Command Line Interface (CLI)

This section discusses the following:

CLI commands can be used to initialize, configure, and manage the Access Point.

General Notes

Prerequisite Skills and Knowledge

To use this document effectively, you should have a working knowledge of Local Area Networking (LAN) concepts, network access infrastructures, and client-server relationships. In addition, you should be familiar with software setup procedures for typical network operating systems and servers.

Notation Conventions

Important Terminology

Navigation and Special Keys

This CLI supports the following navigation and special key functions to move the cursor along the prompt line.

Key Combination
Operation
Delete or Backspace
Delete previous character
Ctrl-A
Move cursor to beginning of line
Ctrl-E
Move cursor to end of line
Ctrl-F
Move cursor forward one character
Ctrl-B
Move cursor back one character
Ctrl-D
Delete the character the cursor is on
Ctrl-U
Delete all text to left of cursor
Ctrl-P
Go to the previous line in the history buffer
Ctrl-N
Go to the next line in the history buffer
Tab
Complete the command line
?
List available commands

CLI Error Messages

The following table describes the error messages associated with improper inputs or expected CLI behavior.

Error Message
Description
Syntax Error
Invalid syntax entered at the command prompt.
Invalid Command
A non-existent command has been entered at the command prompt.
Invalid Parameter Name
An invalid parameter name has been entered at the command prompt.
Invalid Parameter Value
An invalid parameter value has been entered at the command prompt.
Invalid Table Index
An invalid table index has been entered at the command prompt.
Invalid Table Parameter
An invalid table parameter has been entered at the command prompt.
Invalid Table Parameter Value
An invalid table parameter value has been entered at the command prompt.
Read Only Parameter
User is attempting to configure a read-only parameter.
Incorrect Password
An incorrect password has been entered in the CLI login prompt.
Download Unsuccessful
The download operation has failed due to incorrect TFTP server IP Address or file name.
Upload Unsuccessful
The upload operation has failed due to incorrect TFTP server IP Address or file name.

Command Line Interface (CLI) Variations

Administrators use the CLI to control Access Point operation and monitor network statistics. The AP supports two types of CLI: the Bootloader CLI and the normal CLI. The Bootloader CLI provides a limited command set, and is used when the current AP Image is bad or missing. The Bootloader CLI allows you to assign an IP Address and download a new image. Once the image is downloaded and running, the Access Point uses the normal CLI. This guide covers the normal CLI unless otherwise specified.

Bootloader CLI

The Bootloader CLI is a minimal subset of the normal CLI used to perform initial configuration of the AP. This interface is only accessible via the serial interface if the AP does not contain a software image or a download image command over TFTP has failed.

The Bootloader CLI provides you with the ability to configure the initial setup parameters as well as download a software image to the device.

The following functions are supported by the Bootloader CLI:

The parameters supported by the Bootloader CLI (for viewing and modifying) are:

The following lists display the results of using the help command in the Bootloader CLI:

Figure A-1 Results of "help" bootloader CLI command

The following lists display the results of using the show command in the Bootloader CLI:

Figure A-2 Results of "show" bootloader CLI command

CLI Command Types

This guide divides CLI Commands into two categories: Operational and Parameter Controls.

Operational CLI Commands

These commands affect Access Point behavior, such as downloading, rebooting, and so on. After entering commands (and parameters, if any) press the Enter key to execute the Command Line.

Operational commands include:

? (List Commands)

This command can be used in a number of ways to display available commands and parameters.

The following table lists each operation and provides a basic example. Following the table are detailed examples and display results for each operation.

Operation
Basic Example
Display the Command List (Example 1)
[Device-Name]>?
Display commands that start with specified letters (Example 2)
[Device-Name]>s?
Display parameters for set and show Commands (Examples 3a and 3b)
[Device-Name]>set ?
[Device-Name]>show ipa?
Prompt to enter successive parameters for Commands (Example 4)
[Device-Name]>download ?

Example 1. Display Command list

To display the Command List, enter ?.

[Device-Name]>?

Figure A-3 Result of "?" CLI command

Example 2. Display specific Commands

To show all commands that start with specified letters, enter one or more letters, then ? with no space between letters and ?.

[Device-Name]>s?

Figure A-4 Result of "s?" CLI command

Example 3. Display parameters for set and show

Example 3a allows you to see every possible parameter for the set (or show) commands. Notice from example 3a that the list is very long. Example 3b shows how to display a subset of the parameters based on initial parameter letters.

Example 3a. Display every parameter that can be changed

[Device-Name]>set ?

Figure A-5 Result of "set ?" CLI command

Example 3b. Display parameters based on letter sequence

This example shows entries for parameters that start with the letter "i". The more letters you enter, the fewer the results returned. Notice that there is no space between the letters and the question mark.

[Device-Name]> show ipa?

Figure A-6 Result of "show ipa?" CLI command

[Device-Name]> show iparp?

Figure A-7 Result of "show iparp?" CLI command

Example 4. Display Prompts for Successive Parameters

Enter the command, a space, and then ?. Then, when the parameter prompt appears, enter the parameter value. The parameter is changed and a new CLI line is echoed with the new value (in the first part of the following example, the value is the IP Address of the TFTP server).

After entering one parameter, you may add another ? to the new CLI line to see the next parameter prompt, and so on until you have entered all of the required parameters. The following example shows how this is used for the download Command. The last part of the example shows the completed download Command ready for execution.

[Device-Name]> download ?
<TFTP IP Address>

[Device-Name]> download 192.168.0.101 ?
<File Name>

[Device-Name]> download 192.168.0.101 apimage ?
<file type (config/img/bootloader)>

[Device-Name]> download 192.168.0.101 apimage img <CR>

done, exit, quit

Each of the following commands ends a CLI session:

[Device-Name]> done
[Device-Name]> exit
[Device-Name]> quit

download

Downloads the specified file from a TFTP server to the Access Point. Executing download in combination with the asterisks character ("*") will make use of the previously set TFTP parameters. Executing download without parameters will display command help and usage information.

  1. Syntax to download a file:
    [Device-Name]>download <tftp server address> <path and filename> <file type>

    Example:
    [Device-Name]>download 192.168.1.100 APImage2 img
  2. Syntax to display help and usage information:
    [Device-Name]>download
  3. Syntax to execute the download Command using previously set (stored) TFTP Parameters:
    [Device-Name]>download *

help

Displays instructions on using control-key sequences for navigating a Command Line and displays command information and examples.

  1. Using help as the only argument:
    [Device-Name]>help



    2.

    Figure A-8 Results of "help" CLI command
  2. Complete command description and command usage can be provided by:
    [Device-Name]>help <command name>
    [Device-Name]><command name> help

history

Shows content of Command History Buffer. The Command History Buffer stores command statements entered in the current session. To avoid re-entering long command statements, use the keyboard "up arrow" (Ctrl-P) and "down arrow" (Ctrl-N) keys to recall previous statements from the Command History Buffer. When the desired statement reappears, press the Enter key to execute, or you may edit the statement before executing it.

[Device-Name]> history

passwd

Changes the CLI Password.

[Device-Name]> passwd oldpassword newpassword newpassword

reboot

Reboots Access Point after specified number of seconds. Specify a value of 0 (zero) for immediate reboot.

[Device-Name]> reboot 0
[Device-Name]> reboot 30

search

Lists the parameters supported by the specified table. This list corresponds to the table information displayed in the HTTP interface. In this example, the CLI returns the list of parameters that make up an entry in the IP Access Table.

[Device-Name]> search mgmtipaccesstbl

Figure A-9 Results of "search mgmtipaccesstbl" CLI command

upload

Uploads a text-based configuration file from the AP to the TFTP Server. Executing upload with the asterisk character ("*") will make use of the previously set/stored TFTP parameters. Executing upload without parameters will display command help and usage information.

  1. Syntax to upload a file:
    [Device-Name]>upload <tftp server address> <path and filename> <filetype>

    Example:
    [Device-Name]>upload 192.168.1.100 APconfig.sys config
  2. Syntax to display help and usage information:
    [Device-Name]>help upload
  3. Syntax to execute the upload command using previously set (stored) TFTP Parameters:
    [Device-Name]>upload *

Parameter Control Commands

The following sections cover the two Parameter Control Commands (show and set) and include several tables showing parameter properties. These commands allow you to view (show) all parameters and statistics and to change (set) parameters.

"show" CLI Command

Displays the value of the specified parameter, or displays all parameter values of a specified group (parameter table). Groups contain Parameters and Tables. Tables contain parameters for a series of similar entities.

To see a definition and syntax example, type only show and then press the Enter key. To see a list of available parameters, enter a question mark (?) after show (example: show ?).

Syntax:
[Device-Name]>show <parameter>
[Device-Name]>show <group>
[Device-Name]>show <table>

Examples:
[Device-Name]>show ipaddr
[Device-Name]>show network
[Device-Name]>show mgmtipaccesstbl

"set" CLI Command

Sets (modifies) the value of the specified parameter. To see a definition and syntax example, type only set and then press the Enter key. To see a list of available parameters, enter a space, then a question mark (?) after set (example: set?).

Syntax:
[Device-Name]>set <parameter> <value>
[Device-Name]>set <table> <index> <argument 1> <value 1> ... <argument N> <value N>

Example:

[Device-Name]>set sysloc "Main Lobby"
[Device-Name]>set mgmtipaccesstbl 0 ipaddr 10.0.0.10 ipmask 255.255.0.0

Configuring Objects that Require Reboot

Certain objects supported by the Access Point require a device reboot in order for the changes to take effect. In order to inform the end-user of this behavior, the CLI provides informational messages when the user has configured an object that requires a reboot. The following messages are displayed as a result of the configuring such object or objects.

Example 1: Configuring objects that require the device to be rebooted

The following message is displayed every time the user has configured an object that requires the device to be rebooted.

[Device-Name]>set ipaddr 135.114.73.10
The following elements require reboot

ipaddr

Example 2: Executing the "exit", "quit", or "done" commands when an object that requires reboot has been configured

In addition to the above informational message, the CLI also provides a message as a result of the exit, quit, or done command if changes have been made to objects that require reboot. If you make changes to objects that require reboot and execute the exit command the following message is displayed:

[Device-Name]>exit<CR> OR quit<CR> OR done<CR>

Modifications have been made to parameters that require the device to be rebooted. These changes will only take effect after the next reboot.

"set" and "show" Command Examples

In general, you will use the CLI show Command to view current parameter values and use the CLI set Command to change parameter values. As shown in the following examples, parameters may be set individually or all parameters for a given table can be set with a single statement.

Example 1 - Set the Access Point IP Address Parameter

Syntax:
[Device-Name]>set <parameter name> <parameter value>

Example:
[Device-Name]> set ipaddr 10.0.0.12

IP Address will be changed when you reboot the Access Point. The CLI reminds you when rebooting is required for a change to take effect. To reboot immediately, enter reboot 0 (zero) at the CLI prompt.

Example 2 - Create a table entry or row

Use 0 (zero) as the index to a table when creating an entry. When creating a table row, only the mandatory table elements are required (comment is usually an optional table element). For optional table elements, the default value is generally applied if you do not specify a value.

Syntax:
[Device-Name]>set <table name> <table index> <element 1> <value 1> ...
<element n> <value n>


Example:
[Device-Name]> set mgmtipaccesstbl 0 ipaddr 10.0.0.10 ipmask 255.255.0.0

A new table entry is created for IP address 10.0.0.10 with a 255.255.0.0 subnet mask.

Example 3 - Modify a table entry or row

Use the index to be modified and the table elements you would like to modify. For example, suppose the IP Access Table has one entry and you wanted to modify the IP address:


[Device-Name]>set mgmtipaccesstbl 1 ipaddr 10.0.0.11

You can also modify several elements in the table entry. Enter the index number and specific table elements you would like to modify. (Hint: Use the search Command to see the elements that belong to the table.)


[Device-Name]>set mgmtipaccesstbl 1 ipaddr 10.0.0.12 ipmask 255.255.255.248
cmt "First Row"

Example 4 - Enable, Disable, or Delete a table entry or row

The following example illustrates how to manage the second entry in a table.

Syntax:
[Device-Name]>set <Table> index status <enable, disable, delete>
[Device-Name]>set <Table> index status <1=enable, 2=disable, 3=delete>

Example:
[Device-Name]>set mgmtipaccesstbl 2 status enable
[Device-Name]>set mgmtipaccesstbl 2 status disable
[Device-Name]>set mgmtipaccesstbl 2 status delete
[Device-Name]>set mgmtipaccesstbl 2 status 2

NOTE: You may need to enable a disabled table entry before you can change the entry's elements.

Example 5 - Show the Group Parameters

This example illustrates how to view all elements of a group or table.

Syntax:
[Device-Name]> show <group name>

Example:
[Device-Name]>show network

The CLI displays network group parameters. Note show network and show ip return the same data.

Figure A-10 Results of "show network" and "show ip" CLI Commands

Example 6 - Show Individual and Table Parameters

1. View a single parameter.

Syntax:
[Device-Name]>show <parameter name>

Example:
[Device-Name]> show ipaddr

Displays the Access Point IP address.

Figure A-11 Result of "show ipaddr" CLI Command

2. View all parameters in a table.

Syntax:
[Device-Name]> show <table name>
Example: [Device-Name]> show mgmtipaccesstbl

The CLI displays the IP Access Table and its entries.

Using Tables and Strings

Working with Tables

Each table element (or parameter) must be specified, as in the example below.

[Device-Name]>set mgmtipaccesstbl 0 ipaddr 10.0.0.10 ipmask 255.255.0.0

Below are the rules for creating, modifying, enabling/disabling, and deleting table entries.

Using Strings

Since there are several string objects supported by the AP, a string delimiter is required for the strings to be interpreted correctly by the command line parser. For this CLI implementation, the single quote or double quote character can be used at the beginning and at the end of the string.

For example:
[Device-Name]> set sysloc Lobby - Does not need quote marks
[Device-Name]> set sysloc "Front Lobby" - Requires quote marks.

The scenarios supported by this CLI are:

"My Desk in the office"
Double Quotes
`My Desk in the office'
Single Quotes
"My `Desk' in the office"
Single Quotes within Double Quotes
`My "Desk" in the office'
Double Quotes within Single Quotes
"Daniel's Desk in the office"
One Single Quote within Double Quotes
`Daniel"s Desk in the office'
One Double Quote within Single Quotes

The string delimiter does not have to be used for every string object. The single quote or double quote only has to be used for string objects that contain blank space characters. If the string object being used does not contain blank spaces, then the string delimiters, single or double quotes, mentioned in this section are not required.

Configuring the AP using CLI commands

Log into the AP using HyperTerminal

  1. Open your terminal emulation program (like HyperTerminal) and set the following connection properties:
    • Com Port: <COM1, COM2, etc., depending on your computer>
    • Baud rate: 9600
    • Data Bits: 8
    • Stop bits: 1
    • Flow Control: None
    • Parity: None
  2. Under File > Properties > Settings > ASCII Setup, enable the Send line ends with line feeds option.

    3. HyperTerminal sends a line return at the end of each line of code.

  3. Enter the CLI password (default is public).
    4. NOTE: Proxim recommends changing your default passwords immediately. To perform this operation using CLI commands, see Change Passwords.

Log into the AP using Telnet

The CLI commands can be used to access, configure, and manage the AP using Telnet. Follow these steps:

  1. Confirm that your computer's IP address is in the same IP subnet as the AP.
    2. NOTE: If you have not previously configured the Access Point's IP address and do not have a DHCP server on the network, the Access Point will default to an IP address of 169.254.128.132.
  2. Go to the DOS command prompt on your computer.
  3. Type telnet <IP Address of the unit>.
  4. Enter the CLI password (default is public).
    5. NOTE: Proxim recommends changing your default passwords immediately. To perform this operation using CLI commands, see Change Passwords.

Set Basic Configuration Parameters using CLI Commands

There are a few basic configuration parameters that you may want to setup right away when you receive the AP. For example:

Set System Name, Location and Contact Information

NOTE: System name must:

[Device-Name]>set sysname <Name> sysloc <Unit Location>
[Device-Name]>set sysctname <Contact Name>
[Device-Name]>set sysctphone <Contact Phone Number> sysctemail <Contact E-mail address>
[Device-Name]>show system

Figure A-12 Result of "show system" CLI Command

Set Static IP Address for the AP

NOTE: The IP Subnet Mask of the AP must match your network's Subnet Mask.

[Device-Name]>set ipaddrtype static
[Device-Name]>set ipaddr <fixed IP address of unit>
[Device-Name]>set ipsubmask <IP Mask>
[Device-Name]>set ipgw <gateway IP address>
[Device-Name]>show network

Change Passwords

[Device-Name]>passwd <Old Password> <New Password> <Confirm Password> (CLI password)
[Device-Name]>set httppasswd <New Password> (HTTP interface password)
[Device-Name]>set snmprpasswd <New Password> (SNMP read password)
[Device-Name]>set snmprwpasswd <New Password> (SNMP read/write)
[Device-Name]>set snmpv3authpasswd <New Password> (SNMPv3 authentication password)
[Device-Name]>set snmpv3privpasswd <New Password> (SNMPv3 privacy password)
[Device-Name]>reboot 0

CAUTION: Proxim strongly urges you to change the default passwords to restrict access to your network devices to authorized personnel. If you lose or forget your password settings, you can always perform the Reset to Factory Default Procedure.

Set Network Names for the Wireless Interface

[Device-Name]>set wif <3 (Wireless Interface A) or 4 (Wireless Interface B)> netname <Network Name (SSID) for wireless interface>
[Device-Name]>show wif

Figure A-13 Results of "show wif" CLI command for an AP

Enable 802.11d Support and Set the Country Code

Perform the following command to enable 802.11d IEEE 802.11d support for additional regulatory domains.

[Device-Name]>set wif <3 (Wireless Interface A) or 4 (Wireless Interface B)> dot11dstatus <enable/disable>

Perform the following command to set a country code:

[Device-Name]>set syscountrycode <country code>

Select a country code from the following table. Note that not all countries are available for all products. This table is derived from ISO 3166.

Country
Code
Country
Code
Country
Code
Algeria
DZ
Honduras
HN
Panama
PA
Albania
AL
Hong Kong
HK
Papua New Guinea
PG
Argentina
AR
Hungary
HU
Peru
PE
Armenia
AM
Iceland
IS
Philippines
PH
Australia
AU
India
IN
Poland
PL
Austria
AT
Indonesia
ID
Portugal
PT
Azerbaijan
AZ
Ireland 5.8 GHz
I1
Puerto Rico
PR
Bahrain
BH
Israel
IL
Qatar
QA
Belarus
BY
Italy
IT
Romania
RO
Belgium
BE
Jamaica
JM
Russia
RU
Belize
BZ
Japan
JP
Samoa
WS
Bolivia
BO
Japan2
J2
Saudi Arabia
SA
Brazil
BR
Jordan
JO
Singapore
SG
Brunei Darussalam
BN
Kazakhstan
KZ
Slovak Republic
SK
Bulgaria
BG
North Korea
KP
Slovenia
SI
Canada
CA
Korea Republic
KR
South Africa
ZA
Chile
CL
Korea Republic2
K2
South Korea
KR
China
CN
Kuwait
KW
Spain
ES
Colombia
CO
Latvia
LV
Sweden
SE
Costa Rica
CR
Lebanon
LB
Switzerland
CH
Croatia
HR
Liechtenstein
LI
Syria
SY
Cyprus
CY
Lithuania
LT
Taiwan
TW
Czech Republic
CZ
Luxembourg
LU
Thailand
TH
Denmark
DK
Macau
MO
Turkey
TR
Dominican Republic
DO
Macedonia
MK
Ukraine
UA
Ecuador
EC
Malaysia
MY
United Arab Emirates
AE
Egypt
EG
Malta
MT
United Kingdom
GB
El Salvador
SV
Mexico
MX
United Kingdom 5.8ghz
G1
Estonia
EE
Monaco
MC
United States
US
Finland
FI
Morocco
MA
United States World
UW
France
FR
Netherlands
NL
United States Dfs
U1
Georgia
GE
New Zealand
NZ
Uruguay
UY
Germany
DE
Nicaragua
NI
Venezuela
VE
Greece
GR
Norway
NO
Vietnam
VN
Guam
GU
Oman
OM
 
 
Guatemala
GT
Pakistan
PK
 
 

Enable and Configure TX Power Control for the Wireless Interface(s)

The TX Power Control feature lets the user configure the transmit power level of the card in the AP.

Perform the following commands to enable TX Power Control and set the transmit power level:

[Device-Name]>set txpowercontrol enable

[Device-Name]>set wif <interface number> currentbackofftpcvalue <1-35 dBm>

Configure SSIDs (Network Names), VLANs, and Profiles

Perform the following command to configure SSIDs and VLANS, and to assign Security and RADIUS Profiles.

[Device-Name]>set wifssidtbl <Wireless Interface Index.SSID Index> ssid <Network Name> vlanid <-1 to 1094> ssidauth <enable/disable> acctstatus <enable/disable> secprofile <Security Profile Nmuber> radmacprofile <MAC Authentication Profile Name> radeapprofile <EAP Authentication Profile Name> radacctprofile <Accounting Profile Name> radmacauthstatus <enable/disable> aclstatus <enable/disable>


Examples:
[Device-Name]>set wifssidtbl 3.1 ssid accesspt1 vlanid 22 ssidauth enable acctstatus enable secprofile 1 radmacprofile "MAC Authentication" radeapprofile "EAP Authentication" radacctprofile "Accounting" radmacauthstatus enable aclstatus enable

[Device-Name]>set wifssidtbl 4.1 ssid accesspt1 vlanid 22 ssidauth enable acctstatus enable secprofile 1 radmacprofile "MAC Authentication" radeapprofile "EAP Authentication" radacctprofile "Accounting" radmacauthstatus enable aclstatus enable

Download an AP Configuration File from your TFTP Server

Begin by starting your TFTP program. It must be running and configured to transmit and receive.

[Device-Name]>set tftpfilename <file name> tftpfiletype config
tftpipaddr <IP address of your TFTP server>
[Device-Name]>show tftp (to ensure the filename, file type, and the IP address are correct)
[Device-Name]>download *
[Device-Name]>reboot 0

After following the complete process (above) once, you can download a file of the same name (so long as all the other parameters are the same), with the following command:

[Device-Name]>download *

Backup your AP Configuration File

Begin by starting your TFTP program. It must be running and configured to transmit and receive.

[Device-Name]>upload <TFTP Server IP address> <tftpfilename (such as "config.sys")> config
[Device-Name]>show tftp (to ensure the filename, file type, and the IP address are correct)

After setting the TFTP parameters, you can backup your current file (so long as all the other parameters are the same), with the following command:

[Device-Name]>upload *

Set up Auto Configuration

The Auto Configuration feature which allows an AP to be automatically configured by downloading a specific configuration file from a TFTP server during the boot up process.

Perform the following commands to enable and set up automatic configuration:

NOTE: The configuration filename and TFTP server IP address are configured only when the AP is configured for Static IP. If the AP is configured for Dynamic IP these parameters are not used and obtained from DHCP.
The default filename is "config". The default TFTP IP address is "169.254.128.133".

[Device-Name]>set autoconfigstatus <enable/disable>

[Device-Name]>set autoconfigfilename <filename>
Enter the filename of the configuration file that is used if the AP is configured for Static IP.

[Device-Name]>set autoconfigTFTPaddr <IP address>
Enter the TFTP server address that is used if the AP is configured for Static IP.

Other Network Settings

There are other configuration settings that you may want to set for the AP. Some of them are listed below.

Configure the AP as a DHCP Server

NOTE: You must have at least one entry in the DHCP Server IP Address Pool Table before you can set the DHCP Server Status to Enable.

[Device-Name]>set dhcpstatus disable
[Device-Name]>set dhcpippooltbl 0 startipaddr <start ip address>
endipaddr <end ip address>
[Device-Name]>set dhcpgw <gateway ip address>
[Device-Name]>set dhcppridnsipaddr <primary dns ip address>
[Device-Name]>set dhcpsecdnsipaddr <secondary dns ip address>
[Device-Name]>set dhcpstatus enable
[Device-Name]>reboot 0

CAUTION: Before enabling this feature, confirm that the IP address pools you have configured are valid addresses on the network and do not overlap the addresses assigned by any other DHCP server on the network. Enabling this feature with incorrect address pools will cause problems on your network.

Configure the DNS Client

[Device-Name]>set dnsstatus enable
[Device-Name]>set dnsprisvripaddr <IP address of primary DNS server>
[Device-Name]>set dnssecsvripaddr <IP address of secondary DNS server>
[Device-Name]>set dnsdomainname <default domain name>
[Device-Name]>show dns

Figure A-14 Results of "show dns" CLI command

Configure DHCP Relay

Perform the following command to enable or disable DHCP Relay Agent Status.

NOTE: You must have at least one entry in the DHCP Relay Server Table before you can set the DHCP Relay Status to Enable.

[Device-Name]>set dhcprelaystatus enable

Configure DHCP Relay Servers

Perform the following command to configure and enable a DHCP Relay Server. The AP allows the configuration of a maximum of 10 server settings in the DHCP Relay Agents server table.
[Device-Name]>set dhcprlyindex 1 dhcprlyipaddr <ip address> dhcprlycmt <comment> dhcprlystatus 1 (1 to enable, 2 to disable, 3 to delete, 4 to create)

Maintain Client Connections using Link Integrity

[Device-Name]>show linkinttbl (this shows the current links)
[Device-Name]>set linkinttbl <1-5 (depending on what table row you wish to address)>
ipaddr <ip address of the host computer you want to check>
[Device-Name]>set linkintpollint <the interval between link integrity checks>
[Device-Name]>set linkintpollretx <number of times to retransmit before considering the link down>
[Device-Name]>set linkintstatus enable
[Device-Name]>show linkinttbl (to confirm new settings)
[Device-Name]>reboot 0

Change Wireless Interface Settings

See Interfaces for information on the parameters listed below. The AP-4000/4000M/4900M uses index 3 for Wireless Interface A (802.11a/4.9 Ghz radio) and index 4 for Wireless Interface B (802.11b/g radio).

Operational Mode

[Device-Name]>set wif <index> mode <see table>

Mode
Operational Mode
1
dot11b-only
2
dot11g-only
3
dot11bg
4
dot11a-only
5
dot11g-wifi
6
publicsafety

Autochannel Select (ACS)

ACS is enabled by default. Reboot after disabling or enabling ACS.

[Device-Name]>set wif <index> autochannel <enable/disable>
[Device-Name]>reboot 0

Enable/Disable Closed System

[Device-Name]>set wif <index> closedsys <enable/disable>

Shutdown/Resume Wireless Service

[Device-Name]>set wif <index> wssstatus <1 (resume)/2 (shutdown)>

Set Load Balancing Maximum Number of Clients

[Device-Name]>set wif <index> lbmaxclients <1-63>

Set the Multicast Rate (802.11a/4.9 Ghz)

[Device-Name]>set wif 3 multrate <6, 12, 24 (Mbits/sec)>

Set the Multicast Rate (802.11b/g)

[Device-Name]>set wif 4 multrate <1, 2, 5.5, 11 (Mbits/sec)>

Enable/Disable Super Mode (802.11a/g only)

[Device-Name]>set wif 3 supermode <enable/disable>

Enable/Disable Turbo Mode (802.11a/g only)

[Device-Name]>set wif 3 turbo <enable/disable>

NOTE: Super mode must be enabled on the interface before Turbo mode can be enabled.
NOTE: Turbo mode and Mesh mode (either Mesh AP or Mesh Portal) can not be enabled on the same interface simultaneously.

Configure Antenna Diversity

NOTE: When the AP-4900M is configured to use 4.9 GHz Public Safety operational mode, antenna diversity is disabled by default, and antenna 3 is configured for use.

[Device-Name]>set wif 3 atdiversity <3, 4, 5(auto)> (see below)

[Device-Name]>set wif 4 atdiversity <1, 2, 5(auto)> (see below)

[Device-Name]>reboot

Value
Corresponding Antenna Enabled
1
802.11b/g (connector 1)
2
802.11b/g (connector 2)
3
802.11a (connector 3)
4
802.11a (connector 4)
5 (auto)
Both antennas on interface

NOTE: See Antennas for more information on internal and external antenna ports.

Set the Distance Between APs

[Device-Name]>set wif <index> distaps <1-5> (see below)

[Device-Name]>reboot 0

Value
Distance Between APs
1
Large
2
Medium
3
Small
4
Mini
5
Micro

Set Ethernet Speed and Transmission Mode

[Device-Name]>set etherspeed <value> (see below)
[Device-Name]>reboot 0

Ethernet Speed and Transmission Mode
Value
10 Mbits/sec - half duplex
10halfduplex
10 Mbits/sec - full duplex
10fullduplex
10 Mbits/sec - auto duplex
10autoduplex
100 Mbits/sec - half duplex
100halfduplex
100 Mbits/sec - full duplex
100fullduplex
Auto Speed - half duplex
autohalfduplex
Auto Speed - auto duplex
autoautoduplex (default)

Set Interface Management Services

Edit Management IP Access Table

[Device-Name]>set mgmtipaccesstbl <index> ipaddr <IP address> ipmask <subnet mask>

Configure Management Ports

[Device-Name]>set snmpifbitmask <(see below)>
[Device-Name]>set httpifbitmask <(see below)>
[Device-Name]>set telifbitmask <(see below)>

Choose from the following values:

Interface Bitmask
Description
0 or 2 = Disable (all interfaces)
All management channels disabled
1 or 3 = Ethernet only
Ethernet only enabled
4 or 6 = Wireless A only
Wireless A only enabled
8 or 10 = Wireless B only
Wireless B only enabled
12 = Wireless A and Wireless B
Wireless A and Wireless B enabled
13 or 15 = All interfaces
All management channels enabled

Interface Bitmask
Description

Set Communication Ports

[Device-Name]>set httpport <HTTP port number (default is 80)>
[Device-Name]>set telport <Telnet port number (default is 23)>

Configure Secure Socket Layer (HTTPS)

Enabling SSL and configuring a passphrase allows encrypted Secure Socket Layer communications to the AP through the HTTPS interface.

[Device-Name]>set sslstatus <enable/disable>

The user must change the SSL passphrase when uploading a new certificate/private key pair, which will have a corresponding passphrase.

[Device-Name]>set sslpassphrase <SSL certificate passphrase>

[Device-Name]>show http (to view all HTTP configuration information including SSL.)

HTTP Group Parameters
=====================

httpifbitmask : 15
httppasswd : ********
httpport : 80
httphelplink : file:///C:/Program Files/ORiNOCO/AP4xxx/HTML/index.htm
httpsetupwiz : disable
sslstatus : enable
sslpassphrase : ********

Figure A-15 Result of "show HTTP" CLI Command

Set Telnet Session Timeouts

[Device-Name]>set tellogintout <time in seconds between 1 and 300 (default is 30)>
[Device-Name]>set telsessiontout <time in seconds between 1 and 36000 (default is 900)>

Configure Serial Port Interface

NOTE: To avoid unexpected performance issues, leave Flow Control at the default setting (none) unless you are sure what this setting should be.

[Device-Name]>set serbaudrate <2400, 4800, 9600, 19200, 38400, 57600>
[Device-Name]>set serflowctrl <none, xonxoff>
[Device-Name]>show serial

Figure A-16 Result of "show serial" CLI Command

Configure Syslog

[Device-Name]>set syslogpriority <1-7 (default is 6)>
[Device-Name]>set syslogstatus <enable/disable>
[Device-Name]>set sysloghbstatus <enable/disable> (default is disable)
[Device-Name]>set sysloghbinterval <1-604800> (default is 900 seconds)
[Device-Name]>set sysloghosttbl <index> ipaddr <ipaddress> cmt <comment> status <enable/disable>

Configure Intra BSS

[Device-Name]>set intrabssoptype <passthru (default)/block)>

Configure Wireless Distribution System

Create/Enable WDS

[Device-Name]>set wdstbl <Index> partnermacaddr <MAC Address> status enable

Enable/Disable WDS

[Device-Name]>set wdstbl <Index> status <enable/disable>

NOTE: <Index> is 3.1-3.6 (Wireless A) or 4.1-4.6 (Wireless B). To determine the index, type show wdstbl at the prompt.
NOTE: When WDS is enabled, spanning tree protocol is automatically enabled. It may be manually disabled. If Spanning Tree protocol is enabled by WDS and WDS is subsequently disabled, Spanning tree will remain enabled until it is manually disabled. See Spanning Tree Parameters.

Configure MAC Access Control

Setup MAC (Address) Access Control

[Device-Name]>set wifssidtbl <index> aclstatus enable/disable
[Device-Name]>set macacloptype <passthru, block>
[Device-Name]>reboot 0

Add an Entry to the MAC Access Control Table

[Device-Name]>set macacltbl 0 macaddr <MAC Address> status enable
[Device-Name]>show macacltbl

Disable or Delete an Entry in the MAC Access Control Table

[Device-Name]>set macacltbl <index> status <disable/delete>
[Device-Name]>show macacltbl

NOTE: For larger networks that include multiple Access Points, you may prefer to maintain this list on a centralized location using the RADIUS parameters (see Set RADIUS Parameters).

Set RADIUS Parameters

Configure RADIUS Authentication servers

Perform the following command to configure a RADIUS Server and assign it to a VLAN. The RADIUS Server Profile index is specified by the index parameter and the subindex parameter specifies whether you are configuring a primary or secondary RADIUS server.

[Device-Name]>set radiustbl <Index> profname <Profile Name> seraddrfmt <1 - IP Address 2 - Name> sernameorip <IP Address or Name> port <value> ssecret <value> responsetm <value> maxretx <value> acctupdtintrvl <value> macaddrfmt <value> authlifetm <value> radaccinactivetmr <value> vlanid <vlan id -1 to 4094> status enable

NOTE: To create a new RADIUS profile, use 0 for <Index>.

Examples of Configuring Primary and Secondary RADIUS Servers and Displaying the RADIUS Configuration

Primary server configuration:

[Device-Name]>set radiustbl 1.1 profname "MAC Authentication" seraddrfmt 1 sernameorip 20.0.0.20 port 1812 ssecret public responsetm 3 maxretx 3 acctupdtintrvl 0 macaddrfmt 1 authlifetm 900 radaccinactivetmr 5 vlanid 22 status enable

Secondary server configuration:

[Device-Name]>set radiustbl 1.2 profname "MAC Authentication" seraddrfmt 1 sernameorip 20.0.0.30 port 1812 ssecret public responsetm 3 maxretx 3 acctupdtintrvl 0 macaddrfmt 1 authlifetm 900 radaccinactivetmr 5 vlanid 33 status enable


[Device-Name]>show radiustbl

Index : 1
Primary/Backup : Primary
Profile Name : MAC Authentication
Server Status : notReady
Server Addressing Format : ipaddr
IP Address/Host Name : 0.0.0.0
Destination Port : 1812
VLAN Identifier : -1
MAC Address Format : dashdelimited
Response Time : 3
Maximum Retransmission : 3
Authorization Lifetime : 0
Accounting Update Interval : 0
Accounting Inactivity Timer : 5

Index : 1
Primary/Backup : Backup
Profile Name : MAC Authentication
Server Status : notReady
Server Addressing Format : ipaddr
IP Address/Host Name : 0.0.0.0
Destination Port : 1812
VLAN Identifier : -1
MAC Address Format : dashdelimited
Response Time : 3
Maximum Retransmission : 3
.

.

.

Index : 4
Primary/Backup : Backup
Profile Name : Management Access
Server Status : notReady
Server Addressing Format : ipaddr
IP Address/Host Name : 0.0.0.0
Destination Port : 1812
VLAN Identifier : -1
MAC Address Format : dashdelimited
Response Time : 3
Maximum Retransmission : 3
Authorization Lifetime : 0
Accounting Update Interval : 0
Accounting Inactivity Timer : 5

Figure A-17 Result of "showradiustbl" CLI Command

Set Rogue Scan Parameters

Perform the following command to enable or disable Rogue Scan on a wireless interface and configure the scanning parameters.

The cycletime parameter is only configured for background scanning mode.

[Device-Name]>set rscantbl <3, 4> mode <1 for background scanning, 2 for continuous scanning> cycletime <cycletime from 1-1440 minutes> status <enable, disable>

NOTE: Rogue Scan cannot be enabled on a wireless interface when the Wireless Service Status on that interface is shutdown. First, resume service on the wireless interface.

Set Hardware Configuration Reset Parameters

The Hardware Configuration Reset commands allows you to enable or disable the hardware reset functionality and to change the password to be used for configuration reset during boot up.

To disable hardware configuration reset, enter:

[Device-Name]>set hwconfigresetstatus disable

To enable hardware configuration reset, enter:

[Device-Name]>set hwconfigresetstatus enable

To define the Configuration Reset Password to be used for configuration reset during boot up, enter the following command

[Device-Name]>set configresetpasswd <password>

It is important to safely store the

NOTE: It is important to safely store the configuration reset password. If a user forgets the configuration reset password, the user will be unable to reset the AP to factory default configuration if the AP becomes inaccessible and the hardware configuration reset functionality is disable.

Set VLAN/SSID Parameters

Enable VLAN Management

[Device-Name]>set vlanstatus enable
[Device-Name]>set vlanmgmtid <1-4094>

[Device-Name]>show wifssidtbl (to review your settings)
[Device-Name]>reboot 0

Disable VLAN Management

[Device-Name]>set vlanstatus disable or
[Device-Name]>set vlanmgmtid -1
[Device-Name]>reboot 0

Add a Entry to the WIFSSID Table

[Device-Name]>set wifssidtbl <index> ssid <Network Name> vlanid <-1 (untagged) or 1-4094> status enable

Set Security Profile Parameters

Configure a Security Profile with Non Secure Security Mode

[Device-Name]>set secprofiletbl <index> secmode nonsecure status enable

Example:
[Device-Name]>set secprofiletbl 2 secmode nonsecure status enable

Configure a Security Profile with WEP Security Mode

[Device-Name]>set secprofiletbl <index> secmode wep encryptkey<0-3> <value> encryptkeylength <value> encryptkeytx <value> status enable

Example:
[Device-Name]>set secprofiletbl 3 secmode wep encryptkey0 12345 encryptkeylength 1 encryptkeytx 0 status enable

Configure a Security Profile with 802.1x Security Mode

[Device-Name]>set secprofiletbl <index> secmode 802.1x encryptkeylength <value> status enable

Example:
[Device-Name]>set secprofiletbl 4 secmode 802.1x encryptkeylength 1 status enable

Configure a Security Profile with WPA Security Mode

[Device-Name]>set secprofiletbl <index> secmode wpa status enable

Example:
[Device-Name]>set secprofiletbl 5 secmode wpa status enable

Configure a Security Profile with WPA-PSK Security Mode

[Device-Name]>set secprofiletbl <index> secmode wpa-psk passphrase <value> status enable

Example:
[Device-Name]>set secprofiletbl 6 secmode wpa-psk passphrase 12345678 status enable

Configure a Security Profile with 802.11i Security Mode

[Device-Name]>set secprofiletbl <index> secmode 802.11i status enable

Example:
[Device-Name]>set secprofiletbl 7 secmode 802.11i status enable

Configure a Security Profile with 802.11i-PSK Security Mode

[Device-Name]>set secprofiletbl <index> secmode 802.11i-psk passphrase <value> status enable

Example:
[Device-Name]>set secprofiletbl 8 secmode 802.11i-psk passphrase 12345678 status enable

CLI Monitoring Parameters

Using the show command with the following table parameters will display operating statistics for the AP (these are the same statistics that are described in the Monitoring section).

Parameter Tables

Objects contain groups that contain both parameters and parameter tables. Use the following Tables to configure the Access Point. Columns used on the tables include:

Access Point network objects are associated with Groups. The network objects are listed below and associated parameters are described in the following Parameter Tables:

System Parameters

Name
Type
Value
Access
CLI Parameter
System
Group
N/A
R
system
Name
DisplayString
User Defined
RW
sysname
Location
DisplayString
User Defined
RW
sysloc
Country Identifier*
DisplayString
See Country Identifiers below
RW
sysworldcountrycode
Contact Name
DisplayString
User Defined
RW
sysctname
Contact E-mail
DisplayString
User Defined
RW
sysctemail
Contact Phone
DisplayString
User Defined
max 254 characters
RW
sysctphone
FLASH Backup Interval
Integer
0 - 65535 seconds
RW
sysflashbckint
Flash Update
 
0
1
RW
sysflashupdate
System OID
DisplayString
N/A
R
sysoid
Descriptor
DisplayString
System Name, flash version, S/N, bootloader version
R
sysdescr
Up Time
Integer
dd:hh:mm:ss
dd - days
hh - hours
mm - minutes
ss - seconds
R
sysuptime
System Security ID
DisplayString
Retrieved from flash ID
R
sysinvmgmtsecurityid
Emergency Restore to defaults
 
Resets all parameters to default factory values
RW
sysresettodefaults
Note: You must enter the following command twice to reset to defaults:
set sysresettodefaults 1

* Available only on APs with model numbers ending with -WD, -EU, or -UK . When available, this object must be configured before any inter- face parameters can be set.

Country Identifiers

NOTE: All countries may not be available on your AP.

Country
Indoor/Outdoor
Identifier
Argentina
Indoor
AR1
Australia
Indoor
AU1
Outdoor
AU2
Austria
Indoor
AT1
Outdoor
AT2
Belgium
Indoor
BE1
Outdoor
BE2
Bolivia
Indoor
BO1
Outdoor
BO2
Brazil
Indoor
BR1
Outdoor
BR2
Canada
Indoor
CA1
Outdoor
CA2
Chile
Indoor
CL1
Outdoor
CL2
China
Indoor/outdoor
CN1
Cyprus
Indoor
CY1
Outdoor
CY2
Czech Republic
Indoor
CZ1
Outdoor
CZ2
Denmark
Indoor
DK1
Outdoor
DK2
El Salvador
Indoor
SV1
Outdoor
SV2
Estonia
Indoor
EE1
Outdoor
EE2
Finland
Indoor
FI1
Outdoor
FI2
France
Indoor
FR1
Outdoor
FR2
Germany
Indoor
DE1
Outdoor
DE2
Greece
Indoor
GR1
Outdoor
GR2
Guam
Indoor
GU1
Outdoor
GU2
Guatemala
Indoor
GT1
Outdoor
GT2
Honduras
Indoor
HN1
Outdoor
HN2
Hong Kong
Indoor
HK1
Outdoor
HK2
Hungary
Indoor
HU1
Outdoor
HU2
Iceland
Indoor
IS1
Outdoor
IS2
India
Indoor
IN1
Ireland
Indoor
IE1
Outdoor
IE2
Italy
Indoor
IT1
Outdoor
IT2
Jamaica
Indoor
JM1
Outdoor
JM2
Latvia
Indoor
LV1
Outdoor
LV2
Liechtenstein
Indoor
LI1
Outdoor
LI2
Lithuania
Indoor
LT1
Outdoor
LT2
Luxembourg
Indoor
LU1
Outdoor
LU2
Malta
Indoor
MT1
Outdoor
MT2
Mexico
Indoor
MX1
Outdoor
MX2
Netherlands
Indoor
NL1
Outdoor
NL2
New Zealand
Indoor
NZ1
Outdoor
NZ2
Nicaragua
Indoor
NI1
Outdoor
NI2
Norway
Indoor
NO1
Outdoor
NO2
Papua New Guinea
Indoor
PG1
Outdoor
PG2
Poland
Indoor
PL1
Outdoor
PL2
Portugal
Indoor
PT1
Outdoor
PT2
Puerto Rico
Indoor
PR1
Outdoor
PR2
Russia
Indoor
RU1
Outdoor
RU2
Samoa
Indoor
WS1
Outdoor
WS2
Saudi Arabia
Indoor
SA1
Singapore
Indoor
SG1
Spain
Indoor
ES1
Outdoor
ES2
South Korea
Indoor/outdoor
KR1
Sweden
Indoor
SE1
Outdoor
SE2
Switzerland
Indoor
CH1
Outdoor
CH2
Taiwan
Indoor
TW1
Outdoor
TW2
United Arab Emirates
Indoor
AE1
United Kingdom
Indoor
GB1
Outdoor
GB2

Inventory Management Information

The inventory management commands display advanced information about the AP's installed components. You may be asked to report this information to a representative if you contact customer support.

Name
Type
Value
Access
CLI Parameter
System Inventory Management
Subgroup
N/A
R
sysinvmgmt
Component Table
Subgroup
N/A
R
sysinvmgmtcmptbl
Component Interface Table
Subgroup
N/A
R
sysinvmgmtcmpiftbl

Network Parameters

IP Configuration Parameters

Name
Type
Value
Access
CLI Parameter
Network
Group
N/A
R
network
IP Configuration
Group
N/A
R
ip (Note: The network and ip parameters display the same information)
IP Address
IpAddress
User Defined
RW
ipaddr
IP Mask
IpAddress
User Defined
RW
ipmask
Default Router IP Address
IpAddress
User Defined
RW
ipgw
Default TTL
Integer
User Defined (seconds)
0 - 255, 64 (default)
RW
ipttl
Address Type
Integer
static
dynamic (default)
RW
ipaddrtype

NOTE: The IP Address Assignment Type (ipaddrtype) must be set to static before the IP Address (ipaddr), IP Mask (ipmask) or Default Gateway IP Address (ipgw) values can be entered.

DNS Client for RADIUS Name Resolution

Name
Type
Value
Access
CLI Parameter
DNS Client
Group
N/A
R
dns
DNS Client status
Integer
enable
disable (default)
RW
dnsstatus
Primary DNS Server IP Address
IpAddress
User Defined
RW
dnspridnsipaddr
Secondary DNS Server IP Address
IpAddress
User Defined
RW
dnssecdnsipaddr
Default Domain Name
Integer32
User Defined (up to 254 characters)
RW
dnsdomainname

DHCP Server Parameters

Name
Type
Value
Access
CLI Parameter
DHCP Server
Group
N/A
R
dhcp
DHCP Server Status
Integer
enable (1) (default)
disable (2)
delete (3)
RW
dhcpstatus
Gateway IP Address
IpAddress
User Defined
RW
dhcpgw
Primary DNS IP Address
IpAddress
User Defined
RW
dhcppridnsipaddr
Secondary DNS IP Address
IpAddress
User Defined
RW
dhcpsecdnsipaddr
Number of IP Pool Table Entries
Integer32
N/A
R
dhcpippooltblent

NOTE: The DHCP Server (dhcpstatus) can only be enabled after a DHCP IP Pool table entry has been created.

DHCP Server table for IP pools

Name
Type
Value
Access
CLI Parameter
DHCP Server IP Address Pool Table
Table
N/A
R
dhcpippooltbl
Table Index
Integer
User Defined
N/A
index
Start IP Address
IpAddress
User Defined
RW
startipaddr
End IP Address
IpAddress
User Defined
RW
endipaddr
Width
Integer
User Defined
RW
width
Default Lease Time (optional)
Integer32
300 - 86400 sec (default)
RW
defleasetm
Maximum Lease Time (optional)
Integer32
300 - 86400 sec (default)
RW
maxleasetm
Comment (optional)
DisplayString
User Defined
RW
cmt
Status (optional)
Integer
enable (1)
disable (2)
delete (3)
RW
status

NOTE: Set either End IP Address or Width (but not both) when creating an IP address pool.

DHCP Relay Group

The DHCP Relay Group allows you to enable or disable DHCP Relay Agent Status.

Name
Type
Value
Access
CLI Parameter
DHCP Relay Group
Group
N/A
R
dhcprelay
Status
Integer
enable
disable
RW
dhcprelaystatus
DHCP Relay Server Table
Table
 
R
dhcprelaytbl

DHCP Relay Server Table

The DHCP Relay Server Table contains the commands to set the table entries. The AP supports the configuration of a maximum of 10 server settings in the DHCP Relay Agents server table.

Name
Type
Value
Access
CLI Parameter
DHCP Relay Server Table
Table
N/A
R
dhcprelaytbl
DHCP Relay Server Table Entry Index
Integer32
1 - 10
R
dhcprlyindex
DHCP Relay Server Table Entry IP Address
IpAddress
User Defined
RW
dhcprlyipaddr
DHCP Relay Server Table Entry Comment
DisplayString
User Defined
RW
dhcprlycmt
DHCP Relay Server Table Entry Status
Integer
enable (1)
disable (2)
delete (3)
create (4)
RW
dhcprlystatus

SNTP Parameters

Name
Type
Value
Access
CLI Parameter
SNTP Group
Group
N/A
R
sntp
SNTP Status
Integer
enable
disable
RW
sntpstatus
Primary Server Name or IP Address
DisplayString
0 - 255 characters
RW
sntpprisvr
Secondary Server Name or IP Address
DisplayString
0 - 255 characters
RW
sntpsecsvr
Time Zone
Integer
See MIB for requirements
RW
sntptimezone
Daylight Savings Time
Integer
-2
-1
0
+1
+2
RW
sntpdaylightsaving
Year
Integer32
N/A
RW
sntpyear
Month
Integer32
1 - 12
RW
sntpmonth
Day
Integer32
1 - 31
RW
sntpday
Hour
Integer32
0 - 23
RW
sntphour
Minutes
Integer32
0 - 59
RW
sntpmins
Seconds
Integer32
0 - 59
RW
sntpsecs
Addressing Format
Integer
ipaddress
name
RW
sntpaddrfmt

Link Integrity Parameters

Name
Type
Value
Access
CLI Parameter
Link Integrity
Group
N/A
R
linkint
Link Integrity Status*
Integer
enable
disable (default)
RW
linkintstatus
Link Integrity Poll Interval
Integer
500 - 15000 ms
(in increments of 500ms)
500 ms (default)
RW
linkintpollint
Link Integrity Poll Retransmissions
Integer
0 - 255
5 (default)
RW
linkintpollretx

* Link integrity cannot be configured when the AP is configured to function as a Mesh AP.

Link Integrity IP Target Table

Name
Type
Value
Access
CLI Parameter
Link Integrity IP Target Table
Table
N/A
R
linkinttbl
Table Index
Integer
1 - 5
N/A
index
Target IP Address
IpAddress
User Defined
RW
ipaddr
Comment (optional)
DisplayString
User Defined (up to 254 characters)
RW
cmt
Status (optional)
Integer
enable
disable (default)
delete
RW
status

Interface Parameters

Wireless Interface Parameters

The wireless interface group parameter is wif. Wireless Interface A (802.11a radio) uses table index 3 and Wireless Interface B (802.11b/g radio) uses table index 4.

Common Parameters to 4.9 Ghz, 802.11a, and 802.11/b/g

Name
Type
Value
Access
CLI Parameter
Wireless Interfaces
Group
N/A
R
wif
Table Index
Integer
3 (Wireless Interface A) or 4 (Wireless Interface B)
R
index
Operational Mode
Integer
1 = dot11b-only
2 = dot11g-only
3 = dot11bg
4 = dot11a
5 = dot11g-wifi
6 = publicsafety
RW
mode
Supported Channel Bandwidth
DisplayString
Depends on Operational Mode
R
supportedchannelbandwidth
Channel Bandwidth
Integer32
10
20
R/RW
channelbandwidth
Network Name
DisplayString
1 - 32 characters
My Wireless Network (default)
RW
netname
Auto Channel Select (ACS)*
Integer
enable (default)
disable
RW
autochannel
DTIM Period
Integer
1 - 255
1 = default
RW
dtimperiod
RTS/CTS Medium Reservation
Integer
0 - 2347
Default is 2347 (off)
RW
medres
MAC Address
PhyAddress
12 hex digits
R
macaddr
Closed System
Integer
enable
disable (default)
 
RW
closedsys
Wireless Service Status
Integer
1 = resume
2 = shutdown
RW
wssstatus
Supported Frequency Channels
Octet String
Depends on Regulatory Domain
R
suppchannels
Load Balancing Max Clients
Integer
1 - 63
RW
lbmaxclients
Distance Between APs
Integer
1 (large) (default)
2 (medium)
3 (small),
4 (minicell)
5 (microcell)
RW
distaps
Antenna Diversity§
Integer
1 (Antenna 1),
2 (Antenna 2),
3 (Antenna 3),§
4 (Antenna 4),
5 (Auto; both antennas on radio)
(See Configure Antenna Diversity)
RW
atdiversity
AP Link Length**
Integer
200 - 15000
RW
aplinklength
Transmit Power Control
Integer
enable
disable
RW
txpowercontrol
Transmit Power Control Back-Off
Integer
0 - 35 (dBm)
RW
currentbackofftpcvalue

* For 802.11a APs certified in the ETSI and TELEC regulatory domains and operating in the middle frequency band, disabling Auto Channel Select will limit the available channels to those in the lower frequency band.
† Wireless Service Status cannot be shut down on an interface where Rogue Scan is enabled.
‡ Distance Between APs allows the AP to perform better in high noise environments by increasing the receive sensitivity and transmit defer threshold, as follows:

Distance Between APs
Receive Sensitivity Threshold (dBm)
Transmit Defer Threshold (dBm)
Large
-96
-62
Medium
-86
-62
Small
-78
-52
Mini
-70
-42
Micro
-62
-36

§ When the AP-4900M is configured to use the 4.9 GHz Public Safety operational mode, antenna diversity is disabled by default, and antenna 3 is configured for use.
** Each 802.11 packet is acknowledged by the receiving station. On links longer than about 100m, the time that it takes for the ACK to get back to the sending station is long enough to cause the sending station to believe that the packet was not properly received. This problem can be corrected by adjusting the AP Link Length parameter to a value that is larger than the length in meters of the longest link being serviced by that AP.

802.11a/4.9 GHz Only Parameters

Name
Type
Value
Access
CLI Parameter
Operating Frequency Channel
Integer
Varies by regulatory domain and country. See Available Channels
RW
channel
Supported Data Rates
Octet String
See Transmit Rate, below
R
suppdatarates
Transmit Rate
Integer32
802.11a:
0 (Auto Fallback)
6 Mbits/sec
9 Mbits/sec
12 Mbits/sec
18 Mbits/sec
24 Mbits/sec
36 Mbits/sec
48 Mbits/sec
54 Mbits/sec
 
4.9 GHz (10 MHz):
0 (Auto Fallback)
3 Mbits/s
4.5 Mbits/s
6 Mbits/s
9 Mbits/s
12 Mbits/s
18 Mbits/s
24 Mbits/s
27 Mbits/s.

4.9 GHz (20 MHz):
0 (Auto Fallback)
6 Mbits/sec
9 Mbits/sec
12 Mbits/sec
18 Mbits/sec
24 Mbits/sec
36 Mbits/sec
48 Mbits/sec
54 Mbits/sec
RW
txrate
Physical Layer Type
Integer
ofdm (orthogonal frequency division multiplexing) for 802.11a
R
phytype
Super Mode*
Integer
enable
disable (default)
RW
supermode
Turbo Mode
Integer
enable
disable (default)
RW
turbo

* Available for the 5 GHz frequency band in the FCC regulatory domain only.
† Super mode must be enabled on the wireless interface before Turbo mode can be enabled. Turbo mode and Mesh mode (either Mesh AP or Mesh Portal) can not be enabled on the same interface simultaneously.

802.11b Only Parameters

Name
Type
Value
Access
CLI Parameter
Operating Frequency Channel
Integer
1 - 14; available channels vary by regulatory domain/country; see Available Channels
RW
channel
Multicast Rate
Integer
1 Mbits/sec (1)
2 Mbits/sec (2) (default)
5.5 Mbits/sec (3)
11 Mbits/sec (4)
RW
multrate
Closed Wireless System
Integer
enable
disable (default)
RW
closedsys
MAC Address
PhyAddress
12 hex digits
R
macaddr
Supported Data Rates
Octet String
1 Mbits/sec
2 Mbits/sec
5.5 Mbits/sec
11 Mbits/sec
R
suppdatarates
Transmit Rate
Integer32
0 (auto fallback; default)
1 Mbits/sec
2 Mbits/sec
5.5 Mbits/sec
11 Mbits/sec
RW
txrate
Physical Layer Type
Integer
dsss (direct sequence spread spectrum) for 802.11b
R
phytype
Regulatory Domain List
DisplayString
U.S./Canada -- FCC
Europe -- ETSI
Japan -- TELEC
R
regdomain

802.11b/g Only Parameters

Name
Type
Value
Access
CLI Parameter
Operating Frequency Channel
Integer
1 - 14; available channels vary by regulatory domain/country; see Available Channels
RW
channel
Supported Data Rates
Octet String
See Transmit Rate, below
R
suppdatarates
Transmit Rate
Integer32
For 802.11b-only mode:
0 (auto fallback; default)
1 Mbits/sec
2 Mbits/sec
5.5 Mbits/sec
11 Mbits/sec

For 802.11g-only mode:*
0 (auto fallback; default)
6 Mbits/sec
9 Mbits/sec
12 Mbits/sec
18 Mbits/sec
24 Mbits/sec
36 Mbits/sec
48 Mbits/sec
54 Mbits/sec

For 802.11b/g mode:
0 (auto fallback; default)
1 Mbits/sec
2 Mbits/sec
5.5 Mbits/sec
11 Mbits/sec
6 Mbits/sec
9 Mbits/sec
12 Mbits/sec
18 Mbits/sec
24 Mbits/sec
36 Mbits/sec
48 Mbits/sec
54 Mbits/sec
RW
txrate
Physical Layer Type
Integer
ERP (Extended Rate Protocol)
R
phytype
Super Mode
Integer
enable
disable (default)
RW
supermode

* Also for 802.11g-wifi mode. 802.11g-wifi has been defined for Wi-Fi testing purposes; it is not recommended for use in your wireless network environment.
† Available in 802.11b/g or 802.11g modes only.

Channel Blacklist Parameters

Name
Type
Value
Access
CLI Parameter
Wireless Interface Channel Blacklist Table
Table
wifchblklisttbl
R
wdstbl
Interface Index
Integer
Wireless interface A = 3
Wireless interface B = 4
R
ifindex
Channel Number
Integer
Depends on regulatory domain
R
channel
Radar Detected
TruthValue
True
False
R
radardetected
Elapsed Time (minutes)
Gauge32
0 - 32
R
elapsetime
Blacklist Status
ObjStatus
enable
disable
RW
status

Wireless Distribution System (WDS) Parameters

Name
Type
Value
Access
CLI Parameter
WDS Table
Table
N/A
R
wdstbl
Port Index
Integer
3.1 - 3.6 (Wireless)
R
portindex
Status
Integer
enable, disable
RW
status
Partner MAC Address
PhysAddress
User Defined
RW
partnermacaddr

Wireless Interface SSID/VLAN/Profile Parameters

The Wireless Interface SSID table manages the SSIDs, VLANs, Security Profiles, and RADIUS Profiles associated to each SSID.

For configuration examples, see Configure SSIDs (Network Names), VLANs, and Profiles.

Name
Type
Value
Access
CLI Parameter
Wireless Interface SSID Table
Table
N/A
R
wifssidtbl
Table Index
Integer
Primary wireless interface = 3
Secondary wireless interface = 4
R
index
Table Index
Integer32
1 - 16 (SSID index)
R
ssidindex
SSID
DisplayString
2 - 32 characters
RW
ssid
Broadcast SSID
Integer
enable
disable
RW
bcastbeacon
Closed System
Integer
enable,
disable
RW
denybcastprobereq
VLAN ID
VlanId
-1 - 4094 or untagged
RW
vlanid
Rekeying Interval
Integer32
0 (disabled)
300 - 65535
Default = 900
RW
reykeyint
Table Row Status
RowStatus
enable
disable
delete
RW
status
SSID Authorization Status per VLAN
Integer
enable
disable
RW
ssidauth
RADIUS Accounting Status per VLAN
Integer
enable
disable
RW
acctstatus
MAC ACL Status per VLAN
Integer
enable
disable
RW
aclstatus
Security Profile
Integer32
User defined
RW
secprofile
RADIUS MAC Profile
DisplayString
User defined
RW
radmacprofile
RADIUS EAP Profile
DisplayString
User defined
RW
radeapprofile
RADIUS Accounting Profile
DisplayString
User defined
RW
radacctprofile
QoS Policy
Integer32
User defined
RW
qospolicy

Wireless Distribution System (WDS) Security Table Parameters

The WDS Security Table manages WDS related security objects.

Name
Type
Value
Access
CLI Parameter
WDS Security Table
Table
N/A
R
wdssectbl
Table Index
Integer
Primary wireless interface = 3
Secondary wireless interface = 4
R
index
Security Mode
Integer
1 (none)
2 (wep)
RW
secmode
Encryption Key 0
WEPKeyType
N/A
WO
encryptkey0

Ethernet Interface Parameters

Name
Type
Value
Access
CLI Parameter
Ethernet Interface
Group
N/A
R
ethernet
Speed
Integer
1 (10halfduplex)
2 (10fullduplex)
3 (10autoduplex)
4 (100halfduplex)
5 (100fullduplex)
6 (autohalfduplex)
7 (autoautoduplex) (default)
RW
etherspeed
MAC Address
PhyAddress
N/A
R
ethermacaddr

Mesh Network Parameters

NOTE: Advanced Mesh parameters are available from the web interface only. See Advanced Mesh Parameters
Name
Type
Value
Access
CLI Parameter
Mesh Group
Group
N/A
R
mesh
Mesh Mode
Integer
disable (default)
portal
ap
RW
meshmode
Mesh Interface Number
Integer32
3 (Wireless Interface A)
4 (Wireless Interface B)
RW
meshwif
Mesh SSID
DisplayString
1-16 characters
RW
meshssid
Security Mode
Integer
none
aes (default)
RW
meshsecurity
Shared Secret
DisplayString
6-32 characters
Default: public
W
meshssecret
Maximum Active Mesh Links
Integer32
1-6
Default: 6
RW
meshmaxlinks
RSSI Smoothing*
Integer32
4, 8, 16 (default), 32
RW
meshrssismoothing
Roaming Threshold*
Integer32
40, 60, 80 (default), 100
RW
meshroamingthreshold
Send Client Deauth Message
ObjStatus
enable (default)
disable
RW
meshsenddeauth
.
* Higher RSSI smoothing and roaming threshold values create a more static mesh environment. Lower RSSI smoothing and roaming threshold values create a more dynamic mesh environment

Management Parameters

Secure Management Parameters

Name
Type
Value
Access
CLI Parameter
Secure Management
Integer
1 (enable)
2 (disable)
RW
securemgmtstatus

SNMP Parameters

Name
Type
Value
Access
CLI Parameter
SNMP
Group
N/A
R
snmp
SNMP Management Interface Bitmask
Interface Bitmask
0 or 2 = No interfaces (disable)
1 or 3 = Ethernet
4 or 6 = Wireless A
8 or 10 = Wireless B
12 = Wireless A & B
13 or 15 = All interfaces (default is 15)
RW
snmpifbitmask
Read Password
DisplayString
User Defined
public (default)
6 - 32 characters
W
snmprpasswd
Read/Write Password
DisplayString
User Defined
public (default)
6 - 32 characters
W
snmprwpasswd
SNMPv3 Authentication Password
DisplayString
User Defined
public (default)
6 - 32 characters
W
snmpv3authpasswd
SNMPv3 Privacy Password
DisplayString
User Defined
public (default)
6 - 32 characters
W
snmpv3privpasswd

HTTP Parameters

Name
Type
Value
Access
CLI Parameter
HTTP
Group
N/A
R
http
HTTP Management Interface Bitmask
Interface Bitmask
0 or 2 = No interfaces (disable)
1 or 3 = Ethernet
4 or 6 = Wireless A
8 or 10 = Wireless B
12 = Wireless A & B
13 or 15 = All interfaces (default is 15)
RW
httpifbitmask
HTTP Password
DisplayString
User Defined (6 - 32 characters)
W
httppasswd
HTTP Port
Integer
User Defined
Default = 80
RW
httpport
Help Link*
DisplayString
User Defined
RW
httphelplink
SSL Status
Integer
enable/disable
RW
sslstatus
SSL Certificate Passphrase
DisplayString
User Defined
W
sslpassphrase

* The help link must be set to an HTTP address. Use the forward slash character ("/") rather than the backslash character ("\") when configur- ing the Help Link location.

Telnet Parameters

Name
Type
Value
Access
CLI Parameter
Telnet
Group
N/A
R
telnet
Telnet Management Interface Bitmask
Interface Bitmask
0 or 2 = No interfaces (disable)
1 or 3 = Ethernet
4 or 6 = Wireless A
8 or 10 = Wireless B
12 = Wireless A & B
13 or 15 = All interfaces (default is 15)
RW
telifbitmask
Telnet Port
Integer
User Defined
23 (default)
RW
telport
Telnet Login Inactivity Time-out
Integer
30 - 300 seconds
60 sec (default)
RW
tellogintout
Telnet Session Idle Time-out
Integer
60 - 36000 seconds
900 sec (default)
RW
telsessiontout

Serial Port Parameters

Name
Type
Value
Access
CLI Parameter
Serial
Group
N/A
R
serial
Baud Rate
Integer
2400, 4800,9600 (default), 19200, 38400, 57600
RW
serbaudrate
Data Bits
Integer
8
R
serdatabits
Parity
Integer
none
R
serparity
Stop Bits
Integer
1
R
serstopbits
Flow Control
Value
none (default)
xonxoff
RW
serflowctrl

RADIUS Based Management Access Parameters

The RADIUS Based Management Access parameters allow you to enable HTTP or Telnet Radius Management Access, enable or disable local user access, and configure the local user password.

The default local user ID is root and the default local user password is public. "Root" cannot be configured as a valid user for RADIUS based management access when local user access is enabled.

Name
Type
Value
Access
CLI Parameter
Radius Local User Status
Integer
enable
disable
RW
radlocaluserstatus
Radius Local User Password
DisplayString
User Defined
RW
radlocaluserpasswd
HTTP Radius Management Access
Integer
enable
disable
RW
httpradiusmgmtaccess
Telnet Radius Management Access
Integer
enable
disable
RW
telradiusmgmtaccess

SSH Parameters

The following commands enable or disable SSH and set the SSH host key.

Name
Type
Value
Access
CLI Parameter
SSH Status
Integer
enable
disable
RW
sshstatus
SSH Public Host Key Fingerprint
DisplayString
AP Generated
RW
sshkeyfprint
SSH Host Key Status
Integer
create
delete
RW
sshkeystatus

The AP SSH feature, open-SSH, confirms to the SSH protocol, and supports SSH version 2. The following SSH clients have been verified to interoperate with the AP's server. The following table lists the clients, version number, and the website of the client.

Clients
Version
Website
OpenSSH
V3.4-2
http://www.openssh.com
Putty
Rel 0.53b
http://www.chiark.greenend.org.uk
Zoc
5.00
http://www.emtec.com
Axessh
V2.5
http://www.labf.com

For key generation, only the OpenSSH client has been verified.

Auto Configuration Parameters

These parameters relate to the Auto Configuration feature which allows an AP to be automatically configured by downloading a specific configuration file from a TFTP server during the boot up process.

Name
Type
Value
Access
CLI Parameter
Auto Configuration
Group
N/A
R
autoconfig
Auto Configuration Status
Integer
enable (default)
disable
RW
autoconfigstatus
Auto Config File Name
DisplayString
User Defined
RW
autoconfigfilename
Auto Config TFTP Server IP Address
IpAddress
User Defined
RW
autoconfigTFTPaddr

TFTP Server Parameters

These parameters relate to upload and download commands.

When you execute an upload and/or download Command, the specified arguments are stored in TFTP parameters for future use. If nothing is specified in the command line when issuing subsequent upload and/or download commands, the stored arguments are used.

Name
Type
Value
Access
CLI Parameter
TFTP
Group
N/A
R
tftp
TFTP Server IP Address
IpAddress
User Defined
RW
tftpipaddr
TFTP File Name
DisplayString
User Defined
RW
tftpfilename
TFTP File Type
Integer
img
config
bootloader
sslcertificate
sslprivatekey
sshprivatekey
sshpublickey
clibatchfile (CLI Batch File)
cbflog (CLI Batch Error Log)
RW
tftpfiletype

IP Access Table Parameters

When creating table entries, you may either specify the argument name followed by argument value or simply enter the argument value. When only the argument value is specified, then enter the values in the order depicted by the following table. CLI applies default values to the omitted arguments. Due to the nature of the information, the only argument that can be omitted is the "comment" argument.

Name
Type
Value
Access
CLI Parameter
IP Access Table
Table
N/A
R
mgmtipaccesstbl
Table Index
Integer
User Defined
N/A
index
IP Address
IpAddress
User Defined
RW
ipaddr
IP Mask
IpAddress
User Defined
RW
ipmask
Comment (optional)
DisplayString
User Defined
RW
cmt
Status (optional)
Integer
enable (default)
disable
delete
RW
status

Filtering Parameters

Ethernet Protocol Filtering Parameters

Name
Type
Value
Access
CLI Parameter
Ethernet Filtering
Group
N/A
R
etherflt
Filtering Interface Bitmask
Interface Bitmask
0 or 2 = No interfaces (disable)
1 or 3 = Ethernet
4 or 6 = Wireless A
8 or 10 = Wireless B
12 = Wireless A & B
13 or 15 = All interfaces (default is 15)
RW
etherfltifbitmask
Operation Type
 
passthru
block
RW
etherfltoptype

Ethernet Filtering Table

Identify the different filters by using the table index.

Name
Type
Value
Access
CLI Parameter
Ethernet Filtering Table
Table
N/A
R
etherflttbl
Table Index
N/A
N/A
R
index
Protocol Number
Octet String
N/A
RW
protonumber
Protocol Name (optional)
DisplayString
 
RW
protoname
Status (optional)
Integer
enable (1)
disable (2)
delete (3)
RW
status

NOTE: The filter Operation Type (passthru or block) applies only to the protocol filters that are enabled in this table.

Static MAC Address Filter Table

Name
Type
Value
Access
CLI Parameter
Static MAC Address Filter Table
Table
N/A
R
staticmactbl
Table Index
N/A
N/A
R
index
Static MAC Address on Wired Network
PhysAddress
User Defined
RW
wiredmacaddr
Static MAC Address Mask on Wired Network
PhysAddress
User Defined
RW
wiredmask
Static MAC Address on Wireless Network
PhysAddress
User Defined
RW
wirelessmacaddr
Static MAC Address Mask on Wireless Network
PhysAddress
User Defined
RW
wirelessmask
Comment (optional)
DisplayString
max 255 characters
RW
cmt
Status (optional)
Integer
enable (default)
disable
delete
RW
status

Proxy ARP Parameters

Name
Type
Value
Access
CLI Parameter
Proxy ARP
Group
N/A
R
parp
Status
Integer
enable
disable (default)
RW
parpstatus

IP ARP Filtering Parameters

Name
Type
Value
Access
CLI Parameter
IP ARP Filtering
Group
N/A
R
iparp
Status
Integer
enable
disable (default)
RW
iparpfltstatus
IP Address
IpAddress
User Defined
RW
iparpfltipaddr
Subnet Mask
IpAddress
User Defined
RW
iparpfltsubmask

Broadcast Filtering Table

Name
Type
Value
Access
CLI Parameter
Broadcast Filtering Table
Table
N/A
R
broadcastflttbl
Index
Integer
1 - 5
N/A
index
Protocol Name
DisplayString
N/A
R
protoname
Direction
Integer
ethertowireless
wirelesstoether
both (default)
RW
direction
Status
Integer
enable
disable (default)
RW
status

TCP/UDP Port Filtering

The following parameters are used to enable/disable the Port filter feature.

Name
Type
Value
Access
CLI Parameter
Port Filtering
Group
N/A
R
portflt
Port Filter Status
Integer
enable (default)
disable
RW
portfltstatus

TCP/UDP Port Filtering Table

The following parameters are used to configure TCP/UDP Port filters.

Name
Type
Value
Access
CLI Parameter
Port Filtering Table
Table
N/A
R
portflttbl
Table Index
N/A
User Defined
(there are also 4 pre-defined indices, see Port Number below for more information)
R
index
Port Type
Octet String
tcp
udp
tcp/udp
RW
porttype
Port Number
Octet String
User Defined
(there are also 4 pre-defined protocols:
Index 1: NetBios Name Service - 137, Index 2: NetBios Datagram Service - 138, Index 3: NetBios Session Service - 139, Index 4: SNMP Service - 161)
RW
portnum
Protocol Name
DisplayString
User Defined
(there are also 4 pre-defined protocols, see Port Number above)
RW
protoname
Interface Bitmask
Integer32
0 or 2 = No interfaces (disable)
1 or 3 = Ethernet
4 or 6 = Wireless A
8 or 10 = Wireless B
12 = Wireless A & B
13 or 15 = All interfaces (default is 15)
RW
ifbitmask
Status (optional)
Integer
enable (default for new entries)
disable (default for pre-defined entries)
delete
RW
status

Alarms Parameters

SNMP Table Host Table Parameters

When creating table entries, you may either specifying the argument name followed by argument value. CLI applies default values to the omitted arguments. Due to the nature of the information, the only argument that can be omitted is the "comment" argument.

Name
Type
Value
Access
CLI Parameter
SNMP Trap Host Table
Table
N/A
R
snmptraphosttbl
Table Index
Integer
User Defined
N/A
index
IP Address
IpAddress
User Defined
RW
ipaddr
Password
DisplayString
User Defined (up to 64 characters)
W
passwd
Comment (optional)
DisplayString
User Defined (up to 254 characters)
RW
cmt
Status (optional)
Integer
enable (default)
disable
delete
RW
status

Syslog Parameters

The following parameters configure the Syslog settings.

Name
Type
Value
Access
CLI Parameter
Syslog
Group
N/A
R
syslog
Syslog Status
Integer
enable
disable (default)
RW
syslogstatus
Syslog Port
Octet String
514
R
syslogport
Syslog Lowest Priority Logged
Integer
1 = LOG_ALERT
2 = LOG_CRIT
3 = LOG_ERR
4 = LOG_WARNING
5 = LOG_NOTICE
6 = LOG_INFO (default)
7 = LOG_DEBUG
RW
syslogpritolog
Heartbeat Status
Integer
enable (1)
disable (2) (default)
RW
sysloghbstatus
Heartbeat Interval (seconds)
Integer
1 - 604800 seconds;
900 sec. (default)
RW
sysloghbinterval

NOTE: When Heartbeat is enabled, the AP periodically sends a message to the Syslog server to indicate that it is active. The frequency with which the heartbeat message is sent depends upon the setting of the Heartbeat Interval.

Syslog Host Table

The table described below configures the Syslog hosts that will receive message from the AP. You can configure up to ten Syslog hosts.

Name
Type
Value
Access
CLI Parameter
Syslog Host Table
Table
N/A
R
sysloghosttbl
Table Index
Integer
1 - 10
N/A
index
IP Address
IpAddress
User Defined
RW
ipaddr
Comment (optional)
DisplayString
User Defined
RW
cmt
Status (optional)
Integer
enable
disable
delete
RW
status

Bridge Parameters

Spanning Tree Parameters

Name
Type
Value
Access
CLI Parameter
Spanning Tree
Group
N/A
R
stp
Spanning Tree Status
Integer
enable
disable (default)
RW
stpstatus
Bridge Priority
Integer
0 - 65535
32768 (default)
RW
stppriority
Maximum Age
Integer
600 - 4000
(in 0.01 sec intervals; i.e., 6 to 40 seconds)
2000 (default)
RW
stpmaxage
Hello Time
Integer
100 - 1000 (1/100 second; i.e., 1 to 10 seconds); enter values in increments of 100
200 (default)
RW
stphellotime
Forward Delay
Integer
400 - 3000
(in 0.01 sec intervals; i.e., 4 to 30 seconds)
1500 (default)
RW
stpfwddelay

Spanning Tree Priority and Path Cost Table

Name
Type
Value
Access
CLI Parameter
Spanning Tree Table
Table
N/A
R
stpbl
Table Index (Port)
N/A
1 - 15
R
index
Priority
Integer
0 - 255
128 (default)
RW
priority
Path Cost
Integer
1 - 65535
100 (default)
RW
pathcost
State
Integer
disable
blocking
listening
learning
forwarding
broken
R
state
Status
Integer
enable
disable
RW
status

Storm Threshold Parameters

Name
Type
Value
Access
CLI Parameter
Storm Threshold
Group
N/A (see below)
N/A
stmthres
Broadcast Threshold
Integer
0 - 255 packets/sec (default is 0)
RW
stmbrdthres
Multicast Threshold
Integer
0 - 255 packets/sec (default is 0)
RW
stmmultithres

Storm Threshold Table

Name
Type
Value
Access
CLI Parameter
Storm Threshold Table
Table
N/A
R
stmthrestbl
Table Index
Integer
1 = Ethernet
3 = Wireless
R
index
Broadcast Threshold
Integer
0 - 255 packets/sec (default is 0)
RW
bcast
Multicast Threshold
Integer
0 - 255 packets/sec (default is 0)
RW
mcast

Intra BSS Subscriber Blocking

The following parameters control the Intra BSS traffic feature, which prevent wireless clients that are associated with the same AP from communicating with each other:

Name
Type
Value
Access
CLI Parameter
Intra BSS Traffic
Group
N/A
R
intrabss
Intra BSS Traffic Operation
Integer
passthru (default)
block
RW
intrabssoptype

Packet Forwarding Parameters

The following parameters control the Packet Forwarding feature, which redirects wireless traffic to a specific MAC address:

Name
Type
Value
Access
CLI Parameter
Packet Forwarding MAC Address
Group
N/A
R
pktfwd
Packet Forwarding MAC Address
MacAddress
User Defined
RW
pktfwdmacaddr
Packet Forwarding Status
Integer
enable
disable (default)
RW
pktfwdstatus
Packet Forwarding Interface Port
Integer
0 (any) (default)
1 (Ethernet)
2 (WDS 1)
3 (WDS 2)
4 (WDS 3)
5 (WDS 4)
6 (WDS 5)
7 (WDS 6)
RW
pktfwdif

RADIUS Parameters

General RADIUS Parameters

Name
Type
Value
Access
CLI Parameter
RADIUS
Group
N/A
R
radius
Client Invalid Server Address
Counter32
N/A
R
radcliinvsvradd

RADIUS Server Configuration Parameters

NOTE: Use a server name only if you have enabled the DNS Client functionality. See DNS Client for RADIUS Name Resolution.
Name
Type
Value
Access
CLI Parameter
RADIUS Authentication
Table
N/A
R
radiustbl
Table Index (Profile Index)
Integer
N/A
R
index
Primary/Secondary Index
Integer
Primary (1)
Secondary (2)
R
subindex
Status
Integer
enable
disable
RW
status
Server Address Format
Integer
Ipaddr
Name
RW
seraddrfmt
Server IP Address or Name
IpAddress
DisplayString
User defined (enter an IP address if seraddrfmt is ipaddr or a name if set to name; up to 254 characters if using a name)
RW
ipaddr
Port (optional)
Integer
User Defined
1812 (default)
RW
port
Shared Secret
DisplayString
User Defined
6 - 32 characters
W
ssecret
Response Time (optional)
Integer
1 - 10 seconds
3 (default)
RW
responsetm
Maximum Retransmissions (optional)
Integer
0 - 4
3 (default)
RW
maxretx
RADIUS MAC Address Format
Integer
dashdelimited
colondelimited
singledashdelimited
nodelimiter
RW
radmacaddrformat
RADIUS Accounting Inactivity Timer
Integer32
1 - 60 minutes
RW
radaccinactivetmr
Authorization Lifetime
Integer32
900 - 43200 seconds
W
radauthlifetm
RADIUS Accounting Update Interval
Integer32
10 - 3600 minutes
RW
radacctupdinterval
VLAN ID
vlanID
-1 (untagged)
1 - 4094
RW
radvlanid

Security Parameters

MAC Access Control Parameters

Name
Type
Value
Access
CLI Parameter
MAC Address Control
Group
N/A
R
macacl
Status
Integer
enable
disable (default)
RW
aclstatus
Operation Type
Integer
passthru (default)
block
RW
macacloptype

MAC Access Control Table

Name
Type
Value
Access
CLI Parameter
MAC Address Control Table
Table
N/A
R
macacltbl
Table Index
N/A
N/A
R
index
MAC Address
PhysAddress
User Defined
RW
macaddr
Comment (optional)
DisplayString
User Defined
max 254 characters
RW
cmt
Status (optional)
Integer
enable (default)
disable
delete
RW
status

Rogue Scan Configuration Table

The Rogue Scan Configuration Table allows you to enable or disable Rogue Scan and configure the scanning parameters.

Name
Type
Value
Access
CLI Parameter
Rogue Scan Configuration Table
Table
N/A
R
rscantbl
Rogue Scan Mode
Integer
Bkscan (1)
Contscan (2)
RW
mode
Rogue Scan Cycle Time
Integer
1 - 1440
RW
cycletime
Rogue Scan Configuration Table Index
Integer
3 or 4
RW
index
Rogue Scan Status
Integer
enable
disable
RW
status

802.1x Parameters

Name
Type
Value
Access
CLI Parameter
802.1x Group
Group
N/A
R
dot1xauthcfg
802.1x Supplicant Timeout
Integer32
3 - 60 seconds
RW
dot1xsupptimeout

Hardware Configuration Reset

The Hardware Configuration Reset commands allows you to enable or disable the feature and to change the password to be used for configuration reset during boot up.

Name
Type
Value
Access
CLI Parameter
Hardware Configuration Reset Status
Integer
enable (1)
disable (2)
R
hwconfigresetstatus
Configuration Reset Password
DisplayString
User Defined
RW
configresetpasswd

Security Profile Table

The Security Profile Table allows you to configure security profiles. A maximum of 16 security profiles are supported per wireless interface.

Each security profile can contain one or more enabled security modes (Non-secure station, WEP station, 802.1x station, WPA station, WPA-PSK station, 802.11i, 802.11i-PSK). The WEP/PSK parameters are separately configurable for each security mode. See the command examples in Set Security Profile Parameters.

Name
Type
Value
Access
CLI Parameter
Security Profile Table
Table
N/A
R
secprofiletbl
Table Index
Integer
1 - 16 (up to 16 per interface)
RW
index
Security Mode
Integer
nonsecure
wep
802.1x
wpa
wpa-psk
802.11i
802.11i-psk
RW
secmode
Authentication Mode
Integer
none
802.1x
psk
R
authmode
Cipher
Integer
none
wep
tkip
aes
R
ciphersuite
Encryption Key 0
Integer
See Encryption Key Format
W
encryptkey0
Encryption Key 1
Integer
See Encryption Key Format
W
encryptkey1
Encryption Key 2
Integer
See Encryption Key Format
W
encryptkey2
Encryption Key 3
Integer
See Encryption Key Format
W
encryptkey3
Encryption Transmit Key
Integer
0 - 3
RW
encryptkeytx
Encryption Key Length
Integer
1 (64 bits)
2 (128 bits)
3 (152 bits)
RW
encryptkeylength
PSK Passphrase
Integer
8 - 64 characters
W
passphrase

Encryption Key Format

If WEP security mode is configured, then the appropriate key size must be configured. The AP supports 63-, 128-, and 152-bit encryption keys. Encryption keys may be configured using either hexadecimal or ASCII values, as described in the following table.

Key Length
Hexadecimal
ASCII
64-bit
10 characters (0 - F)
5 alphanumeric characters
128-bit
26 characters (0 - F)
13 alphanumeric characters
152-bit
32 characters (0 - F)
16 alphanumeric characters

Each ASCII character corresponds to two hexadecimal digits. See ASCII Character Chart for ASCII/Hexadecimal correspondence.

VLAN/SSID Parameters

Name
Type
Value
Access
CLI Parameter
VLAN
Group
N/A
R
vlan
Status
Integer
enable
disable (default)
RW
vlanstatus
Management ID
VlanId
-1 (untagged)
or 1 - 4094
RW
vlanmgmtid

Other Parameters

IAPP Parameters

Name
Type
Value
Access
CLI Parameter
IAPP
Group
N/A
R
iapp
IAPP Status
Integer
enable (default)
disable
RW
iappstatus
Periodic Announce Interval (seconds)
Integer
80
120 (default)
160
200
RW
iappannint
Announce Response Time
Integer
2 seconds
R
iappannresp
Handover Time-out
Integer
410 ms
512 ms (default)
614 ms
717 ms
819 ms
RW
iapphandtout
Max. Handover Retransmissions
Integer
1 - 4 (default 4)
RW
iapphandretx
Send Announce Request on Startup
Integer
enable (default)
disable
RW
iappannreqstart

NOTE: These parameters configure the Inter Access Point Protocol (IAPP) for roaming. Leave these settings at their default value unless a technical representative asks you to change them.

Wireless Multimedia Enhancements (WME)/Quality of Service (QoS) parameters

The Wireless Multimedia Enhancements commands enable and configure Wireless Multimedia Enhancement/Quality of Service parameters per wireless interface. The following two commands are part of the Wireless Interface Properties table.

Enabling QoS

Name
Type
Value
Access
CLI Parameter
QoS Status
Object Status
enable
disable (default)
RW
qosstatus
QoS Maximum Medium Threshold
Integer
50 - 90
RW
qosmaximummediumthreshold

Configuring QoS Policies

The QoS group manages the QoS policies:

Name
Type
Value
Access
CLI Parameter
QoS Group
Group
N/A
N/A
qos
QoS Policy Table
Table
N/A
N/A
qospolicytbl
Table Primary Index
Integer
N/A
R
index
Table Secondary Index
Integer
N/A
R
secindex
Policy Name
Display String
0 - 32 characters
RW
policyname
Policy Type
Integer
inlayer2,
inlayer3,
outlayer2,
outlayer3,
spectralink*
RW
type
Priority Mapping Index
Integer
See Note .
RW
mapindex
Apply QoS Marking
Object Status
enable
disable
RW
markstatus
Table Row Status
Row Status
enable
disable
delete
RW
status

* QoS must be enabled on a wireless interface before spectralink can be enabled.
† A priority mapping needs to be specified for a QoS Policy. The priority mapping depends on the type of policy configured. For Layer 2 policy types (inbound or outbound) a mapping index from the 802.1p to 802.1D table should be specified. For Layer 3 policy types (inbound or out- bound) a mapping index from the IP DSCP to 802.1D table should be specified. The mapping index, in both cases, depends on the number of mappings configured by the user. For SpectraLink policy type a mapping is not required.

Specifying the Mapping between 802.1p and 802.1D Priorities

The QoS 802.1p to 802.1D Mapping Table specifies the mapping between 802.1P and 802.1D priorities.

Name
Type
Value
Access
CLI Parameter
QoS 802.1p to 802.1D Mapping Table
Table
N/A
N/A
qos1pto1dtbl
Table Index (Primary Index)
Integer
0 - 7
R
index
802.1D Priority (Secondary Index)
Integer
0 - 7
R
1dpriority
802.1p Priority
Integer
0 - 7
RW
1ppriority
Table Row Status
Row Status
enable
disable
delete
RW
status

Specifying the Mapping between IP Precedence/DSCP Ranges and 802.1D Priorities

The QoS IP DSCP to 802.1D Mapping Table specifies the mapping between IP Precedence/DSCP Ranges and 802.1D priorities.

Name
Type
Value
Access
CLI Parameter
QoS IP DSCP to 802.1D Mapping Table
Table
N/A
N/A
qosdscpto1dtbl
Table Index (Primary Index)
Integer
0 - 7
R
index
802.1D Priority
Integer
0 - 7
R
1dpriority
IP DSCP Lower Limit
Integer
0 - 62
RW
dscplower
IP DSCP Upper Limit
Integer
1 - 63
RW
dscpupper
Table Row Status
Row Status
enable
disable
delete
RW
status

QoS Enhanced Distributed Channel Access (EDCA) Parameters

The following commands configure the client (STA) and AP Enhanced Distributed Channel Access (EDCA) parameters. You can modify the EDCA values for both Wireless A and Wireless B.

The EDCA parameter set provides information needed by the client stations for proper QoS operation during the wireless contention period. These parameters are used by the QoS enabled AP to establish policy, to change policies when accepting new stations or new traffic, or to adapt to changes in the offered load. The EDCA parameters assign priorities to traffic types where higher priority packets gain access to the wireless medium more frequently than lower priority packets.

NOTE: We have defined default recommended values for EDCA parameters; we recommend not modifying EDCA parameters unless strictly necessary.
Name
Type
Value
Access
CLI Parameter
EDCA Table
Table
N/A
N/A
qosedcatbl
Table Index
Integer
1 - 4
R
index
CWmin
Integer
0 - 255
RW
cwmin
CWmax
Integer
0 - 65535
RW
cwmax
AIFSN
Integer
2 - 15
RW
aifsn
Tx OP Limit
Integer
0 - 65535
RW
txoplimit
MSDU Lifetime
Integer
0 - 500
RW
msdulifetime
AC Mandatory
Truth Value
true
false
RW
acmandatory
QAP EDCA Table
Table
N/A
N/A
qosqapedcatbl
Table Index
Integer
1 - 4
R
index
CWmin
Integer
0 - 255
RW
cwmin
CWmax
Integer
0 - 65535
RW
cwmax
AIFSN
Integer
2 - 15
RW
aifsn
Tx OP Limit
Integer
0 - 65535
RW
txoplimit
MSDU Lifetime
Integer
0 - 500
RW
msdulifetime
AC Mandatory
Truth Value
true
false
RW
acmandatory

Defining the QoS Policy used for a Wireless Interface SSID

The QoS Policy object configures the QoS policy to be used per wireless interface SSID. This object is part of the Wireless Interface SSID Table; the CLI command for this table is "wifssidtbl."

Name
Type
Value
Access
CLI Parameter
QoS Policy
Integer
See Note*
RW
qospolicy

* A QoS Policy number needs to be specified in the SSID table. This depends on the QoS policies configured by the user. Once the user has configured QoS policies, the user should specify the policy to be used for that SSID.

CLI Batch File

A CLI Batch file is a user-editable file that lists a series of CLI set commands, that can be uploaded to the Access Point to change its configuration. The Access Point executes the CLI commands specified in the CLI Batch file after upload and the configuration gets changed accordingly. A CLI Batch file can also be used for Auto Configuration.

The CLI Batch file does not replace the existing LTV format configuration file, which continues to define the configuration of the AP.

The CLI Batch file contains a list of CLI commands that the AP will execute. The AP performs the commands in the file immediately after the file is uploaded to the AP manually or during Auto Configuration. The AP parses the file and executes the CLI commands. Commands that do not require a reboot take effect immediately, while commands that require a reboot (typically commands affecting a wireless interface) will take effect after reboot.

Auto Configuration and the CLI Batch File

The Auto Configuration feature allows download of the LTV format configuration file or the CLI Batch file. The AP detects whether the file uploaded is LTV format or a CLI Batch file. If the AP detects a CLI Batch file (a file with extension .cli), the AP executes the file immediately.

The AP will reboot after executing the CLI Batch file. Auto Configuration will not result in repeated reboots if the CLI Batch file contains rebootable parameters.

CLI Batch File Format and Syntax

The CLI Batch file must be named with a .cli extension to be recognized by the AP. The maximum file size allowed is 100 Kbytes, and files with larger sizes cannot be uploaded to the AP. The CLI commands supported in the CLI Batch File are a subset of the legal AP CLI commands.

The follow commands are supported:

Each command must be separated by a new line.

NOTE: The following commands are not supported: Show command, Debug command, Undebug command, Upload command, Download command, Passwd command, Kill command, and the Exit, Quit, and Done commands.

Sample CLI Batch File

The following is a sample CLI Batch File:

set sysname system1
set sysloc sunnyvale
set sysctname contact1
set sysctphone 1234567890
set sysctemail email@domain.com
set ipaddr 11.0.0.66
set ipaddrtype static
set ipsubmask 255.255.255.0
set ipgw 11.0.0.1
set wif 4 autochannel disable
set wif 4 mode 1
set syslogstatus enable
set sysloghbstatus enable
set sysloghbinterval 5
set wif 4 netname london
reboot

Figure A-18 Sample CLI Batch File

Reboot Behavior

When a CLI Batch file contains a reboot command, the reboot will occur only after the entire CLI Batch file has been executed.

There are two methods of uploading the CLI Batch File:

CLI Batch File Error Log

If there is any error during the execution of the CLI Batch file, the AP will stop executing the file. The AP generates traps for all errors and each trap contains the following information:

The AP logs all the errors during execution and stores them in the Flash memory in a CLI Batch File Error Log named "CBFERR.LOG". The CLI Batch File Error Log can be downloaded though TFTP, HTTP, or CLI file transfer to a specified host.


www.proxim.com