How it Works
Hewlett Packard Enterprise
Loading...
WL575
Users manual
145 pgs1.95 Mb0
Users manual
150 pgs2.49 Mb0

Hewlett Packard Enterprise WL575 Users manual

System Logging Commands
Command Usage
Messages sent include the selected level down to Emergency level.
Level Argument Description
Emergency System unusable Alert Immediate action needed Critical Critical conditions (e.g., memory allocation, or free memory error - resource
Error Error conditions (e.g., invalid input, default used) Warning Warning conditions (e.g., return false, unexpected return) Notice Normal but significant condition, such as cold start Informational Informational messages only Debug Debugging messages
Example
Enterprise AP(config)#logging level alert Enterprise AP(config)#
exhausted)
logging facility-type
This command sets the facility type for remote logging of syslog messages.
logging facility-type <type>
type - A number that indicates the facility used by the syslog server to
dispatch log messages to an appropriate service. (Range: 16-23)
Default Setting
16
Command Mode
Global Configuration
7
7-31
Command Line Interface
7
Command Usage
The command specifies the facility type tag sent in syslog messages. (See RFC 3164.) This type has no effect on the kind of messages reported by the bridge. However, it may be used by the syslog server to sort messages or to store messages in the corresponding database.
Example
Enterprise AP(config)#logging facility 19 Enterprise AP(config)#
logging clear
This command clears all log messages stored in the bridge’s memory.
logging clear
Command Mode
Global Configuration
Example
Enterprise AP(config)#logging clear Enterprise AP(config)#
show logging
This command displays the logging configuration.
show logging
Command Mode
Exec
Example
Enterprise AP#show logging Logging Information ============================================ Syslog State : Enabled Logging Console State : Enabled Logging Level : Alert Logging Facility Type : 16 Servers 1: 192.168.1.19, UDP Port: 514, State: Enabled 2: 0.0.0.0, UDP Port: 514, State: Disabled 3: 0.0.0.0, UDP Port: 514, State: Disabled 4: 0.0.0.0, UDP Port: 514, State: Disabled ============================================= Enterprise AP#
7-32
System Clock Commands
show event-log
This command displays log messages stored in the bridge’s memory.
show event-log
Command Mode
Exec
Example
Enterprise AP#show event-log Mar 09 11:57:55 Information: 802.11g:11g Radio Interface Enabled Mar 09 11:57:55 Information: 802.11g:Radio channel updated to 8 Mar 09 11:57:34 Information: 802.11g:11g Radio Interface Enabled Mar 09 11:57:18 Information: 802.11g:11g Radio Interface Enabled Mar 09 11:56:35 Information: 802.11a:11a Radio Interface Enabled Mar 09 11:55:52 Information: SSH task: Set SSH server port to 22 Mar 09 11:55:52 Information: SSH task: Enable SSH server. Mar 09 11:55:52 Information: Enable Telnet. Mar 09 11:55:40 Information: 802.11a:11a Radio Interface Disabled Mar 09 11:55:40 Information: 802.11a:Transmit Power set to QUARTER Press <n> next. <p> previous. <a> abort. <y> continue to end : Enterprise AP#configure Enter configuration commands, one per line. End with CTRL/Z Enterprise AP(config)#logging clear
System Clock Commands
7
These commands are used to configure SNTP and system clock settings on the bridge.
Table 7-7. System Clock Commands
Command Function Mode Page
sntp-server ip Specifies one or more time servers GC 7-34 sntp-server enable Accepts time from the specified time servers GC 7-34 sntp-server date-time Manually sets the system date and time GC 7-35 sntp-server
daylight-saving sntp-server timezone Sets the time zone for the bridge’s internal clock GC 7-36 show sntp Shows current SNTP configuration settings Exec 7-37
Sets the start and end dates for daylight savings time GC 7-36
7-33
Command Line Interface
7
sntp-server ip
This command sets the IP address of the servers to which SNTP time requests are issued. Use the this command with no arguments to clear all time servers from the current list.
sntp-server ip <1 | 2> <ip>
1 - First time server.
2 - Second time server.
ip - IP address of an time server (NTP or SNTP).
Default Setting
137.92.140.80
192.43.244.18
Command Mode
Global Configuration
Command Usage
When SNTP client mode is enabled using the sntp-se rver enable command, the sntp-server ip command specifies the time servers from which the bridge polls for time updates. The bridge will poll the time servers in the order specified until a response is received.
Example
Enterprise AP(config)#sntp-server ip 10.1.0.19 Enterprise AP#
Related Commands
sntp-server enable (7-34) show sntp (7-37)
sntp-server enable
This command enables SNTP client requests for time synchronization with NTP or SNTP time servers specified by the sntp-server i p command. Use the no form to disable SNTP client requests.
sntp-server enable no sntp-server enable
Default Setting
Enabled
7-34
System Clock Commands
Command Mode
Global Configuration
Command Usage
The time acquired from time servers is used to record accurate dates and times for log events. Without SNTP, the bridge only records the time starting from the factory default set at the last bootup (i.e., 00:14:00, January 1, 1970).
Example
Enterprise AP(config)#sntp-server enable Enterprise AP(config)#
Related Commands
sntp-server ip (7-34) show sntp (7-37)
sntp-server date-time
This command sets the system clock.
Default Setting
00:14:00, January 1, 1970
Command Mode
Global Configuration
Example
This example sets the system clock to 17:37 June 19, 2003.
Enterprise AP#sntp-server date-time Enter Year<1970-2100>: 2003 Enter Month<1-12>: 6 Enter Day<1-31>: 19 Enter Hour<0-23>: 17 Enter Min<0-59>: 37 Enterprise AP#
7
Related Commands
sntp-server enable (7-34)
7-35
Command Line Interface
7
sntp-server daylight-saving
This command sets the start and end dates for daylight savings time. Use the no form to disable daylight savings time.
sntp-server daylight-saving no sntp-server daylight-saving
Default Setting
Disabled
Command Mode
Global Configuration
Command Usage
The command sets the system clock back one hour during the specified period.
Example
This sets daylight savings time to be used from July 1st to September 1st.
Enterprise AP(config)#sntp-server daylight-saving Enter Daylight saving from which month<1-12>: 6 and which day<1-31>: 1 Enter Daylight saving end to which month<1-12>: 9 and which day<1-31>: 1 Enterprise AP(config)#
sntp-server timezone
This command sets the time zone for the bridge’s internal clock.
sntp-server timezone <hours>
hours - Number of hours before/after UTC.
(Range: -12 to +12 hours)
Default Setting
-5 (BOGOTA, EASTERN, INDIANA)
Command Mode
Global Configuration
7-36
System Clock Commands
Command Usage
This command sets the local time zone relative to the Coordinated Universal Time (UTC, formerly Greenwich Mean Time or GMT), based on the earth’s prime meridian, zero degrees longitude. To display a time corresponding to your local time, you must indicate the number of hours and minutes your time zone is east (before) or west (after) of UTC.
Example
Enterprise AP(config)#sntp-server timezone +8 Enterprise AP(config)#
show sntp
This command displays the current time and configuration settings for the SNTP client.
Command Mode
Exec
Example
Enterprise AP#show sntp
SNTP Information ========================================================= Service State : Enabled SNTP (server 1) IP : 137.92.140.80 SNTP (server 2) IP : 192.43.244.18 Current Time : 08 : 04, Jun 20th, 2003 Time Zone : +8 (TAIPEI, BEIJING) Daylight Saving : Enabled, from Jun, 1st to Sep, 1st =========================================================
Enterprise AP#
7
7-37
Command Line Interface
7
DHCP Relay Commands
Dynamic Host Configuration Protocol (DHCP) can dynamically allocate an IP address and other configuration information to network clients that broadcast a request. To receive the broadcast request, the DHCP server would normally have to be on the same subnet as the client. However, when the bridge’s DHCP relay agent is enabled, received client requests can be forwarded directly by the bridge to a known DHCP server on another subnet. Responses from the DHCP server are returned to the bridge, which then broadcasts them back to clients.
Table 7-8. DHCP Relay Commands
Command Function Mode Page
dhcp-relay enable Enables the DHCP relay agent GC 7-38 dhcp-relay Sets the primary and secondary DHCP server
show dhcp-relay Shows current DHCP relay configuration settings Exec 7-39
address
dhcp-relay enable
This command enables the bridge’s DHCP relay agent. Use the no form to disable the agent.
[no] dhcp-rel ay enable
Default Setting
Disabled
Command Mode
Global Configuration
Command Usage
• For the DHCP relay agent to function, the primary DHCP server must be
configured using the dhcp-relay primary command. A secondary DHCP server does not need to be configured, but it is recommended.
• If there is no response from the primary DHCP server, and a secondary server has been configured, the agent will then attempt to send DHCP requests to the secondary server.
Example
Enterprise AP(config)#dhcp-relay enable Enterprise AP(config)#
GC 7-39
7-38
DHCP Relay Commands
dhcp-relay
This command configures the primary and secondary DHCP server addresses.
dhcp-relay <primary | secondary> <ip_address>
primary - The primary DHCP server.
secondary - The secondary DHCP server.
ip_address - IP address of the server.
Default Setting
Primary and secondary: 0.0.0.0
Command Mode
Global Configuration
Example
Enterprise AP(config)#dhcp-relay primary 192.168.1.10 Enterprise AP(config)#
show dhcp-relay
This command displays the current DHCP relay configuration.
Command Mode
Exec
Example
Enterprise AP#show dhcp-relay DHCP Relay : ENABLED Primary DHCP Server : 192.168.1.10 Secondary DHCP Server : 0.0.0.0 Enterprise AP#
7
7-39
Command Line Interface
7
SNMP Commands
Controls access to this bridge from management stations using the Simple Network Management Protocol (SNMP), as well as the hosts that will receive trap messages.
Table 7-9. SNMP Commands
Command Function Mode Page
snmp-ser ver community Sets up th e commun ity ac cess st ring to permit access
snmp-server contact Sets the system contact string GC 7-41 snmp-server location Sets the system location string GC 7-42 snmp-server enable server Enables SNMP service and traps GC 7-42 snmp-server host Specifies the recipient of an SNMP notification
snmp-server trap Enables specific SNMP notific atio ns GC 7-44 snmp-server engine id Sets the engine ID for SNMP v3 GC 7-45 snmp-server user Sets the name of the SNMP v3 user GC 7-46 snmp-server targets Configures SNMP v3 notification targets GC 7-48 snmp-server filter Configures SNMP v3 notification filters GC 7-49 snmp-server
filter-assignments show snmp groups Displays the pre-defined SNMP v3 groups Exec 7-50 show snmp users Displays SNMP v3 user settings Exec 7-51 show snmp
group-assignments show snmp target Displays the SNMP v3 notification targets Exec 7-52 show snmp filter Displays the SNMP v3 notification filters Exec 7-52
to SNMP commands
operation
Assigns SNMP v3 notification filters to targets GC 7-50
Displays the assignment of users to SNMP v3 groups Exec 7-51
GC 7-41
GC 7-43
show snmp filter-assignments
show snmp Displays the status of SNMP communications Exec 7-54
Displays the SNMP v3 notification filter assi gnm en ts Exec 7-53
7-40
SNMP Commands
snmp-server community
This command defines the community access string for the Simple Network Management Protocol. Use the no form to remove the specified community string.
snmp-server commun ity string [ro | rw] no snmp-server commu nity string
string - Community string that acts like a password and permits access to
the SNMP protocol. (Maximum length: 23 characters, case sensitive)
ro - Specifies read-only access. Authorized management stations are only
able to retrieve MIB objects.
rw - Specifies read/write access. Authorized management stations are able
to both retrieve and modify MIB objects.
Default Setting
• public - Read-only access. Authorized management stations are only able to retrieve MIB objects.
• private - Read/write access. Authorized management stations are able to both retrieve and modify MIB objects.
Command Mode
Global Configuration
Command Usage
If you enter a community string without the ro or rw option, the default is read only.
Example
Enterprise AP(config)#snmp-server community alpha rw Enterprise AP(config)#
7
snmp-server contact
This command sets the system contact string. Use the no form to remove the system contact information.
snmp-server contact string no snmp-server contact
string - String that describes the system contact. (Maximum length: 255
characters)
Default Setting
None
7-41
Command Line Interface
7
Command Mode
Global Configuration
Example
Enterprise AP(config)#snmp-server contact Paul Enterprise AP(config)#
Related Commands
snmp-server location (7-42)
snmp-server location
This command sets the system location string. Use the no form to remove the location string.
snmp-server location <text> no snmp-server locat ion
text - String that describes the system location.
(Maximum length: 255 characters)
Default Setting
None
Command Mode
Global Configuration
Example
Enterprise AP(config)#snmp-server location WC-19 Enterprise AP(config)#
Related Commands
snmp-server contact (7-41)
snmp-server enable server
This command enables SNMP management access and also enables this device to send SNMP traps (i.e., notifications). Use the no form to disable SNMP service and trap messages.
Syntax
snmp-server enable ser ver no sn mp-server enab le server
Default Setting
Enabled
7-42
SNMP Commands
Command Mode
Global Configuration
Command Usage
• This command enables both authentication failure notifications and link-up-down notifications.
•The snmp- server host command specifies the host device that will receive SNMP notifications.
Example
Enterprise AP(config)#snmp-server enable server Enterprise AP(config)#
Related Commands
snmp-server host (7-43)
snmp-server host
This command specifies the recipient of an SNMP notification. Use the no form to remove the specified host.
snmp-server host <1 | 2 | 3 | 4> <host_ip_address | host_name>
<community-string>
no snmp-server host
1 - First SNMP host.
2 - Second SNMP host.
3 - Third SNMP host.
4 - Fourth SNMP host.
host_ip_address - IP of the host (the targeted recipient).
host_name - Name of the host. (Range: 1-63 characters)
community-string - Password-like community string sent with the
notification operation. Although you can set this string using the snmp-server host command by itself, we recommend that you define this string using the snmp-s er ver community command prior to using the
snmp-server host command. (Maximum length: 23 characters)
Default Setting
Host Address: None Community String: public
Command Mode
Global Configuration
7
7-43
Command Line Interface
7
Command Usage
The snmp-server host command is used in conjunction with the snmp-server enable ser ver command to enable SNMP notifications.
Example
Enterprise AP(config)#snmp-server host 1 10.1.19.23 batman Enterprise AP(config)#
Related Commands
snmp-server enable server (7-42)
snmp-server trap
This command enables the bridge to send specific SNMP traps (i.e., notifications). Use the no form to disable specific trap messages.
snmp-server trap <trap> no snmp-server trap <trap>
trap - One of the following SNMP trap messages:
- dot11InterfaceAGFail - The 802.11a or 802.11g interface has failed.
- dot11Interfac eBFail - The 802.11b interface has failed.
- dot11StationAssociation - A client station has successfully associated with the bridge.
- dot11StationAuthentication - A client station has been successfully authenticated.
- dot11StationReAssociation - A client station has successfully re-associated with the bridge.
- dot11StationRequestFail - A client station has failed association, re-association, or authentication.
- dot1xAuthFail - A 802.1X client station has failed RADIUS authentication.
- dot1xAuthNotInitiated - A client station did not initiate 802.1X authentication.
- dot1xAuthSuccess - A 802.1X client station has been successfully authenticated by the RADIUS server.
- dot1xMacAddrAuthFail - A client station has failed MAC address authentication with the RADIUS server.
- dot1xMacAddrAuthSuccess - A client station has successfully authenticated its MAC address with the RADIUS server.
- iappContextDataSent - A client station’s Context Data has been sent to another bridge with which the station has associated.
- iappStationRoamedFr om - A client station has roamed from another bridge (identified by its IP address).
7-44
SNMP Commands
- iappStationRoamedTo - A client station has roamed to another bridge
(identified by its IP address).
- localMacAddrAuthFail - A client station has failed authentication with
the local MAC address database on the bridge.
- localMacAddrAuthSuccess - A client station has successfully
authenticated its MAC address with the local database on the bridge.
- pppLogonFail - The bridge has failed to log onto the PPPoE server
using the configured user name and password.
- sntpServerFail - The bridge has failed to set the time from the
configured SNTP server.
- sysConfigFileVersionChange d - The bridge’s configuration file has
been changed.
- sysRadiusServerChanged - The bridge has changed from the primary
RADIUS server to the secondary, or from the secondary to the primary.
- sysSystemDown - The bridge is about to shutdown and reboot.
- sysSystemUp - The bridge is up and running.
Default Setting
All traps enabled
Command Mode
Global Configuration
Command Usage
This command is used in conjunction with the snmp-server host and snmp-server enable ser ver commands to enable SNMP notifications.
Example
Enterprise AP(config)#no snmp-server trap dot11StationAssociation Enterprise AP(config)#
7
snmp-server engine-id
This command is used for SNMP v3. It is used to uniquely identify the bridge among all bridges in the network. Use the no form to delete the engine ID.
Syntax
snmp-server engine-id <engine-id> no sn mp-server eng ine-id
engine-id - Enter engine-id in hexadecimal (5-32 characters).
Default Setting
Enabled
7-45
Command Line Interface
7
Command Mode
Global Configuration
Command Usage
• This command is used in conjunction with the
• Entering this command invalidates all engine IDs that have been previously configured.
• If the engineID is deleted or changed, all SNMP users will be cleared. You will need to reconfigure all existing users
Example
Enterprise AP(config)#snmp-server engine-id 1a:2b:3c:4d:00:ff Enterprise AP(config)#
snmp-server user command.
snmp-server user
This command configures the SNMP v3 users that are allowed to manage the bridge. Use the no form to delete an SNMP v3 user.
snmp-server user <user-n ame>
user-name - A user-defined string for the SNMP user. (32 characters
maximum)
Default Setting
None
Command Mode
Global Configuration
Command Usage
• Up to 10 SNMPv3 users can be configured on the bridge.
• The SNMP engine ID is used to compute the authentication/privacy digests from the pass phrase. You should therefore configure the engine ID with the snmp-server engine-id command before using this configuration command.
• The bridge enables SNMP v3 users to be assigned to three pre-defined groups. Other groups cannot be defined. The available groups are:
- RO - A read-only group using no authentication and no data encryption.
Users in this group use no security, either authentication or encryption, in SNMP messages they send to the agent. This is the same as SNMP v1 or SNMP v2c.
7-46
SNMP Commands
- RWAuth - A read/write group using authentication, but no data encryption. Users in this group send SNMP messages that use an MD5 key/password for authentication, but not a DES key/password for encryption.
- RWPriv - A read/write group using authentication and data encryption. Users in this group send SNMP messages that use an MD5 key/ password for authentication and a DES key/password for encryption. Both the MD5 and DES key/passwords must be defined.
• The command prompts for the following information to configure an SNMP v3 user:
- user-name - A user-defined string for the SNMP user. (32 characters
maximum)
- group-name - The name of the SNMP group to which the user is
assigned (32 characters maximum). There are three pre-defined groups: RO, RWAuth, or RWPriv.
- auth-proto - The authentication type used for user authentication: md5 or
none.
-auth-passphrase - The user password required when authentication is
used (8 – 32 characters).
- priv-proto - The encryption type used for SNMP data encryption: des or
none.
- priv-passphrase - The user password required when data encryption is
used (8 – 32 characters).
• Users must be assigned to groups that have the same security levels. If a user who has “AuthPriv” security (uses authentication and encryption) is assigned to a read-only (RO) group, the user will not be able to access the database. An AuthPriv user must be assigned to the RWPriv group with the AuthPriv security level.
• To configure a user for the RWAuth group, you must include the auth-proto and auth-passphrase keywords.
• To configure a user for the RWPriv group, you must include the auth-proto, auth-passphrase, pr iv -p ro to , and priv-passphrase keywords.
Example
Enterprise AP(config)#snmp-server user User Name<1-32> :chris Group Name<1-32> :RWPriv Authtype(md5,<cr>none):md5 Passphrase<8-32>:a good secret Privacy(des,<cr>none) :des Passphrase<8-32>:a very good secret Enterprise AP(config)#
7
7-47
Command Line Interface
7
snmp-server targets
This command configures SNMP v3 notification targets. Use the no form to delete an SNMP v3 target.
snmp-server targets <target-id> <ip-addr> <sec-name>
[version {3}] [udp-port {port-number}] [notification-type {TRAP}] no snmp-server targets <target-id>
target-id - A user-defined name that identifies a receiver of SNMP
notifications. (Maximum length: 32 characters)
ip-addr - Specifies the IP address of the management station to receive
notifications.
sec-name - The defined SNMP v3 user name that is to receive
notifications.
version - The SNMP version of notifications. Currently only version 3 is
supported in this command.
udp-port - The UDP port that is used on the receiving management station
for notifications.
notification-type - The type of notification that is sent. Currently only T RAP
is supported.
Default Setting
None
Command Mode
Global Configuration
Command Usage
• The bridge supports up to 10 SNMP v3 target IDs.
• The SNMP v3 user name that is specified in the target must first be
configured using the snmp-server user command.
Example
Enterprise AP(config)#snmp-server targets mytraps 192.168.1.33 chris Enterprise AP(config)#
7-48
SNMP Commands
snmp-server filter
This command configures SNMP v3 notification filters. Use the no form to delete an SNMP v3 filter or remove a subtree from a filter.
snmp-server filter <filter-id> <include | exclude> <subtree> [mask {mask}] no snmp-server filter <filter-id> [subtree]
filter-id - A user-defined name that identifies an SNMP v3 notification filter.
(Maximum length: 32 characters)
include - Defines a filter type that includes objects in the MIB subtree.
exclude - Defines a filter type that excludes objects in the MIB subtree.
subtree - The part of the MIB subtree that is to be filtered.
mask - An optional hexadecimal value bit mask to define objects in the MIB
subtree.
Default Setting
None
Command Mode
Global Configuration
Command Usage
• The bridge allows up to 10 notification filters to be created. Each filter can be defined by up to 20 MIB subtree ID entries.
• Use the command more than once with the same filter ID to build a filter that includes or excludes multiple MIB objects. Note that the filter entries are applied in the sequence that they are defined.
• The MIB subtree must be defined in the form “.1.3.6.1” and always start with a “.”.
• The mask is a hexadecimal value with each bit masking the corresponding ID in the MIB subtree. A “1” in the mask indicates an exact match and a “0” indicates a “wild card.” For example, a mask value of 0xFFBF provides a bit mask “1111 1111 1011 1111.” If applied to the subtree
1.3.6.1.2.1.2.2.1.1.23, the zero corresponds to the 10th subtree ID. When there are more subtree IDs than bits in the mask, the mask is padded with ones.
Example
Enterprise AP(config)#snmp-server filter trapfilter include .1 Enterprise AP(config)#snmp-server filter trapfilter exclude .1.3.6.1.2.1.2.2.1.1.23
7
7-49
Command Line Interface
7
snmp-server filter-assignments
This command assigns SNMP v3 notification filters to targets. Use the no form to remove an SNMP v3 filter assignment.
snmp-server filter-ass ignments <target-id> <filter-id> no snmp-server filter-assignments <target-id>
target-id - A user-defined name that identifies a receiver of SNMP
notifications. (Maximum length: 32 characters)
filter-id - A user-defined name that identifies an SNMP v3 notification filter.
(Maximum length: 32 characters)
Default Setting
None
Command Mode
Global Configuration
Example
Enterprise AP(config)#snmp-server filter-assignments mytraps trapfilter Enterprise AP(config)#exit Enterprise AP#show snmp target
Host ID : mytraps User : chris IP Address : 192.168.1.33 UDP Port : 162 ============================= Enterprise AP#show snmp filter-assignments
HostID FilterID
mytraps trapfilter
Enterprise AP(config)#
show snmp groups
This command displays the SNMP v3 pre-defined groups.
Syntax
show snmp groups
Command Mode
Exec
7-50
Example
Enterprise AP#show snmp groups
GroupName :RO SecurityModel :USM SecurityLevel :NoAuthNoPriv
GroupName :RWAuth SecurityModel :USM SecurityLevel :AuthNoPriv
GroupName :RWPriv SecurityModel :USM SecurityLevel :AuthPriv Enterprise AP#
show snmp users
This command displays the SNMP v3 users and settings.
Syntax
show snmp user s
Command Mode
Exec
Example
Enterprise AP#show snmp users
============================================= UserName :chris GroupName :RWPriv AuthType :MD5 Passphrase:**************** PrivType :DES Passphrase:**************** ============================================= Enterprise AP#
SNMP Commands
7
show snmp group-assignments
This command displays the SNMP v3 user group assignments.
Syntax
show snmp group-a ssignments
Command Mode
Exec
7-51
Command Line Interface
7
Example
Enterprise AP#show snmp group-assignments
GroupName :RWPriv UserName :chris Enterprise AP#
Enterprise AP#
show snmp target
This command displays the SNMP v3 notification target settings.
show snmp target
Command Mode
Exec
Example
Enterprise AP#show snmp target
Host ID : mytraps User : chris IP Address : 192.168.1.33 UDP Port : 162 ============================= Enterprise AP#
show snmp filter
This command displays the SNMP v3 notification filter settings.
show snmp filter [filter-id]
filter-id - A user-defined name that identifies an SNMP v3 notification filter.
(Maximum length: 32 characters)
Command Mode
Exec
Example
Enterprise AP#show snmp filter Filter: trapfilter Type: include Subtree: iso.3.6.1.2.1.2.2.1
Type: exclude Subtree: iso.3.6.1.2.1.2.2.1.1.23 ============================= Enterprise AP#
7-52
SNMP Commands
show snmp filter-assignments
This command displays the SNMP v3 notification filter assignments.
show snmp filter-assignments
Command Mode
Exec
Example
Enterprise AP#show snmp filter-assignments
HostID FilterID
mytraps trapfilter Enterprise AP#
7
7-53
Command Line Interface
7
show snmp
This command displays the SNMP configuration settings.
Command Mode
Exec
Example
Enterprise AP#show snmp
SNMP Information ============================================== Service State : Enable Community (ro) : ***** Community (rw) : ***** Location : WC-19 Contact : Paul
EngineId :80:00:07:e5:80:00:00:2e:62:00:00:00:18 EngineBoots:1
Trap Destinations: 1: 192.168.1.9, Community: *****, State: Enabled 2: 0.0.0.0, Community: *****, State: Disabled 3: 0.0.0.0, Community: *****, State: Disabled 4: 0.0.0.0, Community: *****, State: Disabled
dot11InterfaceAGFail Enabled dot11InterfaceBFail Enabled dot11StationAssociation Enabled dot11StationAuthentication Enabled dot11StationReAssociation Enabled dot11StationRequestFail Enabled dot1xAuthFail Enabled dot1xAuthNotInitiated Enabled dot1xAuthSuccess Enabled dot1xMacAddrAuthFail Enabled dot1xMacAddrAuthSuccess Enabled iappContextDataSent Enabled iappStationRoamedFrom Enabled iappStationRoamedTo Enabled localMacAddrAuthFail Enabled localMacAddrAuthSuccess Enabled pppLogonFail Enabled sntpServerFail Enabled configFileVersionChanged Enabled radiusServerChanged Enabled systemDown Enabled systemUp Enabled
============================================= Enterprise AP#
7-54
Flash/File Commands
Flash/File Commands
These commands are used to manage the system code or configuration files.
Table7-10. Flash/File Commands
Command Function Mode Page
bootfile Specifies the file or image used to start up the system GC 7-55
7
copy Copies a code image or configuration between flash
delete Deletes a file or code image Exec 7-57 dir Displays a list of files in flash memory Exec 7-58 show bootfile Displays the name of the current operation code file that
memory and a FTP/TFTP server
booted the system
Exec 7-56
Exec 7-58
bootfile
This command specifies the image used to start up the system.
bootfile <filenam e >
filename - Name of the image file.
Default Setting
None
Command Mode
Exec
Command Usage
• The file name should not contain slashes (\ or /), the leading letter of the file name should not be a period (.), and the maximum length for file names is 32 characters. (Valid characters: A-Z, a-z, 0-9, “.”, “-”, “_”)
• If the file contains an error, it cannot be set as the default file.
Example
Enterprise AP#bootfile -img.bin Enterprise AP#
7-55
Command Line Interface
7
copy
This command copies a boot file, code image, or configuration file between the bridge’s flash memory and a FTP/TFTP server. When you save the configuration settings to a file on a FTP/TFTP server, that file can later be downloaded to the bridge to restore system operation. The success of the file transfer depends on the accessibility of the FTP/TFTP server and the quality of the network connection.
copy <ftp | tftp> file copy config <ftp | tftp>
ftp - Keyword that allows you to copy to/from an FTP server.
tftp - Keyword that allows you to copy to/from a TFTP server.
file - Keyword that allows you to copy to/from a flash memory file.
config - Keyword that allows you to upload the configuration file from flash
memory.
Default Setting
None
Command Mode
Exec
Command Usage
• The system prompts for data required to complete the copy command.
• Only a configuration file can be uploaded to an FTP/TFTP server, but every type of file can be downloaded to the bridge.
The destination file name should not contain slashes (\ or /), letter of the file name should not be a period (.), and the maximum length for file names on the FTP/TFTP server is 255 characters or 32 characters for files on the bridge. (Valid characters: A-Z, a-z, 0-9, “.”, “-”, “_”)
• Due to the size limit of the flash memory, the bridge supports only two operation code files.
• The system configuration file must be named “syscfg” in all copy commands.
Example
The following example shows how to upload the configuration settings to a file on the TFTP server:
Enterprise AP#copy config tftp TFTP Source file name:syscfg TFTP Server IP:192.168.1.19 Enterprise AP#
the leading
7-56
Flash/File Commands
The following example shows how to download a configuration file:
Enterprise AP#copy tftp file
1. Application image
2. Config file
3. Boot block image Select the type of download<1,2,3>: [1]:2 TFTP Source file name:syscfg TFTP Server IP:192.168.1.19 Enterprise AP#
delete
This command deletes a file or image.
delete <filename>
filename - Name of the configuration file or image name.
Default Setting
None
Command Mode
Exec
Caution: Beware of deleting application images from flash memory. At least one
application image is required in order to boot the bridge. If there are multiple image files in flash memory, and the one used to boot the bridge is deleted, be sure you first use the bootfile command to update the application image file booted at startup before you reboot the bridge.
7
Example
This example shows how to delete the test.cfg configuration file from flash memory.
Enterprise AP#delete test.cfg Are you sure you wish to delete this file? <y/n>: Enterprise AP#
Related Commands
bootfile (7-55) dir (7-58)
7-57
Command Line Interface
7
dir
This command displays a list of files in flash memory.
Command Mode
Exec
Command Usage
File information is shown below:
Column Heading Description
File Name The name of the file. Type (2) Operation Code and (5) Configuration file File Size The length of the file in bytes.
Example
The following example shows how to display all file information:
Enterprise AP#dir File Name Type File Size
-------------------------- ---- ----------­dflt-img.bin 2 1044140 syscfg 5 16860 syscfg_bak 5 16860 zz-img.bin 2 1044140
1048576 byte(s) available
Enterprise AP#
show bootfile
This command displays the name of the current operation code file that booted the system.
show snmp filter-assignments
Command Mode
Exec
Example
Enterprise AP#show bootfile
Bootfile Information =================================== Bootfile : ec-img.bin =================================== Enterprise AP#
7-58
RADIUS Client
RADIUS Client
Remote Authentication Dial-in User Service (RADIUS) is a logon authentication protocol that uses software running on a central server to control access for RADIUS-aware devices to the network. An authentication server contains a database of credentials, such as users names and passwords, for each wireless
client that requires access to the bridge.
Table7-11. RADIUS Client
Command Function Mode Page
radius-server address Specifies the RADIUS server GC 7-59 radius-server port Sets the RADIUS server network port GC 7-60 radius-server key Sets the RADIUS encryption key GC 7-60 radius-server retransmit Sets the number of retries GC 7-61
7
radius-server timeout Sets the interval between sending authentication
radius-server port-accounting
radius-server timeout-interim
radius-server radius-mac-format
radius-server vlan-format Sets the format for specifying VLAN IDs on the
show radius Shows the current RADIUS sett ing s Exec 7-6 4
requests Sets the RADIUS Accounting server network port GC 7-62
Sets the interval between transmitting accounting updates to the RADIUS server
Sets the format for specifying MAC addresses on the RADIUS server
RADIUS server
GC 7-61
GC 7-62
GC 7-63
GC 7-63
radius-server address
This command specifies the primary and secondary RADIUS servers.
radius-server [secondary] address <host_ip_address | host_name>
secondary - Secondary server.
host_ip_address - IP address of server.
host_name - Host name of server. (Range: 1-20 characters)
Default Setting
None
7-59
Command Line Interface
7
Command Mode
Global Configuration
Example
Enterprise AP(config)#radius-server address 192.168.1.25 Enterprise AP(config)#
radius-server port
This command sets the RADIUS server network port.
radius-server [secondary] port <port_number>
secondary - Secondary server.
port_number - RADIUS server UDP port used for authentication messages.
(Range: 1024-65535)
Default Setting
1812
Command Mode
Global Configuration
Example
Enterprise AP(config)#radius-server port 181 Enterprise AP(config)#
radius-server key
This command sets the RADIUS encryption key.
Syntax
radius-server [secondary] key <key_string>
secondary - Secondary server.
key_string - Encryption key used to authenticate logon access for client. Do
not use blank spaces in the string. (Maximum length: 20 characters)
Default Setting
DEFAULT
Command Mode
Global Configuration
Example
Enterprise AP(config)#radius-server key green Enterprise AP(config)#
7-60
Loading...
+ 115 hidden pages
Buy Points How it Works FAQ Contact Us Questions and Suggestions Privacy Policy Cookie Policy Terms of Use