Wpa-clients | SMC Networks 2.4GHz/5GHz instruction

Command Line Interface

wpa-clients

This command defines whether Wi-Fi Protected Access (WPA) is required or optionally supported for client stations.

Syntax

wpa-clients <required supported>

•required - Supports only clients using WPA.

•supported - Support clients with or without WPA.

Default Setting

Supported

Command Mode

Interface Configuration (Wireless)

Command Usage

Wi-Fi Protected Access (WPA) provides improved data encryption, which was weak in WEP, and user authentication, which was largely missing in WEP. WPA uses the following security mechanisms.

Enhanced Data Encryption through TKIP

WPA uses Temporal Key Integrity Protocol (TKIP). TKIP provides data encryption enhancements including per-packet key hashing (i.e., changing the encryption key on each packet), a message integrity check, an extended initialization vector with sequencing rules, and a re-keying mechanism.

Enterprise-level User Authentication via 802.1x and EAP

To strengthen user authentication, WPA uses 802.1x and the Extensible Authentication Protocol (EAP). Used together, these protocols provide strong user authentication via a central RADIUS authentication server that authenticates each user on the network before they join it. WPA also employs “mutual authentication” to prevent a wireless client from accidentally joining a rogue network.

7-116

Image 286

SMC Networks 2.4GHz/5GHz manual Syntax Wpa-clients required supported

Contents

Easy way to make all your network connections Copyright Trademarks Limited Warranty Limited Warranty Federal Communication Commission Interference Statement FCC Radiation Exposure Statement Wireless 5 GHz Band Statements EC Conformance Declaration Compliances Operation Using 5 GHz Channels in the European Community Countries Vii Safety Compliance Power Cord Safety Cord set must be UL-approved and CSA certified France et Pérou uniquement De type HO3VVF3GO.75 minimum Xii Table of Contents System Configuration Initial ConfigurationCommand Line Interface Table of Contents Xvi Xvii Xviii Glossary Index Table of Contents Chapter Introduction Package Checklist Introduction Package Checklist Hardware Description External Antenna Options Hardware DescriptionIntegrated High-Gain Antenna Ethernet Port Power Injector Module Grounding Point Receive Signal Strength Indicator Rssi BNC ConnectorWall- and Pole-Mounting Bracket Kits System Configuration Indoor Outdoor Features and Benefits Features and Benefits System Defaults Feature Parameter Default System Defaults Null Ssid SMC System Defaults Introduction Network Configuration Access Point Topologies Network Configuration Ad Hoc Wireless LAN no Access Point or Bridge Access Point Topologies Infrastructure Wireless LAN Infrastructure Wireless LAN for Roaming Wireless PCs Bridge Link Topologies Bridge Link Topologies Point-to-Point Configuration Point-to-Multipoint Configuration Bridge Link Topologies Network Configuration Bridge Link Planning Radio Path Planning Bridge Link Planning Radio Path Planning Antenna Height 31 ft 9.5 m 29 ft 8.8 m 60 ft 18.3 m Antenna Position and Orientation Radio Interference Weather Conditions Ethernet Cabling Grounding Hardware Installation Using the Pole-Mounting Bracket Testing Basic Link OperationHardware Installation Mount the Unit Mount the Unit Using the Wall-Mounting Bracket Mounting on Larger Diameter Poles Connect External Antennas Connect External Antennas SMC2888W-M Connect Cables to the Unit Connect the Power InjectorConnect Cables to the Unit Hardware Installation Align Antennas Align Antennas Rssi Rssi BNC Hardware Installation Initial Configuration Initial Configuration Initial Setup through the CLIInitial Configuration Steps Initial Setup through the CLI Using the Web-based Management Setup Wizard Using the Web-based Management Setup Wizard Initial Configuration Using the Web-based Management Setup Wizard Initial Configuration Using the Web-based Management Setup Wizard Initial Configuration Using the Web-based Management Setup Wizard Initial Configuration System Configuration System Configuration Advanced Configuration Advanced Configuration System Identification Rssi Advanced Configuration Disabled TCP / IP Settings System Configuration Advanced Configuration Radius Advanced Configuration System Configuration PPPoE Settings System Configuration Advanced Configuration Authentication Advanced Configuration System Configuration Advanced Configuration System Configuration Advanced Configuration System Configuration Local Remote Supported Filter Control Number Radius Attribute Value System Configuration Advanced Configuration Snmp Advanced Configuration System Configuration Administration Changing the Password Upgrading Firmware Advanced Configuration System Configuration Advanced Configuration System Log Enabling System Logging Error Level Description Configuring Sntp Advanced Configuration +8 TAIPEI, Beijing Wireless Distribution System WDS System Configuration Bridge System Configuration Spanning Tree Protocol STP Wlana System Configuration Advanced Configuration System Configuration Advanced Configuration System Configuration Wlana Rssi Advanced Configuration Radio Interface Radio Settings a 802.11a Radio Interface Mode Radio Interface System Configuration Radio Interface 100 Radio Settings G 802.11g System Configuration Tkip Security Bridge Mode Wired Equivalent Privacy WEP Radio Interface Advanced Encryption Standard AES Radio Interface Interface wireless a command BIT WEP Encryption BIT AES Encryption Security Access Point Mode WEP Wired Equivalent Privacy WEP Radio Interface System Configuration WEP only WEP over Show interface wireless a or show interface wireless g Command Radio Interface Wi-Fi Protected Access WPA Radio Interface System Configuration Radio Interface System Configuration Configuration settings for WPA are summarized below Command not shown in example Status Information Status InformationAP Status System Configuration Native Vlan Iapp State Station Status 121 Event Logs Status Information System Configuration Accessing the CLI Using the Command Line InterfaceTelnet Connection Command Line Interface Command Completion Entering CommandsEntering Commands Keywords and Arguments Getting Help on Commands Showing Commands Using Command History Negating the Effect of CommandsPartial Keyword Lookup Understanding Command Modes Exec Commands Configuration Commands Command Line Processing Keystroke Function Command Groups Command Groups Configure General CommandsDefault Setting End General CommandsExit Ping Command UsageSyntax Reset Syntax Reset board configuration Show history Show line System Management Commands System Management Commands Country Country countrycode Default Setting Prompt Syntax Prompt string no prompt Syntax System name name no system name System nameUsername Syntax Username name Ip http port PasswordSyntax Password password no password Syntax Ip http port port-numberno ip http port Syntax Ip http server no ip http server Default Setting Default Setting Command ModeIp http server Show system System Logging Commands System Logging CommandsShow version Logging on Syntax Logging on no logging on Default SettingLogging host Logging console Syntax Logging console no logging console Default SettingLogging level Logging facility-type Syntax Logging facility-type type Show logging System Clock Commands Sntp-server ip System Clock CommandsSyntax Sntp-server ip 1 2 ip Sntp-server enable Sntp-server date-time Sntp-server daylight-saving Sntp-server timezone Syntax Sntp-server timezone hours Show sntp TAIPEI, Beijing Snmp Commands Snmp-server community Snmp-server contact Snmp CommandsSyntax Snmp-server contact string no snmp-server contact Snmp-server enable server Snmp-server host No snmp-server host Snmp-server location Syntax Snmp-server location text no snmp-server location Flash/File Commands Flash/File CommandsShow snmp Bootfile Syntax Bootfile filename Syntax Copy ftp tftp file copy config ftp tftp Copy Delete Dir File information is shown below Radius Client Radius ClientRadius-server address Radius-server port Syntax Radius-server secondary port portnumber Syntax Radius-server secondary key keystring Radius-server keyRadius-server retransmit Syntax Radius-server secondary retransmit numberofretries Syntax Radius-server secondary timeout numberofseconds Radius-server timeoutShow radius Authentication Authentication Enables the feature 802.1x Syntax 802.1x supported required no 802.1x broadcast-key-refresh-rate Syntax 802.1x broadcast-key-refresh-rate rate 802.1x session-key-refresh-rate Syntax 802.1x session-key-refresh-rate rate 802.1x session-timeout Default 802.1x supplicant Address filter default Syntax Address filter default allowed denied Address filter entry Syntax Address filter entry mac-addressallowed denied Address filter delete Syntax Address filter delete mac-address Mac-authentication server Syntax Mac-authentication server local remote Show authentication Mac-authentication session-timeoutSyntax Mac-authentication session-timeout seconds WDS Commands WDS Commands Wds mac-address Wds channelSyntax Wds channel a g none Wds enable Syntax No wds enable port-id Show wds Bridge Commands Bridge Commands Bridge timeout Bridge stp-bridge spanning-tree Bridge stp-bridge forward-time Bridge stp-bridge hello-time Bridge stp-bridge max-age Seconds Time in seconds. Range 6-40 seconds Bridge stp-bridge priority Bridge stp-port path-cost Bridge stp-port priority Bridge stp-port portfast Bridge stp-port spanning-disabled Syntax Show bridge Command Mode Show bridge Syntax Filter local-bridge no filter local-bridge Default Filtering CommandsFilter local-bridge Syntax Filter ap-manage no filter ap-manage Default Filtering CommandsFilter ap-manage Filter ethernet-type enable Filter ethernet-type protocol PPPoE Commands Show filters Syntax Ip pppoe no ip pppoe Default Setting PPPoE CommandsIp pppoe Pppoe ip allocation mode Syntax Pppoe ip allocation mode automatic static Syntax Pppoe ipcp dns no pppoe ipcp dns Default Setting Pppoe ipcp dns Pppoe lcp echo-interval Syntax Pppoe lcp echo-interval interval Syntax Pppoe lcp echo-failure timeout Pppoe lcp echo-failure Syntax Pppoe local ip ip-address Pppoe local ipPppoe remote ip Syntax Pppoe remote ip ip-address Pppoe username Syntax Pppoe username username Pppoe password Syntax Pppoe password string Syntax Pppoe service-name string Pppoe service-namePppoe restart Show pppoe Syntax Interface ethernet Default Setting Ethernet Interface CommandsEthernet Interface Commands Interface ethernet Dns server Ip address Ip address ip-address netmask gateway no ip address Syntax Ip dhcp no ip dhcp Default Setting Ip dhcp Syntax Shutdown no shutdown Default Setting Shutdown Syntax Show interface ethernet Default Setting Show interface ethernet Wireless Interface Commands Wireless Interface Commands Dtim-period Configures the rate at which stations Description Interface wirelessSyntax Interface wireless a Syntax Description string no description Ssid Ssid string Speed Syntax Closed-system no closed-system Default SettingClosed-system Syntax Speed speed Channel Syntax Channel channel auto Turbo Syntax Beacon-interval interval Beacon-intervalDtim-period Syntax Dtim-period interval Fragmentation-length Syntax Fragmentation-length length Rts-threshold Syntax Rts-threshold threshold Transmit-power Transmit-powersignal-strength Max-association Syntax Max-association count Syntax Authentication open shared Encryption 111 Key No key wep index wdsaes Transmit-key Syntax Transmit-key index Multicast-cipher Syntax Multicast-cipher AES Tkip WEP 115 Wpa-clients Syntax Wpa-clients required supported Wpa-mode Syntax Wpa-mode dynamic pre-shared-key Wpa-preshared-key Syntax Wpa-preshared-key type value Wpa-psk-type Syntax Wpa-psk-type type Show interface wireless Syntax Show interface wireless a g Show station OFF Iapp Iapp CommandsSyntax Iapp no iapp Vlan Commands Vlan Commands Command Description Syntax Vlan enable no vlan DefaultVlan Native-vlanid Syntax Native-vlanid vlan-id 126 Appendix a Troubleshooting Troubleshooting Data Rates General SpecificationsMaximum Channels Outdoor Maximum Clients Specifications General Specifications Antenna Specifications DBi Integrated Panel Antenna Specifications Specifications Appendix C Cables and Pinouts Twisted-Pair Cable Assignments Cables and Pinouts 10/100BASE-TX Pin Assignments Crossover Wiring Straight-Through WiringTwisted-Pair Cable Assignments Pin DIN Connector Pinout Pin DIN Ethernet Port Pinout Pin DIN Connector Pinout Pin DIN to RJ-45 Cable Wiring Cables and Pinouts Authentication Access PointBackbone Glossary Internet Control Message Protocol Icmp File Transfer Protocol FTPHypertext Transfer Protocol Http Ieee 802.11a Orthogonal Frequency Division Multiplexing Odfm Service Set Identifier SsidOpen System RTS Threshold Simple Network Time Protocol Sntp Trivial File Transfer Protocol Tftp Glossary-6 Index Index Index-3 Index-4 Page SMC2888W-S SMC2888W-M