Cisco CISCO1401 - 1401 Router - EN Software Manual

Wireless bridge

Table of Contents

Quick Links

Download this manual

Cisco Aironet 1400 Series Wireless Bridge

Software Configuration Guide

Cisco IOS Release 12.2(11)JA

June 2003

Corporate Headquarters

Cisco Systems, Inc.

170 West Tasman Drive

San Jose, CA 95134-1706

USA

http://www.cisco.com

Tel: 408 526-4000

800 553-NETS (6387)

Fax: 408 526-4100

Text Part Number: OL-4059-01

Table of Contents

Summary of Contents for Cisco CISCO1401 - 1401 Router - EN

Page 1 Cisco Aironet 1400 Series Wireless Bridge Software Configuration Guide Cisco IOS Release 12.2(11)JA June 2003 Corporate Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 526-4100 Text Part Number: OL-4059-01...
Page 2 OR LIMITED WARRANTY, CONTACT YOUR CISCO REPRESENTATIVE FOR A COPY. The Cisco implementation of TCP header compression is an adaptation of a program developed by the University of California, Berkeley (UCB) as part of UCB’s public domain version of the UNIX operating system. All rights reserved. Copyright © 1981, Regents of the University of California.
Page 3 Before You Start Resetting the Bridge to Default Settings Obtaining and Assigning an IP Address Connecting to the Bridge Locally Assigning Basic Settings Default Settings on the Express Setup Page Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 4: Table Of Contents
Opening the CLI with Telnet Opening the CLI with Secure Shell Administering the Bridge C H A P T E R Preventing Unauthorized Access to Your Bridge Protecting Access to Privileged EXEC Commands Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 5 Setting the System Clock 5-27 Displaying the Time and Date Configuration 5-27 Configuring the Time Zone 5-28 Configuring Summer Time (Daylight Saving Time) 5-29 Configuring a System Name and Prompt 5-31 Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 6 Configuring the SSID Default SSID Configuration Creating an SSID Configuring Spanning Tree Protocol C H A P T E R Understanding Spanning Tree Protocol STP Overview Bridge Protocol Data Units Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 7 Assigning Authentication Types to an SSID 10-5 Configuring Authentication Holdoffs, Timeouts, and Intervals 10-7 Setting Up a Non-Root Bridge as a LEAP Client 10-8 Matching Authentication Types on Root and Non-Root Bridges 10-8 Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 8 Understanding QoS for Wireless LANs 13-2 QoS for Wireless LANs Versus QoS on Wired LANs 13-2 Impact of QoS on a Wireless LAN 13-2 Precedence of QoS Settings 13-3 Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide viii OL-4059-01...
Page 9 16-2 SNMP Versions 16-2 SNMP Manager Functions 16-3 SNMP Agent Functions 16-3 SNMP Community Strings 16-3 Using SNMP to Access MIB Variables 16-4 Configuring SNMP 16-4 Default SNMP Configuration 16-5 Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 10 Preparing to Download or Upload a Configuration File by Using RCP 17-16 Downloading a Configuration File by Using RCP 17-16 Uploading a Configuration File by Using RCP 17-17 Clearing Configuration Information 17-18 Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 11 Working with Software Images 17-19 Image Location on the Bridge 17-19 tar File Format of Images on a Server or Cisco.com 17-19 Copying Image Files by Using TFTP 17-20 Preparing to Download or Upload an Image File by Using TFTP...
Page 12 Using FTP to Access the MIB Files Error and Event Messages A P P E N D I X L O S S A R Y N D E X Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 13 This guide is for the networking professional who installs and manages Cisco Aironet 1400 Series Bridges. To use this guide, you should have experience working with the Cisco IOS and be familiar with the concepts and terminology of wireless local area networks.
Page 14 Ethertype filters on the bridge using the web-browser interface. Chapter 15, “Configuring CDP,” describes how to configure Cisco Discovery Protocol (CDP) on your bridge. CDP is a device-discovery protocol that runs on all Cisco network equipment. Chapter 16, “Configuring SNMP,” describes how to configure the Simple Network Management Protocol (SNMP) on your bridge.
Page 15 (Voor vertalingen van de waarschuwingen die in deze publicatie verschijnen, kunt u het aanhangsel “Translated Safety Warnings” (Vertalingen van veiligheidsvoorschriften) raadplegen.) Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 16 Innan du utför arbete på någon utrustning måste du vara medveten om farorna med elkretsar och känna till vanligt förfarande för att förebygga skador. (Se förklaringar av de varningar som förekommer i denna publikation i appendix "Translated Safety Warnings" [Översatta säkerhetsvarningar].) Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 17: Related Publications
Obtaining Documentation and Submitting a Service Request For information on obtaining documentation, submitting a service request, and gathering additional information, see the monthly What’s New in Cisco Product Documentation, which also lists all new and revised Cisco technical documentation, at: http://www.cisco.com/en/US/docs/general/whatsnew/whatsnew.html...
Page 18 Preface Related Publications Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide xviii OL-4059-01...
Page 19 C H A P T E R Overview Cisco Aironet 1400 Series Bridges (hereafter called bridges) provide building-to-building wireless connectivity. Operating in the 5.8-GHz, UNII-3 band and conforming to the 802.11a standard, the 1400 series bridge delivers a 54-Mbps data rate. The bridge is a self-contained unit designed for outdoor installations.
Page 20: Management Options
Enhanced authentication services—Set up non-root bridges to authenticate to your network like other wireless client devices. After you provide a network username and password for the non-root bridge, it authenticates to your network using LEAP, Cisco's wireless authentication method, and receives and uses dynamic WEP keys.
Page 21: Network Configuration Examples
If your bridges connect one or more large, flat networks (a network containing more than 256 users on Note the same subnet) we recommend that you use a router to connect the bridge to the large, flat network. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 22 Spanning Tree Protocol (STP) to prevent bridge loops. See Chapter 8, “Configuring Spanning Tree Protocol,” for instructions on configuring STP. Note STP is disabled by default. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 23 Network Configuration Examples Figure 1-3 shows two pairs of redundant bridges. Figure 1-3 Redundant Bridge Configuration Root Bridge Non-Root Bridge Switch on Switch on LAN 1 LAN 2 Non-Root Root Bridge Bridge Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 24 Chapter 1 Overview Network Configuration Examples Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 25 Protecting Your Wireless LAN, page 2-8 Using the IP Setup Utility, page 2-8 • • Assigning an IP Address Using the CLI, page 2-11 Using a Telnet Session to Access the CLI, page 2-12 • Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 26: Before You Start
Step 3 Enter your username in the User Name field. The default username is Cisco. Enter the bridge password in the Password field and press Enter. The default password is Cisco. The Step 4 Summary Status page appears.
Page 27: Obtaining And Assigning An Ip Address
IP address. The bridge’s MAC address is on the label attached to the bottom of the bridge. Use the Cisco IP Setup Utility (IPSU) to identify the assigned address. You can also use IPSU – to assign an IP address to the bridge if it did not receive an IP address from the DHCP server.
Page 28: Assigning Basic Settings
Step 2 screen appears. Press Tab to bypass the Username field and advance to the Password field. Step 3 Enter the case-sensitive password Cisco and press Enter. The Summary Status page appears. Figure 2-1 Step 4 shows the Summary Status page.
Page 29 Configuring the Bridge for the First Time Assigning Basic Settings Figure 2-1 Summary Status Page Step 5 Click Express Setup. The Express Setup screen appears. Figure 2-2 shows the Express Setup page. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 30 IP Subnet Mask—Enter the IP subnet mask provided by your network administrator so the IP • address can be recognized on the LAN. If DHCP is enabled, leave this field blank. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 31 You can restore the bridge to its factory defaults by unplugging the power cable from the power Note injector and plugging it back in while holding down the power injector Mode button for a few seconds, or until the power injector Status LED turns amber. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 32: Protecting Your Wireless Lan
IPSU to set the bridge’s IP address and SSID if they have not been changed from the default settings. This section explains how to download the utility from Cisco.com and install it, how to use it to find the bridge’s IP address, and how to use it to set the IP address and the SSID.
Page 33: Obtaining And Installing Ipsu
Using the IP Setup Utility Obtaining and Installing IPSU IPSU is available on the Cisco web site. Follow these steps to obtain and install IPSU: Use your Internet browser to access the Cisco Software Center at the following URL: Step 1 http://www.cisco.com/cisco/software/navigator.html...
Page 34: Using Ipsu To Set The Bridge's Ip Address And Ssid
Step 1 Double-click the IPSU icon on your computer desktop to start the utility. Step 2 Click the Set Parameters radio button in the Function box (see Figure 2-4). Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 2-10 OL-4059-01...
Page 35: Assigning An Ip Address Using The Cli
Ethernet and radio ports, the network uses the BVI. The bridge supports only one BVI. Configuring more than one BVI might cause errors in the bridge’s Note ARP table. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 2-11 OL-4059-01...
Page 36: Using A Telnet Session To Access The Cli
In Windows 2000, the Telnet window does not contain drop-down menus. To start the Telnet Note session in Windows 2000, type open followed by the bridge’s IP address. In the Host Name field, type the bridge’s IP address and click Connect. Step 3 Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 2-12 OL-4059-01...
Page 37: Chapter 3 Using The Web-Browser Interface
Note The bridge web-browser interface is fully compatible with these browsers: Microsoft Internet Explorer versions 5.0, 5.01, 5.5 and 6.0; and Netscape Navigator versions 4.79 and 7.0. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 38: Using The Web-Browser Interface For The First Time
Enter the bridge’s IP address in the browser Location field (Netscape Communicator) or Address field Step 2 (Internet Explorer) and press Enter. Enter the administrator username and password and press Enter. The default username is Cisco and the Step 3 default password is Cisco. The Summary Status page appears.
Page 39: Using Action Buttons
Displays a summary of security settings and provides links to security configuration pages. Services Displays status for several bridge features and links to configuration pages for Telnet/SSH, CDP, domain name server, filters, proxy Mobile IP, QoS, SNMP, SNTP, and VLANs. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 40: Character Restrictions In Entry Fields
Discards any changes made to the page and returns to the previous page. Character Restrictions in Entry Fields Because the 1400 series bridge uses Cisco IOS software, there are certain characters that you cannot use in the entry fields on the web-browser interface.
Page 41: Using Online Help
When a help page appears in a new browser window, use the Select a topic drop-down menu to display the help index or instructions for common configuration tasks, such as configuring VLANs. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 42 Chapter 3 Using the Web-Browser Interface Using Online Help Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 43 Using Command History, page 4-4 • • Using Editing Features, page 4-5 Searching and Filtering Output of show and more Commands, page 4-8 • • Accessing the CLI, page 4-8 Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 44: Ios Command Modes
IOS Command Modes IOS Command Modes The Cisco IOS user interface is divided into many different modes. The commands available to you depend on which mode you are currently in. Enter a question mark (?) at the system prompt to obtain a list of commands available for each command mode.
Page 45: C H A P T E R 4 Using The Command-Line Interface
For example, the no shutdown interface configuration command reverses the shutdown of an interface. Use the command without the keyword no to re-enable a disabled feature or to enable a feature that is disabled by default. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 46: Understanding Cli Messages
By default, the bridge records ten command lines in its history buffer. Beginning in privileged EXEC mode, enter this command to change the number of command lines that the bridge records during the current terminal session: BR# terminal history size number-of-lines Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 47: Recalling Commands
This section describes the editing features that can help you manipulate the command line. It contains these sections: Enabling and Disabling Editing Features, page 4-6 • Editing Commands Through Keystrokes, page 4-6 • Editing Command Lines that Wrap, page 4-7 • Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 48: Enabling And Disabling Editing Features
Delete all characters from the cursor to the beginning of the command line. Ctrl-W Delete the word to the left of the cursor. Esc D Delete from the cursor to the end of the word. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 49: Editing Command Lines That Wrap
BR(config)# access-list 101 permit tcp 131.108.2.5 255.255.255.0 131.108.1 BR(config)# $ 101 permit tcp 131.108.2.5 255.255.255.0 131.108.1.20 255.25 BR(config)# $t tcp 131.108.2.5 255.255.255.0 131.108.1.20 255.255.255.0 eq BR(config)# $108.2.5 255.255.255.0 131.108.1.20 255.255.255.0 eq 45 Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 50: Searching And Filtering Output Of Show And More Commands
If Telnet is not listed in your Accessories menu, select Start > Run, type Telnet in the entry field, and press Enter. When the Telnet window appears, click Connect and select Remote System. Step 2 Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 51: Opening The Cli With Secure Shell
At the username and password prompts, enter your administrator username and password. The default Step 4 username is Cisco, and the default password is Cisco. The default enable password is also Cisco. Usernames and passwords are case-sensitive. Opening the CLI with Secure Shell Secure Shell Protocol is a protocol that provides a secure, remote connection to networking devices set up to use it.
Page 52 Chapter 4 Using the Command-Line Interface Accessing the CLI Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 4-10 OL-4059-01...
Page 53 Configuring the Bridge for Secure Shell, page 5-16 • Managing the System Time and Date, page 5-17 • Configuring a System Name and Prompt, page 5-31 • Creating a Banner, page 5-33 • Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 54: Preventing Unauthorized Access To Your Bridge
Password protection restricts access to a network or network device. Privilege levels define what commands users can issue after they have logged into a network device. For complete syntax and usage information for the commands used in this section, refer to the Cisco IOS Note Security Command Reference for Release 12.2.
Page 55: Chapter 5 Administering The Bridge
Default Password and Privilege Levels (continued) Feature Default Setting Enable secret password and privilege level The default enable password is Cisco. The default is level 15 (privileged EXEC level). The password is encrypted before it is written to the configuration file. Line password Default password is Cisco.
Page 56: Protecting Enable And Enable Secret Passwords With Encryption
Encryption prevents the password from being readable in the configuration file. Step 4 Return to privileged EXEC mode. Step 5 copy running-config startup-config (Optional) Save your entries in the configuration file. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 57: Configuring Username And Password Pairs
Step 2. Step 4 Return to privileged EXEC mode. Step 5 show running-config Verify your entries. Step 6 copy running-config startup-config (Optional) Save your entries in the configuration file. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 58: Configuring Multiple Privilege Levels
For password, specify a string from 1 to 25 alphanumeric characters. • The string cannot start with a number, is case sensitive, and allows spaces but ignores leading spaces. By default, no password is defined. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 59: Logging Into And Exiting A Privilege Level
RADIUS is facilitated through AAA and can be enabled only through AAA commands. For complete syntax and usage information for the commands used in this section, refer to the Cisco IOS Note Security Command Reference for Release 12.2.
Page 60: Default Radius Configuration
Beginning in privileged EXEC mode, follow these steps to configure login authentication. This procedure is required. Command Purpose Step 1 configure terminal Enter global configuration mode. Step 2 aaa new-model Enable AAA. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 61: Defining Aaa Server Groups
RADIUS hosts providing a specific AAA service. If you configure two different host entries on the same RADIUS server for the same service (such as accounting), the second configured host entry acts as a fail-over backup to the first one. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 62 Associate a particular RADIUS server with the defined server group. Repeat this step for each RADIUS server in the AAA server group. Each server in the group must be previously defined in Step 2. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 5-10 OL-4059-01...
Page 63: Configuring Radius Authorization For User Privileged Access And Network Services
Use the local database if authentication was not performed by using RADIUS. • Authorization is bypassed for authenticated users who log in through the CLI even if authorization has Note been configured. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 5-11 OL-4059-01...
Page 64: Displaying The Radius Configuration
TACACS+ is facilitated through AAA and can be enabled only through AAA commands. For complete syntax and usage information for the commands used in this section, refer to the Cisco IOS Note Security Command Reference for Release 12.2.
Page 65: Default Tacacs+ Configuration
Beginning in privileged EXEC mode, follow these steps to configure login authentication. This procedure is required. Command Purpose Step 1 configure terminal Enter global configuration mode. Step 2 aaa new-model Enable AAA. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 5-13 OL-4059-01...
Page 66: Configuring Tacacs+ Authorization For Privileged Exec Access And Network Services
You can use the aaa authorization global configuration command with the tacacs+ keyword to set parameters that restrict a user’s network access to privileged EXEC mode. The aaa authorization exec tacacs+ local command sets these authorization parameters: Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 5-14 OL-4059-01...
Page 67: Displaying The Tacacs+ Configuration
Beginning in privileged EXEC mode, follow these steps to configure the bridge for local AAA: Command Purpose Step 1 configure terminal Enter global configuration mode. Step 2 aaa new-model Enable AAA. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 5-15 OL-4059-01...
Page 68: Configuring The Bridge For Secure Shell
Note For complete syntax and usage information for the commands used in this section, refer to the “Secure Shell Commands” section in the Cisco IOS Security Command Reference for Release 12.2. Understanding SSH SSH is a protocol that provides a secure, remote connection to a Layer 2 or a Layer 3 device. There are two versions of SSH: SSH version 1 and SSH version 2.
Page 69: Configuring Ssh
You can manage the system time and date on your bridge automatically, using the Network Time Protocol (NTP), or manually, by setting the time and date on the bridge. For complete syntax and usage information for the commands used in this section, refer to the Cisco IOS Note Configuration Fundamentals Command Reference for Release 12.2.
Page 70: Understanding Network Time Protocol
Cisco’s implementation of NTP does not support stratum 1 service; it is not possible to connect to a radio or atomic clock. We recommend that the time service for your network be derived from the public NTP servers available on the IP Internet.
Page 71: Configuring Ntp
Workstations Configuring NTP Cisco Aironet 1400 Series Bridges do not have a hardware-supported clock, and they cannot function as an NTP master clock to which peers synchronize themselves when an external NTP source is not available. These bridges also have no hardware support for a calendar. As a result, the ntp update-calendar and the ntp master global configuration commands are not available.
Page 72: Default Ntp Configuration
By default, no trusted keys are defined. For key-number, specify the key defined in Step 3. This command provides protection against accidentally synchronizing the bridge to a device that is not trusted. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 5-20 OL-4059-01...
Page 73: Configuring Ntp Associations
(Optional) Enter the prefer keyword to make this peer or server the • preferred one that provides synchronization. This keyword reduces switching back and forth between peers and servers. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 5-21 OL-4059-01...
Page 74: Configuring Ntp Broadcast Service
(Optional) For destination-address, specify the IP address of the peer that is synchronizing its clock to this bridge. Step 4 Return to privileged EXEC mode. Step 5 show running-config Verify your entries. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 5-22 OL-4059-01...
Page 75: Configuring Ntp Access Restrictions
You can control NTP access on two levels as described in these sections: Creating an Access Group and Assigning a Basic IP Access List, page 5-24 • • Disabling NTP Services on a Specific Interface, page 5-25 Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 5-23 OL-4059-01...
Page 76 NTP control queries from a device whose address passes the access list criteria. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 5-24 OL-4059-01...
Page 77: Configuring The Source Ip Address For Ntp Packets
Specify the interface type and number from which the IP source address is taken. By default, the source address is determined by the outgoing interface. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 5-25 OL-4059-01...
Page 78: Displaying The Ntp Configuration
• show ntp status • For detailed information about the fields in these displays, refer to the Cisco IOS Configuration Fundamentals Command Reference for Release 12.1. Configuring Time and Date Manually If no other source of time is available, you can manually configure the time and date after the system is restarted.
Page 79: Displaying The Time And Date Configuration
The symbol that precedes the show clock display has this meaning: • *—Time is not authoritative. • (blank)—Time is authoritative. .—Time is authoritative, but NTP is not synchronized. • Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 5-27 OL-4059-01...
Page 80: Configuring The Time Zone
Atlantic Canada (AST) is UTC-3.5, where the 3 means 3 hours and .5 means 50 percent. In this case, the necessary command is clock timezone AST -3 30. To set the time to UTC, use the no clock timezone global configuration command. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 5-28 OL-4059-01...
Page 81: Configuring Summer Time (Daylight Saving Time)
This example shows how to specify that summer time starts on the first Sunday in April at 02:00 and ends on the last Sunday in October at 02:00: bridge(config)# clock summer-time PDT recurring 1 Sunday April 2:00 last Sunday October 2:00 Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 5-29 OL-4059-01...
Page 82 This example shows how to set summer time to start on October 12, 2000, at 02:00, and end on April 26, 2001, at 02:00: bridge(config)# clock summer-time pdt date 12 October 2000 2:00 26 April 2001 2:00 Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 5-30 OL-4059-01...
Page 83: Configuring A System Name And Prompt
For complete syntax and usage information for the commands used in this section, refer to the Cisco IOS Note Configuration Fundamentals Command Reference and the Cisco IOS IP and IP Routing Command Reference for Release 12.1.
Page 84: Understanding Dns
Domain names are pieced together with periods (.) as the delimiting characters. For example, Cisco Systems is a commercial organization that IP identifies by a com domain name, so its domain name is cisco.com. A specific device in this domain, such as the File Transfer Protocol (FTP) system, is identified as ftp.cisco.com.
Page 85: Displaying The Dns Configuration
The login banner also appears on all connected terminals. It appears after the MOTD banner and before the login prompts. For complete syntax and usage information for the commands used in this section, refer to the Cisco IOS Note Configuration Fundamentals Command Reference for Release 12.2.
Page 86: Default Banner Configuration
This example shows the banner displayed from the previous configuration: Unix> telnet 172.2.5.4 Trying 172.2.5.4... Connected to 172.2.5.4. Escape character is '^]'. This is a secure site. Only authorized users are allowed. For access, contact technical support. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 5-34 OL-4059-01...
Page 87: Configuring A Login Banner
This example shows how to configure a login banner for the bridge using the dollar sign ($) symbol as the beginning and ending delimiter: bridge(config)# banner login $ Access for authorized users only. Please enter your username and password. bridge(config)# Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 5-35 OL-4059-01...
Page 88 Chapter 5 Administering the Bridge Creating a Banner Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 5-36 OL-4059-01...
Page 89 • • Configuring the Maximum Data Retries, page 6-7 Configuring the Fragmentation Threshold, page 6-8 • • Configuring Packet Concatenation, page 6-8 Performing a Carrier Busy Test, page 6-9 • Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 90: Chapter 6 Configuring Radio Setting
(RSSI) value and updates the LEDs and the RSSI voltage port. Step 4 Return to privileged EXEC mode. Step 5 copy running-config startup-config (Optional) Save your entries in the configuration file. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 91: Configuring The Radio Distance Setting
When you enter range for the data rate setting, the bridge sets the 6-Mbps rate to basic and the other rates to enabled. When you enter throughput for the data rate setting, the bridge sets all data rates to basic. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 92: Configuring Radio Transmit Power
Beginning in privileged EXEC mode, follow these steps to set the transmit power on your bridge radio: Command Purpose Step 1 configure terminal Enter global configuration mode. Step 2 interface dot11radio 0 Enter interface configuration mode for the radio interface. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 93: Configuring Radio Channel Settings
The frequencies allowed in your regulatory domain might Note differ from the frequencies listed here. Step 4 Return to privileged EXEC mode. Step 5 copy running-config (Optional) Save your entries in the configuration file. startup-config Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 94: Disabling And Enabling Aironet Extensions
Disabling and Enabling Aironet Extensions Disabling and Enabling Aironet Extensions By default, the bridge uses Cisco Aironet 802.11 extensions to improve communication with other 1400 series bridges. You cannot disable Aironet extensions on the bridge. Configuring the Ethernet Encapsulation Transformation Method When the bridge receives data packets that are not 802.3 packets, the bridge must format the packets to...
Page 95: Configuring Rts Threshold And Retries
Return to privileged EXEC mode. Step 5 copy running-config startup-config (Optional) Save your entries in the configuration file. Use the no form of the command to reset the setting to defaults. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 96: Configuring The Fragmentation Threshold
Also ensure that all bridges are running Cisco IOS Release 12.2(11)JA or later. If connectivity problems develop after implementing packet concatenation, deactivate the concatenation feature to determine if that is the cause of the problem.
Page 97: Performing A Carrier Busy Test
In privileged EXEC mode, enter this command to perform a carrier busy test: dot11 interface-number carrier busy Use the show dot11 carrier busy command to re-display the carrier busy test results. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 98 Chapter 6 Configuring Radio Settings Performing a Carrier Busy Test Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 6-10 OL-4059-01...
Page 99: Chapter 7 Configuring Ssids
This chapter describes how to configure a service set identifier (SSID) on the bridge. This chapter contains these sections: Understanding SSIDs, page 7-2 • Configuring the SSID, page 7-2 • Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 100: Understanding Ssids
32 alphanumeric characters. Do not include spaces in your SSID. Unlike Cisco Aironet Access Points, 1400 series bridges do not support multiple SSIDs. The bridge can only associate to another bridge, so you do not need to configure multiple SSIDs.
Page 101: Creating An Ssid
• Assign the SSID to the native VLAN • Designate the SSID as the infrastructure SSID • bridge# configure terminal bridge(config)# interface dot11radio 0 bridge(config-if)# ssid bridgeman bridge(config-ssid)# accounting accounting-method-list Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 102 Chapter 7 Configuring SSIDs Configuring the SSID bridge(config-ssid)# vlan 1 bridge(config-ssid)# infrastructure-ssid bridge(config-ssid)# end Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 103: Chapter 8 Configuring Spanning Tree Protocol
• Displaying Spanning-Tree Status, page 8-14 • For complete syntax and usage information for the commands used in this chapter, refer to the Cisco IOS Note Command Reference for Access Points and Bridges for this release. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide...
Page 104: Understanding Spanning Tree Protocol
The bridge supports both per-VLAN spanning tree (PVST) and a single 802.1q spanning tree without VLANs. The bridge cannot run 802.1s MST or 802.1d Common Spanning Tree, which maps multiple VLANs into a one-instance spanning tree. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 105: Bridge Protocol Data Units
Interfaces included in the spanning-tree instance are selected. Root ports and designated ports are • put in the forwarding state. All interfaces not included in the spanning tree are blocked. • Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 106: Election Of The Spanning-Tree Root
(lowering the numerical value) of the ideal bridge so that it becomes the spanning-tree root, you force a spanning-tree recalculation to form a new topology with the ideal bridge as the spanning-tree root. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 107: Spanning-Tree Interface States
• • From blocking to listening or to disabled • From listening to learning or to disabled • From learning to forwarding or to disabled From forwarding to disabled • Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 108: Blocking State
An interface always enters the blocking state when you enable STP. An interface in the blocking state performs as follows: Discards frames received on the port • Does not learn addresses • Receives BPDUs • Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 109: Listening State
A disabled interface performs as follows: Discards frames received on the port • Does not learn addresses • • Does not receive BPDUs Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 110: Configuring Stp Features
Purpose Step 1 configure terminal Enter global configuration mode. Step 2 interface { dot11radio number | fastethernet Enter interface configuration mode for radio or Ethernet number } interfaces or sub-interfaces. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 111: Stp Configuration Examples
9.0 12.0 18.0 24.0 36.0 48.0 54.0 rts threshold 2312 station-role root no cdp enable infrastructure-client bridge-group 1 Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 112: Non-Root Bridge Without Vlans
1 interface FastEthernet0 no ip address no ip route-cache duplex auto speed auto bridge-group 1 path-cost 40 interface BVI1 ip address 1.4.64.24 255.255.0.0 no ip route-cache Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 8-10 OL-4059-01...
Page 113: Root Bridge With Vlans
2 interface Dot11Radio0.3 encapsulation dot1Q 3 no ip route-cache bridge-group 3 bridge-group 3 path-cost 500 interface FastEthernet0 no ip address no ip route-cache Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 8-11 OL-4059-01...
Page 114: Non-Root Bridge With Vlans
Dot11Radio0 no ip address no ip route-cache ssid vlan1 vlan 1 authentication open infrastructure-ssid speed basic-6.0 9.0 12.0 18.0 24.0 36.0 48.0 54.0 rts threshold 2312 Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 8-12 OL-4059-01...
Page 115 1 route ip bridge 1 priority 10000 bridge 2 protocol ieee bridge 2 priority 12000 bridge 3 protocol ieee bridge 3 priority 2900 line con 0 line vty 5 15 Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 8-13 OL-4059-01...
Page 116: Displaying Spanning-Tree Status
For information about other keywords for the show spanning-tree privileged EXEC command, refer to the Cisco Aironet IOS Command Reference for Cisco Aironet Access Points and Bridges for this release. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide...
Page 117: Chapter 9 Configuring Wep And Wep Features
This chapter describes how to configure Wired Equivalent Privacy (WEP), Message Integrity Check (MIC), and Temporal Key Integrity Protocol (TKIP). This chapter contains these sections: Understanding WEP, page 9-2 • Configuring WEP and WEP Features, page 9-2 • Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 118: Understanding Wep
Just as anyone within range of a radio station can tune to the station's frequency and listen to the signal, any wireless networking device within range of an bridge can receive the bridge's radio transmissions. Because WEP is the first line of defense against intruders, Cisco recommends that you use full encryption on your wireless network.
Page 119: Enabling And Disabling Wep And Enabling Tkip And Mic
Beginning in privileged EXEC mode, follow these steps to enable WEP, TKIP, and MIC: Command Purpose Step 1 configure terminal Enter global configuration mode. Step 2 interface dot11radio 0 Enter interface configuration mode for the radio interface. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 120 This example sets WEP to mandatory for VLAN 1 and enables MIC and TKIP. bridge# configure terminal bridge(config)# configure interface dot11radio 0 bridge(config-if)# encryption vlan 1 mode wep mandatory mic key-hash bridge(config-if)# end Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 121: Chapter 10 Configuring Authentication Types
This chapter describes how to configure authentication types on the bridge. This chapter contains these sections: Understanding Authentication Types, page 10-2 • Configuring Authentication Types, page 10-5 • Matching Authentication Types on Root and Non-Root Bridges, page 10-9 • Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 10-1 OL-4059-01...
Page 122: Understanding Authentication Types
2. Authentication response Shared Key Authentication to the Bridge Cisco provides shared key authentication to comply with the IEEE 802.11b standard. However, because of shared key’s security flaws, we recommend that you avoid using it. During shared key authentication, the root bridge sends an unencrypted challenge text string to other bridges attempting to communicate with the root bridge.
Page 123: Eap Authentication To The Network
The root bridge also encrypts its broadcast WEP key (entered in the bridge’s WEP key slot 1) with the non-root bridge’s unicast key and sends it to the non-root bridge. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 10-3 OL-4059-01...
Page 124 RADIUS server and from the RADIUS server to the wireless client device. See the “Assigning Authentication Types to an SSID” section on page 10-5 for instructions on setting up EAP on the bridge. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 10-4 OL-4059-01...
Page 125: Configuring Authentication Types
Create an SSID and enter SSID configuration mode for the new SSID. The SSID can consist of up to 32 alphanumeric characters. SSIDs are case sensitive. Do not include spaces in SSIDs. Note Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 10-5 OL-4059-01...
Page 126 The configuration on non-root bridges associated to this bridge would also contain these commands: bridge(config)# configure interface dot11radio 0 bridge(config-if)# ssid bridgeman bridge(config-ssid)# authentication client username bridge7 password catch22 Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 10-6 OL-4059-01...
Page 127: Configuring Authentication Holdoffs, Timeouts, And Intervals
Return to privileged EXEC mode. Step 7 copy running-config startup-config (Optional) Save your entries in the configuration file. Use the no form of these commands to reset the values to default settings. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 10-7 OL-4059-01...
Page 128: Setting Up A Non-Root Bridge As A Leap Client
LEAP, Cisco's wireless authentication method, and receives and uses dynamic WEP keys. Setting up a non-root bridge as a LEAP client requires three major steps: Create an authentication username and password for the non-root bridge on your authentication server.
Page 129: Matching Authentication Types On Root And Non-Root Bridges
Shared Key Authentication LEAP authentication Set up and enable WEP and Set up and enable WEP and enable Network-EAP authentication and network-EAP authentication configure a LEAP username and password Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 10-9 OL-4059-01...
Page 130 Chapter 10 Configuring Authentication Types Matching Authentication Types on Root and Non-Root Bridges Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 10-10 OL-4059-01...
Page 131: Chapter 11 Configuring Radius And Tacacs+ Servers
RADIUS and TACACS+ are facilitated through AAA and can be enabled only through AAA commands. Note For complete syntax and usage information for the commands used in this chapter, refer to the Cisco IOS Security Command Reference for Release 12.2. This chapter contains these sections: Configuring and Enabling RADIUS, page 11-2 •...
Page 132: Configuring And Enabling Radius
• Switch-to-switch or router-to-router situations. RADIUS does not provide two-way authentication. RADIUS can be used to authenticate from one device to a non-Cisco device if the non-Cisco device requires authentication. Networks using a variety of services. RADIUS generally binds a user to one service model.
Page 133: Radius Operation
RADIUS server and from the RADIUS server to the non-root bridge. See the “Assigning Authentication Types to an SSID” section on page 10-5 for instructions on setting up authentication using a RADIUS server. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 11-3 OL-4059-01...
Page 134: Configuring Radius
Identifying the RADIUS Server Host Access point-to-RADIUS-server communication involves several components: Host name or IP address • • Authentication destination port • Accounting destination port • Key string Timeout period • Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 11-4 OL-4059-01...
Page 135 Beginning in privileged EXEC mode, follow these steps to configure per-server RADIUS server communication. This procedure is required. Command Purpose Step 1 configure terminal Enter global configuration mode. Step 2 aaa new-model Enable AAA. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 11-5 OL-4059-01...
Page 136 This example shows how to configure one RADIUS server to be used for authentication and another to be used for accounting: BR(config)# radius-server host 172.29.36.49 auth-port 1612 key rad1 BR(config)# radius-server host 172.20.36.50 acct-port 1618 key rad2 Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 11-6 OL-4059-01...
Page 137: Configuring Radius Login Authentication
Beginning in privileged EXEC mode, follow these steps to configure login authentication. This procedure is required. Command Purpose Step 1 configure terminal Enter global configuration mode. Step 2 aaa new-model Enable AAA. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 11-7 OL-4059-01...
Page 138 {default | list-name} method1 [method2...] global configuration command. To either disable RADIUS authentication for logins or to return to the default value, use the no login authentication {default | list-name} line configuration command. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 11-8 OL-4059-01...
Page 139: Defining Aaa Server Groups
Beginning in privileged EXEC mode, follow these steps to define the AAA server group and associate a particular RADIUS server with it: Command Purpose Step 1 configure terminal Enter global configuration mode. Step 2 aaa new-model Enable AAA. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 11-9 OL-4059-01...
Page 140 Step 8 copy running-config startup-config (Optional) Save your entries in the configuration file. Step 9 Enable RADIUS login authentication. See the “Configuring RADIUS Login Authentication” section on page 11-7. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 11-10 OL-4059-01...
Page 141: Configuring Radius Authorization For User Privileged Access And Network Services
Use the local database if authentication was not performed by using RADIUS. • Authorization is bypassed for authenticated users who log in through the CLI even if authorization has Note been configured. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 11-11 OL-4059-01...
Page 142: Starting Radius Accounting
(AV) pairs and is stored on the security server. This data can then be analyzed for network management, client billing, or auditing. Beginning in privileged EXEC mode, follow these steps to enable RADIUS accounting for each Cisco IOS privilege level and for network services:...
Page 143: Configuring Settings For All Radius Servers
The Cisco RADIUS implementation supports one vendor-specific option by using the format recommended in the specification. Cisco’s vendor ID is 9, and the supported option has vendor type 1, which is named cisco-avpair. The value is a string with this format:...
Page 144: Configuring The Bridge For Vendor-Proprietary Radius Server Communication
Configuring RADIUS and TACACS+ Servers Configuring and Enabling RADIUS Protocol is a value of the Cisco protocol attribute for a particular type of authorization. Attribute and value are an appropriate AV pair defined in the Cisco TACACS+ specification, and sep is = for mandatory attributes and the asterisk (*) for optional attributes.
Page 145: Displaying The Radius Configuration
BR(config)# radius-server host 172.20.30.15 nonstandard BR(config)# radius-server key rad124 Displaying the RADIUS Configuration To display the RADIUS configuration, use the show running-config privileged EXEC command. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 11-15 OL-4059-01...
Page 146: Configuring And Enabling Tacacs
TACACS+ daemon are encrypted. You need a system running the TACACS+ daemon software to use TACACS+ on your bridge. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 11-16 OL-4059-01...
Page 147: Tacacs+ Operation
This process continues until there is successful communication with a listed method or the method list is exhausted. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 11-17 OL-4059-01...
Page 148: Default Tacacs+ Configuration
Enable AAA. Step 4 aaa group server tacacs+ group-name (Optional) Define the AAA server-group with a group name. This command puts the bridge in a server group subconfiguration mode. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 11-18 OL-4059-01...
Page 149: Configuring Tacacs+ Login Authentication
Beginning in privileged EXEC mode, follow these steps to configure login authentication: Command Purpose Step 1 configure terminal Enter global configuration mode. Step 2 aaa new-model Enable AAA. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 11-19 OL-4059-01...
Page 150: Configuring Tacacs+ Authorization For Privileged Exec Access And Network Services
You can use the aaa authorization global configuration command with the tacacs+ keyword to set parameters that restrict an administrator’s network access to privileged EXEC mode. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 11-20 OL-4059-01...
Page 151: Starting Tacacs+ Accounting
(AV) pairs and is stored on the security server. This data can then be analyzed for network management, client billing, or auditing. Beginning in privileged EXEC mode, follow these steps to enable TACACS+ accounting for each Cisco IOS privilege level and for network services:...
Page 152: Displaying The Tacacs+ Configuration
To disable accounting, use the no aaa accounting {network | exec} {start-stop} method1... global configuration command. Displaying the TACACS+ Configuration To display TACACS+ server statistics, use the show tacacs privileged EXEC command. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 11-22 OL-4059-01...
Page 153: Chapter 12 Configuring Vlans
This chapter describes how to configure your bridge to operate with the VLANs set up on your wired LAN. These sections describe how to configure your bridge to support VLANs: Understanding VLANs, page 12-2 • Configuring VLANs, page 12-4 • Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 12-1 OL-4059-01...
Page 154: Understanding Vlans
802.1Q trunking is supported between root and non-root bridges through the bridges’ primary SSID. Figure 12-1 shows two bridges sending 802.11Q-tagged packets between two LAN segments that use logical VLAN segmentation. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 12-2 OL-4059-01...
Page 155: Related Documents
Root Bridge Related Documents These documents provide more detailed information pertaining to VLAN design and configuration: Cisco IOS Switching Services Configuration Guide. Click this link to browse to this document: • http://www.cisco.com/en/US/docs/ios/12_2/switch/configuration/guide/fswtch_c.html Cisco Internetwork Design Guide. Click this link to browse to this document: •...
Page 156: Incorporating Wireless Bridges Into Vlans
Step 3 encapsulation dot1q vlan-id Enable a VLAN on the subinterface. [native] (Optional) Designate the VLAN as the native VLAN. On many networks, the native VLAN is VLAN 1. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 12-4 OL-4059-01...
Page 157 Assign the SSID to the native VLAN. Step 13 infrastructure-ssid Designate the SSID as the infrastructure SSID. The root bridge allows associations only from non-root bridges that use this SSID. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 12-5 OL-4059-01...
Page 158 BR(config-subif)# exit BR(config)# interface fastEthernet0.1 BR(config-subif)# encapsulation dot1q 1 native BR(config-subif)# bridge group 1 BR(config-subif)# exit BR(config)# interface dot11radio0 BR(config-if)# ssid batman BR(config-ssid)# vlan 1 BR(config-ssid)# infrastructure-ssid BR(config-ssid)# end Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 12-6 OL-4059-01...
Page 159: Viewing Vlans Configured On The Bridge
201688 Bridging Bridge Group 1 201688 Bridging Bridge Group 1 201688 Virtual LAN ID: 2 (IEEE 802.1Q Encapsulation) vLAN Trunk Interfaces: Dot11Radio0.2 FastEthernet0.2 Virtual-Dot11Radio0.2 Protocols Configured: Address: Received: Transmitted: Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 12-7 OL-4059-01...
Page 160 Chapter 12 Configuring VLANs Configuring VLANs Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 12-8 OL-4059-01...
Page 161: Chapter 13 Configuring Qos
It sends the packets without any assurance of reliability, delay bounds, or throughput. For complete syntax and usage information for the commands used in this chapter, refer to the Cisco IOS Note Command Reference for Cisco Aironet Access Points and Bridges for this release.
Page 162: Understanding Qos For Wireless Lans
They support only 802.1Q/P tagged packets. Bridges do not support ISL. They support only MQC policy-map set cos action. • To contrast the wireless LAN QoS implementation with the QoS implementation on other Cisco network devices, see the Cisco IOS Quality of Service Solutions Configuration Guide at this URL: http://www.cisco.com/en/US/docs/ios/12_2/qos/configuration/guide/fqos_c.html Impact of QoS on a Wireless LAN Wireless LAN QoS features are a subset of the proposed 802.11e draft.
Page 163: Precedence Of Qos Settings
QoS does not create additional bandwidth for your wireless LAN; it helps control the allocation of • bandwidth. If you have plenty of bandwidth on your wireless LAN, you might not need to configure QoS. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 13-3 OL-4059-01...
Page 164: Configuring Qos Using The Web-Browser Interface
This section describes configuring QoS using the web-browser interface. For a list of IOS commands for configuring QoS using the CLI, consult the Cisco IOS Command Reference for Cisco Aironet Access Points and Bridges. Follow these steps to browse to the command...
Page 165 With <NEW> selected in the Create/Edit Policy field, type a name for the QoS policy in the Policy Name Step 3 entry field. The name can contain up to 25 alphanumeric characters. Do not include spaces in the policy name. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 13-5 OL-4059-01...
Page 166 Assured Forwarding — Class 3 Medium • Assured Forwarding — Class 3 High • Assured Forwarding — Class 4 Low Assured Forwarding — Class 4 Medium • Assured Forwarding — Class 4 High • Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 13-6 OL-4059-01...
Page 167 If VLANs are not configured on the bridge, drop-down menus for each interface appear. Click the Apply button at the bottom of the page to apply the policies to the bridge ports. Step 17 Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 13-7 OL-4059-01...
Page 168: Adjusting Radio Traffic Class Definitions
Max Contention Window Fixed Slot Time Best Effort Background Spare Excellent Effort Controlled Load Video <100ms Latency Voice <100ms Latency Network Control Figure 13-2 shows the Radio Traffic Classes page. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 13-8 OL-4059-01...
Page 169: Cw-Min And Cw-Max Settings For Point-To-Point And Point-To-Multipoint Bridge Links
Point-to-Multipoint Point-to-Multipoint Point-to-Multipoint Links with up to 5 Links with up to 10 Links with up to 17 Setting Point-to-Point Links Non-Root Bridges Non-Root Bridges Non-Root Bridges CW-min CW-max Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 13-9 OL-4059-01...
Page 170: Qos Configuration Examples
Spectralink phones (protocol 119 packets). The user applies the voice_policy to the incoming and outgoing radio ports and to the outgoing Ethernet port for VLAN 77. Figure 13-3 shows the administrator’s QoS Policies page. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 13-10 OL-4059-01...
Page 171 Chapter 13 Configuring QoS QoS Configuration Examples Figure 13-3 QoS Policies Page for Voice Example Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 13-11 OL-4059-01...
Page 172: Giving Priority To Video Traffic
The user applies the video_policy to the incoming and outgoing radio ports and to the outgoing Ethernet port for VLAN 87. Figure 13-4 shows the administrator’s QoS Policies page. Figure 13-4 QoS Policies Page for Video Example Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 13-12 OL-4059-01...
Page 173: Chapter 14 Configuring Filters
This chapter contains these sections: Understanding Filters, page 14-2 • Configuring Filters Using the CLI, page 14-2 • Configuring Filters Using the Web-Browser Interface, page 14-2 • Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 14-1 OL-4059-01...
Page 174: Understanding Filters
To configure filters using IOS commands, you use access control lists (ACLs) and bridge groups. You can find explanations of these concepts and instructions for implementing them in these documents: Cisco IOS Bridging and IBM Networking Configuration Guide, Release 12.2. Click this link to •...
Page 175: Configuring And Enabling Mac Address Filters
Click Services in the page navigation bar. In the Services page list, click Filters. On the Apply Filters page, click the MAC Address Filters tab at the top of the page. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 14-3 OL-4059-01...
Page 176: Creating A Mac Address Filter
Click Apply. The filter is saved on the bridge, but it is not enabled until you apply it on the Apply Filters page. Step 11 Click the Apply Filters tab to return to the Apply Filters page. Figure 14-2 shows the Apply Filters page. Figure 14-2 Apply Filters Page Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 14-4 OL-4059-01...
Page 177: Configuring And Enabling Ip Filters
IP filtering methods. You can apply the filters you create to either or both the Ethernet and radio ports and to either or both incoming and outgoing packets. Use the IP Filters page to create IP filters for the bridge. Figure 14-3 shows the IP Filters page. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 14-5 OL-4059-01...
Page 178 Click Services in the page navigation bar. In the Services page list, click Filters. On the Apply Filters page, click the IP Filters tab at the top of the page. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 14-6 OL-4059-01...
Page 179: Creating An Ip Filter
When the filter is complete, click Apply. The filter is saved on the bridge, but it is not enabled until you apply it on the Apply Filters page. Click the Apply Filters tab to return to the Apply Filters page. Figure 14-4 shows the Apply Filters page. Step 16 Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 14-7 OL-4059-01...
Page 180: Configuring And Enabling Ethertype Filters
You can apply the filters you create to either or both the Ethernet and radio ports and to either or both incoming and outgoing packets. Use the Ethertype Filters page to create Ethertype filters for the bridge. Figure 14-5 shows the Ethertype Filters page. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 14-8 OL-4059-01...
Page 181: Creating An Ethertype Filter
Click Add. The Ethertype appears in the Filters Classes field. To remove the Ethertype from the Filters Classes list, select it and click Delete Class. Repeat Step 4 through Step 7 to add Ethertypes to the filter. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 14-9 OL-4059-01...
Page 182 Step 11 or both the Ethernet and radio ports, and to either or both incoming and outgoing packets. Click Apply. The filter is enabled on the selected ports. Step 12 Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 14-10 OL-4059-01...
Page 183: Chapter 15 Configuring Cdp
Configuring CDP This chapter describes how to configure Cisco Discovery Protocol (CDP) on your bridge. For complete syntax and usage information for the commands used in this chapter, refer to the Cisco Note Aironet 1400 Series Bridge Command Reference for this release and the Cisco IOS Configuration Fundamentals Command Reference for Release 12.2.
Page 184: Understanding Cdp
Understanding CDP Understanding CDP Cisco Discovery Protocol (CDP) is a device-discovery protocol that runs on all Cisco network equipment. Each device sends identifying messages to a multicast address, and each device monitors the messages sent by other devices. Information in CDP packets is used in network management software such as CiscoWorks2000.
Page 185: Configuring The Cdp Characteristics
CDP is enabled by default. Beginning in Priveleged Exec mode, follow these steps to disable the CDP device discovery capability: Command Purpose Step 1 configure terminal Enter global configuration mode. Step 2 no cdp run Disable CDP. Step 3 Return to Privileged Exec mode. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 15-3 OL-4059-01...
Page 186: Disabling And Enabling Cdp On An Interface
(Optional) Save your entries in the configuration file. This example shows how to enable CDP on an interface: bridge# configure terminal bridge(config)# interface x bridge(config-if)# cdp enable bridge(config-if)# end Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 15-4 OL-4059-01...
Page 187: Monitoring And Maintaining Cdp
Cisco Internetwork Operating System Software IOS (tm) C3550 Software (C3550-I5Q3L2-M), Experimental Version 12.1(20010612:021 316) [jang-flamingo 120] Copyright (c) 1986-2001 by cisco Systems, Inc. Compiled Fri 06-Jul-01 18:18 by jang advertisement version: 2 Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 15-5 OL-4059-01...
Page 188 Sending CDP packets every 60 seconds Holdtime is 180 seconds GigabitEthernet0/7 is up, line protocol is down Encapsulation ARPA Sending CDP packets every 60 seconds Holdtime is 180 seconds Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 15-6 OL-4059-01...
Page 189 Hdr syntax: 0, Chksum error: 0, Encaps failed: 0 No memory: 0, Invalid packet: 0, Fragmented: 0 CDP version 1 advertisements output: 0, Input: 0 CDP version 2 advertisements output: 50882, Input: 52510 Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 15-7 OL-4059-01...
Page 190 Chapter 15 Configuring CDP Monitoring and Maintaining CDP Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 15-8 OL-4059-01...
Page 191: Chapter 16 Configuring Snmp
This chapter describes how to configure the Simple Network Management Protocol (SNMP) on your bridge. For complete syntax and usage information for the commands used in this chapter, refer to the Cisco IOS Note Command Reference for Cisco Aironet Access Points and Bridges for this release and to the Cisco IOS Configuration Fundamentals Command Reference for Release 12.2.
Page 192: Understanding Snmp
SNMPv1. Error return codes now report the error type. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 16-2 OL-4059-01...
Page 193: Snmp Manager Functions
A community string can have one of these attributes: Read-only—Gives read access to authorized management stations to all objects in the MIB except • the community strings, but does not allow write access Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 16-3 OL-4059-01...
Page 194: Using Snmp To Access Mib Variables
Configuring Trap Managers and Enabling Traps, page 16-7 • Setting the Agent Contact and Location Information, page 16-9 • Using the snmp-server view Command, page 16-9 • SNMP Examples, page 16-9 • Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 16-4 OL-4059-01...
Page 195: Default Snmp Configuration
ISO object in the MIB object tree. ISO is the common parent node of IEEE (IEEE802dot11) and Internet. This MIB agent behavior is different from the MIB agent behavior on access points not running IOS software. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 16-5 OL-4059-01...
Page 196 Step 4 Return to privileged EXEC mode. Step 5 show running-config Verify your entries. Step 6 copy running-config startup-config (Optional) Save your entries in the configuration file. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 16-6 OL-4059-01...
Page 197: Configuring Trap Managers And Enabling Traps
These notification types are always enabled. You can use the snmp-server host global configuration command to a specific host to receive the notification types listed in Table 16-3. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 16-7 OL-4059-01...
Page 198 To remove the specified host from receiving traps, use the no snmp-server host host global configuration command. To disable a specific trap type, use the no snmp-server enable traps notification-types global configuration command. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 16-8 OL-4059-01...
Page 199: Setting The Agent Contact And Location Information
IEEE802dot11-mib objects: bridge(config)# snmp-server view dot11view ieee802dot11 included bridge(config)# snmp-server community open bridge(config)# snmp-server community ieee view ieee802dot11 rw Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 16-9 OL-4059-01...
Page 200: Displaying Snmp Status
This example shows how to enable the bridge to send all traps to the host myhost.cisco.com using the community string public: bridge(config)# snmp-server enable traps bridge(config)# snmp-server host myhost.cisco.com public...
Page 201: Managing Firmware And Configurations
This chapter describes how to manipulate the Flash file system, how to copy configuration files, and how to archive (upload and download) software images. For complete syntax and usage information for the commands used in this chapter, refer to the Cisco IOS Note Command Reference for Cisco Aironet Access Points and Bridges for this release and the Cisco IOS Configuration Fundamentals Command Reference for Release 12.2.
Page 202: C H A P T E R 17 Managing Firmware And Configurations
Table 17-1 show file systems Field Descriptions Field Value Size(b) Amount of memory in the file system in bytes. Free(b) Amount of free memory in the file system in bytes. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 17-2 OL-4059-01...
Page 203: Setting The Default File System
Similarly, before copying a Flash configuration file to another location, you might want to verify its filename for use in another command. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 17-3...
Page 204: Changing Directories And Displaying The Working Directory
Step 3 dir filesystem: Verify your entry. To delete a directory with all its files and subdirectories, use the delete /force /recursive filesystem:/file-url privileged EXEC command. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 17-4 OL-4059-01...
Page 205: Copying Files
When you no longer need a file on a Flash memory device, you can permanently delete it. To delete a file or directory from a specified Flash device, use the delete [/force] [/recursive] [filesystem:]/file-url privileged EXEC command. When files are deleted, their contents cannot be recovered. Caution Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 17-5 OL-4059-01...
Page 206: Creating, Displaying, And Extracting Tar Files
This example shows how to create a tar file. This command writes the contents of the new-configs directory on the local Flash device to a file named saved.tar on the TFTP server at 172.20.10.30: BR# archive tar /create tftp:172.20.10.30/saved.tar flash:/new-configs Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 17-6 OL-4059-01...
Page 207: Displaying The Contents Of A Tar File
For the File Transfer Protocol (FTP), the syntax is • ftp:[[//username[:password]@location]/directory]/tar-filename.tar For the Remote Copy Protocol (RCP), the syntax is • rcp:[[//username@location]/directory]/tar-filename.tar For the Trivial File Transfer Protocol (TFTP), the syntax is • tftp:[[//location]/directory]/tar-filename.tar Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 17-7 OL-4059-01...
Page 208: Displaying The Contents Of A File
This section describes how to create, load, and maintain configuration files. Configuration files contain commands entered to customize the function of the Cisco IOS software. To better benefit from these instructions, your bridge contains a minimal default running configuration for interacting with the system software.
Page 209: Guidelines For Creating And Using Configuration Files
In this case, you would change the running configuration but not save the configuration by using the copy running-config startup-config privileged EXEC command. The running configuration is saved in DRAM; the startup configuration is stored in the NVRAM section of Flash memory. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 17-9 OL-4059-01...
Page 210: Creating A Configuration File By Using A Text Editor
Ensure that the bridge has a route to the TFTP server. The bridge and the TFTP server must be in the same subnetwork if you do not have a router to route traffic between subnets. Check connectivity to the TFTP server by using the ping command. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 17-10 OL-4059-01...
Page 211 Upload the bridge configuration to the TFTP server. Specify the IP address or host name of the TFTP server and the destination filename. Use one of these privileged EXEC commands: copy system:running-config tftp:[[[//location]/directory]/filename] • • copy nvram:startup-config tftp:[[[//location]/directory]/filename] Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 17-11 OL-4059-01...
Page 212: Copying Configuration Files By Using Ftp
The FTP protocol requires a client to send a remote username and password on each FTP request to a server. When you copy a configuration file from the bridge to a server by using FTP, the Cisco IOS software sends the first valid username in this list: The username specified in the copy command if a username is specified.
Page 213 IP address of 172.16.101.101 and to load and run those commands on the bridge: BR# copy ftp://netadmin1:mypass@172.16.101.101/host1-confg system:running-config Configure using host1-confg from 172.16.101.101? [confirm] Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 17-13 OL-4059-01...
Page 214 This example shows how to copy the running configuration file named ap2-confg to the netadmin1 directory on the remote host with an IP address of 172.16.101.101: BR# copy system:running-config ftp://netadmin1:mypass@172.16.101.101/ap2-confg Write file ap2-confg on host 172.16.101.101?[confirm] Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 17-14 OL-4059-01...
Page 215: Copying Configuration Files By Using Rcp
The RCP requires a client to send a remote username with each RCP request to a server. When you copy a configuration file from the bridge to a server, the Cisco IOS software sends the first valid username in this list: The username specified in the copy command if a username is specified.
Page 216 Enter global configuration mode. This step is required only if you override the default remote username (see Steps 4 and 5). Step 4 ip rcmd remote-username username (Optional) Specify the remote username. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 17-16 OL-4059-01...
Page 217 Enter global configuration mode. This step is required only if you override the default remote username (see Steps 4 and 5). Step 4 ip rcmd remote-username username (Optional) Specify the remote username. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 17-17 OL-4059-01...
Page 218: Clearing Configuration Information
Depending on the setting of the file prompt global configuration command, you might be prompted for confirmation before you delete a file. By default, the bridge prompts for confirmation on destructive file operations. For more information about the file prompt command, refer to the Cisco IOS Command Reference for Release 12.1.
Page 219: Working With Software Images
Flash memory. tar File Format of Images on a Server or Cisco.com Software images located on a server or downloaded from Cisco.com are provided in a tar file format, which contains these files: info file •...
Page 220: Copying Image Files By Using Tftp
Ensure that the image to be downloaded is in the correct directory on the TFTP server (usually /tftpboot on a UNIX workstation). For download operations, ensure that the permissions on the file are set correctly. The permission • on the file should be world-read. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 17-20 OL-4059-01...
Page 221 For //location, specify the IP address of the TFTP server. • For /directory/image-name, specify the directory (optional) • and the image to download. Directory and image names are case sensitive. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 17-21 OL-4059-01...
Page 222 Directory and image names are case sensitive. The image-name.tar is the name of the software image to be stored on the server. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 17-22 OL-4059-01...
Page 223: Copying Image Files By Using Ftp
The FTP protocol requires a client to send a remote username and password on each FTP request to a server. When you copy an image file from the bridge to a server by using FTP, the Cisco IOS software sends the first valid username in this list: The username specified in the archive download-sw or archive upload-sw privileged EXEC •...
Page 224 Step 4 ip ftp username username (Optional) Change the default remote username. Step 5 ip ftp password password (Optional) Change the default password. Step 6 Return to privileged EXEC mode. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 17-24 OL-4059-01...
Page 225 If the Flash device has sufficient space to hold two images and you want to overwrite one of these images with the same version, you must specify the /overwrite option. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 17-25...
Page 226 (see Steps 4, 5, and 6). Step 4 ip ftp username username (Optional) Change the default remote username. Step 5 ip ftp password password (Optional) Change the default password. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 17-26 OL-4059-01...
Page 227: Copying Image Files By Using Rcp
If the destination file does not exist, RCP creates it for you. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 17-27...
Page 228 RCP requires a client to send a remote username on each RCP request to a server. When you copy an image from the bridge to a server by using RCP, the Cisco IOS software sends the first valid username in this list: The username specified in the archive download-sw or archive upload-sw privileged EXEC •...
Page 229 For @location, specify the IP address of the RCP server. • For /directory/image-name.tar, specify the directory • (optional) and the image to download. Directory and image names are case sensitive. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 17-29 OL-4059-01...
Page 230 For filesystem, use flash: for the system board Flash device. For file-url, enter the directory name of the old software image. All the files in the directory and the directory are removed. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 17-30...
Page 231 The archive upload-sw privileged EXEC command builds an image file on the server by uploading these files in order: info, the IOS image, the HTML files, and info.ver. After these files are uploaded, the upload algorithm creates the tar file format. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 17-31 OL-4059-01...
Page 232: Reloading The Image Using The Web Browser Interface
TFTP server root directory, include the relative path of the TFTP server root directory with the filename. If the file is located in the TFTP root directory, enter only the filename. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 17-32...
Page 233: Reloading The Image Using The Power Injector Mode Button
Wait until the bridge reboots as indicated by all LEDs turning green followed by the Status LED Step 7 blinking green. After the bridge reboots, you must reconfigure it by using the web-browser interface, the Telnet Step 8 interface, or the CLI. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 17-33 OL-4059-01...
Page 234 Chapter 17 Managing Firmware and Configurations Working with Software Images Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 17-34 OL-4059-01...
Page 235: Chapter 18 Configuring System Message Logging
Configuring System Message Logging This chapter describes how to configure system message logging on your bridge. For complete syntax and usage information for the commands used in this chapter, refer to the Cisco IOS Note Configuration Fundamentals Command Reference for Release 12.2.
Page 236: Understanding System Message Logging
The part of the message preceding the percent sign depends on the setting of the service sequence-numbers, service timestamps log datetime, service timestamps log datetime [localtime] [msec] [show-timezone], or service timestamps log uptime global configuration command. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 18-2 OL-4059-01...
Page 237: Default System Message Logging Configuration
System message logging to the console Enabled Console severity Debugging (and numerically lower levels; Table 18-3 on page 18-8) Logging buffer size 4096 bytes Logging history size 1 message Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 18-3 OL-4059-01...
Page 238: Disabling And Enabling Message Logging
“Enabling and Disabling Timestamps on Log Messages” section on page 18-6. To re-enable message logging after it has been disabled, use the logging on global configuration command. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 18-4 OL-4059-01...
Page 239: Setting The Message Display Destination Device
To disable logging to the console, use the no logging console global configuration command. To disable logging to a file, use the no logging file [severity-level-number | type] global configuration command. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 18-5...
Page 240: Enabling And Disabling Timestamps On Log Messages
Verify your entries. Step 5 copy running-config startup-config (Optional) Save your entries in the configuration file. To disable sequence numbers, use the no service sequence-numbers global configuration command. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 18-6 OL-4059-01...
Page 241: Defining The Message Severity Level
To disable logging to syslog servers, use the no logging trap global configuration command. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 18-7...
Page 242: Limiting Syslog Messages Sent To The History Table And To Snmp
By default, one message of the level warning and numerically lower levels (see Table 18-3 on page 18-8) are stored in the history table even if syslog traps are not enabled. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 18-8 OL-4059-01...
Page 243: Setting A Logging Rate Limit
Return to privileged EXEC mode. Step 4 copy running-config startup-config (Optional) Save your entries in the configuration file. To disable the rate limit, use the no logging rate-limit global configuration command. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 18-9 OL-4059-01...
Page 244: Configuring Unix Syslog Servers
Log messages to a UNIX syslog server host by entering its IP address. To build a list of syslog servers that receive logging messages, enter this command more than once. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 18-10 OL-4059-01...
Page 245 IP address. To disable logging to syslog servers, enter the no logging trap global configuration command. Table 18-4 lists the 4.3 BSD UNIX system facilities supported by the Cisco IOS software. For more information about these facilities, consult the operator’s manual for your UNIX operating system. Table 18-4 Logging Facility-Type Keywords...
Page 246: Displaying The Logging Configuration
To display the current logging configuration and the contents of the log buffer, use the show logging privileged EXEC command. For information about the fields in this display, refer to the Cisco IOS Configuration Fundamentals Command Reference for Release 12.2.
Page 247: Troubleshooting
C H A P T E R Troubleshooting This chapter provides troubleshooting procedures for basic problems with the bridge. For the most up-to-date, detailed troubleshooting information, refer to the Cisco TAC website at the following URL (select Hardware Support > Wireless Devices): http://www.cisco.com/tac...
Page 248: Checking The Bridge Leds
For information on using the LEDs during the installation and alignment of the bridge antenna, refer to the “Bridge LEDs” section in the Cisco Aironet 1400 Series Wireless Bridge Hardware Installation Guide. Click this link to browse to the Hardware Installation Guide: http://www.cisco.com/en/US/docs/wireless/bridge/1400/installation/guide/1400hig4.html...
Page 249: Bridge Normal Mode Led Indications
If the problem continues, contact technical support for assistance. — — Amber Radio firmware error—disconnect and reconnect power injector power.If the problem continues, contact technical support for assistance. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 19-3 OL-4059-01...
Page 250: Power Injector Leds
When power is applied to the bridge, the bridge activates the bootloader and begins the POST operations. The bridge begins to load the IOS image when the Post operations are successfully completed. Upon successfully loading the IOS image, the bridge initializes and tests the radio. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 19-4 OL-4059-01...
Page 251 If the cables are connected correctly, contact technical support for assistance. Green — — Link between power injector and bridge is operational. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 19-5 OL-4059-01...
Page 252: Checking Power
AC receptacle and that AC power is available. Uplink Activity LED • Green or blinking green color indicates the bridge is operating. – Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 19-6 OL-4059-01...
Page 253: Checking Basic Configuration Settings
Check (MIC), WEP key hashing, and 802.1X protocol versions. If a non-root bridge is unable to authenticate to your root bridge, verify that the security settings are the same as your bridge settings. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 19-7 OL-4059-01...
Page 254: Antenna Alignment
RSSI port. The RSSI port can be used even when the bridges are not associated. For additional information, refer to the “Aligning the Antenna Using the RSSI Voltage” section in the Cisco Aironet 1400 Series Wireless Bridge Hardware Installation Guide. Click this URL to browse to the Hardware Installation Guide: http://www.cisco.com/en/US/docs/wireless/bridge/1400/installation/guide/1400hig4.html...
Page 255: Using The Web Browser Interface
PC with a TFTP server. Note This process resets all configuration settings to factory defaults, including passwords, WEP keys, the bridge IP address, and SSIDs. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 19-9 OL-4059-01...
Page 256: Web Browser Interface
Click the System Software tab and then click Software Upgrade. The HTTP Upgrade screen appears. Step 5 Click Browse to locate the image file on your PC. Step 6 Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 19-10 OL-4059-01...
Page 257: Browser Tftp Interface
For additional information click the Help icon on the Software Upgrade screen. Obtaining the Bridge Image File You can obtain the bridge image file from the Cisco.com software center by following these steps: Step 1 Use your web browser to go to the Cisco Software Center at the following URL: http://www.cisco.com/cisco/software/navigator.html...
Page 258: Obtaining The Tftp Server Software
Save the file to a directory on your hard drive and then exit the Internet browser. Step 10 Obtaining the TFTP Server Software You can download TFTP server software from several web sites. Cisco recommends the shareware TFTP utility available at this URL: http://tftpd32.jounin.net Follow the instructions on the website for installing and using the utility.
Page 259: Appendix
This appendix lists the IEEE 802.11a (5-GHz) channels and maximum power levels for the bridge supported by the Americas regulatory domain. These topics are covered in this appendix: Channels, page A-2 • Maximum Power Levels, page A-2 • Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 260: 5.8-Ghz Band
4. On point-to-multipoint links, the remote bridges communicating with the central bridge are allowed to use a maximum power setting of 24 dBm. The central bridge is limited to a maximum power setting of 12 dBm. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 261: Appendix
In each table, the Protocol column lists the protocol name, the Additional Identifier column lists other names for the same protocol, and the ISO Designator column lists the numeric designator for each protocol. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 262 Novell IPX (old) — 0x8137 Novell IPX (new) 0x8138 EAPOL (old) — 0x8180 EAPOL (new) — 0x888E Telxon TXP 0x8729 Aironet DDP 0x872D Enet Config Test — 0x9000 NetBUI — 0xF0F0 Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 263 Internet Group Management Protocol IGMP Transmission Control Protocol Exterior Gateway Protocol — CHAOS — User Datagram Protocol XNS-IDP ISO-TP4 ISO-CNLP CNLP Banyan VINES VINES Encapsulation Header encap_hdr Spectralink Voice Protocol Spectralink — Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 264 Domain Name Server domain — BOOTP Server — BOOTP Client — TFTP — gopher — netrjs finger — Hypertext Transport Protocol HTTP ttylink link Kerberos v5 Kerberos krb5 supdup — hostname hostnames Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 265 ISO CMIP Management Over IP CMIP Management Over IP cmip-man CMOT ISO CMIP Agent Over IP cmip-agent X Display Manager Control xdmcp Protocol NeXTStep Window Server NeXTStep Border Gateway Protocol Prospero — Internet Relay Chap Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 266 SAMBA swat SUP debugging supfiledbg 1127 ingreslock — 1524 Prospero non-priveleged prospero-np 1525 RADIUS — 1812 Concurrent Versions System 2401 Cisco IAPP — 2887 Radio Free Ethernet 5002 Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 267: Appendix
Supported MIBs This appendix lists the Simple Network Management Protocol (SNMP) Management Information Bases (MIBs) that the bridge supports for this software release. The Cisco IOS SNMP agent supports both SNMPv1 and SNMPv2. This appendix contains these sections: MIB List, page C-1 •...
Page 268: Using Ftp To Access The Mib Files
Use the get MIB_filename command to obtain a copy of the MIB file. Step 5 Note You can also access information about MIBs on the Cisco web site: http://www.cisco.com/public/sw-center/netmgmt/cmtk/mibs.shtml Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 269: Appendix
DOT11-3-RADIO_OVER_ The bridge detected that the unit has Investigate and take steps to cool the TEMPERATURE: Interface [interface] exceeded the radio operating unit. Radio over temperature temperature. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 270 When trying to re-flash the radio None. Unable to find required radio version firmware, the bridge recognized that the [hex].[int] radio firmware packaged with the IOS firmware had the incorrect version. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 271 This appears, and report it to your technical [hex], min [hex]). message indicates that a process received support representative. an event that it did not know how to handle. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 272 Appendix D Error and Event Messages Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide OL-4059-01...
Page 273: G L O S S A R Y
Bridge protocol data unit. When STP is enabled, bridges send and receive BPDU spanning-tree frames, called BPDUs, at regular intervals and use the frames to maintain a loop-free network. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide GL-1 OL-4059-01...
Page 274 Complementary code keying. A modulation technique used by IEEE 802.11b-compliant wireless LANs for transmission at 5.5 and 11 Mbps. Cisco Centralized Key Management. Using CCKM, authenticated client devices CCKM can roam from one access point to another without any perceptible delay during reassociation.
Page 275 LAN or if it must be reached through a gateway. This number is expressed in a form similar to an IP address; for example: 255.255.255.0. An antenna that radiates its signal in a spherical pattern. isotropic Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide GL-3 OL-4059-01...
Page 276 A linear measure of the distance that a transmitter can send a signal. range A measurement of the weakest signal a receiver can receive and still correctly receiver sensitivity translate it into data. Radio frequency. A generic term for radio-based technology. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide GL-4 OL-4059-01...
Page 277 A feature of some access points that allows users to move through a facility roaming while maintaining an unbroken connection to the LAN. A connector type unique to Cisco Aironet radios and antennas. Part 15.203 of RP-TNC the FCC rules covering spread spectrum devices limits the types of antennas that may be used with transmission equipment.
Page 278 Wireless LAN Solutions Engine. The WLSE is a specialized appliance for WLSE managing Cisco Aironet wireless LAN infrastructures. It centrally identifies and configures access points in customer-defined groups and reports on throughput and client associations. WLSE centralized management capabilities are further enhanced with an integrated template-based configuration tool for added configuration ease and improved productivity.
Page 279: I N D E X
5-18 keystroke editing authorization wrapped lines with RADIUS 5-11, 11-11 error messages with TACACS+ 5-14, 11-16, 11-20 filtering command output getting help Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide IN-1 OL-4059-01...
Page 280 17-8 preparing 17-10, 17-13, 17-16 using FTP 17-14 reasons for 17-8 using RCP 17-17 using FTP 17-13 using TFTP 17-11 using RCP 17-16 using TFTP 17-11 Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide IN-2 OL-4059-01...
Page 281 17-5 displaying the contents of 17-8 creating 17-6 displaying the contents of 17-7 help, for the command line extracting history 17-7 image file format changing the buffer size 17-19 Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide IN-3 OL-4059-01...
Page 282 5-18 synchronizing devices 5-21 time 2-10, 2-11 services 5-18 management options synchronizing 5-18 Message Integrity Check messages to users through banners 5-33 OK button MIBs accessing files with FTP Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide IN-4 OL-4059-01...
Page 283 19-9 Remote Authentication Dial-In User Service See RADIUS radio Remote Copy Protocol distance setting See RCP RADIUS restricting access attributes NTP services 5-23 vendor-proprietary 11-14 Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide IN-5 OL-4059-01...
Page 284 8-14 limiting system log messages to NMS 18-8 inferior BPDU manager functions 16-3 interface states MIBs blocking location of disabled overview 16-2, 16-4 forwarding 8-6, 8-7 snmp-server view 16-9 Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide IN-6 OL-4059-01...
Page 285 18-6 See TACACS+ UNIX syslog servers TFTP configuring the daemon 18-10 configuration files configuring the logging facility 18-10 downloading 17-11 facilities supported 18-11 preparing the server 17-10 Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide IN-7 OL-4059-01...
Page 286 See downloading uploading configuration files preparing 17-10, 17-13, 17-16 reasons for 17-8 using FTP 17-14 using RCP 17-17 using TFTP 17-11 image files preparing 17-20, 17-23, 17-27 Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide IN-8 OL-4059-01...

This manual is also suitable for:

Cisco1417 - 1417 router - en Aironet 1400 series

Cisco CISCO1401 - 1401 Router - EN Software Manual

Chapter 3 Using the Web-Browser Interface

CHAPTER 4 Using the Command-Line Interface4-1

Chapter 5 Administering the Bridge

Chapter 6 Configuring Radio Setting

Chapter 7 Configuring Ssids

Chapter 8 Configuring Spanning Tree Protocol

Chapter 9 Configuring WEP and WEP Features

Chapter 10 Configuring Authentication Types

Chapter 11 Configuring RADIUS and TACACS+ Servers

Chapter 12 Configuring Vlans

Chapter 13 Configuring Qos

Chapter 14 Configuring Filters

Chapter 15 Configuring CDP

Chapter 16 Configuring SNMP

Managing Firmware and Configurations

Chapter 18 Configuring System Message Logging

Quick Links

Related Manuals for Cisco CISCO1401 - 1401 Router - EN

Summary of Contents for Cisco CISCO1401 - 1401 Router - EN