Manuals / Nortel Networks / Computer Equipment / Switch

Nortel Networks 2300 Series manual Crypto ca-certificate, Eap, PEM-formatted, Certificate

Models: 2300 Series

1 622

Download 622 pages 48.74 Kb

Page 480

Image 480

480Cryptography Commands

crypto ca-certificate

Installs a certificate authority’s own PKCS #7 certificate into the WSS certificate and key storage area.

Syntax crypto ca-certificate {admin eap web} PEM-formatted-certificate

admin		Stores the certificate authority’s certificate that signed the administrative
		certificate for the WSS.
		The administrative certificate authenticates the WSS to WLAN
		Management Software or Web View.
eap		Stores the certificate authority’s certificate that signed the Extensible
		Authentication Protocol (EAP) certificate for the WSS.
		The EAP certificate authenticates the WSS to 802.1X supplicants (clients).
web		Stores the certificate authority’s certificate that signed the Web-based AAA
		certificate for the WSS.
		The Web certificate authenticates the WSS to clients who use Web-based
		AAA.
PEM-formatted-		ASCII text representation of the certificate authority PKCS #7 certificate,
certificate		consisting of up to 5120 characters that you have obtained from the
		certificate authority.
Defaults	None.
Access	Enabled.
History
Version 4.1		webaaa option renamed to web

Usage The Privacy-Enhanced Mail protocol (PEM) format is used for representing a PKCS #7 certificate in ASCII text. PEM uses base64 encoding to convert the certificate to ASCII text, then puts the encoded text between the following delimiters:

-----BEGIN CERTIFICATE-----

-----END CERTIFICATE-----

To use this command, you must already have obtained a copy of the certificate authority’s certificate as a PKCS #7 object file. Then do the following:

1Open the PKCS #7 object file with an ASCII text editor such as Notepad or vi.

2Enter the crypto ca-certificatecommand on the CLI command line.

3When WSS Software prompts you for the PEM-formatted certificate, paste the PKCS #7 object file onto the command line.

Examples The following command adds the certificate authority’s certificate to WSS certificate and key storage:

WSS# crypto ca-certificate admin Enter PEM-encoded certificate

-----BEGIN CERTIFICATE-----

MIIDwDCCA2qgAwIBAgIQL2jvuu4PO5FAQCyewU3ojANBgkqhkiG9wOBAQUFADCB

NN47250-100 (Version 02.51)

Page 480

Image 480

Nortel Networks 2300 Series manual Crypto ca-certificate, Eap, PEM-formatted, Certificate

Contents

Page Copyright 2007-2008 Nortel Networks. All rights reserved Nortel Networks software license agreement Legal Information Exclusive Remedy Software License Agreement Page SSH Source Code Statement OpenSSL Project License Statements NN47250-100 Version How to get help Introducing the Nortel Wlan 2300 System NN47250-102 Version How to get help Getting help from the Nortel web siteHow to get help NN47250-100 Version Introducing the Nortel Wlan 2300 System Nortel Wlan 2300 System DocumentationPlanning, Configuration, and Deployment InstallationConfiguration and Management Safety and Advisory Notices Menu Name Command Bold textItalic text Using the Command-Line Interface CLI ConventionsCommand Prompts Set enablepass Set port enable disable port-listClear interface vlan-idip Clear fdb dynamic port port-list vlan vlan-idMAC Address Notation MAC Address Wildcards Port Lists Command-Line Editing Using CLI Help WSS# show i? WSS# show ip ?WSS# show ip telnet Set ap port-list ap-numname nameUsing the Command-Line Interface NN47250-100 Version Access Commands DisableEnable See Also enable onSet enablepass Syntax set enablepassWSS# set enablepass Enter old password old-password QuitDisable on Enable on Access Commands NN47250-100 Version Port Commands Port Type Set port type ap on Set ap onClear port type on Clear ap onClear ap Clear port countersClear port-group Clear port media-typeClear port mirror Clear port nameNetwork Port Defaults Configuration from all the specified portsClear port type Syntax clear port type port-listSet port type ap on Set port type wired-auth on Monitor port countersWSS# clear port type Key Controls for Monitor Port Counters Display WSS# monitor port countersOutput for monitor port counters Displayed for All OptionsOctets Number of packets received that were 64 bytes long Reset port Syntax reset port port-listWSS# reset port See Also show port counters onSet ap See Also set port on2382-1 to 2380-1 to2360/61-1 to 2350-1 toSee Also reset port on Set portSet port-group WSS# set port-group name server1 1-5 mode on Mode on offSet port media-type Syntax set port-group name group-nameport-listmode on offSet port mirror Syntax set port media-type port-listrj452380# set port media-type 2 rj45 Syntax set port mirror source-portobserver observer-portWSS# set port 17 name adminpool Set port nameWSS# set port 1 observer Syntax set port port name nameSet port negotiation Set port poeWSS# set port poe 7,9 disable WSS# set port poe 7,9 enableSet port speed Syntax set port speed port-list10 100 1000 autoSyntax set port trap port-listenable disable WSS# set port trap 17-18 enableSet port trap Set port type apPort-list List of physical portsRadiotype 11a 11b 11g Radio type AP Access Port Defaults Version New values for model option addedSet port type wired-auth WSS# set port type ap 2 model 2330 poe enableWSS# set port type ap 4-6 model 2330 poe enable WSS# set ap 1 radio 1 antennatypeWired Authentication Port Defaults Last-resortNone Web-portalWSS# set port type wired-auth Show port countersClear port type on Set port type ap on Port port-listShow port-group Output for show port-groupWSS show port counters octets port Syntax show port-group name group-nameGBIC-The Gbic fiber interface is enabled RJ45-The RJ-45 copper interface is enabledShow port media-type Output for show port media-typeShow port mirror Show port poeOutput for show port poe See Also set port poe onShow port status Output for show port statusSyntax show port status port-list WSS# show port statusUp-The port is enabled Down-The port is disabledWa-Wired authentication port No connector-GBIC slot is emptySystem Services Commands Clear banner motd Clear historySee Also history on Clear prompt Clear systemSyntax clear prompt Wildebeest# clear prompt success change accepted. WSS#Help WSS# clear system locationHelp NoneSet auto-config HistoryQuickstart See Also clear history onSyntax set auto-config enable disable WSS# set auto-config enable success change accepted WSS# save configSet banner motd 2360# set vlan 1 port 7 success change acceptedSet confirm Set lengthSet license Syntax set length number-of-linesWSS# set length Syntax set license activation-keySet prompt Set system contactSee Also show licenses on Syntax set prompt stringSet system countrycode 23x0#set system contact tamara@example.comSyntax set system countrycode code 23x0#set system country code CASet system idle-timeout See Also show config onSyntax set system idle-timeout seconds WSS# set system idle-timeoutSet system ip-address Set system locationSet system name Syntax set system name stringShow banner motd Show licensesShow load See Also set license onShow license command Show systemSee Also show system on Syntax show systemShow system output Show tech-support System Services Commands System Services Commands NN47250-100 Version Vlan Commands Clear fdb WSS# clear fdb static vlan blueWSS# clear fdb dynamic WSS# clear fdb port 3,5Clear security l2-restrict Clear security l2-restrict countersSyntax clear security l2-restrict counters vlan vlan-idall AllClear vlan WSS# clear security l2-restrict counters vlan abcairSyntax clear vlan vlan-id port port-list tag tag-value Vlan-id Port port-listSet vlan port on Show vlan config on Set fdbWSS# clear vlan green port WSS# clear vlan red port 4 tagSet fdb agingtime Set security l2-restrictSee Also show fdb agingtime on Enable disable Set vlan nameSyntax set vlan vlan-numname name ModeSet vlan port See Also set vlan port onWSS# set vlan 3 name marigold Syntax set vlan vlan-id port port-list tag tag-valueSet vlan tunnel-affinity Show fdbWSS# set vlan beige port 16 tag Syntax set vlan vlan-idtunnel-affinity numWSS# show fdb all WSS# show fdbShow fdb agingtime Output for show fdbSyntax show fdb agingtime vlan vlan-id WSS# show fdb agingtimeShow fdb count Show roaming stationSee Also set fdb agingtime on See Also show fdb onShow roaming vlan Output for show roaming stationSee Also show roaming vlan on Syntax show roaming vlan WSS# show roaming vlanShow roaming station on Show vlan config on Show security l2-restrictOutput for show roaming vlan Syntax show security l2-restrict vlan vlan-idallEnabled. Forwarding of Layer 2 traffic from clients is Disabled. Layer 2 forwarding is not restrictedShow tunnel Output for show security l2-restrictShow vlan config See Also show vlan config onSyntax show vlan config vlan-id Output for show tunnelOutput for show vlan config See Also Vlan Commands NN47250-100 Version Quality of Service Commands Clear qosSet qos cos-to-dscp-map WSS# clear qosWSS# clear qos dscp-to-qos-map Syntax set qos cos-to-dscp-map level dscp dscp-valueSet qos dscp-to-cos-map Show qosShow qos dscp-table See Also show qos dscp-table onSee Also show qos on IP Services Commands Set ntp update-interval on Set ntp onSet ntp server on Show ntp onClear interface Syntax clear interface vlan-idipWSS# clear interface mauve ip Clear ip alias Clear ip dns domainClear ip dns server Clear ip routeSyntax clear ip dns server ip-addr WSS# clear ip dns serverClear ip telnet Clear ntp serverSyntax clear ip telnet WSS# clear ip telnet success change acceptedClear ntp update-interval Syntax clear ntp update-intervalWSS# clear ntp update-interval success change accepted Clear snmp communityClear snmp notify profile Clear snmp notify targetSyntax clear snmp notify profile profile-name Syntax clear snmp notify target target-numClear snmp usm Clear summertimeClear system ip-address Clear timezonePing Host Count num-packetsCount-5 Set arp See Also traceroute onWSS# ping Syntax set arp permanent static dynamic ip-addrmac-addrSet arp agingtime Set interfaceSyntax set arp agingtime seconds WSS# set arp agingtimeWSS# set interface default ip 10.10.10.10/24 Syntax set interface vlan-idip dhcp-client enable disableEnables the Dhcp client on the Vlan Set interface dhcp-clientWSS# set interface corpvlan ip dhcp-client enable Default-router ip-addrSet interface dhcp-server Clear interface on Show dhcp-client on Show interface onDefault-router Set interface statusDns-domain Primary-dns and secondary-dnsSyntax set ip dns enable disable Set ip aliasSet ip dns Syntax set ip alias name ip-addrWSS# set ip dns enable Set ip dns domainSyntax set ip dns domain name WSS# set ip dns domain example.comSet ip dns server Syntax set ip dns server ip-addrprimary secondaryPrimary SecondarySyntax set ip https server enable disable WSS# set ip https server enableEnable Enables the Https server Disable Set ip https serverWSS# set ip route default 10.5.4.1 WSS# set ip route 192.168.4.0 255.255.255.0 10.5.4.2WSS# set ip route 192.168.5.0/24 10.5.5.2 Syntax set ip snmp server enable disable WSS# set ip snmp server enableSet ip snmp server Set ip sshSyntax set ip ssh server enable disable Set ip ssh serverWSS# set ip ssh port Crypto generate key on Set ip ssh on Set ip ssh server onSyntax set ip telnet server enable disable Set ip telnetSet ip telnet server Syntax set ip telnet port-numWSS# set ip telnet server enable Syntax set ntp enable disableWSS# set ntp enable Enable Enables the NTP client DisableSet ntp update-interval Set ntp serverSet snmp community WSS# set snmp community name switchmgr1 notify-read-write Read-notify Notify-only Notify-read-writeWSS# set snmp community read-write goodcommunity Default profile-name Set snmp notify profileDrop send AutoTuneRadioPowerChangeTraps-Generated ClientAuthorizationSuccessTraps-GeneratedClientAuthenticationFailureTraps-Generated ApOperRadioStatusTraps-Generated whenCont RFDetectSpoofedSsidAPTraps-Generated when RFDetectUnAuthorizedSsidTraps-GeneratedSee Also Show snmp notify profile on Security unsecured authenticated encrypted Set snmp notify targetSNMPv3 with Informs Snmp-engine-idSecurity unsecured authenticated encrypted Timeout numRetries num SNMPv3 with TrapsSNMPv2c with Informs Community-string Community string Profile profile-nameSNMPv2c with Traps WSS# set snmp notify target 2 10.10.40.10 v1 trap SNMPv1 with TrapsSyntax set snmp protocol v1 v2c usm all enable disable WSS# set snmp protocol all enableSet snmp protocol V2cSet snmp security Set snmp usmWSS# set snmp security encrypted Snmp-engine-id ip ip-addr local hex hex Specifies a unique identifier for the SnmpString Engine Allow get and set operations and so onSpecifies the access level of the user Auth-pass-phrase string option Set summertime WSS# set snmp usm snmpmgr1 snmp-engine-id localStart Second , third , fourth , or last23x0# set summertime PDT success change accepted EndEnd of the time change period Set timedate Mmm-monthDd-day Yyyy-yearSet timezone Syntax set timezone zone-name -hours minutes23x0# set timezone PST Show arp Output for show arpSyntax show arp ip-addr WSS# show arpShow dhcp-client Output for show dhcp-client WSS# show dhcp-clientShow dhcp-server See Also set interface dhcp-client onSyntax show dhcp-server interface vlan-id verbose WSS# show dhcp-serverOutput for show dhcp-server Output for show dhcp-server verboseShow interface See Also set interface dhcp-server onSyntax show interface vlan-id WSS# show interfaceShow ip alias Output for show interfaceShow ip dns Output for show ip aliasOutput for show ip dns Syntax show ip dnsShow ip https Show ip httpsWSS show ip https Show ip route Output for show ip httpsSyntax show ip route destination DestinationOutput for show ip route Show ip telnet Show ip telnetWSS show ip telnet Show ntp Output for show ip telnetSyntax show ntp WSS show ntpOutput for show ntp SyncedShow snmp community Show snmp countersShow snmp notify profile Show snmp notify target Show snmp statusSyntax show snmp notify target Syntax show snmp statusShow snmp usm Show summertimeSyntax show summertime 23x0# show summertimeShow timedate Show timezoneTelnet Syntax telnet ip-addr hostname port port-numWSS# telnet WSS-remote show vlanTraceroute WSS-remote Session 0 pty tty2.d terminated tt name tty2.dError Messages for traceroute See Also ping onWSS# traceroute server1 AAA Commands Syntax clear accounting admin dot1x system user-wildcard Clear accountingClear authentication admin Syntax clear authentication admin user-wildcardWSS# clear accounting dot1x Nin SystemClear authentication console WSS# clear authentication admin JoseSyntax clear authentication console user-wildcard WSS# clear authentication console ReginaClear authentication dot1x Clear authentication last-resortWSS# clear authentication dot1x ssid finance *@thiscorp.com WiredClear authentication mac Clear authentication proxyWSS# clear authentication mac ssid thatcorp aabbcc WSS# clear authentication proxy ssid mycorpClear authentication web Set authentication proxy on Show aaa onClear location policy Syntax clear location policy rule-numberClear mac-user Clear mac-user attrWSS# clear location policy Syntax clear mac-user mac-addrClear mac-user group Syntax clear mac-usermac-addr attr attribute-nameWSS# clear mac-user 010203040506 attr filter-id Syntax clear mac-user mac-addrgroupClear mac-usergroup Clear mac-usergroup attrSyntax clear mac-usergroup group-name WSS# clear mac-usergroup eastcoastersClear mobility-profile Clear userWSS# clear user Hosni attr session-timeout Clear user attrWSS# clear user Nin Syntax clear user username attr attribute-nameClear user group Clear usergroupSet accounting admin console Clear usergroup attrSyntax clear usergroup group-name attr attribute-name WSS# clear usergroup cardiology attr time-of-dayWSS# set accounting admin Natasha start-stop local Set accounting dot1x mac web last-resortStart-stop Stop-only Method1 Method2 Method3 Method4Method1 method2 method3 method4 MacWeb Ssid ssid-nameSet accounting system WSS# set accounting dot1x Nin stop-only sg2WSS# set accounting system shorebirds Set authentication admin For more information, see UsageSet authentication console WSS# set authentication admin Jose sg3User-wildcard Method1 Method2 Method3 Method4 Set authentication dot1x WSS# set authentication console * noneAlready been authenticated Or a period .. For details, see User Wildcards onBonded Protocol Method1 Method2 Method3 Method4 Sg1 sg2 sg3 success change accepted Set authentication last-resort Set authentication macSet service-profileauth-fallthru on Show aaa on WiredSet authentication proxy WSS# set authentication ssid mycorp2 mac ** localSet authentication web WSS# set authentication proxy ssid mycorp ** srvrgrp1WSS# set authentication web ssid ourcorp rnd* local Set location policy DenyPermit Optionally, you can add the suffix .out to the nameShow location policy command Clear location policy rule-numbercommandEq-Applies the location policy rule to all usernames Neq-Applies the location policy rule to all usernamesSet mac-user WSS# set location policy deny if user eq *.theirfirm.comWSS# set location policy permit vlan floor2 if port 3-7,12 Clear location policy on Show location policy onSyntax set mac-user mac-addrgroup group-name WSS# set mac-user 010203040506 group eastcoastersClear mac-user on Show aaa on Set mac-user attr Syntax set mac-usermac-addr attr attribute-name valueAuthentication Attributes for Local Users Encryption-typeEnd-date Filter-id Mobility-profileMobility-profile on Service-type Session-timeoutBy the set dot1x reauth-period command is SsidTime-of-day 1600,th1000-1600Day wk0900-1700,sa2200-0200 With start-date,end-date, or both$u-Username $v-VLAN $s-SSID $p-Service profile name WSS# set mac-user 010203040506 attr filter-id acl-03.inUrl Vlan-nameFor a list of authorization attributes, see on Set mac-usergroup attrWSS# set mac-usergroup eastcoasters attr vlan-name orange Clear mac-user attr on Show aaa onOr wired authentication port on the WSS Ports and wired authentication port on the WSSSet mobility-profile Set mobility-profile mode Syntax set mobility-profile mode enable disableWSS# set mobility-profile mode enable WSS# set mobility-profile name magnolia portSyntax set user username password encrypted string WSS# set user Nin password goodyWSS# set user admin password chey3nne Set userWSS# set user Nin password 29Jan04 Set user attrWSS# set user Tamara attr vlan-name orange WSS# set user Tamara attr mobility-profile tulipSet user group Set usergroupSyntax set user username group group-name WSS# set user Hosni group cardiologySyntax set web-portal enable disable Set web-portalSyntax set usergroup group-name attr attribute-name value Clear usergroup on Clear usergroup attr on Show aaa onShow aaa Show aaa Output User NinShow accounting statistics UP operatingSyntax show accounting statistics WSS# show accounting statisticsShow accounting statistics Output Radius serverLocal WSS database Show location policy Show mobility-profileAAA Commands NN47250-100 Version Mobility Domain Commands Clear domain securitySyntax clear domain security 23x0# clear domain securityClear mobility-domain Clear mobility-domain memberSet domain security See Also set mobility-domain member onSet mobility-domain member Syntax set domain security none requiredWSS# set domain security required Syntax set mobility-domain member ip-addrkey hex-bytesSet mobility-domain mode member seed-ip Set mobility-domain mode member secondary-seed- ipClear mobility-domain on Show mobility-domain config on WSS# set mobility-domain memberSet mobility-domain mode seed domain-name WSS# set mobility-domain mode member secondary-seed-ipClear mobility-domain member on Show mobility-domain on Show mobility-domain config Syntax show mobility-domain configWSS# show mobility-domain config Show mobility-domainShow mobility-domain Output Syntax show mobility-domainWSS# show mobility-domain Mobility Domain Commands NN47250-100 Version Network Domain Commands Clear network-domainSyntax clear network-domain 23x0# clear network-domainClear network-domain mode Syntax clear network-domain mode seed memberClear network-domain peer Syntax clear network-domain peer ip-addrallSet network-domain mode member seed-ip See Also set network-domain mode member seed-ip onClear network-domain seed-ip See Also set network-domain peer onWSS# set network-domain mode member seed-ip Set network-domain peerSyntax set network-domain peer ip-addr Clear network-domain on Show network-domain onSet network-domain mode seed domain-name WSS# set network-domain mode seed domain-name CaliforniaSet network domain peer command Show network-domainShow network-domain Output Syntax show network-domainWSS# show network-domain Output if WSS is the Network Domain seedOutput if WSS is a Network Domain member Network Domain Commands NN47250-100 Version AP Commands Set ap radio mode onSet ap upgrade-firmware on Set ap radio radio-profile onSet service-profileweb-portal-acl on Set service-profileauth-psk onSet service-profilewpa-ie on Set service-profilersn-ie onSet service-profile cipher-wep104 on Set service-profile cipher-wep40 onSet service-profile psk-phrase on Set service-profile psk-raw onSet radio-profileauto-tunepower-config on Set radio-profileauto-tunepower-interval onSet radio-profileauto-tunepower-lockdown on Set ap radio auto-tunemax-power onClear ap image Syntax clear ap ap-numberimageClear ap local-switching vlan-profile Syntax clear ap ap-numberlocal-switching vlan-profileWSS# clear ap 7 local-switching vlan-profile See Also set ap image onClear ap radio Radio-Specific ParametersSyntax clear ap port-listap ap-numradio 1 2 all Radio802.11b/g-6 802.11a-Lowest validChannel number for Country of operation Option dap removed for APClear ap boot-configuration Syntax clear ap boot-configuration ap-numWSS# clear ap 1 boot-configuration Clear ap radio load-balancing groupClear radio-profile Clear service-profile Long-retryShort-retry Countermeasures parameter addedSoda failure-page Soda remediation-aclSoda success-page Soda logout-pageReset ap Set ap autoOption force-image-download added Option radio num auto-tune min-client-rateConfigurable Profile Parameters for APs WSS# set ap autoSet ap auto mode Syntax set ap auto mode enable disableWSS# set ap auto mode enable Set ap auto persistentSet ap auto radiotype 11a-802.11aSyntax set ap auto persistent ap-numall WSS# set ap auto persistent 10 success change acceptedSet ap bias WSS# set ap auto radiotype 11bSyntax set ap port-listap ap-numauto bias high low See Also show ap config on Syntax set ap port-list ap ap-num auto blink enable disableSet ap blink WSS# set ap 1 bias lowSet ap boot-configuration ip WSS# set ap 3-4 blink enableMode enable disable Enables or disables the static IP address for the APSet ap boot-configuration mesh mode Set ap boot-configuration mesh psk-phraseWSS# set ap 7 boot-configuration mesh mode enable Set ap boot-configuration mesh psk-raw Syntax set ap ap-numberboot-configuration mesh psk-raw hexSet ap boot-configuration mesh ssid WSS# set ap 7 boot-configuration mesh ssid wlan-meshSet ap boot-configuration switch Switch-ip ip-addrSet ap boot-configuration vlan Enables or disables use of the specified Vlan tag on the APVlan-tag tag-value Vlan tag value. You can specify a number fromSet ap security on Show ap config on Show ap status on Set ap fingerprintSet ap force-image-download Syntax set ap num fingerprint hexWSS# set ap 69 force-image-download enable Set ap groupSyntax set ap port-list ap ap-num auto group name Auto onShow ap config on Show ap group on Set ap imageWSS# set ap 1,4,7 group loadbalance1 WSS# set ap 4 group noneSet ap local-switching mode Set ap local-switching vlan-profileSyntax set ap ap-numberlocal-switching mode enable disable WSS# set ap 7 local-switching mode enableWSS# set ap 7 local-switching vlan-profile locals Set ap nameSyntax set ap port-list ap ap-numname name Set ap radio antenna-location WSS# set ap 1 name techpubsWSS# set ap 22 radio 1 antenna-location outdoor IndoorsSet ap radio antennatype See Also set ap radio antennatype onAp port-list Ap ap-num radio 1 radio Set ap radio auto-tune max-power WSS# set ap 7 radio 1 auto-tune max-power Set ap radio auto-tune max-retransmissionsSet ap radio auto-tune min-client-rate Deprecated in WSS Software VersionWSS# set ap 11 radio 1 channel 1 tx-power Set ap radio tx-power on Show ap config onSet ap radio channel WSS# set ap 5 radio 1 channelSet ap radio min-tx-datarate Set ap radio link-calibrationSet ap radio load-balancing Ap ap-numberSyntax set ap ap-numradio 1 2 load-balancing enable disable WSS# set ap 7 radio 1 load-balancing disableSet ap radio load-balancing group Set ap radio mode Syntax set ap port-listauto radio 1 2 mode enable disableWSS# set ap 7 radio 1 load-balancing group room1 WSS# set ap 1-5 radio 1 mode enable WSS# set ap 1-3 radio 2 mode enableSet ap radio radio-profile Radio-profile nameSet ap radio tx-power WSS# set ap 5 radio 1 tx-power Set ap radio channel on Show ap config onSet ap security Syntax set ap security require optional noneWSS# set ap security none Set ap upgrade-firmware Syntax set ap port-listauto upgrade-firmware enable disableWSS# set ap 9 upgrade-firmware disable Set ap sticky-bitSet load-balancing mode Syntax set load-balancing mode enable disableSyntax set band-preference none 11bg 11a WSS# set band-preference 11aWSS# set load-balancing mode disable Set load-balancing strictnessSyntax set load-balancing strictness low med high max MaxSyntax set radio-profile name active-scan enable disable Set radio-profile 11g-onlySet radio-profile active-scan WSS# set load-balancing strictness maxSet radio-profile auto-tune channel-config WSS# set radio-profile radprof3 active-scan disableSet radio-profile auth-dot1x Set radio-profile auth-pskWSS# set radio-profile rp2 auto-tune channel-config disable Set radio-profile auto-tune channel-holddownWSS# set radio-profile rp2 auto-tune channel-holddown Set radio-profile auto-tune channel-interval WSS# set radio-profile rp2 auto-tune channel-intervalSet radio-profile auto-tune power-backoff-timer Set radio-profile auto-tune power-configSet radio-profile auto-tune channel-lockdown Syntax set radio-profile name auto-tune channel-lockdownSet radio-profile auto-tune power-interval WSS# set radio-profile rp2 auto-tune power-config enableDefaults The default power tuning interval is 300 seconds StartedSet radio-profile auto-tune power-lockdown WSS# set radio-profile rp2 auto-tune power-intervalSyntax set radio-profile name auto-tune power-lockdown WSS# set radio-profile rp2 auto-tune power-lockdownSet radio-profile auto-tune power-ramp-interval WSS# set radio-profile rp2 auto-tune power-ramp-intervalSet radio-profile beacon-interval Syntax set radio-profile name beacon-interval intervalSet radio-profile beaconed-ssid Set radio-profile cipher-ccmpSet radio-profile cipher-tkip Set radio-profile cipher-wep104Configured Set radio-profile countermeasuresWSS# set radio-profile radprof3 countermeasures rogue RogueSet radio-profile crypto-ssid Set radio-profile dtim-intervalSet radio-profile frag-threshold Syntax set radio-profile name frag-threshold thresholdWSS# set radio-profile rp1 frag-threshold Set radio-profile long-retry Set radio-profile max-rx-lifetimeSet radio-profile max-tx-lifetime Set radio-profile mode Defaults for Radio Profile ParametersSyntax set radio-profile name mode enable disable WSS# set radio-profile rp1 max-tx-lifetimeRfid-mode Disable Service-profileWmm-powersave Disable CountermeasuresWmm-powersave 11g-onlyRfid-mode Set radio-profile preamble-length Set radio-profile psk-phraseSet radio-profile psk-raw Syntax set radio-profile name preamble-length long shortSet radio-profile qos-mode Set radio-profile rate-enforcementSyntax set radio-profile name qos-mode svp wmm WSS# set radio-profile rp1 qos-mode svpEnables data rate enforcement for the radios in the radio Disables data rate enforcement for the radios in the radioSet radio-profile rfid-mode Syntax set radio-profile name rfid-mode enable disable WSS# set radio-profile rfid-mode enableSet radio-profile rts-threshold Syntax set radio-profile name rts-threshold thresholdSet radio-profile service-profile Defaults for Service Profile ParametersSyntax set radio-profile name service-profile name Cipher-ccmp Disable Cipher-tkip EnableCipher-wep104 Disable Cipher-wep40 DisableNo-broadcast Disable Proxy-arp DisableRsn-ie Disable Shared-key-auth Disable12.0,24.0 Auto2.0 2.0,5.5,11.0Portal-acl setting TimeoutWpa-ie Disable Web-portal-acl PortalaclWSS# set radio-profile rp2 service-profile wpaclients Set radio-profile shared-key-auth Set radio-profile short-retrySet radio-profile tkip-mc-time Set radio-profile wep active-multicast-indexSet radio-profile wmm-powersave Syntax set radio-profile name wmm-powersave enable disableWSS# set radio-profile rp1 wmm-powersave enable See set service-profilewpa-ie onSet service-profile attr Syntax set service-profile name attr attribute-name valueWSS# set service-prof sp2 attr vlan-name blue Set service-profile auth-dot1x WSS# set service-prof sp2 attr mobility-profile tulipSyntax set service-profile name auth-dot1x enable disable WSS# set service-profile wpaclients auth-dot1x disableSet service-profile auth-fallthru Last-resortWeb-portal Set service-profile auth-psk WSS# set service-profile rndlab auth-fallthru web-portalSyntax set service-profile name auth-psk enable disable WSS# set service-profile wpaclients auth-psk enableSet service-profile beacon Set service-profile bridgingSyntax set service-profile name beacon enable disable Mesh-service-profile Mesh service profileSet service-profile cac-mode Syntax set service-profile name cac-mode none sessionWSS# set service-profile sp1 cac-mode session Set service-profilecac-session on Show service-profile onSet service-profile cac-session Set service-profile cipher-ccmpSyntax set service-profile name cac-session max-sessions WSS# set service-profile sp1 cac-sessionSet service-profile cipher-tkip WSS# set service-profile sp2 cipher-ccmp enableSyntax set service-profile name cipher-tkip enable disable WSS# set service-profile sp2 cipher-tkip disableSet service-profile cipher-wep104 WSS# set service-profile sp2 cipher-wep104 enableEnables 104-bit WEP encryption for WPA clients Set service-profile cipher-wep40 Set service-profile cosSyntax set service-profile name cipher-wep40 enable disable WSS# set service-profile sp2 cipher-wep40 enableSet service-profile dhcp-restrict Syntax set service-profile name cos levelWSS# set service-profile sp1 cos WSS# set service-profile sp1 dhcp-restrict enableSet service-profile idle-client-probing Set service-profile keep-initial-vlanWSS# set service-profile sp1 idle-client-probing disable Enables keepalivesSet service-profile load-balancing-exempt See Also show service-profile onWSS# set service-profile sp3 keep-initial-vlan enable Set service-profile long-retry-count WSS# set service-profile sp3 load-balancing-exempt enableSyntax set service-profile name long-retry-count threshold WSS# set service-profile sp1 long-retry-countSet service-profile mesh Set service-profile no-broadcastSyntax set service-profile name mesh mode enable disable Enables mesh services for the service profileSet service-profile proxy-arp Syntax set service-profile name no-broadcast enable disableWSS# set service-profile sp1 no-broadcast enable Syntax set service-profile name proxy-arp enable disableSet service-profile psk-phrase WSS# set service-profile sp1 proxy-arp enableSyntax set service-profile name psk-phrase passphrase Set service-profile psk-raw Set service-profile rsn-ieSyntax set service-profile name psk-raw hex Set service-profile shared-key-auth Syntax set service-profile name rsn-ie enable disableWSS# set service-profile sprsn rsn-ie enable Set service-profile short-retry-count WSS# set service-profile sp4 shared-key-auth enableSyntax set service-profile name short-retry-count threshold WSS# set service-profile sp1 short-retry-countSet service-profile soda agent-directory Set service-profile soda enforce-checksNetwork Set service-profile soda failure-page WSS# set service-profile sp1 enforce-checks disableSyntax set service-profile name soda failure-page Set service-profile soda mode on Show service-profile onSet service-profile soda logout-page Syntax set service-profile name soda logout-pageSet service-profile soda mode WSS# set service-profile sp1 soda logout-page logout.htmlSyntax set service-profile name soda mode enable disable WSS# set service-profile sp1 soda mode enableSet service-profile soda remediation-acl Set service-profile soda success-pageSyntax set service-profile name soda success-page Set service-profile ssid-name WSS# set service-profile sp1 soda success-page success.htmlSyntax set service-profile name ssid-name ssid-name Set service-profile ssid-type Set service-profile static-cosWSS# set service-profile clearwlan ssid-name guest Syntax set service-profile name ssid-type clear cryptoSet service-profile tkip-mc-time Syntax set service-profile name static-cos enable disableWSS# set service-profile sp1 static-cos enable Syntax set service-profile name tkip-mc-time wait-timeSet service-profile transmit-rates WSS# set service-profile sp3 tkip-mc-time11g-1.0, 2.0, 5.5, 6.0, 9.0, 11.0, 12.0, 18.0 Beacon-rate rate Multicast-rateBeacon-rate Set service-profile user-idle-timeout Set service-profile web-portal-aclSyntax set service-profile name user-idle-timeout seconds WSS# set service-profile sp1 user-idle-timeoutSet service-profile web-portal-form Syntax set service-profile name web-portal-acl aclnameWSS# set service-profile sp3 web-portal-acl creditsrvr Syntax set service-profile name web-portal-form urlWSS# mkdir corpa WSS# dir corpaSet service-profile web-portal-logout Set service-profile web-portal-logout logout-urlSet service-profile web-portal-session-timeout WSS# set service-profile sp1 web-portal-logout mode enableSet service-profile wep active-multicast-index WSS# set service-profile sp1 web-portal-session-timeoutSet service-profile wep active-unicast-index WSS# set service-profile sp2 wep active-multicast-indexWSS# set service-profile sp2 wep active-unicast-index Set service-profile wep key-index Set service-profile wpa-ieSyntax set service-profile name wep key-index num key value WSS# set service-profile sp2 wep key-index 1 key aabbccddeeWSS# set service-profile sp2 wpa-ie enable Show ap arpSyntax show ap arp ap-number WSS# show ap arpShow ap config Syntax show ap config port-listradio 1Set ap local-switching mode on Set vlan-profile Output for show ap arpWSS# show ap config Output for show ap config 802.11a 802.11b802.11g Show ap unconfigured on Show radio-profile on Show ap countersSyntax show ap counters port-listradio 1 WSS# show ap countersOutput for show ap counters Use the show sessions network session-id session-idcommand Output for show ap counters Show ap dual-home See Also show sessions network onShow ap fdb Output for show ap fdbSyntax show ap fdb ap-number WSS# show ap fdbShow ap qos-stats WSS# show ap qos-statsClears the counters after displaying their current values Show ap etherstats Output for show ap qos-statsSyntax show ap etherstats port-listap-num WSS# show ap etherstatsOutput for show ap etherstats Show ap group Show ap mesh-linksSyntax show ap mesh-links ap-number WSS# show ap mesh-linksShow ap status Output for show ap mesh-linksSyntax show ap status terse port-listall radio 1 TerseRadio state information, to indicate when an Configured antenna model numberPower settings that are configured by RF Auto TuningWSS# show ap status terse Output for show ap status But has not yet begun booting Booting-The AP has asked the WSS for a bootImage downloading-The AP is receiving a boot Image downloaded-The AP has received a bootConfigure succeed state indicates that the AP Has received configuration parameters forProtection mode remains in effect until Sweep Mode indicates that a disabled radio isBut no external antenna is configured on Antenna is configured on the radio but noIndicates that an external antenna was detected RadioShow ap vlan Output for show ap status terse and show ap status terseSet vlan-profile Set ap local-switching mode on Output for show ap vlanSyntax show ap vlan ap-number WSS# show ap vlanShow auto-tune attributes Output for show auto-tune attributesSyntax show auto-tune attributes ap ap-numradio 1 2all WSS# show auto-tune attributes ap 2 radioSet radio-profileauto-tunepower-backoff-timer on Show auto-tune neighborsSyntax show auto-tune neighbors ap ap-numradio 1 2all Output for show auto-tune neighbors RssiShow ap boot-configuration Output for show ap boot-configurationSyntax show ap boot-configuration ap-num WSS# show ap boot-configurationShow ap connection Syntax show ap connection ap-numserial-id serial-IDConnection Serial-id serial-IDShow ap config on Show ap global on Show ap unconfigured on Output for show ap connectionWSS# show ap connection Total number of entries WSS# show ap connection serial-idShow ap global Output for show ap globalSyntax show ap global ap-numserial-id serial-ID WSS# show ap globalShow ap unconfigured Syntax show ap unconfiguredWSS# show ap unconfigured Output for show ap unconfigured This WSS switch as a memberShow load-balancing group Show ap connection on Show ap global onShow radio-profile Output for show load-balancing groupWSS# show load-balancing group blue Syntax show radio-profile name ?WSS# show radio-profile default Output for show radio-profile Wmm-AP forwarding queues provide standard Priority handling for WMM devicesSvp-AP forwarding queues are optimized for SpectraLink Voice Priority SVPShow service-profile Syntax show service-profile name ?Profile output Output for show service-profile Crypto-Wireless traffic for the Ssid isClear-Wireless traffic for the Ssid is UnencryptedLast-resort-Automatically authenticates the user Allows access to the Ssid requested byUser, without requiring a username and password None-Denies authentication and prohibitsNone-CAC is disabled None-The key is not configuredPreset-The key is configured Session-CAC is based on the number of activeRadios in the radio profile mapped to this service Authentication-Lists the authentication methods802.1X-dynamic authentication PSK-preshared key authenticationFieldDescription AP Commands AP Commands NN47250-100 Version STP Commands Set spantree uplinkfast onShow spantree uplinkfast on Clear spantree portcost Clear spantree portpriResets the cost for all VLANs Clear spantree portvlancostClear spantree portvlanpri Clear spantree statistics Syntax clear spantree portvlanpri port-listall vlan vlan-idSyntax clear spantree statistics port-listvlan vlan-id WSS# clear spantree statistics 5,11,19-22Set spantree Set spantree backbonefastSee Also show spantree statistics on See Also show spantree onSet spantree fwddelay Set spantree helloSee Also show spantree backbonefast on Set spantree maxage Set spantree portcostSnmp Port Path Cost Defaults Syntax set spantree portfast port port-listenable disableSet spantree portfast WSS# set spantree portcost 3,4 costSet spantree portpri Set spantree portvlancostSee Also show spantree portfast on Set spantree portvlanpri WSS# set spantree portvlancost 3,4 cost 20 vlan mauveCost cost All Priority value AllSet spantree priority Set spantree uplinkfastWSS# set spantree uplinkfast enable WSS# show spantree vlan defaultShow spantree See Also show spantree uplinkfast onBridge Max Age 20 sec Hello Time 2 sec Forward Delay 15 sec Output for show spantree Show spantree backbonefast See Also show spantree blockedports onSyntax show spantree backbonefast WSS# show spantree blockedports vlan default Show spantree blockedportsSee Also set spantree backbonefast on WSS# show spantree backbonefastShow spantree portfast Syntax show spantree portfast port-listWSS# show spantree portfast Uplink fast convergence information for all portsShow spantree portvlancost Output for show spantree portfastSee Also set spantree portfast on Syntax show spantree portvlancost port-listShow spantree statistics Syntax show spantree statistics port-listvlan vlan-idWSS# show spantree statistics Statistics for all portsInactive Output for show spantree statistics Output for show spantree statistics Output for show spantree statistics Show spantree uplinkfast Output for show spantree uplinkfastSee Also clear spantree statistics on Syntax show spantree uplinkfast vlan vlan-idSee Also set spantree uplinkfast on STP Commands NN47250-100 Version Igmp Snooping Commands Clear igmp statisticsSyntax clear igmp statistics vlan vlan-id Statistics Show igmp statistics on Clear igmp statistics onSet igmp Set igmp lmqiSee Also show igmp statistics on See Also show igmp onSet igmp mrouter Set igmp mrsolSee Also show igmp mrouter on Set igmp mrsol mrsi Set igmp oqiSee Also set igmp mrsol mrsi on See Also set igmp mrsol onSyntax set igmp proxy-report enable disable vlan vlan-id Set igmp proxy-reportWSS# set igmp oqi 200 vlan orange Vlan vlan-idWSS# set igmp proxy-report disable vlan orange Set igmp qiSet igmp qri Syntax set igmp qi seconds vlan vlan-idSyntax set igmp querier enable disable vlan vlan-id Set igmp querierSyntax set igmp qri tenth-seconds vlan vlan-id WSS# set igmp qri 50 vlan orangeSet igmp receiver Set igmp rvSee Also show igmp querier on See Also show igmp receiver-table onShow igmp WSS# set igmp rv 4 vlan orangeSyntax show igmp vlan vlan-id WSS# show igmp vlan orangeOutput for show igmp Dvmrp PIMConf Static multicast port configured by an AdministratorMadv-Multicast advertisement Quer-IGMP queryShow igmp mrouter Syntax show igmp mrouter vlan vlan-idWSS# show igmp mrouter vlan orange Show igmp querier Output for show igmp mrouterSyntax show igmp querier vlan vlan-id Set igmp mrouter on Show igmp mrouter onWSS# show igmp querier vlan orange WSS# show igmp querier vlan default Show igmp receiver-tableOutput for show igmp querier See Also set igmp querier onWSS# show igmp receiver-table vlan orange WSS# show igmp receiver-table group 237.255.255.0/24WSS Software displays the multicast receivers on all VLANsShow igmp statistics Output for show igmp receiver-tableSee Also set igmp receiver on Syntax show igmp statistics vlan vlan-idOutput for show igmp statistics See Also clear igmp statistics on Igmp Snooping Commands NN47250-100 Version Session Management Commands WSS# clear sessions adminClear sessions WSS# clear sessions consoleClear sessions network See Also show sessions onWSS# clear sessions telnet client WSS# clear sessions network mac-addrShow sessions Console TelnetShow sessions network Show sessions telnet client OutputSee Also clear sessions on Mac-addr mac-addrVerbose output Session-id outputWSS show sessions network WSS show sessions network mac-addr 00055d7e981aWSS show sessions network user E WSS show sessions network verboseShow sessions network summary Output WSS# show sessions network session-idAdditional show sessions network verbose DescriptionIP address and port number of the WSS managing the AP Serial number and radio number of the APAmount of time the session has been on this AP AAA-VLAN is from Radius or the local databaseShow sessions network session-id Output DOT1X See Also clear sessions network on Session Management Commands NN47250-100 Version Security ACL Commands Clear security aclSyntax clear security acl acl-name all editbuffer-index Clears all security ACLsWSS# show security acl info all Set security acl ip acl133 hits #1Set security acl ip acl134 hits #3 Set security acl ip acl135 hits #2Clear security acl map WSS# clear security acl map acljoe port 4Out Commit security acl WSS# clear security acl map allSyntax commit security acl acl-nameall Type Class MappingHit-sample-rate Rollback security aclSee Also show security acl on Syntax rollback security acl acl-nameallSet security acl By UDP packets Any Minimum delay Routine precedencePriority precedence Immediate precedenceWSS# set security acl ip acl123 deny 192.168.2.11 WSS# commit security acl allSet security acl map WSS set security acl map acl133 port 4WSS port or ports Tag tag-listConfiguration file Set security acl hit-sample-rateSyntax set security acl hit-sample-rate seconds Set security acl ip acl153 hits #3Show security acl Show security acl dscpWSS# show security acl hits Index Counter ACL-nameShow security acl editbuffer Show security acl hitsSyntax show security acl info all editbuffer WSS# show security acl editbufferShow security acl info Syntax show security acl hitsSyntax show security acl info acl-nameall editbuffer WSS# show security acl infoShow security acl map Show security acl resource-usage Show security acl resource-usage Output True-A default action types is defined False-No default action type is definedTrue-Security ACLs are mapped False-No security ACLs are mappedTrue-Security ACLs are mapped to incoming traffic False-No security ACLs are mapped to incomingCryptography Commands Crypto ca-certificate EapPEM-formatted CertificateWSS# crypto certificate admin Crypto certificateSee Also show crypto ca-certificate on Crypto generate key Crypto generate request on Crypto generate self-signed onDomain SshWSS# crypto generate key admin Syntax crypto generate request admin eap webCrypto generate request See Also show crypto key ssh onWSS# crypto generate request admin Email Address admin@example.comWebaaa option renamed to web Maximum string length for State Name increasedSyntax crypto generate self-signed admin eap web Crypto generate self-signedCrypto certificate on Crypto generate key on WSS# crypto generate self-signed admin Syntax crypto otp admin eap web one-time-passwordCrypto otp Syntax crypto pkcs12 admin eap web file-location-url Crypto pkcs12See Also crypto pkcs12 on WSS# crypto generate otp eap hap9iN#ssSee Also crypto otp on WSS# copy tftp//192.168.253.1/2048full.p12 2048full.p12WSS# crypto otp eap hap9iN#ss WSS# crypto pkcs12 eap 2048full.p12Syntax show crypto ca-certificate admin eap web Show crypto ca-certificateShow crypto ca-certificate Output WSS# show crypto ca-certificateSyntax show crypto certificate admin eap web Show crypto certificateCrypto certificate Output WSS# show crypto certificate eapShow crypto key domain Show crypto key sshSee Also crypto generate key on Cryptography Commands NN47250-100 Version Radius and Server Groups Commands Syntax clear radius deadtime key retransmit timeoutClear radius Clear server group onClear radius client system-ip Clear radius proxy client Clear radius proxy portSee Also set radius proxy client on See Also set radius proxy port onClear radius server Clear server groupSet radius See Also set server group onSet radius client system-ip Set radius proxy client Set radius proxy portSyntax set radius proxy client address ip-address WSS# set radius proxy client address 10.20.20.9 key radkey1Set radius server WSS# set radius proxy port 3-4 tag 104 ssid mycorpSsid ssid-name Ssid supported by the third-party AP Encrypted-key-No key Author-password-nortel Set server group Members server23x0# set server group shorebirds load-balance enable 23x0# set server group shorebirds load-balance disableSet server group load-balance Group-name Server group name of up to 32 charactersRadius and Server Groups Commands NN47250-100 Version 802.1X Management Commands Clear dot1x bonded-period Clear dot1x max-reqSyntax clear dot1x max-req WSS# clear dot1x bonded-periodClear dot1x port-control Clear dot1x quiet-periodClear dot1x reauth-max Clear dot1x timeout auth-server Clear dot1x reauth-periodClear dot1x timeout supplicant Clear dot1x tx-periodSyntax set dot1x authcontrol enable disable WSS# set dot1x authcontrol enableSet dot1x authcontrol Set dot1x bonded-periodSet dot1x key-tx Set dot1x max-reqSee Also show dot1x on Set dot1x port-control WSS# set dot1x max-reqWSS# set dot1x port-control forceauth Set dot1x quiet-period Set dot1x reauthSet dot1x reauth-max Set dot1x reauth-periodSet dot1x timeout auth-server Set dot1x timeout supplicantSyntax set dot1X wep-rekey enable disable Set dot1x tx-periodSet dot1x wep-rekey Syntax set dot1x tx-period secondsSet dot1x wep-rekey-period Show dot1xWSS# show dot1x config WSS# show dot1x clientsShow dot1x stats Output WSS # show dot1x stats520 802.1X Management Commands RF Detection Commands Rogue Information Show rfdetect clients onShow rfdetect data on Show rfdetect visible onClear rfdetect attack-list Clear rfdetect black-listSyntax clear rfdetect attack-list mac-addr Syntax clear rfdetect black-list mac-addrClear rfdetect ignore Clear rfdetect ssid-listClear rfdetect vendor-list Set rfdetect attack-listSyntax clear rfdetect vendor-list client ap mac-addrall WSS# clear rfdetect vendor-list client aabbcc000000Set rfdetect black-list Set rfdetect ignoreSyntax set rfdetect log enable disable 23x0# set rfdetect log enableSet rfdetect log 23x0# set rfdetect ignore aabbcc112233Set rfdetect signature Set rfdetect ssid-listSee Also show log buffer on Set rfdetect vendor-list WSS# set rfdetect ssid-list mycorpSyntax set rfdetect vendor-list client ap mac-addr WSS# set rfdetect vendor-list client aabbcc000000Show rfdetect attack-list Show rfdetect black-listShow rfdetect clients Show rfdetect clients OutputSyntax show rfdetect clients mac mac-addr WSS# show rfdetect clients mac 000c4163fd6dShow rfdetect clients mac Output Show rfdetect countermeasures Syntax show rfdetect countermeasuresWSS# show rfdetect countermeasures Show rfdetect counters Show rfdetect countermeasures OutputSee Also set radio-profile countermeasures on Syntax show rfdetect countersShow rfdetect data Syntax show rfdetect dataShow rfdetect data Output Show rfdetect ignore Show rfdetect mobility-domainSyntax show rfdetect ignore WSS# show rfdetect ignore Total number of entriesBssid and ssid options added Vendor, Type, and Flags fields addedWSS# show rfdetect mobility-domain WSS# show rfdetect mobility-domain ssid nrtl-webaaaShow rfdetect mobility-domain Output Show rfdetect mobility-domain ssid or bssid Output Show rfdetect ssid-list Show rfdetect vendor-list Show rfdetect visibleSyntax show rfdetect vendor-list WSS# show rfdetect vendor-listShow ap status command Mac-addr Base MAC address of the Nortel radioShows neighbor information for radio Version Vendor, Type, and Flags fields addedRfping Show rfdetect visible OutputSyntax rfping mac mac-addrsession-id session-id Show rfdetect data on Show rfdetect mobility-domain onRfping Output WSS# rfping mac 000e9bbfad13File Management Commands BackupSyntax backup system tftp/ip-addr/filenameall critical WSS# backup system tftp/10.10.20.9/sysabak criticalDir on Restore on Tftp/ip-addr / filenameClear boot backup-configuration Clear boot configCopy Syntax copy source-url destination-url Source-urlDestination-url Be one of the followingWSS# copy tftp//10.1.1.107/WSS020101.020 boot1WSS020101.020 DeleteWSS# copy floorwss tftp//10.1.1.1/floorwss WSS# copy tftp//10.1.1.1/closetwss closetwssWSS# copy testconfig tftp//10.1.1.1/testconfig WSS# delete testconfigSyntax dir subdirname file core boot0 boot1 DirWSS# dir WSS# dir oldWSS# dir file Install soda agent WSS# dir boot0Output for dir WSS# dir coreLoad config WSS# install soda agent soda.ZIP agent-directory sp1Syntax load config url Uninstall soda agent on Set service-profile soda mode onWSS# load config WSS# load config testconfig1Syntax md5 boot0 boot1filename Save config on Show boot on Show config onPubs# md5 boot0WSS040003.020 MkdirSyntax mkdir subdirname WSS# mkdir corp2Reset system Syntax reset system forceWSS# reset system Restore Save config See Also backup onRmdir Set boot backup-configuration Syntax save config filenameWSS# save config testconfig1 Syntax set boot backup-configuration filenameSet boot configuration-file Set boot partitionShow boot New fields, Configured boot version and BackupBoot configuration, added Output for show boot Show config Syntax show config area area allConfiguration area. You can specify one of the following Area areaShow version New options added for remote traffic monitoring snoopRfdevice changed to rfdetect WSS# show version details Uninstall soda agent See Also show boot onSyntax uninstall soda agent agent-directory directory WSS# uninstall soda agent agent-directory sp1Install soda agent on Set service-profile soda mode on File Management Commands NN47250-100 Version Trace Commands Clear log traceSyntax clear log trace WSS# clear log traceClear trace Save traceSet trace authentication Set trace authorizationWSS# set trace authentication user jose WSS# save trace traces/trace1Level 5 is the default Set trace dot1xUser-readable information. If you do not specify a level Set trace sm WSS# set trace sm mac-addrShow trace Syntax show trace allWSS# show trace Snoop Commands Clear snoopSyntax clear snoop filter-name WSS# clear snoop snoop1Clear snoop map WSS# clear snoop map snoop2 ap 3 radioWSS# clear snoop map all Examples clear snoop map filter-nameap ap-numradio 1Set snoop Set snoop map WSS# set snoop snoop1 observer 10.10.30.2 snap-lengthExamples set snoop map filter-nameap ap-numradio 1 Set snoop mode Enable Stop-after num-pktsWSS# set snoop map snoop1 ap 3 radio Filter. See show snoop stats onWSS# set snoop snoop1 mode enable stop-after Show snoopSyntax show snoop WSS# show snoopShow snoop info Show snoop mapShow snoop stats Clear snoop map on Set snoop map on Show snoop onExamples show snoop stats filter-nameap-numradio 1 Show snoop stats Output Snoop Commands NN47250-100 Version System Log Commands Clear logSyntax clear log buffer server ip-addr WSS# clear log serverLogging state enabled or disabled Set logSeverity Defaults Set log mark See Also show log config on Set log trace mbytesShow log buffer Reboot or shut down Error-The WSS is missing data or is unable toProblems have occurred. These are logged for Diagnostic purposes. No action is requiredShow log config Syntax show log configWSS# show log config Show log traceConditions are not resolved, the WSS can reboot Error-The WSS is missing data or is unable to formPositive number for example, +100, displays that Number of log entries starting from the oldestWSS# show log trace facility ? WSS# show log trace +5 facility RogueSystem Log Commands NN47250-100 Version Boot Prompt Commands Autoboot See Also boot onSyntax autoboot on on OFF off Boot autobootBoot Boot boot FN=WSS010101.020 DEV=boot1 ChangeChange on Show on Boot change Boot on Create on Delete on Dhcp on Next on Show onBoot create CreateChange on Delete on Next on Show on Boot delete Boot dhcpDhcp Syntax dhcp on on OFF offSyntax dir c d e f boot0 boot1 Boot dirDiag Fver on Version onSyntax fver c d e f boot0 boot1 filename Boot fver boot1Syntax help command-name FverBoot help fver See Also ls onReset Boot nextNext See Also help onBoot reset ShowCompact flash. Boots using nonvolatile Boot showOutput for show Storage or a flash cardNonvolatile storage area containing boot PartitionPrimary partition of the flash card in the flash Secondary partition of the flash cardBoot version Enables the poweron test flagTest VersionDir on Fver on Command Index NumericsNN47250-100 320658-G Version Delete 539 Command Index 282 340 Command Index Command Index MAC addresses 12 in user globs Vlan globs Command Index NN47250-100 320658-G Version Page Nortel WLAN-Security Switch 2300 Series Release