Page 1 Motorola RFS Series Wireless LAN Switches WiNG CLI Reference Guide...
Page 2 © 2009 Motorola, Inc. All rights reserved. MOTOROLA and the Stylized M Logo are registered in the US Patent & Trademark Office. Symbol is a registered trademark of Symbol Technologies, Inc. All other product or service names are the prop-...
Page 3: About This Guide
About This Guide This Motorola RF Switch CLI Reference Guide and contains the following sections: • Who Should Use this Guide • How to Use this Guide • Conventions Used in this Guide • Motorola Service Information • Motorola, Inc. End-User License Agreement...
Page 4: How To Use This Guide
Motorola RF Switch CLI Reference Guide The syntax, parameters and descriptions within this guide can also be used generically for a RFS6000 and RFS7000 model switch. However, some subtle differences do exist amongst these baselines. These differences are strongly noted within the specific commands impacted.
Page 5 Chapter Jump to this section if you want to... Chapter 10, “Crypto-map Understand the ( commands within the crypto-map) Instance” switch CLI. Chapter 11, “Crypto- Summarize the ( commands crypto trustpoint) trustpoint Instance” within the switch CLI. Chapter 12, “Interface Understand the ( commands within the config-if)
Page 6 Motorola RF Switch CLI Reference Guide Chapter Jump to this section if you want to... Chapter 24, “SOLE Instance” Review the instance commands (config-rtls-sole) within the switch CLI Chapter 25, “Smart RF Review the instance (config-wireless-smart-rf) Instance” commands within the switch CLI Chapter 26, “Role Instance”...
Page 7: Conventions Used In This Guide
Conventions Used in this Guide This section describes the following topics: • Annotated Symbols • Notational Conventions Annotated Symbols The following document conventions are used in this document: NOTE: Indicates tips or special requirements. CAUTION: Indicates conditions that can cause equipment damage or data loss.
Page 8: Notational Conventions
Motorola RF Switch CLI Reference Guide Notational Conventions The following notational conventions are used in this document: • Italics are used to highlight specific items in the general text, and to identify chapters and sections in this and related documents.
Page 9 xiii The pipe symbol. This is used to separate the variables/keywords in a list. For example, the command RFSwitch> show ..is documented as show [autoinstall|banner|ip|ldap|..] where: • set – The command • [autoinstall|banner|ip|ldap|..] – Indicates the different commands that can be combined with the show command. However, only one of the above list can be used at a time.
Page 10 Motorola RF Switch CLI Reference Guide Any command/keyword/variable or a combination of them inside a ‘{‘ & ‘}’ pair is optional. All optional commands follow the same conventions as listed above. However they are displayed itali- cized. For example, the command RFSwitch>...
Page 11 Motorola Service Information Use the Motorola Support Center as the primary contact for any technical problem, question, or support issue involving Motorola products. Motorola Support Center responds to calls by email, telephone or fax within the time limits set forth in individual contractual...
Page 12: General Information
Motorola RF Switch CLI Reference Guide General Information For general information, contact Motorola at: Telephone (North America): 1-800-722-6234 Telephone (International): +1-631-738-5200 Website: http://www.motorola.com...
Page 13 OTHER LEGAL ENTITY, YOU REPRESENT AND WARRANT THAT YOU HAVE THE AUTHORITY TO BIND THAT COMPANY, PERSON OR ENTITY. 1. LICENSE GRANT. Subject to the terms of this Agreement, Motorola, Inc. and/or its subsidiaries ("Licensor") hereby grants Licensee a limited, personal, non-sublicensable, non transferable, non-exclusive license to use the software that Licensee is about to download or install and the documentation that accompanies it (collectively, the "Software") for...
Page 14: Contents -
Motorola RF Switch CLI Reference Guide 3. INTELLECTUAL PROPERTY; CONTENT. All title and intellectual property rights in and to the Software (including but not limited to any images, photographs, animations, video, audio, music, text and "applets" incorporated into the Software), and any copies you are permitted to make herein are owned by Licensor or its suppliers.
Page 15 6. DISCLAIMER OF WARRANTIES. To the maximum extent permitted by applicable law, Licensor and its suppliers provide the Software and any (if any) Support Services AS IS AND WITH ALL FAULTS, and hereby disclaim all warranties and conditions, either express, implied or statutory, including, but not limited to, any (if any) implied warranties or conditions of merchantability, of fitness for a particular purpose, of lack of viruses, of accuracy or completeness of responses, of results, and of lack of negligence or lack of...
Page 16 "Restricted Rights" as provided for in FAR, 48 CFR 52.227-14 (JUNE 1987) or DFAR, 48 CFR 252.227- 7013 (OCT 1988), as applicable. The "Manufacturer" for purposes of these regulations is Motorola, Inc., One Symbol Plaza, Holtsville, NY 11742. 12. EXPORT RESTRICTIONS. Licensee shall comply with all export laws and restrictions and regulations of the Department of Commerce, the United States Department of Treasury Office of Foreign Assets Control ("OFAC"), or other United States or foreign agency or...
Page 17 waiver. This Agreement shall be governed by the laws of the State of New York without regard to the conflicts of law provisions thereof. The application the United Nations Convention of Contracts for the International Sale of Goods is expressly excluded. Unless waived by Licensor for a particular instance, any action or proceeding arising out of this Agreement must be brought exclusively in the state or federal courts of New York and Licensee hereby consents to the jurisdiction of such courts for any such action or proceeding.
Page 18 Motorola RF Switch CLI Reference Guide...
Page 19: Table Of Contents
Contents Chapter 1. Introduction 1.1 CLI Overview ..............1-2 1.2 Getting Context Sensitive Help.
Page 20 TOC-2 Motorola RF Switch CLI Reference Guide 2.2.4 crypto ..............2-45 2.2.5 environment .
Page 21 Contents - TOC-3 2.2.42 clock ..............2-117 2.2.43 debugging .
Page 22 TOC-4 Motorola RF Switch CLI Reference Guide 4.1.3 cd ............... . . 4-7 4.1.4 change-passwd.
Page 23 Contents - TOC-5 5.1.1 aaa ............... . 5-5 5.1.2 access-list.
Page 24 TOC-6 Motorola RF Switch CLI Reference Guide 5.1.37 username ..............5-115 5.1.37.1 Encrypting a Password .
Page 25 Contents - TOC-7 8.1.2 end ............... . 8-4 8.1.3 exit .
Page 26 TOC-8 Motorola RF Switch CLI Reference Guide 11.1.6 fqdn............... 11-8 11.1.7 help .
Page 27 Contents - TOC-9 Chapter 13. Spanning tree-mst Instance 13.1 mst Config Commands ............. 13-1 13.1.1 clrscr .
Page 28 TOC-10 Motorola RF Switch CLI Reference Guide Chapter 15. Standard ACL Instance 15.1 Standard ACL Config Commands ........... . . 15-1 15.1.1 clrscr .
Page 29 Contents - TOC-11 16.1.8.3 Permitting IP Traffic ..........16-17 16.1.9 service.
Page 30 TOC-12 Motorola RF Switch CLI Reference Guide 17.2.2 Creating a Host Pool............17-37 17.2.3 Troubleshooting DHCP Configuration.
Page 31 Contents - TOC-13 19.1.7.11 service ............. 19-18 19.1.7.12 show .
Page 32 TOC-14 Motorola RF Switch CLI Reference Guide 20.1.19 country-code ............. . . 20-33 20.1.20 debug .
Page 33 Contents - TOC-15 21.1.1 aeroscout ..............21-3 21.1.2 clear .
Page 34 TOC-16 Motorola RF Switch CLI Reference Guide 23.1.6 no ............... . 23-8 23.1.7 reader .
Page 35 Contents - TOC-17 25.1.16 schedule-calibrate ............25-27 25.1.17 select-channels.
Page 36 TOC-18 Motorola RF Switch CLI Reference Guide...
Page 37: Chapter 1. Introduction
Introduction This chapter describes the commands defined by the switch Command Line Interface (CLI). Access the CLI (on the supported RFS6000 and RFS7000 models) by running a terminal emulation program on a computer connected to the serial port on the front of the switch, or by using a Telnet session via secure shell (SSH) to access the switch over the network.
Page 38: Cli Overview
Motorola RF Switch CLI Reference Guide 1.1 CLI Overview The CLI is used for configuring, monitoring, and maintaining the switch managed network. The user interface allows you to execute commands (on the supported RFS6000 and RFS7000 models) using either a serial console or a remote access method.
Page 39 Introduction 1- Table 1.1 summarizes the commands available from the switch. Table 1.1 RF Switch CLI Hierarchy User Exec Mode Priv Exec Mode Global Configuration Mode clear acknowledge clrscr archive access-list cluster-cli autoinstall debug change-passwd banner disable clear boot enable clock bridge exit...
Page 40 Motorola RF Switch CLI Reference Guide Table 1.1 RF Switch CLI Hierarchy User Exec Mode Priv Exec Mode Global Configuration Mode kill line logout local mkdir logging more mac-address-table page mac-name ping management quit reload prompt rename radius-server rmdir redundancy...
Page 41: Getting Context Sensitive Help
Introduction 1- Table 1.1 RF Switch CLI Hierarchy User Exec Mode Priv Exec Mode Global Configuration Mode wireless wireless-acl firewall network-element-id ratelimit role 1.2 Getting Context Sensitive Help Enter a question mark (?) at the system prompt to display a list of commands available for each mode.
Page 42 Motorola RF Switch CLI Reference Guide Command Description (prompt)# command keyword ? Lists the next available syntax option for the command NOTE: The system prompt varies depending on which configuration mode you are in. NOTE: Enter Ctrl + V to use ? as a regular character and not as a character used for displaying context sensitive help.
Page 43: Using The No And Default Command Forms
Introduction 1- It is possible to abbreviate commands and keywords to allow a unique abbreviation. For example, “configure terminal” can be abbreviated as . Since the abbreviated config t command is unique, the switch accepts the abbreviation and executes the command. Enter the help command (available in any command mode) to provide the following description: RFSwitch>help...
Page 44: Using Cli Editing Features And Shortcuts
Motorola RF Switch CLI Reference Guide • Enter commands in uppercase, lowercase, or mixed case. Only passwords are case sensitive • If an instance name (or other parameter) contains whitespace, the name must be enclosed in quotes RFSwitch.(Cfg)> spol "Default Switch Policy"...
Page 45 Introduction 1- Table 1.2 Key Combinations Used to Move the Cursor Function Keystrokes Summary Function Details Left Arrow or Ctrl-B Back character Moves the cursor one character to the left When entering a command that extends beyond a single line, press the Left Arrow or Ctrl-B keys repeatedly to scroll back to the system prompt and verify the beginning of the command entry.
Page 46: Completing A Partial Command Name
1-10 Motorola RF Switch CLI Reference Guide Function Keystrokes Summary Function Details Ctrl-Z Enters the command and returns to the root prompt Ctrl-L Refreshes the input line 1.4.2 Completing a Partial Command Name If you cannot remember a command name (or if you want to reduce the amount of typing you have to perform) enter the first few letters of a command, then press the Tab key.
Page 47: Deleting Entries
Introduction 1- RFSwitch# co NOTE: The characters entered before the question mark are reprinted to the screen to complete the command entry. 1.4.3 Deleting Entries Use any of the following keys (or key combinations) to delete command entries: Keystrokes Purpose Backspace Deletes the character to the left of the cursor Ctrl-D...
Page 48: Transposing Mistyped Characters
1-12 Motorola RF Switch CLI Reference Guide 1.4.6 Transposing Mistyped Characters If you have mistyped a command entry, you can transpose the mistyped characters. To transpose characters, use the following key combination: Keystrokes Purpose Ctrl-T Transposes the character to the left of the cursor with the character located at the cursor 1.4.7 Controlling Capitalization...
Page 49: Common Commands
Common Commands This chapter describes the CLI commands used in the USER EXEC, PRIV EXEC, and GLOBAL CONFIG modes. The PRIV EXEC command set contains those commands available within the USER EXEC mode. Some commands can be entered in either mode. Commands entered in either USER EXEC mode or PRIV EXEC mode are referred to as EXEC mode commands.
Page 50: Clrscr
Motorola RF Switch CLI Reference Guide 2.1.1 clrscr Common Commands Clears the screen and refreshes the prompt (#) Supported in the following platforms: • RFS7000 • RFS6000 Syntax clrscr Parameters None Example RFSwitch#clrscr RFSwitch#...
Page 51: Exit
Common Commands 2.1.2 exit Common Commands Ends the current mode and moves to the previous mode Supported in the following platforms: • RFS7000 • RFS6000 Syntax exit Parameters None Example RFSwitch(config)#exit RFSwitch#...
Page 52: Help
Motorola RF Switch CLI Reference Guide 2.1.3 help Common Commands Use this command to access the advanced help feature. Use “?” anytime at the command prompt to access the help topic. Two kinds of help are provided: 1. Full help is available when ready to enter a command argument.
Page 53: No Negates A Command Or Sets Its Defaults
Common Commands 2.1.4 no Common Commands Negates a command or sets its defaults Supported in the following platforms: • RFS7000 • RFS6000 Syntax Parameters None Example (User Exec) RFSwitch>no ? cluster-cli Cluster context debug Debugging functions page Toggle paging service Service Commands RFSwitch>no Example (Priv Exec)
Page 54 Motorola RF Switch CLI Reference Guide country-code Clear the currently configured country code. All existing configurations will be erased crypto encryption module errdisable errdisable firewall Wireless firewall fallback Configures software fallback feature Configure FTP Server hostname Reset system's network name to default...
Page 55: Service
Common Commands 2.1.5 service Common Commands Service commands are used to manage the switch configuration in all modes. Depending on the mode, different service commands will display. • RFS7000 • RFS6000 Syntax (User Executable Mode) service [diag|encrypt|kill|locator|save-cli|show|undefine| wireless] service [locator|save-cli|undefine] service diag [enable|identify|limit|period| tech-support-period|tech-support-url] service diag [enable|identify]...
Page 56 Motorola RF Switch CLI Reference Guide service show [cli|command-history|crash-info|info|memory| process|reboot-history|startup-log|upgrade-history| watchdog] service show diag [hardware|led-status|limits|period|stats| tech-support-period|tech-support-url|top] service show rtls [location-history|rfid] service show rtls location-history service show rtls rfid events reader {<1-48>} service undefine ecspec {<ECSpec-name>} service wireless...
Page 57 Common Commands Parameters (User Executable Mode) diag Diagnostics commands [enable|identify|limit| • enable – Enables in-service diagnostics period| • identify – Identifies a switch by flashing its LEDs tech-support-period| • limit [buffer|fan|filesys|inodes|load|maxFDs| tech-support-url] pkbuffers|procRAM|ram|routecache|temperature] – Sets the diagnostic limit command • buffer []<0-65535> – Configures the buffer usage warning limit.
Page 58 2-10 Motorola RF Switch CLI Reference Guide • routecache <0-65535> – Configures IP route cache usage. Set a value between 0 and 65553. • temperature <1-6> [critical|high|low] – Sets the number of temperature sensors for the switch. • critical <0.0 - 250.0> – Critical temperature limit •...
Page 59 Common Commands 2-11 save-cli Saves the CLI tree for all modes in HTML show [cli|command- Displays running system information history|crash-info|diag| • cli – Shows the CLI tree of the current mode info|memory|process| • command-history – Displays the command (except show reboot-history|rtls| commands) history startup-log|...
Page 60 2-12 Motorola RF Switch CLI Reference Guide • info – Shows a snapshot of available support information • memory – Shows memory statistics • watchdog – Shows watchdog status • process – Shows processes (sorted by memory usage) • reboot-history – Shows a reboot history •...
Page 61 Common Commands 2-13 service diag [enable|identify|limit|period| tech-support-period|tech-support-url] service encrypt secret 2 <pass-phrase> <plain-text> service firewall disable service kill conncection {<1-64>} service pktcap on [bridge|deny|drop|interface|router|vlan] service pktcap on [bridge|drop] {[count <1- 99999>|filter|hex|snap|verbose|write]} service pktcap on bridge filter on [<LINE>|arp|capwap|dst|ether|host|icmp|igmp|ip|ip6|l2|l3| l4|net|not|port|src|tcp|udp|vlan|wlan] service pktcap on bridge filter [arp|capwap|icmp|ip|ip6| igmp|udp] {[and|or] <LINE>} service pktcap on bridge filter capwap {[ctrl|data] [and|or]...
Page 62 2-14 Motorola RF Switch CLI Reference Guide service pktcap on bridge filter tcp {[[and|or] <LINE>|[ack|fin|or|rst|syn] {[and|or] <LINE>]} service pktcap on bridge filter vlan <1-4095> {[and|or] <LINE>} service pktcap on bridge filter wlan <1-2> {[and|or] <LINE>} service pktcap on bridge [hex|verbose] {[count <1-1000000>| filter [...] |snap <1-1518>]}...
Page 63 Common Commands 2-15 service show securitymgr flows [details|source] service show securitymgr flows details {source [<IP>|any] destination [<IP>|any] protocol [any|icmp|tcp|udp]} service show securitymgr flows source [<IP>|any] destination [<IP>|any] protocol [any|icmp|tcp|udp] service show smart-rf [debug-config|sensitivity] service show smart-rf debug-config service show smart-rf sensitivity [mu|pattern|rates] service show smart-rf sensitivity mu {<1-8192>|<MAC>} service show smart-rf sensitivity pattern [pattern- 11a|pattern-11b|pattern-11bg|pattern-2-mbps]...
Page 64 2-16 Motorola RF Switch CLI Reference Guide service undefine ecspec {<SPECNAME>} service wireless [ap-history|clear-ap-log|custom-cli|dot11i| dump-core|enhanced-beacon-table|enhanced-probe-table| free-packet-watermark|idle-radio-send-multicast| legacy-load-balance|map-radios|radio-misc-cfg|rate-scale| request-ap-log|save-ap-log|snmp-trap-throttle| sync-radio-entries|vlan-cache] service wireless [dumpcore|legacy-load-balance|rate-scale| save-ap-log|sync-radio-entries] service wireless ap-history [clear|enable] service wireless clear-ap-log {<1-1024>} service wireless custom-cli [sh-wi-mobile-unit|sh-wi-radio] service wireless custom-cli sh-wi-mobile-unit [ap-locn|...
Page 65 Common Commands 2-17 service wireless snmp-trap-throttle <1-20> service wireless vlan-cache enable Parameters (Privilege Executable Mode) clear Performs a variety of reset functions [all|aplogs|clitree|cores| • all – Removes all core, dump and panic files dumps|fw|panics| • aplogs – Removes all AP log files snooptable|wireless] •...
Page 66 2-18 Motorola RF Switch CLI Reference Guide copy tech-support Copies files for tech support purposes [<file>|<URL>] • tech-support [<file>|<URL>] [tftp|ftp|sftp] – Copies [tftp|ftp|sftp] extensive system information useful to technical support for troubleshooting. • FILE – File to which to copy •...
Page 67 Common Commands 2-19 diag [enable|identify| Sets or displays switch diagnostic values limit|period| • enable – Enables in-service diagnostics tech-support-period| • fanduty <40-100> – CPU fan PWM duty cycle. tech-support-url] Set a value between 40-100%. Setting a value below 60 is considered unreliable. •...
Page 68 2-20 Motorola RF Switch CLI Reference Guide • routecache <0-65535> – Configures IP route cache usage. Set between 0 and 65553. • temperature <1-6> [critical|high|low] – Sets the number of temperature sensors for the switch. • critical <0.0 - 250.0> – Critical temperature limit •...
Page 69 Common Commands 2-21 pktcap on Packet capturing [bridge|interface|router| • on – Defines the packet capture location vpn] • bridge [count|hex|snap|verbose|write|filter] – Captures [count|filter|verbose| packet at the bridge write] • count <1-1000000> – Limits the captured packet count • filter [<LINE>|arp|capwap|dst|ether|host|icmp|igmp| ip|ip6|l2|l3|l4|net|not|port|src|tcp|udp|vlan|wlan] –...
Page 70 2-22 Motorola RF Switch CLI Reference Guide • verbose <1-1000000> – Displays full packet body • filter – Captures the filter • snap <1-1518>– Captured data length • write [<FILE>|URL] – Captures to a file • FILE – File to which to copy •...
Page 71 Common Commands 2-23 • count <1-1000000> – Limits capture packet count • filter – Captures filter • verbose – Displays full packet body • write – Captures to a file • snap <1-1518> – Captured data length • hex – Show full packet body •...
Page 72 2-24 Motorola RF Switch CLI Reference Guide show [cli| Displays running system information command-history| • cli – Shows the CLI tree of the current mode crash-info|diag|fw|info| • command-history – Displays a command (except show ip|last-passwd|memory| commands) history pm|process| • crash-info – Displays information about core, panic and...
Page 73 Common Commands 2-25 • pm history – Process Monitor • history [WORD|all] – Displays state changes for a process, the time they happened and events • WORD – Process name • all – All processes • process – Shows processes (sorted by memory usage) •...
Page 74 2-26 Motorola RF Switch CLI Reference Guide show securitymgr flows Service Security Manager parameters • flows [details|source] – Sessions established • details – Shows detail flow statistics • source [A.B.C.D|any] – Shows the source IP address • [A.B.C.D|any] – Flows where source address is A.B.C.D or flows with any source address...
Page 75 Common Commands 2-27 smart-rf [clear- Displays Smart-RF Management Commands history|load-from- • clear-history– clears assignment history file|replay|rescue|restore| • load-from-file – load record from file save-to-file|simulate] • replay enable – set replay mode • enable – enable replay mode • rescue <MAC> – force rescue operation •...
Page 76 2-28 Motorola RF Switch CLI Reference Guide watchdog Enables the switch watchdog wireless [ap-history| Wireless parameters clear-ap-log • ap-history [clear|enable] – Access-port history |custom-cli|dot11i| • clear – Delete all history of all APs dump-core| • enable – Enable the tracking of AP history enhanced-beacon-table| •...
Page 77 Common Commands 2-29 • radio-desc – description of radio where the mobile- unit is associated • radio-id – The radio index to which the mobile-unit is associated • ssid – The ssid of the mobile-units wlan • state – The current state of the mobile-unit •...
Page 78 2-30 Motorola RF Switch CLI Reference Guide • num-mu – The number of mobile devices associated with this radio • power – The configured and current transmit power of the radio • pref-id – The adoption preference id of the radio •...
Page 79 Common Commands 2-31 • enhanced-probe-table [enable|erase-report|max-mu| preferred|window-time] – Enhanced probe table for MU locationing. • enable – Enables the Enhanced Probe Table feature for MU locationing. • erase-report – Erases the reports for Enhanced Probe Table feature. • max-mu <0-512> – Sets the maximum MUs in the Enhance Probe Table report.
Page 80 2-32 Motorola RF Switch CLI Reference Guide service [advanced-vty|dhcp|diag|password-encryption|pm| prompt|radius|redundancy|set|show|terminal-length| watchdog] service [advanced-vty|dhcp|watchdog] service diag [enable|limit|period|tech-support-period| tech-support-url] service password-encryption secret 2 <pass-phrase> service pm sys-restart service prompt crash-info service radius {restart} service redundancy dynamic-ap-load-balance start service set [command-history|reboot-history|upgrade-history] <10-100> service show cli service terminal-length <0-512>...
Page 81 Common Commands 2-33 pm sys-restart Process Monitor • sys-restart – Enables the PM to restart the system when a processes fails prompt crash-info Enable crash-info prompt • crash-info – Enables a crash-info prompt radius restart Enable radius server • restart – Restarts the radius server with an updated configuration redundancy dynamic-ap- Configure redundancy group parameters...
Page 82 2-34 Motorola RF Switch CLI Reference Guide Usage Guidelines set by the user cannot be disabled without knowing service password-encryption the old password. Refer the note below for more clarification. NOTE: The command used to no service password-encryption disable the encryption, now requires the user to know the old password.
Page 83 Common Commands 2-35 RFSwitch#service diag led 2 amber flashing RFSwitch#service diag limit ? buffer buffer usage warning limit Fan speed limit filesys file system freespace limit load agregate processor load maxFDs maximum number of file descriptors pkbuffers packet buffer head cache procRAM percent RAM used by a process percent free RAM...
Page 84 2-36 Motorola RF Switch CLI Reference Guide May 31 18:31:48 2007 admin con 0 configure terminal May 31 18:31:45 2007 admin con 0 enable May 29 15:40:04 2007 admin vty 131 enable May 29 15:23:43 2007 admin con 0 exit...
Page 85: Show
Common Commands 2-37 2.2 show Common Commands Displays the settings for the specified system component. There are a number of ways to invoke the show command: • When invoked without any arguments, it displays information about the current context. If the current context contains instances, the show command (usually) displays a list of these instances.
Page 86 2-38 Motorola RF Switch CLI Reference Guide Display Parameters Description Mode Example Displays the internet protocol Common page 2-52 ldap Displays the LDAP server Common page 2-59 configuration licenses Displays the installed licenses, if Common page 2-61 logging Displays the logging configuration...
Page 87 Common Commands 2-39 Display Parameters Description Mode Example redundancy - Displays redundancy group Common page 2-76 group parameters redundancy- Displays the state transition history Common page 2-79 history of the switch redundancy - Displays redundancy group Common page 2-80 members members in detail rtls Displays Real Time Location System...
Page 88 2-40 Motorola RF Switch CLI Reference Guide Display Parameters Description Mode Example wlan-acl Displays WLAN ACL information Common page 2-112 access-list Displays the access list Internet Privilege/ page 2-113 Protocol (IP) configuration Global Config aclstats Displays ACL statistics Privilege/ page 2-114...
Page 89: Contents -
Common Commands 2-41 Display Parameters Description Mode Example startup-config Displays the content of the startup Privilege/ page 2-129 configuration Global Config upgrade-status Displays the status of the last image Privilege/ page 2-131 upgrade Global Config mac-name Displays the configured MAC Privilege/ page 2-132 names for this device...
Page 90: Autoinstall
2-42 Motorola RF Switch CLI Reference Guide 2.2.1 autoinstall Common to all modes Displays the autoinstall configuration information. Syntax show autoinstall status Parameters status Displays status of autoinstall Example RFSwitch>show autoinstall RFSwitch>feature enabled config --not-set-- cluster cfg yes --not-set-- image...
Page 91: Banner
Common Commands 2-43 2.2.2 banner Common to all modes Displays the message of the day string. This string can be used to alert the user to specific information that might be of interest. Syntax show banner motd Parameters motd Displays the Message of the Day banner Example RFSwitch>show banner motd Welcome to CLI...
Page 92: Commands
2-44 Motorola RF Switch CLI Reference Guide 2.2.3 commands Common to all modes Displays the available commands for the current mode. Syntax RFSwitch>show commands Parameters None Example RFSwitch#show commands acknowledge alarm-log (all|<1-65535>) acknowledge alarm-log (all|<1-65535>) archive tar /create (FILE|URL) .FILE archive tar /create (FILE|URL) .FILE...
Page 93: Crypto
Common Commands 2-45 2.2.4 crypto Common to all modes Displays the encryption mode information. Syntax show crypto[ipsec|isakmp|key|map|pki] show crypto ipsec[sa| security-association|transformset] show crypto isakmp[policy <1-10000>|sa] show crypto keymy pubkey rsa show crypto map[interface <interface-name>|tag <tag-name>] show crypto pki[request <trustpoint-name>|trustpoints] Parameters ipsec Displays the IPSEC policy [sa|securityassociation...
Page 94 2-46 Motorola RF Switch CLI Reference Guide pki [request|trustpoints] Displays Public Key Infrastructure (PKI) commands • request <trustpoint-name> – Displays the certificate requests • trustpoints – Displays the trustpoints and their configuration Usage Guidelines The security engine periodically updates the IPSec and Isakamp statistics (every 60...
Page 95 Common Commands 2-47 Subject Name: Common Name: Symbol Technologies Issuer Name: Common Name: Symbol Technologies Valid From: Sep 13 16:14:49 2006 GMT Valid Until: Sep 13 16:14:49 2007 GMT Trustpoint :tptest ----------------------------------------------- CA certificate configured Subject Name: Common Name: monarch Organizational Unit: wid Organization: symbol...
Page 96: Environment
2-48 Motorola RF Switch CLI Reference Guide 2.2.5 environment Common to all modes Displays the environmental information such as fan speed, ambient temperature inside the switch and CPU temperature. Syntax show environment Parameters None Example RFSwitch>show environment upwind of CPU temperature : 30.0 C CPU die temperature : 49.0 C...
Page 97: History
Common Commands 2-49 2.2.6 history Common to all modes Displays the command history Syntax show history Parameters None Example RFSwitch>show history 1 admin 2 enable 3 con ter 4 exit 5 show autoinstall 6 con ter 7 show autoinstall 8 show banner 9 show banner motd 10 show command 11 show crypto...
Page 98: Interfaces
2-50 Motorola RF Switch CLI Reference Guide 2.2.7 interfaces Common to all modes Displays the status of the different switch interfaces Syntax show interfaces [WORD|ge|me1|sa|switchport|vlan] Parameters show interfaces Displays the interface name [WORD|ge|me1|sa| • WORD– Displays interface name switchport|vlan] • ge – Displays Gigabit Ethernet interface information •...
Page 99 Common Commands 2-51 RFSwitch# RFSwitch(config)#show interfaces switchport eth1 Interface eth1 Switchport Settings: Mode: Access, Access Vlan: 2100 RFSwitch(config)#show interfaces switchport vlan1 Interface vlan1 Switchport Settings: Mode: Access, Access Vlan: 0...
Page 100 2-52 Motorola RF Switch CLI Reference Guide 2.2.8 ip Common to all modes Displays Internet Protocol (IP) related information Syntax show ip [access-group|arp|ddns|dhcp| dhcp-vendor-options|domain-name|dos|http|igmp|interface| name-server|nat|route|routing|ssh|telnet] show ip access-group [<interface-name>|all|ge|me1|role|sa| vlan <1-4094>] show ip arp show ip ddnsbinding show ip dhcp[binding|class|pool|sharednetwork|snoop]...
Page 101 Common Commands 2-53 Parameters access-group Displays the ACLs attached to an interface [<interface-name> • <interface-name> – Enter the name of the interface to |all|ge|me1|role|sa|> which the ACL is associated. access-group lists the |vlan <1-4094>] details of the ACLs configured on the particular Layer 3 or Layer 2 interface.
Page 102 2-54 Motorola RF Switch CLI Reference Guide http Hyper Text Transfer Protocol (HTTP) [secure-server|server] • secure-server – Secure HTTP server • server – HTTP server interface [<interface- Use the show ip interface command to display the name>|brief|ge|me1|sa| administrative and operational status of all Layer-3 vlan] interfaces or a specified Layer-3 interface.
Page 103 Common Commands 2-55 route [<IP>|<IP/Mask> Display IP routing table entries |detail] • <IP> – Network in the IP routing table • <IP/Mask> – Number of valid bits in the network prefix IP prefix <network>/<length>, e.g., 35.0.0.0/8 • detail – Displays the IP routing table in detail routing IP routing status Secured Shell (SSH) server...
Page 104 2-56 Motorola RF Switch CLI Reference Guide 2. The above example could also occur when a DHCP interface is disconnected. DHCP is not effected though, because it runs on a virtual interface and not on a physical interface. In this case, it is the physical interface that is disconnected not the virtual interface.
Page 105 Firmware Image File: Config File: Cluster Config File: RFSwitch#show ip domain-name IP domain-lookup : Enable Domain Name : motorola.com RFSwitch#show ip http server HTTP server: Running Config status: Enabled RFSwitch#show ip http secure-server HTTP secure server: Running Config status: Enabled...
Page 106 2-58 Motorola RF Switch CLI Reference Guide RFSwitch#show ip interface tunnel 1 brief Interface IP-Address Status Protocol tunnel1 unassigned RFSwitch#show ip interface vlan 1 brief Interface IP-Address Status Protocol vlan1 157.235.208.233 (DHCP)up RFSwitch#show ip name-server 157.235.3.195 dynamic 157.235.3.196 dynamic RFSwitch#show ip routing...
Page 107: Ldap
Common Commands 2-59 2.2.9 ldap Common to all modes Displays LDAP information Syntax show ldap configuration [primary|secondary] Parameters ldap configuration Displays LDAP information. [primary|secondary] • Configuration [primary|secondary] – Sets the LDAP configuration server parameters • primary – Defines the Primary LDAP server •...
Page 108 2-60 Motorola RF Switch CLI Reference Guide (sAMAccountName=%{Stripped-User-Name:-%{User-Name}}) Bind DN cn=kumar,ou=symbol,dc=activedirectory,dc=com Base DN : ou=symbol,dc=activedirectory,dc=com Password : 0 symbol@123 Password Attribute : UserPassword Group Name : cn Group Membership Filter: (&(objectClass=group)(member=%{Ldap-UserDn})) Group Member Attr : radiusGroupName Net timeout : 1 second(s)
Page 109: Licenses
Common Commands 2-61 2.2.10 licenses Common to all modes Displays the different licenses installed on the switch Syntax show licenses Parameters None Example RFSwitch(config)#show licenses feature usage license string license value usage 2FFD7fE9 CD016155 14A92C70 48...
Page 110: Logging
2-62 Motorola RF Switch CLI Reference Guide 2.2.11 logging Common to all modes Displays logging status and other information Syntax show logging Parameters None Example RFSwitch(config)#show logging Logging module: enabled Aggregation time: disabled Console logging: level debugging Buffered logging: level informational...
Page 111: Mac
Common Commands 2-63 2.2.12 mac Common to all modes Shows all MAC information with respect to groups and access lists Syntax show mac [access-list|access-group] interface>|all|ge <1-4>| show mac access-group [< me1|sa <1-4>|vlan <1-4094>] Parameters mac [access-list Displays MAC information access-group] •...
Page 112: Mac-Address-Table
2-64 Motorola RF Switch CLI Reference Guide 2.2.13 mac-address-table Common to all modes Displays the MAC address table entries Syntax show mac-address-table Parameters None Example RFSwitch(config)#show mac-address-table Bridge VLAN Port ------------ ---- ------------ -------------- --- 00a0.f865.ea8f 1 0015.7038.0653 1 0015.7014.fec4 1 0015.7041.9f7f 1...
Page 113: Management
Common Commands 2-65 2.2.14 management Common to all modes Displays the L3 management interface name Syntax show management Parameters None Example RFSwitch>show management Mgmt Interface: vlan1 Management access permitted via any vlan interface RFSwitch>...
Page 114: Mobility
2-66 Motorola RF Switch CLI Reference Guide 2.2.15 mobility Common to all modes Displays the mobility parameters Syntax show mobility [event-log|forwarding|global| mobile-unit|peer|statistics] show mobility event-log [mobile-unit|peer] show mobility forwarding <MAC> show mobility mobile-unit [MAC>|detail] show mobility peer [<IP>|detail] show mobility statistics <MAC>...
Page 115 Common Commands 2-67 global Global Mobility parameters mobile-unit Mobile-units in the Mobility Database peer Mobility peers statistics Mobile-unit Statistics RFSwitch(config)#show mobility event-log mobile-unit Time Event Evt-Src-IP MU-Mac MU-IP HS-IP CS-IP 09/14 19:17:52 IP-UPD-MU 00-0f-3d-e9-a6-54 157.235.208.134 157.235.208.16 157.235.208.16 09/14 19:17:51 ADD-MU 00-0f-3d-e9-a6-54 0.0.0.0 157.235.208.16 157.235.208.16 09/14 19:17:51 DEL-MU...
Page 116 2-68 Motorola RF Switch CLI Reference Guide Foreign MU Database: Total=0 RFSwitch(config)#show mobility peer detail Mobility Peers: Total=1, Established=0 Peer: 1.1.1.1, State: PASSIVE-CONNECTING Join-Sent : 0 Join-Rcvd : 0 Leave-Sent : 0 Leave-Rcvd Rehome-Sent: 0 Rehome-Rcvd: 0 L3roam-Sent: 0 L3roam-...
Page 117: Ntp
Common Commands 2-69 2.2.16 ntp Common to all modes Displays NTP protocol information Syntax show ntp [association|status] Parameters ntp [association Displays the Network Time Protocol (NTP) configuration detail|status] • association detail – Displays existing NTP associations • detail – Displays NTP association details •...
Page 118 2-70 Motorola RF Switch CLI Reference Guide rcv time 00000000.00000000 (Feb 07 06:28:16 UTC 2036) xmt time c8b42a7e.6eb04252 (Sep 14 19:22:38 UTC 2006) filtdelay = 0.00 0.00 0.00 0.00 0.00 0.00 0.00 0.00 RFSwitch>show ntp status Clock is synchronized, stratum 0, actual frequency is 0.0000 Hz, precision is 2^0 reference time is 00000000.00000000 (Feb 07 06:28:16 UTC...
Page 119: Port-Channel
Common Commands 2-71 2.2.17 port-channel Common to all modes Displays port-channel load-balance information • RFS7000 SWITCH NOTE: This command is not supported on: • RFS6000 Syntax show port-channel load-balance Parameters load-balance Displays the existing load balancing configuration Example RFSwitch>show port-channel load-balance RFSwitch>...
Page 120: Power
2-72 Motorola RF Switch CLI Reference Guide 2.2.18 power Common to all modes Displays the power configuration and status for the RFS6000 switch Supported in the following platforms: • RFS6000 SWITCH NOTE: This command is not supported on: • RFS7000...
Page 121: Privilege
Common Commands 2-73 2.2.19 privilege Common to all modes Displays the privileges of the current user Syntax show privilege Parameters None Example RFSwitch>show privilege Current user privilege: superuser RFSwitch>...
Page 122: Radius
2-74 Motorola RF Switch CLI Reference Guide 2.2.20 radius Common to all modes Displays RADIUS status and information Syntax show radius [configuration|eap configuration|group| A.B.C.D/M|proxy|rad-user|trust-point] Parameters radius [configuration| Displays RADIUS configuration commands eap configuration group| • configuration – RADIUS server configuration nas <IP/Mask>|proxy|...
Page 123: Redundancy Dynamic-Ap-Load-Balance
Common Commands 2-75 2.2.21 redundancy dynamic-ap-load-balance Common to all modes Displays the configuration for the Dynamic AP Load Balancing feature Supported in the following platforms: • RFS7000 • RFS6000 Syntax show redundancy dynamic-ap-load-balance config Parameters config Displays configuration details for dynamic AP load balance Example RFSwitch(config)#show redundancy dynamic-ap-load-balance config Dynamic AP Load Balance Configuration:...
Page 124: Redundancy -Group
2-76 Motorola RF Switch CLI Reference Guide 2.2.22 redundancy -group Common to all modes This command displays the switch’s IP address, number of active neighbors, group license, installed license, cluster AP adoption count, switch adoption count, hold time, discovery time, heartbeat interval, cluster id and switch mode.
Page 125 Common Commands 2-77 Redundancy Protocol Version : 2.0 Redundancy Group License Cluster AP Adoption Count : Not Applicable Switch AP Adoption Count : Not Applicable Redundancy State : Disabled Radio Portals adopted by Group : Not Applicable Radio Portals adopted by this Switch : Not Applicable Rogue APs detected in this Group : Not Applicable Rogue APs detected by this Switch...
Page 126 2-78 Motorola RF Switch CLI Reference Guide Redundancy Protocol Version : 2.0 Redundancy Group License Cluster AP Adoption Count : Not Applicable Switch AP Adoption Count : Not Applicable Redundancy State : Disabled Radio Portals adopted by Group : Not Applicable...
Page 127: Redundancy-History
Common Commands 2-79 2.2.23 redundancy-history Common to all modes Displays the switch state transition history Syntax show redundancy -history Parameters None Example RFSwitch>show redundancy -history State Transition History Time Event Triggered state --------------------------------------------------------- Sat Oct 06 12:07:55 Redundancy Enabled Startup Sat Oct 06 12.07.56 Startup Done Discovery...
Page 128: Redundancy -Members
2-80 Motorola RF Switch CLI Reference Guide 2.2.24 redundancy -members Common to all modes Displays the member switches in the cluster. The user can provide the of the IP address switch in cluster whose information alone is needed. Syntax show redundancy-members [<IP>|brief]...
Page 129: Rtls
Common Commands 2-81 2.2.25 rtls Common to all modes Displays the Real Time Locating System status and information Syntax show rtls [aeroscout|espi|filter|ekahau| reference-tags|rfid|site|sole|tags|zone]...
Page 130 2-82 Motorola RF Switch CLI Reference Guide Parameters rtls [aeroscout|espi|filter| Displays the Real Time Locating System status and ekahau| information. reference-tags| • aeroscout – Displays aeroscout configurations rfid|site|sole|tags|zone] • espi [adapter|ecspecs|subscriber|tags] – Displays ESPI configuration • adapter [active|ale-tcp] – Displays Adapter Configuration •...
Page 131 Common Commands 2-83 rtls tags [<tag-id>| Displays Tags/Assets (passive, active, wi-fi, uwb) aeroscout|all|ekahau|g2| Information mobile-unit| • <tag-id> – Displays detailed tag information for specific |rfid|uri|zone|] tag ID • aeroscout – Displays located aeroscout tags • all – Displays all tags •...
Page 132: Smtp-Notification
2-84 Motorola RF Switch CLI Reference Guide 2.2.26 smtp-notification Common to all modes Displays the set smtp-notification parameters Syntax show smtp-notification traps Parameters traps Displays trap enable flags Example RFSwitch(config)#show smtp-notification traps ----------------------------------------------------------------- -Global enable flag for Trap SMTP-Notification Disabled...
Page 133 Common Commands 2-85 redundancy memberMisConfigured redundancy adoptionExceeded redundancy grpAuthLevelChanged redundancy resourceUp redundancy resourceDown misc lowFsSpace misc processMaxRestartsReached misc savedConfigModified misc serverCertExpired misc caCertExpired misc periodicHeartbeat misc switchEvent wireless station associated wireless station disassociated wireless station deniedAssociationOnCapability wireless station deniedAssociationOnShortPream wireless station deniedAssociationOnSpectrum wireless station deniedAssociationOnErr...
Page 134: Snmp
2-86 Motorola RF Switch CLI Reference Guide 2.2.27 snmp Common to all modes Displays SNMP user information Syntax show snmp user [snmpmanager|snmpoperator|snmptrap] Parameters snmp user Displays SNMP user information [snmpmanager| • snmpmanager – Shows SNMP manager information snmpoperator|snmptrap • snmpoperator – Shows SNMP operator information •...
Page 135: Snmp-Server
Common Commands 2-87 2.2.28 snmp-server Common to all modes Displays SNMP server information Syntax show snmp-server traps wireless-statistics[mesh|mobile-unit| radio|wireless-switch|wlan] Parameters traps wireless-statistics Displays existing wireless-stats rate trap enabled flags [mesh| • mesh – Displays existing mesh rate traps mobile-unit| radio| •...
Page 136 2-88 Motorola RF Switch CLI Reference Guide redundancy grpAuthLevelChanged misc lowFsSpace misc processMaxRestartsReached wireless station associated wireless station disassociated wireless station deniedAssociationOnCapability wireless station deniedAssociationOnShortPream wireless station deniedAssociationOnSpectrum wireless station deniedAssociationOnErr wireless station deniedAssociationOnSSID wireless station deniedAssociationOnRates wireless station deniedAssociationOnInvalidWPAWPA2IE...
Page 137 Common Commands 2-89 gave-up-percent-greater-than disabled avg-retry-greater-than disabled undecrypt-percent-greater-than disabled num-stations-greater-than disabled RFSwitch> RFSwitch>show snmp-server traps wireless-statistics wireless-switch pktsps-greater-than disabled tput-greater-than disabled num-stations-greater-than disabled RFSwitch> RFSwitch>show snmp-server traps wireless-statistics wlan pktsps-greater-than disabled tput-greater-than disabled avg-bit-speed-less-than disabled avg-signal-less-than disabled nu-percent-greater-than disabled gave-up-percent-greater-than disabled avg-retry-greater-than disabled...
Page 138: Spanning-Tree
2-90 Motorola RF Switch CLI Reference Guide 2.2.29 spanning-tree Common to all modes Displays Spanning Tree information Syntax show spanning-tree mst [config|detail|instance] show spanning-tree mst detail interface [<interface-name>|ge|me1|sa|vlan <1-4094>] show spanning-tree mst instance <1-15> interface <IF NAME>||vlan <1-4094>}] Parameters config...
Page 139 Common Commands 2-91 %------------------------------------------------------ RFSwitch(config)# RFSwitch(config)#show spanning-tree mst detail interface eth % Bridge up - Spanning Tree Disabled % CIST Root Path Cost 0 - CIST Root Port 0 - CIST Bridge Priority 32768 % Forward Delay 15 - Hello Time 2 - Max Age 20 - Max-hops 20 % 1: CIST Root Id 8000000000000000 % 1: CIST Reg Root Id 8000000000000000 % 1: CST Bridge Id 800000a0f865ea8e...
Page 140: Static-Channel-Group
2-92 Motorola RF Switch CLI Reference Guide 2.2.30 static-channel-group Common to all modes Displays the members of the static channel groups Supported in the following platforms: • RFS7000 SWITCH NOTE: This command is not supported in: • RFS6000 Syntax show static-channel-group...
Page 141: Terminal
Common Commands 2-93 2.2.31 terminal Common to all modes Displays the terminal information for the device Syntax show terminal Parameters None Example RFSwitch>show terminal Terminal Type: vt102 Length: 44 Width: 125 RFSwitch>...
Page 142: Timezone
2-94 Motorola RF Switch CLI Reference Guide 2.2.32 timezone Common to all modes Displays the timezone set on the device Syntax show timezone Parameters None Example RFSwitch>show timezone Timezone is Etc/UTC RFSwitch>...
Page 143: Traffic-Shape
Common Commands 2-95 2.2.33 traffic-shape Common to all modes Displays traffic shaping parameters Supported in the following platforms: • RFS7000 SWITCH NOTE: This command is not supported in: • RFS6000 Syntax show traffic-shape [config|priority-map|statistics] Parameters • config class – Displays traffic shaping configuration config| priority-map| •...
Page 144: Users
2-96 Motorola RF Switch CLI Reference Guide 2.2.34 users Common to all modes Displays a list of users connected to the device Syntax show users Parameters None Example RFSwitch>show users Line User Uptime Location 0 con 0 316 admin 06:08:11...
Page 145: Version
Displays software and hardware version information Example RFSwitch>show version RFSwitch version 3.2.0.0-024D MIB=01a Copyright (c) 2006-2007 Motorola, Inc. Booted from secondary. Switch uptime is 1 days, 20 hours 53 minutes CPU is Intel(R) Pentium(R) 4 CPU 2.00GHz 255844 kB of on-board RAM...
Page 146: Wireless
2-98 Motorola RF Switch CLI Reference Guide 2.2.36 wireless Common to all modes range differs from switch to switch. radio-group • RFS7000 – Supports a range between 0-255 • RFS6000 – Supports a range between 0-64 Displays the wireless configuration parameters and information...
Page 147 Common Commands 2-99 show wireless mobile-unit roaming database show wireless mobile-unit statistics [<1-4096>|<MAC> {detail}|summary|voice [<1-4096>|<mac>]] show wireless mobile-unit voice show wireless mobile-unit vlan <1-256> show wireless multicast-packet-limit show wireless phrase-to-key [wep64|wep128] <pass-phrase> show wireless qos-mapping {[wired-to-wireless| wireless-to-wired]} show wireless radio {[<1-4096>|admission-control|all| beacon-table|config|monitor-table|statistics|unadopted| uptime|voice]} show wireless radio {[<1-4096>|all|beacon-table|monitor-...
Page 148 2-100 Motorola RF Switch CLI Reference Guide ap [<1-48>|<MAC>| Status of the adopted access port config [<1-48>|<MAC>]] • <1-48> – Defines the index of the access port • <MAC> – Sets the MAC address of a access port • config [<1-1024>|<MAC>] – Status of the configured access port.
Page 149 Common Commands 2-101 default-ap Displays default access-port information hotspot query Displays hotspot query string configuration hotspot-config <1-256> WLAN hotspot configuration for specified index Displays intrusion detection configuration parameters [configured-bad-essids| • configured-bad-essids – Displays a list of configured bad filter-list] essids •...
Page 150 2-102 Motorola RF Switch CLI Reference Guide mobile-unit {[<1- Displays the parameters of associated mobile units. All 8192>|<MAC>|associatio parameters are optional. n-history| • <1-8192> – Index of mobile unit association-stats|probe- • <MAC> – MAC address of mobile unit history|radio|roaming|sta • association-history {<MAC>}– Displays the association...
Page 151 Common Commands 2-103 multicast-packet-limit Displays the multicast-packet-limit phrase-to-key Displays the WEP keys generated by a passphrase [wep128|wep64] • wep128 – Displays WEP128 keys <pass-phrase> • wep64 – Displays WEP64 keys • <pass-phrase> – The passphrase to generate the keys for. qos-mapping {[ Quality of service mappings used for mapping WMM wired-to-wireless|...
Page 152 2-104 Motorola RF Switch CLI Reference Guide radio {[<1-4096>| Radio related commands. All parameters are optional. admission-control|all| • <1-4096> – Defines information on a single radio’s index beacon-table|config| • admission-control voice {<1-4096>} – Displays summary monitor-table|statistics| information for all radios that have admission control unadopted|uptime|voice] enabled.
Page 153 Common Commands 2-105 • unadopted – Displays a list of unadopted radios • uptime – Displays the uptime of all adopted radios • voice <1-4094> – Displays voice call details • <1-4094> – Optional. Defines a single radio’s index radio-group {<1-256>} Displays radios in specified group •...
Page 154 2-106 Motorola RF Switch CLI Reference Guide smart-rf Displays smart-rf related management information [calibration-status| • calibration-status – Displays smart-rf calibration status. configuration| • configuration – Displays smart-rf configuration history|radio] information. • history – Displays smart-rf assignment history since last calibration.
Page 155 Common Commands 2-107 wlan [config|statistics] Displays wireless LAN parameters. The following information is displayed: • config [<1-256>|all|enabled] – Displays the wireless LAN configuration information. All parameters optional. • <1-256> – The selected wlan • all – all wlans in the configuration •...
Page 156 2-108 Motorola RF Switch CLI Reference Guide RFSwitch> RFSwitch>show wireless ap-unadopted RFSwitch> RFSwitch>show wireless approved-aps access-port detection is disabled RFSwitch> RFSwitch>show wireless channel-power 11a indoor RFSwitch> RFSwitch(config)#show wireless config country-code : None secure-wispe-default-secret default adoption-pref-id proxy-arp : enabled adopt-unconf-radio : enabled...
Page 157 Common Commands 2-109 RFSwitch>show wireless ids detect-window : 10 seconds Excessive Operations:: Threshold(mu radio switch) Filter- Ageout probe-requests : 60 Sec association-requests : 60 Sec disassociations 60 Sec authentication-fails : 60 Sec crypto-replay-fails : 60 Sec 80211-replay-fails 60 Sec decryption-fails 60 Sec unassoc-frames 60 Sec...
Page 158 2-110 Motorola RF Switch CLI Reference Guide Pkts per sec: 1.73 0.00 0.87 0.00 0.87 0.00 pps Throughput: 0.00 0.00 0.00 0.00 0.00 0.00 Mbps Avg bit speed: 9.19 0.00 Mbps % Non-unicast pkts: N/A N/A ------ RF Status-------------------------------------------- 30s 1hr Avg mobile-unit signal: -78.00 0.00 dBm...
Page 159 Common Commands 2-111 RFSwitch(config)#show wireless mobile-unit radio 1 index MAC-address radio type wlan vlan/tunnel ready IP- address last active Posture Status 00-0E-9B-98-F9-34 1 11g 1 vlan 1 192.168.2.45 0 Sec Listed 1 of a total of 1 mobile-units RFSwitch(config)# RFSwitch(config)#show wireless wlan config 1 WLAN: 1, status: enabled, description: WLAN1, ssid: sardarjee auth: none, encr: none, inactivity-timeout: 1800 seconds...
Page 160: Rfswitch>Show Wlan
2-112 Motorola RF Switch CLI Reference Guide 2.2.37 wlan-acl Common to all modes Displays the WLAN based access control list information Syntax show wlan-acl [<1-256>|all] Parameters wlan-acl [ <1-256>|all] Displays WLAN based access control list information • <1-256> – Displays ACLs attached to the specified WLAN ID •...
Page 161: Access-List
Common Commands 2-113 2.2.38 access-list Privilege / Global Config Displays the access lists (numbered and named) configured on the switch. The numbered access list displays numbered ACLs. The named access list displays named ACL details. Syntax show access-list [<1-99>|<100-199>|<1300-1999>| <2000-2699>|<acl-name>] Parameters access-list Displays access-list entries.
Page 162: Aclstats
2-114 Motorola RF Switch CLI Reference Guide 2.2.39 aclstats Privilege / Global Config Displays the statistics of configured access lists Syntax aclstats [access-list|vlan <1-4094>] aclstats {<1-99>|<100-199>|<1300-1999>|<2000-2699>| <acl-name>} aclstats vlan <1-4094> Parameters access-list {<1- Displays configured access lists. 99>|<100-199>|<1300- • <1-99> - IP standard access list 1999>|<2000-2699>|...
Page 163: Alarm-Log
Common Commands 2-115 2.2.40 alarm-log Privilege / Global Config Displays the contents of the alarm log on the device Syntax show alarm-log {<1-65535>|acknowledged|all|count|new| severity-to-limit} show alarm-log severity-to-limit {critical| informational|major|normal|warning} Parameters alarm-log [<1-65535>| Displays the contents of the alarm log on the device. acknowledged|all|count| •...
Page 164: Boot
2-116 Motorola RF Switch CLI Reference Guide 2.2.41 boot Privilege / Global Config Displays the boot configuration of the device Syntax show boot Parameters None Example RFSwitch#show boot Image Build Date Install Date Version ----- -------------------- -------------------- ------ -------- Primary...
Page 165: Clock
Common Commands 2-117 2.2.42 clock Privilege / Global Config Displays the system clock Syntax show clock Parameters None Example RFSwitch#show clock Jun 01 00:51:34 UTC 2007 RFSwitch#...
Page 166: Debugging
2-118 Motorola RF Switch CLI Reference Guide 2.2.43 debugging Privilege / Global Config Displays the debugging configuration information Syntax show debugging mstp Parameters mstp Displays the current MSTP configuration Example RFSwitch(config)#show debugging mstp MSTP debugging status: RFSwitch(config)#...
Page 167: Dhcp
Common Commands 2-119 2.2.44 dhcp Privilege / Global Config Displays existing DHCP server configurations Syntax show dhcp [config|status] Parameters config Displays the current DHCP server configuration status Displays whether the DHCP server is running Example RFSwitch#show dhcp config service dhcp ip dhcp pool vlan6 default-router xxx.xxx.xxx.2 network xxx.xxx.xx.0/24...
Page 168: File
2-120 Motorola RF Switch CLI Reference Guide 2.2.45 file Privilege / Global Config Displays the filesystem information Syntax show file [information|systems] Parameters file Displays the filesystem information. [information|systems] • information <FILE> Displays file information • <FILE> Displays the information on file •...
Page 169: Ftp
Common Commands 2-121 2.2.46 ftp Privilege / Global Config Displays the FTP server configuration Syntax show ftp Parameters None Example RFSwitch#show ftp FTP Server: Disabled User Name: anonymous or ftpuser Password: ******** Root dir: flash:/ RFSwitch#...
Page 170: Password-Encryption
2-122 Motorola RF Switch CLI Reference Guide 2.2.47 password-encryption Privilege / Global Config Displays the global password encryption status Syntax show password-encryption status Parameters status Displays the existing password-encryption status Example RFSwitch#show password-encryption status Password encryption is disabled RFSwitch#...
Page 171: Running-Config
Common Commands 2-123 2.2.48 running-config Privilege / Global Config Displays the contents of those configuration files wherein all configured MAC and IP access lists are applied to an interface Syntax show running-config [full|include-factory] Parameters running-config Displays the contents of the configuration files [full|include-factory] •...
Page 172 2-124 Motorola RF Switch CLI Reference Guide snmp-server user snmptrap v3 encrypted auth md5 0x7be2cb56f6060226f15974c936e2739b snmp-server user snmpmanager v3 encrypted auth md5 0x7be2cb56f6060226f15974c936e2739b snmp-server user snmpoperator v3 encrypted auth md5 0x49c451c7c6893ffcede0491bbd0a12c4 crypto isakmp keepalive 10 crypto ipsec security-association lifetime kilobytes 4608000...
Page 173 Common Commands 2-125 RFSwitch(config)# RFSwitch(config)#show running-config include-factory ! configuration of RFSwitch version 4.0.0.0-008D version 1.0 service prompt crash-info no service set command-history no service set reboot-history no service set upgrade-history hostname RFSwitch banner motd Welcome to CLI! username admin password 1 8e67bb26b358e2ed20fe552ed6fb832f397a507d username admin access console web ssh telnet username admin privilege superuser...
Page 174 2-126 Motorola RF Switch CLI Reference Guide ........................................ no radio default-11b enhanced-beacon-table no radio default-11b enhanced-probe-table no radio 1 neighbor-smart-scan no radio 2 neighbor-smart-scan no ap-detection enable ........................................ ip address 123.111.2.1/24 no ip helper-address...
Page 175: Securitymgr
Common Commands 2-127 2.2.49 securitymgr Privilege / Global Config Displays the security manager event-logs Syntax show securitymgr event-logs Parameters None Example RFSwitch#show securitymgr event-log RFSwitch#...
Page 176: Sessions
2-128 Motorola RF Switch CLI Reference Guide 2.2.50 sessions Privilege / Global Config Displays the list of current active open sessions on the device Syntax show sessions Parameters None Example RFSwitch#show sessions SESSION USER LOCATION IDLE START TIME Console 06:24m...
Page 177: Startup-Config
Common Commands 2-129 2.2.51 startup-config Privilege / Global Config Displays the complete startup configuration script on the console Syntax show startup-config Parameters None Example RFSwitch#show startup-config ! configuration of RFSwitch version 4.0.0.0-008D version 1.0 service prompt crash-info username admin password 1 8e67bb26b358e2ed20fe552ed6fb832f397a507d username admin privilege superuser username operator password 1...
Page 178 2-130 Motorola RF Switch CLI Reference Guide fallback enable ip http server ip http secure-trustpoint default-trustpoint ip http secure-server ip ssh ip telnet no service pm sys-restart wireless wlan 1 enable wlan 1 ssid sardarjee radio add 1 00-A0-F8-BF-8A-4B 11bg ap300...
Page 179: Upgrade-Status
Common Commands 2-131 2.2.52 upgrade-status Privilege / Global Config Displays the last image-upgrade status Syntax show upgrade-status {detail} Parameters None Example RFSwitch#show upgrade-status Last Image Upgrade Status : Successful Last Image Upgrade Time : Mon May 21 16:27:40 2007 RFSwitch#...
Page 180: Mac-Name
2-132 Motorola RF Switch CLI Reference Guide 2.2.53 mac-name User Exec Displays the configured MAC name Supported in the following platforms: • RFS7000 • RFS6000 Syntax show mac-name Parameters None Example RFSwitch(config-wireless)#show mac-name Index MAC Address MAC Name 00-18-DE-82-78-6B GE1PortMACAddress...
Page 181: Access-List
Common Commands 2-133 2.2.54 access-list Priv Exec Displays the access control list entries based on the ACL name or index Supported in the following platforms: • RFS7000 • RFS6000 Syntax show access-list {<1-99>|<100-199>|<1300-1999>| <2000-2699>|<acl-name>} Parameters access-list {<1-99>| Displays ACL entry details. <100-199>|<1300-1999>| •...
Page 182: Aclstats
2-134 Motorola RF Switch CLI Reference Guide 2.2.55 aclstats Displays the ACL statistics for the selected vlan Supported in the following platforms: • RFS7000 • RFS6000 Syntax show aclstats [access-list|vlan] show aclstats access-list [<1-99>|<100-199>|<1300- 1999>|<2000-2699>|<acl-name>] show aclstats vlan <1-4094> Parameters Displays the ACL statistics.
Page 183: Alarm-Log
Common Commands 2-135 2.2.56 alarm-log Priv Exec Mode Displays all the alarms on the system Supported in the following platforms: • RFS7000 • RFS6000 Syntax show alarm-log {<1-65535>|acknowledged|all|count|new| severity-to-limit} Parameters alarm-log [<1-65535>| Displays all the alarms on the system acknowledged|all|count| •...
Page 184 2-136 Motorola RF Switch CLI Reference Guide Example RFSwitch#show alarm-log 1 RFSwitch# RFSwitch#show alarm-log acknowledged RFSwitch# RFSwitch#show alarm-log severity-to-limit...
Page 185: Firewall
Common Commands 2-137 2.2.57 firewall Priv Exe Mode Displays wireless firewall Supported in the following platforms: • RFS7000 • RFS6000 Syntax show firewall [config|flow] show firewall [config|flow timeouts] Parameters firewall [config| Displays firewall configuration information. flow timeouts] • config – Displays Configuration •...
Page 186: Role
2-138 Motorola RF Switch CLI Reference Guide 2.2.58 role Priv Exe Mode Displays existing role name Supported in the following platforms: • RFS7000 • RFS6000 Syntax show role [<role-name>|mobile-units] Parameters role [<role-name>| Displays existing role name mobile-units] • <role-name> – Displays existing role name •...
Page 187: Chapter 3. User Exec Commands
User Exec Commands Logging in to the switch places you within the USER EXEC command mode. Typically, a login requires a user name and password. You have three login attempts before a connection attempt is refused. USER EXEC commands (available at the user level) are a subset of the commands available at the privileged level.
Page 188 Motorola RF Switch CLI Reference Guide Table 3.1 User Exec Mode Command Summary Command Description Ref. enable Turns on (enables) the privileged mode command set page 3-9 exit Ends the current mode and moves down to the page 2-3 previous mode...
Page 189 User Exec Commands 3.1.1 clear User Exec Commands Resets the previous (last saved) command Supported in the following platforms: • RFS7000 • RFS6000 NOTE: Refer to the interface details below when using clear counter interface. • ge <1-4> – Available only in RFS7000 •...
Page 190 Motorola RF Switch CLI Reference Guide mobility [event-log| Clears mobility attributes mobile-unit| • event-log [mobile-unit|peer]– Clears the event log peer-statistics] • mobile-unit – Clears MU event-logs for • peer – Clears peer event logs • mobile-unit [<MAC>|all|foreign-database| home-database] – Clears MU information.
Page 191: Cluster-Cli
User Exec Commands 3.1.2 cluster-cli User Exec Commands Use this command to enter the cluster-cli context. The cluster-cli context provides centralized management to configure all cluster members from any one member. Any command executed under this context will be executed to all the switches in the cluster. A new context redundancy supports the cluster-cli.
Page 192: Debug
Motorola RF Switch CLI Reference Guide 3.1.3 debug User Exec Commands Use this command to debug the switch Supported in the following platforms: • RFS7000 • RFS6000 Syntax debug [certmgr|ip|mobility] debug certmgr [all|error|info] debug ip [https|ssh] debug mobility [cc|error|forwarding|mu|packet|peer|system] debug mobility forwarding {<MAC>}...
Page 193 User Exec Commands mobility L3 mobility debug messages. [cc|error|forwarding|mu| • cc – ccserver events packet|peer|system] • error – Error events • forwarding <MAC> – Dataplane forwarding • <MAC> – MAC Address of the station • mu – MU events and state changes •...
Page 194: Disable
Motorola RF Switch CLI Reference Guide 3.1.4 disable User Exec Commands Enables the PRIV mode to use the disable command. Use the command to exit disable the PRIV mode Supported in the following platforms: • RFS7000 • RFS6000 Syntax disable...
Page 195: Enable
User Exec Commands 3.1.5 enable User Exec Commands Use the enable command to enter the PRIV mode Supported in the following platforms: • RFS7000 • RFS6000 Syntax enable Parameters None Example RFSwitch>enable RFSwitch#...
Page 196: Logout
3-10 Motorola RF Switch CLI Reference Guide 3.1.6 logout User Exec Commands Use this command instead of the command to exit the EXEC mode exit Supported in the following platforms: • RFS7000 • RFS6000 Syntax logout Parameters None Example The RFSwitch Series Switch logs off on execution of this...
Page 197: Page
User Exec Commands 3-11 3.1.7 page User Exec Commands Use the command to toggle the switch paging function. Enabling this command displays the CLI command output page by page, instead of running the entire output at once. Supported in the following platforms: •...
Page 198: Ping
3-12 Motorola RF Switch CLI Reference Guide 3.1.8 ping User Exec Commands Sends ICMP echo messages to a user-specified location Supported in the following platforms: • RFS7000 • RFS6000 Syntax ping {[<IP>|<hostname>]} Parameters ping {[<IP>|<hostname>]} Pings the specified destination IP address or hostname.
Page 199: Quit
User Exec Commands 3-13 3.1.9 quit User Exec Commands Use this command to exit the current mode and move to the previous mode Supported in the following platforms: • RFS7000 • RFS6000 Syntax quit Parameters None Example The switch logs off upon execution of the command...
Page 200: Telnet
3-14 Motorola RF Switch CLI Reference Guide 3.1.10 telnet User Exec Commands Opens a telnet session Supported in the following platforms: • RFS7000 • RFS6000 Syntax telnet <IP> port Parameters telnet <IP> port Defines the IP address or hostname of a remote system •...
Page 201: Terminal
User Exec Commands 3-15 3.1.11 terminal User Exec Commands Sets the length/number of lines displayed within the terminal window Supported in the following platforms: • RFS7000 • RFS6000 Syntax terminal [length <0-512>|no [length <0-512>|width]| width <0-512>] Parameters length <0-512> Sets the number of lines on a screen no [length <0-512>| Negates a command or sets its defaults.
Page 202: Traceroute
3-16 Motorola RF Switch CLI Reference Guide 3.1.12 traceroute User Exec Commands Traces the route to its defined destination Supported in the following platforms: • RFS7000 • RFS6000 Syntax traceroute [[<IP>|<hostname>]|ip [<IP>|<hostname>]] Parameters [<IP>|<hostname>] Traces the route to a destination IP address or a hostname ip [<IP>|<hostname>]...
Page 203: Chapter 4. Privileged Exec Commands
Privileged Exec Commands Most PRIV EXEC commands set operating parameters. Privileged-level access should be password protected to prevent unauthorized use. The PRIV EXEC command set includes commands contained within the USER EXEC mode. The PRIV EXEC mode also provides access to configuration modes, and includes advanced testing commands. The PRIV EXEC mode prompt consists of the host name of the device followed by a pound sign (#).
Page 204: Contents -
Motorola RF Switch CLI Reference Guide Table 4.1 Priv Exec Mode Command Summary Command Description Ref. clear Resets switch functions to last saved configuration page 4-9 clock Configures the software system clock page 4-13 clrscr Clears the displayed screen page 2-2...
Page 205 Privileged Exec Commands Table 4.1 Priv Exec Mode Command Summary Command Description Ref. Negates a command or sets its defaults page 2-5 page Toggles the paging function page 4-39 ping Sends ICMP echo messages to a specified location page 4-40 Displays the current directory page 4-41 quit...
Page 206: Acknowledge
Motorola RF Switch CLI Reference Guide 4.1.1 acknowledge Priv Exec Command Acknowledges alarms Supported in the following platforms: • RFS7000 • RFS6000 Syntax acknowledge alarm-log [<1-65535>|all] Parameters alarm-log [<1-65535>|all] Acknowledges alarms • <1-65535> – Acknowledges the specific alarm ID • all – Acknowledges all alarms...
Page 207: Archive
Privileged Exec Commands 4.1.2 archive Priv Exec Command Manages file archive operations Supported in the following platforms: • RFS7000 • RFS6000 Syntax archive tar /table [<FILE>|<URL>] archive tar /create [<FILE>|<URL>] [<FILE>|<DIR>] archive tar /xtract [<FILE>|<URL>] <DIR> Parameters Manipulates (creates, lists or extracts) a tar file /table Lists the files in a tar file /create...
Page 208 Motorola RF Switch CLI Reference Guide RFSwitch#dir flash:/ How to view the output tar file? Directory of flash:/ drwx 1024 Thu Apr 17 08:25:50 2007 hotspot drwx Fri Apr 8 12:27:20 2007 drwx 1024 Thu Apr 7 16:23:34 2007 crashinfo...
Page 209 Privileged Exec Commands 4.1.3 cd Priv Exec Command Changes the current directory Supported in the following platforms: • RFS7000 • RFS6000 Syntax cd {<DIR>} Parameters <DIR> Changes current directory to DIR. This parameter is optional. When this parameter is not provided, the current directory name is displayed.
Page 210: Change-Passwd
Motorola RF Switch CLI Reference Guide 4.1.4 change-passwd Priv Exec Command Changes the password of a logged user Supported in the following platforms: • RFS7000 • RFS6000 Syntax change-passwd Parameters None Usage Guidelines A password must be between 8 to 32 characters in length. For security, the console does not display user entered key words or the old password and new password fields.
Page 211: Clear
Privileged Exec Commands 4.1.5 clear Priv Exec Command Resets the current context Supported in the following platforms: • RFS7000 • RFS6000 Syntax clear [aclstats|alarm-log|arp-cache|counters|crypto| dosstats|ip|logging|mac-address-table|mobility| spanning-tree] clear [aclstats|arp-cache|dosstats|logging] clear alarm-log [<1-65535>|acknowledge|all|new] clear counters [all|bridge|firewall|igmp-snooping|interface| router|thread] clear counters interface [<interface>|all|ge <1-8>|me1|sa <1-4>|up1|vlan <1-4094>] clear crypto [ike|ipsec] sa {<IP>} clear ip [dhcp|pmtu-discovery-blackhole-cache]...
Page 212 4-10 Motorola RF Switch CLI Reference Guide alarm-log [<1-65535>| Clears the alarm-log acknowledge|all|new] • <1-65535> – Clears the specific alarm ID • acknowledge – Clears acknowledged alarms • all – Clear all alarms • new – Clear new alarms arp-cache...
Page 213 Privileged Exec Commands 4-11 mac-address-table Clears entries in the forwarding database [dynamic|multicast|static] • dynamic – Clears all dynamic entries [address <address>| • multicast – Clears all multicast entries bridge <1-32>| • static – Clears all management configured entries interface <interface>| •...
Page 214 4-12 Motorola RF Switch CLI Reference Guide Example RFSwitch#clear alarm-log new RFSwitch# RFSwitch#clear alarm-log acknowledged RFSwitch# RFSwitch#clear arp-cache RFSwitch# RFSwitch#clear logging RFSwitch# RFSwitch#clear mobility event-log peer RFSwitch# RFSwitch#clear ip dhcp binding * RFSwitch#...
Page 215: Clock
Privileged Exec Commands 4-13 4.1.6 clock Priv Exec Command Configures the software system clock Supported in the following platforms: • RFS7000 • RFS6000 Syntax clock set HH:MM:SS <1-31> <MONTH> <1993-2035> Parameters HH:MM:SS Sets the time in hours, minutes, and seconds <1-31>...
Page 216: Cluster-Cli
4-14 Motorola RF Switch CLI Reference Guide 4.1.7 cluster-cli Priv Exec Command Use this command to access the cluster-cli context. The cluster-cli context provides centralized management to configure all members of cluster from one member. Any command executed under this context is executed on all switches in the cluster.
Page 217: Configure
Privileged Exec Commands 4-15 4.1.8 configure Priv Exec Command Enters the configuration mode Supported in the following platforms: • RFS7000 • RFS6000 Syntax configure terminal Parameters terminal Enables configuration from the terminal Example RFSwitch#configure terminal Enter configuration commands, one per line. End with CNTL/Z. RFSwitch(config)#...
Page 218: Copy
4-16 Motorola RF Switch CLI Reference Guide 4.1.9 copy Priv Exec Command Copies any file (config,log,txt ...etc) from any location to the switch and vice-versa NOTE: Copying a new config file onto an existing running-config file merges it with the existing running-config on the switch. Both, the existing running-config and the new config file are applied as the current running-config.
Page 219: Debug
Privileged Exec Commands 4-17 4.1.10 debug Priv Exec Command Use this command for debugging Supported in the following platforms: • RFS7000 • RFS6000 Syntax debug [all|cc|ccstats|certmgr|dhcpsvr|imi|ip|logging|mgmt| mobility|mstp|nsm|radius|redundancy|rns|securitymgr|sole] debug all debug cc [access-port|all|alt|ap-containment|ap-detect| capwap|cluster|config|dot11|eap|ids|kerberos|l3-mob| loc-ap|loc-mu|media|mobile-unit|radio|radius|self-heal| smart|snmp|system|wips|wisp|wlan] {[debug|err|info|warn]} debug ccstats <statsmodule> debug [certmgr|dhcpsvr] [all|error|info] debug imi [all|cli-client|cli-server|errors|init|ntp] debug ip [https|ssh] debug logging [all|errors|init|monitor|subagent]...
Page 220 4-18 Motorola RF Switch CLI Reference Guide cc [access-port|all|alt| Cellcontroller (wireless) debugging message ap-containment| • access-port [debug|err|info|warn] – Debugs access port apetect|capwap|cluster| logs config|dot11|eap|ids| • debug ebugs all default messages – D kerberos|l3-mob|loc-ap| • err – Debugs error and higher severity messages loc-mu|media| •...
Page 221 Privileged Exec Commands 4-19 ccstats <stats-module> Cellcontroller statistics (wireless) debugging messages • stats-module [debug|error|info|warn] – Statistics Module to be debugged. • debug – Debugs all default messages • err – Debugs error and higher severity messages • info – Debugs information and higher severity messages •...
Page 222 4-20 Motorola RF Switch CLI Reference Guide ip [https|ssh] Internet protocol debugging messages • https – Secure HTTP <HTTPS> Server • ssh – Secure Shell <SSH> Server logging Modify message logging facilities for debugging messages [all|errors|init|monitor| • all – All debugging subagent] •...
Page 223 Privileged Exec Commands 4-21 mstp Multiple Spanning Tree Protocol (MSTP) debugging [all|cli|packet|protocol| message timer] • all – all • cli – CLI commands • packet [rx|tx] – MSTP packets • rx – receive packet • tx – transmit packet • protocol detail – Protocol •...
Page 224 4-22 Motorola RF Switch CLI Reference Guide redundancy Redundancy protocol debugging messages [all|ccmsg|config|errors| • all – Debugging all general|heartbeats|init| • ccmsg – Msg exchange with CC packets|proc|shutdown| • config – Configuration processing states|subagent|timer| • errors – Errors warnings] • general – General •...
Page 225 Privileged Exec Commands 4-23 securitymgr Security manager debugging messages [acldebug|aclerror|all| • acldebug – Trace debug messages from ACL module debug|dosdebug| • aclerror – Trace error messages from ACL module doserror|error|ikedebug| • all – Trace all messages from Security Manager natdebug|naterror| •...
Page 226 4-24 Motorola RF Switch CLI Reference Guide sole [adapters|aeroscout| Location engine debugging messages algo|all|cclib|ekahau|erro • adapters – SOLE Adapter manager logs rs|info|init] • aeroscout – Aeroscout logs • algo – Location algorithm logs • all – All module logs • cclib – cc library logs •...
Page 227: Delete
Privileged Exec Commands 4-25 4.1.11 delete Priv Exec Command Deletes a specified file from the system Supported in the following platforms: • RFS7000 • RFS6000 Syntax delete [/force <FILE>|/recursive <FILE>|<FILE>] Parameters /force Forces deletion without a prompt /recursive Performs a recursive delete Specifies the filename(s) to be deleted <FILE>...
Page 228: Diff
4-26 Motorola RF Switch CLI Reference Guide 4.1.12 diff Priv Exec Command Displays the differences between 2 files Supported in the following platforms: • RFS7000 • RFS6000 Syntax diff [<FILE>|<URL>] [<FILE>|<URL>] Parameters <FILE> The first <FILE> is the source file for the diff. The second <FILE>...
Page 229 Privileged Exec Commands 4-27 policy vlan 44 policy wlan 10 group kumar3...
Page 230: Dir
4-28 Motorola RF Switch CLI Reference Guide 4.1.13 dir Priv Exec Command View the list of files on a filesystem Supported in the following platforms: • RFS7000 • RFS6000 Syntax dir {[/all|/recursive] [<DIR>|all-filesystems]} Parameters /all Lists all files /recursive Lists files recursively <DIR>...
Page 231: Disable
Privileged Exec Commands 4-29 4.1.14 disable Priv Exec Command Turns off the privileged mode command Supported in the following platforms: • RFS7000 • RFS6000 Syntax disable Parameters None Example RFSwitch#disable RFSwitch>...
Page 232: Edit
4-30 Motorola RF Switch CLI Reference Guide 4.1.15 edit Priv Exec Command Edits a text file Supported in the following platforms: • RFS7000 • RFS6000 Syntax edit <FILE> Parameters <FILE> Name of the file to be modified Example RFSwitch#edit startup-config GNU nano 1.2.4...
Page 233: Enable
Privileged Exec Commands 4-31 4.1.16 enable Priv Exec Command Turns on the privileged mode command Supported in the following platforms: • RFS7000 • RFS6000 Syntax enable Parameters None Example RFSwitch#enable RFSwitch#...
Page 234: Erase
4-32 Motorola RF Switch CLI Reference Guide 4.1.17 erase Priv Exec Command Erases a target filesystem Supported in the following platforms: • RFS7000 • RFS6000 Syntax erase [nvram:|flash:|startup-config|usb1:|usb2:|cf:] Parameters nvram: Erases everything in nvram flash: Erases everything in flash startup-config...
Page 235: Halt
Privileged Exec Commands 4-33 4.1.18 halt Priv Exec Command Stops (halts) the switch Supported in the following platforms: • RFS7000 • RFS6000 Syntax halt Parameters None Example RFSwitch#halt Wireless switch will be halted, do you want to continue? (y/n): y Do you want to save current configuration? (y/n/d): y [OK]...
Page 236: Kill
4-34 Motorola RF Switch CLI Reference Guide 4.1.19 kill Priv Exec Command Kills (terminates) a specified session and stops (halts) the switch Supported in the following platforms: • RFS7000 • RFS6000 Syntax kill session <1-16> Parameters session Active session (16 active sessions can be terminated)
Page 237: Logout
Privileged Exec Commands 4-35 4.1.20 logout Priv Exec Command Exits the EXEC mode and stops (halts) the switch Supported in the following platforms: • RFS7000 • RFS6000 Syntax logout Parameters None Example RFSwitch#logout RFSwitch release 3.0.0.0-200B Login as 'cli' to access CLI. RFSwitch login:...
Page 238: Mkdir
4-36 Motorola RF Switch CLI Reference Guide 4.1.21 mkdir Priv Exec Command Creates a new directory in the filesystem Supported in the following platforms: • RFS7000 • RFS6000 Syntax mkdir <DIR> Parameters <DIR> Directory name Example RFSwitch#mkdir TestDIR RFSwitch#...
Page 239: More
Privileged Exec Commands 4-37 4.1.22 more Priv Exec Command Displays the contents of a file Supported in the following platforms: • RFS7000 • RFS6000 Syntax more <FILE> Parameters <FILE> Displays the contents of the file Example RFSwitch#more flash:/log/messages.log Sep 08 12:27:30 2006: %PM-5-PROCSTOP: Process "radiusd"...
Page 240 4-38 Motorola RF Switch CLI Reference Guide of ' superuser' from auth source 'local' Sep 08 12:28:01 2006: %NSM-6-DHCPDEFRT: Default route with gateway 157.235.208.246 learnt via DHCP Sep 08 12:28:01 2006: %NSM-6-DHCPIP: Interface vlan1 acquired IP address 157.235.208.93/24 via DHCP...
Page 241: Page
Privileged Exec Commands 4-39 4.1.23 page Priv Exec Command Toggles switch paging. Enabling this command displays the command output page by page instead of running the entire output at once. Supported in the following platforms: • RFS7000 • RFS6000 Syntax page Parameters None...
Page 242: Ping
4-40 Motorola RF Switch CLI Reference Guide 4.1.24 ping Priv Exec Command Send (transmits) ICMP echo messages Supported in the following platforms: • RFS7000 • RFS6000 Syntax ping {<IP>} Parameters <IP> Sets the ping destination address or hostname Example RFSwitch#ping 157.235.208.39 PING 157.235.208.39 (157.235.208.39): 100 data bytes...
Page 243: Pwd
Privileged Exec Commands 4-41 4.1.25 pwd Priv Exec Command View the contents of the current directory Supported in the following platforms: • RFS7000 • RFS6000 Syntax Parameters None Example RFSwitch#pwd flash:/ RFSwitch#...
Page 244: Quit
4-42 Motorola RF Switch CLI Reference Guide 4.1.26 quit Priv Exec Command Exits the current mode and moves to the previous mode Supported in the following platforms: • RFS7000 • RFS6000 Syntax quit Parameters None Example RFSwitch#quit RFSwitch release 4.0.0.0-XXXX Login as 'cli' to access CLI.
Page 245: Reload
Privileged Exec Commands 4-43 4.1.27 reload Priv Exec Command Halts the switch and performs a warm reboot Supported in the following platforms: • RFS7000 • RFS6000 Syntax reload Parameters None Example RFSwitch#reload...
Page 246: Rename
4-44 Motorola RF Switch CLI Reference Guide 4.1.28 rename Priv Exec Command Renames a file in the existing filesystem Supported in the following platforms: • RFS7000 • RFS6000 Syntax rename <FILE> <FILE> Parameters <FILE> Specifies the file to rename. The first <FILE> is the old file name.
Page 247: Rmdir
Privileged Exec Commands 4-45 4.1.29 rmdir Priv Exec Command Deletes an existing file from the file system Supported in the following platforms: • RFS7000 • RFS6000 Syntax rmdir <DIR> Parameters <DIR> Defines the name of the directory to delete Example RFSwitch#rmdir flash:/NewTestDir/ RFSwitch#DIR Directory of flash:/...
Page 248: Telnet
4-46 Motorola RF Switch CLI Reference Guide 4.1.30 telnet Priv Exec Command Opens a telnet session Supported in the following platforms: • RFS7000 • RFS6000 Syntax telnet <IP> {<port>} Parameters telnet <IP> {<port>} Defines the IP address or hostname of a remote system •...
Page 249: Terminal
Privileged Exec Commands 4-47 4.1.31 terminal Priv Exec Command Sets the length/number of lines displayed within the terminal window Supported in the following platforms: • RFS7000 • RFS6000 Syntax terminal [length <0-512>|no [length <0-512>|width]| width <0-512>] Parameters length <0-512> Sets the number of lines on a screen •...
Page 250: Traceroute
4-48 Motorola RF Switch CLI Reference Guide 4.1.32 traceroute Priv Exec Command Traces a route to a destination Supported in the following platforms: • RFS7000 • RFS6000 Syntax traceroute [[<IP>|<hostname>]|ip [<IP>|<hostname>]] Parameters [<IP>|<hostname>] Traces the route to a destination IP address or a hostname ip [<IP>|<hostname>]...
Page 251: Upgrade
Privileged Exec Commands 4-49 4.1.33 upgrade Priv Exec Command Upgrades the software image Supported in the following platforms: • RFS7000 • RFS6000 Syntax upgrade <URL> {background} Parameters <URL> Location of the target firmware image used in upgrade background Optional. Specifies that the upgrade should occur in the background.
Page 252 4-50 Motorola RF Switch CLI Reference Guide "logd" is not responding Jan 08 15:58:44 2009: %PM-4-PROCNORESP: Process "logd" is not responding Jan08 15:58:44 2009: %PM-4-PROCNORESP: Process "logd" is not responding Jan 08 15:58:44 2009: %PM-4-PROCNORESP: Process "logd" is not responding Version of firmware update file is 4.0.0.0-03D...
Page 253: Upgrade - Abort
Privileged Exec Commands 4-51 4.1.34 upgrade - abort Priv Exec Command Aborts an ongoing upgrade process Supported in the following platforms: • RFS7000 • RFS6000 Syntax upgrade-abort Parameters None Example RFSwitch#upgrade-abort...
Page 254: Write
4-52 Motorola RF Switch CLI Reference Guide 4.1.35 write Priv Exec Command Writes the running configuration to memory or a terminal Supported in the following platforms: • RFS7000 • RFS6000 Syntax write [memory|terminal] Parameters memory Writes to NV memory terminal...
Page 255 Privileged Exec Commands 4-53 ip ssh ip telnet snmp-server manager v2 snmp-server manager v3 crypto isakmp identity address crypto isakmp keepalive 10 crypto ipsec security-association lifetime kilobytes 4608000 !........
Page 256: Format
4-54 Motorola RF Switch CLI Reference Guide 4.1.36 format Priv Exec Command Formats file system Supported in the following platforms: • RFS7000 • RFS6000 Syntax format cf: Parameters Formats compact flash Example RFSwitch#format cf:...
Page 257: Global Configuration Commands
Global Configuration Commands The term global is used to indicate characteristics or features effecting the system as a whole. Use the Global Configuration Mode to configure the system globally, or enter specific configuration modes to configure specific elements (such as interfaces or protocols).
Page 258: Global Configuration Commands
Motorola RF Switch CLI Reference Guide 5.1 Global Configuration Commands Table 5.1 summarizes the Global Config commands Table 5.1 Global Config Mode Command Summary Command Description Ref. Configures the current authentication, authorization page 5-5 and accounting (aaa) login settings access-list...
Page 259 Global Configuration Commands Table 5.1 Global Config Mode Command Summary Command Description Ref. license Sets license management commands page 5-58 line Configures a terminal line page 5-59 local Sets the username and password for local user page 5-60 authentication logging Modifies message logging facilities page 5-61 Configures MAC access-lists...
Page 260 Motorola RF Switch CLI Reference Guide Table 5.1 Global Config Mode Command Summary Command Description Ref. spanning-tree Configures spanning tree commands page 5-107 timezone Configures the timezone page 5-111 traffic-shape Configures traffic shaping page 5-112 username Establishes user name authentication...
Page 261: Aaa
Global Configuration Commands 5.1.1 aaa Global Configuration Commands Configures the current Authentication, Authorization and Accounting (AAA) login settings Supported in the following platforms: • RFS7000 • RFS6000 Syntax aaa [authentication|nas|vpn-authentication] aaa authentication login default [local|none|radius] aaa nas <name> aaa vpn-authentication [primary|secondary] <IP> key [0 <secret>|2 <secret>|<secret>] {authport <1024-65535>} Parameters authentication login...
Page 262 Motorola RF Switch CLI Reference Guide vpn-authentication Sets the configuration for VPN authentication using [primary|secondary] RADIUS. [<IP> key [0 <secret>| • primary – Sets the configuration for the primary server. 2 <secret>|<secret>] • secondary – Sets the configuration for the secondary {authport <1024-65535>}...
Page 263: Access-List
Global Configuration Commands 5.1.2 access-list Global Configuration Commands Adds an Access List (ACL) entry. Use the command (under Global access-list Configuration) to configure the access list mechanism for filtering frames by protocol type or vendor code. ACLs control access to the network through a set of rules. Each rule specifies an action which is taken when a packet matches it within the given set of rules.
Page 264 Motorola RF Switch CLI Reference Guide For Extended IP ACLs: access-list [<100-199>|<2000-2699>] [deny|permit|mark] [icmp|ip|tcp|upd] access-list [<100-199>|<2000-2699>] [deny|permit|mark] icmp [<source-IP/Mask>|any|host <IP>] [<dest-IP/Mask>|any|host <IP>] {<ICMP-type> {<ICMP-code>}} {log} {rule-precedence <1- 5000>} access-list [<100-199>|<2000-2699>] [deny|permit|mark]ip [<source-IP/Mask>|any|host <IP>] [<dest-IP/Mask>|any|host <IP>] {log} {rule-precedence <1-5000>} access-list [<100-199>|<2000-2699>] [deny|permit|mark] [tcp|udp] [<source-IP/Mask>|any|host <IP>] {eq...
Page 265 Global Configuration Commands Parameters access-list Adds a standard access list entry. [<1-99>|<1300-1999>] • [<1-99>|<1300-1999>] – Defines access list number from [permit|deny] 1-99 or 1300-1999. [<IP/MASK>|any| • [deny|permit] – Defines action types on an ACL. host <IP>] {[rule- • [<IP/MASK>| host <IP>| any] – <IP/MASK> is the precedence <1-5000>...
Page 266 5-10 Motorola RF Switch CLI Reference Guide access-list [<1- Adds a standard access list entry. 99>|<1300-1999>] • [<1-99>|<1300-1999>] – Defines access list number from mark [8021p <0- 1-99 or 1300-1999. 7>|dscp <0-63>|tos • mark – Marks a packet. The action type mark <0-255>] [<IP/...
Page 267 Global Configuration Commands 5-11 access-list Adds an Extended IP access list entry. [<100-199>|<2000- • (<100-199>|<2000-2699>) – For ICMP extended ACLs, the 2699>] [permit|deny] ACL must be between 2000-2699 [icmp|ip|tcp|udp] • [deny|permit] – Defines action types on an ACL. [<IP/MASK>|any| • [icmp|ip|tcp|udp] – The protocol type for the extended host <IP>] {[rule- ACL entry.
Page 268 5-12 Motorola RF Switch CLI Reference Guide access-list Adds an Extended IP access list entry. [<100-199>|<2000- • (<100-199>|<2000-2699>) – For ICMP extended ACLs, the 2699>] mask [8021p ACL must be between 2000-2699 <0-7>|dscp <0-63>|tos • mark – Marks a packet. The action type mark <0-255>]...
Page 269 Global Configuration Commands 5-13 Use an access list command under the global configuration to create an access list. The switch supports port, router and WLAN ACLs • When the access list is applied on an Ethernet port, it becomes a port ACL •...
Page 270: Autoinstall
5-14 Motorola RF Switch CLI Reference Guide 5.1.3 autoinstall Global Configuration Commands Autoinstalls the switch image Supported in the following platforms: • RFS7000 • RFS6000 Syntax autoinstall [clear-config-history|cluster-config|config| image|reset-config|start] autoinstall [clear-config-history|reset-config|start] autoinstall [cluster-config|config] {url <URL>} autoinstall image {[url <URL>|version <version>]}...
Page 271 Global Configuration Commands 5-15 config {url <URL>} Autoinstalls a config setup. • url – Optional. Sets the URL of the item. • URL – Remote/external location of the file. URLS: tftp://<hostname|IP>[:port]/path/file ftp://<user>:<passwd>@<hostname|IP>[:port]/ path/file http://<hostname|IP>[:port]/path/file cf:/path/file usb1:/path/file usb2:/path/file image {[url <URL>| Autoinstalls the image setup.
Page 272: Banner
5-16 Motorola RF Switch CLI Reference Guide 5.1.4 banner Global Configuration Commands Defines a login banner for the switch. Use to delete a previously configured {no} banner banner. Supported in the following platforms: • RFS7000 • RFS6000 Syntax {no} banner motd [<message>|default] Parameters motd [<message>|...
Page 273: Boot
Global Configuration Commands 5-17 5.1.5 boot Global Configuration Commands Reboots the switch with an image in the mentioned partition (either the primary or secondary partition) Supported in the following platforms: • RFS7000 • RFS6000 Syntax boot system [primary|secondary] Parameters system Specifies the boot image used after reboot [primary|secondary] •...
Page 274: Bridge
5-18 Motorola RF Switch CLI Reference Guide 5.1.6 bridge Global Configuration Commands Configures bridge specific commands Supported in the following platforms: • RFS7000 • RFS6000 SWITCH NOTE: The interfaces mentioned below are supported in the following platforms: • ge <index> – RFS7000 supports 4 GEs and RFS6000 supports 8 GEs •...
Page 275 Global Configuration Commands 5-19 Parameters bridge <bridge-group> Bridge groups available for bridging. address <MAC> • <bridgegroup> – Bridge group value between 1 and 32. [discard|forward] • address <MAC> – Unique hardware address in the [<interface>|ge <1-8>| HHHH.HHHH.HHHH format. me1|sa <1-4>|up1| •...
Page 276 5-20 Motorola RF Switch CLI Reference Guide RFSwitch(config)#bridge 2 address 1a2b:3c4d:5e6f forward eth 1 vlan 2 RFSwitch(config)#...
Page 277: Country-Code
Global Configuration Commands 5-21 5.1.7 country-code Global Configuration Commands Sets the country of operation Supported in the following platforms: • RFS7000 • RFS6000 Syntax {no} country-code <code> Parameters <code> A two (2) letter ISO-3166 country code. To view country codes, use the show wireless country-code-list command.
Page 278: Crypto
5-22 Motorola RF Switch CLI Reference Guide 5.1.8 crypto Global Configuration Commands Use crypto to define system level local ID for ISAKMP negotiation and to enter the ISAKMP Policy, ISAKMP Client or ISAKMP Peer command set. NOTE: moves to the crypto isakmp(policy)Priority instance.
Page 279 Global Configuration Commands 5-23 crypto isakmp [client|keepalive|key|peer|policy] crypto isakmp client configuration group default crypto isakmp keepalive <10-3600> crypto isakmp key [0 <secret>|2 <secret>|<secret>] [address <IP>|hostname <HOST>] crypto isakmp peer [address <IP>|dn <distinguished-name>| hostname <HOST>] crypto isakmp policy <1-10000> crypto key [export|generate|import|zeroize] crypto key export rsa <rsa-keypair>...
Page 280 5-24 Motorola RF Switch CLI Reference Guide Parameters ipsec (security- Configures IPSEC policies. association| transform- • security-association – Defines the security association set) parameter used to define its lifetime. • lifetime (kilobyte | seconds) – The lifetime of IPSEC security association. It can be defined in either: kilobytes –...
Page 281 Global Configuration Commands 5-25 isakmp Configures the Internet Security Association and Key Management Protocol (ISAKMP) policy. [client|keepalive|key| • client configuration (group) (default) – Leads to the peer|policy] config-cryptogroup instance. For more details see Crypto-group Instance on page 7-1. • keepalive <10-3600> – Sets a keepalive interval for use with remote peers.
Page 282 5-26 Motorola RF Switch CLI Reference Guide Authentication key management functions. [export|generate|import| • export rsa <name> URL [tftp|ftp] – Exports a keypair related configuration. zeroize] • generate rsa <name> <1024-2048> – Generates a keypair. • <1024-2048> – Size of keypair in bits.
Page 283 Global Configuration Commands 5-27 pki [authenticate|enroll| Configures certificate parameters. The public key export|import|trustpoint] infrastructure is a protocol that creates encrypted public keys using digital certificates from certificate authorities. The PKI ensures each online party is who they claim to be. •...
Page 284 5-28 Motorola RF Switch CLI Reference Guide Usage Guidelines Follow the table to calculate how many character are required to add the key size for authentication and encryption. This is used while configuring Manual IPSEC only. For example, To create a key with authentication type as ESP-SHA and encryption type as AES-192, enter 20+16=36 characters.
Page 285 Global Configuration Commands 5-29 RFSwitch(config-crypto-map)#set session-key inbound esp 257 cipher 12345678901234567890123456789012345678901234 authenticator 12345678901234567890123456789012345678901234 RFSwitch(config-crypto-map)#set session-key outbound esp 258 cipher 12345678901234567890123456789012345678901234 authenticator 12345678901234567890123456789012345678901234 RFSwitch(config-crypto-map)#exit RFSwitch(config)#interface vlan11 RFSwitch(config-if)#crypto map manual RFSwitch(config-if)#show running-config ! configuration of RFS7000 version 1.2.0.0-024D version 1.1 aaa authentication login default none service prompt crash-info username "admin"...
Page 286 5-30 Motorola RF Switch CLI Reference Guide crypto isakmp key 0 12345678 address 21.1.1.1 ........................crypto ipsec transform-set tfset1 esp-3des esp-sha-hmac mode tunnel crypto ipsec transform-set tfset-manual esp-3des esp-sha- hmac mode tunnel crypto map MAP1 10 ipsec-isakmp set peer 11.1.1.1...
Page 287 Global Configuration Commands 5-31 set transform-set tfset-manual ........................interface vlan11 ip address 11.1.1.2/24 crypto map manual ........................RFSwitch(config-if)# Usage Guidelines A peer address can be deleted with a wrong isakmp value. Crypto currently matches only the IP address when a command is issued RFSwitch(config)#crypto isakmp key 12345678 address 4.4.4.4 RFSwitch(config)#show running-config...
Page 288 5-32 Motorola RF Switch CLI Reference Guide Example RFSwitch(config)#crypto pki ? authenticate Authenticate and import CA Certificate enroll Enroll export Export import Import trustpoint Define a CA trustpoint RFSwitch(config)#crypto pki trustpoint ? WORD Trustpoint Name RFSwitch(config)#crypto pki trustpoint Test RFSwitch(config-trustpoint)#?
Page 289: Use Case 1: Configuring Remote Vpn
(trusted network) using IPSec VPN functionality. In the figure above, a Motorola client is associated to a WLAN (say wlan1) attached to vlan2 on the switch. vlan2 is on subnet 10.1.1.x and is running a DHCP server that assigns IP addresses for this subnet.
Page 290 5-34 Motorola RF Switch CLI Reference Guide access to the network. The IPSec tunnel is only between the client and the switch. After that the packets on the trusted side are sent without encryption. NOTE: The example below is for a IPSec-L2TP connection over a mobile unit.
Page 291: Use Case 2: Configuring Site-To-Site Vpn
Global Configuration Commands 5-35 RFSwitch(config-crypto-group)#dns 10.1.1.1 RFSwitch(config-crypto-group)#wins 10.1.1.1 5. Specify the authentication type. RFSwitch(config)# aaa vpn-authentication local RFSwitch(config)# local username harry password symbol123 6. Create a transform set. RFSwitch(config)#crypto ipsec transform-set windows esp-3des esp-sha-hmac RFSwitch(config-crypto-ipsec)#mode transport 7. Specify a dynamic crypto map. RFSwitch(config)#crypto map TestMap 30 ipsec-isakmp dynamic RFSwitch(config-crypto-map)#set peer 0.0.0.0 RFSwitch(config-crypto-map)#match address 101...
Page 292 5-36 Motorola RF Switch CLI Reference Guide wired LAN in the branch office to bridge directly to the central site while maintaining full security. This example requires two switches. It can be configured with the following commands: 1. Configuration required on switch 1: a.Create an extended ACL.
Page 293 Global Configuration Commands 5-37 RFSwitch(config-crypto-ipsec)#mode tunnel e.Create and configure a crypto map. RFSwitch(config)#crypto map THIRDMAP 435 isakmp RFSwitch(config-crypto-map)#set peer 15.1.1.20 RFSwitch(config-crypto-map)#match address 150 RFSwitch(config-crypto-map)#set transformset TFSET RFSwitch(config-crypto-map)#set security-association lifetime seconds 3600 f.Associate the crypto map with a VLAN interface. RFSwitch(config)#interface vlan1 RFSwitch(config-if)#ip address 11.1.1.10/24 RFSwitch(config-if)#crypto map THIRDMAP RFSwitch(config-if)#interface vlan2100...
Page 294 5-38 Motorola RF Switch CLI Reference Guide e.Create and configure a crypto map. RFSwitch(config)#crypto map THIRDMAP 435 isakmp RFSwitch(config-crypto-map)#set peer 11.1.1.10 RFSwitch(config-crypto-map)#match address 150 RFSwitch(config-crypto-map)#set transformset TFSET RFSwitch(config-crypto-map)#set security-association lifetime seconds 3600 f.Associate the crypto map with a VLAN interface.
Page 295 Global Configuration Commands 5-39 5.1.9 do Global Configuration Commands Runs commands from either the User Exec or Priv Exec mode Supported in the following platforms: • RFS7000 • RFS6000 Syntax do <privilege mode commands> Parameters None Example RFSwitch(config)#do ping 157.235.208.69 PING 157.235.208.69 (157.235.208.69): 100 data bytes 128 bytes from 157.235.208.69: icmp_seq=0 ttl=64 time=0.1 ms 128 bytes from 157.235.208.69: icmp_seq=1 ttl=64 time=0.0 ms...
Page 296: End
5-40 Motorola RF Switch CLI Reference Guide 5.1.10 end Global Configuration Commands Ends the current mode and changes to the EXEC mode Supported in the following platforms: • RFS7000 • RFS6000 Syntax Parameters None. Example RFSwitch(config)#end RFSwitch#? Priv Exec commands:...
Page 297: Errdisable
Global Configuration Commands 5-41 5.1.11 errdisable Global Configuration Commands Enables the timeout mechanism for the port to be enabled back after an error Supported in the following platforms: • RFS7000 • RFS6000 Syntax errdisable recovery [cause bpduguard|interval <10-1000000>] Parameters recovery Enables the timeout mechanism for the port to recover after [cause bpduguard| an error.
Page 298: Ftp
5-42 Motorola RF Switch CLI Reference Guide 5.1.12 ftp Global Configuration Commands Configures the switch as an FTP server Supported in the following platforms: • RFS7000 • RFS6000 Syntax ftp [enable|password|rootdir] ftp password [0 <secret>|1 <secret>|<secret>] ftp rootdir <DIR> Parameters...
Page 299: Hostname
Global Configuration Commands 5-43 5.1.13 hostname Global Configuration Commands Changes the system’s network name Supported in the following platforms: • RFS7000 • RFS6000 Syntax hostname <host-name> Parameters <host-name> The name of the switch. This name is displayed when the switch is accessed from any network. Example RFSwitch(config)#hostname myRFSwitch myRFSwitch(config)#...
Page 300: Interface
5-44 Motorola RF Switch CLI Reference Guide 5.1.14 interface Global Configuration Commands Configures a selected interface This command is used to enter the interface configuration mode for the specified physical Switch Virtual Interface (SVI) interface. If the VLANx (SVI) interface does not exist, it is automatically created.
Page 301 Global Configuration Commands 5-45 Fast Ethernet interface sa <1-4> Static Aggregate interface (in RFS7000 only) WAN interface (in RFS6000 only) vlan <1-4094> Defines the VLAN interface Usage Guidelines Use the to delete the specified SVI. Valid interfaces no interface <interface-name> include all VLAN interfaces.
Page 302 5-46 Motorola RF Switch CLI Reference Guide 5.1.15 ip Global Configuration Commands Configures a selected Internet Protocol (IP) component Supported in the following platforms: • RFS7000 • RFS6000 NOTE: Using moves you to the access-list extended instance. For more information, see...
Page 303 Global Configuration Commands 5-47 ip dhcp ping timeout <1-10> ip dhcp pool <pool-name> ip domain-name <domain-name> ip dos [ascend|bcast-mcast-icmp|chargen|enable|fraggle| ftp-bounce|invalid-protocol|option-route|router-advt| smurf|snork|tcp-intercept|tcp-max-incomplete|twinge] log [<0-8>|alerts|critical|debugging|emergencies|error| informational|none|notifications|warnings] ip http [secure-server|secure-trustpoint|server] ip http [secure-server|server] ip http secure-trustpoint <trustpoint-name> ip igmp-snooping {[querier|unknown-multicast-fwd|vlan]} ip igmp-snooping {querier {[address|max-response-time| query-interval|timer|version]}} ip igmp-snooping {querier {address <IP>}} ip igmp-snooping {querier {max-response-time <1-25>}}...
Page 304 5-48 Motorola RF Switch CLI Reference Guide ip nat inside source static <local-IP> <outside-global-IP> ip nat outside destination static <IP> <outside-port> [tcp|udp] {<inside-global-IP> {<inside-port>}} ip nat outside destination static <IP> {<outside-global-IP> <outside-port>} ip nat outside source list <acl-name> interface [<interface- name>|vlan <1-4094>] overload...
Page 305 Global Configuration Commands 5-49 ip dhcp [bootp|class| DHCP server configuration. excluded-address|option| • bootp ignore – Defines the BOOTP specific configuration. ping|pool] • ignore – Configures the DHCP server to ignore BOOTP requests. • class <class-name> – Defines a DHCP class and enters the DHCP class configuration mode.
Page 306 5-50 Motorola RF Switch CLI Reference Guide http [secure-server| Hyper Text Transfer Protocol (HTTP) configuration. secure-trustpoint| • secure-server – Sets the device to start the Secure HTTP server] Server (HTTPS). • secure-trustpoint <trustpoint-name> – Sets the name of the trustpoint used for secure connection to <trustpoint- name>.
Page 307 Global Configuration Commands 5-51 nat [inside|outside] Defines Network Address Translation (NAT) configuration [destination|source] values. These following commands are possible for NAT • ip nat [inside|outside] destination static <IP> <port> [tcp|udp] <outside-global-IP> {<outside-port>} – Sets the parameters for translation for inside destination. •...
Page 308 5-52 Motorola RF Switch CLI Reference Guide • ip nat [inside|outside] source static <outside-global- IP> <local-IP> – Sets the parameters for translation for inside sources. • inside – Indicates inside address translation. • outside – Indicates outside address translation. • source – Indicates source address translation.
Page 309 Global Configuration Commands 5-53 dos [ascend| Configures the Denial of Service (DOS) attack parameters. bcast-mcast-icmp| • ascend – Enables Ascend DoS checks. chargen|enable|fraggle| • bcast-mcast-icmp – Detects Broadcast/Multicast Icmp ftp-bounce| traffic as attack. invalid-protocol| • chargen – Enables chargen DoS checks. option-route|router-advt| •...
Page 310 5-54 Motorola RF Switch CLI Reference Guide • tcp -max-incomplete –Configures the maximum half-open TCP connections in the system • high <1-1000> – Sets the upper threshold value between 1 and 1000. • low <1 - 1000> – Sets the lower threshold value...
Page 311 Global Configuration Commands 5-55 igmp snooping Configures IGMP Snooping parameters. {[querier|unknown- • unknown-multicast-fwd – Optional. Forwards packets multicast-fwd|vlan]} from unregistered multicast servers. • querier {[address|max-response-time|query- interval|timer|version]}}– Configures IGMP querier. All options are optional. • address <IP> – Sets GMP querier source IP address •...
Page 312 5-56 Motorola RF Switch CLI Reference Guide Usage Guidelines 1 1. Use the command along with ip to undo any IP based configuration. [no] ip(access-list|default-gateway|dhcp|domain-lookup| domain-name|http|local|name-server|nat|route|routing|ssh|telnet) 2. When using the parameter, enter the following contexts: ip access-list • ext-nacl – Extended ACL. For more information, see Chapter 14, Extended ACL Instance •...
Page 313 Global Configuration Commands 5-57 5. The switch leads you to a new mode (config-dhcp-class). Use this mode to add an address range used with the DHCP class associated with the pool. RFSwitch(config-dhcp-class)#address range 11.22.33.44 Example RFSwitch(config)#ip access-list extended TestACL RFSwitch(config-ext-nacl)# RFSwitch(config)#ip access-list standard TestStdACL RFSwitch(config-std-nacl)# RFSwitch(config)#ip dhcp pool TestPool...
Page 314: License
5-58 Motorola RF Switch CLI Reference Guide 5.1.16 license Global Configuration Commands Adds a feature license Supported in the following platforms: • RFS7000 • RFS6000 Syntax license <feature> <license-key> Parameters <feature> The feature for which the license is to be added <license-key>...
Page 315: Line
Global Configuration Commands 5-59 5.1.17 line Global Configuration Commands Configures the terminal line Opens the config-line mode, where you can configure the various parameters for the selected terminal. Supported in the following platforms: • RFS7000 • RFS6000 Syntax line [console|vty] line console <0-0>...
Page 316: Local
5-60 Motorola RF Switch CLI Reference Guide 5.1.18 local Global Configuration Commands Sets the username and password for local user authentication Supported in the following platforms: • RFS7000 • RFS6000 Syntax local username <username> password [<password>|0 <password>| 2 <password>] Parameters username <username>...
Page 317: Logging
Global Configuration Commands 5-61 5.1.19 logging Global Configuration Commands Modifies message logging facilities Supported in the following platforms: • RFS7000 • RFS6000 Syntax logging [aggregation-time|buffered|console|facility| host|monitor|on|syslog] logging aggregation-time <1-60> logging [buffered|console|monitor|syslog] [<0-7>|alerts| critical|debugging|emergencies|errors|informational| notifications|warnings] logging facility [local0|local1|local2|local3|local4|local5| local6|local7] logging host <IP> loggin on Parameters aggregation-time <1-60>...
Page 318 5-62 Motorola RF Switch CLI Reference Guide buffered [<0-7>|alerts| Sets the buffered logging level critical|debugging| • <0-7> – Enter the logging severity level (0-7) emergencies|errors| • alerts – Immediate action needed, (severity=1) informational| • critical – Critical conditions, (severity=2) notifications|warnings] •...
Page 319 Global Configuration Commands 5-63 monitor [<0-7>|alerts| Sets the terminal lines logging level. critical|debugging| emergencies|errors| informational| notifications|warnings] Enables the logging of system messages. syslog [<0-7>|alerts| Sets the syslog servers logging level. critical|debugging| emergencies|errors| informational| notifications|warnings] Example RFSwitch(config)#logging on RFSwitch(config)#logging aggregation-time 20 RFSwitch(config)#logging buffered critical RFSwitch(config)#logging console critical RFSwitch(config)#logging facility local6...
Page 320: Mac
5-64 Motorola RF Switch CLI Reference Guide 5.1.20 mac Global Configuration Commands Configures MAC access lists (goes to the MAC ACL mode) For more information on this mode, see Chapter 16, Extended MAC ACL Instance. Supported in the following platforms: •...
Page 321: Mac-Address-Table
Global Configuration Commands 5-65 5.1.21 mac-address-table Global Configuration Commands Configures the MAC address table Supported in the following platforms: • RFS7000 • RFS6000 Syntax mac-address-table aging-time [0|<10-1000000>] Parameters aging-time The duration for which a learned mac address persists after [0|<10-1000000>] the last update •...
Page 322: Mac-Name
5-66 Motorola RF Switch CLI Reference Guide 5.1.22 mac-name Global Configuration Commands Sets a name to the MAC address Supported in the following platforms: • RFS7000 • RFS6000 Syntax mac-name <MAC> <mac-name> Parameters <MAC> <name> The MAC address to set a ease-of-use name for.
Page 323: Management
Global Configuration Commands 5-67 5.1.23 management Global Configuration Commands Sets management interface properties Limits local access (through web/telnet) to management interfaces only. Supported in the following platforms: • RFS7000 • RFS6000 Syntax management secure Parameters secure Limits local access (Web/Telnet etc.) to the management interface.
Page 324: Ntp
5-68 Motorola RF Switch CLI Reference Guide 5.1.24 ntp Global Configuration Commands Configure Network Time Protocol (NTP) values Supported in the following platforms: • RFS7000 • RFS6000 Syntax ntp [access-group|authenticate|authentication-key|autokey| broadcast|broadcastdelay|master|peer|server|trusted-key] ntp access-group [peer|query-only|serve|serve-only] [<1-99>|<100-199>|<1300-1999>|<2000-2699>] ntp authenticate ntp authentication-key <key> md5 [0 <secret>|2 <secret>|<secret>]...
Page 325 Global Configuration Commands 5-69 Parameters access-group Controls NTP access. [peer|query-only|serve| • peer – Provides full access. serve-only] [<1-99>| • query-only – Allows only control queries. <100-199>|<1300-1999>| • serve – Provides server and query access. <2000-2699>] • serve-only – Provides only server access. •...
Page 326 5-70 Motorola RF Switch CLI Reference Guide broadcast Configures the NTP broadcast service. [client|destination] • client – Listens to NTP broadcasts. • destination <IP> {[key <1-65534>|version <1-4>]}– Configures broadcast destination address. • IP Address – Defines the destination broadcast IP address.
Page 327 Global Configuration Commands 5-71 • prefer {version <1-4>} – Sets the preference for autokey. Optionally set the NTP version to use. • version <1-4> {prefer} – Sets the NTP version to use. Optionally set this peer as preferred peer. server Configures the NTP server.
Page 328 5-72 Motorola RF Switch CLI Reference Guide RFSwitch(config)#ntp peer TestPeer autokey ? prefer Prefer this peer when possible version Configure NTP version <cr> RFSwitch(config)#ntp peer TestPeer autokey prefer ? version Configure NTP version <cr> RFSwitch(config)#ntp peer TestPeer autokey prefer version ? <1-4>...
Page 329: Prompt
Global Configuration Commands 5-73 5.1.25 prompt Global Configuration Commands Configures and sets the systems prompt Supported in the following platforms: • RFS7000 • RFS6000 Syntax prompt <prompt> Parameters <prompt> Enter the new prompt displayed by the system. The following operational modifiers are available. •...
Page 330: Radius-Server
5-74 Motorola RF Switch CLI Reference Guide 5.1.26 radius-server Global Configuration Commands Enters the RADIUS server mode, the system prompt changes from the default config mode to the RADIUS server mode Supported in the following platforms: • RFS7000 • RFS6000...
Page 331 Global Configuration Commands 5-75 retransmit <1-100> Specifies the number of retries to active server. • <0-100> – Number of retries for a transaction (default is 3). timeout <1-1000> Time to wait for a RADIUS server to reply. • <1-1000> – Wait time (default 5 seconds). Usage Guidelines The RADIUS server host is used to configure RADIUS server details.
Page 332: Ratelimit
5-76 Motorola RF Switch CLI Reference Guide 5.1.27 ratelimit Global Configuration Commands Configures rate limit parameters Supported in the following platforms: • RFS7000 • RFS6000 Syntax ratelimit [arp|bcast|mcast|ucast] [<0-7>|alerts|critical| debugging|emergencies|errors|informational|notifications| warnings] Parameters ratelimit Sets the logging levels for ratelimit feature.
Page 333: Redundancy
Global Configuration Commands 5-77 5.1.28 redundancy Global Configuration Commands Configures redundancy group parameters Supported in the following platforms: • RFS7000 • RFS6000 Syntax redundancy [auto-revert|auto-revert-period| critical-resource-ip|dhcp-server|discovery-period| dynamic-ap-load-balance|enable|group-id|handle-stp| heartbeat-period|hold-period|interface-ip|manual-revert| member-ip|mode] redundancy auto-revert enable redundancy auto-revert-period <1-1800> redundancy critical-resource-ip <IP> redundancy dhcp-server enable redundancy discovery-period <10-60>...
Page 334 5-78 Motorola RF Switch CLI Reference Guide Parameters auto-revert enable Enables auto-revert. auto-revert-period Sets the redundancy auto-revert delay interval in <1-1800> minutes. The default is 5 minutes. critical-resource-ip Sets critical resource IP address. <ip_address> • <ip_address> – IP address of the critical resource.
Page 335 Global Configuration Commands 5-79 interface-ip <IP> Sets the redundancy interface IP address. manual-revert Reverts standby to non-active mode. member-ip <IP> Adds a member with the IP <IP> to this redundancy group. mode [primary|standby] Sets the mode to either primary or standby. Example RFSwitch(config)#redundancy discovery-period 20 RFSwitch(config)#...
Page 336: Role
5-80 Motorola RF Switch CLI Reference Guide 5.1.29 role Global Configuration Commands Configures role parameters Opens the role configuration mode to enable further configuration of the (confi-role) role. For more information, see Chapter 26, Role Instance. NOTE: Avance Security Licence must be installed for Role Based Firewall to work.
Page 337 Global Configuration Commands 5-81 RFSwitch(config)#role assignment immediate enable RFS7000(config)#show role role officeuser 10 authentication-type any encryption-type any ap-location exact "office" essid office mu-mac any group any role globaluser 11 authentication-type any encryption-type any ap-location any essid any mu-mac any group any role default-role 10001 authentication-type any encryption-type any...
Page 338: Rtls
5-82 Motorola RF Switch CLI Reference Guide 5.1.30 rtls Global Configuration Commands Configures Real Time Location System (RTLS) parameters This enables the Switch to provide complete visibility to the location of assets and thereby enabling location based service. Supported in the following platforms: •...
Page 339: Service
Global Configuration Commands 5-83 5.1.31 service Global Configuration Commands Retrieves system data (tables, log files, configuration, status and operation) for debugging and problem resolution Supported in the following platforms: • RFS7000 • RFS6000 To view the command of User Exec and Priv Exec Mode, refer to Chapter 2, service service...
Page 340 5-84 Motorola RF Switch CLI Reference Guide diag [enable|limit|period| Services diagnostics configuration. tech-support-period| • enable – Enable in service diagnostics. tech-support-url] • limit – Displays diagnostic limit command. • period <100-30000> – Sets diagnostics period. • tech-support-period <10-10080> – Sets the tech support period.
Page 341 Global Configuration Commands 5-85 set [command- Sets service parameters. history|reboot- • command-history <10-300> – Sets the number of history|upgrade-history] previous commands to remember. Default 200. • reboot-history <10-100> – Sets the number of previous reboot details to remember. Default 50. •...
Page 342: Smtp-Notification
5-86 Motorola RF Switch CLI Reference Guide 5.1.32 smtp-notification Global Configuration Commands Modifies SMTP notification parameters Supported in the following platforms: • RFS7000 • RFS6000 Syntax smtp-notification [authenticate|enable|password|port|prefix| recipient|sender|smtp-server-address|user] smtp-notification authentication enable smtp-notification enable {traps [all|dhcp-server| diagnostics|miscellaneous|mobility|nsm|radius-server| redundancy|snmp|wireless] smtp-notification enable traps all...
Page 343 Global Configuration Commands 5-87 smtp-notification enable traps wireless ids {[muExcessiveEvents|radioExcessiveEvents| switchExcessiveEvents]} smtp-notification enable traps wireless radio {[adopted|unadopted|detectedRadar]} smtp-notification enable traps wireless self-healing activated smtp-notification enable traps wireless station {[associated|deniedAssociationAsPortCapacityReached| deniedAssociationOnCapability|deniedAssociationOnErr| deniedAssociationOnInvalidWPAWPA2IE| deniedAssociationOnRates|deniedAssociationOnShortPream| deniedAssociationOnSpectrum|deniedAssociationOnSSID| deniedAuthentication|disassociated|radiusAuthFailed| tkipCounterMeasures|vlanChanged]} smtp-notification enable traps wireless wlan {[vlanUserLimitReached|webPortalUnavailable| webPortalUnreachable|webPortalUnconnected]} smtp-notification password 0 <password>...
Page 344 5-88 Motorola RF Switch CLI Reference Guide Parameters authenticate enable Enables SMTP Server authentication. enable traps [all| Enables SMTP notification for traps. dhcp-server|diagnostics| • all – Enables SMTP Notification for all traps. miscellaneous|mobility| • dhcp-server [dhcpServerDown|dhcpServerUp]– Enables nsm|radius-server| dhcp-server traps.
Page 345 Global Configuration Commands 5-89 • miscellaneous [caCertExpired|lowFsSpace|periodicHeartbeat| processMaxRestartsReached|savedConfigModified| serverCertExpired|switchEvent] – Enables miscellaneous traps. • caCertExpired – CA certificate has expired. • lowFsSpace – Available file system space is lower than the limit. • periodicHeartbeat – Periodic Heartbeat. • processMaxRestartsReached – Process has reached max restart.
Page 346 5-90 Motorola RF Switch CLI Reference Guide • nsm [dhcpIPChanged] – Enables nsm traps and changes the DHCP IP. • radius-server [radiusServerDown|radiusServerUp] – Enables radius-server traps. • radiusServerDown – Radius Server is down. • radiusServerUp – Radius Server is up.
Page 347 Global Configuration Commands 5-91 • wireless [ap-detection|ids|radio|self-healing|station| wlan] – Enables wireless traps. • ap-detection [externalAPDetected| externalAPRemoved] – Enables wireless AP detection traps. • externalAPDetected – Detects an external AP. • externalAPRemoved – Removes an external AP. • id [muExcessiveEvents|radioExcessiveEvents| switchExcessiveEvents] – Enables wireless IDS traps. •...
Page 348 5-92 Motorola RF Switch CLI Reference Guide • associated – Wireless station associated. • deniedAssociationAsPortCapacity Reached – Wireless station denied association due to port capacity reached. • deniedAssociationOnCapability – Wireless station denied association due to unsupported capability. • deniedAssociationOnErr – Wireless station denied association due to internal error.
Page 349 Global Configuration Commands 5-93 • wlan [vlanUserLimitReached|webPortalUnavailable| webPortalUnconnected||webPortalUnreachable] – Enables wireless wlan traps when: • vlanUserLimitReached – WLAN-VLAN user limit is reached. • webPortalUnavailable – Web portal unavailable. • webPortalUnconnected – Web portal disconnected. • webPortalUnreachable – Web portal unreachable. password 0 <password>...
Page 350: Snmp-Server
5-94 Motorola RF Switch CLI Reference Guide 5.1.33 snmp-server Global Configuration Commands Modifies SNMP engine parameters Supported in the following platforms: • RFS7000 • RFS6000 Syntax snmp-server [community|contact|enable|engine-id|host| location|manager|periodic-heartbeat-interval|sysname|user] snmp-server community <community-string> [ro|rw] snmp-server contact <contact-person> snmp-server enable traps {[all|dhcp-server|diagnostics|...
Page 351 Global Configuration Commands 5-95 snmp-server enable traps wireless ids {[muExcessiveEvents|radioExcessiveEvents| switchExcessiveEvents]} snmp-server enable traps wireless radio {[adopted|unadopted|detectedRadar]} snmp-server enable traps wireless self-healing activated snmp-server enable traps wireless station {[associated|deniedAssociationAsPortCapacityReached| deniedAssociationOnCapability|deniedAssociationOnErr| deniedAssociationOnInvalidWPAWPA2IE| deniedAssociationOnRates|deniedAssociationOnShortPream| deniedAssociationOnSpectrum|deniedAssociationOnSSID| deniedAuthentication|disassociated|radiusAuthFailed| tkipCounterMeasures|vlanChanged]} snmp-server enable traps wireless wlan {[vlanUserLimitReached|webPortalUnavailable| webPortalUnreachable|webPortalUnconnected]} snmp-server enable traps wireless-statistics [mesh|...
Page 352 5-96 Motorola RF Switch CLI Reference Guide pktsps-greater-than|tput-greater-than| undecrypt-percent-greater-than] snmp-server engineid [netsnmp {<word>}|text <word>] snmp-server host <IP> [v2c|v3] {<1-65535>} snmp-server location <location-text> snmp-server manager [all|v2|v3] snmp-server periodic-heartbeat-interval <interval> snmp-server sysname snmp-server user [snmpmanager|snmpoperator|snmptrap] Parameters community Sets the community string and access privileges.
Page 353 Global Configuration Commands 5-97 enable traps dhcp-server Enables dhcp-server traps. {[dhcpServerDown| • dhcpServerDown – DHCP server down. dhcpServerUp]} • dhcpServerUp – DHCP server up. enable traps diagnostics Enables diagnostics traps. {[cpuLoad1Min| • cpuLoad15Min cpuLoad5Min| • cpuLoad1Min cpuLoad15Min| • cpuLoad5Min fanSpeedLow| •...
Page 354 5-98 Motorola RF Switch CLI Reference Guide enable traps mobility Enable mobility traps. {[operationallyDown| • operationallyDown – Mobility down operationallyUp| • operationallyUp – Mobility up peerDown|peerUp]} • peerDown – Mobility peer down • peerUp – Mobility peer up enable traps nsm Enables nsm traps.
Page 355 Global Configuration Commands 5-99 enable traps wireless Enables wireless traps. {[ap-detection|ids| • ap-detection {[externalAPDetected| radio|self-healing| externalAPRemoved]} – Enables wireless AP station|wlan]} detection traps. • externalAPDetected – External AP detected. • externalAPRemoved – External AP detected. • ids {[muExcessiveEvents| radioExcessiveEvents|switchExcessiveEvents]} – Enables wireless IDS traps.
Page 356 5-100 Motorola RF Switch CLI Reference Guide • associated– Wireless station associated. • deniedAssociationAsPortCapacityReached – Wireless station denied association - port capacity reached. • deniedAssociationOnCapability – Wireless station denied association due to unsupported capability. • deniedAssociationOnErr – Wireless station denied association due to internal error.
Page 357 Global Configuration Commands 5-101 • wlan {[vlanUserLimitReached|webPortal Unavailable|webPortalUnreachable|webPortal Unconnected]}– Enables wireless wlan traps. • vlanUserLimitReached – WALN/VLAN user limit reached. • webPortalUnavailable – Webportal is unavailable. • webPortalUnreachable – Webportal is unreachable. • webPortalUnconnected – Webportal is not connected.
Page 358 5-102 Motorola RF Switch CLI Reference Guide snmp-server enable traps Modifies wireless-stats rate traps. wireless-statistics [mesh| • mesh [avg-bit-speed-less-than| min-packets|mobile-unit| avg-retry-greater-than|avg-signal-less-than| radio|wireless-switch|wlan] gave-up-percent-greater-than| nu-percent-greater-than| num-mobile-units-greater-than| pktsps-greater-than|tput-greater-than| undecrypt-percent-greater-than] – Modifies mesh rate traps. • avg-bit-speed-less-than – Average bit speed in Mbps between <0.00> and <54.00>.
Page 359 Global Configuration Commands 5-103 • min-packets <1-65535> – Minimum packets required for sending the trap. • <1-65535> – Defines the minimum packets for sending the trap. This can be set with a decimal number in the range of <1-65535>. • mobile-unit [avg-bit-speed-less-than| avg-retry-greater-than|avg-signal-less-than| gave-up-percent-greater-than| nu-percent-greater-than|pktsps-greater-than|...
Page 360 5-104 Motorola RF Switch CLI Reference Guide engineid [netsnmp {<word>}| Sets the SNMP server engine ID. text <word>] • netsnmp <word>– Sets the engine id to a hexadecimal string. • text <word> – Sets the engine id to a text string.
Page 361 Global Configuration Commands 5-105 user [snmpmanager| Defines a user who can access the SNMP engine. snmpoperator|snmptrap] • snmpmanager v3– Manager user • v3 [auth|encrypted] – User using v3 security model • auth md5 <password> – Sets authentication parameters for the user. •...
Page 362 5-106 Motorola RF Switch CLI Reference Guide RFSwitch(config)#snmp-server enable traps wireless detection externalAPDetected RFSwitch(config)# RFSwitch(config)#snmp-server enable traps wireless excessiveProbes RFSwitch(config)# RFSwitch(config)#snmp-server enable traps wireless radio adopted RFSwitch(config)# RFSwitch(config)#snmp-server enable traps wireless self- healing activated RFSwitch(config)# RFSwitch(config)#snmp-server enable traps wireless station...
Page 363: Spanning-Tree
Global Configuration Commands 5-107 5.1.34 spanning-tree Global Configuration Commands Configures spanning-tree commands Supported in the following platforms: • RFS7000 • RFS6000 Syntax spanning-tree [mst|portfast] spanning-tree mst [<0-15> priority <0-61440>| cisco-interoperability [enable|disable]|configuration| forward-time <4-30>|hello-time <1-10>|max-age <6-40>| max-hops <7-127>] spanning-tree portfast [bpdufilter|bpduguard] default...
Page 364 5-108 Motorola RF Switch CLI Reference Guide Parameters mst [<0-15> priority Enables the Multiple Spanning Tree Protocol on a bridge. <0-61440>| • <0-15> priority <0-61440> – Set the bridge priority for an cisco-interoperability MST instance to the value specified. Use the no...
Page 365 Global Configuration Commands 5-109 • max-age <6-40> – Max-age is the maximum time in seconds for which (if a bridge is the root bridge) a message is considered valid. This prevents the frames from looping indefinitely. The value of max-age must be greater than twice the value of hello time plus one, but less than twice the value of forward delay minus one.
Page 366 5-110 Motorola RF Switch CLI Reference Guide portfast Enables the portfast feature on a bridge. It has the [bpdufilter|bpduguard] following options: default • bpdufilter default – Use the command to bpdu-filter set the portfast BPDU filter for the port. Use the parameter with this command to revert the port BPDU filter value to default.
Page 367: Timezone
Global Configuration Commands 5-111 5.1.35 timezone Global Configuration Commands Configures switch timezone settings Supported in the following platforms: • RFS7000 • RFS6000 Syntax timezone <timezone> Parameters <timezone> Press <tab> to traverse a list of files. This displays a list of files containing timezone information.
Page 368: Traffic-Shape
5-112 Motorola RF Switch CLI Reference Guide 5.1.36 traffic-shape Global Configuration Commands Optimizes network traffic Supported in the following platforms: • RFS7000 SWITCH NOTE: This command is not supported with: • RFS6000 Syntax traffic-shape [class|priority-map] traffic-shape class <class-identifier> [max-buffers| max-latency|rate] traffic-shape class <class-identifier>...
Page 369 Global Configuration Commands 5-113 Parameters class <class-identifier> Traffic shaping packet class. Select an identifier between max-buffers ... red-level 1-4. Traffic shaping also uses queues numbered 0-7. • max-buffers – Maximum traffic-shape queue length in class <class-identifier> packets. max-buffers ... red- •...
Page 370 5-114 Motorola RF Switch CLI Reference Guide RFSSwitch(config)#show traffic-shape config Traffic shaping class 1 Rate: 10 Mbps Prio-| max | | max rity | pkts | pkts pcnt | latency 0 | 1000 | 75% | - 1 | 1000 |...
Page 371: Username
Global Configuration Commands 5-115 5.1.37 username Global Configuration Commands Establishes user name authentication Supported in the following platforms: • RFS7000 • RFS6000 Syntax username <name> [access|password|privilege] username <name> access [console|ssh|telnet|web] username <name> password [0 <password>|1 <password>| <password>] username <name> privilege [helpdesk|monitor|nwadmin| superuser|sysadmin|webadmin] Parameters Enter a name to authenticate the switch, the username...
Page 372: Encrypting A Password
5-116 Motorola RF Switch CLI Reference Guide • privilege [helpdesk|monitor|nwadmin|superuser| sysadmin|webadmin] – Sets user access privilege. • helpdesk – Helpdesk (troubleshooting) access • monitor – Monitor (read-only) access • nwadmin – Network (wired & wireless) admin access • superuser – Superuser (root) access •...
Page 373 Global Configuration Commands 5-117 username admin password 1 8e67bb26b358e2ed20fe552ed6fb832f397a507d username admin privilege superuser username operator password 1 fe96dd39756ac41b74283a9292652d366d73931f username Jiri password 1 399f01e13e372ba2dc02f37d869021873e60aa85 3. The password in the above running configuration is displayed in an encrypted format even though it was entered as plain text in Step 1.
Page 374: Vpn
5-118 Motorola RF Switch CLI Reference Guide 5.1.38 vpn Global Configuration Commands Configures VPN authentication settings Supported in the following platforms: • RFS7000 • RFS6000 Syntax vpn authentication-method [local|radius] Parameters authentication-method Selects the authentication scheme. [local|radius] • local – Used for user based authentication.
Page 375: Wireless
Global Configuration Commands 5-119 5.1.39 wireless Global Configuration Commands Configures switch wireless parameters This command moves you to the instance. For more information, see config-wireless Chapter 20, Wireless Instance. Supported in the following platforms: • RFS7000 • RFS6000 Syntax wireless Parameters None Usage Guidelines...
Page 376: Wlan-Acl
5-120 Motorola RF Switch CLI Reference Guide 5.1.40 wlan-acl Global Configuration Commands Applies an ACL on a WLAN index Supported in the following platforms: • RFS7000 • RFS6000 Syntax wlan-acl <1-32> [<1-99>|<100-199>|<1300-1999>| <2000-2699>|<acl-name>] [in|out] Parameters WLAN number <1-32> [<1- 99>|<100- •...
Page 377 Global Configuration Commands 5-121 When a packet goes out of a access port, it becomes outbound traffic to the wireless LAN index. Apply an ACL to a WLAN index in outbound direction to filter traffic from both wired and wireless interfaces. can be attached both in the inbound and outbound directions.
Page 378 5-122 Motorola RF Switch CLI Reference Guide ip access-list standard stdacl3 deny host 30.0.0.14 rule-precedence 54 no access-list stdacl wlan-acl 5 stdacl1 in wlan-acl 6 stdacl2 in The stdacl must be detached from the interface to which it was associated and stdacl3 must be attached to that interface.
Page 379: Network-Element-Id
Global Configuration Commands 5-123 5.1.41 network-element-id Global Configuration Commands Use this command to set system’s network-element-ID Supported in the following platforms: • RFS7000 • RFS6000 Syntax network-element-id <element-id> Parameters <element-id> Specifies system’s network element ID Example RFSwitch(config)#network-element-id test RFSwitch(config)#...
Page 380: Firewall
5-124 Motorola RF Switch CLI Reference Guide 5.1.42 firewall Global Configuration Commands Use this command to set system’s network-element-ID Supported in the following platforms: • RFS7000 • RFS6000 Syntax firewall [802.2-encapsulation|clamp|enable|flow| virtual-defrag|vlan-stacking] firewall enable firewall 802.2-encapsulation permit firewall clamp [path-mtu|tcp-mss] firewall flow timeout [icmp|other|tcp|udp] firewall flow timeout [icmp|other|udp] <10-32400>...
Page 381 • setup – Configures the Opening TCP Flow timeout value virtual-defrag [enable| Configures IPv4 virtual defragmentation. max-defrag-per-host| • enable – enables IPv4 virtual defragmentation. Motorola max-frags-per-dgram| recommends that this option be enabled. min-1st-frag-length] • max-defrag-per-host <1-32> – Sets the maximum active defragmentation per host to a value between 1 and 32.
Page 382 5-126 Motorola RF Switch CLI Reference Guide vlan-stacking permit Configures 802.1q VLAN stacking. • permit – Permits 802.1q VLAN stacking that can bypass the firewall. Motorola does not recommend the use of this option. Example RFSwitch(config)#firewall clamp RFSwitch(config)#...
Page 383: Chapter 6. Crypto-Isakmp Instance
Crypto-isakmp Instance The (config-crypto-isakmp) instance is used to configure ISAKMP policies. To enter this instance, use this command: RFSwitch(config)#crypto isakmp policy <1-10000> RFSwitch(config-crypto-isakmp)# 6.1 Crypto ISAKMP Config Commands Table 6.1 summarizes commands crypto-isakmp Table 6.1 Crypto ISAKMP Command Summary Command Description Ref.
Page 384 Motorola RF Switch CLI Reference Guide Table 6.1 Crypto ISAKMP Command Summary Command Description Ref. lifetime Sets the lifetime for the ISAKMP security association page 6-11 Negates a command or sets its defaults page 6-12 service Defines the switch’s service commands...
Page 385: Authentication
Crypto-isakmp Instance 6.1.1 authentication Crypto ISAKMP Config Commands Authenticates rsa-sig and pre-share keys Supported in the following platforms: • RFS7000 • RFS6000 Syntax authentication [pre-share|rsa-sig] Parameters pre-share pre shared key rsa-sig rsa signature Example RFSwitch(config-crypto-isakmp)#authentication pre-share RFSwitch(config-crypto-isakmp)# RFSwitch(config-crypto-isakmp)#authentication rsa-sig RFSwitch(config-crypto-isakmp)#...
Page 386: Clrscr
Motorola RF Switch CLI Reference Guide 6.1.2 clrscr Crypto ISAKMP Config Commands Clears the display screen Supported in the following platforms: • RFS7000 • RFS6000 Syntax clrscr Parameters None. Example RFSwitch(config-crypto-isakmp)#clrscr RFSwitch(config-crypto-isakmp)#...
Page 387: Encryption
Crypto-isakmp Instance 6.1.3 encryption Crypto ISAKMP Config Commands Configures the encryption level of the data transmitted using the crypto-isakmp command Supported in the following platforms: • RFS7000 • RFS6000 Syntax encryption [3des|aes|aes-192|aes-256|des] Parameters 3des Triple data encryption standard Advanced data encryption standard aes-192 Advanced data encryption standard aes-256...
Page 388: End
Motorola RF Switch CLI Reference Guide 6.1.4 end Crypto ISAKMP Config Commands Ends and exits the current mode and changes to the PRIV EXEC mode. The prompt changes RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000 Syntax Parameters None.
Page 389: Exit
Crypto-isakmp Instance 6.1.5 exit Crypto ISAKMP Config Commands Ends the current mode and moves to the previous mode (GLOBAL-CONFIG). The prompt changes to RFSwitch(config)# Supported in the following platforms: • RFS7000 • RFS6000 Syntax exit Parameters None. Example RFSwitch(config-crypto-isakmp)#exit RFSwitch(config)#...
Page 390: Group
Motorola RF Switch CLI Reference Guide 6.1.6 group Crypto ISAKMP Config Commands Specifies the Diffie-Hellman group (1 or 2) used by the IKE policy to generate keys (which is then used to create an IPSec SA) Supported in the following platforms: •...
Page 391: Hash
Crypto-isakmp Instance 6.1.7 hash Crypto ISAKMP Config Commands Specifies the hash algorithm used to authenticate data transmitted over the IKE SA Supported in the following platforms: • RFS7000 • RFS6000 Syntax hash [md5|sha] Parameters Choose the MD5 hash algorithm Choose the SHA hash algorithm Example RFSwitch(config-crypto-isakmp)#hash sha RFSwitch(config-crypto-isakmp)#...
Page 392: Help
6-10 Motorola RF Switch CLI Reference Guide 6.1.8 help Crypto ISAKMP Config Commands Displays the system’s interactive help system Supported in the following platforms: • RFS7000 • RFS6000 Syntax help Parameters None. Example RFSwitch(config-crypto-isakmp)#help CLI provides advanced help feature. When you need help, anytime at the command line please press '?'.
Page 393: Lifetime
Crypto-isakmp Instance 6-11 6.1.9 lifetime Crypto ISAKMP Config Commands Specifies how long an IKE SA is valid before it expires • RFS7000 • RFS6000 Syntax lifetime <seconds> Parameters <seconds> Specifies how many seconds an IKE SA lasts before it expires. A time stamp (in seconds) can be configured between 60 and 2147483646.
Page 394 6-12 Motorola RF Switch CLI Reference Guide 6.1.10 no Crypto ISAKMP Config Commands Negates a command or sets its defaults Supported in the following platforms: • RFS7000 • RFS6000 Syntax no [authentication|encryption|group|hash|lifetime] Parameters None. Example RFSwitch(config-crypto-isakmp)#no lifetime RFSwitch(config-crypto-isakmp)#...
Page 395: Service
Crypto-isakmp Instance 6-13 6.1.11 service Crypto ISAKMP Config Commands Invokes service commands to troubleshoot or debug the (config-crypto-isakmp) instance configurations. Supported in the following platforms: • RFS7000 • RFS6000 Syntax service show cli Parameters Displays the CLI tree of current mode Example RFSwitch(config-crypto-isakmp)#service show cli Crypto Isakmp Config mode:...
Page 396 6-14 Motorola RF Switch CLI Reference Guide +-2 [group (1|2|5)] +-5 [group (1|2|5)] +-hash +-md5 [hash (sha|md5)] ....RFSwitch(config-crypto-isakmp)#...
Page 397: Show
Crypto-isakmp Instance 6-15 6.1.12 show Crypto ISAKMP Config Commands Displays current system information running on the switch Supported in the following platforms: • RFS7000 • RFS6000 SWITCH NOTE: The following commands display only for RFS6000: • power The following commands display only for RFS7000 : •...
Page 398 6-16 Motorola RF Switch CLI Reference Guide clock Display system clock commands Show command lists crypto encryption module debugging Debugging information outputs dhcp DHCP Server Configuration environment show environmental information file Display filesystem information firewall Wireless firewall Display FTP Server configuration...
Page 399 Crypto-isakmp Instance 6-17 users Display information about currently logged in users version Display software & hardware version wireless Wireless configuration commands wlan-acl wlan based acl RFSwitch(config-crypto-isakmp)#show...
Page 400 6-18 Motorola RF Switch CLI Reference Guide...
Page 401: Chapter 7. Crypto-Group Instance
Crypto-group Instance The ( instance configures the default group properties of the config-crypto-group) ISAKMP client. To navigate to this instance, use the command: RFSwitch(config)#crypto isakmp client configuration group default RFSwitch(config-crypto-group)# 7.1 Crypto Group Config Commands Table 7.1 summarizes the switch commands config-crypto-group Table 7.1 Crypto Group Command Summary...
Page 402 Motorola RF Switch CLI Reference Guide Table 7.1 Crypto Group Command Summary Command Description Ref. show Shows running system information page 7-9 wins Defines a Windows Name Server (WINS) page 7-12...
Page 403: Clrscr
Crypto-group Instance 7.1.1 clrscr Crypto Group Config Commands Clears the display screen Supported in the following platforms: • RFS7000 • RFS6000 Syntax clrscr Parameters None Example RFSwitch(config-crypto-group)#clr RFSwitch(config-crypto-group)#...
Page 404: Dns
Motorola RF Switch CLI Reference Guide 7.1.2 dns Crypto Group Config Commands Specifies the DNS server address(es) to assign to a client Supported in the following platforms: • RFS7000 • RFS6000 Syntax dns <IP> <IP > The first DNS server address to assign Example RFSwitch(config-crypto-group)#dns-server 172.1.17.1...
Page 405: End
Crypto-group Instance 7.1.3 end Crypto Group Config Commands Ends and exits the current mode and changes to the PRIV EXEC mode. The prompt changes RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000 Syntax Parameters None Example RFSwitch(config-crypto-group)#end RFSwitch#...
Page 406: Exit
Motorola RF Switch CLI Reference Guide 7.1.4 exit Crypto Group Config Commands Ends the current mode and moves to the previous mode (GLOBAL-CONFIG). The prompt changes to RFSwitch(config)# Supported in the following platforms: • RFS7000 • RFS6000 Syntax exit Parameters...
Page 407: Help
Crypto-group Instance 7.1.5 help Crypto Group Config Commands Displays the system’s interactive help system Supported in the following platforms: • RFS7000 • RFS6000 Syntax help Parameters None Example RFSwitch(config-crypto-group)#help CLI provides advanced help feature. When you need help, anytime at the command line please press '?'. If nothing matches, the help list will be empty and you must backup until entering a '?' shows the available options.
Page 408: Service
Motorola RF Switch CLI Reference Guide 7.1.6 service Crypto Group Config Commands Invokes service commands used troubleshoot or debug (config-crypto-isakmp) instance configurations Supported in the following platforms: • RFS7000 • RFS6000 Syntax service show cli Parameters Displays the CLI tree of current mode...
Page 409: Show
Crypto-group Instance 7.1.7 show Crypto Group Config Commands Displays current system information running on the switch Supported in the following platforms: • RFS7000 • RFS6000 SWITCH NOTE: The following commands display only for RFS6000: • power The following commands display only for RFS7000 : •...
Page 410 7-10 Motorola RF Switch CLI Reference Guide clock Display system clock commands Show command lists crypto encryption module debugging Debugging information outputs dhcp DHCP Server Configuration environment show environmental information file Display filesystem information firewall Wireless firewall Display FTP Server configuration...
Page 411 Crypto-group Instance 7-11 users Display information about currently logged in users version Display software & hardware version wireless Wireless configuration commands wlan-acl wlan based acl RFSwitch(config-crypto-group)#show...
Page 412: Wins
7-12 Motorola RF Switch CLI Reference Guide 7.1.8 wins Crypto Group Config Commands Specifies the Windows Internet Naming Service (WINS) servers to assign to a client Supported in the following platforms: • RFS7000 • RFS6000 Syntax wins <IP> Parameters <IP >...
Page 413: Chapter 8. Crypto-Peer Instance
Crypto-peer Instance instance to configure ISAKMP peers. To enter this (config-crypto-peer) instance, use the command: RFSwitch(config)#crypto isakmp peer [address|dn|hostname] RFSwitch(config-crypto-peer)# 8.1 Crypto Peer Config Commands Table 8.1 summarizes the commands config-crypto-peer Table 8.1 Crypto Peer Command Summary Command Description Ref. clrscr Clears the display screen page 8-3...
Page 414 Motorola RF Switch CLI Reference Guide Table 8.1 Crypto Peer Command Summary (Continued) Command Description Ref. show Displays running system page 8-...
Page 415: Clrscr
Crypto-peer Instance 8.1.1 clrscr Crypto Peer Config Commands Clears the display screen Supported in the following platforms: • RFS7000 • RFS6000 Syntax clrscr Parameters None Example RFSwitch(config-crypto-peer)#clrscr RFSwitch(config-crypto-peer)
Page 416: End
Motorola RF Switch CLI Reference Guide 8.1.2 end Crypto Peer Config Commands Ends and exits the current mode and moves to the PRIV EXEC mode. The prompt changes RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000 Syntax Parameters...
Page 417: Exit
Crypto-peer Instance 8.1.3 exit Crypto Peer Config Commands Ends the current mode and moves to the previous mode (GLOBAL-CONFIG). The prompt changes to RFSwitch(config)# Supported in the following platforms: • RFS7000 • RFS6000 Syntax exit Parameters None Example RFSwitch(config-crypto-peer)#exit RFSwitch(config)#...
Page 418: Help
Motorola RF Switch CLI Reference Guide 8.1.4 help Crypto Peer Config Commands Accesses the system’s interactive help system Supported in the following platforms: • RFS7000 • RFS6000 Syntax help Parameters None Example RFSwitch(config-crypto-peer)#help CLI provides advanced help feature. When you need help, anytime at the command line please press '?'.
Page 419 Crypto-peer Instance 8.1.5 no Crypto Peer Config Commands Negates a command or sets it’s defaults Supported in the following platforms: • RFS7000 • RFS6000 Syntax no set aggressive-mode password Parameters command for parameters details Example RFSwitch(config-crypto-peer)#no set aggrerssive-mode password RFSwitch(config-crypto-peer)#...
Page 420: Service
Motorola RF Switch CLI Reference Guide 8.1.6 service Crypto Peer Config Commands Invokes service commands to troubleshoot or debug the (config-crypto-peer) instance configuration. Supported in the following platforms: • RFS7000 • RFS6000 Syntax service show cli Parameters Displays the CLI tree of current mode...
Page 421 Crypto-peer Instance 8.1.7 set Crypto Peer Config Commands Configures the aggressive-mode of config-crypto-peer • RFS7000 • RFS6000 Syntax set aggerssive-mode password [0 <password>|2 <password>| <password>] Parameters aggressive-mode Defines aggressive mode attributes password [0 • password – Specifies a tunnel-password attribute <password>|2 •...
Page 422: Show
8-10 Motorola RF Switch CLI Reference Guide 8.1.8 show Crypto Peer Config Commands Displays current system information running on the switch Supported in the following platforms: • RFS7000 • RFS6000 SWITCH NOTE: The following commands display only for RFS6000: • power The following commands display only for RFS7000 : •...
Page 423 Crypto-peer Instance 8-11 clock Display system clock commands Show command lists crypto encryption module debugging Debugging information outputs dhcp DHCP Server Configuration environment show environmental information file Display filesystem information firewall Wireless firewall Display FTP Server configuration history Display the session command history interfaces Interface status Internet Protocol (IP)
Page 424 8-12 Motorola RF Switch CLI Reference Guide version Display software & hardware version wireless Wireless configuration commands wlan-acl wlan based acl RFSwitch(config-crypto-peer)#show...
Page 425: Chapter 9. Crypto-Ipsec Instance
Crypto-ipsec Instance Use the instance to define the transform configuration for (config-crypto-ipsec) securing data (esp-3des, esp-sha-hmac etc.). To navigate to this instance, use the command RFSwitch(config)#crypto ipsec transform-set <transform-set-name> <encryption-type> <auth-type> RFSwitch(config-crypto-ipsec)# The transform set is assigned to a crypto map using the map’s transform-set command. For more details, see crypto-map transform set page...
Page 426 Motorola RF Switch CLI Reference Guide Table 9.1 Crypto IPsec Command Summary (Continued) Command Description Ref. Negates a command or set its defaults page 9-7 service Invokes service commands to troubleshoot or debug page 9-10 instance configurations (config-crypto-isakmp)
Page 427: End
Crypto-ipsec Instance 9.1.1 end Crypto IPSec Config Commands Ends and exits the current mode and moves to the PRIV EXEC mode. The prompt changes RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000 Syntax Parameters None Example RFSwitch(config-crypto-ipsec)#end RFSwitch#...
Page 428: Exit
Motorola RF Switch CLI Reference Guide 9.1.2 exit Crypto IPSec Config Commands Ends the current mode and moves to the previous mode (GLOBAL-CONFIG). The prompt changes to RFSwitch(config)# Supported in the following platforms: • RFS7000 • RFS6000 Syntax exit Parameters...
Page 429: Help
Crypto-ipsec Instance 9.1.3 help Crypto IPSec Config Commands Accesses the system’s interactive help system Supported in the following platforms: • RFS7000 • RFS6000 Syntax help Parameters None Example RFSwitch(config-crypto-peer)#help CLI provides advanced help feature. When you need help, anytime at the command line please press '?'. If nothing matches, the help list will be empty and you must backup until entering a '?' shows the available options.
Page 430: Mode
Motorola RF Switch CLI Reference Guide 9.1.4 mode Crypto IPSec Config Commands Configures the IPSec mode of operation Supported in the following platforms: • RFS7000 • RFS6000 Syntax mode [transport|tunnel] Parameters transport Transport mode tunnel Tunnel mode Example RFSwitch(config-crypto-ipsec)#mode transport...
Page 431 Crypto-ipsec Instance 9.1.5 no Crypto IPSec Config Commands Negates a command or sets it’s defaults Supported in the following platforms: • RFS7000 • RFS6000 Syntax no mode Parameters mode Sets default to tunnel mode. Example RFSwitch(config-crypto-ipsec)#no mode RFSwitch(config-crypto-ipsec)#...
Page 432: Show
Motorola RF Switch CLI Reference Guide 9.1.6 show Crypto IPSec Config Commands Use this command to view current system information running on the switch Supported in the following platforms: • RFS7000 • RFS6000 SWITCH NOTE: The following commands display only for RFS6000: •...
Page 433 Crypto-ipsec Instance environment show environmental information file Display filesystem information firewall Wireless firewall Display FTP Server configuration history Display the session command history interfaces Interface status Internet Protocol (IP) ldap LDAP server licenses Show any installed licenses logging Show logging configuration and buffer Internet Protocol (IP) mac-address-table...
Page 434: Service
9-10 Motorola RF Switch CLI Reference Guide 9.1.7 service Crypto IPSec Config Commands Invokes service commands to troubleshoot or debug the (config-crypto-peer) instance configuration Supported in the following platforms: • RFS7000 • RFS6000 Syntax service show cli Parameters Displays the CLI tree of current mode...
Page 435 Crypto-map Instance The ( commands define a Certificate Authority (CA) trustpoint. config-crypto-map) This is a separate instance, but belongs to the mode under the crypto pki trustpoint instance. config To navigate to this instance, use the command: RFSwitch(config)#crypto map <map-name> <sequence> [ipsec-isakmp|ipsec-manual] {dynamic} RFSwitch(config-crypto-map)# 10.1 Crypto Map Config Commands...
Page 436 10-2 Motorola RF Switch CLI Reference Guide Table 10.1 Crypto Map Command Summary (Continued) Command Description Ref. service Invokes service commands to troubleshoot or debug the page 10-10 instance configurations Sets values for encryption/decryption parameters page 10-12 show Displays the running system information...
Page 437: Chapter 10. Crypto-Map Instance
Crypto-map Instance 10-3 10.1.1 clrscr Crypto Map Config Commands Clears the display screen Supported in the following platforms: • RFS7000 • RFS6000 Syntax clrscr Parameters None Example RFSwitch(config-crypto-map)#clrscr RFSwitch(config-crypto-map)#...
Page 438: End
10-4 Motorola RF Switch CLI Reference Guide 10.1.2 end Crypto Map Config Commands Ends and exits the current mode and moves to the to PRIV EXEC mode. The prompt changes RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000...
Page 439: Exit
Crypto-map Instance 10-5 10.1.3 exit Crypto Map Config Commands Ends the current mode and moves to the previous mode (GLOBAL-CONFIG). The prompt changes to RFSwitch(config)# Supported in the following platforms: • RFS7000 • RFS6000 Syntax exit Parameters None Example RFSwitch(config-crypto-map)#exit RFSwitch(config)#...
Page 440: Help
10-6 Motorola RF Switch CLI Reference Guide 10.1.4 help Crypto Map Config Commands Displays the system’s interactive help system Supported in the following platforms: • RFS7000 • RFS6000 Syntax help Parameters None Example RFSwitch(config-crypto-map)#help CLI provides advanced help feature. When you need help, anytime at the command line please press '?'.
Page 441: Match
Crypto-map Instance 10-7 10.1.5 match Crypto Map Config Commands Use this command to assign an IP access-list to a crypto map definition. The access-list designates the IP packets to be encrypted by this crypto map. A crypto map entry is a single policy that describes how certain traffic is secured. There are two types of crypto map entries: ipsec-manual and ipsec-ike entries.
Page 442 10-8 Motorola RF Switch CLI Reference Guide Usage Guidelines Crypto map entries do not directly contain the selectors used to determine which data to secure. Instead, the crypto map entry refers to an access control list. An access control list (ACL) is assigned to the crypto map using the match address command.
Page 443 Crypto-map Instance 10-9 10.1.6 no Crypto Map Config Commands Negates a command or sets its defaults Supported in the following platforms: • RFS7000 • RFS6000 Syntax no [match|set] Parameters Use the commands configured under this instance. Example RFSwitch(config-crypto-map)#no match address <WORD> RFSwitch(config-crypto-map)#...
Page 444: Service
10-10 Motorola RF Switch CLI Reference Guide 10.1.7 service Crypto Map Config Commands Invokes service commands to troubleshoot or debug the (config-crypto-peer) instance configuration Supported in the following platforms: • RFS7000 • RFS6000 Syntax service show cli Parameters Displays the CLI tree of the current mode...
Page 445 Crypto-map Instance 10-11 +-level +-perhost [no set security-association level perhost] +-lifetime [no set security-association lifetime] +-session-key +-inbound +-ah [no set session-key ( inbound | outbound ) ah] +-esp [no set session-key ( inbound | outbound ) esp] .........................................
Page 446: Set
10-12 Motorola RF Switch CLI Reference Guide 10.1.8 set Crypto Map Config Commands Configures set parameters for the peer device Supported in the following platforms: • RFS7000 • RFS6000 Syntax set [localid|mode|peer|pfs|remote-type {ipsec-l2tp|xauth}| security-association|session-key|transform-set) set localid [dn|hostname]<name> set pfs [1|2|5]...
Page 447 Crypto-map Instance 10-13 mode [aggressive|main] Sets the mode of the tunnels for this Crypto Map • aggressive – Initiates aggressive mode • main – Initiates main mode peer Sets the IP address of the peer device. This can be set for [ipaddress| multiple remote peers.
Page 448 10-14 Motorola RF Switch CLI Reference Guide security-association Defines the lifetime (in kilobytes and/or seconds) of the [level perhost|lifetime IPSec SAs created by this crypto map {kilobyte|seconds}] • level perhost – Specifies the security association granularity level for identities • lifetime [kilobyte|seconds] – Security an association...
Page 449 Crypto-map Instance 10-15 RFSwitch(config-crypto-map)#set pfs If left at the default setting, no perfect forward secrecy (PFS) is used during IPSec SA key generation. If PFS is specified, the specified Diffie-Hellman Group exchange is used for the initial (and all subsequent) key generations. This means no data linkage between prior keys and future keys.
Page 450: Show
10-16 Motorola RF Switch CLI Reference Guide 10.1.9 show Crypto Map Config Commands Displays current system information running on the switch Supported in the following platforms: • RFS7000 • RFS6000 SWITCH NOTE: The following commands display only for RFS6000: • power The following commands display only for RFS7000: •...
Page 451 Crypto-map Instance 10-17 environment show environmental information file Display filesystem information firewall Wireless firewall Display FTP Server configuration history Display the session command history interfaces Interface status Internet Protocol (IP) ldap LDAP server licenses Show any installed licenses logging Show logging configuration and buffer Internet Protocol (IP) mac-name...
Page 452 10-18 Motorola RF Switch CLI Reference Guide...
Page 453 Crypto-trustpoint Instance commands define a Certificate Authority (CA) (config-crypto-trustpoint) trustpoint. This is a separate instance, but belongs to the crypto pki trustpoint mode under the instance. config To navigate to this instance, use the command RFSwitch(config)#crypto pki trustpoint <trustpoint-name> RFSwitch(config-trustpoint)# 11.1 Trustpoint (PKI) Config Commands Table 11.1 summarizes...
Page 454 11-2 Motorola RF Switch CLI Reference Guide Table 11.1 Trustpoint (PKI) Config Command Summary Command Description Ref. ip-address Sets an IP address for the trustpoint page 11-10 Negates a command or sets its defaults page 11-11 password Sets the challenge password (applicable only for...
Page 455: Chapter 11. Crypto-Trustpoint Instance
Crypto-trustpoint Instance 11-3 11.1.1 clrscr Trustpoint (PKI) Config Commands Clears the display screen Supported in the following platforms: • RFS7000 • RFS6000 Syntax clrscr Parameters None Example RFSwitch(config-trustpoint)#clrscr RFSwitch(config-trustpoint)#...
Page 456: Company-Name
11-4 Motorola RF Switch CLI Reference Guide 11.1.2 company-name Trustpoint (PKI) Config Commands Sets the company name (Applicable only for request) Supported in the following platforms: • RFS7000 • RFS6000 Syntax company-name <company-name> Parameters <company-name> Company name (2 to 64 characters)
Page 457: Email
Crypto-trustpoint Instance 11-5 11.1.3 email Trustpoint (PKI) Config Commands Sets the e-mail ID for the trustpoint Supported in the following platforms: • RFS7000 • RFS6000 Syntax email <email> Parameters <email> Sets email address (2 to 64 characters) for the trustpoint Example RFSwitch(config-trustpoint)#email abcTestemailID@symbol.com RFSwitch(config-trustpoint)#...
Page 458: End
11-6 Motorola RF Switch CLI Reference Guide 11.1.4 end Trustpoint (PKI) Config Commands Ends and exits the current mode and moves to the PRIV EXEC mode. The prompt changes RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000 Syntax...
Page 459: Exit
Crypto-trustpoint Instance 11-7 11.1.5 exit Trustpoint (PKI) Config Commands Ends the current mode and moves to previous the mode (GLOBAL-CONFIG). The prompt changes to RFSwitch(config)# Supported in the following platforms: • RFS7000 • RFS6000 Syntax exit Parameters None Example RFSwitch(config-trustpoint)#exit RFSwitch(config)#...
Page 460: Fqdn
11-8 Motorola RF Switch CLI Reference Guide 11.1.6 fqdn Trustpoint (PKI) Config Commands Configures the domain name of the trustpoint (FQDN stands for Fully Qualified Domain Name) Supported in the following platforms: • RFS7000 • RFS6000 Syntax fqdn <domain-name> Parameters <domain-name>...
Page 461: Help
Crypto-trustpoint Instance 11-9 11.1.7 help Trustpoint (PKI) Config Commands Displays the systems interactive help system Supported in the following platforms: • RFS7000 • RFS6000 Syntax help Parameters None Example RFSwitch(config-trustpoint)#help CLI provides advanced help feature. When you need help, anytime at the command line please press '?'. If nothing matches, the help list will be empty and you must backup until entering a '?' shows the available options.
Page 462: Ip-Address
11-10 Motorola RF Switch CLI Reference Guide 11.1.8 ip-address Trustpoint (PKI) Config Commands Sets an IP address for the trustpoint Supported in the following platforms: • RFS7000 • RFS6000 Syntax ip-address <IP> Parameters <IP> Enter the IP address for the trustpoint Example RFSwitch(config-trustpoint)#ip-address 157.200.200.02...
Page 463 Crypto-trustpoint Instance 11-11 11.1.9 no Trustpoint (PKI) Config Commands Negates a command or sets its defaults Supported in the following platforms: • RFS7000 • RFS6000 Syntax no [company-name|email|fqdn|ip-address|subject-name] Parameters None. Example RFSwitch(config-trustpoint)#no ip-address RFSwitch(config-trustpoint)#...
Page 464: Password
11-12 Motorola RF Switch CLI Reference Guide 11.1.10 password Trustpoint (PKI) Config Commands Sets the challenge password (applicable only for requests) to access the trustpoint Syntax password [0<password>|2<password>|<password>] Parameters 0 <password> Password <password> is specified as unencrypted, the password should be between 4 to 20 characters 2 <password>...
Page 465: Rsakeypair
Crypto-trustpoint Instance 11-13 11.1.11 rsakeypair Trustpoint (PKI) Config Commands Configures a RSA Keypair to associate with the trustpoint Supported in the following platforms: • RFS7000 • RFS6000 Syntax rsakeypair <keypair-name> Parameters <keypair-name> RSA Keypair Identifier Usage Guidelines The RSA key pair configures the switch to have Rivest, Shamir, and Adelman (RSA) key pairs.
Page 466: Service
11-14 Motorola RF Switch CLI Reference Guide 11.1.12 service Trustpoint (PKI) Config Commands Invokes service commands to troubleshoot or debug the crypto pki trustpoint instance configuration Supported in the following platforms: • RFS7000 • RFS6000 Syntax service show cli Parameters...
Page 467: Show
Crypto-trustpoint Instance 11-15 11.1.13 show Trustpoint (PKI) Config Commands Displays current system information running on the switch Supported in the following platforms: • RFS7000 • RFS6000 SWITCH NOTE: The following commands display only for RFS6000: • power The following commands display only for RFS7000: •...
Page 468 11-16 Motorola RF Switch CLI Reference Guide environment show environmental information file Display filesystem information firewall Wireless firewall Display FTP Server configuration history Display the session command history interfaces Interface status Internet Protocol (IP) ldap LDAP server licenses Show any installed licenses...
Page 469: Subject-Name
Crypto-trustpoint Instance 11-17 11.1.14 subject-name Trustpoint (PKI) Config Commands Creates a subject name to configure a trustpoint (the subject name is a collection of required parameters to configure a trustpoint) Supported in the following platforms: • RFS7000 • RFS6000 Syntax subject-name <name>...
Page 470 11-18 Motorola RF Switch CLI Reference Guide RFSwitch(config-trustpoint)#subject-name TestPool US OH PB SYMBOL ? WORD Organization Unit( 2 to 64 characters ) RFSwitch(config-trustpoint)#subject-name TestPool US OH PB SYMBOL WID ? <cr> RFSwitch(config-trustpoint)#subject-name TestPool US OH PB SYMBOL WID RFSwitch(config-trustpoint)#...
Page 471 Interface Instance Use the instance to configure the interfaces – Ethernet, VLAN and tunnel (config-if) associated with the switch. To switch to this mode, use the command: RFSwitch(config)#interface [<interface-name>|ge <1-4>|me1| sa <1-4>|vlan <1-4094> RFSwitch(config-if)# 12.1 Interface Config Commands Table 12.1 summarizes the commands: (config-if)
Page 472 12-2 Motorola RF Switch CLI Reference Guide Table 12.1 Interface Config Command Summary (Continued) Command Description Ref. Sets the IP address for the assigned ethernet, VLAN or page 12-10 tunnel Applies a MAC access list to a gigabit ethernet page 12-13...
Page 473: Chapter 12. Interface Instance
Interface Instance 12-3 12.1.1 clrscr Interface Config Commands Clears the display screen Supported in the following platforms: • RFS7000 • RFS6000 Syntax clrscr Parameters None Example RFSwitch(config-if)#clrscr RFSwitch(config-if)#...
Page 474: Crypto
12-4 Motorola RF Switch CLI Reference Guide 12.1.2 crypto Interface Config Commands Sets the encryption module to use for this interface Supported in the following platforms: • RFS7000 • RFS6000 Syntax crypto map <map-tag> Parameters map <map-tag> Assigns a Crypto Map •...
Page 475: Description
Interface Instance 12-5 12.1.3 description Interface Config Commands Creates an interface specific description Supported in the following platforms: • RFS7000 • RFS6000 Syntax description <description> Parameters <description> Defines the characters describing this interface Example RFSwitch(config-if)#description "interface for RetailKing" RFSwitch(config-if)#...
Page 476: Duplex
12-6 Motorola RF Switch CLI Reference Guide 12.1.4 duplex Interface Config Commands Specifies the duplex mode for the interface NOTE: • Duplexity can only be set for an Ethernet Interface. Enter the instance using the parameter of the (config-if) interface mode •...
Page 477: End
Interface Instance 12-7 12.1.5 end Interface Config Commands Ends and exits the current mode and moves to the PRIV EXEC mode. The prompt changes RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000 Syntax Parameters None Example RFSwitch(config-if)#end RFSwitch#...
Page 478: Exit
12-8 Motorola RF Switch CLI Reference Guide 12.1.6 exit Interface Config Commands Ends the current mode and moves to the previous mode (GLOBAL-CONFIG). The prompt changes to RFSwitch(config)# Supported in the following platforms: • RFS7000 • RFS6000 Syntax exit Parameters...
Page 479: Help
Interface Instance 12-9 12.1.7 help Interface Config Commands Displays the system’s interactive help Supported in the following platforms: • RFS7000 • RFS6000 Syntax help Parameters None Example RFSwitch(config-if)#help CLI provides advanced help feature. When you need help, anytime at the command line please press '?'. If nothing matches, the help list will be empty and you must backup until entering a '?' shows the available options.
Page 480 12-10 Motorola RF Switch CLI Reference Guide 12.1.8 ip Interface Config Commands Sets the IP address for the assigned Gigabit Ethernet interface (GE), Fast Ethernet interface (ME), LAN interface (UP), Ethernet interface (ETH), Static Aggregate interface (SA) or VLAN Interface Supported in the following platforms: •...
Page 481 Interface Instance 12-11 Sets a static IP address and network mask for a Layer 3 ip address [ <IP Mask> {secondary}|dhcp] SVI (Switch Virtual Interface) • <IP/ Mask> {secondary} – Sets the IP address (10.0.0.1/8) • secondary – Defines an optional secondary IP address •...
Page 482: Creating Helper Address Using Dhcp Server
12-12 Motorola RF Switch CLI Reference Guide Use the command to undo IP based interface configurations {no} ip [options] Example RFSwitch(config-if)#ip access-group 110 in RFSwitch(config-if)# RFSwitch(config-if)#ip address 192.168.234.1/24 RFSwitch(config-if)# 12.1.8.1 Creating Helper Address using DHCP Server Follow the steps below to create a helper address on VLAN 2000 for using a DHCP server...
Page 483: Mac
Interface Instance 12-13 12.1.9 mac Interface Config Commands Applies a MAC access list (ACL) to Gigabit Ethernet interface NOTE: The access list cannot be applied on a management interface (me1). Supported in the following platforms: • RFS7000 • RFS6000 Syntax mac access-group <acl-name>...
Page 484: Management
12-14 Motorola RF Switch CLI Reference Guide 12.1.10 management Interface Config Commands Sets the selected interface as management interface. It can only be used on a VLANx interface. The TFTP/FTP server providing the switch its config file at startup must be accessible via this interface.
Page 485 Interface Instance 12-15 12.1.11 no Interface Config Commands Negates a command or sets its defaults Supported in the following platforms: • RFS7000 • RFS6000 SWITCH NOTE: The following commands are not supported on RFS6000: • port-channel • static-channel-group SWITCH NOTE: The following command is not supported on RFS7000: •...
Page 486: Port-Channel
12-16 Motorola RF Switch CLI Reference Guide 12.1.12 port-channel Interface Config Commands Selects the load-balance criteria of an aggregated port Supported in the following platforms: • RFS7000 SWITCH NOTE: RFS6000 does not support this command. Syntax port-channel load-balance [src-dst-ip|src-dst-mac] Parameters...
Page 487: Configuring A Port Aggregation
Interface Instance 12-17 12.1.12.1 Configuring a Port Aggregation for configuring port aggregation. Follow static-channel-group port-channel the steps below to configure port aggregation: 1. Create a static channel group for port aggregation and associate an interface with it. RFSwitch(config)#interface ge 1 RFSwitch(config-if)#static-channel-group 1 2.
Page 488 12-18 Motorola RF Switch CLI Reference Guide How src-dst-mac mode works When the switch sends a packet out of a SA, it selects the egress port as a function of the packet's source MAC, destination MAC, and the set of ports in the SA which are running.
Page 489: Power
Interface Instance 12-19 12.1.13 power Interface Config Commands Invokes PoE commands to configure PoE power limit and priority for a port. By default the value for a GE port is set to low. Power is applied in order of priority, power overlaods are removed in reverse order of priority.
Page 490 12-20 Motorola RF Switch CLI Reference Guide RFSwitch(config)#interface ge3 RFSwitch(config-if)#power priority critical RFSwitch(config-if)#exit RFSwitch(config)#show power configuration Power usage trap at 80% of max power (148 of 185 Watts) port Priority Power limit Enabled high 29.7W high 14.0W crit 29.7W high 29.7W...
Page 491: Service
Interface Instance 12-21 12.1.14 service Interface Config Commands Invokes service commands to troubleshoot or debug the instance (config-if) configuration. Supported in the following platforms: • RFS7000 • RFS6000 Syntax service show cli Parameters Displays the CLI tree of the current mode Example RFSwitch(config-if)#service show cli Interface Config mode:...
Page 492: Show
12-22 Motorola RF Switch CLI Reference Guide 12.1.15 show Interface Config Commands Displays current system information running on the switch Supported in the following platforms: • RFS7000 • RFS6000 SWITCH NOTE: The following commands display only for RFS6000: • power The following commands display only for RFS7000: •...
Page 493 Interface Instance 12-23 environment show environmental information file Display filesystem information firewall Wireless firewall Display FTP Server configuration history Display the session command history interfaces Interface status Internet Protocol (IP) ldap LDAP server licenses Show any installed licenses logging Show logging configuration and buffer Internet Protocol (IP) mac-address-table...
Page 494: Shutdown
12-24 Motorola RF Switch CLI Reference Guide 12.1.16 shutdown Interface Config Commands Disables the selected interface, the interface is administratively enabled unless explicitly disabled using this command Displays current system information running on the switch Supported in the following platforms: •...
Page 495: Spanning-Tree
Interface Instance 12-25 12.1.17 spanning-tree Interface Config Commands Configures spanning tree parameters Displays current system information running on the switch. Supported in the following platforms: • RFS7000 • RFS6000 Syntax spanning-tree [bpdufilter|bpduguard|edgeport|force-version| guard|link-type|mst|portfast] spanning-tree bpdufilter [enable|disable] spanning-tree bpduguard [enable|disable] spanning-tree [edgeport|portfast] spanning-tree force-version <1-3>...
Page 496 12-26 Motorola RF Switch CLI Reference Guide bpduguard [disable|enable] Use this command to enable or disable the BPDU guard feature on a port. Use the no parameter with this command to set the BPDU guard feature to default values. When the BPDU guard is set for a bridge, all portfast- enabled ports that have the BPDU-guard set to default shut down the port upon receiving a BPDU.
Page 497 Interface Instance 12-27 mst [<0-15> Configures MST values on a spanning tree [cost <1-200000000>| • <0-15> [cost <1-200000000>|port-priority <0-240>] – port-priority <0-240>]| Defines the Instance ID port-cisco-interoperability • cost <1-200000000> – Defines the path cost for a [disable|enable]] port • port-priority <0-240> – Defines the port priority for a bridge •...
Page 498: Speed
12-28 Motorola RF Switch CLI Reference Guide 12.1.18 speed Interface Config Commands Specifies the speed of a fast-ethernet (10/100) or a gigabit-ethernet port (10/100/1000) Displays current system information running on the switch. Supported in the following platforms: • RFS7000 • RFS6000...
Page 499: Static-Channel-Group
Interface Instance 12-29 12.1.19 static-channel-group Interface Config Commands Adds an interface to a static channel group Displays current system information running on the switch. Supported in the following platforms: • RFS7000 SWITCH NOTE: RFS6000 does not support this command Syntax static-channel-group <1-4>...
Page 500: Switchport
12-30 Motorola RF Switch CLI Reference Guide 12.1.20 switchport Interface Config Commands Sets switching mode characteristics for the selected interface. Supported in the following platforms: • RFS7000 • RFS6000 Syntax switchport [access|mode|trunk] switchport access vlan <1-4094> switchport mode [access|trunk] switchport trunk [allowed|native] switchport trunk allowed vlan [add|none|remove] <vlan-id>...
Page 501 Interface Instance 12-31 Sets the trunking mode characteristics trunk [allowed |native] • allowed vlan – Configures trunk characteristics when the port is in trunk-mode • vlan [add|none|remove] – Sets allowed vlans • none – Allows no vlans to Xmit/Rx through the Layer2 interface •...
Page 502: Storm-Control
12-32 Motorola RF Switch CLI Reference Guide 12.1.21 storm-control Interface config commands Sets storm-control for broadcasting Supported in the following platforms: • RFS7000 • RFS6000 Syntax storm-control [bcast|mcast|ucast] rate-limit <1-1000000> Parameters bcast rate-limit Configures storm-control of broadcast packets. <1-1000000> • rate-limit <1-1000000> – Performs packet rate limiting •...
Page 503 Spanning tree-mst Instance Use the instance to configure the switch’s Multi Spanning Tree Protocol (config-mst) (MSTP) configuration. To switch to this instance, use the command: RFSwitch(config)#spanning-tree mst configuration RFSwitch(config-mst)# 13.1 mst Config Commands Table 13.1 summarizes the commands: (config-mst) Table 13.1 MSTI configuration commands Command Description Ref.
Page 504 13-2 Motorola RF Switch CLI Reference Guide Command Description Ref. service Invokes service commands needed to troubleshoot or page 13-11 debug instance configurations (config-if) show Shows running system information page 13-13...
Page 505: Chapter 13. Spanning Tree-Mst Instance
Spanning tree-mst Instance 13-3 13.1.1 clrscr mst Config Commands Clears the display Supported in the following platforms: • RFS7000 • RFS6000 Syntax clrscr Parameters None Example RFSwitch(config-mst)#clrscr RFSwitch(config-mst)#...
Page 506: End
13-4 Motorola RF Switch CLI Reference Guide 13.1.2 end mst Config Commands Ends and exits the current mode and moves to the PRIV EXEC mode. The prompt changes RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000 Syntax Parameters...
Page 507: Exit
Spanning tree-mst Instance 13-5 13.1.3 exit mst Config Commands Ends the current mode and moves to the previous mode (GLOBAL-CONFIG). The prompt changes to RFSwitch(config)# Supported in the following platforms: • RFS7000 • RFS6000 Syntax exit Parameters None Example RFSwitch(config-mst)#exit RFSwitch(config)#...
Page 508: Help
13-6 Motorola RF Switch CLI Reference Guide 13.1.4 help mst Config Commands Displays the system’s interactive help system Supported in the following platforms: • RFS7000 • RFS6000 Syntax help Parameters None Example RFSwitch(config-mst)#help CLI provides advanced help feature. When you need help, anytime at the command line please press '?'.
Page 509: Instance
Spanning tree-mst Instance 13-7 13.1.5 instance mst Config Commands Associates VLAN(s) with an instance Supported in the following platforms: • RFS7000 • RFS6000 Syntax instance <1-15> vlan <vlan-id> Parameters <1-15> Defines the instance ID to which the VLAN is associated vlan <vlan-id>...
Page 510: Name
13-8 Motorola RF Switch CLI Reference Guide 13.1.6 name mst Config Commands Sets the name for the MST region Supported in the following platforms: • RFS7000 • RFS6000 Syntax name <region-name> Parameters <region-name> Sets MST region name Example RFSwitch(config-mst)#name MyRegion...
Page 511 Spanning tree-mst Instance 13-9 13.1.7 no mst Config Commands Negates a command or sets its defaults Supported in the following platforms: • RFS7000 • RFS6000 Syntax no [instance|name|revision] Parameters instance Sets the MST Instance • vlan – Delete the association of vlan with this instance •...
Page 512: Revision
13-10 Motorola RF Switch CLI Reference Guide 13.1.8 revision mst Config Commands Sets the revision number of the MST bridge Supported in the following platforms: • RFS7000 • RFS6000 Syntax revision <0-255> Parameters revision <0-255> Defines the revision number for configuration information...
Page 513: Service
Spanning tree-mst Instance 13-11 13.1.9 service mst Config Commands Invokes service commands needed to troubleshoot or debug instance (config-if) configurations Supported in the following platforms: • RFS7000 • RFS6000 Syntax service show cli Parameters None Example RFSwitch(config-mst)#service show cli MSTI configuration mode: +-clrscr [clrscr] +-end [end] +-exit [exit]...
Page 514 13-12 Motorola RF Switch CLI Reference Guide +-full [show running-config full] +-include-factory [show running-config include-factory] +-service +-show +-cli [service show cli] +-show +-access-list [show access-list] +-<1-99> [show access-list (<1-99>|<100-199>|<1300- 1999>|<2000-2699>|WORD)] +-<100-199> [show access-list (<1-99>|<100-199>|<1300- 1999>|<2000-2699>|WORD)] +-<1300-1999> [show access-list (<1-99>|<100-199>|<1300- 1999>|<2000-2699>|WORD)] +-<2000-2699>...
Page 515: Show
Spanning tree-mst Instance 13-13 13.1.10 show mst Config Commands Displays current system information Supported in the following platforms: • RFS7000 • RFS6000 SWITCH NOTE: The following commands display only for RFS6000: • power The following commands display only for RFS7000 : •...
Page 516 13-14 Motorola RF Switch CLI Reference Guide environment show environmental information file Display filesystem information firewall Wireless firewall Display FTP Server configuration history Display the session command history interfaces Interface status Internet Protocol (IP) ldap LDAP server licenses Show any installed licenses...
Page 517: Chapter 14. Extended Acl Instance
Extended ACL Instance The Extended ACL instance is used to manage the extended (config-ext-nacl) Access Control List entries associated with the switch. To navigate to this instance, use the command RFSwitch(config)#ip access-list extended [<ACL-name>| <100-199>|<2000-2699>] RFSwitch(config-ext-nacl)# 14.1 Extended ACL Config Commands Table 14.1 summarizes commands:...
Page 518 14-2 Motorola RF Switch CLI Reference Guide Table 14.1 Extended ACL Config Command Summary (Continued) Command Description Ref. permit Specifies packets to forward page 14-20 service Invokes the service commands to troubleshoot or page 14-25 debug instance configurations (config-if) show...
Page 519: Clrscr
Extended ACL Instance 14-3 14.1.1 clrscr Extended ACL Config Commands Clears the display screen Supported in the following platforms: • RFS7000 • RFS6000 Syntax clrscr Parameters None Example RFSwitch(config-ext-nacl)#clrscr RFSwitch(config-ext-nacl)#...
Page 520: Deny
14-4 Motorola RF Switch CLI Reference Guide 14.1.2 deny Extended ACL Config Commands Specifies packets to reject Supported in the following platforms: • RFS7000 • RFS6000 Syntax deny [icmp|ip|tcp|upd] deny icmp [<source-IP/Mask>|any|host <IP>] [<dest-IP/ Mask>|any|host <IP>] {<ICMP-type> {<ICMP-code>}} {log} {rule-precedence <1-5000>} deny ip [<source-IP/Mask>|any|host <IP>] [<dest-IP/...
Page 521 Extended ACL Instance 14-5 Parameters Use with a deny command to reject IP packets deny ip [<source-IP/ Mask>|any|host • deny – Sets the action type on an ACL <IP>][<dest-IP/ • ip – Specifies an IP (to match to a protocol) Mask>|any|host <IP>] •...
Page 522 14-6 Motorola RF Switch CLI Reference Guide deny icmp [<source-IP/ Use with the deny command to reject ICMP packets Mask>|any|host <IP>] • deny – Rejects ICMP packets [<dest-IP/Mask>|any|host • icmp – Specifies ICMP as the protocol <IP>] {<ICMP-type> • [<source-ip/mask>|any|host <IP>] – The source <source- {<ICMP-code>}} {log}...
Page 523 Extended ACL Instance 14-7 deny [tcp|udp] [<source-IP/ Use with the deny command to reject TCP or UDP packets Mask>|any|host <IP>] {eq • deny – Rejects TCP or UDP packets <source-port>|range • tcp|udp – Specifies TCP or UDP as the protocol <starting-source-port>...
Page 524: Example - Denying Traffic Between Two Subnets
14-8 Motorola RF Switch CLI Reference Guide Usage Guidelines Use this command to deny traffic between networks/hosts based on the protocol type selected in the access list configuration. The following protocol types are supported: • ip • icmp • tcp •...
Page 525: Example - Denying Udp Based Traffic
Extended ACL Instance 14-9 14.1.2.3 Example - Denying UDP Based Traffic The following example denies UDP traffic with a source port range between 20 - 23 (from the source subnet to destination subnet): RFSwitch(config-ext-nacl)#deny udp range 20 23 192.168.1.0/24 192.168.2.0/24 RFSwitch(config-ext-nacl)#permit ip any any RFSwitch(config-ext-nacl)# 14.1.2.4 Example - Denying ICMP Based Traffic...
Page 526: End
14-10 Motorola RF Switch CLI Reference Guide 14.1.3 end Extended ACL Config Commands Ends and exits the current mode and moves to the PRIV EXEC mode The prompt changes to RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000...
Page 527: Exit
Extended ACL Instance 14-11 14.1.4 exit Extended ACL Config Commands Ends the current mode and moves to the previous mode (GLOBAL-CONFIG). The prompt changes to RFSwitch(config)# Supported in the following platforms: • RFS7000 • RFS6000 Syntax exit Parameters None Example RFSwitch(config-ext-nacl)#exit RFSwitch(config)#...
Page 528: Help
14-12 Motorola RF Switch CLI Reference Guide 14.1.5 help Extended ACL Config Commands Displays the system’s interactive help system Supported in the following platforms: • RFS7000 • RFS6000 Syntax help Parameters None Example RFSwitch(config-ext-nacl)#help CLI provides advanced help feature. When you need help, anytime at the command line please press '?'.
Page 529: Mark
Extended ACL Instance 14-13 14.1.6 mark Extended ACL Config Commands Specifies packets to mark Supported in the following platforms: • RFS7000 • RFS6000 Syntax mark [8021p|dscp|tos] mark [8021p <vlan-priority-value>|dscp <dscp-codepoint-value>|tos <tos-value>] [icmp|ip|tcp|udp] mark [8021p <vlan-priority-value>|dscp <dscp-codepoint- value>|tos <tos-value>] icmp [<source-ip/mask>|any|host <ip>] [<dest-ip/mask>|any|host <ip>] {<ICMP-type>...
Page 530 14-14 Motorola RF Switch CLI Reference Guide ip [<source-IP/ Use with mark command to mark a packet. Mask>|any|host <IP>] • ip – Specifies an IP (to match to a protocol) [<dest-IP/Mask>| • <source-IP/Mask>|any|host <IP> – The keyword <source- any|host <IP>] {log} IP>...
Page 531 Extended ACL Instance 14-15 icmp [<source-IP/ Use with the mark command to mark ICMP packets mask>|any|host <IP>] • deny – Rejects ICMP packets [<dest-IP/Mask>|any| • icmp – Specifies ICMP as the protocol host <IP>] {<ICMP-type> • [<source-IP/mask>|any|host <IP>] – The source <source- {<ICMP-code>}} {log} IP>...
Page 532 14-16 Motorola RF Switch CLI Reference Guide [tcp|udp] [<source-IP/ Use with the mark command to mark TCP or UDP packets Mask>|any|host <IP>] {eq • deny – Rejects TCP or UDP packets <source-port>|range • tcp|udp – Specifies TCP or UDP as the protocol <starting-source-port>...
Page 533: Example - Marking Dot1P On Tcp Based Traffic
Extended ACL Instance 14-17 Usage Guidelines Marks traffic between networks/hosts based on the protocol type selected in the access list configuration Use the mark option to specify the type of service (tos) and priority value. The tos value is marked in the IP header and the 802.1p priority value is marked in the dot1q frame. The following types of protocols are supported: •...
Page 534 14-18 Motorola RF Switch CLI Reference Guide RFSwitch(config-ext-nacl)# mark tos 160 udp 192.168.2.0/24 range 5060 5061 RFSwitch(config-ext-nacl)# RFSwitch(config-ext-nacl)# mark dscp 40 udp 192.168.2.0/24 range 5060 5061 RFSwitch(config-ext-nacl)#...
Page 535 Extended ACL Instance 14-19 14.1.7 no Extended ACL Config Commands Negates a command or sets its defaults Supported in the following platforms: • RFS7000 • RFS6000 Syntax no [deny|mark|permit] Negates all the syntax combinations used in the deny, mark and permit designations to configure the Extended ACL Parameters deny...
Page 536: Permit
14-20 Motorola RF Switch CLI Reference Guide 14.1.8 permit Extended ACL Config Commands Permits specific packets. NOTE: ACLs do not allow DHCP messages to flow by default. Configure an Access Control Entry (ACE) to allow DHCP messages to flow through.
Page 537 Extended ACL Instance 14-21 Parameters Use with a permit command to allow IP packets permit ip [<source-IP/ Mask>|any|host <IP>] • deny – Sets the action type on an ACL [<dest-IP/mask>|any|host • IP – Specifies an IP (to match to a protocol) <IP>] {log} {rule- •...
Page 538 14-22 Motorola RF Switch CLI Reference Guide permit icmp [<source-IP/ Use with the permit command to allow ICMP packets Mask>|any|host <ip>] • deny – Rejects ICMP packets [<dest-IP/Mask>|any| • icmp – Specifies ICMP as the protocol host <IP>] {<ICMP-type> • [<source-IP/Mask>|any|host <IP>] – The source {<ICMP-code>}} {log}...
Page 539 Extended ACL Instance 14-23 permit [tcp|udp] [<source- Use with the permit command to allow TCP or UDP ip/mask>|any|host <IP>] packets {eq <source-port>|range • deny – Rejects TCP or UDP packets <starting-source-port> • tcp|udp – Specifies TCP or UDP as the protocol <ending-source-port>} •...
Page 540: Permitting Ip Based Traffic
14-24 Motorola RF Switch CLI Reference Guide • icmp • tcp • udp The last ACE in the access list is an implicit deny statement. Whenever the interface receives the packet, its content is checked against all the ACEs in the ACL.
Page 541: Service
Extended ACL Instance 14-25 14.1.9 service Extended ACL Config Commands Invokes service commands to troubleshoot or debug the (config-if) instance configurations Supported in the following platforms: • RFS7000 • RFS6000 Syntax service show cli Parameters None Example RFSwitch(config-ext-nacl)#service show cli Extended ACL Config mode: +-clrscr [clrscr] +-deny...
Page 542: Show
14-26 Motorola RF Switch CLI Reference Guide 14.1.10 show Extended ACL Config Commands Displays current system information running on the switch Supported in the following platforms: • RFS7000 • RFS6000 SWITCH NOTE: The following commands display only for RFS6000: • power The following commands display only for RFS7000 : •...
Page 543 Extended ACL Instance 14-27 environment show environmental information file Display filesystem information firewall Wireless firewall Display FTP Server configuration history Display the session command history interfaces Interface status Internet Protocol (IP) ldap LDAP server licenses Show any installed licenses logging Show logging configuration and buffer Internet Protocol (IP)
Page 544: Configuring Ip Extended Acl
14-28 Motorola RF Switch CLI Reference Guide 14.2 Configuring IP Extended ACL IP Extended ACLs contain rules based on the following parameters: • Source IP address • Destination IP address • IP Protocol • Source Port–if protocol is TCP or UDP •...
Page 545: Chapter 15. Standard Acl Instance
Standard ACL Instance The Standard ACL instance is used to manage the standard Access (config-std-acl) Control List entries associated with the switch. To navigate to this instance, use the command: RFSwitch(config)#ip access-list standard [<ACL-name>| <1-99>|<1300-1999>] RFSwitch(config-std-acl)# 15.1 Standard ACL Config Commands Table 15.1 summarizes the commands:...
Page 546 15-2 Motorola RF Switch CLI Reference Guide Table 15.1 Standard ACL Config Command Summary (Continued) Command Description Ref. permit Specifies packets to forward page 15-12 service Invokes service commands to troubleshoot or debug page 15-14 instance configurations (config-if) show Displays running system information...
Page 547: Clrscr
Standard ACL Instance 15-3 15.1.1 clrscr Standard ACL Config Commands Clears the display screen Supported in the following platforms: • RFS7000 • RFS6000 Syntax clrscr Parameters None Example RFSwitch(config-std-nacl)#clrscr RFSwitch(config-std-nacl)#...
Page 548: Deny
15-4 Motorola RF Switch CLI Reference Guide 15.1.2 deny Standard ACL Config Commands Specifies packets to reject Supported in the following platforms: • RFS7000 • RFS6000 Syntax deny [<source-IP/Mask>|any|host <IP>] {log} {rule-precedence <1-5000>} Parameters Use with a deny command to reject packets [<source-IP/...
Page 549: Example - Denying Traffic To The Interface
Standard ACL Instance 15-5 Whenever the interface receives the packet, its content is checked against all the ACEs in the ACL. It is allowed/denied based on the ACL configuration. NOTE: The log option is functional only for router ACL’s. The log option results in an informational logging message for the packet matching the entry sent to the console.
Page 550: End
15-6 Motorola RF Switch CLI Reference Guide 15.1.3 end Standard ACL Config Commands Ends and exits from the current mode and moves to the PRIV EXEC mode. The prompt changes to RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000...
Page 551: Exit
Standard ACL Instance 15-7 15.1.4 exit Standard ACL Config Commands Ends the current mode and moves to previous mode (GLOBAL-CONFIG). The prompt changes to RFSwitch(config)# Supported in the following platforms: • RFS7000 • RFS6000 Syntax exit Parameters None Example RFSwitch(config-std-nacl)#exit RFSwitch(config)#...
Page 552: Help
15-8 Motorola RF Switch CLI Reference Guide 15.1.5 help Standard ACL Config Commands Displays the system’s interactive help in HTML format Supported in the following platforms: • RFS7000 • RFS6000 Syntax help Parameters None Example RFSwitch(config-std-nacl)#help CLI provides advanced help feature.
Page 553: Mark
Standard ACL Instance 15-9 15.1.6 mark Standard ACL Config Commands Specifies packets to mark Supported in the following platforms: • RFS7000 • RFS6000 Syntax mark [8021p|dscp|tos] mark 8021p <vlan-priority-value> mark dscp <dscp-codepoint-value> mark tos <tos-value> [<source-IP/Mask>|any|host <IP>] {log} {rule-precedence <1-5000>} Parameters 8021p <vlan-priority- Sets the 802.1p VLAN user priority value to <vlan-priority-...
Page 554: Marking Tos For Source Network Traffic
15-10 Motorola RF Switch CLI Reference Guide Use with a mark command to mark packets [<source-IP/Mask>| any|host <IP>] {log} • <source-IP/Mask>|any|host <IP> – The keyword <source- {rule-precedence IP> is the source IP address of the network or host in <1-5000>} dotted decimal format.
Page 555 Standard ACL Instance 15-11 15.1.7 no Standard ACL Config Commands Negates a command or sets its defaults Supported in the following platforms: • RFS7000 • RFS6000 Syntax no [deny|mark|permit] Negates all the syntax combinations used in deny, mark and permit designations. Parameters deny Specifies packets to reject...
Page 556: Permit
15-12 Motorola RF Switch CLI Reference Guide 15.1.8 permit Standard ACL Config Commands Specifies packet to forward Supported in the following platforms: • RFS7000 • RFS6000 Syntax permit [<source-IP/Mask>|any|host <IP>] {log} {rule-precedence <1-5000>} Parameters Use with a permit command to allow packets [<source-IP/Mask>|...
Page 557: Example - Permitting Traffic To Interface
Standard ACL Instance 15-13 Whenever the interface receives the packet, its content is checked against all the ACEs in the ACL. It is allowed based on the ACL’s configuration. NOTE: The log option is functional only for router ACLs. The log option displays an informational logging message about the packet matching the entry sent to the console.
Page 558: Service
15-14 Motorola RF Switch CLI Reference Guide 15.1.9 service Standard ACL Config Commands Invokes service commands to troubleshoot or debug instance (config-if) configurations Supported in the following platforms: • RFS7000 • RFS6000 Syntax service show cli Parameters Displays the CLI tree of the current mode...
Page 559 Standard ACL Instance 15-15 +-<1-5000> [(deny|permit|mark (8021p <0-7> | tos <0- 255>))(A.B.C.D/M | host A.B.C.D | any)(log|)(rule-precedence <1-5000> |)] +-rule-precedence +-<1-5000> [(deny|permit|mark (8021p <0-7> | tos <0- 255>))(A.B.C.D/M | host A.B.C.D | any)(log|)(rule-precedence <1-5000> |)] ......................................... RFSwitch(config-std-nacl)#...
Page 560: Show
15-16 Motorola RF Switch CLI Reference Guide 15.1.10 show Standard ACL Config Commands Displays current system information running on the switch Supported in the following platforms: • RFS7000 • RFS6000 SWITCH NOTE: The following commands display only for RFS6000: • power The following commands display only for RFS7000 : •...
Page 561 Standard ACL Instance 15-17 environment show environmental information file Display filesystem information firewall Wireless firewall Display FTP Server configuration history Display the session command history interfaces Interface status Internet Protocol (IP) ldap LDAP server licenses Show any installed licenses logging Show logging configuration and buffer Internet Protocol (IP)
Page 562: Use Case: Configuring Ip Standard Acl
15-18 Motorola RF Switch CLI Reference Guide 15.2 Use Case: Configuring IP Standard ACL IP Standard ACLs contain rules based on Source IP Address. You can create either a Numbered IP Standard ACL or a Named IP Standard IP Address.
Page 563 Extended MAC ACL Instance Use the instance to configure (config-ext-macl) mac access-list extended ACLs. To navigate to this instance, use the command: RFSwitch(config)#mac access-list extended <acl-name> RFSwitch(config-ext-macl)# 16.1 MAC Extended ACL Config Commands Table summarizes commands: config-ext-macl Table 16.1 MAC Extended ACL Config Command Summary Command Description Ref.
Page 564 16-2 Motorola RF Switch CLI Reference Guide Table 16.1 MAC Extended ACL Config Command Summary (Continued) Command Description Ref. service Invokes service commands to troubleshoot or debug page 16-19 instance configurations (config-if) show Shows running system information page 16-21...
Page 565: Chapter 16. Extended Mac Acl Instance
Extended MAC ACL Instance 16-3 16.1.1 clrscr MAC Extended ACL Config Commands Clears the display screens Supported in the following platforms: • RFS7000 • RFS6000 Syntax clrscr Parameters None Example RFSwitch(config-ext-macl)#clrscr RFSwitch(config-ext-macl)#...
Page 566: Deny
16-4 Motorola RF Switch CLI Reference Guide 16.1.2 deny MAC Extended ACL Config Commands Specifies packets to reject NOTE: Use a decimal value representation of ethertypes to implement designation for a packet. The command set for permit/deny/mark Extended MAC ACLs provide the hexadecimal values for each listed ethertype.
Page 567 Extended MAC ACL Instance 16-5 Parameters deny [<MAC/Mask>|any|host Define a source and destination MAC address and <MAC>] [<MAC/Mask>|any| Mask specifying the bits to match. The source and host <MAC>] {[dot1p| destination wildcards can be any one of the rule-precedence|type|vlan]} following: •...
Page 568: Example - Denying Traffic From Any Mac Address
16-6 Motorola RF Switch CLI Reference Guide vlan<1-4095> Set a VLAN tag ID to match Usage Guidelines The deny command disallows traffic based on layer 2 (data-link layer) data. The MAC access list denies traffic from a particular source MAC address or any MAC address. It can also disallow traffic from a list of MAC addresses based on the source mask.
Page 569 Extended MAC ACL Instance 16-7 RFSwitch(config-ext-macl)#deny host 01:02:fe:45:76:89 host 01:02:89:78:78:45 RFSwitch(config-ext-macl)#...
Page 570: End
16-8 Motorola RF Switch CLI Reference Guide 16.1.3 end MAC Extended ACL Config Commands Ends and exits the current mode and moves to the PRIV EXEC mode. The prompt changes RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000...
Page 571: Exit
Extended MAC ACL Instance 16-9 16.1.4 exit MAC Extended ACL Config Commands Ends the current mode and moves to the previous mode (GLOBAL-CONFIG). The prompt changes to RFSwitch(config)# Supported in the following platforms: • RFS7000 • RFS6000 Syntax exit Parameters None Example RFSwitch(config-ext-macl)#exit...
Page 572: Help
16-10 Motorola RF Switch CLI Reference Guide 16.1.5 help MAC Extended ACL Config Commands Displays the system’s interactive help (in HTML format) Supported in the following platforms: • RFS7000 • RFS6000 Syntax help Parameters None Example RFSwitch(config-ext-macl)#help CLI provides advanced help feature.
Page 573: Mark
Extended MAC ACL Instance 16-11 16.1.6 mark MAC Extended ACL Config Commands Specifies the packet to mark NOTE: Use a decimal value representation of ethertypes to implement permit/deny/mark designations for a packet. An Extended MAC ACL provides the hexadecimal values for each listed ethertype. The switch supports all ethertypes.
Page 574 16-12 Motorola RF Switch CLI Reference Guide Parameters 8021p<0-7> Modifies the 802.1p VLAN user priority • xx:xx:xx:xx:xx:xx/ xx:xx:xx:xx:xx:xx–Source MAC address and mask • any – Any source host • host – Exact source MAC address to match tos<0-255> Modifies the TOS bits in an IP header •...
Page 575: Example - Marking Dot1P Priority Value For 802.1Q Tagged Traffic
Extended MAC ACL Instance 16-13 type [8021q|<1-65535>| Defines an ethertype value represented as an arp|appletalk|ip|ipv6ipx|rarp| integer or keyword for well-known ethertypes (like vlan|wisp] IP, IPv6, ARP etc.) vlan <1-4095> Defines the VLAN tag ID to match dscp <0-63> Modify DSCP TOS bits in IP header •...
Page 576 16-14 Motorola RF Switch CLI Reference Guide 16.1.7 no MAC Extended ACL Config Commands Negates a command or sets its defaults Supported in the following platforms: • RFS7000 • RFS6000 Syntax no [deny|mark|permit] Negates all the syntax combinations used in deny, mark and permit designations to...
Page 577: Permit
Extended MAC ACL Instance 16-15 16.1.8 permit MAC Extended ACL Config Commands Specifies packets to forward NOTE: Use a decimal value representation of ethertypes to implement permit/deny/mark designations for a packet. An Extended MAC ACL provides the hexadecimal values for each listed ethertype. The switch supports all ethertypes.
Page 578 16-16 Motorola RF Switch CLI Reference Guide permit [<dest-IP/ Bit mask specifying the bits to match. The destination wildcard can be one of the following: Mask>|any|host <IP>] {<ICMP-type> {<ICMP-code>}} • xx:xx:xx:xx:xx:xx/ xx:xx:xx:xx:xx:xx–Destination MAC address and mask • any – Uses any available destination host •...
Page 579: Example - Permitting Wisp Traffic
Extended MAC ACL Instance 16-17 permit any any type wisp NOTE: Use the following command to attach a MAC access list to a port on a layer 2 interface: mac access-group <acl number/name> in The permit command in the MAC ACL disallows traffic based on layer 2 (data-link layer) information.
Page 580: Example - Permitting Arp Traffic
16-18 Motorola RF Switch CLI Reference Guide 16.1.8.2 Example - Permitting ARP Traffic The example below permits arp based traffic from any source MAC address to any destination MAC address: RFSwitch(config-ext-macl)#permit any any type arp RFSwitch(config-ext-macl)# 16.1.8.3 Permitting IP Traffic...
Page 581: Service
Extended MAC ACL Instance 16-19 16.1.9 service MAC Extended ACL Config Commands Invokes service commands to troubleshoot or debug instance (config-if) configurations Supported in the following platforms: • RFS7000 • RFS6000 Syntax service show cli Parameters show cli Displays running system information Example RFSwitch(config-ext-macl)#service show cli MAC Extended ACL Config mode:...
Page 582 16-20 Motorola RF Switch CLI Reference Guide +-rule-precedence +-<1-5000> [(deny|permit|mark (8021p <0-7> | tos <0-255>))(XX:XX:XX: XX:XX:XX/XX:XX:XX:XX:XX:XX | host XX:XX:XX:XX:XX:XX | any)(XX:XX:XX:XX:XX:XX/XX: XX:XX:XX:XX:XX | host XX:XX:XX:XX:XX:XX | any)(vlan <1-4095> | dot1p <0-7> |) (t ype (<1-65535> | ip | ipv6 | arp | wisp | 8021q | rarp | aarp | appleta lk | ipx ) |)(rule-precedence <1-5000>...
Page 583: Show
Extended MAC ACL Instance 16-21 16.1.10 show MAC Extended ACL Config Commands Displays current system information running on the switch Supported in the following platforms: • RFS7000 • RFS6000 SWITCH NOTE: The following commands display only for RFS6000: • power •...
Page 584 16-22 Motorola RF Switch CLI Reference Guide clock Display system clock commands Show command lists crypto encryption module debugging Debugging information outputs dhcp DHCP Server Configuration wios dataplane environment show environmental information file Display filesystem information firewall Wireless firewall Display FTP Server configuration...
Page 585 Extended MAC ACL Instance 16-23 users Display information about currently logged in users version Display software & hardware version wireless Wireless configuration commands wlan-acl wlan based acl RFSwitch(config-ext-macl)#show...
Page 586: Configuring Mac Extended Acl
16-24 Motorola RF Switch CLI Reference Guide 16.2 Configuring MAC Extended ACL MAC Extended ACLs contain rules based on the following parameters: • Source MAC address • Destination MAC address • Ethertype– accepts well known types like IP, ARP, VLAN or an integer value between 1-65535.
Page 587: Chapter 17. Dhcp Server Instance
DHCP Server Instance Use the instance to configure the DHCP server address pool associated (config-dhcp) with the switch. To move to this instance, use the command. RFSwitch(config)#ip dhcp pool <pool-name> RFSwitch(config-dhcp)# Also refer to Chapter12, section 12.1.8 ip on page 12-20 for other DHCP related configurations.
Page 588 17-2 Motorola RF Switch CLI Reference Guide Table 17.1 DHCP Server Command Summary Command Description Ref. client-name Assigns a client name page 17-10 clrscr Clears the display screen page 17-11 ddns Configures Dynamic DNS (DDNS) values page 17-12 default-router Configures a default router’s IP address...
Page 589 DHCP Server Instance 17-3 Table 17.1 DHCP Server Command Summary Command Description Ref. service Invokes service commands to troubleshoot or debug page 17-30 instance configurations (config-dhcp) show Displays the running system information page 17-31 unitcast-enable Enables unicast for DHCP page 17-34 update Controls the usage of Dynamic DNS (DDNS) page 17-33...
Page 590: Address
17-4 Motorola RF Switch CLI Reference Guide 17.1.1 address DHCP Config Commands Specifies a range of addresses for the DHCP network pool Supported in the following platforms: • RFS7000 • RFS6000 Syntax address range <low IP address> <high IP address>...
Page 591: Bootfile
DHCP Server Instance 17-5 17.1.2 bootfile DHCP Config Commands Assigns a bootfile name for the DHCP configuration on the network pool Supported in the following platforms: • RFS7000 • RFS6000 Syntax bootfile <FILE> Parameters bootfile <FILE> Sets the boot image for BOOTP clients. The file name can contain letters, numbers, dots and hyphens.
Page 592: Class
17-6 Motorola RF Switch CLI Reference Guide 17.1.3 class DHCP Config Commands Associates a DHCP class with a pool This command is used in Step 4 of Creating a DHCP User Class. The CLI prompt moves to a sub-instance .The configuration mode...
Page 593: Config-Dhcp-Class
DHCP Server Instance 17-7 3. Create a Pool named , using mode. (config)# RFSwitch(config)#ip dhcp pool WID RFSwitch(config-dhcp)# 4. Associate the DHCP class, created in Step 1 with the pool created in Step 3. The switch supports the association of 8 DHCP classes with a pool. RFSwitch(config-dhcp)#class RFS7000DHCPclass RFSwitch(config-dhcp-class)# 5.
Page 594 17-8 Motorola RF Switch CLI Reference Guide address config-dhcp-class Sets an address range for a DHCP class within a DHCP server address pool Syntax address range <low IP Address> <high IP Address> Parameters range <low IP Address> Assigns an address range for the DHCP class <high IP Address>...
Page 595: Client-Identifier
DHCP Server Instance 17-9 17.1.4 client-identifier DHCP Config Commands Assigns a name to the client-identifier A client identifier is used to reserve an IP address for a DHCP client. Supported in the following platforms: • RFS7000 • RFS6000 Syntax client-identifier <identifier> Parameters client-identifier Prepends a null character.
Page 596: Client-Name
17-10 Motorola RF Switch CLI Reference Guide 17.1.5 client-name DHCP Config Commands Adds name for DHCP clients Supported in the following platforms: • RFS7000 • RFS6000 Syntax client-name <name> Parameters client-name <name> to add a client name (the client-name domain name must not be included)
Page 597: Clrscr
DHCP Server Instance 17-11 17.1.6 clrscr DHCP Config Commands Clears the display screen Supported in the following platforms: • RFS7000 • RFS6000 Syntax clrscr Parameters None Example RFSwitch(config-dhcp)#clrscr RFSwitch(config-dhcp)#...
Page 598: Ddns
17-12 Motorola RF Switch CLI Reference Guide 17.1.7 ddns DHCP Config Commands Sets dynamic DNS parameters Supported in the following platforms: • RFS7000 • RFS6000 Syntax ddns [domainname|multiple-user-class|server|ttl] ddns domainname <name> ddns multiple-user-class ddns server <IP Address> ddns ttl <1-864000>...
Page 599 DHCP Server Instance 17-13 Example RFSwitch(config-dhcp)#ddns domainname TestDomain.com RFSwitch(config-dhcp)# RFSwitch(config-dhcp)#ddns multiple-user-class RFSwitch(config-dhcp)# RFSwitch(config-dhcp)#ddns ttl 1000 RFSwitch(config-dhcp)#...
Page 600: Default-Router
17-14 Motorola RF Switch CLI Reference Guide 17.1.8 default-router DHCP Config Commands Configures the default router or gateway IP address for the network pool. To remove the default router list, use the command. no default-router Supported in the following platforms: •...
Page 601: Dns-Server
DHCP Server Instance 17-15 17.1.9 dns-server DHCP Config Commands Sets the DNS server’s IP address available to all DHCP clients connected to the pool. Use command to remove the DNS server list. no dns-server Supported in the following platforms: • RFS7000 •...
Page 602: Domain-Name
17-16 Motorola RF Switch CLI Reference Guide 17.1.10 domain-name DHCP Config Commands Sets the domain name for the network pool. Use the command to no domain-name remove the domain name. Supported in the following platforms: • RFS7000 • RFS6000 Syntax domain-name <name>...
Page 603: End
DHCP Server Instance 17-17 17.1.11 end DHCP Config Commands Exits the current mode and moves to the PRIV EXEC mode. The prompt changes to RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000 Syntax Parameters None Example RFSwitch(config-dhcp)#end RFSwitch#...
Page 604: Exit
17-18 Motorola RF Switch CLI Reference Guide 17.1.12 exit DHCP Config Commands Ends the current mode and moves to the previous mode (GLOBAL-CONFIG). The prompt changes to RFSwitch#(config)# Supported in the following platforms: • RFS7000 • RFS6000 Syntax exit Parameters...
Page 605: Hardware-Address
DHCP Server Instance 17-19 17.1.13 hardware-address DHCP Config Commands Reserves an IP address (manually) based on a DHCP client’s hardware address. Use the command to remove this from the DHCP pool. hardware-address Supported in the following platforms: • RFS7000 • RFS6000 Syntax hardware-address <MAC>...
Page 606: Help
17-20 Motorola RF Switch CLI Reference Guide 17.1.14 help DHCP Config Commands Displays the system’s interactive help in HTML format Supported in the following platforms: • RFS7000 • RFS6000 Syntax help Parameters None Example RFSwitch(config-dhcp)#help CLI provides advanced help feature.
Page 607: Host
DHCP Server Instance 17-21 17.1.15 host DHCP Config Commands Defines a fixed IP address for the host in dotted decimal format Use the command to remove the host from the DHCP pool. no host Supported in the following platforms: • RFS7000 •...
Page 608: Lease
17-22 Motorola RF Switch CLI Reference Guide 17.1.16 lease DHCP Config Commands Sets a valid lease time for the IP address used by DHCP clients in the network pool Supported in the following platforms: • RFS7000 • RFS6000 Syntax lease [{<0-365> <0-23> <0-59>}|infinite]...
Page 609 DHCP Server Instance 17-23 NOTE: The factory default lease period for a pool – network pool or host pool is configured as 1 day. Example RFSwitch(config-dhcp)#lease 1 0 0 RFSwitch(config-dhcp)# RFSwitch(config)#show running-config ..........................ip dhcp pool Test4lease host 3.33.33.3 client-name test4lease client-identifier tested4lease ..........
Page 610: Netbios-Name-Server
17-24 Motorola RF Switch CLI Reference Guide 17.1.17 netbios-name-server DHCP Config Commands Sets the netbios-name server’s IP address Supported in the following platforms: • RFS7000 • RFS6000 Syntax netbios-name-server <IP> Parameters netbios-name-server <IP> Defines the NetBIOS (WINS) name server • <IP > – Sets the NetBIOS name server's IP...
Page 611: Netbios-Node-Type
DHCP Server Instance 17-25 17.1.18 netbios-node-type DHCP Config Commands Defines the netbios-node type Supported in the following platforms: • RFS7000 • RFS6000 Syntax netbios-node-type [b-node|h-node|m-node|p-node] Parameters netbios-node-type Defines the NetBIOS (WINS) name servers [b-node | h-node | • b-node – Broadcast node m-node | p-node •...
Page 612: Network
17-26 Motorola RF Switch CLI Reference Guide 17.1.19 network DHCP Config Commands Sets the network pool’s IP address This address maps the current DHCP pool with a specific network. Supported in the following platforms: • RFS7000 • RFS6000 Syntax network [<IP>|<IP/Mask>] Parameters network [<IP>|<IP/Mask>]...
Page 613: Next-Server
DHCP Server Instance 17-27 17.1.20 next-server DHCP Config Commands Sets the IP address of the next server in the boot process Supported in the following platforms: • RFS7000 • RFS6000 Syntax next-server <IP> Parameters next-server <IP> Sets the next server in boot process •...
Page 614 17-28 Motorola RF Switch CLI Reference Guide 17.1.21 no DHCP Config Commands Negates a command or sets its defaults Supported in the following platforms: • RFS7000 • RFS6000 Syntax no [address|bootfile|class|client-identifier|client-name| ddns|default-router|dns-server|domain-name|hardware-address| host|lease|netbios-name-server|netbios-node-type|network| next-server|option|update|unicast-table] Parameters command negates any command associated with it. Wherever required, use the same parameters associated with the command getting negated.
Page 615: Option
DHCP Server Instance 17-29 17.1.22 option DHCP Config Commands Defines the DHCP option used in DHCP pools Supported in the following platforms: • RFS7000 • RFS6000 Syntax option <option-name> [<IP>|<option-name>] Parameters option name [<IP>| Sets raw DHCP options <option-name>] • <option-name> – Sets the name of the DHCP option •...
Page 616: Service
17-30 Motorola RF Switch CLI Reference Guide 17.1.23 service DHCP Config Commands Invokes service commands to troubleshoot or debug instance (config-dhcp) configurations Supported in the following platforms: • RFS7000 • RFS6000 Syntax service show cli Parameters show cli Displays the CLI tree of the current mode...
Page 617: Show
DHCP Server Instance 17-31 17.1.24 show DHCP Config Commands Displays current system information Supported in the following platforms: • RFS7000 • RFS6000 SWITCH NOTE: The following commands display only for RFS6000: • power The following commands display only for RFS7000: port-channel •...
Page 618 17-32 Motorola RF Switch CLI Reference Guide firewall Wireless firewall Display FTP Server configuration history Display the session command history interfaces Interface status Internet Protocol (IP) ldap LDAP server licenses Show any installed licenses logging Show logging configuration and buffer...
Page 619: Update
DHCP Server Instance 17-33 17.1.25 update DHCP Config Commands Controls the usage of the DDNS service Supported in the following platforms: • RFS7000 • RFS6000 Syntax update dns override Parameters update dns override Controls the usage of the DDNS service •...
Page 620: Unitcast-Enable
17-34 Motorola RF Switch CLI Reference Guide 17.1.26 unitcast-enable DHCP Config Commands Enables unicast for DHCP offer and DHCP Ack Supported in the following platforms: • RFS7000 • RFS6000 Syntax unicast-enable Parameters None Example RFSwitch(config-dhcp)#unicast-enable RFSwitch(config-dhcp)#...
Page 621: Configuring The Dhcp Server Using Switch Cli
DHCP Server Instance 17-35 17.2 Configuring the DHCP Server using Switch CLI The switch DHCP configuration is conducted by creating pools and mapping them to L3 interfaces (SVI). • A Network pool is the pool with “include” ranges. When the network pool is mapped to a L3 interface, DHCP clients requesting IPs from the L3 interface get an IP from the configured range.
Page 622: Creating Network Pool
17-36 Motorola RF Switch CLI Reference Guide 17.2.1 Creating network pool To create a network pool: 1. Create a DHCP server dynamic address pool. RFSwitch(config)#ip dhcp pool test 2. Map the DHCP pool to the network pool. RFSwitch(config-dhcp)#network 192.168.0.0/24 3. Add the address range for the dynamic pool.
Page 623: Creating A Host Pool
DHCP Server Instance 17-37 17.2.2 Creating a Host Pool To create a host pool: 1. Create a DHCP server host address pool. RFSwitch(config)#ip dhcp pool hostpool 2. Assign the client name of the host for which static allocation is required. RFSwitch(config-dhcp)#client-name linuxbox 3.
Page 624: Troubleshooting Dhcp Configuration
17-38 Motorola RF Switch CLI Reference Guide 17.2.3 Troubleshooting DHCP Configuration 1. The DHCP Server is disabled by default. Use the following command to enable the DHCP Server: RFSwitch(config)#service dhcp This command administratively enables the DHCP server. If the DHCP configuration is incomplete, it is possible the DHCP server will be disabled even after the execution of this command.
Page 625 DHCP Server Instance 17-39 5. A host pool should have its corresponding network pool configured, otherwise the host pool is useless. The fixed IP address configured in the host pool must be in the subnet of the corresponding network pool. 6.
Page 626: Creating A Dhcp Option
17-40 Motorola RF Switch CLI Reference Guide 17.2.4 Creating a DHCP Option To create a DHCP option: 1. To create a non standard option named “tftp-server”. RFSwitch(config)#ip dhcp option tftp-server 183 ip 2. Enter the DHCP pool —”test”. RFSwitch(config)#ip dhcp pool test 3.
Page 627: Chapter 18. Dhcp Class Instance
DHCP Class Instance Use the (config-dhcpclass) instance to configure DHCP user classes. The switch supports a maximum of 8 user classes per DHCP class. To navigate to this instance use the command: RFSwitch(config)#ip dhcp class <class-name> RFSwitch(config-dhcpclass)# Refer to ip on page 12-10 DHCP Class Instance on page 18-1 for other DHCP related configurations.
Page 628 18-2 Motorola RF Switch CLI Reference Guide Table 18.1 DHCP Server Class Config Commands Command Description Ref. Negates a command or sets its defaults page 18-8 option Defines DHCP Server options page 18-9 service Invokes service commands to troubleshoot or debug...
Page 629: Clrscr
DHCP Class Instance 18-3 18.1.1 clrscr DHCP Server Class Config Commands Clears the display screen Supported in the following platforms: • RFS7000 • RFS6000 Syntax clrscr Parameters None Example RFSwitch(config-dhcpclass)#clrscr RFSwitch(config-dhcpclass)#...
Page 630: End
18-4 Motorola RF Switch CLI Reference Guide 18.1.2 end DHCP Server Class Config Commands Ends and exits the current mode and moves to the PRIV EXEC mode. The prompt changes RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000...
Page 631: Exit
DHCP Class Instance 18-5 18.1.3 exit DHCP Server Class Config Commands Ends the current mode and moves to the previous mode (GLOBAL-CONFIG). The prompt changes to RFSwitch(config)# Supported in the following platforms: • RFS7000 • RFS6000 Syntax exit Parameters None Example RFSwitch(config-dhcpclass)#exit RFSwitch(config)#...
Page 632: Help
18-6 Motorola RF Switch CLI Reference Guide 18.1.4 help DHCP Server Class Config Commands Displays the system’s interactive help in HTML format Supported in the following platforms: • RFS7000 • RFS6000 Syntax help Parameters None Example RFSwitch(config-dhcpclass)#help CLI provides advanced help feature.
Page 633: Multiple-User-Class
DHCP Class Instance 18-7 18.1.5 multiple-user-class DHCP Server Class Config Commands Enables the multiple-user-class option Supported in the following platforms: • RFS7000 • RFS6000 Syntax multiple-user-class Parameters None Example RFSwitch(config-dhcpclass)#multiple-user-class RFSwitch(config-dhcpclass)#...
Page 634 18-8 Motorola RF Switch CLI Reference Guide 18.1.6 no DHCP Server Class Config Commands Negates a command or sets its defaults Supported in the following platforms: • RFS7000 • RFS6000 Syntax no [multiple-user-class|option] np option user-class <class-name> Parameters multiple-user-class Disables the multiple user class option...
Page 635: Creating A Dhcp User Class
DHCP Class Instance 18-9 18.1.7 option DHCP Server Class Config Commands Specifies a value for DHCP user class options Supported in the following platforms: • RFS7000 • RFS6000 Syntax option user-class <class-name> Parameters user-class <class-name> Creates/modifies DHCP server user class options •...
Page 636 18-10 Motorola RF Switch CLI Reference Guide 4. Associate the DHCP class, created in Step 1 with the pool created in Step 3. The switch supports the association of 8 DHCP classes with a pool. RFSwitch(config-dhcp)#class RFS7000DHCPclass RFSwitch(config-dhcp-class)# 5. The switch moves to a new mode (config-dhcp-class). Use this mode to add an address range for the DHCP class associated with the pool.
Page 637: Service
DHCP Class Instance 18-11 18.1.8 service DHCP Server Class Config Commands Invokes service commands to troubleshoot or debug instance configurations (config-if) Supported in the following platforms: • RFS7000 • RFS6000 Syntax service show cli Parameters None Example RFSwitch(config-dhcpclass)#service show cli DHCP Server Class Config mode: +-clrscr [clrscr] +-do...
Page 638: Show
18-12 Motorola RF Switch CLI Reference Guide 18.1.9 show DHCP Server Class Config Commands Displays current system information Supported in the following platforms: • RFS7000 • RFS6000 SWITCH NOTE: The following commands display only for RFS6000: • power The following commands display only for RFS7000 : •...
Page 639 DHCP Class Instance 18-13 dhcp DHCP Server Configuration environment show environmental information file Display filesystem information firewall Wireless firewall Display FTP Server configuration history Display the session command history interfaces Interface status Internet Protocol (IP) ldap LDAP server licenses Show any installed licenses logging Show logging configuration and buffer...
Page 640 18-14 Motorola RF Switch CLI Reference Guide wlan-acl wlan based acl RFSwitch(config-dhcpclass)#show RFSwitch(config-dhcpclass)#show ip dhcp binding MAC/Client-Id Expiry Time ------------- ----------- RFSwitch(config-dhcpclass)# RFSwitch(config-dhcpclass)#show ip dhcp class RFS7000DHCPclass ip dhcp class DHCPclass option user-class MC800 RFSwitch(config-dhcpclass)# RFSwitch(config-dhcpclass)#show ip dhcp pool WID...
Page 641: Chapter 19. Radius Server Instance
Radius Server Instance Use the instance to configure local RADIUS server parameters. (config-radsrv) Local (Onboard) RADIUS server commands are listed under this mode. To navigate to this instance, use the command: RFSwitch(config)#radius-server local RFSwitch(config-radsrv)# 19.1 Radius Configuration Commands Table 19.1 summarizes the Global Config command: Table 19.1 RADIUS Server Command Summary Command...
Page 642 19-2 Motorola RF Switch CLI Reference Guide Table 19.1 RADIUS Server Command Summary Command Description Ref. group Sets RADIUS user group parameters. page 19-10 NOTE: This command navigates to another sub-instance called with config-radsrv-group its own command summary. help Displays the interactive help system...
Page 643: Authentication
Radius Server Instance 19-3 19.1.1 authentication Radius Configuration Commands Configures the authentication scheme used with the RADIUS server Supported in the following platforms: • RFS7000 • RFS6000 Syntax authentication [data-source|eap-auth-type] authentication data-source [ldap|local] authentication eap-auth-type [all|peap-gtc| peap-mschapv2|tls|ttls-md5|ttls-mschapv2|ttls-pap] Parameters authentication Configures authentication data-source [ldap|local] •...
Page 644 19-4 Motorola RF Switch CLI Reference Guide Usage Guidelines to service RADIUS requests received from mobile units. eap-auth-type Setting ensures eap-auth-type peap-gtc/peap-mschapv2 service only. peap-gtc/peap-mschapv2 Similarly, setting eap-auth-type ttls-md5/ttls-mschapv2/ttls-pap services all ttls authentication requests from mobile units. Setting ensures only tls authentication is serviced.
Page 645 Radius Server Instance 19-5 19.1.2 ca Radius Configuration Commands Configures CA (Certificate Authority) parameters Supported in the following platforms: • RFS7000 • RFS6000 Syntax ca trust-point <trustpoint-name> Parameters trust-point Defines the trustpoint configuration <trustpoint-name> • <trustpoint-name> – Displays the existing trustpoint name Usage Guidelines Configures the trustpoint used by the local RADIUS server.
Page 646: Clrscr
19-6 Motorola RF Switch CLI Reference Guide 19.1.3 clrscr Radius Configuration Commands Clears the display screen Supported in the following platforms: • RFS7000 • RFS6000 Syntax clrscr Parameters None Example RFSwitch(config-radsrv)#clrscr RFSwitch(config-radsrv)#...
Page 647: Crl-Check
Radius Server Instance 19-7 19.1.4 crl-check Radius Configuration Commands Enables a Certificate Revocation List (CRL) check To enable the certificate revocation list, ensure the is loaded using a crl list command. crypto pki import <trustpoint-name> crl Supported in the following platforms: •...
Page 648: End
19-8 Motorola RF Switch CLI Reference Guide 19.1.5 end Radius Configuration Commands Ends and exits the current mode and moves to the PRIV EXEC mode. The prompt changes RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000 Syntax Parameters...
Page 649: Exit
Radius Server Instance 19-9 19.1.6 exit Radius Configuration Commands Ends the current mode and moves to the previous mode (GLOBAL-CONFIG). The prompt changes to RFSwitch(config)# Supported in the following platforms: • RFS7000 • RFS6000 Syntax exit Parameters None Example RFSwitch(config-radsrv)#exit RFSwitch(config)#...
Page 650: Group
19-10 Motorola RF Switch CLI Reference Guide 19.1.7 group Radius Configuration Commands Configures RADIUS user groups The CLI moves to the sub-instance to create a new group. config-radsrv-group The prompt changes from RFSwitch(config-radsrv)# RFSwitch(config-radsrv-group)# Supported in the following platforms: • RFS7000 •...
Page 651: Clrscr
Radius Server Instance 19-11 Table 19.2 RADIUS User Group Command Summary Command Description Ref. show Displays running system information page 19-19 19.1.7.1 clrscr group Clears the display screen Syntax clrscr Parameters None Example RFSwitch(config-radsrv-group)#clrscr RFSwitch(config-radsrv-group)# 19.1.7.2 end group Ends and exits the current mode and changes to the PRIV EXEC mode. The prompt changes RFSwitch# Syntax Parameters...
Page 652: Group
19-12 Motorola RF Switch CLI Reference Guide Syntax exit Parameters None Example RFSwitch(config-radsrv-group)#exit RFSwitch(config-radsrv)#group 19.1.7.4 group group Establishes RADIUS user group parameters. This command creates a group within the existing RADIUS group Syntax group <group-name> Parameters <group-name> Defines the RADIUS group name...
Page 653: Help
Radius Server Instance 19-13 Usage Guidelines Creates a guest group. The guest user created using can only be part of the rad-user guest group. Example RFSwitch(config-radsrv-group)#guest-group enable RFSwitch(config-radsrv-group)# 19.1.7.6 help group Displays the system’s interactive help in HTML format. Syntax help Parameters None...
Page 654 19-14 Motorola RF Switch CLI Reference Guide 19.1.7.7 no group Use this command to negate a command or set its defaults Syntax no [policy|rad-user|rate-limit] no policy [day|time|vlan|wlan] no policy wlan [<1-256>|all] <1-256> no rate-limit [wired-to-wireless|wireless-to-wired] Parameters policy [day|time|vlan| Defines the RADIUS group access policy configuration wlan] •...
Page 655: Policy
Radius Server Instance 19-15 RFSwitch(config-radsrv-group)# RFSwitch(config-radsrv-group)#no policy vlan RFSwitch(config-radsrv-group)# RFSwitch(config-radsrv-group)#no policy wlan 2 5 RFSwitch(config-radsrv-group)# RFSwitch(config-radsrv-group)#no rad-user all RFSwitch(config-radsrv-group)# RFSwitch(config-radsrv-group)#no service radius %%Info: Radius service stopped... RFSwitch(config-radsrv-group)# 19.1.7.8 policy group Sets the authorization policies for a particular group (like day/time of access, WLANs allowed etc.) NOTE: A user-based VLAN is effective only if dynamic VLAN authorization is enabled for the WLAN (as defined within the WLAN...
Page 656 19-16 Motorola RF Switch CLI Reference Guide Parameters Day of access policy configuration [all|su|mo|tu|we|th|fr|sa| • all – All days (from Sunday to Saturday) weekdays] • su – Sunday • mo – Monday • tu – Tuesday • we – Wednesday •...
Page 657: Rad-User
Radius Server Instance 19-17 RFSwitch(config-radsrv-group)#policy wlan 20 21 22 23 RFSwitch(config-radsrv-group)# 19.1.7.9 rad-user Radius Configuration Commands Adds an existing RADIUS user to this group. If the RADIUS user is not available in the Onboard RADIUS server’s database, create a new RADIUS user using the rad-user command from within the mode.
Page 658: Service
19-18 Motorola RF Switch CLI Reference Guide wireless-to-wired Up link direction from wireless client to network <100-100000> • <100-100000> – Rate in the range of <100-100000> kbps Usage Guidelines to remove the [no] rate-limit [wired-to-wireless|wireless-to-wired] rate limit applied to the group.
Page 659: Show
Radius Server Instance 19-19 +-enable [guest-group enable] +-help [help] ......................................... RFSwitch(config-radsrv-group)# 19.1.7.12 show Radius Configuration Commands Displays current system information running on the switch Syntax show <paramater> Parameters Displays the parameters for which information can be viewed using the show command Example RFSwitch(config-radsrv-group)#show ? access-list...
Page 660 19-20 Motorola RF Switch CLI Reference Guide Internet Protocol (IP) ldap LDAP server licenses Show any installed licenses logging Show logging configuration and buffer Internet Protocol (IP) mac-name Displays the co nfigured MAC names mac-address-table Display MAC address table management...
Page 661: Example-Creating A Group
Radius Server Instance 19-21 19.1.7.13 Example–Creating a Group sub-instance is explained in the example below: (config-radsrv-group) 1. Create a group called Sales in the local RADIUS server database. RFSwitch(config-radsrv)#group sales 2. Check the RADIUS user group’s configuration. RFSwitch(config-radsrv-group)#? RADIUS user group configuration commands: 3.
Page 662 19-22 Motorola RF Switch CLI Reference Guide Radius client shared secret RFSwitch(config-radsrv)#nas 10.10.10.0/24 key ? Password is specified UNENCRYPTED Password is encrypted with password-encryption secret LINE The secret(client shared secret), upto 32 characters RFSwitch(config-radsrv)#nas 10.10.10.0/24 key 0 very-secret!! 8. Use to add a realm name for the group.
Page 663: Help
Radius Server Instance 19-23 19.1.8 help Radius Configuration Commands Displays the system’s interactive help in HTML format Supported in the following platforms: • RFS7000 • RFS6000 Syntax help Parameters None Example RFSwitch(config-radsrv)#help? help Description of the interactive help system RFSwitch(config-radsrv)#help CLI provides advanced help feature.
Page 664: Ldap-Server
19-24 Motorola RF Switch CLI Reference Guide 19.1.9 ldap-server Radius Configuration Commands Sets the LDAP server configuration It uses the existing external database (active directory with the onboard RADIUS server) instead of the local database on the switch. Supported in the following platforms: •...
Page 665 Radius Server Instance 19-25 Parameters ldap-server primary host Sets the primary LDAP server’s configuration <IP> port <1-65535> • host < IP> – Sets the LDAP server’s IP configuration login <user-name> • <IP> – Defines the LDAP server IP address bind-dn •...
Page 666 19-26 Motorola RF Switch CLI Reference Guide ldap-server secondary host Defines the secondary LDAP server’s configuration. <IP> port <1-65535> login <user-name> bind-dn <distinguished-name> base-dn <distinguished-name> passwd {<password>|<password> |<password>} passwd-attr <password- attribute> group-attr <group-attribute> group-filter <group-filter> group-membership <group> net-timeout <1-10> Usage Guidelines...
Page 667: Nas
Radius Server Instance 19-27 19.1.10 nas Radius Configuration Commands Sets the configuration of the RADIUS client Supported in the following platforms: • RFS7000 • RFS6000 Syntax nas <IP/Mask> key [0<key>|2<key>|<key>] Parameters <IP/Mask> Sets the RADIUS client’s IP address [0<key>|2<key>|<key>] Sets the RADIUS client’s shared key •...
Page 668 19-28 Motorola RF Switch CLI Reference Guide 19.1.11 no Radius Configuration Commands Negates a command or sets its defaults Supported in the following platforms: • RFS7000 • RFS6000 Syntax no [authentication|ca|crl-check|group|ldap-server|nas|proxy| rad-user|server] Parameters None Example RFSwitch(config-radsrv)#no authentication data-source RFSwitch(config-radsrv)# RFSwitch(config-radsrv)#no ca trust-point...
Page 669: Proxy
Radius Server Instance 19-29 19.1.12 proxy Radius Configuration Commands Configures a proxy RADIUS server based on the realm/suffix Supported in the following platforms: • RFS7000 • RFS6000 Syntax proxy [realm|retry-count|retry-delay] proxy relam <relam-name> server <IP> port <1024-65535> secret{<secret>|<secret>|<secret>} Parameters relam <relam-name> The realm name is a string of up to 50 characters server <IP>...
Page 670 19-30 Motorola RF Switch CLI Reference Guide Example RFSwitch(config-radsrv)#proxy realm Test server 10.10.10.1 port 2220 secret "Very Very Secret !!!" RFSwitch(config-radsrv)# RFSwitch(config-radsrv)#proxy retry-count 5 RFSwitch(config-radsrv)# RFSwitch(config-radsrv)#proxy retry-delay 8 RFSwitch(config-radsrv)#...
Page 671: Rad-User
Radius Server Instance 19-31 19.1.13 rad-user Radius Configuration Commands Sets RADIUS user parameters Supported in the following platforms: • RFS7000 • RFS6000 Syntax rad-user <user-name> rad-user <user-name> [access|password|privilege] access [console|ssh|telnet|web] rad-user <user-name> rad-user <user-name> password [0<password>|2<password> |<password>] group guest expiry-time <HH:MM> expiry-date <MM:DD:YYYY>...
Page 672 19-32 Motorola RF Switch CLI Reference Guide password Sets the RADIUS user password [0<password>|2<passwo • 0 <password> – Defines the password as rd>|<password>] group UNENCRYPTED guest expiry-time • 2 <password> – The password is encrypted with a <HH:MM> expiry-date password encryption secret <MM:DD:YYYY>...
Page 673 Radius Server Instance 19-33 privilege Set management user access privilege [helpdesk|monitor| • helpdesk nwadmin|superuser| [monitor|nwadmin|superuser|sysadmin|webadmin]– sysadmin|webadmin] helpdesk (troubleshooting) access • monitor [helpdesk|nwadmin|superuser|sysadmin|webadmin]– Monitor (read-only) access • nwadmin [helpdesk|monitor|superuser|sysadmin|webadmin]– Network (wired&wireless) admin access superuser[helpdesk|monitor|nwadmin|sysadmin|webad min– Superuser (root) access • sysadmin [helpdesk|monitor|nwadmin|superuser|webadmin] –...
Page 674: Server
19-34 Motorola RF Switch CLI Reference Guide 19.1.14 server Radius Configuration Commands Configures server certificate parameters used by a RADIUS server The server certificate is a part of a trustpoint created using crypto on page 5-22. Supported in the following platforms: •...
Page 675: Service
Radius Server Instance 19-35 19.1.15 service Radius Configuration Commands Invokes the service commands to troubleshoot or debug the instance (config-radsrv) configuration This command is also used to enable the RADIUS server. Supported in the following platforms: • RFS7000 • RFS6000 Syntax service show cli Parameters...
Page 676: Show
19-36 Motorola RF Switch CLI Reference Guide 19.1.16 show Radius Configuration Commands Displays current system information running on the switch Supported in the following platforms: • RFS7000 • RFS6000 SWITCH NOTE: The following commands display only for RFS6000: • power The following commands display only for RFS7000 : •...
Page 677 Radius Server Instance 19-37 environment show environmental information file Display filesystem information firewall Wireless firewall Display FTP Server configuration history Display the session command history interfaces Interface status Internet Protocol (IP) ldap LDAP server licenses Show any installed licenses logging Show logging configuration and buffer Internet Protocol (IP)
Page 678: Ldap-Group-Verification
19-38 Motorola RF Switch CLI Reference Guide 19.1.17 ldap-group-verification Radius Configuration Commands Displays ldap group verification settings • RFS7000 • RFS6000 Syntax ldap-group-verification [disable|enable] Parameters ldap-group-verification Displays ldap group verification settings [disable|enable] • disable – Disables group verification • enable – Enables group verification...
Page 679: Chapter 20. Wireless Instance
Wireless Instance Use the instance to configure local RADIUS server parameters (config-wireless) associated with the switch. To navigate to this instance, use the command from the Global Config mode. RFSwitch(config)#wireless RFSwitch(config-wireless)# 20.1 Wireless Configuration Commands This table summarizes commands: (config-wireless) Command Description Ref.
Page 680 20-2 Motorola RF Switch CLI Reference Guide Command Description Ref. ap-containment Defines the Rogue AP containment page 20-13 configuration ap-detection Defines the AP detection configuration page 20-14 ap-image Defines the path to upload the new image over page 20-16 an AP...
Page 681 Wireless Instance 20-3 Command Description Ref. dhcp-one-portal- Enables forwarding of DHCP responses to one page 20-37 forward portal. dhcp-sniff-state Records mobile unit DHCP state information page 20-38 dot11-shared-key-auth Enables support for 802.11 shared key page 20-39 authentication Ends the current mode and moves to the EXEC page 20-40 mode exit...
Page 682 Displays running system information page 20-97 smart-rf Config Smart-RF Management Parameters page 20-100 smart-scan-channels Specify a list channels to motorola clients to page 20-101 perform smart-scan wlan Sets WLAN related parameters page 20-102 wlan-bw-allocation Allocates radio bandwidth (per WLAN)
Page 683: Aap
Wireless Instance 20-5 20.1.1 aap Wireless Configuration Commands Defines the AAP configuration Supported in the following platforms: • RFS7000 • RFS6000 The number of AAP’s supported differ from switch to switch. • RFS7000 – Supports up to 256 AAP’s • RFS6000 – Supports up to 64 AAP’s Syntax aap [aap-version|auto-upgrade|config-apply|fwupdate] aap aap-version [aap5131|aap7131] <version-number>...
Page 684 20-6 Motorola RF Switch CLI Reference Guide config-apply Applies AAP configuration settings [def-delay|mesh-delay] • def-delay – Sets the default time to delay before <30-10000> applying AAP configuration • <30 -10000> – Set the delay time (in seconds) • mesh-delay – Defines the interval to delay before applying AAP configuration to Mesh APs •...
Page 685: Admission-Control
Wireless Instance 20-7 20.1.2 admission-control Wireless Configuration Commands Enable admission control for voice traffic across all radios Supported in the following platforms: • RFS7000 • RFS6000 Syntax admission-control voice enable Parameters voice enable Enables admission control for voice on all radios. Usage Guidelines to disable Admission Control for voice {no} admission-control voice enable...
Page 686: Adopt-Unconf-Radio
20-8 Motorola RF Switch CLI Reference Guide 20.1.3 adopt-unconf-radio Wireless Configuration Commands Adopts a radio (even if not yet configured). Default templates are used for configuring the adopted radio Supported in the following platforms: • RFS7000 • RFS6000 Syntax adopt-unconf-radio enable...
Page 687: Adoption-Pref-Id
Wireless Instance 20-9 20.1.4 adoption-pref-id Wireless Configuration Commands Preference identifier for the switch All radios configured with this preference identifier are more likely to be adopted by this switch. Supported in the following platforms: • RFS7000 • RFS6000 Syntax adoption-pref-id <pref-id> Parameters <pref-id>...
Page 688 20-10 Motorola RF Switch CLI Reference Guide 20.1.5 ap Wireless Configuration Commands Defines the name, location and other parameters of access ports Supported in the following platforms: • RFS7000 • RFS6000 Syntax ap [<ap-index>|<ap-index-list>|<MAC>] [adoption-policy| country-code|location|name|secure-mode|secure-mode-staging] ap <ap-index> adoption-policy [allow|deny] ap <ap-index>...
Page 689 Wireless Instance 20-11 Parameters <ap-index> Sets a single AP index. Use the show wireless ap [adoption-policy| command to view the AP’s index value. country-code|location| • adoption-policy [allow|deny]– Specifies adoption policy name|secure-code| • allow – Allow adoption secure-mode-stagging] • deny – Deny adoption •...
Page 690 20-12 Motorola RF Switch CLI Reference Guide • secure-mode-staging enable – WISPe secure mode staging • enable – Configure secure-mode staging to a set of APs (specified by LIST). The AP's MAC, and staging mode will be saved in the running configuration.
Page 691: Ap-Containment
Wireless Instance 20-13 20.1.6 ap-containment Wireless Configuration Commands Sets the rogue AP containment parameters Supported in the following platforms: • RFS7000 • RFS6000 Syntax ap-containment [add <MAC>|enable|interval <interval>) Parameters add <MAC> Adds an AP’s MAC Address <MAC> into the rogue AP containment list.
Page 692: Ap-Detection
20-14 Motorola RF Switch CLI Reference Guide 20.1.7 ap-detection Wireless Configuration Commands Configures access port detection parameters Supported in the following platforms: • RFS7000 • RFS6000 Syntax ap-detection [approved|enable|mu-assisted-scan|timeout] ap-detection approved add <list-index> [<MAC>|any] ap-detection enable ap-detection mu-assisted-scan [enable|refresh <refresh- period>]...
Page 693 Wireless Instance 20-15 ap-detection timeout Sets the amount of time (in seconds ) an AP remains in the [approved|unapproved] list after it is no longer seen <timeout> • approved <timeout> – The timeout <timeout> in seconds for approved APs. • unapproved <timeout> – The timeout <timeout> in seconds for unapproved APs Example RFSwitch(config-wireless)#ap-detection enable...
Page 694: Ap-Image
20-16 Motorola RF Switch CLI Reference Guide 20.1.8 ap-image Wireless Configuration Commands Defines the path to upload the new image over an AP Supported in the following platforms: • RFS7000 • RFS6000 Syntax ap-image [ap100|ap300-ids-sensor|ap300-wisp|ap300-wispe| ap4131|ap5131|ap7131|revert-ap4131] <file-path> Parameters [ap100| The interface to upload new AP image. The following APs...
Page 695: Ap-Ip
Wireless Instance 20-17 20.1.9 ap-ip Wireless Configuration Commands Modifies the static IP address for an access port Supported in the following platforms: • RFS7000 • RFS6000 Syntax ap-ip [<AP-list/MAC>|default-ap] ap-ip <AP-list/MAC> [static-ip|switch-ip] ap-ip <AP-list/MAC> static-ip <IP/Mask> <gateway-IP> ap-ip <AP-list/MAC> switch-ip [add <IP>| delete [<IP>|<IP-index>]|<IP>|set-default] ap-ip default-ap [add <IP address>|delete [<IP|<IP-index>]| <IP address>)|set-default]...
Page 696 20-18 Motorola RF Switch CLI Reference Guide default-ap switch-ip [ Sets the default static switch IP address add <IP-list>| • switch-ip – Static switch IP address delete [<IP-index>|<IP>]| • add – Adds a static switch IP address set-default] • delete[<IP-index>|<IP>] – Deletes a static switch IP address •...
Page 697: Ap-Standby-Attempts-Threshold
Wireless Instance 20-19 20.1.10 ap-standby-attempts-threshold Wireless Configuration Commands Sets the number of attempts after which the standby switch starts adopting APs. Supported in the following platforms: • RFS7000 • RFS6000 Syntax ap-standby-attempts-threshold <attempts> Parameters <attempts> Sets the number of attempts to <attempts> in the range 5–200.
Page 698: Ap-Timeout
20-20 Motorola RF Switch CLI Reference Guide 20.1.11 ap-timeout Wireless Configuration Commands Changes the default inactivity timeout for access ports Supported in the following platforms: • RFS7000 • RFS6000 Syntax ap-timeout <index> <timeout> Parameters • <index> – Access-ports identified by a single index or by <index>...
Page 699: Ap-Udp-Port
Wireless Instance 20-21 20.1.12 ap-udp-port Wireless Configuration Commands Configures the UDP port for layer 3 adoption of APs You also need to configure the DHCP server providing the APs the same parameter. Supported in the following platforms: • RFS7000 • RFS6000 Syntax ap-udp-port <port>...
Page 700: Auto-Select-Channels
20-22 Motorola RF Switch CLI Reference Guide 20.1.13 auto-select-channels Wireless Configuration Commands Specifies a list of channels that will be used when automatic channel scan (ACS) and dynamic frequency selection (DFS) Supported in the following platforms: • RFS7000 • RFS6000 Syntax auto-select-channels [11a|11bg] [<channel-list>|...
Page 701: Broadcast-Tx-Speed
Wireless Instance 20-23 20.1.14 broadcast-tx-speed Wireless Configuration Commands Configure the rate at which broadcast and multicast traffic is transmitted between the switch and mobile unit Supported in the following platforms: • RFS7000 • RFS6000 Syntax broadcast-tx-speed [range|throughput] Parameters range Uses a lowest basic rate, but provides the maximum range throughput Uses a highest basic rate, but provides the maximum throughput (default)
Page 702: Client
20-24 Motorola RF Switch CLI Reference Guide 20.1.15 client Wireless Configuration Commands Use this command to configure a wireless client This command creates an exclude-list or include list. Creating a list moves the user to a new mode config-wireless-client-list Refer section config-wireless-client-list Commands on page 20-26 command summary.
Page 703: Configuring A Client
Wireless Instance 20-25 20.1.15.1 Configuring a Client Refer to the configurations below to: • Create an exclude list. RFSwitch(config-wireless)#client exclude-list protected-hosts RFSwitch(config-wireless-client-list)# • Add a host entry into the exclude list. RFSwitch(config-wireless-client-list)# station printers 00:00:AA:DD:EE:11/00:00:FF:DD:EE:11 RFSwitch(config-wireless-client-list)# station testing-host1 00:11:AA:03:1B:FE • Associate the exclude list to a WLAN. RFSwitch(config-wireless-client-list)# wlan 1 •...
Page 704: Config-Wireless-Client-List Commands
20-26 Motorola RF Switch CLI Reference Guide 20.1.15.2 config-wireless-client-list Commands to enter the ( (config-wireless)# client config-wireless-client-list) instance. Use this instance, to create an exclude list or include list. This table summarizes commands: config-wireless-client-list Command Description clrscr Clears the display screen...
Page 705 Wireless Instance 20-27 Parameters <host-name> Defines an index for this host entry in the client list. The [<MAC>|<MAC/Mask>] host station name <host-name> must be of size 1-21 characters. • <MAC> –Sets the MU mac address in AA-BB-CC-DD-EE- FF or AA:BB:CC:DD:EE:FF or AABB.CCDD.EEFF format. •...
Page 706: Clrscr
20-28 Motorola RF Switch CLI Reference Guide 20.1.16 clrscr Wireless Configuration Commands Clears the display screen Supported in the following platforms: • RFS7000 • RFS6000 Syntax clrscr Parameters None Example RFSwitch(config-wireless)#clrscr RFSwitch(config-wireless)#...
Page 707: Cluster-Master-Support
Wireless Instance 20-29 20.1.17 cluster-master-support Wireless Configuration Commands Sets the parameters for cluster master support This is required for cluster level functions. Supported in the following platforms: • RFS7000 • RFS6000 Syntax cluster-master-support enable Parameters enable Enables the cluster master support. This is required for cluster level functions.
Page 708: Convert-Ap
20-30 Motorola RF Switch CLI Reference Guide 20.1.18 convert-ap Wireless Configuration Commands Changes the mode of operation of an AP to either sensor or standalone Supported in the following platforms: • RFS7000 • RFS6000 NOTE: The number of APs supported by...
Page 709 Wireless Instance 20-31 Parameters <ap-index> Sets the indices of the APs to be converted. [default|sensor| • <ap-index> – The index of the AP to be converted. This standalone] index can be found from the 'show wireless ap' command. • default – Does not force conversion. Lets the AP negotiate its normal mode of operation with the switch.
Page 710: Converting An Ap To Sensor
20-32 Motorola RF Switch CLI Reference Guide Example RFSwitch(config-wireless)#convert-ap 1 default 20.1.18.1 Converting an AP to Sensor To convert an AP300 to a sensor: 1. Use command to setup the sensor. sensor RFSwitch(config-wireless)#sensor default-config ? ip-mode configure the IP address mode of the sensors...
Page 711: Country-Code
Wireless Instance 20-33 20.1.19 country-code Wireless Configuration Commands Sets the country of operation All existing radio configurations will be erased Supported in the following platforms: • RFS7000 • RFS6000 Syntax country-code <country-code> Parameters <country-code> Configures the switch to operate in a defined country. <country-code>...
Page 712: Debug
20-34 Motorola RF Switch CLI Reference Guide 20.1.20 debug Wireless Configuration Commands Debugging functions for the Cellcontroller (wireless) Supported in the following platforms: • RFS7000 • RFS6000 Syntax debug cc [access-port|all|alt|ap-containment|ap-detect| capwap|cluster|config|dot11|eap|ids|kerberos|l3-mob|loc-ap| loc-mu|media|mobile-unit|radio|radius|self-heal|smart|snmp| system|wips|wisp|wlan] {debug|err|info|warn} Parameters access-port Sets the parameters for the access-port logs...
Page 713 Wireless Instance 20-35 loc-mu Sets the parameters for the MU locationing logs media Sets the parameters for the encapsulation media logs mobile-unit Sets the parameters for the mobile-unit logs radio Sets the parameters for the radio logs radius Sets the parameters for the radius client logs self-heal Sets the parameters for the self healing logs smart...
Page 714 20-36 Motorola RF Switch CLI Reference Guide config configuration change logs dot11 datapath logs 802.1x/eap logs intrusion detection logs kerberos kerberos logs l3-mob Layer3 mobility logs loc-ap loc-ap logs loc-mu loc-mu logs media encapsulation media logs mobile-unit mobile-unit logs radio...
Page 715: Dhcp-One-Portal-Forward
Wireless Instance 20-37 20.1.21 dhcp-one-portal-forward Wireless Configuration Commands Enables the option to forward DHCP responses to one portal when the destination mobile- unit is known from the response content Supported in the following platforms: • RFS7000 • RFS6000 Syntax dhcp-one-portal-forward enable Parameters enable Enables the option to forward DHCP responses to one portal...
Page 716: Dhcp-Sniff-State
20-38 Motorola RF Switch CLI Reference Guide 20.1.22 dhcp-sniff-state Wireless Configuration Commands Records mobile unit DHCP state information Supported in the following platforms: • RFS7000 • RFS6000 Syntax dhcp-sniff-state enable Parameters enable Allows support for recording DHCP state information for...
Page 717: Dot11-Shared-Key-Auth
Wireless Instance 20-39 20.1.23 dot11-shared-key-auth Wireless Configuration Commands Enables support for 802.11 shared key authentication NOTE: Shared key authentication has known weaknesses that can compromise your WEP key. It should only be configured to accommodate wireless stations unable to carry out Open-System authentication.
Page 718: End
20-40 Motorola RF Switch CLI Reference Guide 20.1.24 end Wireless Configuration Commands Ends and exits the current mode and changes to the PRIV EXEC mode. The prompt changes RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000 Syntax Parameters...
Page 719: Exit
Wireless Instance 20-41 20.1.25 exit Wireless Configuration Commands Ends the current mode and moves to the previous mode (GLOBAL-CONFIG). The prompt changes to RFSwitch(config)# Supported in the following platforms: • RFS7000 • RFS6000 Syntax exit Parameters None Example RFSwitch(config-wireless)#exit RFSwitch(config)#...
Page 720: Fix-Broadcast-Dhcp-Rsp
20-42 Motorola RF Switch CLI Reference Guide 20.1.26 fix-broadcast-dhcp-rsp Wireless Configuration Commands Converts broadcast DHCP server responses to unicast Supported in the following platforms: • RFS7000 • RFS6000 Syntax fix-broadcast-dhcp-rsp enable Parameters enable Enables support for converting broadcast DHCP server...
Page 721: Help
Wireless Instance 20-43 20.1.27 help Wireless Configuration Commands Displays the system’s interactive help (in HTML format) Supported in the following platforms: • RFS7000 • RFS6000 Syntax help Parameters None Example RFSwitch(config-wireless)#help CLI provides advanced help feature. When you need help, anytime at the command line please press '?'.
Page 722: Hotspot
20-44 Motorola RF Switch CLI Reference Guide 20.1.28 hotspot Wireless Configuration Commands Configures the WLAN hotspot configuration This overrides or adds to the existing hotspot configuration on the WLAN. Supported in the following platforms: • RFS7000 • RFS6000 Syntax hotspot query <query-index> <query-field> [mu-ip|ssid|...
Page 723: Ids
Wireless Instance 20-45 20.1.29 ids Wireless Configuration Commands Defines the Wireless Intrusion Detection System (WIDS) configuration Supported in the following platforms: • RFS7000 • RFS6000 Syntax ids [anomaly-detection|detect-window|ex-ops] ids anomaly-detection [all|bad-essid-frame| beacon-broadcast-essid|deauth-broadcast-smac| detect-adhoc-networks|invalid-8021x-frame| invalid-frame-length|invalid-frame-type| invalid-sequence-number|multicast-source| non-changing-wep-iv|null-destination| same-source-destination|tkip-countermeasures| unencrypted-traffic|weak-wep-iv] [enable|filter-ageout <ageout>] ids anomaly-detection bad-essid-frame [<1-10>...
Page 724 20-46 Motorola RF Switch CLI Reference Guide Parameters anomaly-detection Configures parameters related to the detection of [all|bad-essid-frame| anomalous frames on the RF network. The parameters are: beacon-broadcast-essid| • all – Enables all types of anomalous frames deauth-broadcast-smac| • bad-essid-frame{<1-10> <info>}– Enables an AP...
Page 725 Wireless Instance 20-47 For all the above options, the following values are set • enable – Enables monitoring and filtering • filter-ageout <ageout>– Sets the number of seconds mobile units are filtered out in the range 0-86400. detect-window Sets the number of seconds <duration> information is <duration>...
Page 726 20-48 Motorola RF Switch CLI Reference Guide ex-ops Sets values related to the detection of excessive operations [80211-replay-fails|all| on the RF network association-requests| • 80211-replay-fails – 802.11 replay check failure authentication-fails| • all – Changes for all types of excessive operations crypto-replay-fails| •...
Page 727 Wireless Instance 20-49 Example RFSwitch(config-wireless)#ids anomaly-detection tkip- countermeasures enable RFSwitch(config-wireless)# RFSwitch(config-wireless)#ids detect-window 250 RFSwitch(config-wireless)# RFSwitch(config-wireless)#ids ex-ops 80211-replay-fails filter-ageout 5200 RFSwitch(config-wireless)#...
Page 728: Load-Balance
20-50 Motorola RF Switch CLI Reference Guide 20.1.30 load-balance Wireless Configuration Commands Configures the user load balance mode Supported in the following platforms: • RFS7000 • RFS6000 Syntax load-balance [by-count|by-throughput] Parameters by-count In load balance by user count, the load on the radio is measured by the number of MUs associated.
Page 729: Mac-Auth-Local
Wireless Instance 20-51 20.1.31 mac-auth-local Wireless Configuration Commands Configures the local MAC authentication list Supported in the following platforms: • RFS7000 • RFS6000 Syntax mac-auth-local <1-1000> [allow|deny|rate-limit] mac-auth-local <1-1000> [allow|deny] <starting-MAC> <ending-MAC> [<list>|not-mapped] {<radio-desc>| zone [<1-48>|default|unknown]} mac-auth-local <1-1000> rate-limit [wired-to-wireless|wireless-to-wired] <100-1000000> Parameters <1-1000>...
Page 730 20-52 Motorola RF Switch CLI Reference Guide zone Optional GeoFencing location information for devices [<1-48>|default| matching this ACL information. unknown] • <1-48> – Administrator defined-id. • default – The user has been located within the site in the default zone.
Page 731: Manual-Wlan-Mapping
Wireless Instance 20-53 20.1.32 manual-wlan-mapping Wireless Configuration Commands Manually maps WLANs configured on a radio Supported in the following platforms: • RFS7000 • RFS6000 Syntax manual-wlan-mapping enable Parameters enable Enables support for manual WLAN mapping. Usage Guidelines Use the command to disable manual mapping {no} manual-wlan-mapping enable of WLANs configured on a radio.
Page 732: Mobile-Unit
20-54 Motorola RF Switch CLI Reference Guide 20.1.33 mobile-unit Wireless Configuration Commands Configures mobile unit related parameters Supported in the following platforms: • RFS7000 • RFS6000 Syntax mobile-unit [association-history|probe-history] mobile-unit association-history [enable|clear] mobile-unit probe-history [enable|add <1-200> <MAC>] Parameters association-history Enables a mobile unit’s association history.
Page 733: Mobility
Wireless Instance 20-55 20.1.34 mobility Wireless Configuration Commands Sets mobility parameters Supported in the following platforms: • RFS7000 • RFS6000 Syntax mobility [enable|local-address|max-roam-period|peer] mobility enable mobility local-address <IP> mobility max-roam-period <1-15> mobililty peer <IP> Parameters enable Enables mobility globally local-address <ip> Sets the local address for mobility •...
Page 734: Multicast-Packet-Limit
20-56 Motorola RF Switch CLI Reference Guide 20.1.35 multicast-packet-limit Wireless Configuration Commands Sets a multicast packet limit, per second, for a VLAN. This limits the broadcast/multicast packets per VLAN. The default value is 32 broadcast/multicast packets per second. Setting the limit to 0 disables this control.
Page 735: Multicast-Throttle-Watermark
Wireless Instance 20-57 20.1.36 multicast-throttle-watermark Wireless Configuration Commands Configures watermarks for supporting bursts of broadcast/multicast frames Supported in the following platforms: • RFS7000 • RFS6000 Syntax multicast-throttle-watermarks low <0-100> high <0-100> Parameters low <0-100> Sets the low water-mark. If the percentage of free packets in the system is lower than this threshold, the incoming frame is dropped.
Page 736: Nas-Id
20-58 Motorola RF Switch CLI Reference Guide 20.1.37 nas-id Wireless Configuration Commands Configures the NAS ID to be sent to the RADIUS server Supported in the following platforms: • RFS7000 • RFS6000 Syntax nas-id <nas-id> To override nas-id on a per WLAN basis: wlan <1-4098>...
Page 737: Nas-Port-Id
Wireless Instance 20-59 20.1.38 nas-port-id Wireless Configuration Commands Configures the NAS port ID that must be sent to the RADIUS server Supported in the following platforms: • RFS7000 • RFS6000 Syntax nas-port-id <port-id> Parameters <port-id> The port ID to be sent to the RADIUS server. Example RFSwitch(config-wireless)#nas-port-id portWIRELESSWELL RFSwitch(config-wireless)#...
Page 738 20-60 Motorola RF Switch CLI Reference Guide 20.1.39 no Wireless Configuration Commands Negates a command or sets its defaults. All the parameters mentioned in the syntax can be negated using the command. Supported in the following platforms: • RFS7000 • RFS6000...
Page 739: Proxy-Arp
Wireless Instance 20-61 20.1.40 proxy-arp Wireless Configuration Commands Responds to ARP requests from the RON to the WLAN on behalf of mobile units Supported in the following platforms: • RFS7000 • RFS6000 Syntax proxy-arp enable Parameters enable Enables the support for proxy arp Usage Guidelines Use the enable command to disable.
Page 740: Qos-Mapping
20-62 Motorola RF Switch CLI Reference Guide 20.1.41 qos-mapping Wireless Configuration Commands Configures QoS mappings between the wired and wireless domains Supported in the following platforms: • RFS7000 • RFS6000 Syntax qos-mapping [wired-to-wireless|wireless-to-wired] qos-mapping wired-to-wireless [dot1p <0-7>|dscp <0-63>] [<0-7>|tid0|tid1|tid2|tid3|tid4|tid5|tid6|tid7] qos-mapping wireless-to-wired [tid0|tid1|tid2|tid3|tid4|tid5|tid6|tid7] dot1p <0-7>...
Page 741 Wireless Instance 20-63 wireless-to-wired Mappings used while switching wireless traffic to the [tid0|tid1|tid2|tid3| wired side. tid4|tid5|tid6|tid7] • tid0, tid3– best effort category traffic dot1p <0-7> • tid1, tid2 – background category traffic • tid4, tid5 – video traffic category traffic •...
Page 742: Radio
20-64 Motorola RF Switch CLI Reference Guide 20.1.42 radio Wireless Configuration Commands Sets radio related parameters Supported in the following platforms: • RFS7000 • RFS6000 The radios range differs from switch to switch. group-id • RFS7000 – Supports a range between 0-255 •...
Page 743 Wireless Instance 20-65 radio <1-4096> ampdu [min-spacing|rx-limit|tx-enable| tx-limit] radio <1-4096> ampdu min-spacing [.25|.5|0|1|2|4|8] radio <1-4096> ampdu rx-limit [16383|32767|65535|8191] radio <1-4096> ampdu tx-enable radio <1-4096> ampdu tx-limit <0-65535> radio <1-4096> antenna-mode [diversity|mimo|primary| secondary] radio <1-4096> bss [<1-4>|add-wlans|auto]<wlan-list> radio <1-4096> base-bridge [enable|max-clients <1-12>] radio <1-4096>...
Page 744 20-66 Motorola RF Switch CLI Reference Guide radio <1-4096> max-mobile-units <units> radio <1-4096> mu-power <0-20> radio <1-4096> moto-simple-voice enable radio <1-4096> nas-id <nas-id> radio <1-4096> nas-port-id <nas-port-id> radio <1-4096> on-channel-scan radio <1-4096> radio-number <0-2> radio <1-4096> reset radio <1-4096> reset-ap radio <1-4096>...
Page 745 Wireless Instance 20-67 radio [all-llan|default-11an] [adoption-policy|ampdu| antenna-mode|bss|channel-power|rf-mode|speed|tunnel| short-gi] radio [all-11b|default-11b] [adoption-policy| antenna-mode|base-bridge|beacon-interval|bridge-fwd-delay| bridge-hello|bridge-max-ageout|bridge-msg-age| bridge-priority|bss|channel-power|client-bridge|detector| dtim-period|enhanced-beacon-table|enhanced-probe-table| location-message|max-mobile-units|mu-power| on-channel-scan|reset|reset-ap|rf-function|rf-mode|rss| rts-threshold|run-acs|self-heal-offset|speed|tunnel| short-preamble] radio [all-11bg|default-11bg] [admission-control| adoption-policy|adoption-pref-idantenna-mode|base-bridge| beacon-interval|bridge-fwd-delay|bridge-hello| bridge-max-ageout|bridge-msg-age|bridge-priority|bss| channel-power|client-bridge|detector|dtim-period| enhanced-beacon-table|enhanced-probe-table|location-led location-message|max-mobile-units|moto-simple-voice| mu-power|on-channel-scan|reset|reset-ap|rf-function| rf-mode|rss|rts-threshold|run-acs|self-heal-offset| speed|tunnel|short-preamble|wmm] radio [all-llbgn|default-11bgn] [adoption-policy|ampdu| antenna-mode|bss|channel-power|rf-mode|speed|tunnel| short-gi] radio add <1-4096> <MAC> [11a|11an|11b|11bg|11bgn] {[aap5131|aap5181|ap300|aap7131|aap7181|ap100|ap4131]} radio antenna-mode [diversity|mimo|primary|secondary] radio configure-8021X <username>...
Page 746 20-68 Motorola RF Switch CLI Reference Guide add <1-4096> <MAC> Adds the specified radio to the radio list at index specified [11a|11an|11b|11bg| for the value in the range 1-4096. 11bgn] {[aap5131| • [11a|11an|11b|11bg|11bgn] – The radio type aap5181|ap300|aap7131| • [aap5131|aap5181|ap300|aap7131|aap7181|ap100| aap7181|ap100|ap4131]} ap4131] –...
Page 747 Wireless Instance 20-69 admission-control voice Sets the admission control parameters for voice. The [max-mus <0-256>| following options are configured: max-perc <0-100>| • max-mus <0-256> – Configure the maximum number of max-roamed-mus <0- MUs to be admitted. 256>| • max-perc <0-100> – Configure the maximum percentage res-roam-perc <0-100>] of air time allotted to voice traffic.
Page 748 20-70 Motorola RF Switch CLI Reference Guide antenna-mode Defines the antenna diversity mode. Select from the [diversity|mimo|primary| following options: secondary] • diversity–Full diversity (both antennas) • mimo – MIMO • primary–Primary antenna only • secondary–Secondary antenna only Note: Before executing this command, ensure the radio is present and is a AP300 model.
Page 749 Wireless Instance 20-71 bss [<1-4>|add-wlans| Maps WLANs to radio BSSIDs auto] <wlans> • <1-4>– Sets the BSS where WLANs are mapped • add-wlans <wlans> – Adds new WLANs to existing radios. The other WLANs on the radios are left as is. •...
Page 750 20-72 Motorola RF Switch CLI Reference Guide client-bridge Defines client bridge settings. [bb-radio| • bb-radio <1-16> <MAC>– add the preferred base bridge bridge-selectmode| details. enable| • <1-16> – Enables the capability mesh-timeout <2-200>| • MAC – MAC address in AA-BB-CC-DD-EE-FF format ssid <SSID>]...
Page 751 Wireless Instance 20-73 dtim-period<1-50> {bss Set the DTIM period (number of beacons between <1-4>} successive DTIMs). • <1-50> – Sets the DTIM period • bss <1-4>– Optional BSS index enforce-spec-mgmt Enforces spectrum management checks on specified radios. enable Only mobile units that advertise spectrum management capabilities will be allowed to associate on this radio.
Page 752 20-74 Motorola RF Switch CLI Reference Guide nas-id <ID> Configures a NAS ID for this radio. <ID> can be up to 256 characters long. nas-port-id <ID> Configures a NAS port id for this radio. <ID> can be up to 256 characters long.
Page 753 Wireless Instance 20-75 short-preamble Enables support for the short preamble. NOTE: This disables support for long preamble. Mobiles that only support long preamble will not be able to associate. speed [1|11|12|18|2|24| Configures the basic and supported data rates/speed 36|48|54|5p5|6|9|basic1| • 1 1-Mbps basic11|basic11a| •...
Page 754 20-76 Motorola RF Switch CLI Reference Guide • basic54 basic 54-Mbps • basic5p5 basic 5.5-Mbps • basic6 basic 6-Mbps • basic9 basic 9-Mbps • default {mcs <msc-range>} – Factory default rates based on radio-type. • throughput {mcs <msc-range>} – All rates basic (only 802.11g clients are allowed on 802.11bg radios).
Page 755 Wireless Instance 20-77 wmm [background| Sets 802.11e/Wireless Multi Media (WMM) parameters best-effort|video|voice] (supported only on AP300). [aifsn<1-15>|burst • background – Prioritizes Background category traffic. <0-65535>| cw<0-15>] • best-effort– Prioritizes Best Effort category traffic. • video – Prioritizes Video category traffic. wmm [video|voice] •...
Page 756: Rate-Limit
20-78 Motorola RF Switch CLI Reference Guide 20.1.43 rate-limit Wireless Configuration Commands Sets the default rate limit per user in kbps, and applies to all enabled WLANs Supported in the following platforms: • RFS7000 • RFS6000 Syntax rate-limit [wired-to-wireless|wireless-to-wired] <0-100000>...
Page 757: Secure-Wispe-Default-Secret
Wireless Instance 20-79 20.1.44 secure-wispe-default-secret Wireless Configuration Commands Configures the default shared secret for secure WISPE If a new shared secret is not configured for an AP or a list of APs, then a default shared secret will be assigned. The value of default shared secret is the string "default". Supported in the following platforms: •...
Page 758: Self-Heal
20-80 Motorola RF Switch CLI Reference Guide 20.1.45 self-heal Wireless Configuration Commands Configures self healing values Supported in the following platforms: • RFS7000 • RFS6000 Syntax self-heal [interference-avoidance|neighbor-recovery] self-heal interference-avoidance [enable|hold-time <30-65535>|retries <0.0-15.0>] self-heal neighbor-recovery [action|enable|neighbors| run-neighbor-detect] self-heal neighbor-recovery action [both|none|open-rates| raise-power] radio [<1-4096>|<radio-list>]...
Page 759 Wireless Instance 20-81 action [both|none| Defines the radio’s self healing action when neighbors are open-rates|raise-power] detected as down. radio [<1-4096>| • both – Raises the power to max and open all rates. <radio-list>] • none – No action taken. • open-rates – Opens all rates. •...
Page 760: Sensor
20-82 Motorola RF Switch CLI Reference Guide 20.1.46 sensor Wireless Configuration Commands Configures Wireless Intrusion Protection System (WIPS) parameters Supported in the following platforms: • RFS7000 • RFS6000 Syntax sensor [<1-48>|default-config|ping-interval|vlan] sensor <1-48> [default-config|request-config|revert-to-ap] sensor default-config [gateway-ip|ip-mode|wips-server-ip] sensor default-config gateway-ip <IP>...
Page 761 Wireless Instance 20-83 default-config [ Invokes the default configuration sent to sensors when gateway-ip|ip-mode| configured. wips-server-ip] • gateway-ip <IP> – Configure the gateway IP address for sensors to <IP>. • ip-mode [dhcp|static <IP/Mask>] – Configures the IP address of the sensors. •...
Page 762: Service
20-84 Motorola RF Switch CLI Reference Guide 20.1.47 service Wireless Configuration Commands Invokes service commands to troubleshoot or debug instance (config-wireless) configurations For more information, see Chapter 2, Section 2.1.5 service page 2-7. Supported in the following platforms: • RFS7000 •...
Page 763 Wireless Instance 20-85 service show wireless radio {[<1-4094>|description|mapping]} service show wireless radio-cache-entry {<MAC>} service show wireless vlan-cache-entry {[<1-8192>|<MAC>]} service show wireless waiting {<0-99> {<0-99>}} service smart-rf [clear-history|load-from-file|replay| rescue|restore|save-to-file|simulate] service smart-rf [clear-history|load-from-file|save-to-file] service smart-rf replay enable service smart-rf rescue [<MAC>|<1-4094>|<index-list>] service smart-rf restore [<MAC>|<1-4094>|<index-list>] service smart-rf simulate [coverage-hole|interference] service smart-rf simulate coverage-hole <1-4096>...
Page 764 20-86 Motorola RF Switch CLI Reference Guide service wireless enhanced-probe-table [enable|erase-report| max-mu|preferred|window-time] service wireless enhanced-probe-table [enable|erase-report] service wireless enhanced-probe-table max-mu <0-512> service wireless enhanced-probe-table preferred <MAC> service wireless enhanced-probe-table window-time <10-60> service wireless free-packet-watermark <0-100> service wireless idle-radio-send-multicast enable service wireless map-radios <1-127>...
Page 765 Wireless Instance 20-87 show [cli|smart-rf| Displays the current running system information for this wireless] mode. • cli – Shows the CLI commands available in this mode. • smart-rf [debug-config|sensitivity] – Displays smart-rf management commands. • debug-config – Displays smart-rf debug configuration information •...
Page 766 20-88 Motorola RF Switch CLI Reference Guide • enhanced-beacon-table [config|report] – Displays Enhanced Beacon Table information. • config – Displays Enhanced Beacon Table configuration information. • report – Displays Enhanced Beacon Table reports. • enhanced-probe-table [config|report] – Displays Enhanced Probe Table information.
Page 767 Wireless Instance 20-89 • radio-cache-entry {<MAC>} – Displays Radio Cache information. Dumps the whole table if no parameter is given. • <MAC> – MAC address of radio-cache entry to show. • radio-hash-buckets – Displays Wireless Radio Hash Buckets. • snmp-trap-throttle – Displays statistics and parameters related to SNMP Trap Throttling.
Page 768 20-90 Motorola RF Switch CLI Reference Guide • restore [<MAC>|<1-4094>|<index-list>] – Removes radio rescue operation on a given radio. • <MAC> – MAC address of a single radio. • <1-4094> – Radio index. • <index-list> – List of radio indices.
Page 769 Wireless Instance 20-91 wireless [ap-history| Configures wireless parameters. clear-ap-log|custom-cli| • ap-history [clear|enable] – Configures access port dot11i|dump-core| history. enhanced-beacon-table| • clear – Clears all history of all APs. enhanced-probe-table| • enable – Enables tracking of AP history. free-packet-watermark| • custom-cli [sh-wi-mobile-unit|sh-wi-radio] – Customize idle-radio-send- the output of some summary cli commands in wireless.
Page 770 20-92 Motorola RF Switch CLI Reference Guide • username – The Radius username of the user connected through this device (shown only if applicable and available). • vlan – The VLAN-ID assigned to the mobile-unit. • wlan-desc – The WLAN description the mobile-unit is using.
Page 771 Wireless Instance 20-93 • dot11i – modify dot11i service parameters. • dump-core – Creates a core file of the ccsrvr process. • enhanced-beacon-table [channel-set|enable| erase-report|max-ap|scan-interval|scan-time] – Enhanced beacon table for AP locationing. • channel-set [a|an|b|bg|bgn] <1-200> – Adds channels to the different radio types. Channel types are a, an, b, bg, bgn.
Page 772 20-94 Motorola RF Switch CLI Reference Guide • free-packet-watermark <0-100>– The free packets threshold in percent. If the percentage of free packets is lower than this number, then additional packets will not be queued in the datapath. • idle-radio-send-multicast enable – Enables forwarding multicast packets to radios without associated mobile units.
Page 773 Wireless Instance 20-95 Example RFSwitch(config-wireless)#service show wireless ap-history AP MAC Radio Timestamp Event Reason ============================================================ ======= 00-A0-F8-BF-8A-4B 20070926-20:23:10 Adoption RFSwitch(config-wireless)# RFSwitch(config-wireless)#service show wireless mvlan 20 Wlan 20: pool_size =1 ----------------------------------------------------- [ 0]: wlan=20, vlan_id=1, limit=0, users=0, log_sent=0 [ 1]: wlan=20, vlan_id=0, limit=0, users=0, log_sent=0 [ 2]: wlan=20, vlan_id=0, limit=0, users=0, log_sent=0 [ 3]: wlan=20, vlan_id=0, limit=0, users=0, log_sent=0 [ 4]: wlan=20, vlan_id=0, limit=0, users=0, log_sent=0...
Page 774 20-96 Motorola RF Switch CLI Reference Guide RFSwitch(config-wireless)# RFSwitch(config-wireless)#service show wireless radio description # access-port MAC start BSS radio description coordinates 1] 00-A0-F8-BF-8A-4B 00-A0-F8-BF-EF-B0 11bg RADIO1 0 0 0 2] 00-A0-F8-BF-8A-4B 00-A0-F8-BF-ED-BC 11a RADIO2 0 0 0 RFSwitch(config-wireless)# RFSwitch(config-wireless)#service show wireless snmp-trap-...
Page 775: Show
Wireless Instance 20-97 20.1.48 show Wireless Configuration Commands Displays current system information running on the switch For other show commands, see Chapter 2, Section 2.2 show page 2-37. Supported in the following platforms: • RFS7000 • RFS6000 SWITCH NOTE: The following commands display only for RFS6000: •...
Page 776 20-98 Motorola RF Switch CLI Reference Guide file Display filesystem information firewall Wireless firewall Display FTP Server configuration history Display the session command history interfaces Interface status Internet Protocol (IP) ldap LDAP server licenses Show any installed licenses logging Show logging configuration and...
Page 777 Wireless Instance 20-99 wireless Wireless configuration commands wlan-acl wlan based acl RFSwitch(config-wireless)#show RFSwitch(config-wireless)#show wireless config country-code : us adoption-pref-id proxy-arp : enabled adopt-unconf-radio : disabled dot11-shared-key-auth : disabled ap-detection : disabled manual-wlan-mapping : disabled dhcp sniff state : disabled dhcp fix broadcast-rsp : disabled broadcast-tx-speed : optimize-for-range wlan bw allocation...
Page 778: Smart-Rf
20-100 Motorola RF Switch CLI Reference Guide 20.1.49 smart-rf Wireless Configuration Commands Configures Smart-RF Management parameters and moves to the instance (config-wireless-smart-rf) Supported in the following platforms: • RFS7000 • RFS6000 NOTE: initiates the smart-rf (config-wireless-smart-rf) instance. For more details see Chapter 25, Smart RF Instance.
Page 779: Smart-Scan-Channels
Wireless Instance 20-101 20.1.50 smart-scan-channels Wireless Configuration Commands Specifies a list of channels for Motorola clients to do smart-scan Syntax smart-scan-channels [<channel-list>|add <channel-list>| remove <channel-list>] Parameters <channel-list> A comma-separated list of channels add <channel-list> Add one or more channels to existing channel list remove <channel-list>...
Page 780: Wlan
20-102 Motorola RF Switch CLI Reference Guide 20.1.51 wlan Wireless Configuration Commands Configures Wireless LAN related commands Syntax wlan [<1-256>|<wlan-list>] [80211-extensions| aap-proxy-radius|accounting|acl|add-vlan|answer-bcast-ess| authentication-type|client-bridge-backhaul|description| dot11i|enable|encryption-type|hold-time|hotspot| inactivity-timeout|independent|ip|kdc|mobility| mu-mu-disallow|nac-mode|nac-server|nas-id|nas-port-id| qos|radius|secure-beacon|set-vlan-user-limit| smart-scan-channels|ssid|storm-control|syslog|vlan|wep128| wep64] wlan <1-256> [answer-bcast-ess|enable|independent| mu-mu-disallow wlan <1-256> 80211-extensions move-command enable wlan <1-256> aap-proxy-radius enable realm <realm name>...
Page 781 Wireless Instance 20-103 wlan <1-256> dot11i second-key [enable|key|phrase] wlan <1-256> dot11i second-key enable wlan <1-256> dot11i second-key [key|phrase] [0 <secret-key>| 2 <secret-key>|<secret-key>] wlan <1-256> dot11i tkip-cntrmeas-hold-time <0-65535> wlan <1-256> dot11i wap2-tkip enable wlan <1-256> encryption-type [ccmp|keyguard|none|tkip| tkip-ccmp|wep128|wep128-keyguard|wep64] wlan <1-256> hold-time <1-300> wlan <1-256>...
Page 782 20-104 Motorola RF Switch CLI Reference Guide wlan <1-256> nac-server [primary|secondary] [<IP> {auth-port <port>}|radius-key [0 <secret>| 2 <secret>|<secret>]] wlan <1-256> nac-server timeout <1-300> retransmit <1-100> wlan <1-256> nas-id <nas-id> wlan <1-256> nas-port-id <port> wlan <1-256> qos [classification|mcast-with-dot11i|mcast1| mcast2|prioritize-voice|rate-limit|svp|weight|wmm] wlan <1-256> qos classification [low|normal|video|voice|wmm] wlan <1-256>...
Page 783 Wireless Instance 20-105 wlan <1-256> radius server [primary|secondary] [<IP> {auth-port <1024-65535>}|radius-key [0 <key>|2 <key>| <key>] wlan <1-256> radius server timeout <1-60> retransmit <1-10> wlan <1-256> secure-beacon wlan <1-256> set-vlan-user-limit [<1-4094>|<vlan-list>] <0-8192> wlan <1-256> smart-scan-channels [<channel-list>|add <channel-list>|remove <channel-list>] wlan <1-256> ssid <ssid> wlan <1-256>...
Page 784 20-106 Motorola RF Switch CLI Reference Guide accounting Defines the accounting configuration on this WLAN. [none|radius|syslog] • none – No accounting performed on this WLAN. • radius – Uses RADIUS accounting on this WLAN. • syslog – Uses Syslog accounting on this WLAN.
Page 785 Wireless Instance 20-107 authentication-type Sets the authentication type for this WLAN. [eap|hotspot|kerberos| • eap – EAP authentication (802.1X). mac-auth|none] • hotspot – Web based authentication. • kerberos – Kerberos authentication (encryption will change to WEP128 if its not already wep128/keyguard). •...
Page 786 20-108 Motorola RF Switch CLI Reference Guide dot11i [handshake | key| Modifies tkip/ccmp (802.11i) related parameters. key-rotation | • handshake timeout <100-5000> retransmit <1-10> – key-rotation-interval| Sets a handshake for the timeout and retransmission opp-pmk-caching | intervals. phrase|pmk-caching | • timeout <100-5000> – Sets the timeout (in preauthentication | milliseconds) between retries.
Page 787 Wireless Instance 20-109 • second-key [enable|key|phrase] – Configures a secondary set of key/passphrase for this WLAN. • enable – Enables the use of a secondary key/passphrase. • key [0 <secret-key>|2 <secret-key>|<secret-key>] – Configures the key (PMK). • phrase [0 <secret-key>|2 <secret-key>|<secret-key>] – Configures the passphrase.
Page 788 20-110 Motorola RF Switch CLI Reference Guide encryption-type Sets the encryption type for this WLAN. Options include: [ccmp|keyguard| • ccmp – AES Counter Mode CBC-MAC Protocol none|tkip|tkip-ccmp| (AES-CCM CCMP). wep128|wep64| • keyguard – Keyguard-MCM (Mobile Computing Mode). web128-keyguard] • none – No encryption.
Page 789 Wireless Instance 20-111 hotspot [allow-eap| Modifies hotspot related parameters allow-list|cache-ageout| • allow-eap – allow EAP authentication in addition to web ntf-logout-port| based login. redirect-to-hostname| • allow-list <1-32> <IP> – Specifies the allowed list that simultaneous-users| user can access without prior authentication. Typically query|webpage| this would be the external web-page's IP address.
Page 790 20-112 Motorola RF Switch CLI Reference Guide • webpage external [failure|login|welcome] <URL> – Modifies hotspot page parameters. • external – Modifies a hotspot’s External Web page. • failure – When login fails. • login – When login succeeds. • welcome – The page to display to welcome user.
Page 791 Wireless Instance 20-113 Note: The full syntax for the internal page definition is as follows: • wlan 1 hotspot webpage internal welcome title Welcome to hotspot page. You have failure – Users are logged on successfully redirected to this Web page if they fail authentication. File must be named fail.html.
Page 792 20-114 Motorola RF Switch CLI Reference Guide ip [arp|dhcp] Sets Internet Protocol settings for ARP and DHCP packets. • arp [rate-limit <1-1000000>|trust] – Address Resolution Protocol configuration. • dhcp trust – Dynamic Host Resolution Protocol configuration. • trust – Sets the arp/dhcp responses as trusted for this wlan/range.
Page 793 Wireless Instance 20-115 Modifies KDC related parameters. [password|realm|server] • password [0 <secret>|2 <secret>|<secret>] – Create a KDC server password (up to 127 characters) • 0 <secret>– Password is specified unencrypted. • 2 <secret>– Password is encrypted with a password- encryption secret. •...
Page 794 20-116 Motorola RF Switch CLI Reference Guide nac-mode [bypass-nac- Sets the Network Access Control (NAC) mode configuration except-include-list| • bypass-nac-except-include-list – No MU NAC check is do-nac-except-exclude- done except for those in include list. Devices in the list|none] include list have NAC checks.
Page 795 Wireless Instance 20-117 nac-server Configure a NAC server IP address and an optional [primary|secondary| authentication port number. timeout] • [primary|secondary] [<IP> {auth-port <port>}|radius-key [0 <secret>|2 <secret>|<secret>]] – Primary server or secondary server’s IP address • <IP> {auth-port <port>} – Set an EAP server IP address and optional EAP server authentication port (default: is 1812) •...
Page 796 20-118 Motorola RF Switch CLI Reference Guide Quality of Service commands. [classification | • classification [background|best-effort|video|voice|wmm] mcast-with-dot11i| – Select how traffic on this WLAN is classified (relative mcast1|mcast2| prioritization on the access port). prioritize-voice| • low – All traffic on this wlan is treated as low priority rate-limit|svp|weight| traffic (Background).
Page 797 Wireless Instance 20-119 • rate-limit [wired-to-wireless|wireless-to-wired] <100-1000000> – Sets traffic rate limit for users on the selected WLAN. • wired-to-wireless – Down link direction - from network to wireless client. • wireless-to-wired – Up link direction - from wireless client to network. •...
Page 798 20-120 Motorola RF Switch CLI Reference Guide • aisfn <2-15> – Arbitration Inter Frame Spacing Number (AIFSN) is the wait time in milliSeconds between data frames. This value is derived using AIFSN and the slot-time. • <2-15> – The AIFSN spacing number.
Page 799 Wireless Instance 20-121 radius [accounting| Configures RADIUS parameters for the select WLAN. authentication-protocol| • accounting [mode|server|timeout] – Sets RADIUS dscp| accounting parameters. dynamic-authorization| • mode [start-stop|stop-only|start-interim-stop] – Sets dynamic-vlan- the Accounting Mode. assignment| • start-stop – Sends accounting start-stop. mac-auth-format| •...
Page 800 20-122 Motorola RF Switch CLI Reference Guide • authentication-protocol [chap|pap] – Sets the RADIUS Authentication Protocol for RADIUS request. Select from CHAP or PAP. • dscp <0-63> – Specify a Differentiated Services Code Point (DSCP) value to provide QoS to RADIUS packets. Set a value in the range 0 to 63.
Page 801 Wireless Instance 20-123 • server [primary|secondary] [<IP> {acct-port <port>}| radius-key [0 <key>|2 <key>|<key>]] – Sets the primary or secondary RADIUS server for the selected WLAN. • primary – Sets primary RADIUS server information • secondary – Sets secondary RADIUS server information.
Page 802 20-124 Motorola RF Switch CLI Reference Guide smart-scan-channels Specifies a list of channels to motorola clients to perform a [<channel-list>| smart-scan. The following are the options set: add <channel-list>| • <channel-list> – A comma separated list of channels to remove <channel-list>] scan.
Page 803 Wireless Instance 20-125 wep128 [key|phrase| Configures WEP128 parameters. wep-default-key] • key <1-4> [ascii|hex] – Configures pre-shared hex keys. • ascii [0 <key>|1 <key>|<key>] – Sets keys as ascii characters (5 characters for wep64, 13 for wep128). • hex [0 <key>|1 <key>|<key>] – Sets keys as hexadecimal characters (10 characters for wep64, 26 for wep128).
Page 804 20-126 Motorola RF Switch CLI Reference Guide wep64 [key|phrase| Configures WEP64 parameters. wep-default-key] • key <1-4> [ascii|hex] – Configures pre-shared hex keys. • ascii [0 <key>|1 <key>|<key>] – Sets keys as ascii characters (5 characters for wep64, 13 for wep128).
Page 805 Wireless Instance 20-127 RFSwitch(config-wireless)#wlan 25 dot11i key-rotation enable RFSwitch(config-wireless)# RFSwitch(config-wireless)#wlan 25 dot11i key-rotation- interval 2000 RFSwitch(config-wireless)# RFSwitch(config-wireless)#wlan 25 enable RFSwitch(config-wireless)# RFSwitch(config-wireless)#wlan 25 hotspot webpage external failure "This feature is under development" RFSwitch(config-wireless)# RFSwitch(config-wireless)#wlan 25 kdc server primary 1.2.3.4 auth-port 50000 RFSwitch(config-wireless)# RFSwitch(config-wireless)#wlan 25 mobility enable RFSwitch(config-wireless)#wlan 1 nac-mode bypass-nac-except-...
Page 806 20-128 Motorola RF Switch CLI Reference Guide RFSwitch(config-wireless)#wlan 25 syslog accounting server 12.13.14.125 port 5005 RFSwitch(config-wireless)# RFSwitch(config-wireless)#wlan 24 qos mcast-with-dot11i enable RFSwitch(config-wireless)#wlan 24 storm-control bcast rate- limit 20000...
Page 807: Wlan-Bw-Allocation
Wireless Instance 20-129 20.1.52 wlan-bw-allocation Wireless Configuration Commands Enables WLAN bandwidth allocation on all radios Supported in the following platforms: • RFS7000 • RFS6000 Syntax wlan-bw-allocation enable Parameters enable Enables WLAN bandwidth allocation on all radios. Example RFSwitch(config-wireless)#wlan-bw-allocation enable RFSwitch(config-wireless)#...
Page 808 20-130 Motorola RF Switch CLI Reference Guide...
Page 809 RTLS Instance Use the instance to configure Real Time Location System (RTLS) (config-rtls) parameters. To navigate to this instance, use the command RFSwitch(config)#rtls RFSwitch(config-rtls)# 21.1 RTLS Config Commands This summarizes commands: config-rtls Command Description Ref. aeroscout Configures aeroscout parameters page 21-3 clear Clears locationing information page 21-4...
Page 810 21-2 Motorola RF Switch CLI Reference Guide Command Description Ref. Negates a command or sets its defaults page 21-11 reference-tag Configures reference tags page 21-14 rfid Configures RFID readers page 21-16 service Invokes service commands to troubleshoot or debug page 21-17...
Page 811: Rtls Config Commands
RTLS Instance 21-3 21.1.1 aeroscout RTLS Config Commands Configure support for Aeroscout RTLS engine. Supported in the following platforms: • RFS7000 • RFS6000 Syntax aeroscout [enable|multicast-listen-addr<MAC-Address>] Parameters enable Enables and configures external Aeroscout RTLS engine multicast-listen-addr Configures multicast MAC address to which Aeroscout tags <MAC-Address>...
Page 812: Clear
21-4 Motorola RF Switch CLI Reference Guide 21.1.2 clear RTLS Config Commands Clears tags/assets information associated with aeroscout, mu, rfid and/or zone. Supported in the following platforms: • RFS7000 • RFS6000 Syntax clear rtls tags[aeroscout|mobile-unit|ekahau|rfid|zone <1-48>] Parameters rtls tags [aeroscout...
Page 813: Clrscr
RTLS Instance 21-5 21.1.3 clrscr RTLS Config Commands Clears the display screen Supported in the following platforms: • RFS7000 • RFS6000 Syntax clrscr Parameters None Example RFSwitch(config-rtls)#clrscr RFSwitch(config-rtls)#...
Page 814: End
21-6 Motorola RF Switch CLI Reference Guide 21.1.4 end RTLS Config Commands Ends and exits the current mode and changes to the PRIV EXEC mode. The prompt changes RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000 Syntax Parameters...
Page 815: Espi
RTLS Instance 21-7 21.1.5 espi RTLS Config Commands Configures Enterprise Services Programming Interface (ESPI) related parameters NOTE: command instantiates sub- espi (config-rtls-espi) instance. For more details see ESPI Instance on page 22-1. The prompt changes from RFSwitch(config-rtls)# RFSwitch(config-rtls-espi) Supported in the following platforms: •...
Page 816: Exit
21-8 Motorola RF Switch CLI Reference Guide 21.1.6 exit RTLS Config Commands Ends the current mode and moves to the previous mode (GLOBAL-CONFIG). The prompt changes to RFSwitch(config)# Supported in the following platforms: • RFS7000 • RFS6000 Syntax exit Parameters...
Page 817: Help
RTLS Instance 21-9 21.1.7 help RTLS Config Commands Displays the interactive help system for RTLS instance Supported in the following platforms: • RFS7000 • RFS6000 Syntax help Parameters None Example RFSwitch(config-rtls)#help CLI provides advanced help feature. When you need help, anytime at the command line please press '?'.
Page 818: Ekahau
21-10 Motorola RF Switch CLI Reference Guide 21.1.8 ekahau RTLS Config Commands Enables and configures the external ekahau location engine • RFS7000 • RFS600 Syntax ekahau [enable|engine ip<IP> port<Port>|multicast-listen- addr<MAC>] Parameters enable Enables and configures external ekahau RTLS engine engine ip<IP> port Configures the IP address and port number of the external <Port>...
Page 819 RTLS Instance 21-11 21.1.9 no RTLS Config Commands Negates a RTLS command or set its defaults Supported in the following platforms: • RFS7000 • RFS6000 Syntax no [aeroscout|ekahau|reference-tag|service|site| switch|ap|zone] Parameters aeroscout [enable| Negates aeroscout configuration multi-cast-listen|addr] • enable – Disable SOLE adapter •...
Page 820 21-12 Motorola RF Switch CLI Reference Guide service [filter <1-100> Negates service configuration for: {length| • filter <1-100> {length|memory-bank|offset} – Negates memory-bank|offset RFID tag filter configuration for the selected index }|inventory {<1- • length – Length of tag filter 100>|default] •...
Page 821 RTLS Instance 21-13 RFSwitch(config-rtls)#no ekahau enable RFSwitch(config-rtls)# RFSwitch(config-rtls)#no ekahau engine RFSwitch(config-rtls)# RFSwitch(config-rtls)#no service inventory 1 zone 1 RFSwitch(config-rtls)#...
Page 822: Reference-Tag
21-14 Motorola RF Switch CLI Reference Guide 21.1.10 reference-tag RTLS Config Commands Configures fixed RFID tag as reference tag and sets its coordinates within a specified location Supported in the following platforms: • RFS7000 • RFS6000 Syntax reference-tag rfid <tag-id> coordinates x <0-65535> y <0-65535>...
Page 823 RTLS Instance 21-15 Example RFSwitch(config-rtls)#reference-tag rfid Symbol-Moto coordinates x 600 y 600 orientation 180 range 40 RFSwitch(config-rtls)#...
Page 824: Rfid
21-16 Motorola RF Switch CLI Reference Guide 21.1.11 rfid RTLS Config Commands Configures RFID reader parameters Supported in the following platforms: • RFS7000 • RFS6000 NOTE: command instantiates sub- rfid (config-rtls-rfid) instance. For more details see RFID Instance on page 23-1.
Page 825: Service
RTLS Instance 21-17 21.1.12 service RTLS Config Commands Invokes service commands to troubleshoot or debug instance (config-rtls) configurations Supported in the following platforms: • RFS7000 • RFS6000 Syntax service [filter|inventory|show] service filter <1-100> [action|length|mask| memory-bank|name|offset] service filter <1-100> action [allow|deny] service filter <1-100>...
Page 826 21-18 Motorola RF Switch CLI Reference Guide Parameters service filter <1-100> Configures RFID tag filter [action|length <1- • action [allow|deny] – Configures action for tag filter. By 128>|mask| default its configured to allow memory- • length <1-128> – Configures number of bits to compare bank|name|offset<0-32>]...
Page 827 RTLS Instance 21-19 • start-trigger – Configures start trigger for tag inventory • gpi – Configures GPI event based start trigger • port <1-65535> – Configures GPI port number • event <0-1> – Configures a boolean GPI event value that causes GPI event to trigger •...
Page 828: Show
21-20 Motorola RF Switch CLI Reference Guide 21.1.13 show RTLS Config Commands Displays current system information Supported in the following platforms: • RFS7000 • RFS6000 SWITCH NOTE: The following commands display only for RFS6000: • power The following commands display only for RFS7000 : •...
Page 829 RTLS Instance 21-21 Example RFSwitch(config-rtls)#show ? access-list Internet Protocol (IP) aclstats Show ACL Statistics information alarm-log Display all alarms currently in the system autoinstall autoinstall configuration banner Display Message of the Day Login banner boot Display boot configuration. clock Display system clock commands Show command lists crypto...
Page 830 21-22 Motorola RF Switch CLI Reference Guide smtp-notifications Display SNMP engine parameters snmp Display SNMP engine parameters snmp-server Display SNMP engine parameters spanning-tree Display spanning tree information startup-config Contents of startup configuration static-channel-group static channel group membership terminal Display terminal configuration...
Page 831: Site
RTLS Instance 21-23 21.1.14 site RTLS Config Commands Configures RTLS site dimensions Supported in the following platforms: • RFS7000 • RFS6000 Syntax site [description|dimension|name] site description <description> site dimension [unit [feet|meters]|x <1-9000> y <1-9000> z <0-180>] site name <site-name> Parameters description <description>...
Page 832 21-24 Motorola RF Switch CLI Reference Guide Usage Guidelines to rollback the configurations [no] site [description |dimension|name] made using the command site Example RFSwitch(config-rtls)#site description "Motorola RMZ Ecospace, India, 5th Floor" RFSwitch(config-rtls)# RFSwitch(config-rtls)#site name "BLR-RMZ Ecospace" RFSwitch(config-rtls)#...
Page 833: Sole
RTLS Instance 21-25 21.1.15 sole RTLS Config Commands Sets Smart Opportunistic Location Engine (SOLE) related configuration commands This command leads you to the sub-instance. (config-rtls-sole)# Supported in the following platforms: • RFS7000 • RFS6000 NOTE: command instantiates sole (config-rtls-sole) sub-instance. For more details see SOLE Instance on page 24-1.
Page 834: Switch
21-26 Motorola RF Switch CLI Reference Guide 21.1.16 switch RTLS Config Commands Configures the switch’s geographical location parameters Supported in the following platforms: • RFS7000 • RFS6000 Syntax switch [coordinates|geo-coordinates] switch coordinates x <0-65535> y <0-65535> z <0-65535> switch geo-coordinates longitude <-180.00-80.00>...
Page 835: Zone
RTLS Instance 21-27 21.1.17 zone RTLS Config Commands Configures the zone. Maximum of 16 zones can be configured for a site. Supported in the following platforms: • RFS7000 • RFS6000 Syntax <0-65535> <0-65535> ] zone <1-48> [name <name>|perimeter x y < Parameters <1-48>name Select a single zone index for configuration...
Page 836 21-28 Motorola RF Switch CLI Reference Guide 21.1.18 ap RTLS Config Commands Configures ap coordinates • RFS7000 • RFS6000 Syntax ap <MAC> coordinates x <0-9000> y <0-9000> z <0-180> Parameters <MAC> coordinates x <0- Select a single zone index for configuration 9000>...
Page 837 ESPI Instance Use the instance to configure Enterprise Services Programming (config-rtls-espi) Interface (ESPI) related configuration commands. To navigate to this instance, use the commands RFSwitch(config)#rtls RFSwitch(config-rtls)#espi RFSwitch(config-rtls-espi)# 22.1 ESPI Config Commands Table 22.1 summarizes commands: config-rtls-espi Table 22.1 ESPI Config Command Summary Command Description Ref.
Page 838 22-2 Motorola RF Switch CLI Reference Guide Table 22.1 ESPI Config Command Summary (Continued) Command Description Ref. show Shows running system information page 22-...
Page 839: Espi Config Commands
ESPI Instance 22-3 22.1.1 adapter ESPI Config Commands Enables/disables a specified adapter or all adapters Supported in the following platforms: • RFS7000 • RFS6000 Syntax adapter ale-tcp [enable|port <3000-3100>] Parameters adapter ale-tcp Application side protocol implemented by adapter. [enable|port <3000- •...
Page 840: Clrscr
22-4 Motorola RF Switch CLI Reference Guide 22.1.2 clrscr ESPI Config Commands Clears the display screen Supported in the following platforms: • RFS7000 • RFS6000 Syntax clrscr Parameters None Example RFSwitch(config-rtls-espi)#clrscr RFSwitch(config-rtls-espi)#...
Page 841: End
ESPI Instance 22-5 22.1.3 end ESPI Config Commands Ends and exits the current mode and moves to the PRIV EXEC mode. The prompt changes RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000 Syntax Parameters None Example RFSwitch(config-rtls-espi)#end RFSwitch#...
Page 842: Exit
22-6 Motorola RF Switch CLI Reference Guide 22.1.4 exit ESPI Config Commands Ends the current mode and moves to the previous mode (GLOBAL-CONFIG). The prompt changes to RFSwitch(config)# Supported in the following platforms: • RFS7000 • RFS6000 Syntax exit Parameters...
Page 843: Help
ESPI Instance 22-7 22.1.5 help ESPI Config Commands Displays the system’s interactive help in HTML format Supported in the following platforms: • RFS7000 • RFS6000 Syntax help Parameters None Example RFSwitch(config-rtls-espi)#help CLI provides advanced help feature. When you need help, anytime at the command line please press '?'.
Page 844 22-8 Motorola RF Switch CLI Reference Guide 22.1.6 no ESPI Config Commands Defines the name of the adapter or disables the adapter(s) Supported in the following platforms: • RFS7000 • RFS6000 Syntax no adapter ale-tcp [enable|port <3000-3100>] Parameters adapter ale-tcp Negates ESPI adapter configurations.
Page 845: Service
ESPI Instance 22-9 22.1.7 service ESPI Config Commands Invokes service commands to troubleshoot or debug instance configurations (config-if) Supported in the following platforms: • RFS7000 • RFS6000 Syntax service show cli Parameters None Example RFSwitch(config-rtls-espi)#service show cli ESPI Config mode: +-adapter +-ADAPTER +-activate [adapter ADAPTER activate]...
Page 846: Show
22-10 Motorola RF Switch CLI Reference Guide 22.1.8 show ESPI Config Commands Displays current system information Supported in the following platforms: • RFS7000 • RFS6000 SWITCH NOTE: The following commands display only for RFS6000: • power The following commands display only for RFS7000 : •...
Page 847 ESPI Instance 22-11 environment show environmental information file Display filesystem information firewall Wireless firewall Display FTP Server configuration history Display the session command history interfaces Interface status Internet Protocol (IP) ldap LDAP server licenses Show any installed licenses logging Show logging configuration and buffer Internet Protocol (IP) mac-address-table...
Page 848 22-12 Motorola RF Switch CLI Reference Guide wireless Wireless configuration commands wlan-acl wlan based acl RFSwitch(config-rtls-espi)#show RFSwitch(config-rtls-espi)#show rtls espi ? adapter Adapter Configuration ecspecs ECSpecs configuration subscriber Show info for giver subsriber's IP tags Tags/Assets (passive, active, wi-fi, uwb) Information...
Page 849: Chapter 23. Rfid Instance
RFID Instance instance is used to configure RFID reader related (config-rtls-rfid) configuration parameters. To navigate to this instance, use the commands RFSwitch(config)#rtls RFSwitch(config-rtls)#rfid RFSwitch(config-rtls-rfid)# 23.1 RFID Config Commands Table 23.1 summarizes commands: config-rtls-rfid Table 23.1 RFID Config Commands Command Description Ref.
Page 850 23-2 Motorola RF Switch CLI Reference Guide Table 23.1 RFID Config Commands Command Description Ref. service Invokes service commands to troubleshoot or page 23-12 debug instance configurations (config-rtls) show Displays the running system information page 23-15...
Page 851: Activate
RFID Instance 23-3 23.1.1 activate RFID Instance Activates and enables the Real Time Location System (RTLS ) adapter Supported in the following platforms: • RFS7000 • RFS6000 Syntax activate Parameters None Usage Guidelines Use [no] to disable and deactivate the RTLS adapter Example RFSwitch(config-rtls-rfid)#activate RFSwitch(config-rtls-rfid)#...
Page 852: Clrscr
23-4 Motorola RF Switch CLI Reference Guide 23.1.2 clrscr RFID Instance Clears the display screen Supported in the following platforms: • RFS7000 • RFS6000 Syntax clrscr Parameters None Example RFSwitch(config-rtls-rfid)#clrscr RFSwitch(config-rtls-rfid)#...
Page 853: End
RFID Instance 23-5 23.1.3 end RFID Instance Ends and exits the current mode and changes to the PRIV EXEC mode. The prompt changes RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000 Syntax Parameters None Example RFSwitch(config-rtls-rfid)#end RFSwitch#...
Page 854: Exit
23-6 Motorola RF Switch CLI Reference Guide 23.1.4 exit RFID Instance Ends the current mode and moves to the previous mode (GLOBAL-CONFIG). The prompt changes to RFSwitch(config)# Supported in the following platforms: • RFS7000 • RFS6000 Syntax exit Parameters None...
Page 855: Help
RFID Instance 23-7 23.1.5 help RFID Instance Displays the interactive help system for RTLS instance Supported in the following platforms: • RFS7000 • RFS6000 Syntax help Parameters None Example RFSwitch(config-rtls-rfid)#help CLI provides advanced help feature. When you need help, anytime at the command line please press '?'. If nothing matches, the help list will be empty and you must backup until entering a '?' shows the available options.
Page 856 23-8 Motorola RF Switch CLI Reference Guide 23.1.6 no RFID Instance Supported in the following platforms:Negates a RTLS command or set its defaults • RFS7000 • RFS6000 Syntax no [activate|reader|service] Parameters activate Deactivates/disables RTLS adapter reader Disables RFID reader configuration commands...
Page 857: Reader
RFID Instance 23-9 23.1.7 reader RFID Instance Configures RFID Readers parameters Supported in the following platforms: • RFS7000 • RFS6000 Syntax reader [<index>|<reader-index-list>] reader <index> [antenna|coordinates|description| enable|id|name] reader <index> antenna [<antenna>|<antenna-list>] reader <index> antenna <antenna-list> [coordinates x <x-coordinate> y <y-coordinate> z <z-coordinate>| power <antenna-power>] reader <index>...
Page 858 23-10 Motorola RF Switch CLI Reference Guide antenna Configures the RFID readers antenna. Select a antenna [<antenna>|<antenna- using its index, between <1-8> or range (eg:3-7) of antenna list>] coordinates x <x- indices or any RFID reader antenna coordinate> y <y- •...
Page 859 RFID Instance 23-11 reader [<index>|<reader- Sets a user friendly name to a RFID reader or a group of index-list>] name RFID readers to <name> (1-20 characters). <name> Usage Guidelines to rollback any configurations [no] reader [<index>|<range>][options] performed using the command reader Example RFSwitch(config-rtls-rfid)#reader 1 antenna 1 coordinates x...
Page 860: Service
23-12 Motorola RF Switch CLI Reference Guide 23.1.8 service RFID Instance Invokes service commands to troubleshoot or debug (config-if) instance configurations Supported in the following platforms: • RFS7000 • RFS6000 Syntax service show cli service reader [<reader-index>|<reader-index-list>] [antenna|upgrade] service reader [<reader-index>|<reader-index-list>] antenna [<antenna-index>|<antenna-list>|any] filter [<tag-filter-...
Page 861 RFID Instance 23-13 service reader Displays the RFID reader configuration information. [<reader-index>| • <reader-index> – The RFID reader index. <reader-index-list>] • <reader-index-list> – A list of comma separated RFID antenna [<antenna- reader indices. index>|<antenna- • antenna [<antenna-index>|<antenna-list>|all] – The list>|any] filter [<tag- antenna information.
Page 862 23-14 Motorola RF Switch CLI Reference Guide Example RFSwitch(config-rtls-rfid)#service show cli RFID readers Config mode: +-activate [activate] +-adopt-unconf-readers [adopt-unconf-readers] +-clrscr [clrscr] +-do +-LINE [do LINE] +-end [end] +-exit [exit] +-help [help] +-no +-activate [no activate] +-adopt-unconf-readers [no adopt-unconf-readers] +-reader +-<1-48>...
Page 863: Show
RFID Instance 23-15 23.1.9 show RFID Instance Displays current system information Supported in the following platforms: • RFS7000 • RFS6000 SWITCH NOTE: The following commands display only for RFS6000: • power The following commands display only for RFS7000: • port-channel •...
Page 864 23-16 Motorola RF Switch CLI Reference Guide wios dataplane environment show environmental information file Display filesystem information firewall Wireless firewall Display FTP Server configuration history Display the session command history interfaces Interface status Internet Protocol (IP) ldap LDAP server licenses...
Page 865 RFID Instance 23-17 users Display information about currently logged in users version Display software & hardware version wireless Wireless configuration commands wlan-acl wlan based acl RFSwitch(config-rtls-rfid)#show RFSwitch(config-rtls-rfid)#show rtls rfid ? LLRP Reader protocol statistics (LLRP) inventory RFID Tag Inventory reader RFID Reader configuration commands RFSwitch(config-rtls-rfid)#...
Page 866 23-18 Motorola RF Switch CLI Reference Guide...
Page 867: Sole Config Commands
SOLE Instance Use the instance to configure SOLE Location Engine related (config-rtls-sole) parameters. To navigate to this instance, use the commands RFSwitch(config)#rtls RFSwitch(config-rtls)#sole RFSwitch(config-rtls-sole)# 24.1 SOLE Config Commands Table 24.1 summarizes commands: config-rtls-sole Table 24.1 Location Engine Config Command Summary Command Description Ref.
Page 868 24-2 Motorola RF Switch CLI Reference Guide Table 24.1 Location Engine Config Command Summary (Continued) Command Description Ref. service Invokes service commands to troubleshoot or debug page 24-11 instance configurations (config-rtls) show Displays the running system information page 24-12 rssi-filter...
Page 869: Clrscr
SOLE Instance 24-3 24.1.1 clrscr SOLE Instance Clears the display screen Supported in the following platforms: • RFS7000 • RFS6000 Syntax clrscr Parameters None Example RFSwitch(config-rtls-sole)#clrscr RFSwitch(config-rtls-sole)#...
Page 870: End
24-4 Motorola RF Switch CLI Reference Guide 24.1.2 end SOLE Instance Ends and exits the current mode and changes to the PRIV EXEC mode. The prompt changes RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000 Syntax Parameters None...
Page 871: Exit
SOLE Instance 24-5 24.1.3 exit SOLE Instance Ends the current mode and moves to the previous mode (GLOBAL-CONFIG). The prompt changes to RFSwitch(config)# Supported in the following platforms: • RFS7000 • RFS6000 Syntax exit Parameters None Example RFSwitch(config-rtls-sole)#exit RFSwitch(config-rtls-sole)#...
Page 872: Help
24-6 Motorola RF Switch CLI Reference Guide 24.1.4 help SOLE Instance Displays the interactive help system for RTLS instance Supported in the following platforms: • RFS7000 • RFS6000 Syntax help Parameters None Example RFSwitch(config-rtls-sole)#help CLI provides advanced help feature. When you need help, anytime at the command line please press '?'.
Page 873: Locate
SOLE Instance 24-7 24.1.5 locate SOLE Instance Configures location commands Supported in the following platforms: • RFS7000 • RFS6000 Syntax locate [aeroscout|mobile-unit|ekahau] locate mobile-unit [<MAC-Addr>|enable|interval] locate ekahau [enable|interval] Parameters aeroscout [enable|interval Locates aeroscout tags <5-3600> • enable – Enables on-board aeroscout location engine service •...
Page 874 24-8 Motorola RF Switch CLI Reference Guide Example RFSwitch(config-rtls-sole)#locate aeroscout enable RFSwitch(config-rtls-sole)# RFSwitch(config-rtls-sole)#locate aeroscout interval 300 RFSwitch(config-rtls-sole)#...
Page 875 SOLE Instance 24-9 24.1.6 no SOLE Instance Disables the locationing adapter(s) and its configurations Supported in the following platforms: • RFS7000 • RFS6000 Syntax no [aap-rssi-update-interval|locate|mobile-nit|redundancy| rssi-filter] Parameters aap-rssi-update-interval Disables AAP probe packet interval locate Negates Location commands [aeroscout|ekahau|mobile -unit] mobile-unit [<MAC- Locates specified mobile-unit Addr|enable|interval <5-...
Page 876: Redundancy
24-10 Motorola RF Switch CLI Reference Guide 24.1.7 redundancy SOLE Instance Enables redundancy support across cluster members for SOLE Supported in the following platforms: • RFS7000 • RFS6000 Syntax redundancy enable Parameters redundancy enable Enables the redundancy support across cluster members for...
Page 877: Service
SOLE Instance 24-11 24.1.8 service SOLE Instance Invokes service commands to troubleshoot or debug instance (config-rtls) configurations Supported in the following platforms: • RFS7000 • RFS6000 Syntax service show cli Parameters None Example RFSwitch(config-rtls-sole)#service show cli Location Engine Config mode: +-clrscr [clrscr] +-end [end] +-exit [exit]...
Page 878: Show
24-12 Motorola RF Switch CLI Reference Guide 24.1.9 show SOLE Instance Displays current system information Supported in the following platforms: • RFS7000 • RFS6000 SWITCH NOTE: The following commands display only for RFS6000: • power The following commands display only for RFS7000: •...
Page 879 SOLE Instance 24-13 dhcp DHCP Server Configuration environment show environmental information file Display filesystem information firewall Wireless firewall Display FTP Server configuration history Display the session command history interfaces Interface status Internet Protocol (IP) ldap LDAP server licenses Show any installed licenses logging Show logging configuration and buffer...
Page 880 24-14 Motorola RF Switch CLI Reference Guide RFSwitch(config-rtls-sole)#show RFSwitch(config-rtls-sole)#show rtls sole ? peers Show SOLE peer information probes Show probe information RFSwitch(config-rtls-sole)# RFSwitch(config-rtls-sole)#show rtls sole peers SOLE-WCCP status :DOWN SOLE-WCCP IP address:0.0.0.0 SOLE-Peer count RFSwitch(config-rtls-sole)# RFSwitch(config-rtls-sole)#show rtls sole probes Tag MAC...
Page 881: Rssi-Filter
SOLE Instance 24-15 24.1.10 rssi-filter SOLE Instance Filters rssi values below this threshold Supported in the following platforms: • RFS7000 • RFS6000 Syntax rssi-filter <-100-0> Parameters <-100-0> Displays rssi filter value in dbm Example RFSwitch(config-rtls-sole)#rssi-filter -9 RFSwitch(config-rtls-sole)#...
Page 882: Aap-Rssi-Update-Interval
24-16 Motorola RF Switch CLI Reference Guide 24.1.11 aap-rssi-update-interval SOLE Instance Displays AAP probe packet interval value in seconds Supported in the following platforms: • RFS7000 • RFS6000 Syntax aap-rssi-update-interval <5-3600> Parameters aap-rssi-update-interval Displays aap-rssi filter value in seconds <5-3600>...
Page 883: Mobile-Unit
SOLE Instance 24-17 24.1.12 mobile-unit SOLE Instance Displays mobile-unit configurations Supported in the following platforms: • RFS7000 • RFS6000 Syntax mobile-unit power-level <1-100> Parameters mobile-unit powerlevel Displays mobile-unit configurations <1-100>] • power-level <1-100> – Displays mobile-unit power-level Example RFSwitch(config-rtls-sole)#mobile-unit powerlevel 9 RFSwitch(config-rtls-sole)#...
Page 884 24-18 Motorola RF Switch CLI Reference Guide...
Page 885: Chapter 25. Smart Rf Instance
Smart RF Instance Use the instance to configure Smart RF related (config-wireless-smart-rf) configuration commands. To navigate to the instance, config-wireless-smart-rf use the following commands: RFSwitch(config)#wireless RFSwitch(config-wireless)#smart-rf RFSwitch(config-wireless-smart-rf)# 25.1 smart-rf Config Commands The following table summarizes commands: config-wireless-smart-rf Command Description Ref. assignable- Specifies the power range during power-assignment page 25-3...
Page 886 25-2 Motorola RF Switch CLI Reference Guide Command Description Ref. help Displays the interactive help system page 25-9 hold-time The number of seconds to disable interference page 25-10 avoidance after a detection Negates commands or resets values to default page 25-11...
Page 887: Assignable-Power-Range
Smart RF Instance 25-3 25.1.1 assignable-power-range Smart RF Instance Specifies the power range during power assignment. Supported in the following platforms: • RFS7000 • RFS6000 Syntax assignable-power-range [<lower bound> <upper bound>] Parameters assignable-power-range Specifies the power range during power assignment. [<lower bound>...
Page 888: Auto-Assign
25-4 Motorola RF Switch CLI Reference Guide 25.1.2 auto-assign Smart RF Instance Enables individual RF parameters to be auto-assigned Supported in the following platforms: • RFS7000 • RFS6000 Syntax auto-assign [all|channel|detector|power|rescuer] enable Parameters Enables individual RF parameters to be auto-assigned.
Page 889: Clrscr
Smart RF Instance 25-5 25.1.3 clrscr Smart RF Instance Clears the display screen Supported in the following platforms: • RFS7000 • RFS6000 Syntax clrscr Parameters None Example RFSwitch(config-wireless-smart-rf)#clrscr RFSwitch(config-wireless-smart-rf)#...
Page 890: End
25-6 Motorola RF Switch CLI Reference Guide 25.1.4 end Smart RF Instance Ends and exits the current mode and moves to the PRIV EXEC mode. The prompt changes RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000 Syntax Parameters...
Page 891: Exit
Smart RF Instance 25-7 25.1.5 exit Smart RF Instance Ends the current mode and moves to the previous mode ( ). The prompt config-wireless changes to RFSwitch(config-wireless)# Supported in the following platforms: • RFS7000 • RFS6000 Syntax exit Parameters None Example RFSwitch(config-wireless-smart-rf)#exit RFSwitch(config-wireless)#...
Page 892: Extensive-Scan
25-8 Motorola RF Switch CLI Reference Guide 25.1.6 extensive-scan Smart RF Instance Enters the extensive scan mode The device needs calibration at every level. tx-power Supported in the following platforms: • RFS7000 • RFS6000 Syntax extensive-scan enable Parameters extensive enable Enables the extensive scan mode.
Page 893: Help
Smart RF Instance 25-9 25.1.7 help Smart RF Instance Displays the system’s interactive help in HTML format Supported in the following platforms: • RFS7000 • RFS6000 Syntax help Parameters None Example RFS7000(config-wireless-smart-rf)#help CLI provides advanced help feature. When you need help, anytime at the command line please press '?'.
Page 894: Hold-Time
25-10 Motorola RF Switch CLI Reference Guide 25.1.8 hold-time Smart RF Instance Defines the number of seconds to disable interference avoidance after a detection This prevents a radio from changing channels continuously. Supported in the following platforms: • RFS7000 • RFS6000 Syntax hold-time <30-65535>...
Page 895 Smart RF Instance 25-11 25.1.9 no Smart RF Instance Disables the Smart RF configurations Supported in the following platforms: • RFS7000 • RFS6000 Syntax no [assignable-power-range|auto-assign|extensive-scan| hold-time|number-of-rescuers|radio|recover| retry-threshold|scan-dwell-time|schedule-calibrate| select-channels|service|smart-rf-module|verbose] no assignable-power-range [<4-20> <4-20>] no auto-assign [all|channel|detector|power|rescuer] no extensive-scan enable no number-of-rescuers no radio [<1-4096>|MAC-ADDRESS|RADIO|all-11a|all-11b| all-11bg] no recover [coverage-hole|interference|neighbor] enable...
Page 896 25-12 Motorola RF Switch CLI Reference Guide auto-assign [all |channel Negates the auto-assign commands |detector|power|rescuer] • all - Disables all auto-assignment features enable • channel enable – Disables channel assignments • detector enable – Disables detector assignments • power enable – Disables power assignments •...
Page 897 Smart RF Instance 25-13 radio [<1-4096>| Negates all radio related commands. MAC- Address|RADIO| • <1-4096> – For each of the radio, the following values all-11a|all-11b|all-11bg] are negated or reset: • antenna-gain <GAIN> – Resets the set antenna gain value. • coverage-rate [1|2|5p5|6|9|11|12|18|24|36|48|54 ] – Resets the selected coverage rate value.
Page 898 25-14 Motorola RF Switch CLI Reference Guide radio [<1-4096>|MAC • all-11a - for all 802.11a radios, the following values are Address|RADIO| negated or reset: all-11a|all-11b|all-11bg] • antenna-gain <GAIN> – Resets the set antenna gain value. (contd..) • coverage-rate [1|2|5p5|6|9|11|12|18|24|36|48|54)]- Resets the selected coverage rate value.
Page 899 Smart RF Instance 25-15 scan-dwell-time <1-10> Resets the time a scan dwells on a channel during scan. schedule-calibrate Resets the calibration schedule parameters. [enable|interval| • enable – Disables the calibration schedule feature. start-time] • interval – Negates the calibration schedule interval. •...
Page 900 25-16 Motorola RF Switch CLI Reference Guide retry-threshold The average number retries to cause a radio to re-run channel selection scan-dwell-time The number of seconds to dwell on a channel during scan schedule-calibrate configure calibration schedule parameters select-channels Revert selected-channels to default...
Page 901 Smart RF Instance 25-17 RFSwitch(config-wireless-smart-rf)# RFSwitch(config-wireless-smart-rf)#no smart-rf-module enable RFSwitch(config-wireless-smart-rf)# RFSwitch(config-wireless-smart-rf)#no verbose enable RFSwitch(config-wireless-smart-rf)#...
Page 902: Number-Of-Rescuers
25-18 Motorola RF Switch CLI Reference Guide 25.1.10 number-of-rescuers Smart RF Instance Configures the number of rescuers to cover faulty radio conditions Supported in the following platforms: • RFS7000 • RFS6000 Syntax number-of-rescuers <1-5> Parameters <1-5> The number of rescuers to use to cover faulty radio number-of-rescuers conditions.
Page 903: Radio
Smart RF Instance 25-19 25.1.11 radio Smart RF Instance Configures the different Smart RF radio parameters Supported in the following platforms: • RFS7000 • RFS6000 radio [<1-4096>|MAC-ADDRESS|RADIO|all-11a|all-11b|all-11bg] antenna-gain|coverage-rate| radio <1-4096> [ lock-auto-assign | radio-mac | rescuer] radio <1-4096> anternna-gain <GAIN> radio <1-4096>...
Page 904 25-20 Motorola RF Switch CLI Reference Guide radio all-11b coverage-rate [1|2|5p5|6|9|11|12|18|24|36|48|54] radio all-11b lock-auto-assign [all|channel|detector|power|rescuer] radio all-11bg anternna-gain <GAIN> radio all-11bg coverage-rate [1|2|5p5|6|9|11|12|18|24|36|48|54] radio all-11bg lock-auto-assign [all|channel|detector|power|rescuer] Parameters <1-4096> [antenna-gain | Sets the following parameters for the selected radio: coverage-rate | •...
Page 905 Smart RF Instance 25-21 AA-BB-CC-DD-EE-FF Sets the following parameters for the selected radio. [antenna-gain | • antenna-gain <GAIN> – Sets the antenna-gain value to coverage-rate | GAIN for the selected radio. lock-auto-assign | • coverage-rate [1|2|5p5|6|9|11|12|18|24|36|48|54] – Sets rescuer] the coverage rate threshold value for under-coverage detection to the selected value from the list.
Page 906 25-22 Motorola RF Switch CLI Reference Guide all-11a [antenna-gain| Sets the radio parameters for all 802.11a radios. coverage-rate|lock-auto- • antenna-gain <GAIN> – Sets the antenna-gain value to assign] GAIN for the selected radio. • coverage-rate [1|2|5p5|6|9|11|12|18|24|36|48|54] – Sets the coverage rate threshold value for under-coverage detection to the selected value from the list.
Page 907 Smart RF Instance 25-23 Example RFSwitch(config-wireless-smart-rf)#radio 1 antenna-gain 20 RFSwitch(config-wireless-smart-rf)#radio 1 coverage-area 18 RFSwitch(config-wireless-smart-rf)#radio 1 lock-auto-assign channel RFSwitch(config-wireless-smart-rf)#radio 1 radio-mac 1-2-3- 4-5-6 RFSwitch(config-wireless-smart-rf)#radio 1 rescuer 1-2-3-4- 5-6 20 30 RFSwitch(config-wireless-smart-rf)#radio 1-2-3-4-5-6 antenna-gain 20 RFSwitch(config-wireless-smart-rf)#radio 2-5,8,11,15 antenna-gain 20 RFSwitch(config-wireless-smart-rf)#radio all-11a coverage- rate 5p5 RFSwitch(config-wireless-smart-rf)#radio all-11b lock-auto- assign power...
Page 908: Recover
25-24 Motorola RF Switch CLI Reference Guide 25.1.12 recover Smart RF Instance Enables individual self-recovery features Supported in the following platforms: • RFS7000 • RFS6000 Syntax recover [coverage-hole|interference|neighbor] Parameters recover [coverage-hole| Enables individual self recovery features: interference|neighbor] • coverage-hole enable – Enables recovery from...
Page 909: Retry-Threshold
Smart RF Instance 25-25 25.1.13 retry-threshold Smart RF Instance Sets the threshold for the average number of retries performed before a radio re-runs a channel scan Supported in the following platforms: • RFS7000 • RFS6000 Syntax retry-threshold <0.0-15.0> Parameters <0.0-15.0> The value in decimal number.
Page 910: Run-Calibrate
25-26 Motorola RF Switch CLI Reference Guide 25.1.14 run-calibrate Smart RF Instance Starts an automatic RF configuration process Supported in the following platforms: • RFS7000 • RFS6000 Syntax run-caliberate Parameters None Example run-caliberate...
Page 911: Scan-Dwell-Time
Smart RF Instance 25-27 25.1.15 scan-dwell-time Smart RF Instance Sets the time in seconds to dwell on a channel during a channel scan Supported in the following platforms: • RFS7000 • RFS6000 Syntax scan-dwell-time <1-10> Parameters scan-dwell-time <1-10> The duration in seconds to dwell on a channel during a channel scan.
Page 912: Schedule-Calibrate
25-28 Motorola RF Switch CLI Reference Guide 25.1.16 schedule-calibrate Smart RF Instance Configures the calibrate schedule parameters This is used to configure parameters that schedule the automatic configuration of the Smart RF feature. Supported in the following platforms: • RFS7000 •...
Page 913: Select-Channels
Smart RF Instance 25-29 25.1.17 select-channels Smart RF Instance Selects a list of channels for Automatic Channel Scan and Smart RF Use this command to add channels or remove them from the channel list. Supported in the following platforms: • RFS7000 •...
Page 914: Service
25-30 Motorola RF Switch CLI Reference Guide 25.1.18 service Smart RF Instance Invokes service commands to troubleshoot or debug (config-wireless-smart-rf) instance configurations Supported in the following platforms: • RFS7000 • RFS6000 Syntax service show cli service smart-rf [clear-history|load-from-file|max-history |replay|rescue|restore|save-to-file|simulate|step-calibrate] service smart-rf clear-history service smart-rf load-from-file service smart-rf max-history <0-65535>...
Page 915 Smart RF Instance 25-31 Parameters show cli Displays the CLI tree of the current mode. smart-rf [clear-history | Smart RF related commands are executed from this service load-from-file| command. max-history|replay| • clear-history – Clears assignment history rescue|restore| • load-from-file – Loads Smart RF record from file save-to-file|simulate| smart.bin step-calibrate]...
Page 916 25-32 Motorola RF Switch CLI Reference Guide • assign-prepare – Prepares assignment • assign-rescuers – Assigns rescuers along with recovering power • collect-data – Collects site measurement data • prepare-detectors – Prepare prior to assign detectors • pull-rf-config – Pull RF-configuration from cluster members •...
Page 917 Smart RF Instance 25-33 +-help [help] +-hold-time +-<30-65535> [hold-time <30-65535>] +-no +-assignable-power-range [no assignable-power-range] +-auto-assign +-all +-enable [no auto-assign (detector|channel|power|rescuer|all) enable] +-channel +-enable [no auto-assign (detector|channel|power|rescuer|all) enable] +-detector +-enable [no auto-assign (detector|channel|power|rescuer|all) enable] +-power +-enable [no auto-assign (detector|channel|power|rescuer|all) enable] +-rescuer +-enable [no auto-assign (detector|channel|power|rescuer|all) enable] +-extensive-scan...
Page 918: Show
25-34 Motorola RF Switch CLI Reference Guide 25.1.19 show Smart RF Instance Displays current system information Supported in the following platforms: • RFS7000 • RFS6000 SWITCH NOTE: The following commands display only for RFS6000: • power The following commands display only for RFS7000 : •...
Page 919 Smart RF Instance 25-35 Parameters Displays the parameters for which information can be viewed using the show command Example RFSwitch(config-wireless-smart-rf)#show ? access-list Internet Protocol (IP) aclstats Show ACL Statistics information alarm-log Display all alarms currently in the system autoinstall autoinstall configuration banner Display Message of the Day Login banner...
Page 920 25-36 Motorola RF Switch CLI Reference Guide role Configure role parameters rtls Real Time Locating System commands running-config Current Operating configuration securitymgr Securitymgr parameters sessions Display current active open connections snmp Display SNMP engine parameters snmp-server Display SNMP engine parameters...
Page 921 Smart RF Instance 25-37 default-ap Information for default access-port hotspot-config Wlan hotspot configuration Intrusion detection parameters known Known AP related parameters mac-auth-local list out the mac-auth-local entries mesh Mesh related parameters mobile-unit Details of associated mobile- units multicast-packet-limit multicast-packet-limit phrase-to-key display the WEP keys generated by a passphrase...
Page 922 25-38 Motorola RF Switch CLI Reference Guide radio Radio related commands RFSwitch(config-wireless-smart-rf)# RFSwitch(config-wireless-smart-rf)#show wireless smart-rf configuration Smart-RF Module : disabled Smart-RF Calibration configuration: auto-assign detector : enabled auto-assign channel : disabled auto-assign power : enabled auto-assign rescuer : enabled channels selected...
Page 923 Smart RF Instance 25-39 0.0.0.0 Cluster Master : Last Calibration Started at: Sun Sep 7 06:01:48 2008 Last Calibration Ended at: Sun Sep 7 06:01:48 2008 Next calibration Starts at: not scheduled RFSwitch(config-wireless-smart-rf)# RFSwitch(config-wireless-smart-rf)#show wireless smart-rf history Smart Master IP: 0.0.0.0 0.0.0.0 Cluster Master :...
Page 924: Smart-Rf-Module
25-40 Motorola RF Switch CLI Reference Guide 25.1.20 smart-rf-module Smart RF Instance Enables the Smart RF feature Supported in the following platforms: • RFS7000 • RFS6000 Syntax smart-rf-module enable Parameters smart-rf-module enable Enables Smart RF. Example RFSwitch(config-wireless-smart-rf)#smart-rf-module enable RFSwitch(config-wireless-smart-rf)#...
Page 925: Verbose
Smart RF Instance 25-41 25.1.21 verbose Smart RF Instance Enables the verbose mode that records every Smart RF assignment Supported in the following platforms: • RFS7000 • RFS6000 Syntax verbose enable Parameters verbose enable Enables the verbose mode where every Smart RF assignment is recorded.
Page 926 25-42 Motorola RF Switch CLI Reference Guide...
Page 927: Chapter 26. Role Instance
Role Instance Use the instance to configure Role related configuration commands. To (config-role) navigate to the instance, use the following commands: config-role RFSwitch(config)#role <rolename> <rolepriority> RFSwitch(config-role)# For more information on the command, see role on page 5-80. role 26.1 Role Config Commands The following table summarizes commands: config-role...
Page 928 26-2 Motorola RF Switch CLI Reference Guide Command Description mRef. mu-mac Sets MU MAC configuration properties page 26-12 Negates role commands. page 26-14 service Invokes service commands to troubleshoot or debug page 26-18 instance configurations (config-dhcp) show Displays the running system information...
Page 929: Ap-Location
Role Instance 26-3 26.1.1 ap-location Role Config Commands Sets the AP location configuration • This requires the location engine to be enabled on the RF Switch with a site, appropriate zones defined and AP co-ordinates defined. The role based firewall has to know which zone the MU is located when it associates for the ap-parameter option to work.
Page 930 26-4 Motorola RF Switch CLI Reference Guide RFSwitch(config-role)#ap-location not-contains office RFSwitch(config-role)#...
Page 931: Authentication-Type
Role Instance 26-5 26.1.2 authentication-type Role Config Commands Selects authentication type for the role Supported in the following platforms: • RFS6000 • RFS7000 Syntax authentication-type [any|eq|neq] authentication-type any authentication-type eq [eap|hotspot|kerberos|mac-auth|none] authentication-type neq[eap|hotspot|kerberos|mac-auth|none] Parameters Any type of authentication. Authentication type equals one of the following: [eap|hotspot|kerberos| •...
Page 932: Encryption-Type
26-6 Motorola RF Switch CLI Reference Guide 26.1.3 encryption-type Role Config Commands Selects encryption for the role Supported in the following platforms: • RFS6000 • RFS7000 Syntax encryption-type [any|eq|neq] encryption-type any encryption-type eq [ccmp|keyguard|none|tkip|tkip-ccmp| wep128|wep128-keyguard|wep64] encryption-type neq [ccmp|keyguard|none|tkip|tkip-ccmp| wep128|wep128-keyguard|wep64] Parameters...
Page 933 Role Instance 26-7 Encryption type must not be one of the listed options. [ccmp|keyguard|none|tki p|tkip-ccmp| wep128|wep128- keyguard|wep64] Example RFSwitch(config-role)#encryption-type wep128 RFSwitch(config-role)#...
Page 934: Essid
26-8 Motorola RF Switch CLI Reference Guide 26.1.4 essid Role Config Commands Sets ESSID configuration for the role Supported in the following platforms: • RFS6000 • RFS7000 Syntax essid [any|contains|exact|not-contains] essid any essid contains <WORD> essid exact <WORD> essid not-contains <WORD>...
Page 935: Group
Role Instance 26-9 26.1.5 group Role Config Commands Sets group configuration for the role Supported in the following platforms: • RFS6000 • RFS7000 Syntax group [any|contains|exact|not-contains] group any group contains <WORD> group exact <WORD> group not-contains <WORD> Parameters Any group. contains <WORD>...
Page 936 26-10 Motorola RF Switch CLI Reference Guide 26.1.6 ip Role Config Commands Sets IP parameters for the role Supported in the following platforms: • RFS6000 • RFS7000 Syntax ip access-group [<1-99>|<100-199>|<1300-1999>| <2000-2699>|<WORD>] [in|out] acl-precedence <1-100> Parameters access-group Sets the ACL precedence for the following ACL List entries [<1-99>|...
Page 937: Mac
Role Instance 26-11 26.1.7 mac Role Config Commands Sets MAC access group configuration commands Supported in the following platforms: • RFS6000 • RFS7000 Syntax mac access-group <WORD> [in|out] acl-precedence <1-100> Parameters access-group <word> Sets MAC access group configuration parameters [in|out] acl-precedence •...
Page 938: Mu-Mac
26-12 Motorola RF Switch CLI Reference Guide 26.1.8 mu-mac Role Config Commands Configures the MU MAC addresses for role based firewall Syntax mu-mac [<MAC Address>|<MAC Address>/<Mask>|any] Parameters <MAC Address> The address of the MU that is allowed. MAC address can be in the format AA:BB:CC:DD:EE:FF or AA-BB-CC-DD-EE-FF or AABB.CCDD.EEFF.
Page 939: Clrscr
Role Instance 26-13 26.1.9 clrscr Role Config Commands Clears the display screen Supported in the following platforms: • RFS7000 • RFS6000 Syntax clrscr Parameters None Example RFSwitch(config-role)#clrscr RFSwitch(config-role)#...
Page 940 26-14 Motorola RF Switch CLI Reference Guide 26.1.10 no Role Config Commands Negates role commands Supported in the following platforms: • RFS6000 • RFS7000 Syntax no [ap-location|authentication-type|encryption-type|essid| group|ip|mac|mu-mac] no ap-location no authentication-type no encryption-type no essid no group no ip access-group [<1-99>|<100-199>|<1300-1999>| <2000-2699>|<WORD>] [in|out] acl-precedence <1-100>...
Page 941: End
Role Instance 26-15 26.1.11 end Role Config Commands Exits the current mode and moves to the PRIV EXEC mode. The prompt changes to RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000 Syntax Parameters None Example RFSwitch(config-role)#end RFSwitch#...
Page 942: Exit
26-16 Motorola RF Switch CLI Reference Guide 26.1.12 exit Role Config Commands Ends the current mode and moves to the previous mode (GLOBAL-CONFIG). The prompt changes to RFSwitch#(config)# Supported in the following platforms: • RFS7000 • RFS6000 Syntax exit Parameters...
Page 943: Help
Role Instance 26-17 26.1.13 help Role Config Commands Displays the system’s interactive help in HTML format Supported in the following platforms: • RFS7000 • RFS6000 Syntax help Parameters None Example RFSwitch(config-role)#help CLI provides advanced help feature. When you need help, anytime at the command line please press '?'.
Page 944: Service
26-18 Motorola RF Switch CLI Reference Guide 26.1.14 service Role Config Commands Invokes service commands to troubleshoot or debug instance (config-role) configurations Supported in the following platforms: • RFS7000 • RFS6000 Syntax service show cli Parameters None Example RFSwitch(config-role#service show cli...
Page 945: Show
Role Instance 26-19 26.1.15 show Role Config Commands Displays current system information Supported in the following platforms: • RFS7000 • RFS6000 SWITCH NOTE: The following commands display only for RFS6000: • power The following commands display only for RFS7000: port-channel •...
Page 946 26-20 Motorola RF Switch CLI Reference Guide firewall Wireless firewall Display FTP Server configuration history Display the session command history interfaces Interface status Internet Protocol (IP) ldap LDAP server licenses Show any installed licenses logging Show logging configuration and buffer...
Page 948 MOTOROLA INC. 1303 E. ALGONQUIN ROAD SCHAUMBURG, IL 60196 http://www.motorola.com 72E-121710-01 Revision A March 2009...

This manual is also suitable for:

Rfs6000 Rfs7000

Motorola RFS Series Reference Manual

Chapter 1. Introduction

Chapter 2 .Common Commands

Chapter 3. User Exec Commands

Chapter 4. Privileged Exec Commands

Chapter 5 .Global Configuration Commands

Chapter 6. Crypto-Isakmp Instance

Chapter 7. Crypto-Group Instance

Chapter 8. Crypto-Peer Instance

Chapter 9. Crypto-Ipsec Instance

Chapter 10. Crypto-Map Instance

Chapter 11. Crypto-Trustpoint Instance

Chapter 12. Interface Instance

Chapter 13. Spanning Tree-Mst Instance

Chapter 14. Extended ACL Instance

Quick Links

Related Manuals for Motorola RFS Series

Summary of Contents for Motorola RFS Series