web Maximum string length for State Name increasedCrypto certificate on Crypto generate key on Syntax crypto generate self-signed admin eap webCrypto generate self-signed Crypto otp WSS# crypto generate self-signed adminSyntax crypto otp admin eap web one-time-password Syntax crypto pkcs12 admin eap web file-location-url Crypto pkcs12See Also crypto pkcs12 on WSS# crypto generate otp eap hap9iN#ssSee Also crypto otp on WSS# copy tftp//192.168.253.1/2048full.p12 2048full.p12WSS# crypto otp eap hap9iN#ss WSS# crypto pkcs12 eap 2048full.p12Syntax show crypto ca-certificate admin eap web Show crypto ca-certificateShow crypto ca-certificate Output WSS# show crypto ca-certificateSyntax show crypto certificate admin eap web Show crypto certificateCrypto certificate Output WSS# show crypto certificate eapSee Also crypto generate key on Show crypto key domainShow crypto key ssh Cryptography Commands NN47250-100 Version Radius and Server Groups Commands Syntax clear radius deadtime key retransmit timeoutClear radius Clear server group onClear radius client system-ip Clear radius proxy client Clear radius proxy portSee Also set radius proxy client on See Also set radius proxy port onClear radius server Clear server groupSet radius See Also set server group onSet radius client system-ip Set radius proxy client Set radius proxy portSyntax set radius proxy client address ip-address WSS# set radius proxy client address 10.20.20.9 key radkey1Ssid ssid-name Ssid supported by the third-party AP Set radius serverWSS# set radius proxy port 3-4 tag 104 ssid mycorp Encrypted-key-No key Author-password-nortel Set server group Members server23x0# set server group shorebirds load-balance enable 23x0# set server group shorebirds load-balance disableSet server group load-balance Group-name Server group name of up to 32 charactersRadius and Server Groups Commands NN47250-100 Version 802.1X Management Commands Clear dot1x bonded-period Clear dot1x max-reqSyntax clear dot1x max-req WSS# clear dot1x bonded-periodClear dot1x reauth-max Clear dot1x port-controlClear dot1x quiet-period Clear dot1x timeout auth-server Clear dot1x reauth-periodClear dot1x timeout supplicant Clear dot1x tx-periodSyntax set dot1x authcontrol enable disable WSS# set dot1x authcontrol enableSet dot1x authcontrol Set dot1x bonded-periodSee Also show dot1x on Set dot1x key-txSet dot1x max-req WSS# set dot1x port-control forceauth Set dot1x port-controlWSS# set dot1x max-req Set dot1x quiet-period Set dot1x reauthSet dot1x reauth-max Set dot1x reauth-periodSet dot1x timeout auth-server Set dot1x timeout supplicantSyntax set dot1X wep-rekey enable disable Set dot1x tx-periodSet dot1x wep-rekey Syntax set dot1x tx-period secondsSet dot1x wep-rekey-period Show dot1xWSS# show dot1x config WSS# show dot1x clientsShow dot1x stats Output WSS # show dot1x stats520 802.1X Management Commands RF Detection Commands Rogue Information Show rfdetect clients onShow rfdetect data on Show rfdetect visible onClear rfdetect attack-list Clear rfdetect black-listSyntax clear rfdetect attack-list mac-addr Syntax clear rfdetect black-list mac-addrClear rfdetect ignore Clear rfdetect ssid-listClear rfdetect vendor-list Set rfdetect attack-listSyntax clear rfdetect vendor-list client ap mac-addrall WSS# clear rfdetect vendor-list client aabbcc000000Set rfdetect black-list Set rfdetect ignoreSyntax set rfdetect log enable disable 23x0# set rfdetect log enableSet rfdetect log 23x0# set rfdetect ignore aabbcc112233See Also show log buffer on Set rfdetect signatureSet rfdetect ssid-list Set rfdetect vendor-list WSS# set rfdetect ssid-list mycorpSyntax set rfdetect vendor-list client ap mac-addr WSS# set rfdetect vendor-list client aabbcc000000Show rfdetect attack-list Show rfdetect black-listShow rfdetect clients Show rfdetect clients OutputSyntax show rfdetect clients mac mac-addr WSS# show rfdetect clients mac 000c4163fd6dShow rfdetect clients mac Output WSS# show rfdetect countermeasures Show rfdetect countermeasuresSyntax show rfdetect countermeasures Show rfdetect counters Show rfdetect countermeasures OutputSee Also set radio-profile countermeasures on Syntax show rfdetect countersShow rfdetect data Syntax show rfdetect dataShow rfdetect data Output Show rfdetect ignore Show rfdetect mobility-domainSyntax show rfdetect ignore WSS# show rfdetect ignore Total number of entriesBssid and ssid options added Vendor, Type, and Flags fields addedWSS# show rfdetect mobility-domain WSS# show rfdetect mobility-domain ssid nrtl-webaaaShow rfdetect mobility-domain Output Show rfdetect mobility-domain ssid or bssid Output Show rfdetect ssid-list Show rfdetect vendor-list Show rfdetect visibleSyntax show rfdetect vendor-list WSS# show rfdetect vendor-listShow ap status command Mac-addr Base MAC address of the Nortel radioShows neighbor information for radio Version Vendor, Type, and Flags fields addedRfping Show rfdetect visible OutputSyntax rfping mac mac-addrsession-id session-id Show rfdetect data on Show rfdetect mobility-domain onRfping Output WSS# rfping mac 000e9bbfad13File Management Commands BackupSyntax backup system tftp/ip-addr/filenameall critical WSS# backup system tftp/10.10.20.9/sysabak criticalDir on Restore on Tftp/ip-addr / filenameCopy Clear boot backup-configurationClear boot config Syntax copy source-url destination-url Source-urlDestination-url Be one of the followingWSS# copy tftp//10.1.1.107/WSS020101.020 boot1WSS020101.020 DeleteWSS# copy floorwss tftp//10.1.1.1/floorwss WSS# copy tftp//10.1.1.1/closetwss closetwssWSS# copy testconfig tftp//10.1.1.1/testconfig WSS# delete testconfigSyntax dir subdirname file core boot0 boot1 DirWSS# dir file WSS# dirWSS# dir old Install soda agent WSS# dir boot0Output for dir WSS# dir coreLoad config WSS# install soda agent soda.ZIP agent-directory sp1Syntax load config url Uninstall soda agent on Set service-profile soda mode onWSS# load config WSS# load config testconfig1Syntax md5 boot0 boot1filename Save config on Show boot on Show config onPubs# md5 boot0WSS040003.020 MkdirSyntax mkdir subdirname WSS# mkdir corp2WSS# reset system Reset systemSyntax reset system force Restore Rmdir Save configSee Also backup on Set boot backup-configuration Syntax save config filenameWSS# save config testconfig1 Syntax set boot backup-configuration filenameSet boot configuration-file Set boot partitionBoot configuration, added Show bootNew fields, Configured boot version and Backup Output for show boot Show config Syntax show config area area allConfiguration area. You can specify one of the following Area areaRfdevice changed to rfdetect Show versionNew options added for remote traffic monitoring snoop WSS# show version details Uninstall soda agent See Also show boot onSyntax uninstall soda agent agent-directory directory WSS# uninstall soda agent agent-directory sp1Install soda agent on Set service-profile soda mode on File Management Commands NN47250-100 Version Trace Commands Clear log traceSyntax clear log trace WSS# clear log traceClear trace Save traceSet trace authentication Set trace authorizationWSS# set trace authentication user jose WSS# save trace traces/trace1User-readable information. If you do not specify a level Level 5 is the defaultSet trace dot1x Set trace sm WSS# set trace sm mac-addrWSS# show trace Show traceSyntax show trace all Snoop Commands Clear snoopSyntax clear snoop filter-name WSS# clear snoop snoop1Clear snoop map WSS# clear snoop map snoop2 ap 3 radioWSS# clear snoop map all Examples clear snoop map filter-nameap ap-numradio 1Set snoop Examples set snoop map filter-nameap ap-numradio 1 Set snoop mapWSS# set snoop snoop1 observer 10.10.30.2 snap-length Set snoop mode Enable Stop-after num-pktsWSS# set snoop map snoop1 ap 3 radio Filter. See show snoop stats onWSS# set snoop snoop1 mode enable stop-after Show snoopSyntax show snoop WSS# show snoopShow snoop info Show snoop mapExamples show snoop stats filter-nameap-numradio 1 Show snoop statsClear snoop map on Set snoop map on Show snoop on Show snoop stats Output Snoop Commands NN47250-100 Version System Log Commands Clear logSyntax clear log buffer server ip-addr WSS# clear log serverSeverity Logging state enabled or disabledSet log Defaults Set log mark Show log buffer See Also show log config onSet log trace mbytes Reboot or shut down Error-The WSS is missing data or is unable toProblems have occurred. These are logged for Diagnostic purposes. No action is requiredShow log config Syntax show log configWSS# show log config Show log traceConditions are not resolved, the WSS can reboot Error-The WSS is missing data or is unable to formPositive number for example, +100, displays that Number of log entries starting from the oldestWSS# show log trace facility ? WSS# show log trace +5 facility RogueSystem Log Commands NN47250-100 Version Boot Prompt Commands Autoboot See Also boot onSyntax autoboot on on OFF off Boot autobootBoot Change on Show on Boot boot FN=WSS010101.020 DEV=boot1Change Boot change Boot on Create on Delete on Dhcp on Next on Show onChange on Delete on Next on Show on Boot createCreate Boot delete Boot dhcpDhcp Syntax dhcp on on OFF offSyntax dir c d e f boot0 boot1 Boot dirDiag Fver on Version onSyntax fver c d e f boot0 boot1 filename Boot fver boot1Syntax help command-name FverBoot help fver See Also ls onReset Boot nextNext See Also help onBoot reset ShowCompact flash. Boots using nonvolatile Boot showOutput for show Storage or a flash cardNonvolatile storage area containing boot PartitionPrimary partition of the flash card in the flash Secondary partition of the flash cardBoot version Enables the poweron test flagTest VersionDir on Fver on Command Index NumericsNN47250-100 320658-G Version Delete 539 Command Index 282 340 Command Index Command Index MAC addresses 12 in user globs Vlan globs Command Index NN47250-100 320658-G Version Page Nortel WLAN-Security Switch 2300 Series Release