HP Wireless Switch Manager Command Reference Guide

Download

Wireless LAN Mobility System

Wireless LAN Switch and Controller Command Reference

3CRWXR10095A, 3CRWX120695A, 3CRWX440095A

http://www.3com.com/

Part No. DUA1009-5CAA01 Published June 2005

3Com Corporation 350 Campus Drive Marlborough, MA USA 01752-3064

Copyright © 2004, 3Com Corporation. All rights reserved. No part of this documentation may be reproduced in any form or by any means or used to make any derivative work (such as translation, transformation, or adaptation) without written permission from 3Com Corporation.

3Com Corporation reserves the right to revise this documentation and to make changes in content from time to time without obligation on the part of 3Com Corporation to provide notification of such revision or change.

3Com Corporation provides this documentation without warranty, term, or condition of any kind, either implied or expressed, including, but not limited to, the implied warranties, terms or conditions of merchantability, satisfactory quality, and fitness for a particular purpose. 3Com may make improvements or changes in the product(s) and/or the program(s) described in this documentation at any time.

If there is any software on removable media described in this documentation, it is furnished under a license agreement included with the product as a separate document, in the hard copy documentation, or on the removable media in a directory file named LICENSE.TXT or !LICENSE.TXT. If you are unable to locate a copy, please contact 3Com and a copy will be provided to you.

UNITED STATES GOVERNMENT LEGEND

If you are a United States government agency, then this documentation and the software described herein are provided to you subject to the following:

All technical data and computer software are commercial in nature and developed solely at private expense. Software is delivered as “Commercial Computer Software” as defined in DFARS 252.227-7014 (June 1995) or as a “commercial item” as defined in FAR 2.101(a) and as such is provided with only such rights as are provided in 3Com’s standard commercial license for the Software. Technical data is provided with limited rights only as provided in DFAR 252.227-7015 (Nov 1995) or FAR 52.227-14 (June 1987), whichever is applicable. You agree not to remove or deface any portion of any legend provided on any licensed program or documentation contained in, or delivered to you in conjunction with, this User Guide.

Unless otherwise indicated, 3Com registered trademarks are registered in the United States and may or may not be registered in other countries.

3Com is a registered trademark of 3Com Corporation. The 3Com logo is a trademark of 3Com Corporation. Mobility Domain, Mobility Point, Mobility Profile, Mobility System, Mobility System Software, MP, MSS, and

SentrySweep are trademarks of Trapeze Networks, Inc. Intel and Pentium are registered trademarks of Intel Corporation. Microsoft, MS-DOS, Windows, Windows XP,

and Windows NT are registered trademarks of Microsoft Corporation. All other company and product names may be trademarks of the respective companies with which they are

associated.

ENVIRONMENTAL STATEMENT

It is the policy of 3Com Corporation to be environmentally-friendly in all operations. To uphold our policy, we are committed to:

Establishing environmental performance standards that comply with national legislation and regulations. Conserving energy, materials and natural resources in all operations. Reducing the waste generated by all operations. Ensuring that all waste conforms to recognized environmental

standards. Maximizing the recyclable and reusable content of all products. Ensuring that all products can be recycled, reused and disposed of safely. Ensuring that all products are labelled according to recognized environmental standards. Improving our environmental record on a continual basis.

End of Life Statement

3Com processes allow for the recovery, reclamation and safe disposal of all end-of-life electronic components.

Regulated Materials Statement

3Com products do not contain any hazardous or ozone-depleting material.

Environmental Statement about the Documentation

The documentation for this product is printed on paper that comes from sustainable, managed forests; it is fully biodegradable and recyclable, and is completely chlorine-free. The varnish is environmentally-friendly, and the inks are vegetable-based with a low heavy-metal content.

CONTENTS

ABOUT THIS GUIDE

Conventions 19 Documentation 20 Documentation Comments 21

1 USING THE COMMAND-LINE INTERFACE

Overview 23 CLI Conventions 24

Command Prompts 24 Syntax Notation 24 Text Entry Conventions and Allowed Characters 25 MAC Address Notation 25 IP Address and Mask Notation 26 User Globs, MAC Address Globs, and VLAN Globs 26 Port Lists 28 Virtual LAN Identification 29

Command-Line Editing 29

Keyboard Shortcuts 29 History Buffer 30 Tabs 30 Single-Asterisk (*) Wildcard Character 30

Double-Asterisk (**) Wildcard Characters 30 Using CLI Help 31 Understanding Command Descriptions 32

2 ACCESS COMMANDS

Commands by Usage 33 disable 33 enable 34 quit 34 set enablepass 35

3 SYSTEM SERVICE COMMANDS

Commands by Usage 37 clear banner motd 38 clear history 38 clear prompt 39 clear system 39 display banner motd 40 display base-information 41 display license 42 display system 42 help 45 history 46 set auto-config 46 set banner motd 49 set confirm 50 set length 51 set license 52 set prompt 53 set system contact 54 set system countrycode 54 set system ip-address 57 set system location 58 set system name 58

4 PORT COMMANDS

Commands by Usage 61 clear dap 62 clear port counters 63 clear port-group 63 clear port name 64 clear port preference 64 clear port type 65 display port counters 66 display port-group 67 display port poe 68 display port preference 69 display port status 70

monitor port counters 72 reset port 77 set dap 77 set port 80 set port-group 81 set port name 82 set port negotiation 83 set port poe 84 set port preference 85 set port speed 85 set port trap 86 set port type ap 87 set port type wired-auth 91

5 VLAN COMMANDS

Commands by usage 95 clear fdb 96 clear vlan 97 display fdb 98 display fdb agingtime 101 display fdb count 101 display roaming station 102 display roaming vlan 104 display tunnel 105 display vlan config 106 set fdb 107 set fdb agingtime 108 set vlan name 109 set vlan port 110 set vlan tunnel-affinity 111

6 IP SERVICES COMMANDS

Commands by Usage 113 clear interface 115 clear ip alias 116 clear ip dns domain 117 clear ip dns server 117

clear ip route 118 clear ip telnet 119 clear ntp server 119 clear ntp update-interval 120 clear snmp community 121 clear snmp notify target 121 clear snmp profile 122 clear snmp trap receiver 122 clear snmp usm 122 clear summertime 123 clear system ip-address 124 clear timezone 124 display arp 125 display interface 126 display ip alias 127 display ip dns 128 display ip https 129 display ip route 131 display ip telnet 133 display ntp 134 display snmp configuration 136 display summertime 138 display timedate 138 display timezone 139 ping 140 set arp 141 set arp agingtime 142 set interface 143 set interface dhcp-client 144 set interface dhcp-server 145 set interface status 146 set ip alias 147 set ip dns 147 set ip dns domain 148 set ip dns server 149 set ip https server 150 set ip route 150 set ip snmp server 152

set ip ssh 153 set ip ssh absolute-timeout 154 set ip ssh idle-timeout 155 set ip ssh server 155 set ip telnet 156 set ip telnet server 157 set ntp 158 set ntp server 158 set ntp update-interval 159 set snmp community 160 set snmp notify target 162 set snmp profile 167 set snmp protocol 172 set snmp security 173 set snmp trap 174 set snmp trap receiver 174 set snmp usm 174 set summertime 177 set system ip-address 179 set timedate 180 set timezone 181 display dhcp-client 182 display dhcp-server 183 display snmp community 186 display snmp counters 187 display snmp notify profile 188 display snmp notify target 189 display snmp status 191 display snmp usm 193 telnet 195 traceroute 196

7 AAA COMMANDS

Commands by Usage 199 clear accounting 201 clear authentication admin 202 clear authentication console 203

clear authentication dot1x 204 clear authentication last-resort 205 clear authentication mac 205 clear authentication proxy 206 clear authentication web 207 clear location policy 208 clear mac-user 209 clear mac-user attr 209 clear mac-user group 210 clear mac-usergroup 211 clear mac-usergroup attr 212 clear mobility-profile 213 clear user 213 clear user attr 214 clear user group 215 clear usergroup 215 clear usergroup attr 216 display aaa 217 display accounting statistics 220 display location policy 222 display mobility-profile 222 set accounting {admin | console} 223 set accounting {dot1x | mac | web} 224 set authentication admin 226 set authentication console 228 set authentication dot1x 230 set authentication last-resort 234 set authentication mac 236 set authentication proxy 238 set authentication web 239 set location policy 241 set mac-user 245 set mac-user attr 246 set mac-usergroup attr 252 set mobility-profile 253 set mobility-profile mode 255 set user 256 set user attr 257

set user group 258 set usergroup 259 set web-aaa 260

8 MOBILITY DOMAIN COMMANDS

Commands by Usage 261 clear mobility-domain 262 clear mobility-domain member 262 display mobility-domain config 263 display mobility-domain status 263 set mobility-domain member 265 set mobility-domain mode member seed-ip 266 set mobility-domain mode seed domain-name 267

9 MANAGED ACCESS POINT COMMANDS

MAP Access Point Commands by Usage 269 clear {ap | dap} radio 272 clear radio-profile 274 clear service-profile 275 clear service-profile 276 display {ap | dap} config 277 display {ap | dap} counters 280 display {ap | dap} qos-stats 282 display {ap | dap} etherstats 284 display {ap | dap} group 285 display {ap | dap} status 287 display auto-tune attributes 290 display auto-tune neighbors 292 display dap connection 294 display dap global 295 display dap unconfigured 297 display radio-profile 298 display service-profile 302 reset {ap | dap} 305 set dap auto 306 set dap auto mode 308 set dap auto radiotype 309

set {ap | dap} bias 310 set {ap | dap} blink 311 set dap fingerprint 312 set {ap | dap} group 313 set {ap | dap} name 315 set {ap | dap} radio antennatype 315 set {ap | dap} radio auto-tune max-power 317 set {ap | dap} radio auto-tune max-retransmissions 318 set {ap | dap} radio channel 320 set {ap | dap} radio auto-tune min-client-rate 321 set {ap | dap} radio mode 323 set {ap | dap} radio radio-profile 324 set {ap | dap} radio tx-power 325 set dap security 326 set {ap | dap} upgrade-firmware 328 set radio-profile 11g-only 329 set radio-profile active-scan 330 set radio-profile auto-tune channel-config 330 set radio-profile auto-tune channel-holddown 331 set radio-profile auto-tune channel-interval 332 set radio-profile auto-tune power-backoff- timer 333 set radio-profile auto-tune power-config 334 set radio-profile auto-tune power-interval 335 set radio-profile beacon-interval 336 set radio-profile countermeasures 337 set radio-profile dtim-interval 338 set radio-profile frag-threshold 339 set radio-profile long-retry 339 set radio-profile max-rx-lifetime 340 set radio-profile max-tx-lifetime 341 set radio-profile mode 342 set radio-profile preamble-length 345 set radio-profile rts-threshold 346 set radio-profile service-profile 346 set radio-profile short-retry 350 set radio-profile wmm 350 set service-profile auth-dot1x 351 set service-profile auth-fallthru 352

set service-profile auth-psk 354 set service-profile beacon 355 set service-profile cipher-ccmp 356 set service-profile cipher-tkip 357 set service-profile cipher-wep104 358 set service-profile cipher-wep40 359 set service-profile psk-phrase 360 set service-profile psk-raw 361 set service-profile rsn-ie 362 set service-profile shared-key-auth 363 set service-profile ssid-name 363 set service-profile ssid-type 364 set service-profile tkip-mc-time 365 set service-profile web-aaa-form 366 set service-profile wep active-multicast-index 367 set service-profile wep active-unicast-index 368 set service-profile wep key-index 369 set service-profile wpa-ie 370

10 STP COMMANDS

STP Commands by Usage 371 clear spantree portcost 372 clear spantree portpri 373 clear spantree portvlancost 373 clear spantree portvlanpri 374 clear spantree statistics 375 display spantree 376 display spantree backbonefast 378 display spantree blockedports 379 display spantree portfast 380 display spantree portvlancost 381 display spantree statistics 381 display spantree uplinkfast 387 set spantree 388 set spantree backbonefast 389 set spantree fwddelay 390 set spantree hello 390

set spantree maxage 391 set spantree portcost 392 set spantree portfast 393 set spantree portpri 394 set spantree portvlancost 395 set spantree portvlanpri 396 set spantree priority 397 set spantree uplinkfast 397

11 IGMP SNOOPING COMMANDS

Commands by usage 399 clear igmp statistics 400 display igmp 400 display igmp mrouter 404 display igmp querier 405 display igmp receiver-table 407 display igmp statistics 409 set igmp 411 set igmp lmqi 412 set igmp mrouter 413 set igmp mrsol 414 set igmp mrsol mrsi 414 set igmp oqi 415 set igmp proxy-report 416 set igmp qi 417 set igmp qri 418 set igmp querier 419 set igmp receiver 419 set igmp rv 420

12 SECURITY ACL COMMANDS

Security ACL Commands by Usage 423 clear security acl 424 clear security acl map 425 commit security acl 427 display security acl dscp 428 display security acl 429

display security acl hits 430 display security acl info 431 display security acl map 432 display security acl resource-usage 433 hit-sample-rate 437 rollback security acl 438 set security acl 439 set security acl map 444

13 CRYPTOGRAPHY COMMANDS

Commands by Usage 447 crypto ca-certificate 448 crypto certificate 449 crypto generate key 451 crypto generate request 452 crypto generate self-signed 454 crypto otp 456 crypto pkcs12 457 display crypto ca-certificate 459 display crypto certificate 460 display crypto key ssh 461

14 RADIUS AND SERVER GROUP COMMANDS

Commands by Usage 463 clear radius 464 clear radius client system-ip 465 clear radius proxy client 466 clear radius proxy port 466 clear radius server 467 clear server group 467 set radius 468 set radius client system-ip 469 set radius proxy client 470 set radius proxy port 471 set radius server 472 set server group 474 set server group load-balance 475

15 802.1X MANAGEMENT COMMANDS

Commands by Usage 477 clear dot1x bonded-period 478 clear dot1x max-req 479 clear dot1x port-control 479 clear dot1x quiet-period 480 clear dot1x reauth-max 481 clear dot1x reauth-period 481 clear dot1x timeout auth-server 482 clear dot1x timeout supplicant 482 clear dot1x tx-period 483 display dot1x 483 set dot1x authcontrol 486 set dot1x bonded-period 487 set dot1x key-tx 488 set dot1x max-req 489 set dot1x port-control 490 set dot1x quiet-period 491 set dot1x reauth 491 set dot1x reauth-max 492 set dot1x reauth-period 493 set dot1x timeout auth-server 493 set dot1x timeout supplicant 494 set dot1x tx-period 494 set dot1x wep-rekey 495 set dot1x wep-rekey-period 496

16 SESSION MANAGEMENT COMMANDS

Commands by Usage 497 clear sessions 497 clear sessions network 498 display sessions 500 display sessions network 503

17 RF DETECTION COMMANDS

Commands by Usage 511 clear rfdetect 512 clear rfdetect attack-list 512 clear rfdetect black-list 513 clear rfdetect countermeasures mac 513 clear rfdetect ignore 513 clear rfdetect ssid-list 514 clear rfdetect vendor-list 515 display rfdetect counters 515 display rfdetect countermeasures 517 display rfdetect data 518 display rfdetect ignore 520 display rfdetect mobility-domain 521 display rfdetect ssid-list 525 display rfdetect vendor-list 525 display rfdetect visible 526 set rfdetect active-scan 528 set rfdetect attack-list 528 set rfdetect black-list 529 set rf detect countermeasures 530 set rfdetect countermeasures mac 530 set rfdetect ignore 530 set rfdetect log 531 set rfdetect signature 532 set rfdetect ssid-list 532 set rfdetect vendor-list 533 display rfdetect attack-list 534 display rfdetect black-list 535 display rfdetect clients 535

18 FILE MANAGEMENT COMMANDS

Commands by Usage 539 backup 540 clear boot config 541 copy 542 delete 544

dir 545 display boot 547 display config 548 display version 549 load config 551 mkdir 553 reset system 554 restore 555 rmdir 556 save config 557 set boot configuration-file 558 set boot partition 559

19 TRACE COMMANDS

Commands by Usage 561 clear log trace 562 clear trace 562 display trace 563 save trace 564 set trace authentication 564 set trace authorization 565 set trace dot1x 566 set trace sm 567

SNOOP COMMANDS

clear snoop 570 clear snoop map 570 set snoop 571 set snoop map 574 set snoop mode 575 display snoop 576 display snoop info 577 display snoop map 577 display snoop stats 578

21 SYSTEM LOG COMMANDS

Commands by Usage 581 clear log 581 display log buffer 582 display log config 584 display log trace 585 set log 586 set log trace mbytes 589

22 BOOT PROMPT COMMANDS

Boot Prompt Commands by Usage 591 autoboot 592 boot 593 change 595 create 596 delete 597 diag 598 dir 598 display 599 fver 601 help 602 ls 602 next 603 reset 604 test 605 version 606

A OBTAINING SUPPORT FOR YOUR PRODUCT

Register Your Product 607 Purchase Value-Added Services 607 Troubleshoot Online 608 Access Software Downloads 608 Telephone Technical Support and Repair 608 Contact Us 609

INDEX

ABOUT THIS GUIDE

This command reference explains Mobility System Software (MSS™) command line interface (CLI) that you enter on a 3Com WXR100 Remote Office Wireless LAN Switch, WX1200 Wireless Switch, or WX4400 Wireless LAN Controller to configure and manage the Mobility System™ wireless LAN (WLAN).

Read this reference if you are a network administrator responsible for managing WXR100, WX1200, or WX4400 wireless switches and their Managed Access Points (MAPs) in a network.

If release notes are shipped with your product and the information there differs from the information in this guide, follow the instructions in the release notes.

Most user guides and release notes are available in Adobe Acrobat Reader Portable Document Format (PDF) or HTML on the 3Com World Wide Web site:

http://www.3com.com/

Conventions Table 1 and Table 2 list conventions that are used throughout this guide.

Tab le 1 Notice Icons

Icon Notice Type Description

Information note Information that describes important features or

instructions

Caution Information that alerts you to potential loss of data or

potential damage to an application, system, or device

20 ABOUT THIS GUIDE

This manual uses the following text and syntax conventions:

Tab le 2 Text Conventions

Convention Description

Monospace text Sets off command syntax or sample commands and system

responses.

Bold text Highlights commands that you enter or items you select. Italic text Designates command variables that you replace with

appropriate values, or highlights publication titles or words

requiring special emphasis. [ ] (square brackets) Enclose optional parameters in command syntax. { } (curly brackets) Enclose mandatory parameters in command syntax. | (vertical bar) Separates mutually exclusive options in command syntax. Keyboard key names If you must press two or more keys simultaneously, the key

names are linked with a plus sign (+). Example:

Press Ctrl+Alt+Del

Words in italics Italics are used to:

 Emphasize a point.

 Denote a new term at the place where it is defined in the

text.

 Highlight an example string, such as a username or SSID.

Documentation The MSS documentation set includes the following documents.

 Wireless LAN Switch Manager (3WXM) Release Notes

These notes provide information about the system software release, including new features and bug fixes.

 Wireless LAN Switch and Controller Release Notes

These notes provide information about the system software release, including new features and bug fixes.

 Wireless LAN Switch and Controller Quick Start Guide

This guide provides instructions for performing basic setup of secure (802.1X) and guest (WebAAA Domain for roaming, and for accessing a sample network plan in 3WXM for advanced configuration and management.

™) access, for configuring a Mobility

Documentation Comments 21

 Wireless LAN Switch Manager Reference Manual

This manual shows you how to plan, configure, deploy, and manage a Mobility System wireless LAN (WLAN) using the 3Com Wireless LAN Switch Manager (3WXM).

 Wireless LAN Switch Manager User’s Guide

This guide shows you how to plan, configure, deploy, and manage a Mobility System wireless LAN (WLAN) using the 3Com Wireless LAN Switch Manager (3WXM). It contains information about recommended system requirements you should meet for optimum 3WXM performance, installing 3WXM client and 3WXM Services software, and an introduction to using the 3WXM interface.

 Wireless LAN Switch and Controller Installation and Basic

Configuration Guide

This guide provides instructions and specifications for installing a WX wireless switch in a Mobility System WLAN, and basic instructions for deploying a secure IEEE 802.11 wireless service.

 Wireless LAN Switch and Controller Configuration Guide

Documentation Comments

This guide provides instructions for configuring and managing the system through the Mobility System Software (MSS) CLI.

 Wireless LAN Switch and Controller Command Reference

This reference provides syntax information for all MSS commands supported on WX switches.

Your suggestions are very important to us. They will help make our documentation more useful to you. Please e-mail comments about this document to 3Com at:

pddtechpubs_comments@3com.com

Please include the following information when contacting us:

 Document title  Document part number and revision (on the title page)  Page number (if appropriate)

22 ABOUT THIS GUIDE

Example:

 Wireless LAN Switch and Controller Configuration Guide  Part number 730-9502-0071, Revision B  Page 25

Please note that we can only respond to comments and questions about 3Com product documentation at this e-mail address. Questions related to Technical Support or sales should be directed in the first instance to your network supplier.

USING THE COMMAND-LINE

INTERFACE

This chapter discusses the 3Com Wireless Switch Manager (3WXM) command-line interface (CLI). Described are the CLI conventions (see “CLI Conventions” on page 24), editing on the command line (see “Command-Line Editing” on page 29), using the CLI help feature (see “Using CLI Help” on page 31), and information about the command descriptions in this reference (see “Understanding Command Descriptions” on page 32).

Overview Mobility System Software (MSS) operates a 3Com Mobility System

wireless LAN (WLAN) consisting of 3Com Wireless Switch Manager (3WXM) software and 3Com Wireless LAN Switch or 3Com Wireless LAN Controller (WX switch) and 3Com Wireless LAN Managed Access Point (MAP) hardware. There is a command-line interface (CLI) on the WX switch that you can use to configure and manage the WX and its attached access points.

You configure the wireless LAN switches and access points primarily with set, clear, and display commands. Use set commands to change parameters. Use clear commands to reset parameters to their defaults. In many cases, you can overwrite a parameter with another set command. Use display commands to show the current configuration and monitor the status of network operations.

The wireless LAN switches support two connection modes:

 Administrative access mode, which enables the network administrator

to connect to the WX switch and configure the network

 Network access mode, which enables network users to connect

through the WX switch to access the network

24 CHAPTER 1: USING THE COMMAND-LINE INTERFACE

CLI Conventions Be aware of the following MSS CLI conventions for command entry:

 “Command Prompts” on page 24  “Syntax Notation” on page 24  “Text Entry Conventions and Allowed Characters” on page 25  “User Globs, MAC Address Globs, and VLAN Globs” on page 26  “Port Lists” on page 28  “Virtual LAN Identification” on page 29

Command Prompts By default, the MSS CLI provides the following prompt for restricted

users. The mmmm portion shows the wireless LAN switch model number (for example, 1200) and the aabbcc portion shows the last three octets of the MAC address of the switch.

WXmmmm-aabbcc>

After you become enabled as an administrative user by typing enable and supplying a suitable password, MSS displays the following prompt:

WXmmmm-aabbcc#

For information about changing the CLI prompt on a wireless LAN switch, see “set prompt” on page 53.

Syntax Notation The MSS CLI uses standard syntax notation:

 Bold monospace font identifies the command and keywords you must

type. For example:

set enablepass

 Italics indicate a placeholder for a value. For example, you replace

vlan-id in the following command with a virtual LAN (VLAN) ID:

clear interface vlan-id ip

 Curly brackets ({}) indicate a mandatory parameter, and square

brackets ([]) indicate an optional parameter. For example, you must enter dynamic or port and a port list in the following command, but a VLAN ID is optional:

clear fdb {dynamic | port port-list} [vlan vlan-id]

CLI Conventions 25

 A vertical bar (|) separates mutually exclusive options within a list of

possibilities. For example, you enter either enable or disable, not both, in the following command:

set port {enable | disable} port-list

Text Entry

Conventions and

Allowed Characters

MAC Address

Notation

Unless otherwise indicated, the MSS CLI accepts standard ASCII alphanumeric characters, except for tabs and spaces, and is case-insensitive.

The CLI has specific notation requirements for MAC addresses, IP addresses, and masks, and allows you to group usernames, MAC addresses, virtual LAN (VLAN) names, and ports in a single command.

3Com recommends that you do not use the same name with different capitalizations for VLANs or access control lists (ACLs). For example, do not configure two separate VLANs with the names red and RED.

The CLI does not support the use of special characters including the following in any named elements such as SSIDs and VLANs: ampersand (&), angle brackets (< >), number sign (#), question mark (?), or quotation marks (“”).

In addition, the CLI does not support the use of international characters such as the accented É in DÉCOR.

MSS displays MAC addresses in hexadecimal numbers with a colon (:) delimiter between bytes — for example, 00:01:02:1a:00:01. You can enter MAC addresses with either hyphen (-) or colon (:) delimiters, but colons are preferred.

For shortcuts:

 You can exclude leading zeros when typing a MAC address. MSS

displays of MAC addresses include all leading zeros.

 In some specified commands, you can use the single-asterisk (*)

wildcard character to represent from 1 byte to 5 bytes of a MAC address. (For more information, see “MAC Address Globs” on page 27.)

26 CHAPTER 1: USING THE COMMAND-LINE INTERFACE

IP Address and Mask

Notation

User Globs, MAC

Address Globs, and

VLAN Globs

MSS displays IP addresses in dotted decimal notation — for example,

192.168.1.111. MSS makes use of both subnet masks and wildcard masks.

Subnet Masks

Unless otherwise noted, use classless interdomain routing (CIDR) format to express subnet masks — for example, 192.168.1.112/24. You indicate the subnet mask with a forward slash (/) and specify the number of bits in the mask.

Wildcard Masks

Security access control lists (ACLs) use source and destination IP addresses and wildcard masks to determine whether the wireless LAN switch filters or forwards IP packets. Matching packets are either permitted or denied network access. The ACL checks the bits in IP addresses that correspond to any 0s (zeros) in the mask, but does not check the bits that correspond to 1s (ones) in the mask. You specify the wildcard mask in dotted decimal notation.

For example, the address 10.0.0.0 and mask 0.255.255.255 match all IP addresses that begin with 10 in the first octet.

Name “globbing” is a way of using a wildcard pattern to expand a single element into a list of elements that match the pattern. MSS accepts user globs, MAC address globs, and VLAN globs. The order in which globs appear in the configuration is important, because once a glob is matched, processing stops on the list of globs.

User Globs

A user glob is shorthand method for matching an authentication, authorization, and accounting (AAA) command to either a single user or a set of users.

A user glob can be up to 80 characters long and cannot contain spaces or tabs. The double-asterisk (**) wildcard characters with no delimiter characters match all usernames. The single-asterisk (*) wildcard character matches any number of characters up to, but not including, a delimiter character in the glob. Valid user glob delimiter characters are the at (@) sign and the period (.).

CLI Conventions 27

Table 3 gives examples of user globs.

Tab le 3 User Globs

User Glob User(s) Designated

jose@example.com User jose at example.com *@example.com All users at example.com whose usernames do not

*@marketing.example.com All marketing users at example.com whose

*.*@marketing.example.com All marketing users at example.com whose

* All users with usernames that have no delimiters EXAMPLE\* All users in the Windows Domain EXAMPLE with

EXAMPLE\*.* All users in the Windows Domain EXAMPLE whose

** All users

contain periods — for example, jose@example.com and tamara@example.com, but not nin.wong@example.com, because nin.wong contains a period

usernames do not contain periods

usernames contain periods

usernames that have no delimiters

usernames contain periods

MAC Address Globs

A media access control (MAC) address glob is a similar method for matching some authentication, authorization, and accounting (AAA) and forwarding database (FDB) commands to one or more 6-byte MAC addresses. In a MAC address glob, you can use a single asterisk (*) as a wildcard to match all MAC addresses, or as follows to match from 1 byte to 5 bytes of the MAC address:

00:* 00:01:* 00:01:02:* 00:01:02:03:* 00:01:02:03:04:*

For example, the MAC address glob 02:06:8c* represents all MAC addresses starting with 02:06:8c. Specifying only the first 3 bytes of a MAC address allows you to apply commands to MAC addresses based on an organizationally unique identity (OUI).

28 CHAPTER 1: USING THE COMMAND-LINE INTERFACE

VLAN Globs

A VLAN glob is a method for matching one of a set of local rules on an wireless LAN switch, known as the location policy, to one or more users. MSS compares the VLAN glob, which can optionally contain wildcard characters, against the VLAN-Name attribute returned by AAA, to determine whether to apply the rule.

To match all VLANs, use the double-asterisk (**) wildcard characters with no delimiters. To match any number of characters up to, but not including, a delimiter character in the glob, use the single-asterisk (*) wildcard. Valid VLAN glob delimiter characters are the at (@) sign and the period (.).

For example, the VLAN glob bldg4.* matches bldg4.security and bldg4.hr and all other VLAN names with bldg4. at the beginning.

Matching Order for Globs

In general, the order in which you enter AAA commands determines the order in which MSS matches the user, MAC address, or VLAN to a glob. To verify the order, view the output of the display aaa or display config command. MSS checks globs that appear higher in the list before items lower in the list and uses the first successful match.

Port Lists The physical Ethernet ports on a WX switch can be set for connection to

MAP access points, authenticated wired users, or the network backbone. You can include a single port or multiple ports in one MSS CLI command by using the appropriate list format.

The ports on a WX switch are numbered 1 and 2 (for the 3Com Remote Office Wireless LAN Switch WXR100), 1 through 4 (for the 3Com Wireless LAN Controller WX4400), and 1 through 8 (for the 3Com Wireless Lan Switch WX1200). No port 0 exists on the WX switch. You can include a single port or multiple ports in a command that includes port port-list. Use one of the following formats for port-list:

 A single port number. For example:

WX1200# set port enable 6

 A comma-separated list of port numbers, with no spaces. For

example:

WX1200# display port poe 1,2,4

Command-Line Editing 29

 A hyphen-separated range of port numbers, with no spaces. For

example:

WX1200# reset port 1-3

 Any combination of single numbers, lists, and ranges. Hyphens take

precedence over commas. For example:

WX1200# display port status 1-3,6

Virtual LAN

Identification

The names of virtual LANs (VLANs), which are used in Mobility Domain™ communications, are set by you and can be changed. In contrast, VLAN ID numbers, which the wireless LAN uses locally, are determined when the VLAN is first configured and cannot be changed. Unless otherwise indicated, you can refer to a VLAN by either its VLAN name or its VLAN number. CLI set and display commands use a VLAN’s name or number to uniquely identify the VLAN within the WX.

Command-Line Editing

MSS editing functions are similar to those of many other network operating systems.

Keyboard Shortcuts The following table lists the keyboard shortcuts for entering and editing

CLI commands.

Tab le 4 Keyboard Shortcuts

Keyboard Shortcut(s) Function

Ctrl+A Jumps to the first character of the command line. Ctrl+B or Left Arrow key Moves the cursor back one character. Ctrl+C Escapes and terminates prompts and tasks. Ctrl+D Deletes the character at the cursor. Ctrl+E Jumps to the end of the current command line. Ctrl+F or Right Arrow key Moves the cursor forward one character. Ctrl+K Deletes from the cursor to the end of the command

Ctrl+L or Ctrl+R Repeats the current command line on a new line. Ctrl+N or Down Arrow key Enters the next command line in the history buffer. Ctrl+P or Up Arrow key Enters the previous command line in the history

line.

buffer.

30 CHAPTER 1: USING THE COMMAND-LINE INTERFACE

Tab le 4 Keyboard Shortcuts (continued)

Keyboard Shortcut(s) Function

Ctrl+U or Ctrl+X Deletes characters from the cursor to the beginning

Ctrl+W Deletes the last word typed. Esc B Moves the cursor back one word. Esc D Deletes characters from the cursor forward to the

Delete key or Backspace key Erases mistake made during command entry. Reenter

History Buffer The history buffer stores the last 63 commands you entered during a

terminal session. You can use the Up Arrow and Down Arrow keys to select a command that you want to repeat from the history buffer.

Ta bs The MSS CLI uses the Tab key for command completion. You can type

the first few characters of a command and press the Tab key to show the command(s) that begin with those characters. For example:

WX1200# display i <Tab> ifm display interfaces maintained by the interface manager igmp display igmp information interface display interfaces ip display ip information

of the command line.

end of the word.

the command after using this key.

Single-Asterisk (*)

Wildcard Character

Double-Asterisk (**)

Wildcard Characters

You can use the single-asterisk (*) wildcard character in globbing. (For details, see “User Globs, MAC Address Globs, and VLAN Globs” on page 26.)

The double-asterisk (**) wildcard character matches all usernames. For details, see “User Globs” on page 26.

Using CLI Help 31

Using CLI Help The CLI provides online help. To see the full range of commands available

at your access level, type the help command. For example:

WX1200# help Commands:

------------------------------------------------------------------------clear Clear, use 'clear help' for more information commit Commit the content of the ACL table copy Copy from filename (or url) to filename (or url) crypto Crypto, use 'crypto help' for more information delete Delete url dir Show list of files on flash device disable Disable privileged mode display Display, use 'display help' for more information exit Exit from the Admin session help Show this help screen history Show contents of history substitution buffer hit-sample-rate Set NP hit-counter sample rate load Load, use 'load help' for more information logout Exit from the Admin session monitor Monitor, use 'monitor help' for more information ping Send echo packets to hosts quit Exit from the Admin session reset Reset, use 'reset help' for more information rollback Remove changes to the edited ACL table save Save the running configuration to persistent storage set Set, use 'set help' for more information telnet telnet IP address [server port] traceroute Print the route packets take to network host

For more information on help, see “help” on page 45.

To see a subset of the online help, type the command for which you want more information. For example, to show all the commands that begin with the letter i, type the following command:

WX1200# display i? ifm Show interfaces maintained by the interface manager igmp Show igmp information interface Show interfaces ip Show ip information

32 CHAPTER 1: USING THE COMMAND-LINE INTERFACE

To see all the variations, type one of the commands followed by a question mark (?). For example:

WX1200# display ip ? alias display ip aliases dns display DNS status https display ip https route display ip route table telnet display ip telnet

To determine the port on which Telnet is running, type the following command:

WX1200# display ip telnet Server Status Port

---------------------------------Enabled 23

Understanding Command Descriptions

Each command description in the 3Com Mobility System Software Command Reference contains the following elements:

 A command name, which shows the keywords but not the variables.

For example, the following command name appears at the top of a command description and in the index:

set {ap | dap} name

The set {ap | dap} name command has the following complete syntax:

set {ap port-list | dap dap-num} name name

 A brief description of the command’s functions.  The full command syntax.  Any command defaults.  The command access, which is either enabled or all. All indicates that

anyone can access this command. Enabled indicates that you must enter the enable password before entering the command.

 The command history, which identifies the MSS version in which the command

was introduced and the version numbers of any subsequent updates.

 Special tips for command usage. These are omitted if the command

requires no special usage.

 One or more examples of the command in context, with the

appropriate system prompt and response.

 One or more related commands.

ACCESS COMMANDS

This chapter describes access commands used to control access to the Mobility Software System (MSS) command-line interface (CLI).

Commands by Usage

disable Changes the CLI session from enabled mode to restricted access.

This chapter presents access services commands alphabetically. Use Table 5 to located commands in this chapter based on their use.

Tab le 5 Access Commands by Usage

Type Command Access Privileges “enable” on page 34

“set enablepass” on page 35 “disable” on page 33 “quit” on page 34

Syntax —

Defaults — None.

Access — Enabled.

History — Introduced in MSS Version 3.0.

Examples — The following command restricts access to the CLI for the

current session:

WX1200# disable WX1200>

disable

See Also

 enable on page 34

34 CHAPTER 2: ACCESS COMMANDS

enable Places the CLI session in enabled mode, which provides access to all

commands required for configuring and monitoring the system.

Syntax —

enable

Access — All.

History — Introduced in MSS Version 3.0.

Usage — MSS displays a password prompt to challenge you with the

enable password. To enable a session, your or another administrator must have configured the enable password to this WX switch with the set

enablepass command.

Examples — The following command plus the enable password provides

enabled access to the CLI for the current sessions:

WX1200> enable Enter password: password WX1200#

See Also

 set enablepass on page 35  set confirm on page 50

quit Exit from the CLI session.

Syntax — quit

Defaults — None.

Access — All.

History — Introduced in MSS Version 3.0.

Examples — To end the administrator’s session, type the following

command:

WX1200> quit

set enablepass 35

set enablepass Sets the password that provides enabled access (for configuration and

monitoring) to the WX switch.

Syntax —

set enablepass

Defaults — None.

Access — Enabled.

History — Introduced in MSS Version 3.0.

Usage — After typing the set enablepass command, press Enter. If you

are entering the first enable password on this WX switch, press Enter at the Enter old password prompt. Otherwise, type the old password. Then type a password of up to 32 alphanumeric characters with no spaces, and reenter it at the Retype new password prompt.

CAUTION: Be sure to use a password that you will remember. If you lose the enable password, the only way to restore it causes the system to return to its default settings and wipes out the configuration.

Examples — The following example illustrates the prompts that the system displays when the enable password is changed. The passwords you enter are not displayed.

WX1200# set enablepass Enter old password: old-password Enter new password: new-password Retype new password: new-password Password changed

See Also

 disable on page 33  enable on page 34

36 CHAPTER 2: ACCESS COMMANDS

SYSTEM SERVICE COMMANDS

Use system services commands to configure and monitor system information for a WX switch.

Commands by Usage

This chapter presents system services commands alphabetically. Use Table 6 to located commands in this chapter based on their use.

Tab le 6 System Services Commands by Usage

Type Command Auto-Config set auto-config on page 46 Display clear banner motd on page 38

set banner motd on page 49 display banner motd on page 40 set confirm on page 50 set length on page 51

System Identification set prompt on page 53

set system name on page 58 set system location on page 58 set system contact on page 54 set system countrycode on page 54 set system ip-address on page 57 display system on page 42 clear system on page 39

clear prompt on page 39 Help help on page 45 History history on page 46

38 CHAPTER 3: SYSTEM SERVICE COMMANDS

Tab le 6 System Services Commands by Usage (continued)

Type Command

clear history on page 38

License display license on page 42

set license on page 52

Technical Support display base-information on page 41

clear banner motd Deletes the message-of-the-day (MOTD) banner that is displayed before

the login prompt for each CLI session on the wireless LAN switch.

Syntax —

clear banner motd

Defaults — None.

Access — Enabled.

History — Introduced in MSS Version 3.0.

Examples — To clear a banner, type the following command:

WX4400# clear banner motd success: change accepted

As an alternative to clearing the banner, you can overwrite the existing banner with an empty banner by typing the following command:

set banner motd ^^

See Also

 display banner motd on page 40  set banner motd on page 49

clear history Deletes the command history buffer for the current CLI session.

Syntax —

clear history

Defaults — None.

Access — All.

History — Introduced in MSS Version 3.0.

clear prompt 39

Examples — To clear the history buffer, type the following command:

WX4400# clear history success: command buffer was flushed.

See Also

 history on page 46

clear prompt Resets the system prompt to its previously configured value. If the prompt

was not configured previously, this command resets the prompt to its default.

Syntax —

clear prompt

Defaults — None.

Access — Enabled.

History — Introduced in MSS Version 3.0.

Examples — To reset the prompt, type the following command:

wildebeest# clear prompt success: change accepted. WX4400-01c840#

See Also

 set prompt on page 53. (For information about default prompts, see

“Command Prompts” on page 24.)

clear system Clears the system configuration of the specified information.

CAUTION: If you change the IP address, any currently configured Mobility Domain operations cease. You must reset the Mobility Domain.

Syntax —

location | name]

clear system [contact | countrycode | ip-address |

 contact — Resets the name of contact person for the WX switch to

null.

 countrycode — Resets the country code for the WX switch to null.  ip-address — Resets the IP address of the WX switch to null.

40 CHAPTER 3: SYSTEM SERVICE COMMANDS

 location — Resets the location of the WX switch to null.  name — Resets the name of the WX switch to the default system

name, which is the model number.

Defaults — None.

Access — Enabled.

History — —Introduced in MSS Version 3.0.

Examples — To clear the location of the WX switch, type the following

command:

WX4400# clear system location success: change accepted.

See Also

 display config on page 548  display system on page 42  set system contact on page 54

display banner motd

 set system countrycode on page 54  set system ip-address on page 57  set system location on page 58

Shows the banner that was configured with the set banner motd command.

Syntax —

display banner motd

Defaults — None.

Access — Enabled.

History — Introduced in MSS Version 3.0.

Examples — To show the banner with the message of the day, type the

following command:

WX4400# display banner motd hello world

See Also

 clear banner motd on page 38  set banner motd on page 49

display base-information 41

display base-information

Provides an in-depth snapshot of the status of the wireless LAN switch, which includes details about the boot image, the version, ports, and other configuration values. This command also displays the last 100 log messages.

Syntax —

[file [subdirname/]filename]

 [subdirname/]filename — Optional subdirectory name, and a string

display base-information

up to 32 alphanumeric characters. The command’s output is saved into a file with the specified name in nonvolatile storage.

Defaults — None.

Access — Enabled.

History — Introduced in MSS Version 3.0.

Usage — Enter this command before calling for Technical Support. See

“Obtaining Support for your Product” on page 607 for more information.

See Also

 display boot on page 547  display config on page 548  display license on page 42  display system on page 42  display version on page 549

42 CHAPTER 3: SYSTEM SERVICE COMMANDS

display license Displays information about the license currently installed on the WX

switch.

Syntax —

display license

Defaults — None.

Access — All.

Examples — To view the WX switch license, type the following

command:

WX4400# display license

Serial Number : M8XE4IBB8DB10

License Number : 245 License Key : WXL-076E-93E9-62DA-54D8 Activation key : WXA-3E04-4CC2-430D-B508 Feature : 24 additional ports Expires : Never

The additional ports refers to the number of additional MAPs the switch can boot and actively manage.

See Also

 set license on page 52

display system Shows system information.

Syntax — display system

Defaults — None.

Access — Enabled.

Examples — To show system information, type the following command:

WX4400# display system =============================================================================== Product Name: WX4400 System Name: WX-bldg3 System Countrycode: US System Location: first-floor-bldg3 System Contact: tamara@example.com

display system 43

System IP: 192.168.12.7 System MAC: 00:0B:0E:00:04:30 =============================================================================== Boot Time: 2003-11-07 15:45:49 Uptime: 13 days 04:29:10 =============================================================================== Fan status: fan1 OK fan2 OK fan3 OK Temperature: temp1 ok temp2 ok temp3 ok PSU Status: Lower Power Supply DC ok AC ok Upper Power Supply missing Memory: 97.04/744.03 (13%) Total Power Over Ethernet : 29.000 ===============================================================================

Table 7 describes the fields of display system output.

Tab le 7 display system output

Field Description

Product Name Switch model number. System Name System name (factory default, or optionally configured

with set system name).

System Countrycode Country-specific 802.11 code required for MAP operation

System Location Record of the WX switch’s physical location (optionally

System Contact Contact information about the system administrator or

System IP Common interface, source, and default IP address for the

System MAC WX switch’s media access control (MAC) machine address

License License level installed on the WX switch (if applicable). Boot Time Date and time of the last system reboot. Uptime Number of days, hours, minutes, and seconds that the WX

(configured with set system countrycode).

configured with set system location).

another person to contact about the system (optionally configured with set system contact).

device, in dotted decimal notation (configured with set system ip-address).

set at the factory, in 6-byte hexadecimal format.

has been operating since its last restart.

44 CHAPTER 3: SYSTEM SERVICE COMMANDS

Tab le 7 display system output (continued)

Field Description

Fan status Operating status of the WX switch’s three cooling fans:

Temperature Status of temperature sensors at three locations in the WX:

PSU Status Status of the lower and upper power supply units:

Memory Current size (in megabytes) of nonvolatile memory (NVRAM)

Total Power Over Ethernet

 OK — Fan is operating.  Failed — Fan is not operating. MSS sends an alert to

the system log every 5 minutes until this condition is corrected.

Fan 1 is located nearest the front of the chassis, and fan 3 is located nearest the back.

 ok — Temperature is within the acceptable range of

0° C to 50° C (32° F to 122° F).

 Alarm — Temperature is above or below the

acceptable range. MSS sends an alert to the system log every 5 minutes until this condition is corrected.

 missing — Power supply is not installed or is

inoperable.

 DC ok — Power supply is producing DC power.  DC output failure — Power supply is not producing

DC power. MSS sends an alert to the system log every 5 minutes until this condition is corrected.

 AC ok — Power supply is receiving AC power.  AC not present — Power supply is not receiving AC

power.

and synchronous dynamic RAM (SDRAM), plus the percentage of total memory space in use, in the following format:

NVRAM size /SDRAM size (percent of total)

Total power that the device is currently supplying to its directly connected MAP access points, in watts.

See Also

 clear system on page 39  set system contact on page 54  set system countrycode on page 54  set system ip-address on page 57  set system location on page 58  set system name on page 58

help 45

help Displays a list of commands that can be used to configure and monitor

the WX switch.

Syntax —

help

Defaults — None.

Access — All.

History — Introduced in MSS Version 3.0.

Examples — Use this command to see a list of available commands. If

you have restricted access, you see fewer commands than if you have enabled access. To show a list of CLI commands available at the enabled access level, type the following command at the enabled access level:

WX4400# help Commands:

See Also

 “Using CLI Help” on page 31

46 CHAPTER 3: SYSTEM SERVICE COMMANDS

history Displays the command history buffer for the current CLI session.

Syntax —

history

Defaults — None.

Access — All.

History — Introduced in MSS Version 3.0.

Examples — To show the history of your session, type the following

command:

WX4400> history Show History (most recent first)

-------------------------------[00] display config [01] display version [02] enable

See Also

 clear history on page 38

set auto-config Enables a WX switch to contact a 3Com Wireless Switch Manager server

for its configuration.

Syntax —

 enable — Enables the switch to contact a 3Com Wireless Switch

set auto-config {enable | disable}

Manager server to request a configuration.

 disable — Disables the auto-config option.

Defaults — The auto-config option is automatically enabled on an unconfigured WXR100 when the Fn switch is pressed during power on. However, auto-config is disabled by default on other models.

Access — Enabled.

History — Introduced in MSS Version 4.0.

set auto-config 47

Usage — A network administrator at the corporate office can

preconfigure the switch in a 3Com Wireless Switch Manager network plan. The switch configuration must have a name for the switch, the model must be WXR100, and the serial number must match the switch’s serial number. The configuration should also include all other settings required for the deployment, including MAP configuration, SSIDs, AAA settings, and so on.

When the 3Com Wireless Switch Manager server in the corporate network receives the configuration request, the server looks in the currently open network plan for a switch configuration with the same model and serial number as the one in the configuration request.

 If the network plan contains a configuration with a matching model

and serial number, the 3Com Wireless Switch Manager sends the configuration to the switch and restarts the switch. The switch boots using the configuration it received from the 3Com Wireless Switch Manager.

 If the network plan does not have a configuration with a matching

model and serial number, a verification warning appears in the 3Com Wireless Switch Manager. The warning lists the switch’s serial number and IP address. The network administrator can upload the switch into the network plan, configure switch parameters, and deploy the configuration to the switch.

To use the auto-config option with a new (unconfigured) WXR100, insert a paperclip or similar object into the WXR100’s Fn hole to press the switch. The Fn switch must be held for about 3 seconds while the Fn LED (the right LED above port 1) is lit. Normally, this LED remains solidly lit for 3 seconds after power on. However, when the Fn switch is pressed, the LED flashes for 3 seconds instead.

If you want another WX switch model to be able to access a 3Com Wireless Switch Manager server for a configuration, you also must preconfigure the WX with the following information:

 IP address  Gateway address  Domain name and DNS server address

48 CHAPTER 3: SYSTEM SERVICE COMMANDS

You can enable the switch to use the MSS DHCP client to obtain this information from a DHCP server in the local network where the switch will be deployed. Alternatively, you can statically configure the information.

The IP address and DNS information are configured independently. You can configure the combination of settings that work with the network resources available at the deployment site. The following examples show some of the combinations you can configure.

Examples — The following commands stage a WX-1200 switch to use the auto-config option. The network where the switch is installed has a DHCP server, so the switch is configured to use the MSS DHCP client to obtain an IP address, default gateway address, DNS domain name, and DNS server IP addresses.

Configure a VLAN:

WX-1200# set vlan 1 port 7 success: change accepted.

Enable the DHCP client on VLAN 1:

WX-1200# set interface 1 ip dhcp-client enable success: change accepted.

Enable the auto-config option:

WX-1200# set auto-config enable success: change accepted.

Create a self-signed administrative certificate, to enable the WX-1200 to communicate with the 3Com Wireless Switch Manager server.

WX-1200# crypto generate key admin 1024 key pair generated WX-1200# crypto generate self-signed admin Country Name: State Name: Locality Name: Organizational Name: Organizational Unit: Common Name: remoteswitch1@example.com Email Address: Unstructured Name:

set banner motd 49

Self-signed cert for admin is

-----BEGIN CERTIFICATE----MIICUzCCAbygAwIBAgICA+cwDQYJKoZIhvcNAQEEBQAwNjELMAkGA1UEBhMC VVMx CzAJBgNVBAgTAkNBMRowGAYDVQQDFBF0ZWNocHVic0B0cnB6LmNvbTAeFw0w MzA0 ... Lm8wmVYLxP56MpCUAm9O8C2foYgOY40=

-----END CERTIFICATE-----

Save the configuration changes:

WX-1200# save config success: configuration saved.

See Also

 crypto generate key on page 451  crypto generate self-signed on page 454  save config on page 557  set interface dhcp-client on page 144  set vlan port on page 110

set banner motd Configures the banner string that is displayed before the beginning of

each login prompt for each CLI session on the WX switch.

Syntax —

 ^ — Delimiting character that begins and ends the message.  text — Up to 2000 alphanumeric characters, including tabs and

carriage returns, but not the delimiting character (^). The maximum number of characters is approximately 24 lines by 80 characters.

Defaults — None.

Access — Enabled.

History — Introduced in MSS Version 3.0.

Usage — Type a caret (^), then the message, then another caret.

set banner motd ^text^

50 CHAPTER 3: SYSTEM SERVICE COMMANDS

Do not use the following characters with commands in which you set text to be displayed on the WX switch, such as message-of-the-day (MOTD) banners:

 Ampersand (&)  Angle brackets (< >)  Double quotation marks (“”)  Number sign (#)  Question mark (?)  Single quotation mark (')

Examples — To create a banner that says Update meeting at 3 p.m., type the following command:

WX4400# set banner motd ^Update meeting at 3 p.m.^ success: change accepted.

See Also

 clear banner motd on page 38  display banner motd on page 40

set confirm Enables or disables the display of confirmation messages for commands

that might have a large impact on the network.

Syntax —

 on — Enables confirmation messages.  off — Disables confirmation messages.

Defaults — Configuration messages are enabled.

Access — Enabled.

History — Introduced in MSS Version 3.0.

Usage — This command remains in effect for the duration of the session,

until you enter a quit command, or until you enter another set confirm command.

set confirm {on | off}

set length 51

MSS displays a message requiring confirmation when you enter certain commands that can have a potentially large impact on the network. For example:

WX4400# clear vlan red This may disrupt user connectivity. Do you wish to continue? (y/n) [n]

Examples — To turn off these confirmation messages, type the following command:

WX4400# set confirm off success: Confirm state is off

set length Defines the number of lines of CLI output to display between paging

prompts. MSS displays the set number of lines and waits for you to press any key to display another set, or type q to quit the display.

Syntax —

 number-of-lines — Number of lines of text to display between

set length number-of-lines

paging prompts. You can specify from 0 to 512. The 0 value disables the paging prompt action entirely.

Defaults — MSS displays 24 lines by default.

Access — All.

History — Introduced in MSS Version 3.0.

Usage — Use this command if the output of a CLI command is greater

than the number of lines allowed by default for a terminal type.

Examples — To set the number of lines displayed to 100, type the following command:

WX4400# set length 100 success: screen length for this session set to 100

52 CHAPTER 3: SYSTEM SERVICE COMMANDS

set license Installs an upgrade license, for managing more MAPs.

Syntax —

 license-key — License key, starting with WXL. You can enter the

set license license-key activation-key

key with or without the hyphens.

 activation-key — Activation key, starting with WXA. You can enter

the key with or without the hyphens.

Defaults — None.

Access — Enabled.

History — Introduced in MSS Version 3.0.

Usage — The license key is shipped with the switch. To obtain the

activation key, access the 3Com web site. Each license and activation key pair allows the switch to actively manage an additional 24 MAPs. You can install up to three upgrade license and activation key pairs, to actively manage up to 96 MAPs.

Examples — To install an upgrade license and activation key, type the following command:

WX4400# set license WXL-076E-93E9-62DA-54D8 WXA-3E04-4CC2-430D-B508

Serial Number : M8XE4IBB8DB10

License Number : 245 License Key : WXL-076E-93E9-62DA-54D8 Activation key : WXA-3E04-4CC2-430D-B508 Feature : 24 additional ports Expires : Never

48 ports are enabled success: license was installed

The additional ports refers to the number of additional MAPs the switch can boot and actively manage.

See Also

 display license on page 42

set prompt 53

set prompt Changes the CLI prompt for the WX switch to a string you specify.

Syntax —

 string — Alphanumeric string up to 32 characters long. To include

set prompt string

spaces in the prompt, you must enclose the string in double quotation marks (“”).

Defaults — The factory default for the WX switch name is the model number (WX1200 for the 3Com Wireless LAN Switch WX1200, WX4400 for the 3Com Wireless LAN Controller WX4400, WXR100 for the 3Com Remote Office Wireless LAN Switch) followed by the last three octets of the switch’s MAC address.

Access — Enabled.

History — Introduced in MSS Version 3.0.

Usage — When you first log in for the initial configuration of the WX

switch, the CLI provides a WXR100>, WX1200> or WX4400> prompt, depending on your model. After you become enabled by typing enable and giving a suitable password, the WXR100#, WX1200# or WX4400# prompt is displayed.

If you use the set system name command to change the default system name, MSS uses that name in the prompt, unless you also change the prompt with set prompt.

Examples — The following example sets the prompt from WX4400 to happy_days:

WX4400# set prompt happy_days success: change accepted. happy_days#

See Also

 clear prompt on page 39  display config on page 548  set system name on page 58

54 CHAPTER 3: SYSTEM SERVICE COMMANDS

set system contact Stores a contact name for the WX switch.

Syntax —

 string — Alphanumeric string up to 256 characters long, with no

set system contact string

blank spaces.

Defaults — None.

Access — Enabled.

History — Introduced in MSS Version 3.0.

To view the system contact string, type the display system command.

Examples — The following command sets the system contact

information to tamara@example.com:

WX1200# set system contact tamara@example.com success: change accepted.

See Also

 clear system on page 39  display system on page 42  set system location on page 58  set system name on page 58

set system countrycode

Defines the country-specific IEEE 802.11 regulations to enforce on the WX switch.

Syntax —

 code — Two-letter code for the country of operation for the WX

set system countrycode code

switch. You can specify one of the codes listed in Table 8.

Tab le 8 Country Codes

Country Code

Argentina AR Australia AU

Tab le 8 Country Codes (continued)

Country Code

Austria AT Belgium BE Brazil BR Bulgaria BG Canada CA Chile CL China CN Columbia CO Croatia HR Cyprus CY Czech Republic CZ Denmark DK Estonia EE Finland FI France FR Germany DE Greece GR Hong Kong HK Hungary HU Iceland IS India IN Ireland IE Israel IL Italy IT Japan JP Latvia LV Liechtenstein LI Lithuania LT Luxembourg LU Malaysia MY Malta MT Mexico MX

set system countrycode 55

56 CHAPTER 3: SYSTEM SERVICE COMMANDS

Tab le 8 Country Codes (continued)

Country Code

Morocco MA Netherlands NL New Zealand NZ Norway NO Peru PE Philippines PH Poland PL Portugal PT Romania RO Russia RU Saudi Arabia SA Singapore SG Slovakia SK Slovenia SI South Africa ZA South Korea KR Spain ES Sweden SE Switzerland CH Taiwan TW Thailand TH Turkey TR United Arab Emirates AE United Kingdom GB United States US

Defaults — The factory default country code is None.

Access — Enabled.

History — Introduced in MSS Version 3.0.

Usage — You must set the system county code to a valid value before using any set ap commands to configure a MAP.

set system ip-address 57

Examples — To set the country code to Canada, type the following

command:

WX1200# set system country code CA success: change accepted.

See Also

 display config on page 548

set system ip-address

Sets the system IP address so that it can be used by various services in the WX switch.

CAUTION: Any currently configured Mobility Domain operations cease if you change the IP address. If you change the address, you must reset the Mobility Domain.

Syntax —

 ip-addr — IP address, in dotted decimal notation.

set system ip-address ip-addr

Defaults — None.

Access — Enabled.

History — Introduced in MSS Version 3.0.

Examples — The following command sets the IP address of the WX

switch to 192.168.253.1:

WX4400# set system ip-address 192.168.253.1 success: change accepted.

See Also

 clear system on page 39  set interface on page 143  display system on page 42

58 CHAPTER 3: SYSTEM SERVICE COMMANDS

set system location Stores location information for the WX switch.

Syntax —

 string — Alphanumeric string up to 256 characters long, with no

set system location string

blank spaces.

Defaults — None.

Access — Enabled.

History — Introduced in MSS Version 3.0.

Usage — You cannot include spaces in the system location string.

To view the system location string, type the display system command.

Examples — To store the location of the WX switch in the WX’s

configuration, type the following command:

WX4400# set system location first-floor-bldg3 success: change accepted.

See Also

 clear system on page 39  display system on page 42  set system contact on page 54  set system name on page 58

set system name Changes the name of the WX switch from the default system name and

also provides content for the CLI prompt, if you do not specify a prompt.

Syntax —

 string — Alphanumeric string up to 256 characters long, with no

blank spaces. Use a unique name for each WX switch.

set system name string

set system name 59

Defaults — By default, the system name and command prompt have the

same value. The factory default for both is the model number (WXR100 for the 3Com Remote Office Wireless LAN Switch WXR100, WX1200 for the 3Com Wireless LAN Switch WX1200, WX4400 for the 3Com Wireless LAN Controller WX4400) followed by the last three octets of the switch’s MAC address.

Access — Enabled.

History — Introduced in MSS Version 3.0.

Usage — Entering set system name with no string resets the system

name to the factory default.

To view the system name string, type the display system command.

Examples — The following example sets the system name to a name that identifies the WX switch:

WX4400# set system name WX-bldg3 success: change accepted. WX-bldg3#

See Also

 clear system on page 39  display system on page 42  set prompt on page 53  set system contact on page 54  set system location on page 58

60 CHAPTER 3: SYSTEM SERVICE COMMANDS

PORT COMMANDS

Use port commands to configure and manage individual ports and load-sharing port groups.

Commands by Usage

This chapter presents port commands alphabetically. Use Table 9 to locate commands in this chapter based on their use.

Tab le 9 Port Commands by Usage

Type Command Port Type set port type ap on page 87

set dap on page 77 set port type wired-auth on page 91 clear port type on page 65 clear dap on page 62

Name set port name on page 82

clear port name on page 64

State set port on page 80

reset port on page 77 display port status on page 70

Gigabit Interface Type display port preference on page 69

set port preference on page 85

clear port preference on page 64 Speed set port speed on page 85 Autonegotiation set port negotiation on page 83 PoE set port poe on page 84

display port poe on page 68 SNMP set port trap on page 86

62 CHAPTER 4: PORT COMMANDS

Tab le 9 Port Commands by Usage (continued)

Type Command Port Groups set port-group on page 81

display port-group on page 67 clear port-group on page 63

Statistics display port counters on page 66

monitor port counters on page 72 clear port counters on page 63

clear dap Removes a Distributed MAP.

CAUTION: When you clear a Distributed MAP, MSS ends user sessions that are using the MAP.

Syntax —

 dap-num — Number of the Distributed MAP(s) you want to remove.

clear dap dap-num

Defaults — None.

Access — Enabled.

History — Introduced in MSS Version 3.0.

Examples — The following command clears Distributed MAP 1:

WX4400# clear dap 1 This will clear specified DAP devices. Would you like to continue? (y/n) [n]y

See Also

 set dap on page 77  set port type ap on page 87

clear port counters 63

clear port counters Clears port statistics counters and resets them to 0.

Syntax —

clear port counters

Defaults — None.

Access — Enabled.

History — Introduced in MSS Version 3.0.

Examples — The following command clears all port statistics counters

and resets them to 0:

WX4400# clear port counters success: cleared port counters

See Also

 display port counters on page 66  monitor port counters on page 72

clear port-group Removes a port group.

Syntax — clear port-group name name

 name name — Name of the port group.

Defaults — None.

Access — Enabled.

History — Introduced in MSS Version 3.0.

Examples — The following command clears port group server1:

WX4400# clear port-group name server1 success: change accepted.

See Also

 set port-group on page 81  display port-group on page 67

64 CHAPTER 4: PORT COMMANDS

clear port name Removes the name assigned to a port.

clear port preference

Syntax —

 port-list — List of physical ports. MSS removes the names from all

clear port port-list name

the specified ports.

Defaults — None.

Access — Enabled.

History — Introduced in MSS Version 3.0.

Examples — The following command clears the names of ports 1

through 3:

WX4400# clear port 1-3 name

See Also

 display port status on page 70  set port name on page 82

Resets a gigabit Ethernet port on a WX4400 to use the GBIC (fiber) interface for the active link.

Syntax —

clear port preference port-list

 port-list — List of physical ports. MSS clears the preference on all

the specified ports.

Defaults — When both the copper and fiber interfaces of a gigabit Ethernet port are connected, the GBIC (fiber) interface is the active link. The RJ-45 (copper) link is unused.

Access — Enabled.

History — Introduced in MSS Version 3.0.

Usage — This command applies only to the WX4400. This command

does not affect a link that is already active on the port.

clear port type 65

Examples — The following command clears the preference set on port 2

on a WX4400 switch:

WX4400# clear port preference 2

See Also

 display port preference on page 69  set port preference on page 85

clear port type Removes all configuration settings from a port and resets the port as a

network port.

CAUTION: When you clear a port, MSS ends user sessions that are using the port.

Syntax —

 port-list — List of physical ports. MSS resets and removes the

clear port type port-list

configuration from all the specified ports.

Defaults — The cleared port becomes a network port but is not placed in any VLANs.

Access — Enabled.

History — Introduced in MSS Version 3.0.

Usage — Use this command to change a port back to a network port. All

configuration settings specific to the port type are removed. For example, if you clear an MAP access point port, all MAP-specific settings are removed. Table 10 lists the default network port settings that MSS applies when you clear a port’s type.

Table 10 Network port defaults

Port Parameter Setting

VLAN membership None.

Note: Although the command changes a port to a network port, the command does not place the port in any VLAN. To use the port in a VLAN, you must add the port to the VLAN.

66 CHAPTER 4: PORT COMMANDS

Table 10 Network port defaults (continued)

Port Parameter Setting

Spanning Tree Protocol (STP) Based on the VLAN(s) you add the port to.

802.1X No authorization. Port groups None. Internet Group Management

Protocol (IGMP) snooping Access point and radio

parameters Maximum user sessions Not applicable

Examples — The following command clears port 5:

WX1200# clear port type 5 This may disrupt currently authenticated users. Are you sure? (y/n) [n]y success: change accepted.

See Also

 set port type ap on page 87

Enabled as port is added to VLANs.

Not applicable

display port counters

 set port type wired-auth on page 91

Displays port statistics.

Syntax — display port counters

[octets | packets | receive-errors | transmit-errors |

collisions | receive-etherstats | transmit-etherstats] [port port-list]

 octets — Shows octet statistics.  packets — Shows packet statistics.  receive-errors— Shows errors in received packets.  transmit-errors — Shows errors in transmitted packets.  collisions — Shows collision statistics.  receive-etherstats — Shows Ethernet statistics for received

packets.

 transmit-etherstats — Shows Ethernet statistics for transmitted

packets.

display port-group 67

 port port-list — List of physical ports. If you do not specify a port

list, MSS shows statistics for all ports.

Defaults — None.

Access — All.

History — Introduced in MSS Version 3.0.

Usage — You can specify one statistic type with the command.

Examples — The following command shows octet statistics for port 3:

WX1200> display port counters octets port 3 Port Status Rx Octets Tx Octets =============================================================================

3 Up 27965420 34886544

This command’s output has the same fields as the monitor port counters command. For descriptions of the fields, see Table 16 on page 74.

See Also

 clear port counters on page 63  monitor port counters on page 72

display port-group Shows port group information.

Syntax — display port-group [all | name group-name]

 all — Shows information for all port groups.  name group-name — Shows information for the specified port group.

Defaults — None.

Access — All.

History — Introduced in MSS Version 3.0.

Examples — The following command displays the configuration of port

group server2:

WX1200# display port-group name server2 Port group: server2 is up Ports: 5, 7

68 CHAPTER 4: PORT COMMANDS

Table 11 describes the fields in the display port-group output.

Table 11 Output for display port-group

Field Description

Port group Name and state (enabled or disabled) of the port

Ports Ports contained in the port group.

group.

See Also

 clear port-group on page 63  set port-group on page 81

display port poe Displays status information for ports on which Power over Ethernet (PoE)

is enabled.

Syntax —

 port-list — List of physical ports. If you do not specify a port list,

display port poe [port-list]

PoE information is displayed for all ports.

Defaults — None.

Access — All.

History — Introduced in MSS Version 3.0.

Examples — The following command displays PoE information for all

ports on a WX1200 switch:

WX1200# display port poe

Link Port PoE PoE Port Name Status Type config Draw ============================================================ 1 1 up - disabled off 2 2 down - disabled off 3 3 down - disabled off 4 4 down MAP enabled 1.44 5 5 down - disabled off 6 6 down - disabled off

Table 12 describes the fields in this display.

display port preference 69

Table 12 Output for display port poe

Field Description

Port Port number. Name Port name. If the port does not have a name, the

port number is listed.

Link status Link status of the port:

 up—The port is connected.  down—The port is not connected.

Port type Port type:

 MAP —The port is an MAP access port.  - (The port is not an MAP access port.)

PoE config PoE state:

 enabled  disabled

PoE Draw Power draw on the port, in watts.

For 10/100 Ethernet ports on which PoE is disabled, this field displays off. For gigabit Ethernet ports, this field displays invalid, because PoE is not supported on gigabit Ethernet ports.

The value overcurrent indicates a PoE problem such as a short in the cable.

display port preference

See Also

 set port poe on page 84

Displays the interface preferences set on WX4400 gigabit Ethernet ports.

Syntax — display port preference [port-list]

 port-list — List of physical ports. MSS displays the preference for all

the specified ports.

Defaults — None.

Access — All.

History — Introduced in MSS Version 3.0.

Usage — This command applies only to the WX4400.

70 CHAPTER 4: PORT COMMANDS

Examples — The following command displays the preference settings on

all four ports of a WX4400 switch:

WX4400# display port preference Port Preference =========================================================== 1 GBIC 2 RJ45 3 GBIC 4 GBIC

Table 13 describes the fields in this display.

Table 13 Output for display port preference

Field Description

Port Port number. Preference Preference setting:

 GBIC — The GBIC (fiber) interface is selected as

the active interface.

 RJ45 — The RJ-45 (copper) interface is selected

as the active interface.

See Also

 clear port preference on page 64  set port preference on page 85

display port status Displays configuration and status information for ports.

Syntax — display port status [port-list]

 port-list — List of physical ports. If you do not specify a port list,

information is displayed for all ports.

Defaults — None.

Access — All.

History — Introduced in MSS Version 3.0.

display port status 71

Examples — The following command displays information for all ports

on a WX1200 switch:

WX1200# display port status Port Name Admin Oper Config Actual Type Media =============================================================================== 1 1 up up auto 100/full network 10/100BaseTx

2 2 up up auto 100/full ap 10/100BaseTx

3 3 up up auto 100/full network 10/100BaseTx

4 4 up down auto network 10/100BaseTx 5 5 up down auto network 10/100BaseTx 6 6 up down auto network 10/100BaseTx 7 7 up down auto network 10/100BaseTx 8 8 up down auto network 10/100BaseTx

Table 14 describes the fields in this display.

Table 14 Output for display port status

Field Description

Port Port number. Name Port name. If the port does not have a name, the

port number is listed.

Admin Administrative status of the port:

 up — The port is enabled.  down — The port is disabled.

Oper Operational status of the port:

 up — The port is operational.  down — The port is not operational.

Config Port speed configured on the port:

 10 — 10 Mbps.  100 — 100 Mbps.  1000 — 1000 Mbps.  auto — The port sets its own speed.

Actual Speed and operating mode in effect on the port. Type Port type:

 ap — MAP access point port  network — Network port  wa — Wired authentication port

72 CHAPTER 4: PORT COMMANDS

Table 14 Output for display port status (continued)

Field Description

Media Link type:

See Also

 clear port type on page 65  set port on page 80  set port name on page 82  set port negotiation on page 83  set port speed on page 85  set port type ap on page 87  set port type wired-auth on page 91

10/100BaseTX — 10/100BASE-T. GBIC — 1000BASE-SX or 1000BASE-LX GBIC. 1000BaseT — 1000BASE-T. No connector — GBIC slot is empty.

monitor port counters

Displays and continually updates port statistics.

Syntax —

 octets — Displays octet statistics first.  packets — Displays packet statistics first.  receive-errors — Displays errors in received packets first.  transmit-errors — Displays errors in transmitted packets first.  collisions — Displays collision statistics first.  receive-etherstats — Displays Ethernet statistics for received

monitor port counters

packets first.

 transmit-etherstats — Displays Ethernet statistics for transmitted

packets first.

monitor port counters 73

Defaults — All types of statistics are displayed for all ports. MSS

refreshes the statistics every 5 seconds. This interval cannot be configured. Statistics types are displayed in the following order by default:

 Octets  Packets  Receive errors  Transmit errors  Collisions  Receive Ethernet statistics  Transmit Ethernet statistics

Access — All.

History—Introduced in MSS Version 3.0.

Usage — Each type of statistic is displayed separately. Press the Spacebar

to cycle through the displays for each type.

If you use an option to specify a statistic type, the display begins with that statistic type. You can use one statistic option with the command.

Use the keys listed in Table 15 to control the monitor display.

Table 15 Key Controls for Monitor Port Counters Display

Field Description

Spacebar Advances to the next statistic type. Esc Exits the monitor. MSS stops displaying the statistics and displays a new

command prompt.

c Clears the statistics counters for the currently displayed statistics type.

The counters begin incrementing again.

For error reporting, the cyclic redundancy check (CRC) errors include misalignment errors. Jumbo packets with valid CRCs are not counted. A short packet can be reported as a short packet, a CRC error, or an overrun. In some circumstances, the transmitted octets counter might increment a small amount for a port with nothing attached.

74 CHAPTER 4: PORT COMMANDS

Examples — The following command starts the port statistics monitor

beginning with octet statistics (the default):

WX4400# monitor port counters

As soon as you press Enter, MSS clears the window and displays statistics at the top of the window.

Port Status Rx Octets Tx Octets =============================================================================== 1 Up 27965420 34886544 ...

To cycle the display to the next set of statistics, press the Spacebar. In this example, packet statistics are displayed next:

Port Status Rx Unicast Rx NonUnicast Tx Unicast Tx NonUnicast ===============================================================================

1 Up 54620 62144 68318 62556

...

Table 16 describes the port statistics displayed by each statistics option. The Port and Status fields are displayed for each option.

Table 16 Output for monitor port counters

Statistics Option Field Description

Displayed for All Options

octets

Port Port the statistics are displayed for. Status Port status. The status can be Up or Down. Rx Octets Total number of octets received by the port.

This number includes octets received in frames that contained errors.

Tx Octets Total number of octets received.

This number includes octets received in frames that contained errors.

monitor port counters 75

Table 16 Output for monitor port counters (continued)

Statistics Option Field Description

packets Rx Unicast Number of unicast packets received.

This number does not include packets that contain errors.

Rx NonUnicast

Tx Unicast Number of unicast packets transmitted.

Tx NonUnicast

receive-errors Rx Crc Number of frames received by the port that had

Rx Error Total number of frames received in which the

Rx Short Number of frames received by the port that

Rx Overrun Number of frames received by the port that

transmit-errors Tx Crc Number of frames transmitted by the port that

Tx Short Number of frames transmitted by the port that

Tx Fragment Total number of frames transmitted that were

Tx Abort Total number of frames that had a link pointer

Number of broadcast and multicast packets received.

This number does not include packets that contain errors.

Number of broadcast and multicast packets transmitted.

This number does not include packets that contain errors.

the correct length but contained an invalid frame check sequence (FCS) value. This statistic includes frames with misalignment errors.

Physical layer (PHY) detected an error.

were fewer than 64 bytes long.

were valid but were longer than 1518 bytes. This statistic does not include jumbo packets with valid CRCs.

had the correct length but contained an invalid FCS value.

were fewer than 64 bytes long.

less than 64 octets long and had invalid CRCs.

parity error.

76 CHAPTER 4: PORT COMMANDS

Table 16 Output for monitor port counters (continued)

Statistics Option Field Description

collisions Single Coll Total number of frames transmitted that

receive-etherstats Rx 64 Number of packets received that were 64 bytes

transmit-etherstats Tx 64 Number of packets transmitted that were 64

experienced one collision before 64 bytes of the frame were transmitted on the network.

Multiple Coll Total number of frames transmitted that

experienced more than one collision before 64 bytes of the frame were transmitted on the network.

Excessive Coll Total number of frames that experienced more

than 16 collisions during transmit attempts. These frames are dropped and not transmitted.

Total Coll Best estimate of the total number of collisions

on this Ethernet segment.

long.

Rx 127 Number of packets received that were from 65

through 127 bytes long.

Rx 255 Number of packets received that were from 128

through 255 bytes long.

Rx 511 Number of packets received that were from 256

through 511 bytes long.

Rx 1023 Number of packets received that were from 512

through 1023 bytes long.

Rx 1518 Number of packets received that were from

1024 through 1518 bytes long.

bytes long.

Tx 127 Number of packets transmitted that were from

65 through 127 bytes long.

Tx 255 Number of packets transmitted that were from

128 through 255 bytes long.

Tx 511 Number of packets transmitted that were from

256 through 511 bytes long.

Tx 1023 Number of packets transmitted that were from

512 through 1023 bytes long.

Tx 1518 Number of packets transmitted that were from

1024 through 1518 bytes long.

See Also

 display port counters on page 66

reset port 77

reset port Resets a port by toggling its link state and Power over Ethernet (PoE)

state.

Syntax —

 port-list — List of physical ports. MSS resets all the specified ports.

reset port port-list

Defaults — None.

Access — Enabled.

History — Introduced in MSS Version 3.0.

Usage — The reset command disables the port’s link and PoE (if

applicable) for at least 1 second, then reenables them. This behavior is useful for forcing an MAP access point that is connected to two WX switches to reboot over the link to the other switch.

Examples — The following command resets port 5:

WX1200# reset port 5

See Also

 set port on page 80

set dap Configures a Distributed MAP for an MAP access point that is indirectly

connected to the WX switch through an intermediate Layer 2 or Layer 3 network.

Before configuring a Distributed MAP, you must use the set system countrycode command to set the IEEE 802.11 country-specific

regulations on the WX switch. See “set system countrycode” on page 54.

For an MAP that is directly connected to the WX switch, use the set port type ap command to configure an MAP access port.

Syntax —

{ap2750 | ap3750 | ap7250 | ap8250 | ap8750 | mp-52 | mp-101 | mp-122 | mp-241 | mp-252 | mp-262 | mp-341 | mp-352} [radiotype {11a | 11b | 11g}]

set dap dap-num serial-id serial-ID model

78 CHAPTER 4: PORT COMMANDS

 dap-num — Number for the Distributed MAP. The range of valid

 serial-id serial-ID — MAP access point serial ID. The serial ID is

The serial ID of the AP2750, AP3750, AP7250, AP8250, or AP8750 might be preceded by 4 digits and a slash (example: 0100/). Do not enter these digits or the slash.

 model {ap2750 | ap3750 | ap7250 | ap8250 | ap8750 | mp-52 |

connection numbers depends on the WX switch model:

 For a WX4400, you can specify a number from 1 to 256.  For a WX1200, you can specify a number from 1 to 30.  For a WXR100, you can specify a number from 1 to 8.

listed on the MAP case. To show the serial ID using the CLI, use the display version details command.

mp-101 | mp-122 | mp-241 | mp-252 | mp-262 | mp-341 | mp-352 | mp-372}

 ap2750 — Contains one radio that can be configured through

— MAP access point model:

software for 802.11a or 802.11b/g. An external dual-mode antenna may be used in place of the supplied antenna.

 ap3750 — Contains one 802.11b/g radio and one 802.11a radio

with connectors for optional external antennas for each radio.

 ap7250 — Contains one 802.11b/g radio. An external antenna

may be used in place of the supplied antenna.

 ap8250 — Contains one 802.11b/g radio. It also has the ability to

have an additional 802.11a radio installed in it. An external dual-mode antenna may be used in place of the supplied antenna.

 ap8750 — Contains one 802.11a radio and one 802.11b/g radio.

An external dual-mode antenna may be used in place of the supplied antenna for the 802.11b/g radio.

 mp-52 — Contains one 802.11a radio and one 802.11b radio,

with adjustable external antennas.

 mp-101 — Contains one radio that can be configured through

software for 802.11a or 802.11b.

 mp-122 — Contains one 802.11a radio and one 802.11b/g radio.  mp-241 — Contains one radio that can be configured through

software for 802.11a or 802.11b/g.

 mp-252 — Contains one 802.11a radio and one 802.11b radio.

set dap 79

 mp-262 — Contains one 802.11a radio and one 802.11b radio,

and a connector for an external antenna for the 802.11b/g radio.

 mp-341 — Contains one radio that can be configured through

software for 802.11a or 802.11b/g, and a connector for an external antenna for the 802.11b/g radio.

 mp-352 — Contains one 802.11a radio and one 802.11b radio,

and a connector for an external antenna for the 802.11b/g radio.

 mp-372 — Contains one 802.11b/g radio and one 802.11a radio

with connectors for optional external antennas for each radio.

 radiotype 11a|11b|11g — Radio type:

 11a — 802.11a

 11b — 802.11b

 11g — 802.11g

This option applies only to single-radio models. The value 11g does not apply to model MP-101.

Defaults — The default radio type for model MP-101 is 802.11b. The default radio type for model AP2750, AP7250, AP8250, MP-241, and MP-341, and for the 802.11b/g radios in models AP3750, AP8250, AP8750, MP-52, MP-252, and MP-262, and MP-352, is 802.11g in regulatory domains that support 802.11g, or 802.11b in regulatory domains that do not support 802.11g.

MAP radios configured for 802.11g also allow associations from 802.11b clients by default. To disable support for 802.11b associations, use the set radio-profile 11g-only command on the radio profile that contains the radio.

MAP model MP-262 requires an external antenna for the 802.11b/g radio. You must specify the antenna model. The AP3750 and MAP-3xx models have an internal 802.1b/g antenna as well as a connector for an external antenna, so use of an external antenna is optional on these models. The AP3750 and MAP-372 also have a connector for an optional external 802.11a antenna. MAP models MP-341 and MP-352 have an internal 802.1b/g antenna as well as a connector for an external antenna, so use of an external antenna is optional on these models. The AP2750, AP7250, AP8250, and AP8750 models are supplied with detachable antennas which may be replaced by an external dual-mode antenna. To

80 CHAPTER 4: PORT COMMANDS

specify the external antenna fitted, use the set {ap | dap} radio

antennatype command.

Access — Enabled.

History — Introduced in MSS Version 3.0.

Examples — The following command configures Distributed MAP 1 for

MAP model AP3750 with serial-ID M9DE48B012F00:

WX4400# set dap 1 serial-id M9DE48B012F00 model ap3750 success: change accepted.

The following command removes Distributed MAP 1:

WX4400# clear dap 1 This will clear specified DAP devices. Would you like to continue? (y/n) [n]y

See Also

 clear dap on page 62  clear port type on page 65  set port type ap on page 87  set radio-profile 11g-only on page 329  set system countrycode on page 54

set port Administratively disables or reenables a port.

Syntax — set port {enable | disable} port-list

 enable — Enables the specified ports.  disable — Disables the specified ports.  port-list — List of physical ports. MSS disables or reenables all the

specified ports.

Defaults — All ports are enabled.

Access — Enabled.

History — Introduced in MSS Version 3.0.

set port-group 81

Usage — A port that is administratively disabled cannot send or receive

packets. This command does not affect the link state of the port.

Examples — The following command disables port 6:

WX1200# set port disable 6 success: set "disable" on port 6

The fol1owing command reenables the port:

WX1200# set port enable 6 success: set "enable" on port 6

See Also

 reset port on page 77

set port-group Configures a load-sharing port group. All ports in the group function as a

single logical link.

Syntax —

mode {on | off}

 name group-name — Alphanumeric string of up to 255 characters,

set port-group name group-name port-list

with no spaces.

 port-list — List of physical ports. All the ports you specify are

configured together as a single logical link.

 mode {on | off} — State of the group. Use on to enable the group

or off to disable the group. The group is enabled by default.

Defaults — Once configured, a group is enabled by default.

Access — Enabled.

History — Introduced in MSS Version 3.0.

Usage — You can configure up to 8 ports in a port group, in any

combination of ports. The port numbers do not need to be contiguous and you can use 10/100 Ethernet ports and gigabit Ethernet ports in the same port group.

After you add a port to a port group, you cannot configure port parameters on the individual port. Instead, change port parameters on the entire group. Specify the group name instead of an individual port name or number in port configuration commands.

82 CHAPTER 4: PORT COMMANDS

To add or remove ports in a group that is already configured, change the mode to off, add or remove the ports, then change the mode to on.

Examples — The following command configures a port group named server1 containing ports 1 through 5, and enables the link:

WX1200# set port-group name server1 1-5 mode on success: change accepted.

The following commands disable the link for port group server1, change the list of ports in the group, and reenable the link:

WX1200# set port-group name server1 1-5 mode off success: change accepted. WX1200# set port-group name server1 1-4,7 mode on success: change accepted.

See Also

 clear port-group on page 63  display port-group on page 67

set port name Assigns a name to a port. After naming a port, you can use the port

name or number in other CLI commands.

Syntax —

 port — Number of a physical port. You can specify only one port.  name name — Alphanumeric string of up to 16 characters, with no

spaces.

Defaults — None.

Access — Enabled.

History — Introduced in MSS Version 3.0.

Usage — To simplify configuration and avoid confusion between a port’s

number and its name, 3Com recommends that you do not use numbers as port names.

set port port name name

set port negotiation 83

Examples — The following command sets the name of port 7 to

adminpool:

WX1200# set port 7 name adminpool success: change accepted.

See Also

 clear port name on page 64  display port status on page 70

set port negotiation Disables or reenables autonegotiation on gigabit Ethernet or 10/100

Ethernet ports.

Syntax —

 port-list — List of physical ports. MSS disables or reenables

set port negotiation port-list {enable | disable}

autonegotiation on all the specified ports.

 enable — Enables autonegotiation on the specified ports.  disable — Disables autonegotiation on the specified ports.

Defaults — Autonegotiation is enabled on all Ethernet ports by default.

Access — Enabled.

History — Introduced in MSS Version 3.0.

Usage — WX1200 10/100 Ethernet ports support half-duplex and

full-duplex operation.

Examples — The following command disables autonegotiation on ports 3 and 5:

WX1200# set port negotiation 3,5 disable

The following command enables autonegotiation on port 2:

WX1200# set port negotiation 2 enable

84 CHAPTER 4: PORT COMMANDS

set port poe Enables or disables Power over Ethernet (PoE) on ports connected to MAP

access points.

CAUTION: When you set the port type for MAP use, you can enable PoE on the port. Use the WX switch’s PoE to power 3Com MAP access points only. If you enable PoE on ports connected to other devices, damage can result.

Syntax —

 port-list — List of physical ports. MSS disables or reenables PoE on

set port poe port-list enable | disable

all the specified ports.

 enable — Enables PoE on the specified ports.  disable — Disables PoE on the specified ports.

Defaults — PoE is disabled on network and wired authentication ports. The state on MAP access point ports depends on whether you enabled or disabled PoE when setting the port type. See set port type ap on page 87.

Access — Enabled.

History — Introduced in MSS Version 3.0.

Usage — This command does not apply to any gigabit Ethernet ports or

to ports 7 and 8 on the WX1200 switch.

Examples — The following command disables PoE on ports 4 and 5, which are connected to an MAP access point:

WX1200# set port poe 4,5 disable If you are enabling power on these ports, they must be connected only to approved PoE devices with the correct wiring. Do you wish to continue? (y/n) [n]y

The following command enables PoE on ports 4 and 5:

WX1200# set port poe 4,5 enable If you are enabling power on these ports, they must be connected only to approved PoE devices with the correct wiring. Do you wish to continue? (y/n) [n]y

See Also

 set port type ap on page 87  set port type wired-auth on page 91

set port preference 85

set port preference Configures a gigabit Ethernet port on a WX4400 to use the RJ-45

(copper) interface, when available, as the active link instead of the fiber interface.

Syntax —

 port-list — List of physical ports. MSS sets the preference on all the

set port preference port-list rj45

specified ports.

 rj45 — Prefers the copper interface.

Defaults — When both the copper and fiber interfaces of a gigabit Ethernet port are connected, the GBIC (fiber) interface is the active link. The RJ-45 (copper) link is unused.

Access — Enabled.

History — Introduced in MSS Version 3.0.

Usage — This command applies only to the WX4400.

If you set the preference to RJ-45 (copper) on a port that already has an active fiber link, MSS immediately changes the link to the copper interface.

Examples — The following command sets the preference of port 2 on a WX4400 to RJ-45 (copper):

WX4400# set port preference 2 rj45

See Also

 clear port preference on page 64  display port preference on page 69

set port speed Changes the speed of a port.

Syntax — set port speed port-list {10 | 100 | 1000 | auto}

 port-list — List of physical ports. MSS sets the port speed on all the

specified ports.

 10 — Sets the port speed of a 10/100 Ethernet port to 10 Mbps and

sets the operating mode to full-duplex.

86 CHAPTER 4: PORT COMMANDS

 100 — Sets the port speed of a 10/100 Ethernet port to 100 Mbps

and sets the operating mode to full-duplex.

 1000 — Sets the port speed of a gigabit Ethernet port to 1000 Mbps

and sets the operating mode to full-duplex.

 auto — Enables a port to detect the speed and operating mode of the

traffic on the link and set itself accordingly.

Defaults — All ports are set to auto.

Access — Enabled.

History — Introduced in MSS Version 3.0.

Examples — The following command sets the port speed on ports 1 and

3 through 4 to 10 Mbps and sets the operating mode to full-duplex:

WX1200# set port speed 1,3-4 10

set port trap Enables or disables Simple Network Management Protocol (SNMP) linkup

and linkdown traps on an individual port.

Syntax —

 port-list — List of physical ports.  enable — Enables the Telnet server.  disable — Disables the Telnet server.

set port trap port-list {enable | disable}

Defaults — SNMP linkup and linkdown traps are disabled by default.

Access — Enabled.

History — Introduced in MSS Version 3.0.

Usage — The set port trap command overrides the global setting of the set snmp profile command.

The set port type command does not affect the global trap information displayed by the display snmp configuration command. For example, if you globally enable linkup and linkdown traps but then disable the traps on a single port, the display snmp configuration command still indicates that the traps are globally enabled.

set port type ap 87

Examples — The following command enables SNMP linkup and

linkdown traps on ports 3 and 4:

WX1200# set port trap 3-4 enable

See Also

 display snmp configuration on page 136  set ip snmp server on page 152  set snmp community on page 160  set snmp profile on page 167  set snmp notify target on page 162

set port type ap Configures an WX switch port for an MAP access point.

CAUTION: When you set the port type for MAP use, you must specify the PoE state (enable or disable) of the port. Use the WX switch’s PoE to power 3Com MAP access points only. If you enable PoE on a port connected to another device, physical damage to the device can result.

Before configuring a port as an MAP access point port, you must use the set system countrycode command to set the IEEE 802.11 country-specific regulations on the WX switch. See “set system countrycode” on page 54.

For an MAP that is indirectly connected to the WX switch through an intermediate Layer 2 or Layer 3 network, use the

set dap command to

configure a Distributed MAP.

Before changing the port type from ap to wired-auth or from wired-auth to ap, you must reset the port with the clear port type command.

Syntax —

ap7250 | ap8250 | ap8750 | mp-52 | mp-101 | mp-122 | mp-241 | mp-252 | mp-262 | mp-341 | mp-352| mp-372} poe {enable | disable} [radiotype {11a | 11b | 11g}]

 port-list — List of physical ports.

 model {ap2750 | ap3750 | ap7250 | ap8250 | ap8750 | mp-52 |

mp-101 | mp-122 | mp-241 | mp-252 | mp-262 | mp-341 | mp-352| mp-372} — MAP access point model:

set port type ap port-list model {ap2750 | ap3750 |

88 CHAPTER 4: PORT COMMANDS

 ap2750 — Contains one radio that can be configured through

software for 802.11a or 802.11b/g. An external dual-mode antenna may be used in place of the supplied antenna.

 ap3750 — Contains one 802.11b/g radio and one 802.11a radio

with connectors for optional external antennas for each radio.

 ap7250 — Contains one 802.11b/g radio. An external antenna

may be used in place of the supplied antenna.

 ap8250 — Contains one 802.11b/g radio. It also has the ability to

have an additional 802.11a radio installed in it. An external dual-mode antenna may be used in place of the supplied antenna.

 ap8750 — Contains one 802.11a radio and one 802.11b/g radio.

An external dual-mode antenna may be used in place of the supplied antenna for the 802.11b/g radio.

 mp-52 — Contains one 802.11a radio and one 802.11b radio, with

adjustable external antennas.

 mp-101 — Contains one radio that can be configured through

software for 802.11a or 802.11b.

 mp-122 — Contains one 802.11a radio and one 802.11b/g radio.  mp-241 — Contains one radio that can be configured through

software for 802.11a or 802.11b/g.

 mp-252 — Contains one 802.11a radio and one 802.11b radio.  mp-262 — Contains one 802.11a radio and one 802.11b radio,

and a connector for an external antenna for the 802.11b/g radio.

 mp-341 — Contains one radio that can be configured through

software for 802.11a or 802.11b/g, and a connector for an external antenna for the 802.11b/g radio.

 mp-352 — Contains one 802.11a radio and one 802.11b radio,

and a connector for an external antenna for the 802.11b/g radio.

 mp-372 — Contains one 802.11b/g radio and one 802.11a radio

with connectors for optional external antennas for each radio

 poe enable | disable — Power over Ethernet (PoE) state.  radiotype 11a | 11b | 11g — Radio type:

 11a — 802.11a  11b — 802.11b  11g — 802.11g

set port type ap 89

This option does not apply to single-radio models. The value 11g does not apply to model MP-101.

Defaults — All WX ports are network ports by default.

The default radio type for model MP-101 is 802.11b. The default radio type for model AP2750, AP7250, MP-241, and MP-341, and for the

802.11b/g radios in models AP3750, AP8250, AP8750, MP-52, MP-252, MP-262, and MP-352 is 802.11g in regulatory domains that support

802.11g, or 802.11b in regulatory domains that do not support 802.11g.

antennatype command.

Access — Enabled.

History — Introduced in MSS Version 3.0.

Usage — You cannot set a port’s type if the port is a member of a port

VLAN. To remove a port from a VLAN, use the clear vlan command. To reset a port as a network port, use the clear port type command.

When you change port type, MSS applies default settings appropriate for the port type. Table 17 lists the default settings that MSS applies when you set a port’s type to ap.

90 CHAPTER 4: PORT COMMANDS

Table 17 MAP Access Port Defaults

Port Parameter Setting

VLAN membership Removed from all VLANs. You cannot assign an MAP

Spanning Tree Protocol (STP)

802.1X Uses authentication parameters configured for users. Port groups Not applicable IGMP snooping Enabled as users are authenticated and join VLANs. Maximum user

sessions

This command does not apply to any gigabit Ethernet ports or to ports 7 and 8 on the WX1200 switch. To manage a MAP access point on a WX4400 switch, use the set dap command to configure a Distributed MAP connection on the switch.

Examples — The following command sets ports 1 through 3 and port 5 for MAP access point model AP3750 and enables PoE on the ports:

WX1200# set port type ap 1-3,5 model ap3750 poe enable This may affect the power applied on the configured ports. Would you like to continue? (y/n) [n]y

access port to a VLAN. MSS automatically assigns MAP access ports to VLANs based on user traffic.

Not applicable

The following command sets ports 1 through 3 and port 5 for MAP access point model AP3750 and enables PoE on the ports:

WX1200# set port type ap 1-3,5 model ap3750 poe enable This may affect the power applied on the configured ports. Would you like to continue? (y/n) [n]y

The following command sets ports 1 through 3 and port 5 for MAP access point model AP8250 and enables PoE on the ports:

WX1200# set port type ap 1-3,5 model ap8250 poe enable This may affect the power applied on the configured ports. Would you like to continue? (y/n) [n]y

The following command sets ports 1 through 3 and port 5 for MAP access point model AP8750 and enables PoE on the ports:

WX1200# set port type ap 1-3,5 model ap8750 poe enable This may affect the power applied on the configured ports. Would you like to continue? (y/n) [n]y

set port type wired-auth 91

The following command resets port 5 by clearing it:

WX1200# clear port type 5 This may disrupt currently authenticated users. Are you sure? (y/n) [n]y success: change accepted.

See Also

 clear dap on page 62  clear port type on page 65  set {ap | dap} radio antennatype on page 315  set dap on page 77  set port type wired-auth on page 91  set radio-profile 11g-only on page 329  set system countrycode on page 54

set port type wired-auth

Configures a WX switch port for a wired authentication user.

Before changing the port type from ap to wired-auth or from wired-auth to ap, you must reset the port with the clear port type

command.

Syntax —

[max-sessions num] [auth-fall-thru {last-resort | none | web

portal}]

 port-list — List of physical ports.  tag-list — One or more numbers between 1 and 4094 that

set port type wired-auth port-list [tag tag-list]

subdivide a wired authentication port into virtual ports.

 num — Maximum number of simultaneous user sessions supported.  last resort — Automatically authenticates the user, without

requiring a username and password.

 none— Denies authentication and prohibits the user from accessing

the network over this port.

 web portal — Serves the user a web page from the WX switch’s

nonvolatile storage for secure login to the network.

92 CHAPTER 4: PORT COMMANDS

Defaults — The default tag-list is null (no tag values). The default number of sessions is 1. The default fallthru authentication type is none.

Access — Enabled.

History—Version 3.0: Options added to change the fallthru

authentication type. This is the authentication type that MSS uses is the user does not support 802.1X and is not authenticated by MAC authentication. Version 4.0: Option for WebAAA fallthru authentication type changed from web-auth to web-portal.

Usage — You cannot set a port’s type if the port is a member of a port VLAN. To remove a port from a VLAN, use the clear vlan command. To reset a port as a network port, use the clear port type command.

When you change port type, MSS applies default settings appropriate for the port type. Table 18 lists the default settings that MSS applies when you set a port’s type to ap.

Table 18 Wired Authentication Port Details

Port Parameter Setting

VLAN membership Removed from all VLANs. You cannot assign an MAP access

port to a VLAN. MSS automatically assigns MAP access ports to VLANs based on user traffic.

Spanning Tree Protocol (STP)

802.1X Uses authentication parameters configured for users. Port groups Not applicable IGMP snooping Enabled as users are authenticated and join VLANs. Maximum user

sessions Fallthru

authentication type

Not applicable

1 (one).

None.

Examples — The following command sets port 2 for a wired authentication user:

WX1200# set port type wired-auth 2 success: change accepted

set port type wired-auth 93

The following command sets port 7 for a wired authentication user and subdivides the port into three virtual ports to support three simultaneous user sessions:

WX1200# set port type wired-auth 7 1,2,3 success: change accepted

See Also

 clear port type on page 65  set port type ap on page 87

94 CHAPTER 4: PORT COMMANDS

VLAN COMMANDS

Use virtual LAN (VLAN) commands to configure and manage parameters for individual port VLANs on network ports, and to display information about clients roaming within a mobility domain.

Commands by usage

This chapter presents V locate commands in this chapter based on their use.

Table 19 VLAN Commands by Usage

Type Command Creation set vlan name on page 109 Ports set vlan port on page 110

Roaming and Tunnels display roaming station on

Tunnel Affinity set vlan tunnel-affinity on

FDB Entries set fdb on page 107

FDB Aging Timeout set fdb agingtime on page 108

LAN comm

clear vlan on page 97 display vlan config on page 106

page 102

display roaming vlan on page 104 display tunnel on page 105

page 111

display fdb on page 98 display fdb count on page 101 clear fdb on page 96

display fdb agingtime on page 101

ands alphabetically. Use Table 19 to

96 CHAPTER 5: VLAN COMMANDS

clear fdb Deletes an entry from the forwarding database (FDB).

Syntax —

port port-list} [vlan vlan-id] [tag tag-value]

 perm — Clears permanent entries. A permanent entry does not age

clear fdb {perm | static | dynamic |

out and remains in the database even after a reboot, reset, or power cycle. You must specify a VLAN name or number with this option.

 static — Clears static entries. A static entry does not age out, but is

removed from the database after a reboot, reset, or power cycle. You must specify a VLAN name or number with this option.

 dynamic — Clears dynamic entries. A dynamic entry is automatically

removed through aging or after a reboot, reset, or power cycle. You are not required to specify a VLAN name or number with this option.

 port port-list — Clears dynamic entries that match destination

ports in the port list. You are not required to specify a VLAN name or number with this option.

 vlan vlan-id — VLAN name or number—required for removing

permanent and static entries. For dynamic entries, specifying a VLAN removes entries that match only that VLAN. Otherwise, dynamic entries that match all VLANs are removed.

 tag tag-value — VLAN tag value that identifies a virtual port. If you

do not specify a tag value, MSS deletes only entries that match untagged interfaces. Specifying a tag value deletes entries that match only the specified tagged interfaces

Defaults — None.

Access — Enabled.

History —Introduced in MSS Version 3.0.

Usage — You can delete forwarding database entries based on entry

type, port, or VLAN. A VLAN name or number is required for deleting permanent or static entries.

Examples — The following command clears all static forwarding database entries that match VLAN blue:

WX4400# clear fdb static vlan blue success: change accepted.

clear vlan 97

The following command clears all dynamic forwarding database entries that match all VLANs:

WX4400# clear fdb dynamic success: change accepted.

The following command clears all dynamic forwarding database entries that match ports 3 and 5:

WX4400# clear fdb port 3,5 success: change accepted.

See Also

 display fdb on page 98  set fdb on page 107

clear vlan Removes physical or virtual ports from a VLAN or removes a VLAN

entirely.

CAUTION:

When you remove a VLAN, MSS completely removes the

VLAN from the configuration and also removes all configuration information that uses the VLAN. If you want to remove only a specific port from the VLAN, make sure you specify the port number in the command.

Syntax —

 vlan-id — VLAN name or number.  port port-list — List of physical ports. MSS removes the specified

clear vlan vlan-id [port port-list [tag tag-value]]

ports from the VLAN. If you do not specify a list of ports, MSS removes the VLAN entirely.

 tag tag-value — Tag number that identifies a virtual port. MSS

removes only the specified virtual port from the specified physical ports.

Defaults — None.

Access — Enabled.

History —Introduced in MSS Version 3.0.

98 CHAPTER 5: VLAN COMMANDS

Usage — If you do not specify a port-list, the entire VLAN is removed

from the configuration.

You cannot delete the default VLAN but you can remove ports from it. To remove ports from the default VLAN, use the port port-list option.

Examples — The following command removes port 1 from VLAN green:

WX4400# clear vlan green port 1 This may disrupt user connectivity. Do you wish to continue? (y/n) [n]y success: change accepted.

The following command removes port 4, which uses tag value 69, from VLAN red:

WX1200# clear vlan red port 4 tag 69 This may disrupt user connectivity. Do you wish to continue? (y/n) [n]y success: change accepted.

The following command completely removes VLAN marigold:

WX4400# clear vlan marigold This may disrupt user connectivity. Do you wish to continue? (y/n) [n]y success: change accepted.

See Also

 set vlan port on page 110  display vlan config on page 106

display fdb Displays entries in the forwarding database.

Syntax —

display fdb {perm | static | dynamic | system | all} [port port-list | vlan vlan-id]

 mac-addr-glob — A single MAC address or set of MAC addresses.

Specify a MAC address, or use the wildcard character (*) to specify a set of MAC addresses. (For details, see “MAC Address Globs” on page 27.)

 vlan vlan-id — Name or number of a VLAN for which to display

entries.

display fdb [mac-addr-glob [vlan vlan-id ]]

display fdb 99

 perm — Displays permanent entries. A permanent entry does not age

out and remains in the database even after a reboot, reset, or power cycle.

 static — Displays static entries. A static entry does not age out, but

is removed from the database after a reboot, reset, or power cycle.

 dynamic — Displays dynamic entries. A dynamic entry is automatically

removed through aging or after a reboot, reset, or power cycle.

 system — Displays system entries. A system entry is added by MSS.

For example, the authentication protocols can add entries for wired and wireless authentication users.

 all — Displays all entries in the database, or all the entries that match

a particular port or ports or a particular VLAN.

 port port-list — Destination port(s) for which to display entries.

Defaults — None.

Access — All.

History —Introduced in MSS Version 3.0.

Usage — To display the entire forwarding database, enter the display fdb command without options. To display only a portion of the database,

use optional parameters to specify the types of entries you want to display.

Examples — The following command displays all entries in the forwarding database:

WX4400# display fdb all * = Static Entry. + = Permanent Entry. # = System Entry. VLAN TAG Dest MAC/Route Des [CoS] Destination Ports [Protocol Type]

---- ---- ------------------ ----- ---------------------------------------- 1 00:01:97:13:0b:1f 1 [ALL] 1 aa:bb:cc:dd:ee:ff * 3 [ALL] 1 00:0b:0e:02:76:f5 1 [ALL] Total Matching FDB Entries Displayed = 3

The top line of the display identifies the characters to distinguish among the entry types.

100 CHAPTER 5: VLAN COMMANDS

The following command displays all entries that begin with the MAC address glob 00:

WX4400# display fdb 00:* * = Static Entry. + = Permanent Entry. # = System Entry. VLAN TAG Dest MAC/Route Des [CoS] Destination Ports [Protocol Type]

---- ---- ------------------ ----- ---------------------------------------- 1 00:01:97:13:0b:1f 1 [ALL]

1 00:0b:0e:02:76:f5 1 [ALL]

Total Matching FDB Entries Displayed = 2

Table 20 describes the fields in the display fdb output.

Table 20 Output for display fdb

Field Description

VLAN VLAN number. TAG VLAN tag value. If the interface is untagged, the TAG field

Dest MAC/Route Des MAC address of this forwarding entry’s destination. CoS Type of entry. The entry types are explained in the first

Destination Ports Wireless LAN switch port associated with the entry. A WX

Protocol Type Layer 3 protocol address types that can be mapped to this

Total Matching FDB Entries Displayed

is blank.

row of the command output. Note: This Class of Service (CoS) value is not associated

with MSS quality of service (QoS) features.

switch sends traffic to the destination MAC address through this port.

entry. Number of entries displayed by the command.

See Also

 clear fdb on page 96  set fdb on page 107

HP Wireless Switch Manager Command Reference Guide

Specifications and Main Features

Frequently Asked Questions

User Manual

ABOUT THIS GUIDE

Conventions Table 1 and Table 2 list conventions that are used throughout this guide.

Documentation The MSS documentation set includes the following documents.

Documentation Comments

Overview Mobility System Software (MSS) operates a 3Com Mobility System

CLI Conventions Be aware of the following MSS CLI conventions for command entry:

Command Prompts By default, the MSS CLI provides the following prompt for restricted

Syntax Notation The MSS CLI uses standard syntax notation:

Subnet Masks

Wildcard Masks

User Globs

MAC Address Globs

VLAN Globs

Matching Order for Globs

Port Lists The physical Ethernet ports on a WX switch can be set for connection to

Command-Line Editing

Tab le 4 Keyboard Shortcuts

History Buffer The history buffer stores the last 63 commands you entered during a

Ta bs The MSS CLI uses the Tab key for command completion. You can type

Using CLI Help 31

Understanding Command Descriptions

ACCESS COMMANDS

Commands by Usage

disable

enable

WX1200> quit

set enablepass

SYSTEM SERVICE COMMANDS

Commands by Usage

clear banner motd

clear history

clear prompt

clear system Clears the system configuration of the specified information.

display banner motd

display base-information

display license

display system Shows system information.

help

history

set auto-config Enables a WX switch to contact a 3Com Wireless Switch Manager server

set banner motd 49

set confirm Enables or disables the display of confirmation messages for commands

set length number-of-lines

set license license-key activation-key

set prompt string

set system contact string

set system countrycode

set system ip-address

set system location string

set system name string

PORT COMMANDS

Commands by Usage

clear dap dap-num

clear port counters

clear port-group Removes a port group.

clear port name Removes the name assigned to a port.

clear port preference

clear port type port-list

display port counters

display port-group 67

WX1200# display port poe

display port preference

display port status Displays configuration and status information for ports.

monitor port counters

reset port port-list

set dap Configures a Distributed MAP for an MAP access point that is indirectly

set port Administratively disables or reenables a port.

set port-group 81

set port name Assigns a name to a port. After naming a port, you can use the port

set port negotiation 83

set port poe Enables or disables Power over Ethernet (PoE) on ports connected to MAP

set port preference 85

set port speed Changes the speed of a port.

set port trap Enables or disables Simple Network Management Protocol (SNMP) linkup

set port type ap 87

set port type wired-auth