Page 1 Motorola RFS Series Wireless LAN Switches WiNG CLI Reference Guide...
Page 2 © 2010 Motorola, Inc. All rights reserved. MOTOROLA and the Stylized M Logo are registered in the US Patent & Trademark Office. Symbol is a registered trademark of Symbol Technologies, Inc. All other product or service names are the prop-...
Page 3: Table Of Contents
Motorola Enterprise Mobility Support Center ........
Page 4 TOC-2 Motorola RF Switch CLI Reference Guide 1.4.5 Command Output pagination ........... 1-13 1.4.6 Transposing Mistyped Characters .
Page 5 Contents - TOC-3 2.1.32 smtp-notification ............2-86 2.1.33 snmp .
Page 6 TOC-4 Motorola RF Switch CLI Reference Guide Chapter 3. User Exec Commands 3.1 User Exec Commands ............. . . 3-1 3.1.1 clear .
Page 7 Contents - TOC-5 4.1.22 more ..............4-37 4.1.23 page .
Page 8 TOC-6 Motorola RF Switch CLI Reference Guide 5.1.18 license..............5-69 5.1.19 line .
Page 9 Contents - TOC-7 Chapter 6. Crypto-isakmp Instance 6.1 Crypto ISAKMP Config Commands ........... . . 6-1 6.1.1 authentication.
Page 10 TOC-8 Motorola RF Switch CLI Reference Guide Chapter 9. Crypto-ipsec Instance 9.1 Crypto IPSec Config Commands ............9-1 9.1.1 end .
Page 11 Contents - TOC-9 11.1.14 subject-name ............. . 11-19 Chapter 12.
Page 12 TOC-10 Motorola RF Switch CLI Reference Guide 13.1.6 name ..............13-8 13.1.7 no .
Page 13 Contents - TOC-11 15.1.8.1 Permitting IP Based Traffic ..........15-27 15.1.8.2 Permitting Telnet Based Traffic .
Page 14 TOC-12 Motorola RF Switch CLI Reference Guide 17.1.6 mark ..............17-10 17.1.6.1 Example - Marking dot1p Priority Value for 802.1q Tagged Traffic .
Page 15 Contents - TOC-13 18.1.22 option ..............18-29 18.1.23 service.
Page 16 TOC-14 Motorola RF Switch CLI Reference Guide 19.1.11 ldap-server ..............19-29 19.1.12 nas .
Page 17 Contents - TOC-15 20.1.23 dot11-shared-key-auth ............20-46 20.1.24 end .
Page 18 TOC-16 Motorola RF Switch CLI Reference Guide 21.1.2 clear ..............21-3 21.1.3 clrscr .
Page 19 Contents - TOC-17 23.1.7 reader ..............23-9 23.1.8 service.
Page 20 TOC-18 Motorola RF Switch CLI Reference Guide 25.1.17 select-channels............. 25-23 25.1.18 service.
Page 21: About This Guide
About This Guide This Motorola RF Switch CLI Reference Guide and contains the following sections: • Who Should Use this Guide • How to Use this Guide • Conventions Used in this Guide • Motorola Enterprise Mobility Support Center •...
Page 22: How To Use This Guide
Motorola RF Switch CLI Reference Guide The syntax, parameters and descriptions within this guide can also be used generically for a RFS7000, RFS6000 and RFS4000 model switch. However, some subtle differences do exist amongst these switches. These differences are strongly noted within the specific commands impacted.
Page 23 Chapter Jump to this section if you want to... Chapter 10, “Crypto-map Summarizes the commands within the (crypto-map) Instance” switch CLI. Chapter 11, “Crypto- Summarizes the commands (crypto trustpoint) trustpoint Instance” within the switch CLI. Chapter 12, “Interface Summarizes the commands within the (config-if) Instance”...
Page 24 Motorola RF Switch CLI Reference Guide Chapter Jump to this section if you want to... Chapter 24, “SOLE Instance” Summarizes the instance (config-rtls-sole) commands within the switch CLI Chapter 25, “Smart RF Summarizes the (config-wireless-smart-rf) Instance” instance commands within the switch CLI Chapter 26, “Role Instance”...
Page 25: Conventions Used In This Guide
xxiii Conventions Used in this Guide This section describes the following topics: • Annotated Symbols • Notational Conventions Annotated Symbols The following document conventions are used in this document: NOTE: Indicates tips or special requirements. CAUTION: Indicates conditions that can cause equipment damage or data loss.
Page 26 Motorola RF Switch CLI Reference Guide • action items • lists of alternatives • lists of required steps that are not necessarily sequential • Sequential lists (those describing step-by-step procedures) appear as numbered lists. Understanding Command Syntax command / keyword The first word is always a command. Keywords are words that must be entered as is.
Page 27 The pipe symbol. This is used to separate the variables/keywords in a list. For example, the command RFSwitch> show ..is documented as show [autoinstall|banner|ip|ldap|..] where: • set – The command • [autoinstall|banner|ip|ldap|..] – Indicates the different commands that can be combined with the show command. However, only one of the above list can be used at a time.
Page 28 Motorola RF Switch CLI Reference Guide Any command/keyword/variable or a combination of them inside a ‘{‘ & ‘}’ pair is optional. All optional commands follow the same conventions as listed above. However they are displayed itali- cized. For example, the command RFSwitch>...
Page 29: Motorola Enterprise Mobility Support Center
• Model number or product name • Software type and version number Motorola responds to calls by email, telephone or fax within the time limits set forth in support agreements. If you purchased your Enterprise Mobility business product from a Motorola business partner, contact that business partner for support.
Page 30 Motorola RF Switch CLI Reference Guide Website: http://www.motorola.com...
Page 31: Motorola, Inc
OTHER LEGAL ENTITY, YOU REPRESENT AND WARRANT THAT YOU HAVE THE AUTHORITY TO BIND THAT COMPANY, PERSON OR ENTITY. 1. LICENSE GRANT. Subject to the terms of this Agreement, Motorola, Inc. and/or its subsidiaries ("Licensor") hereby grants Licensee a limited, personal, non-sublicensable, non transferable, non-exclusive license to use the software that Licensee is about to download or install and the documentation that accompanies it (collectively, the "Software") for...
Page 32: Contents -
Motorola RF Switch CLI Reference Guide 3. INTELLECTUAL PROPERTY; CONTENT. All title and intellectual property rights in and to the Software (including but not limited to any images, photographs, animations, video, audio, music, text and "applets" incorporated into the Software), and any copies you are permitted to make herein are owned by Licensor or its suppliers.
Page 33 xxxi 6. DISCLAIMER OF WARRANTIES. To the maximum extent permitted by applicable law, Licensor and its suppliers provide the Software and any (if any) Support Services AS IS AND WITH ALL FAULTS, and hereby disclaim all warranties and conditions, either express, implied or statutory, including, but not limited to, any (if any) implied warranties or conditions of merchantability, of fitness for a particular purpose, of lack of viruses, of accuracy or completeness of responses, of results, and of lack of negligence or lack of...
Page 34 "Restricted Rights" as provided for in FAR, 48 CFR 52.227-14 (JUNE 1987) or DFAR, 48 CFR 252.227- 7013 (OCT 1988), as applicable. The "Manufacturer" for purposes of these regulations is Motorola, Inc., One Symbol Plaza, Holtsville, NY 11742. 12. EXPORT RESTRICTIONS. Licensee shall comply with all export laws and restrictions and regulations of the Department of Commerce, the United States Department of Treasury Office of Foreign Assets Control ("OFAC"), or other United States or foreign agency or...
Page 35 xxxiii waiver. This Agreement shall be governed by the laws of the State of New York without regard to the conflicts of law provisions thereof. The application the United Nations Convention of Contracts for the International Sale of Goods is expressly excluded. Unless waived by Licensor for a particular instance, any action or proceeding arising out of this Agreement must be brought exclusively in the state or federal courts of New York and Licensee hereby consents to the jurisdiction of such courts for any such action or proceeding.
Page 36 Motorola RF Switch CLI Reference Guide...
Page 37: Chapter 1. Introduction
Introduction This chapter describes the commands defined by the switch Command Line Interface (CLI). Access the CLI (on the supported RFS6000, RFS4000, and RFS7000 models) by running a terminal emulation program on a computer connected to the serial port on the front of the switch, or by using a Telnet session via secure shell (SSH) to access the switch over the network.
Page 38: Cli Overview
Motorola RF Switch CLI Reference Guide 1.1 CLI Overview The CLI is used for configuring, monitoring, and maintaining the switch managed network. The user interface allows you to execute commands (on the supported RFS6000, RFS4000, and RFS7000 models) using either a serial console or a remote access method.
Page 39: Cli Modes
Introduction 1- 1.1.2 CLI Modes The CLI is segregated into different command modes. Each mode has its own set of commands for configuration, maintenance and monitoring. The commands available at any given time depend on the mode you are in, and to a lesser extent, the particular RFS6000 or RFS7000 model used.
Page 40 Motorola RF Switch CLI Reference Guide You can also access sub-modes from the global configuration mode. Configuration sub- modes define specific features within the context of a configuration mode. Table 1.1 summarizes the commands available from the switch. Table 1.1 RF Switch CLI Hierarchy...
Page 41 Introduction 1- Table 1.1 RF Switch CLI Hierarchy User Exec Mode Priv Exec Mode Global Configuration Mode halt line help local kill logging logout mkdir mac-address-table more mac-name management page ping prompt quit radius-server reload redundancy rename rtls rmdir service service show show...
Page 42 Motorola RF Switch CLI Reference Guide Table 1.1 RF Switch CLI Hierarchy User Exec Mode Priv Exec Mode Global Configuration Mode write format wireless wireless-acl firewall network-element-id ratelimit role virtual-ip wwan To return from the Global Config mode to the Privilege Exec mode use:...
Page 43: Getting Context Sensitive Help
Introduction 1- 1.2 Getting Context Sensitive Help Enter a question mark (?) at the system prompt to display a list of commands available for each mode. Obtain a list of arguments and keywords for any command using the CLI context-sensitive help. Use the following commands to obtain help specific to a command mode, command name, keyword or argument: Command...
Page 44 Motorola RF Switch CLI Reference Guide When using context-sensitive help, the space (or lack of a space) before the question mark (?) is significant. To obtain a list of commands that begin with a particular sequence, enter the characters followed by a question mark (?). Do not include a space. This form of help is called word help, because it completes a word.
Page 45: Using The No And Default Command Forms
Introduction 1- 1.3 Using the No and Default Command Forms Almost every command has a form. Use no to disable a feature or function. Use the command without the keyword to re-enable a disabled feature or enable a feature disabled by default. 1.3.1 Basic Conventions Keep the following conventions in mind while working within the CLI: •...
Page 46: Using Cli Editing Features And Shortcuts
1-10 Motorola RF Switch CLI Reference Guide 1.4 Using CLI Editing Features and Shortcuts A variety of shortcuts and edit features are available. The following describe these features: • Moving the Cursor on the Command Line • Completing a Partial Command Name •...
Page 47: Completing A Partial Command Name
Introduction 1- Function Keystrokes Summary Function Details Esc, B Back word Moves the cursor back one word Esc, F Forward word Moves the cursor forward one word Ctrl-A Beginning of line Moves the cursor to the beginning of the line Ctrl-E End of line Moves the cursor to the end of the...
Page 48: Deleting Entries
1-12 Motorola RF Switch CLI Reference Guide The CLI recognizes a command once you have entered enough characters to make the command unique. If you enter “conf” within the privileged EXEC mode, the CLI associates the entry with the configure command, since only the configure command begins with...
Page 49: Re-Displaying The Current Command Line
Introduction 1- 1.4.4 Re-displaying the Current Command Line If entering a command and the system suddenly sends a message, you can recall the current command entry. To re-display the current command line (refresh the screen), use the following key combination: Keystrokes Purpose Ctrl-L...
Page 50 1-14 Motorola RF Switch CLI Reference Guide...
Page 51: Common Commands
Common Commands This chapter describes the CLI commands used in the USER EXEC, PRIV EXEC, and GLOBAL CONFIG modes. The PRIV EXEC command set contains those commands available within the USER EXEC mode. Some commands can be entered in either mode. Commands entered in either USER EXEC mode or PRIV EXEC mode are referred to as EXEC mode commands.
Page 52: Clrscr
Motorola RF Switch CLI Reference Guide 2.1.1 clrscr  Common Commands Clears the screen and refreshes the prompt (#) Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax clrscr Parameters None Example RFSwitch#clrscr RFSwitch#...
Page 53: Exit
Common Commands 2.1.2 exit  Common Commands Ends the current mode and moves to the previous mode Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax exit Parameters None Example RFSwitch(config)#exit RFSwitch#...
Page 54: Help
Motorola RF Switch CLI Reference Guide 2.1.3 help  Common Commands Use this command to access the advanced help feature. Use “?” anytime at the command prompt to access the help topic. Two kinds of help are provided: 1. Full help is available when ready to enter a command argument.
Page 55 Common Commands 2.1.4 no  Common Commands Negates a command or sets its defaults Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax Parameters None Example (User Exec) RFSwitch>no ? cluster-cli Cluster context mobile-unit mobile-unit index page Toggle paging service Service Commands...
Page 56 Motorola RF Switch CLI Reference Guide Address Resolution Protocol (ARP) access-list Configure access-lists autoinstall autoinstall configuration command banner Reset login banner to nothing bridge Bridge group commands country-code Clear the currently configured country code. All existing configurations will be erased...
Page 57: Service
Common Commands 2.1.5 service  Common Commands Service commands are used to manage the switch configuration in all modes. Depending on the mode, different service commands will display. • RFS7000 • RFS6000 • RFS4000 Syntax (User Executable Mode) service [clear|diag|encrypt|kill|locator|save-cli|show| undefine|wireless] service [locator|save-cli|undefine] service clear [command-history|reboot-history|...
Page 58 Motorola RF Switch CLI Reference Guide service show [cli|command-history|crash-info|diag|info| memory|process|reboot-history|rtls|startup-log| upgrade-history|watchdog] service show [cli|command-history|crash-info|info|memory| process|reboot-history|startup-log|upgrade-history| watchdog] service show diag [hardware|led-status|limits|period|stats| tech-support-period|tech-support-url|top] service show rtls [location-history|rfid] service show rtls location-history service show rtls rfid events reader {<1-48>} service undefine ecspec {<ECSpec-name>}...
Page 59 Common Commands diag Diagnostics commands [enable|identify|limit| • enable – Enables in-service diagnostics period|poe • identify – Identifies a switch by flashing its LEDs tech-support-period| • limit [buffer|fan|filesys|inodes|load|maxFDs| tech-support-url] pkbuffers|procRAM|ram|routecache|temperature] – Sets the diagnostic limit command • buffer []<0-65535> – Configures the buffer usage warning limit.
Page 60 2-10 Motorola RF Switch CLI Reference Guide • routecache <0-65535> – Configures IP route cache usage. Set a value between 0 and 65553. • temperature <1-6> [critical|high|low] – Sets the number of temperature sensors for the switch. • critical <0.0 - 250.0> – Critical temperature limit •...
Page 61 Common Commands 2-11 locator Locates the switch by flashing all LEDs. save-cli Saves the CLI tree for all modes in HTML show [cli|command- Displays running system information history|crash-info|diag| • cli – Shows the CLI tree of the current mode info|memory|process| •...
Page 62 2-12 Motorola RF Switch CLI Reference Guide • info – Shows a snapshot of available support information • memory – Shows memory statistics • watchdog – Shows watchdog status • process – Shows processes (sorted by memory usage) • reboot-history – Shows a reboot history •...
Page 63 Common Commands 2-13 service diag [enable|identify|limit|period| tech-support-period|tech-support-url] service encrypt secret 2 <pass-phrase> <plain-text> service firewall disable service firewall ip igmp snooping robustness-variable <1-7> service kill conncection {<1-64>} service pktcap on [bridge|deny|drop|interface|router|vlan] service pktcap on [bridge|drop] {[count <1-1000000>|filter| hex|snap <1-1518>|verbose|write]} service pktcap on bridge filter on [<LINE>|arp|capwap|dst|ether|host|icmp|igmp|ip|ip6|l2|l3| l4|net|not|port|src|tcp|udp|vlan|wlan] service pktcap on bridge filter [arp|capwap|icmp|ip|ip6|...
Page 64 2-14 Motorola RF Switch CLI Reference Guide service pktcap on bridge filter src [<IP>|net <IP/MASK>| port <0-65536>] {[and|or] <LINE>} service pktcap on bridge filter tcp {[[and|or] <LINE>|[ack|fin|or|rst|syn] {[and|or] <LINE>]} service pktcap on bridge filter vlan <1-4095> {[and|or] <LINE>} service pktcap on bridge filter wlan <1-2> {[and|or] <LINE>} service pktcap on bridge [hex|verbose] {[count <1-1000000>|...
Page 65 Common Commands 2-15 service show rtls grid x <0-9000> y <0-9000> service show rtls rfid events reader {<1-48>} service show securitymgr flows [details|source] service show securitymgr flows details {source [<IP>|any] destination [<IP>|any] protocol [any|icmp|tcp|udp]} service show securitymgr flows source [<IP>|any] destination [<IP>|any] protocol [any|icmp|tcp|udp] service show smart-rf [debug-config|sensitivity] service show smart-rf debug-config...
Page 66 2-16 Motorola RF Switch CLI Reference Guide service smart-rf interference [<radio-mac>|<radio-index>| <radio-index-list>] service undefine ecspec {<SPECNAME>} service wireless [ap-history|clear-ap-log|custom-cli|dot11i| dump-core|enhanced-beacon-table|enhanced-probe-table| free-packet-watermark|idle-radio-send-multicast| legacy-load-balance|map-radios|radio-misc-cfg|rate-scale| request-ap-log|save-ap-log|snmp-trap-throttle| sync-radio-entries|vlan-cache] service wireless [dumpcore|legacy-load-balance|rate-scale| save-ap-log|sync-radio-entries] service wireless ap-history [clear|enable] service wireless clear-ap-log {<1-1024>} service wireless custom-cli [sh-wi-mobile-unit|sh-wi-radio]...
Page 67 Common Commands 2-17 service wireless radio-misc-cfg <hex-mask> service wireless request-ap-log <ap-index> service wireless snmp-trap-throttle <1-20> service wireless vlan-cache enable Parameters (Privilege Executable Mode) clear Performs a variety of reset functions [all|aplogs|clitree|cores| • all – Removes all core, dump and panic files dumps|fw|panics| •...
Page 68 2-18 Motorola RF Switch CLI Reference Guide copy tech-support Copies files for tech support purposes [<file>|<URL>] • tech-support [<file>|<URL>] [tftp|ftp|sftp] – Copies [tftp|ftp|sftp] extensive system information useful to technical support for troubleshooting. • FILE – File to which to copy •...
Page 69 Common Commands 2-19 diag [enable|identify| Sets or displays switch diagnostic values limit|period| • enable – Enables in-service diagnostics tech-support-period| • fanduty <40-100> – CPU fan PWM duty cycle. tech-support-url] Set a value between 40-100%. Setting a value below 60 is considered unreliable. •...
Page 70 2-20 Motorola RF Switch CLI Reference Guide • routecache <0-65535> – Configures IP route cache usage. Set between 0 and 65553. • temperature <1-6> [critical|high|low] – Sets the number of temperature sensors for the switch. • critical <0.0 - 250.0> – Critical temperature limit •...
Page 71 Common Commands 2-21 pktcap on Packet capturing [bridge|interface|router| • on – Defines the packet capture location vpn] • bridge [count|hex|snap|verbose|write|filter] – Captures [count|filter|verbose| packet at the bridge write] • count <1-1000000> – Limits the captured packet count • filter [<LINE>|arp|capwap|dst|ether|host|icmp|igmp| ip|ip6|l2|l3|l4|net|not|port|src|tcp|udp|vlan|wlan] –...
Page 72 2-22 Motorola RF Switch CLI Reference Guide • verbose <1-1000000> – Displays full packet body • filter – Captures the filter • snap <1-1518>– Captured data length • write [<FILE>|URL] – Captures to a file • FILE – File to which to copy •...
Page 73 Common Commands 2-23 • count <1-1000000> – Limits capture packet count • filter – Captures filter • verbose – Displays full packet body • write – Captures to a file • snap <1-1518> – Captured data length • hex – Show full packet body •...
Page 74 2-24 Motorola RF Switch CLI Reference Guide securitymgr [disable| Securitymgr parameters disable-flow-rate-limit| • disable – Disables securitymgr dump-core| • disable-flow-rate-limit – Disables flow rate limiting enable-http-stats|tftplag] • dump-core – Creates a core file of the securitymgr process • enable-http-stats – Enables the securitymgr HTTP statistics interface •...
Page 75 Common Commands 2-25 show [cli| Displays running system information command-history| • cli – Shows the CLI tree of the current mode crash-info|diag|fw|info| • command-history – Displays a command (except show ip|last-passwd|memory| commands) history pm|process| • crash-info – Displays information about core, panic and reboot-history|rtls| AP dump files securitymgr|smart-rf|...
Page 76 2-26 Motorola RF Switch CLI Reference Guide • pm history – Process Monitor • history [WORD|all] – Displays state changes for a process, the time they happened and events • WORD – Process name • all – All processes • process – Shows processes (sorted by memory usage) •...
Page 77 Common Commands 2-27 show securitymgr flows Service Security Manager parameters • flows [details|source] – Sessions established • details – Shows detail flow statistics • source [A.B.C.D|any] – Shows the source IP address • [A.B.C.D|any] – Flows where source address is A.B.C.D or flows with any source address •...
Page 78 2-28 Motorola RF Switch CLI Reference Guide smart-rf [clear- Displays Smart-RF Management Commands history|load-from- • clear-history– clears assignment history file|replay|rescue|restore| • load-from-file – load record from file save-to-file|simulate] • replay enable – set replay mode • enable – enable replay mode •...
Page 79 Common Commands 2-29 watchdog Enables the switch watchdog wireless [ap-history| Wireless parameters clear-ap-log • ap-history [clear|enable] – Access-port history |custom-cli|dot11i| • clear – Delete all history of all APs dump-core| • enable – Enable the tracking of AP history enhanced-beacon-table| •...
Page 80 2-30 Motorola RF Switch CLI Reference Guide • radio-desc – description of radio where the mobile- unit is associated • radio-id – The radio index to which the mobile-unit is associated • ssid – The ssid of the mobile-units wlan •...
Page 81 Common Commands 2-31 • num-mu – The number of mobile devices associated with this radio • power – The configured and current transmit power of the radio • pref-id – The adoption preference id of the radio • radio-desc – The description of the radio •...
Page 82 2-32 Motorola RF Switch CLI Reference Guide • enhanced-probe-table [enable|erase-report|max-mu| preferred|window-time] – Enhanced probe table for MU locationing. • enable – Enables the Enhanced Probe Table feature for MU locationing. • erase-report – Erases the reports for Enhanced Probe Table feature.
Page 83 Common Commands 2-33 Syntax (Global Config Mode) (Global Config) service [advanced-vty|dhcp|diag|password-encryption|pm| prompt|radius|redundancy|set|show|terminal-length| watchdog] service [advanced-vty|dhcp|watchdog] service diag [enable|limit|period|tech-support-period| tech-support-url] service password-encryption secret 2 <pass-phrase> service pm sys-restart service prompt crash-info service radius {restart} service redundancy dynamic-ap-load-balance start service set [command-history|reboot-history|upgrade-history] <10-100>...
Page 84 2-34 Motorola RF Switch CLI Reference Guide pm sys-restart Process Monitor • sys-restart – Enables the PM to restart the system when a processes fails prompt crash-info Enable crash-info prompt • crash-info – Enables a crash-info prompt radius restart Enable radius server •...
Page 85 Common Commands 2-35 Usage Guidelines set by the user cannot be disabled without knowing service password-encryption the old password. Refer the note below for more clarification. NOTE: The command used to no service password-encryption disable the encryption, now requires the user to know the old password.
Page 86 2-36 Motorola RF Switch CLI Reference Guide 128k 128k byte buffer limit 16k byte buffer limit 1k byte buffer limit 256 byte buffer limit 2k byte buffer limit 32 byte buffer limit 32k byte buffer limit 4k byte buffer limit...
Page 87 Common Commands 2-37 May 23 19:06:59 2010 admin vty 131 enable May 23 14:36:09 2010 admin vty 130 enable May 21 16:37:13 2010 admin vty 130 enable May 21 16:34:36 2010 admin con 0 enable RFSwitch>service show reboot-history Configured size of reboot history is 50 Date &...
Page 88: Show
2-38 Motorola RF Switch CLI Reference Guide 2.1.6 show  Common Commands Displays the settings for the specified system component. There are a number of ways to invoke the show command: • When invoked without any arguments, it displays information about the current context.
Page 89 Common Commands 2-39 Display Parameters Description Mode Example Displays the internet protocol Common page 2-53 ldap Displays the LDAP server Common page 2-60 configuration licenses Displays the installed licenses, if Common page 2-62 logging Displays the logging configuration Common page 2-63 and buffer Displays the media access control IP Common...
Page 90 2-40 Motorola RF Switch CLI Reference Guide Display Parameters Description Mode Example redundancy group Displays redundancy group Common page 2-78 parameters redundancy Displays the state transition history Common page 2-81 history of the switch redundancy Displays redundancy group Common page 2-82...
Page 91 Common Commands 2-41 Display Parameters Description Mode Example wlan-acl Displays WLAN ACL information Common page 2-125 access-list Displays the access list Internet Privilege/ page 2-126 Protocol (IP) configuration Global Config aclstats Displays ACL statistics Privilege/ page 2-127 Global Config alarm-log Displays all the alarms currently in Privilege/ page 2-128...
Page 92 2-42 Motorola RF Switch CLI Reference Guide Display Parameters Description Mode Example startup-config Displays the content of the startup Privilege/ page 2-142 configuration Global Config upgrade-status Displays the status of the last image Privilege/ page 2-145 upgrade Global Config mac-name...
Page 93: Autoinstall
Common Commands 2-43 2.1.7 autoinstall  Common to all modes Displays the autoinstall configuration information Syntax show autoinstall status Parameters status Displays status of autoinstall Example RFSwitch>show autoinstall RFSwitch>feature enabled config --not-set-- cluster cfg yes --not-set-- image --not-set-- expected image version --not-set-- RFSwitch>...
Page 94: Banner
2-44 Motorola RF Switch CLI Reference Guide 2.1.8 banner  Common to all modes Displays the message of the day string. This string can be used to alert the user to specific information that might be of interest. Syntax show banner motd...
Page 95: Commands
Common Commands 2-45 2.1.9 commands  Common to all modes Displays the available commands for the current mode Syntax RFSwitch>show commands Parameters None Example RFSwitch#show commands acknowledge alarm-log (all|<1-65535>) acknowledge alarm-log (all|<1-65535>) archive tar /create (FILE|URL) .FILE archive tar /create (FILE|URL) .FILE archive tar /table (FILE|URL) archive tar /table (FILE|URL) archive tar /xtract (FILE|URL) DIR...
Page 96: Crypto
2-46 Motorola RF Switch CLI Reference Guide 2.1.10 crypto  Common to all modes Displays the encryption mode information Syntax show crypto[ipsec|isakmp|key|map|pki] show crypto ipsec[sa| security-association|transformset] show crypto isakmp[policy <1-10000>|sa] show crypto keymy pubkey rsa show crypto map[interface <interface-name>|tag <tag-name>] show crypto pki[request <trustpoint-name>|trustpoints]...
Page 97 Common Commands 2-47 pki [request|trustpoints] Displays Public Key Infrastructure (PKI) commands • request <trustpoint-name> – Displays the certificate requests • trustpoints – Displays the trustpoints and their configuration Usage Guidelines The security engine periodically updates the IPSec and Isakamp statistics (every 60 seconds) Example RFSwitch(config)#show crypto pki request tptest...
Page 98 2-48 Motorola RF Switch CLI Reference Guide Subject Name: Common Name: MotorollaMotorolla Issuer Name: Common Name: Motorolla Valid From: Sep 13 16:14:49 2010 GMT Valid Until: Sep 13 16:14:49 2010 GMT Trustpoint :tptest ----------------------------------------------- CA certificate configured Subject Name: Common Name:...
Page 99: Environment
Common Commands 2-49 2.1.11 environment  Common to all modes Displays the environmental information such as fan speed, ambient temperature inside the switch and CPU temperature. Syntax show environment Parameters None Example RFSwitch>show environment upwind of CPU temperature : 30.0 C CPU die temperature : 49.0 C left side temperature : 29.0 C by FPGA temperature : 28.0 C...
Page 100: History
2-50 Motorola RF Switch CLI Reference Guide 2.1.12 history  Common to all modes Displays the command history Syntax show history Parameters None Example RFSwitch>show history 1 admin 2 enable 3 con ter 4 exit 5 show autoinstall 6 con ter...
Page 101: Interfaces
Common Commands 2-51 2.1.13 interfaces  Common to all modes Displays the status of the different switch interfaces Syntax show interfaces [WORD|ge|me1|sa|switchport|vlan] Parameters show interfaces Displays the interface name [WORD|ge|me1|sa| • WORD– Displays interface name switchport|vlan] • ge – Displays Gigabit Ethernet interface information •...
Page 102 2-52 Motorola RF Switch CLI Reference Guide Output packets 0, bytes 0, dropped 0 Sent 0 broadcasts, 0 multicasts Output errors 0, collisions 0, late collisions 0, excessive collisions 0 RFS6000#show interfaces wan Interface wan Hardware Type PPP, Interface Mode Layer 3 index=8, metric=1, mtu=1500, (PAL-IF) <UP,POINTOPOINT,RUNNING,NOARP,MULTICAST...
Page 103 Common Commands 2-53 2.1.14 ip  Common to all modes Displays Internet Protocol (IP) related information Syntax show ip [access-group|arp|ddns|dhcp| dhcp-vendor-options|domain-name|dos|http|igmp|interface| name-server|nat|route|routing|ssh|telnet] show ip access-group [<interface-name>|all|ge|me1|role|sa| vlan <1-4094>] show ip arp show ip ddnsbinding show ip dhcp[binding|class|pool|sharednetwork|] show ip dhcp-vendor-options show ip domain-name show ip dos [config|stats] show ip http [secure-server|server]...
Page 104 2-54 Motorola RF Switch CLI Reference Guide Parameters access-group Displays the ACLs attached to an interface [<interface-name> • <interface-name> – Enter the name of the interface to |all|ge|me1|role|sa|> which the ACL is associated. access-group lists the |vlan <1-4094>] details of the ACLs configured on the particular Layer 3 or Layer 2 interface.
Page 105 Common Commands 2-55 http Hyper Text Transfer Protocol (HTTP) [secure-server|server] • secure-server – Secure HTTP server • server – HTTP server interface [<interface- Use the show ip interface command to display the name>|brief|ge|me1|sa| administrative and operational status of all Layer-3 vlan] interfaces or a specified Layer-3 interface.
Page 106 2-56 Motorola RF Switch CLI Reference Guide route [<IP>|<IP/Mask> Display IP routing table entries |detail] • <IP> – Network in the IP routing table • <IP/Mask> – Number of valid bits in the network prefix IP prefix <network>/<length>, e.g., 35.0.0.0/8 •...
Page 107 Common Commands 2-57 interface. In this case, it is the physical interface that is disconnected not the virtual interface. When the ethernet interface comes back up, it will restart the DHCP client on any virtual interfaces (SVIs) of which the physical interface is a member port. This ensures if the interface was disconnected and reconnected to a different interface, it obtains a new IP address, route, name server, domain name etc.
Page 108 2-58 Motorola RF Switch CLI Reference Guide ip dhcp pool pl ip dhcp pool pool1 domain-name test.com bootfile 123 network 10.10.10.0/24 address range 10.10.10.2 10.10.10.30 ip dhcp pool poo110 next-server 1.1.1.1 netbios-node-type b-node RFSwitch#show ip dhcp-vendor-options Server Info: Firmware Image File:...
Page 109 Common Commands 2-59 RFSwitch#show ip interface vlan 1 brief Interface IP-Address Status Protocol vlan1 157.235.208.233 (DHCP)up RFSwitch#show ip name-server 157.235.3.195 dynamic 157.235.3.196 dynamic RFSwitch#show ip routing IP routing is on RFSwitch(config)#show ip route detail Codes: K - kernel/icmp, C - connected, S - static, D - DHCP >...
Page 110: Ldap
2-60 Motorola RF Switch CLI Reference Guide 2.1.15 ldap  Common to all modes Displays LDAP information Syntax show ldap configuration [primary|secondary] Parameters ldap configuration Displays LDAP information. [primary|secondary] • Configuration [primary|secondary] – Sets the LDAP configuration server parameters • primary – Defines the Primary LDAP server •...
Page 111 Common Commands 2-61 (sAMAccountName=%{Stripped-User-Name:-%{User-Name}}) Bind DN cn=kumar,ou=symbol,dc=activedirectory,dc=com Base DN : ou=symbol,dc=activedirectory,dc=com Password : 0 symbol@123 Password Attribute : UserPassword Group Name : cn Group Membership Filter: (&(objectClass=group)(member=%{Ldap-UserDn})) Group Member Attr : radiusGroupName Net timeout : 1 second(s)
Page 112: Licenses
2-62 Motorola RF Switch CLI Reference Guide 2.1.16 licenses  Common to all modes Displays the different licenses installed on the switch Syntax show licenses Parameters None Example RFSwitch(config)#show licenses feature usage license string license value usage 2FFD7fE9 CD016155 14A92C70 48...
Page 113: Logging
Common Commands 2-63 2.1.17 logging  Common to all modes Displays logging status and other information Syntax show logging Parameters None Example RFSwitch(config)#show logging Logging module: enabled Aggregation time: disabled Console logging: level debugging Buffered logging: level informational Syslog logging: level debugging Facility: local7 Logging to: 157.235.203.37 Logging to: 10.0.0.2...
Page 114: Mac
2-64 Motorola RF Switch CLI Reference Guide 2.1.18 mac  Common to all modes Shows all MAC information with respect to groups and access lists Syntax show mac [access-list|access-group] interface>|all|ge <1-4>| show mac access-group [< me1|sa <1-4>|vlan <1-4094>] Parameters mac [access-list...
Page 115: Mac-Address-Table
Common Commands 2-65 2.1.19 mac-address-table  Common to all modes Displays the MAC address table entries Syntax show mac-address-table Parameters None Example RFSwitch(config)#show mac-address-table Bridge VLAN Port ------------ ---- ------------ -------------- --- 00a0.f865.ea8f 1 0015.7038.0653 1 0015.7014.fec4 1 0015.7041.9f7f 1 RFSwitch(config)
Page 116: Management
2-66 Motorola RF Switch CLI Reference Guide 2.1.20 management  Common to all modes Displays the L3 management interface name Syntax show management Parameters None Example RFSwitch>show management Mgmt Interface: vlan1 Management access permitted via any vlan interface RFSwitch>...
Page 117: Mobility
Common Commands 2-67 2.1.21 mobility  Common to all modes Displays the mobility parameters Syntax show mobility [event-log|forwarding|global| mobile-unit|peer|statistics] show mobility event-log [mobile-unit|peer] show mobility forwarding <MAC> show mobility mobile-unit [MAC>|detail] show mobility peer [<IP>|detail] show mobility statistics <MAC> Parameters event-log[ Displays mobility event logs mobile-unit|peer]...
Page 118 2-68 Motorola RF Switch CLI Reference Guide global Global Mobility parameters mobile-unit Mobile-units in the Mobility Database peer Mobility peers statistics Mobile-unit Statistics RFSwitch(config)#show mobility event-log mobile-unit Time Event Evt-Src-IP MU-Mac MU-IP HS-IP CS-IP 09/14 19:17:52 IP-UPD-MU 00-0f-3d-e9-a6-54 157.235.208.134 157.235.208.16 157.235.208.16 09/14 19:17:51 ADD-MU 00-0f-3d-e9-a6-54 0.0.0.0...
Page 119 Common Commands 2-69 Foreign MU Database: Total=0 RFSwitch(config)#show mobility peer detail Mobility Peers: Total=1, Established=0 Peer: 1.1.1.1, State: PASSIVE-CONNECTING Join-Sent : 0 Join-Rcvd : 0 Leave-Sent : 0 Leave-Rcvd Rehome-Sent: 0 Rehome-Rcvd: 0 L3roam-Sent: 0 L3roam- Rcvd: 0 Num-flaps : 0 Connect-retries: 0 Peer-Uptime: 0 days, 00:00:00...
Page 120: Ntp
2-70 Motorola RF Switch CLI Reference Guide 2.1.22 ntp  Common to all modes Displays NTP protocol information Syntax show ntp [association|status] Parameters ntp [association Displays the Network Time Protocol (NTP) configuration detail|status] • association detail – Displays existing NTP associations •...
Page 121 Common Commands 2-71 rcv time 00000000.00000000 (Feb 07 06:28:16 UTC 2036) xmt time c8b42a7e.6eb04252 (Sep 14 19:22:38 UTC 2010) filtdelay = 0.00 0.00 0.00 0.00 0.00 0.00 0.00 0.00 RFSwitch>show ntp status Clock is synchronized, stratum 0, actual frequency is 0.0000 Hz, precision is 2^0 reference time is 00000000.00000000 (Feb 07 06:28:16 UTC 2036)
Page 122: Port-Channel
2-72 Motorola RF Switch CLI Reference Guide 2.1.23 port-channel  Common to all modes Displays port-channel load-balance information • RFS7000 SWITCH NOTE: This command is not supported on: • RFS6000 • RFS4000 Syntax show port-channel load-balance Parameters load-balance Displays the existing load balancing configuration Example RFSwitch>show port-channel load-balance...
Page 123: Power
Common Commands 2-73 2.1.24 power  Common to all modes Displays the power configuration and status for the RFS6000 switch Supported in the following platforms: • RFS4000 • RFS6000 SWITCH NOTE: This command is not supported on: • RFS7000 Syntax show power [configuration|status] Parameters configuration...
Page 124: Privilege
2-74 Motorola RF Switch CLI Reference Guide 2.1.25 privilege  Common to all modes Displays the privileges of the current user Syntax show privilege Parameters None Example RFSwitch>show privilege Current user privilege: superuser RFSwitch>...
Page 125: Radius
Common Commands 2-75 2.1.26 radius  Common to all modes Displays RADIUS status and information Syntax show radius [configuration|eap configuration|group| A.B.C.D/M|proxy|rad-user|trust-point] Parameters radius [configuration| Displays RADIUS configuration commands eap configuration group| • configuration – RADIUS server configuration nas <IP/Mask>|proxy| parameters rad-user|trust-point] •...
Page 126 2-76 Motorola RF Switch CLI Reference Guide Proxy Realm Details ___________________ Realm : symbol.com IP Address : 10.10.10.5 Port : 1812 Shared secret : 0 secret123...
Page 127: Redundancy Dynamic-Ap-Load-Balance
Common Commands 2-77 2.1.27 redundancy dynamic-ap-load-balance  Common to all modes Displays the configuration for the Dynamic AP Load Balancing feature Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax show redundancy dynamic-ap-load-balance config Parameters config Displays configuration details for dynamic AP load balance Example RFSwitch(config)#show redundancy dynamic-ap-load-balance config Dynamic AP Load Balance Configuration:...
Page 128: Redundancy Group
2-78 Motorola RF Switch CLI Reference Guide 2.1.28 redundancy group  Common to all modes This command displays the switch’s IP address, number of active neighbors, group license, installed license, cluster AP adoption count, switch adoption count, hold time, discovery time, heartbeat interval, cluster id and switch mode.
Page 129 Common Commands 2-79 Redundancy Protocol Version : 2.0 Redundancy Group License Cluster AP Adoption Count : Not Applicable Switch AP Adoption Count : Not Applicable Redundancy State : Disabled Radio Portals adopted by Group : Not Applicable Radio Portals adopted by this Switch : Not Applicable Rogue APs detected in this Group : Not Applicable Rogue APs detected by this Switch...
Page 130 2-80 Motorola RF Switch CLI Reference Guide Redundancy Protocol Version : 2.0 Redundancy Group License Cluster AP Adoption Count : Not Applicable Switch AP Adoption Count : Not Applicable Redundancy State : Disabled Radio Portals adopted by Group : Not Applicable...
Page 131: Redundancy History
Common Commands 2-81 2.1.29 redundancy history  Common to all modes Displays the switch state transition history Syntax show redundancy history Parameters None Example RFSwitch>show redundancy history State Transition History Time Event Triggered state --------------------------------------------------------- Sat Oct 06 12:07:55 Redundancy Enabled Startup Sat Oct 06 12.07.56 Startup Done...
Page 132: Redundancy Members
2-82 Motorola RF Switch CLI Reference Guide 2.1.30 redundancy members  Common to all modes Displays the member switches in the cluster. The user can provide the of the IP address switch in cluster whose information alone is needed. Syntax show redundancy members [<IP>|brief]...
Page 133: Rtls
Common Commands 2-83 2.1.31 rtls  Common to all modes Displays the Real Time Locating System status and information Syntax show rtls [aeroscout|espi|filter|ekahau| reference-tags|rfid|site|sole|tags|zone]...
Page 134 2-84 Motorola RF Switch CLI Reference Guide Parameters rtls [aeroscout|espi|filter| Displays the Real Time Locating System status and ekahau| information. reference-tags| • aeroscout – Displays aeroscout configurations rfid|site|sole|tags|zone] • espi [adapter|ecspecs|subscriber|tags] – Displays ESPI configuration • adapter [active|ale-tcp] – Displays Adapter Configuration •...
Page 135 Common Commands 2-85 rtls tags [<tag-id>| Displays Tags/Assets (passive, active, wi-fi, uwb) aeroscout|all|ekahau|g2| Information mobile-unit| • <tag-id> – Displays detailed tag information for specific |rfid|uri|zone|] tag ID • aeroscout – Displays located aeroscout tags • all – Displays all tags •...
Page 136: Smtp-Notification
2-86 Motorola RF Switch CLI Reference Guide 2.1.32 smtp-notification  Common to all modes Displays the set smtp-notification parameters Syntax show smtp-notification traps Parameters traps Displays trap enable flags Example RFSwitch(config)#show smtp-notification traps ----------------------------------------------------------------- -Global enable flag for Trap SMTP-Notification...
Page 137 Common Commands 2-87 redundancy memberMisConfigured redundancy adoptionExceeded redundancy grpAuthLevelChanged redundancy resourceUp redundancy resourceDown misc lowFsSpace misc processMaxRestartsReached misc savedConfigModified misc serverCertExpired misc caCertExpired misc periodicHeartbeat misc switchEvent wireless station associated wireless station disassociated wireless station deniedAssociationOnCapability wireless station deniedAssociationOnShortPream wireless station deniedAssociationOnSpectrum wireless station deniedAssociationOnErr...
Page 138: Snmp
2-88 Motorola RF Switch CLI Reference Guide 2.1.33 snmp  Common to all modes Displays SNMP user information Syntax show snmp user [snmpmanager|snmpoperator|snmptrap] Parameters snmp user Displays SNMP user information [snmpmanager| • snmpmanager – Shows SNMP manager information snmpoperator|snmptrap • snmpoperator – Shows SNMP operator information •...
Page 139: Snmp-Server
Common Commands 2-89 2.1.34 snmp-server  Common to all modes Displays SNMP server information Syntax show snmp-server traps wireless-statistics[mesh|mobile-unit| radio|wireless-switch|wlan] Parameters traps wireless-statistics Displays existing wireless-stats rate trap enabled flags [mesh| • mesh – Displays existing mesh rate traps mobile-unit| radio| •...
Page 140 2-90 Motorola RF Switch CLI Reference Guide redundancy grpAuthLevelChanged misc lowFsSpace misc processMaxRestartsReached wireless station associated wireless station disassociated wireless station deniedAssociationOnCapability wireless station deniedAssociationOnShortPream wireless station deniedAssociationOnSpectrum wireless station deniedAssociationOnErr wireless station deniedAssociationOnSSID wireless station deniedAssociationOnRates wireless station deniedAssociationOnInvalidWPAWPA2IE...
Page 141 Common Commands 2-91 gave-up-percent-greater-than disabled avg-retry-greater-than disabled undecrypt-percent-greater-than disabled num-stations-greater-than disabled RFSwitch> RFSwitch>show snmp-server traps wireless-statistics wireless-switch pktsps-greater-than disabled tput-greater-than disabled num-stations-greater-than disabled RFSwitch> RFSwitch>show snmp-server traps wireless-statistics wlan pktsps-greater-than disabled tput-greater-than disabled avg-bit-speed-less-than disabled avg-signal-less-than disabled nu-percent-greater-than disabled gave-up-percent-greater-than disabled avg-retry-greater-than disabled...
Page 142: Spanning-Tree
2-92 Motorola RF Switch CLI Reference Guide 2.1.35 spanning-tree  Common to all modes Displays Spanning Tree information Syntax show spanning-tree mst [config|detail|instance] show spanning-tree mst detail interface [<interface-name>|ge|me1|sa|vlan <1-4094>] show spanning-tree mst instance <1-15> interface <IF NAME>||vlan <1-4094>}] Parameters...
Page 143 Common Commands 2-93 %------------------------------------------------------ RFSwitch(config)# RFSwitch(config)#show spanning-tree mst detail interface ge % Bridge up - Spanning Tree Enabled % CIST Root Path Cost 0 - CIST Root Port 0 - CIST Bridge Priority 32768 % Forward Delay 15 - Hello Time 2 - Max Age 20 - Max-hops 20 % 1: CIST Root Id 800000157037fabf % 1: CIST Reg Root Id 800000157037fabf % 1: CST Bridge Id 800000157037fabf...
Page 144: Static-Channel-Group
2-94 Motorola RF Switch CLI Reference Guide 2.1.36 static-channel-group  Common to all modes Displays the members of the static channel groups Supported in the following platforms: • RFS7000 • RFS4000 SWITCH NOTE: This command is not supported in: • RFS6000...
Page 145: Terminal
Common Commands 2-95 2.1.37 terminal  Common to all modes Displays the terminal information for the device Syntax show terminal Parameters None Example RFSwitch>show terminal Terminal Type: vt102 Length: 44 Width: 125 RFSwitch>...
Page 146: Timezone
2-96 Motorola RF Switch CLI Reference Guide 2.1.38 timezone  Common to all modes Displays the timezone set on the device Syntax show timezone Parameters None Example RFSwitch>show timezone Timezone is Etc/UTC RFSwitch>...
Page 147: Traffic-Shape
Common Commands 2-97 2.1.39 traffic-shape  Common to all modes Displays traffic shaping parameters Supported in the following platforms: • RFS7000 SWITCH NOTE: This command is not supported in: • RFS6000 Syntax show traffic-shape [config|priority-map|statistics] Parameters • config class – Displays traffic shaping configuration config| priority-map| •...
Page 148: Users
2-98 Motorola RF Switch CLI Reference Guide 2.1.40 users  Common to all modes Displays a list of users connected to the device Syntax show users Parameters None Example RFSwitch>show users Line User Uptime Location 0 con 0 316 admin...
Page 149: Version
Displays software and hardware version information Example RFSwitch>show version RFSwitch version 4.3.0.0-046B MIB=01a Copyright (c) 2006-2009 Motorola, Inc. Booted from secondary. switch uptime is 8 days, 19 hours 32 minutes CPU is RMI XLR V0.4 255476 kB of on-board RAM RFSwitch>show version verbose...
Page 150: Wireless
2-100 Motorola RF Switch CLI Reference Guide 2.1.42 wireless  Common to all modes range differs from switch to switch. radio-group • RFS7000 – Supports a range between 0-255 • RFS6000 – Supports a range between 0-64 • RFS4000 – Supports a range between 1-6...
Page 151 Common Commands 2-101 show wireless mesh statistics {<1-32> {detail}} show wireless mobile-unit {[<1-8192>|<MAC>|association- history|association-stats|probe-history|radio| roaming|statistics|voice|wlan]} show wireless mobile-unit [<1-8192>|<MAC>|association-stats] show wireless mobile-unit association-history {<MAC>} show wireless mobile-unit probe-history [<1-200>|config- list] show wireless mobile-unit radio <1-4096> show wireless mobile-unit roaming database show wireless mobile-unit statistics [<1-4096>|<MAC>...
Page 152 2-102 Motorola RF Switch CLI Reference Guide show wireless wips [configured-ap-def-essids| configured-bad-essids|fake-ap-flood|filter-list| suspicious-ap] Parameters aap-version Displays the minimum adaptive firmware version string ap [<1-48>|<MAC>| Status of the adopted access port config [<1-48>|<MAC>]] • <1-48> – Defines the index of the access port •...
Page 153 Common Commands 2-103 channel-power Lists the channels and power levels available for a radio [11a|11b|11bg] • 11a – Defines the radio as 802.11a [indoor|outdoor] • 11b – Defines the radio as 802.11b • 11bg – Defines the radio as 802.11bg These options are available for all the above radio types: •...
Page 154 2-104 Motorola RF Switch CLI Reference Guide ignored-aps Displays list of ignored-aps detected by the switch known {ap statistics Displays known AP parameters. {<1-1024>}} • ap – Optional. Defines a known AP index <1-1024> • statistics – Optional. Displays known adaptive AP stats •...
Page 155 Common Commands 2-105 mobile-unit {[<1- Displays the parameters of associated mobile units. All 8192>|<MAC>|associatio parameters are optional. n-history| • <1-8192> – Index of mobile unit association-stats|probe- • <MAC> – MAC address of mobile unit history|radio|roaming|sta • association-history {<MAC>}– Displays the association tistics| history of the Mobile Units with the MAC address and its voice|wlan]}...
Page 156 2-106 Motorola RF Switch CLI Reference Guide multicast-packet-limit Displays the multicast-packet-limit non-preferred-ap- Displays non preferred AP attempt threshold attempts-threshold phrase-to-key Displays the WEP keys generated by a passphrase [wep128|wep64] • wep128 – Displays WEP128 keys <pass-phrase> • wep64 – Displays WEP64 keys •...
Page 157 Common Commands 2-107 radio {[<1-4096>| Radio related commands. All parameters are optional. admission-control|all| • <1-4096> – Defines information on a single radio’s index beacon-table|config| • admission-control voice {<1-4096>} – Displays summary monitor-table|statistics| information for all radios that have admission control unadopted|uptime| enabled.
Page 158 2-108 Motorola RF Switch CLI Reference Guide • unadopted – Displays a list of unadopted radios • uptime – Displays the uptime of all adopted radios • voice <1-4094> – Displays voice call details • <1-4094> – Optional. Defines a single radio’s index radio-group {<1-256>}...
Page 159 Common Commands 2-109 smart-rf Displays smart-rf related management information [calibration-status| • calibration-status – Displays smart-rf calibration status. configuration| • configuration – Displays smart-rf configuration history|radio] information • history – Displays smart-rf assignment history since last calibration • radio [config|local-status|map|master- status|neighbors|spectrum] {[<1-4096>|<MAC>| all-11a|all-11bg]} –...
Page 160 2-110 Motorola RF Switch CLI Reference Guide wlan [config|statistics] Displays wireless LAN parameters. The following information is displayed: • config [<1-256>|all|enabled] – Displays the wireless LAN configuration information. All parameters optional. • <1-256> – The selected wlan • all – all wlans in the configuration •...
Page 161 Common Commands 2-111 (config-wireless) Executable Mode Displays the (config- wireless) configuration parameters and information Syntax show wireless ap [LIST|config] show wireless config [<1-1024>|LIST] show wireless radio [<1-4096>|admission-control|all| beacon-table|config|monitor-table|statistics|unadopted| uptime|voice]} show wireless wlan [config|statistics] show wireless wlan config [<1-256>|all|enabled] show wireless wlan statistics <1-256> detail Parameters (config-wireless) Executable Mode show wireless ap Displays wireless LAN parameters.
Page 162 2-112 Motorola RF Switch CLI Reference Guide show wireless wlan Configures wireless LAN related parameters [config • config [<1-256>|all|enabled] – Configures wlan {all|enabled}| statistics • <1-256> – Displays wlan index detail} <1-256> • all – Displays all the configured wlans •...
Page 163 Common Commands 2-113 RFS6000(config)#show wireless ap-images ap-type Image-Name Size (bytes) Version ap300 AP300-WISP 325212 00.02-37 ap300 AP300-WISPe 319776 01.00-2281r ap300 AP300-IDS-Sensor 350092 00.00-04 ap100 AP100 31066 02.05-00 ap4131 AP4131 191316 07.00-08 ap4131 Revert-AP4131 665704 00.00-00 ap650 AP650 2392082 0.1-1061B RFS6000(config)# RFSwitch>show wireless ap-unadopted RFSwitch>...
Page 164 2-114 Motorola RF Switch CLI Reference Guide 2 00-A0-F8-BF-89-45 2 [ 5 6 ] WSAP-5100-100-WW L2 (vlan: 3 00-A0-F8-00-00-00 2 [ 1 2 ] AP-0650-00000-XX L2 (vlan: RFS6000(config)# RFSwitch(config)#show wireless config country-code : None secure-wispe-default-secret default adoption-pref-id proxy-arp : enabled...
Page 165 Common Commands 2-115 dhcp one portal forward : disabled dhcp fix broadcast-rsp : disabled broadcast-tx-speed : optimize-for-range wlan bw allocation : disabled smart-channels used 1,6,11,36,40,44,48,52,56,60,64,100,104,108,112,116,136,140,1 49,153,157,161,165 smart-channels excluded : 2,3,4,5,7,8,9,10 Adaptive ap parameters: config-apply def-delay : 30 seconds config-apply mesh-delay: 180 seconds user load balance mode : disabled secure-wispe-default-secret : 0 defaultS...
Page 166 2-116 Motorola RF Switch CLI Reference Guide same-source-destination disabled multicast-source disabled weak-wep-iv disabled tkip-countermeasures enabled invalid-frame-length enabled invalid-8021x-frame disabled invalid-frame-type enabled beacon-broadcast-essid disabled bad-essid-frame enabled unencrypted-traffic enabled non-changing-wep-iv enabled detect-adhoc-networks disabled deauth-broadcast-smac enabled invalid-sequence-number enabled ap-default-ssid enabled identity-theft enabled suspicious-ap...
Page 167 Common Commands 2-117 -- MORE --, next page: Space, next line: Enter, quit: Control-C Avg mobile-unit SNR(dB): 16.00 0.00 ------ Errors----------------------------------------------- 30s 1hr Avg number of retries: 0.42 0.00 % gave up pkts: 0.00 0.00 % Non-decryptable pkts: 0.00 0.00 RFSwitch(config)#show wireless mobile-unit index MAC-address...
Page 168 2-118 Motorola RF Switch CLI Reference Guide #enabled ssid authentication encryption vlan(s) description TechDoc_02 none wep128 TechDoc_Test_02 TechDoc_01 none wep128 TechDoc_Test_01 TechDoc_02 none none WLAN8 ---- RFSwitch(config)# RFSwitch(config)#show wireless wlan config 5 RFS7000(config)#show wireless wlan config 8 WLAN: 8, status: disabled, description: WLAN8, ssid:...
Page 169 Common Commands 2-119 RFS7000(config-wireless)# RFS7000(config-wireless)#show wireless wlan config 9 WLAN: 9, status: disabled, description: WLAN9, ssid: 109 auth: none, encr: none, mfp: none inactivity-timeout : 1800 seconds hold-time : 5 seconds nas-id : "" nas-port-id : "" vlan : unlimited users query smart-channels used 1,6,11,36,40,44,48,52,56,60,64,149,153,157,161...
Page 170 2-120 Motorola RF Switch CLI Reference Guide 11.0 12.0 18.0 22.0 24.0 36.0 48.0 54.0 Retry Counts Packets ------------ ------- RFSwitch(config)# RFS6000(config)#show wireless radio statistics 3 ***** Radio-3 ********************* mobile-units Associated : Voice Prioritized : ------ Traffic ------------------------------------------------- Total ---------------- ---------------- -------- Pkts per sec: 0.00...
Page 171 Common Commands 2-121 Avg bit speed: 0.00 0.00 Mbps % Non-unicast pkts: 0.00 0.00 ------ RF Status------------------------------------------------ Avg mobile-unit signal: 0.00 0.00 dBm Avg mobile-unit noise: -92.25 -93.50 dBm Avg mobile-unit SNR(dB): 92.25 93.50 ------ Errors--------------------------------------------------- Avg number of retries: 0.00 0.00 % gave up pkts:...
Page 172 2-122 Motorola RF Switch CLI Reference Guide Voice failed Tx BCMC drops : RFS6000(config)# RFS6000(config)#show wireless wlan statistics 2 mobile-units Associated : Radios active : Voice mobile-units Associated : ------ Traffic ------------------------------------------------- Total ---------------- ---------------- -------- Pkts per sec: 0.00 0.00...
Page 173 Common Commands 2-123 % gave up pkts: 0.00 0.00 % Non-decryptable pkts: 0.00 0.00 RFS6000(config)# RFS6000(config)#show wireless mobile-unit statistics 00-A0-F8- BF-61-6E ***** mobile-unit 1: <00-A0-F8-BF-61-6E>********************* WLAN : wlan-4 ------ Traffic ------------------------------------------------- Total ---------------- ---------------- -------- Pkts per sec: 0.00 0.01 0.00 0.00 0.00...
Page 174 2-124 Motorola RF Switch CLI Reference Guide RFS6000(config)#show wireless mobile-unit statistics 00-A0-F8- BF-61-6E detail mu_idx = 0 Retry Counts Packets ------------ ------- Voice failed : RFS6000(config)#...
Page 175: Wlan-Acl
Common Commands 2-125 2.1.43 wlan-acl  Common to all modes Displays the WLAN based access control list information Syntax show wlan-acl [<1-256>|all] Parameters wlan-acl [ <1-256>|all] Displays WLAN based access control list information • <1-256> – Displays ACLs attached to the specified WLAN ID •...
Page 176: Access-List
2-126 Motorola RF Switch CLI Reference Guide 2.1.44 access-list  Privilege / Global Config Displays the access lists (numbered and named) configured on the switch. The numbered access list displays numbered ACLs. The named access list displays named ACL details.
Page 177: Aclstats
Common Commands 2-127 2.1.45 aclstats  Privilege / Global Config Displays the statistics of configured access lists Syntax show aclstats [access-list|vlan <1-4094>] show aclstats {<1-99>|<100-199>|<1300-1999>|<2000-2699>| <acl-name>} show aclstats vlan <1-4094> Parameters access-list {<1- Displays configured access lists. 99>|<100-199>|<1300- • <1-99> - IP standard access list 1999>|<2000-2699>| •...
Page 178: Alarm-Log
2-128 Motorola RF Switch CLI Reference Guide 2.1.46 alarm-log  Privilege / Global Config Displays the contents of the alarm log on the device Syntax show alarm-log {<1-65535>|acknowledged|all|count|new| severity-to-limit} show alarm-log severity-to-limit {critical| informational|major|normal|warning} Parameters alarm-log [<1-65535>| Displays the contents of the alarm log on the device.
Page 179: Boot
Common Commands 2-129 2.1.47 boot  Privilege / Global Config Displays the boot configuration of the device Syntax show boot Parameters None Example RFSwitch#show boot Image Build Date Install Date Version ----- -------------------- -------------------- ------ -------- Primary Oct 16 03:55:43 2009 Sep 15 00:53:56 2009 4.3.0.0-046B Secondary...
Page 180: Clock
2-130 Motorola RF Switch CLI Reference Guide 2.1.48 clock  Privilege / Global Config Displays the system clock Syntax show clock Parameters None Example RFSwitch#show clock Jun 01 00:51:34 UTC 2010 RFSwitch#...
Page 181: Debugging
Common Commands 2-131 2.1.49 debugging  Privilege / Global Config Displays the debugging configuration information Syntax show debugging mstp Parameters mstp Displays the current MSTP configuration Example RFSwitch(config)#show debugging mstp MSTP debugging status: RFSwitch(config)#...
Page 182: Dhcp
2-132 Motorola RF Switch CLI Reference Guide 2.1.50 dhcp  Privilege / Global Config Displays existing DHCP server configurations Syntax show dhcp [config|status] Parameters config Displays the current DHCP server configuration status Displays whether the DHCP server is running Example...
Page 183: File
Common Commands 2-133 2.1.51 file  Privilege / Global Config Displays the file system information Syntax show file [information|systems] Parameters file Displays the filesystem information. [information|systems] • information <FILE> Displays file information • <FILE> Displays the information on file • systems Lists existing filesystems Example RFSwitch#show file systems...
Page 184: Ftp
2-134 Motorola RF Switch CLI Reference Guide 2.1.52 ftp  Privilege / Global Config Displays the FTP server configuration Syntax show ftp Parameters None Example RFSwitch#show ftp FTP Server: Disabled User Name: anonymous or ftpuser Password: ******** Root dir: flash:/...
Page 185: Password-Encryption
Common Commands 2-135 2.1.53 password-encryption  Privilege / Global Config Displays the global password encryption status Syntax show password-encryption status Parameters status Displays the existing password-encryption status Example RFSwitch#show password-encryption status Password encryption is disabled RFSwitch#...
Page 186: Running-Config
2-136 Motorola RF Switch CLI Reference Guide 2.1.54 running-config  Privilege / Global Config Displays the contents of those configuration files wherein all configured MAC and IP access lists are applied to an interface Syntax show running-config [full|include-factory] Parameters running-config...
Page 187 Common Commands 2-137 snmp-server engineid netsnmp 6b8b456749d9e5c1 snmp-server sysname RFS7000 snmp-server manager v2 snmp-server manager v3 snmp-server user snmptrap v3 encrypted auth md5 0x22b4e8506bf66b435abdde2 b996e8100 snmp-server user snmpmanager v3 encrypted auth md5 0x22b4e8506bf66b435abd de2b996e8100 snmp-server user snmpoperator v3 encrypted auth md5 0x0153e87f2d43032f221 b1f3e340942d2 firewall dhcp-snoop-conflict-detection disable...
Page 188 2-138 Motorola RF Switch CLI Reference Guide ip dhcp trust interface me1 ip address 10.1.1.100/24 interface vlan1 ip address 172.16.10.2/24 rtls rfid espi sole line con 0 line vty 0 24 RFSwitch(Config)# RFSwitch(config)#show running-config include-factory ! configuration of RFSwitch version 4.0.0.0-008D version 1.0...
Page 189 Common Commands 2-139 spanning-tree mst config name My Name no management secure ip domain-lookup service diag period 1000 service diag enable country-code us redundancy group-id 1 redundancy interface-ip 0.0.0.0 redundancy mode primary redundancy hold-period 15 redundancy heartbeat-period 5 redundancy discovery-period 30 no redundancy handle-stp enable no redundancy dhcp-server enable no redundancy enable...
Page 190: Securitymgr
2-140 Motorola RF Switch CLI Reference Guide 2.1.55 securitymgr  Privilege / Global Config Displays the security manager event-logs Syntax show securitymgr event-logs Parameters None Example RFSwitch#show securitymgr event-log RFSwitch#...
Page 191: Sessions
Common Commands 2-141 2.1.56 sessions  Privilege / Global Config Displays the list of current active open sessions on the device Syntax show sessions Parameters None Example RFSwitch#show sessions SESSION USER LOCATION IDLE START TIME Console 06:24m May 31 18:31:36 2010 ** 2 10.10.10.1 00:00m...
Page 192: Startup-Config
2-142 Motorola RF Switch CLI Reference Guide 2.1.57 startup-config  Privilege / Global Config Displays the complete startup configuration script on the console Syntax show startup-config Parameters None Example RFS7000(config)#show startup-config ! configuration of RFS7000 version 4.1.0.0-003D version 1.3 aaa authentication login default local none...
Page 193 Common Commands 2-143 snmp-server user snmptrap v3 encrypted auth md5 0x22b4e8506bf66b435abdde2 b996e8100 snmp-server user snmpmanager v3 encrypted auth md5 0x22b4e8506bf66b435abd de2b996e8100 snmp-server user snmpoperator v3 encrypted auth md5 0x0153e87f2d43032f221 b1f3e340942d2 firewall dhcp-snoop-conflict-detection disable firewall dhcp-snoop-conflict-logging disable ip http server ip http secure-trustpoint default-trustpoint ip http secure-server ip ssh ip telnet...
Page 194 2-144 Motorola RF Switch CLI Reference Guide interface vlan1 ip address 172.16.10.2/24 rtls rfid espi sole line con 0 line vty 0 24 RFS7000(config)#...
Page 195: Upgrade-Status
Common Commands 2-145 2.1.58 upgrade-status  Privilege / Global Config Displays the last image-upgrade status Syntax show upgrade-status {detail} Parameters None Example RFSwitch#show upgrade-status Last Image Upgrade Status : Successful Last Image Upgrade Time : Mon May 21 16:27:40 2010 RFSwitch#...
Page 196: Mac-Name
2-146 Motorola RF Switch CLI Reference Guide 2.1.59 mac-name  User /Privilege Exec Displays the configured MAC name Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax show mac-name Parameters None Example RFSwitch(config-wireless)#show mac-name Index MAC Address...
Page 197: Firewall
Common Commands 2-147 2.1.60 firewall  Priv Exe Mode Displays wireless firewall Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax show firewall [config|dhcp|flow] show firewall [config|dhcp snoop-table|flow timeouts] Parameters firewall [config|dhcp Displays firewall configuration information. snoop-table| •...
Page 198: Role
2-148 Motorola RF Switch CLI Reference Guide 2.1.61 role  Priv Exe Mode Displays existing role name Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax show role [<role-name>|mobile-units] Parameters role [<role-name>| Displays existing role name mobile-units] •...
Page 199 Common Commands 2-149 2.1.62 virtual-IP  Global Config Mode Displays all the virtual-IPs present in the configuration Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax show virtual-ip [config|status] Parameters show virtual-ip Displays all the virtual-ip’s present in the configuration. [config|status] •...
Page 200: Virtual-Ip
2-150 Motorola RF Switch CLI Reference Guide RFS7000>show virtual-ip config RFS7K-1(config)#show virtual-ip config Virtual-IP Status : Enabled Cluster Redundancy Status : Enabled Priority Selection Mode : Automatic Learning Timeout(sec) Advertisement Timeout(sec) Gratuitous ARP Timeout(sec) : 180 Virtual-IP Server Port : 51525 Switch IP : 192.168.11.4...
Page 201 Common Commands 2-151 Total Number of Peers Peer Status Information +--------------------------------------------------------- -------------+ Peer IP Status Advts Sent Advts Recvd +--------------------------------------------------------- -------------+ | 192.168.11.5 | Slave 600214 +--------------------------------------------------------- -------------+ Virtual IP Master Details +--------------------------------------------------+ | Vlan | Priority | SwitchID Virtual IP ---------------------------------------------------+ | 3232238340| 192.168.11.4|...
Page 202 2-152 Motorola RF Switch CLI Reference Guide RFS7K-1(config)#no virtual-ip vmac Removes the configured vmac on the switch...
Page 203: Wwan
Common Commands 2-153 2.1.63 wwan  Common to all modes Configures wireless wan feature Supported in the following platforms: • RFS6000 • RFS4000 Syntax show wwan [config|dns-server] Parameters config Displays wwan signal configuration dns-server Displays wwan DNS server addresses Example RFS6000#show wwan config Access Port Name : isp.cingular Auth-type: chap...
Page 204 2-154 Motorola RF Switch CLI Reference Guide output errors 0, aborted 0, carrier 0, fifo 0, heartbeat 0, window 0 collisions 0 RFS6000# RFS6000#show ip interface brief Interface IP-Address/Mask Status Protocol 10.1.1.100/24 down vlan1 192.168.1.1/24 vlan11 192.168.11.1/24 vlan2 64.171.249.249/24 166.129.246.245/32 up...
Page 205: Aap-Wlan-Acl
Common Commands 2-155 2.1.64 aap-wlan-acl  Privilege / Global Config Applies an ACL on WLAN for AAP Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax In RFS6000, show aap-wlan-acl [<1-32>|all] In RFS7000, show aap-wlan-acl [<1-256>|all] Parameters aap-wlan-acl [<1-32>|all] Applies an ACL on wlan for an aap.
Page 206: Aap-Wlan-Acl-Stats
2-156 Motorola RF Switch CLI Reference Guide 2.1.65 aap-wlan-acl-stats  Privilege / Global Config Displays the acl stats for wlan Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax show aap-wlan-acl-stats Parameters aap-wlan-acl-stats Displays IP filtering wlan based statistics...
Page 207: Protocol-List
Common Commands 2-157 2.1.66 protocol-list  Common to all Modes Displays the list of protocols Supported in the following platforms: • RFS7000 • RFS6000 Syntax show protocol-list Parameters show protocol-list Displays the list of protocols Example RFS6000(config)#show protocol-list Protocol Name Protocol Number icmp igmp...
Page 208: Service-List
2-158 Motorola RF Switch CLI Reference Guide 2.1.67 service-list  Common to all Modes Displays the list of services Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax show service-list Parameters show service-list Displays the list of services...
Page 209: Chapter 3. User Exec Commands
User Exec Commands Logging in to the switch places you within the USER EXEC command mode. Typically, a login requires a user name and password. You have three login attempts before a connection attempt is refused. USER EXEC commands (available at the user level) are a subset of the commands available at the privileged level.
Page 210 Motorola RF Switch CLI Reference Guide Table 3.1 User Exec Mode Command Summary Command Description Ref. exit Ends the current mode and moves down to the page 2-3 previous mode help Describes the interactive help system page 2-4 logout Exits the EXEC mode...
Page 211 User Exec Commands 3.1.1 clear  User Exec Commands Resets the previous (last saved) command Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 NOTE: Refer to the interface details below when using clear counter interface • ge <index> – RFS4000 supports 4GEs and RFS6000 supports 8 GEs •...
Page 212 Motorola RF Switch CLI Reference Guide Parameters crypto [ipsec|isakmp] sa Clears IPSec/ISAKMP SAs for a given peer {<IP>} • ipsec sa {<IP> } – Clears IPSec SA’s • isakmp sa {<IP> } – Clears ISAKMP SA’s • sa – Clears all IPSec/ISAKMP SA's •...
Page 213: Cluster-Cli
User Exec Commands 3.1.2 cluster-cli  User Exec Commands Use this command to enter the cluster-cli context. The cluster-cli context provides centralized management to configure all cluster members from any one member. Any command executed under this context will be executed to all the switches in the cluster. A new context redundancy supports the cluster-cli.
Page 214: Disable
Motorola RF Switch CLI Reference Guide 3.1.3 disable  User Exec Commands Enables the PRIV mode to use the disable command. Use the command to exit disable the PRIV mode Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000...
Page 215: Enable
User Exec Commands 3.1.4 enable  User Exec Commands Use the enable command to enter the PRIV mode Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax enable Parameters None Example RFSwitch>enable RFSwitch#...
Page 216: Logout
Motorola RF Switch CLI Reference Guide 3.1.5 logout  User Exec Commands Use this command instead of the command to exit the EXEC mode exit Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax logout Parameters None...
Page 217: Page
User Exec Commands 3.1.6 page  User Exec Commands Use the command to toggle the switch paging function. Enabling this command displays the CLI command output page by page, instead of running the entire output at once. Supported in the following platforms: •...
Page 218: Ping
3-10 Motorola RF Switch CLI Reference Guide 3.1.7 ping  User Exec Commands Sends ICMP echo messages to a user-specified location Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax ping {[<IP>|<hostname>]} Parameters ping {[<IP>|<hostname>]} Pings the specified destination IP address or hostname.
Page 219: Quit
User Exec Commands 3-11 3.1.8 quit  User Exec Commands Use this command to exit the current mode and move to the previous mode Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax quit Parameters None Example The switch logs off upon execution of the command...
Page 220: Telnet
3-12 Motorola RF Switch CLI Reference Guide 3.1.9 telnet  User Exec Commands Opens a telnet session Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax telnet <IP> port Parameters telnet <IP> port Defines the IP address or hostname of a remote system •...
Page 221: Terminal
User Exec Commands 3-13 3.1.10 terminal  User Exec Commands Sets the length/number of lines displayed within the terminal window Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax terminal [length <0-512>|no [length <0-512>|width]| width <0-512>] Parameters length <0-512>...
Page 222: Traceroute
3-14 Motorola RF Switch CLI Reference Guide 3.1.11 traceroute  User Exec Commands Traces the route to its defined destination Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax traceroute [[<IP>|<hostname>]|ip [<IP>|<hostname>]] Parameters [<IP>|<hostname>] Traces the route to a destination IP address or a hostname ip [<IP>|<hostname>]...
Page 223: Chapter 4. Privileged Exec Commands
Privileged Exec Commands Most PRIV EXEC commands set operating parameters. Privileged-level access is password protected to prevent unauthorized use. The PRIV EXEC command set includes commands contained within the USER EXEC mode. The PRIV EXEC mode also provides access to configuration modes, and includes advanced testing commands.
Page 224 Motorola RF Switch CLI Reference Guide Table 4.1 Priv Exec Mode Command Summary Command Description Ref. clear Resets switch functions to last saved configuration page 4-9 clock Configures the software system clock page 4-13 clrscr Clears the displayed screen page 2-2...
Page 225 Privileged Exec Commands Table 4.1 Priv Exec Mode Command Summary Command Description Ref. Negates a command or sets its defaults page 2-5 page Toggles the paging function page 4-39 ping Sends ICMP echo messages to a specified location page 4-40 Displays the current directory page 4-41 quit...
Page 226: Acknowledge
Motorola RF Switch CLI Reference Guide 4.1.1 acknowledge  Priv Exec Command Acknowledges alarms Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax acknowledge alarm-log [<1-65535>|all] Parameters alarm-log [<1-65535>|all] Acknowledges alarms • <1-65535> – Acknowledges the specific alarm ID •...
Page 227: Archive
Privileged Exec Commands 4.1.2 archive  Priv Exec Command Manages file archive operations Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax archive tar /table [<FILE>|<URL>] archive tar /create [<FILE>|<URL>] [<FILE>|<DIR>] archive tar /xtract [<FILE>|<URL>] <DIR> Parameters Manipulates (creates, lists or extracts) a tar file /table Lists the files in a tar file...
Page 228 Motorola RF Switch CLI Reference Guide flash/log/startup.log flash/log/radius/ RFSwitch#dir flash:/ How to view the output tar file? Directory of flash:/ drwx 1024 Thu Apr 17 08:25:50 2010 hotspot drwx Fri Apr 8 12:27:20 2010 drwx 1024 Thu Apr 7 16:23:34 2010...
Page 229 Privileged Exec Commands 4.1.3 cd  Priv Exec Command Changes the current directory Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax cd {<DIR>} Parameters <DIR> Changes current directory to DIR. This parameter is optional. When this parameter is not provided, the current directory name is displayed.
Page 230: Change-Passwd
Motorola RF Switch CLI Reference Guide 4.1.4 change-passwd  Priv Exec Command Changes the password of a logged user Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax change-passwd Parameters None Usage Guidelines A password must be between 8 to 32 characters in length. For security, the console does not display user entered key words or the old password and new password fields.
Page 231: Clear
Privileged Exec Commands 4.1.5 clear  Priv Exec Command Resets the current context Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax clear [aclstats|alarm-log|arp-cache|counters|crypto| dosstats|ip|logging|mac-address-table|mobility| spanning-tree] clear [aclstats|arp-cache|dosstats|logging] clear alarm-log [<1-65535>|acknowledge|all|new] clear counters [all|bridge|firewall|igmp-snooping|interface| router|thread] clear counters interface [<interface>|all|ge <1-8>|me1|sa <1-4>|up1|vlan <1-4094>] NOTE: In RFS4000, clear counters interface [<interface>|all|ge <1-5>|me1|...
Page 232 4-10 Motorola RF Switch CLI Reference Guide clear spanning-tree detected-protocols {interface <interface-name>} Parameters aclstats Clears ACl statistics alarm-log [<1-65535>| Clears the alarm-log acknowledge|all|new] • <1-65535> – Clears the specific alarm ID • acknowledge – Clears acknowledged alarms • all – Clear all alarms •...
Page 233 Privileged Exec Commands 4-11 ip [dhcp| Clears Internet Protocol (IP) DHCP/NAT pmtu-discovery- • dhcp binding [*|<IP>|all]– DHCP server configuration blackhole-cache] • binding [*|<IP>|all]– DHCP address bindings • * – Clears all bindings • <IP> – Clears a specific IP binding •...
Page 234 4-12 Motorola RF Switch CLI Reference Guide mobility [event-log| Clears mobility attributes mobile-unit| • event-log [mobile-unit|peer]– Clears the event log peer-statistics] • mobile-unit – Clears MU event-logs for • peer – Clears peer event logs • mobile-unit [<MAC>|all|foreign-database home-database] – Clears MU information.
Page 235: Clock
Privileged Exec Commands 4-13 4.1.6 clock  Priv Exec Command Configures the software system clock Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax clock set HH:MM:SS <1-31> <MONTH> <1993-2035> Parameters HH:MM:SS Sets the time in hours, minutes, and seconds <1-31>...
Page 236: Cluster-Cli
4-14 Motorola RF Switch CLI Reference Guide 4.1.7 cluster-cli  Priv Exec Command Use this command to access the cluster-cli context. The cluster-cli context provides centralized management to configure all members of cluster from one member. Any command executed under this context is executed on all switches in the cluster.
Page 237: Configure
Privileged Exec Commands 4-15 4.1.8 configure  Priv Exec Command Enters the configuration mode Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax configure terminal Parameters terminal Enables configuration from the terminal Example RFSwitch#configure terminal Enter configuration commands, one per line. End with CNTL/Z. RFSwitch(config)#...
Page 238: Copy
4-16 Motorola RF Switch CLI Reference Guide 4.1.9 copy  Priv Exec Command Copies any file (config,log,txt ...etc) from any location to the switch and vice-versa NOTE: Copying a new config file onto an existing running-config file merges it with the existing running-config on the switch. Both, the existing running-config and the new config file are applied as the current running-config.
Page 239: Debug
Privileged Exec Commands 4-17 4.1.10 debug  Priv Exec Command Use this command for debugging Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax debug [all|cc|ccstats|certmgr|dhcpsvr|imi|ip|logging|mgmt| mobility|mstp|nsm|radius|redundancy|rns|securitymgr|sole] debug all debug cc [access-port|all|alt|ap-containment|ap-detect| capwap|cluster|config|dot11|eap|ids|kerberos|l3-mob| loc-ap|loc-mu|media|mobile-unit|radio|radius|self-heal| smart|snmp|system|wips|wisp|wlan] {[debug|err|info|warn]} debug ccstats <statsmodule> debug [certmgr|dhcpsvr] [all|error|info] debug imi [all|cli-client|cli-server|errors|init|ntp] debug ip [https|ssh]...
Page 240 4-18 Motorola RF Switch CLI Reference Guide cc [access-port|all|alt| Cellcontroller (wireless) debugging message ap-containment| • access-port [debug|err|info|warn] – Debugs access port apetect|capwap|cluster| logs config|dot11|eap|ids| • debug ebugs all default messages – D kerberos|l3-mob|loc-ap| • err – Debugs error and higher severity messages loc-mu|media| •...
Page 241 Privileged Exec Commands 4-19 ccstats <stats-module> Cellcontroller statistics (wireless) debugging messages • stats-module [debug|error|info|warn] – Statistics Module to be debugged • debug – Debugs all default messages • err – Debugs error and higher severity messages • info – Debugs information and higher severity messages •...
Page 242 4-20 Motorola RF Switch CLI Reference Guide ip [https|ssh] Internet protocol debugging messages • https – Secure HTTP <HTTPS> Server • ssh – Secure Shell <SSH> Server logging Modify message logging facilities for debugging messages [all|errors|init|monitor| • all – All debugging subagent] •...
Page 243 Privileged Exec Commands 4-21 mstp Multiple Spanning Tree Protocol (MSTP) debugging [all|cli|packet|protocol| message timer] • all – all • cli – CLI commands • packet [rx|tx] – MSTP packets • rx – receive packet • tx – transmit packet • protocol detail – Protocol •...
Page 244 4-22 Motorola RF Switch CLI Reference Guide redundancy Redundancy protocol debugging messages [all|ccmsg|config|errors| • all – Debugging all general|heartbeats|init| • ccmsg – Msg exchange with CC packets|proc|shutdown| • config – Configuration processing states|subagent|timer| • errors – Errors warnings] • general – General •...
Page 245 Privileged Exec Commands 4-23 securitymgr Security manager debugging messages [acldebug|aclerror|all| • acldebug – Trace debug messages from ACL module debug|dosdebug| • aclerror – Trace error messages from ACL module doserror|error|ikedebug| • all – Trace all messages from Security Manager natdebug|naterror| •...
Page 246 4-24 Motorola RF Switch CLI Reference Guide sole [adapters|aeroscout| Location engine debugging messages algo|all|cclib|ekahau|erro • adapters – SOLE Adapter manager logs rs|info|init] • aeroscout – Aeroscout logs • algo – Location algorithm logs • all – All module logs • cclib – cc library logs •...
Page 247: Delete
Privileged Exec Commands 4-25 4.1.11 delete  Priv Exec Command Deletes a specified file from the system Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax delete [/force <FILE>|/recursive <FILE>|<FILE>] Parameters /force Forces deletion without a prompt /recursive Performs a recursive delete Specifies the filename(s) to be deleted...
Page 248: Diff
4-26 Motorola RF Switch CLI Reference Guide 4.1.12 diff  Priv Exec Command Displays the differences between 2 files Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax diff [<FILE>|<URL>] [<FILE>|<URL>] Parameters <FILE> The first <FILE> is the source file for the diff. The second <FILE>...
Page 249 Privileged Exec Commands 4-27 rad-user sumi policy wlan 2 policy vlan 44 policy wlan 10 group kumar3...
Page 250: Dir
4-28 Motorola RF Switch CLI Reference Guide 4.1.13 dir  Priv Exec Command View the list of files on a filesystem Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax dir {[/all|/recursive] [<DIR>|all-filesystems]} Parameters /all Lists all files...
Page 251: Disable
Privileged Exec Commands 4-29 4.1.14 disable  Priv Exec Command Turns off the privileged mode command Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax disable Parameters None Example RFSwitch#disable RFSwitch>...
Page 252: Edit
4-30 Motorola RF Switch CLI Reference Guide 4.1.15 edit  Priv Exec Command Edits a text file Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax edit <FILE> Parameters <FILE> Name of the file to be modified...
Page 253: Enable
Privileged Exec Commands 4-31 4.1.16 enable  Priv Exec Command Turns on the privileged mode command Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax enable Parameters None Example RFSwitch#enable RFSwitch#...
Page 254: Erase
4-32 Motorola RF Switch CLI Reference Guide 4.1.17 erase  Priv Exec Command Erases a target filesystem Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax erase [nvram:|flash:|startup-config|usb1:|usb2:|cf:] Parameters nvram: Erases everything in nvram flash: Erases everything in flash...
Page 255: Halt
Privileged Exec Commands 4-33 4.1.18 halt  Priv Exec Command Stops (halts) the switch Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax halt Parameters None Example RFSwitch#halt Wireless switch will be halted, do you want to continue? (y/n): y Do you want to save current configuration? (y/n/d): y [OK]...
Page 256: Kill
4-34 Motorola RF Switch CLI Reference Guide 4.1.19 kill  Priv Exec Command Kills (terminates) a specified session and stops (halts) the switch Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax kill session <1-16> Parameters session...
Page 257: Logout
Privileged Exec Commands 4-35 4.1.20 logout  Priv Exec Command Exits the EXEC mode and stops (halts) the switch Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax logout Parameters None Example RFSwitch#logout RFSwitch release 4.3.0.0-200B Login as 'cli' to access CLI. RFSwitch login:...
Page 258: Mkdir
4-36 Motorola RF Switch CLI Reference Guide 4.1.21 mkdir  Priv Exec Command Creates a new directory in the filesystem Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax mkdir <DIR> Parameters <DIR> Directory name Example RFSwitch#mkdir TestDIR...
Page 259: More
Privileged Exec Commands 4-37 4.1.22 more  Priv Exec Command Displays the contents of a file Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax more <FILE> Parameters <FILE> Displays the contents of the file Example RFSwitch#more flash:/log/messages.log Sep 08 12:27:30 2010: %PM-5-PROCSTOP: Process "radiusd"...
Page 260 4-38 Motorola RF Switch CLI Reference Guide User 'admin' logged in with role of ' superuser' from auth source 'local' Sep 08 12:28:01 2010: %NSM-6-DHCPDEFRT: Default route with gateway 157.235.208.246 learnt via DHCP Sep 08 12:28:01 2010: %NSM-6-DHCPIP: Interface vlan1 acquired IP address 157.235.208.93/24 via DHCP...
Page 261: Page
Privileged Exec Commands 4-39 4.1.23 page  Priv Exec Command Toggles switch paging. Enabling this command displays the command output page by page instead of running the entire output at once. Supported in the following platforms: • RFS7000 • RFS6000 •...
Page 262: Ping
4-40 Motorola RF Switch CLI Reference Guide 4.1.24 ping  Priv Exec Command Send (transmits) ICMP echo messages Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax ping {<IP>} Parameters <IP> Sets the ping destination address or hostname Example RFSwitch#ping 157.235.208.39...
Page 263: Pwd
Privileged Exec Commands 4-41 4.1.25 pwd  Priv Exec Command View the contents of the current directory Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax Parameters None Example RFSwitch#pwd flash:/ RFSwitch#...
Page 264: Quit
4-42 Motorola RF Switch CLI Reference Guide 4.1.26 quit  Priv Exec Command Exits the current mode and moves to the previous mode Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax quit Parameters None Example RFSwitch#quit RFSwitch release 4.3.0.0-XXXX...
Page 265: Reload
Privileged Exec Commands 4-43 4.1.27 reload  Priv Exec Command Halts the switch and performs a warm reboot Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax reload Parameters None Example RFSwitch#reload...
Page 266: Rename
4-44 Motorola RF Switch CLI Reference Guide 4.1.28 rename  Priv Exec Command Renames a file in the existing filesystem Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax rename <FILE> <FILE> Parameters <FILE> Specifies the file to rename. The first <FILE> is the old file name.
Page 267: Rmdir
Privileged Exec Commands 4-45 4.1.29 rmdir  Priv Exec Command Deletes an existing file from the file system Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax rmdir <DIR> Parameters <DIR> Defines the name of the directory to delete Example RFSwitch#rmdir flash:/NewTestDir/ RFSwitch#DIR...
Page 268: Telnet
4-46 Motorola RF Switch CLI Reference Guide 4.1.30 telnet  Priv Exec Command Opens a telnet session Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax telnet <IP> {<port>} Parameters telnet <IP> {<port>} Defines the IP address or hostname of a remote system •...
Page 269: Terminal
Privileged Exec Commands 4-47 4.1.31 terminal  Priv Exec Command Sets the length/number of lines displayed within the terminal window Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax terminal [length <0-512>|no [length <0-512>|width]| width <0-512>] Parameters length <0-512>...
Page 270: Traceroute
4-48 Motorola RF Switch CLI Reference Guide 4.1.32 traceroute  Priv Exec Command Traces a route to a destination Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax traceroute [[<IP>|<hostname>]|ip [<IP>|<hostname>]] Parameters [<IP>|<hostname>] Traces the route to a destination IP address or a hostname ip [<IP>|<hostname>]...
Page 271: Upgrade
Privileged Exec Commands 4-49 4.1.33 upgrade  Priv Exec Command Upgrades the software image Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax upgrade <URL> {background} Parameters <URL> Location of the target firmware image used in upgrade background Optional.
Page 272 4-50 Motorola RF Switch CLI Reference Guide kernel/ISR 100.00%) Sep 08 15:58:44 2009: %PM-4-PROCNORESP: Process "logd" is not responding Jan 08 15:58:44 2009: %PM-4-PROCNORESP: Process "logd" is not responding Jan08 15:58:44 2009: %PM-4-PROCNORESP: Process "logd" is not responding Jan 08 15:58:44 2009: %PM-4-PROCNORESP: Process "logd"...
Page 273: Upgrade-Abort
Privileged Exec Commands 4-51 4.1.34 upgrade-abort  Priv Exec Command Aborts an ongoing upgrade process Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax upgrade-abort Parameters None Example RFSwitch#upgrade-abort...
Page 274: Write
4-52 Motorola RF Switch CLI Reference Guide 4.1.35 write  Priv Exec Command Writes the running configuration to memory or a terminal Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax write [memory|terminal] Parameters memory Writes to NV memory...
Page 275 Privileged Exec Commands 4-53 ip http secure-trustpoint local ip http secure-server ip ssh ip telnet snmp-server manager v2 snmp-server manager v3 crypto isakmp identity address crypto isakmp keepalive 10 crypto ipsec security-association lifetime kilobytes 4608000 !........
Page 276: Format
4-54 Motorola RF Switch CLI Reference Guide 4.1.36 format  Priv Exec Command Formats file system Supported in the following platforms: • RFS7000 Syntax format cf: Parameters Formats compact flash Example RFSwitch#format cf:...
Page 277: Chapter 5. Global Configuration Commands
Global Configuration Commands The term global is used to indicate characteristics or features effecting the system as a whole. Use the Global Configuration Mode to configure the system globally, or enter specific configuration modes to configure specific elements (such as interfaces or protocols).
Page 278: Global Configuration Commands
Motorola RF Switch CLI Reference Guide 5.1 Global Configuration Commands Table 5.1 summarizes the Global Config commands Table 5.1 Global Config Mode Command Summary Command Description Ref. Configures the current authentication, authorization page 5-5 and accounting (aaa) login settings access-list...
Page 279 Global Configuration Commands Table 5.1 Global Config Mode Command Summary Command Description Ref. dns-whitelist Specifies a list of hosts (IPs or DNS names) for which page 5-54 Internet access is allowed to hotspot users before authentication. interface Defines an interface to configure page 5-55 Internet Protocol (IP) page 5-57...
Page 280 Motorola RF Switch CLI Reference Guide Table 5.1 Global Config Mode Command Summary Command Description Ref. show Displays the running system information page 2-38 service Service commands page 5-94 smtp-notification Modifies SMTP notification parameters page 5-97 snmp-server Modifies SNMP engine parameters...
Page 281: Aaa
Global Configuration Commands 5.1.1 aaa  Global Configuration Commands Configures the current Authentication, Authorization and Accounting (AAA) login settings Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax aaa [authentication|nas|vpn-authentication] aaa authentication login default [local|none|radius] aaa nas <name> aaa vpn-authentication [primary|secondary] <IP>...
Page 282 Motorola RF Switch CLI Reference Guide vpn-authentication Sets the configuration for VPN authentication using [primary|secondary] RADIUS. [<IP> key [0 <secret>| • primary – Sets the configuration for the primary server 2 <secret>|<secret>] • secondary – Sets the configuration for the secondary {authport <1024-65535>}...
Page 283: Access-List
Global Configuration Commands 5.1.2 access-list  Global Configuration Commands Adds an Access List (ACL) entry. Use the command (under Global access-list Configuration) to configure the access list mechanism for filtering frames by protocol type or vendor code. ACLs control access to the network through a set of rules. Each rule specifies an action which is taken when a packet matches it within the given set of rules.
Page 284 Motorola RF Switch CLI Reference Guide For Extended IP ACLs: access-list [<100-199>|<2000-2699>] [deny|permit|mark] [icmp|ip|tcp|upd] access-list [<100-199>|<2000-2699>] [deny|permit|mark] icmp [<source-IP/Mask>|any|host <IP>] [<dest-IP/Mask>|any|host <IP>] {<ICMP-type> {<ICMP-code>}} {log} {rule-precedence <1- 5000>} access-list [<100-199>|<2000-2699>] [deny|permit|mark]ip [<source-IP/Mask>|any|host <IP>] [<dest-IP/Mask>|any|host <IP>] {log} {rule-precedence <1-5000>} access-list [<100-199>|<2000-2699>] [deny|permit|mark] [tcp|udp] [<source-IP/Mask>|any|host <IP>] {eq...
Page 285 Global Configuration Commands Parameters access-list Adds a standard access list entry. [<1-99>|<1300-1999>] • [<1-99>|<1300-1999>] – Defines access list number from [permit|deny] 1-99 or 1300-1999 [<IP/MASK>|any| • [deny|permit] – Defines action types on an ACL. host <IP>] {[rule- • [<IP/MASK>| host <IP>| any] – <IP/MASK> is the precedence <1-5000>...
Page 286 5-10 Motorola RF Switch CLI Reference Guide access-list [<1- Adds a standard access list entry. 99>|<1300-1999>] • [<1-99>|<1300-1999>] – Defines access list number from mark [8021p <0- 1-99 or 1300-1999 7>|dscp <0-63>|tos • mark – Marks a packet. The action type mark <0-255>] [<IP/...
Page 287 Global Configuration Commands 5-11 access-list Adds an Extended IP access list entry. [<100-199>|<2000- • (<100-199>|<2000-2699>) – For ICMP extended ACLs, the 2699>] [permit|deny] ACL must be between 2000-2699 [icmp|ip|tcp|udp] • [deny|permit] – Defines action types on an ACL. [<IP/MASK>|any| • [icmp|ip|tcp|udp] – The protocol type for the extended host <IP>] {[rule- ACL entry precedence <1-5000>...
Page 288 5-12 Motorola RF Switch CLI Reference Guide access-list Adds an Extended IP access list entry. [<100-199>|<2000- • (<100-199>|<2000-2699>) – For ICMP extended ACLs, the 2699>] mask [8021p ACL must be between 2000-2699 <0-7>|dscp <0-63>|tos • mark – Marks a packet. The action type mark <0-255>]...
Page 289 Global Configuration Commands 5-13 Use an access list command under the global configuration to create an access list. The switch supports port, router and WLAN ACLs • When the access list is applied on an Ethernet port, it becomes a port ACL •...
Page 290: Autoinstall
5-14 Motorola RF Switch CLI Reference Guide 5.1.3 autoinstall  Global Configuration Commands Autoinstalls the switch image Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax autoinstall [clear-config-history|cluster-config|config| image|reset-config|start] autoinstall [clear-config-history|reset-config|start] autoinstall [cluster-config|config] {url <URL>} autoinstall image {[url <URL>|version <version>]}...
Page 291 Global Configuration Commands 5-15 config {url <URL>} Autoinstalls a config setup. • url – Optional. Sets the URL of the item • URL – Remote/external location of the file URLS: tftp://<hostname|IP>[:port]/path/file ftp://<user>:<passwd>@<hostname|IP>[:port]/ path/file http://<hostname|IP>[:port]/path/file cf:/path/file usb1:/path/file usb2:/path/file image {[url <URL>| Autoinstalls the image setup.
Page 292: Banner
5-16 Motorola RF Switch CLI Reference Guide 5.1.4 banner  Global Configuration Commands Defines a login banner for the switch. Use to delete a previously configured {no} banner banner. Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax {no} banner motd [<message>|default]...
Page 293: Boot
Global Configuration Commands 5-17 5.1.5 boot  Global Configuration Commands Reboots the switch with an image in the mentioned partition (either the primary or secondary partition) Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax boot system [primary|secondary] Parameters system Specifies the boot image used after reboot...
Page 294: Bridge
5-18 Motorola RF Switch CLI Reference Guide 5.1.6 bridge  Global Configuration Commands Configures bridge specific commands Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 SWITCH NOTE: The interfaces mentioned below are supported in the following platforms: •...
Page 295 Global Configuration Commands 5-19 Parameters bridge <bridge-group> Bridge groups available for bridging. address <MAC> • <bridgegroup> – Bridge group value between 1 and 32 [discard|forward] • address <MAC> – Unique hardware address in the [<interface>|ge <1-8>| HHHH.HHHH.HHHH format me1|sa <1-4>|up1| •...
Page 296 5-20 Motorola RF Switch CLI Reference Guide RFSwitch(config)# RFSwitch(config)#bridge 2 address 1a2b:3c4d:5e6f forward eth 1 vlan 2 RFSwitch(config)#...
Page 297: Country-Code
Global Configuration Commands 5-21 5.1.7 country-code  Global Configuration Commands Sets the country of operation Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax {no} country-code <code> Parameters <code> A two (2) letter ISO-3166 country code. To view country codes, use the show wireless country-code-list command.
Page 298: Crypto
5-22 Motorola RF Switch CLI Reference Guide 5.1.8 crypto  Global Configuration Commands Use crypto to define system level local ID for ISAKMP negotiation and to enter the ISAKMP Policy, ISAKMP Client or ISAKMP Peer command set. NOTE: moves to the crypto isakmp(policy)Priority instance.
Page 299 Global Configuration Commands 5-23 crypto isakmp [client|keepalive|key|peer|policy] crypto isakmp client configuration group default crypto isakmp keepalive <10-3600> crypto isakmp key [0 <secret>|2 <secret>|<secret>] [address <IP>|hostname <HOST>] crypto isakmp peer [address <IP>|dn <distinguished-name>| hostname <HOST>] crypto isakmp policy <1-10000> crypto key [export|generate|import|zeroize] crypto key export rsa <rsa-keypair>...
Page 300 5-24 Motorola RF Switch CLI Reference Guide Parameters ipsec (security- Configures IPSEC policies. association| transform- • security-association – Defines the security association set) parameter used to define its lifetime • lifetime (kilobyte | seconds) – The lifetime of IPSEC security association. It can be defined in either: kilobytes –...
Page 301 Global Configuration Commands 5-25 isakmp Configures the Internet Security Association and Key Management Protocol (ISAKMP) policy. [client|keepalive|key| • client configuration (group) (default) – Leads to the peer|policy] config-cryptogroup instance For more details see Crypto-group Instance on page 7-1. • keepalive <10-3600> – Sets a keepalive interval for use with remote peers.
Page 302 5-26 Motorola RF Switch CLI Reference Guide Authentication key management functions. [export|generate|import| • export rsa <name> URL [tftp|ftp] – Exports a keypair related configuration zeroize] • generate rsa <name> <1024-2048> – Generates a keypair • <1024-2048> – Size of keypair in bits •...
Page 303 Global Configuration Commands 5-27 pki [authenticate|enroll| Configures certificate parameters. The public key export|import|trustpoint] infrastructure is a protocol that creates encrypted public keys using digital certificates from certificate authorities. The PKI ensures each online party is who they claim to be. •...
Page 304 5-28 Motorola RF Switch CLI Reference Guide Usage Guidelines Follow the table to calculate how many character are required to add the key size for authentication and encryption. This is used while configuring Manual IPSEC only. For example, To create a key with authentication type as ESP-SHA and encryption type as AES-192, enter 20+16=36 characters.
Page 305 Global Configuration Commands 5-29 RFSwitch(config-crypto-map)#set session-key inbound esp 257 cipher 12345678901234567890123456789012345678901234 authenticator 12345678901234567890123456789012345678901234 RFSwitch(config-crypto-map)#set session-key outbound esp 258 cipher 12345678901234567890123456789012345678901234 authenticator 12345678901234567890123456789012345678901234 RFSwitch(config-crypto-map)#exit RFSwitch(config)#interface vlan11 RFSwitch(config-if)#crypto map manual RFSwitch(config-if)#show running-config ! configuration of RFS7000 version 1.2.0.0-024D version 1.1 aaa authentication login default none service prompt crash-info username "admin"...
Page 306 5-30 Motorola RF Switch CLI Reference Guide crypto isakmp key 0 12345678 address 21.1.1.1 ........................crypto ipsec transform-set tfset1 esp-3des esp-sha-hmac mode tunnel crypto ipsec transform-set tfset-manual esp-3des esp-sha- hmac mode tunnel crypto map MAP1 10 ipsec-isakmp set peer 11.1.1.1...
Page 307 Global Configuration Commands 5-31 set transform-set tfset-manual ........................interface vlan11 ip address 11.1.1.2/24 crypto map manual ........................RFSwitch(config-if)# Usage Guidelines A peer address can be deleted with a wrong isakmp value. Crypto currently matches only the IP address when a command is issued RFSwitch(config)#crypto isakmp key 12345678 address 4.4.4.4 RFSwitch(config)#show running-config...
Page 308: Use Case 1: Configuring Remote Vpn
(trusted network) using IPSec VPN functionality. A Motorola client is associated to a WLAN (say wlan1) attached to vlan2 on the switch. vlan2 is on subnet 10.1.1.x and is running a DHCP server that assigns IP addresses for this subnet.
Page 309 Global Configuration Commands 5-33 In case the client is VPN enabled, it initiates a connection with the VPN server on our switch, the “conversation” that occurs between the peers consists of device authentication via Internet Key Exchange (IKE), followed by user authentication using IKE Extended Authentication (Xauth), push client relate configuration (using Mode Configuration), and IPsec security association (SA) creation.
Page 310 5-34 Motorola RF Switch CLI Reference Guide 4. Create and configure another VLAN interface named vlan3. RFSwitch(config)#interface vlan 3 RFSwitch(config-if)#ip address dhcp Use the commands below to configure IPSec VPN on the switch: 1. Create an Extended ACL. RFSwitch(config-ext-nacl)#ip access-list extended 101 2.
Page 311: Use Case 2: Configuring Site-To-Site Vpn
Global Configuration Commands 5-35 5.1.8.2 Use Case 2: Configuring Site-to-Site VPN Intranets use unregistered addresses connected over the public internet by site-to-site VPN. In this scenario, NAT is required for the connections to the public internet. However NAT is not required for traffic between the two intranets, which can be transmitted using a VPN tunnel over the public Internet.
Page 312 5-36 Motorola RF Switch CLI Reference Guide RFSwitch(config-crypto-map)#set peer 15.1.1.20 RFSwitch(config-crypto-map)#match address 150 RFSwitch(config-crypto-map)#set transformset TFSET RFSwitch(config-crypto-map)#set security-association lifetime seconds 3600 f.Associate the crypto map with a VLAN interface. RFSwitch(config)#interface vlan1 RFSwitch(config-if)#ip address 11.1.1.10/24 RFSwitch(config-if)#crypto map THIRDMAP RFSwitch(config-if)#interface vlan2100 RFSwitch(config-if)#ip address 12.1.1.10/24 RFSwitch(config-if)#ip route 0.0.0.0/0 11.1.1.2...
Page 313 Global Configuration Commands 5-37 RFSwitch(config-crypto-map)#set transformset TFSET RFSwitch(config-crypto-map)#set security-association lifetime seconds 3600 f.Associate the crypto map with a VLAN interface. RFSwitch(config)#interface vlan1 RFSwitch(config-if)#ip address 15.1.1.20/24 RFSwitch(config-if)#crypto map THIRDMAP RFSwitch(config-if)#interface vlan2100 RFSwitch(config-if)#ip address 13.1.1.20/24 RFSwitch(config-if)#ip route 0.0.0.0/0 15.1.1.2...
Page 314 5-38 Motorola RF Switch CLI Reference Guide 5.1.9 do  Global Configuration Commands Runs commands from either the User Exec or Priv Exec mode Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax do <privilege mode commands>...
Page 315: End
Global Configuration Commands 5-39 5.1.10 end  Global Configuration Commands Ends the current mode and changes to the EXEC mode Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax Parameters None. Example RFSwitch(config)#end RFSwitch#? Priv Exec commands: acknowledge Acknowledge alarms archive...
Page 316: Errdisable
5-40 Motorola RF Switch CLI Reference Guide 5.1.11 errdisable  Global Configuration Commands Enables the timeout mechanism for the port to be enabled back after an error Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax errdisable recovery [cause bpduguard|interval <10-1000000>]...
Page 317: Ftp
Global Configuration Commands 5-41 5.1.12 ftp  Global Configuration Commands Configures the switch as an FTP server Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax ftp [enable|password|rootdir|username] ftp password [0 <secret>|1 <secret>|<secret>] ftp rootdir <DIR> ftp username <LINE> Parameters enable Enables the FTP server...
Page 318 5-42 Motorola RF Switch CLI Reference Guide Usage Guidelines NOTE: The string size of encrypted password (option 1, Password is encrypted with SHA1 algorithm) must be exactly 40 characters. Example RFSwitch(config)#ftp enable RFSwitch(config)#...
Page 319: Hostname
Global Configuration Commands 5-43 5.1.13 hostname  Global Configuration Commands Changes the system’s network name Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax hostname <host-name> Parameters <host-name> The name of the switch. This name is displayed when the switch is accessed from any network.
Page 320: Hotspot
5-44 Motorola RF Switch CLI Reference Guide 5.1.14 hotspot  Global Configuration Commands Displays the configuration commands for wired hotspots Supported in the following platforms: RFS7000 RFS6000 RFS4000 Syntax hotspot vlan[<1-4094>|VLAN][accounting|allow- list|connection-mode|dns-whitelist|enable|radius|redirect- to-hostname|simultaneous users|syslog|webpage|webpage- location] hotspot vlan[<1-4094>|VLAN]accounting[none|radius|syslog] hotspot vlan[<1-4094>|VLAN]allow-list <1-32> <A.B.C.D>...
Page 321 Global Configuration Commands 5-45 hotspot vlan[<1-4094>|VLAN]webpage[external|internal] hotspot vlan[<1-4094>|VLAN]webpage external[failure<URL>|login<URL>|welcome<URL>] hotspot vlan[<1-4094>|VLAN]webpage internal[failure|login|terms|welcome] hotspot vlan[<1-4094>|VLAN]webpage internal[failure|login]<URL> hotspot vlan[<1-4094>|VLAN]webpage internal terms [description <LINE>|header <LINE>] hotspot vlan[<1-4094>|VLAN]webpage internal welcome [description|footer|header]<LINE> hotspot vlan[<1-4094>|VLAN]webpage internal welcome [main- logo|small-logo]<URL> hotspot vlan[<1-4094>|VLAN]webpage- location[advanced|external|internal] hotspot vlan[<1-4094>|VLAN]webpage-location internal {logout-on-browser-close} Parameters vlan[<1-4094>|VLAN] Specifies the VLAN on which a wired hotspot has to be...
Page 322 5-46 Motorola RF Switch CLI Reference Guide allow-list Modifies the hotspot allow-list parameters. <1-32> <A.B.C.D> Unauthenticated users will be allowed access to the IP addresses in the allow-list field. • <1-32> – Allow-list rule index • <A.B.C.D> – Refers to a specific IP address to which unauthenticated wired hosts can connect to.
Page 323 Global Configuration Commands 5-47 radius[accounting| Modifies Radius-related parameters authentication- • accounting [mode|server|timeout] – Describes the protocol|dscp| Radius accounting parameters dynamic-authorization • mode start-interim-stop interval <60-3600> – |server] Specifies the accounting mode on this VLAN • start-interim-stop interval <60-3600> – Sends Accounting Start-Interim-Stop •...
Page 324 5-48 Motorola RF Switch CLI Reference Guide • CHAP – Challenge Handshake Authentication Protocol • PAP – Password Authentication Protocol • dscp <1-63> – Specifies a Differentiated Services Code Point (DSCP) value to provide QoS to Radius packets • <1-63> – Specifies the DSCP value •...
Page 325 Global Configuration Commands 5-49 simultaneous users Enforces that a particular username can only be used by a <0-2000> certain number of MAC addresses at a time. • <0-2000> – The number of MAC addresses that are allowed to use that username at the same time. The value 0 implies disabling this feature.
Page 326 5-50 Motorola RF Switch CLI Reference Guide webpage Modifies the hotspot page parameters. [external|internal] • external [failure|login|welcome] – Modifies the hotspot External page • failure <URL> – Users are redirected to this web page if they fail in the authentication •...
Page 327 Global Configuration Commands 5-51 • <URL> – Specifies the URL from where the image is loaded and cached onto the wireless switch • title <LINE> – Displays the title text • <LINE> – A string of upto 2048 characters • login – Users are prompted for their username and password on this web page.
Page 328 5-52 Motorola RF Switch CLI Reference Guide • welcome [description|header|footer|main-logo|small- logo|title] – Users are redirected to this web page when they are authenticated successfully. • description<LINE> – Text that is displayed as the main body of the web page • header<LINE> – Text that is displayed as the header of the web page •...
Page 329 Global Configuration Commands 5-53 Example RFSSwitch(config)#hotspot vlan 8 radius server primary 1.2.3.4 auth-port 1812 RFSSwitch(config)# RFSSwitch(config)#hotspot vlan 8 allow-list 30 1.2.3.4 RFSSwitch(config)# RFSSwitch(config)#hotspot vlan 8 simultaneous-users 1000 RFSSwitch(config)#...
Page 330: Dns-Whitelist
5-54 Motorola RF Switch CLI Reference Guide 5.1.15 dns-whitelist  Global Configuration Commands Specifies a list of hosts (IPs or DNS names) for which Internet access is allowed to hotspot users before authentication. Syntax dns-whitelist <NAME> Parameters <NAME> The name of the DNS whitelist.
Page 331: Interface
Global Configuration Commands 5-55 5.1.16 interface  Global Configuration Commands Configures a selected interface This command is used to enter the interface configuration mode for the specified physical Switch Virtual Interface (SVI) interface. If the VLANx (SVI) interface does not exist, it is automatically created.
Page 332 5-56 Motorola RF Switch CLI Reference Guide Parameters <interface-name> The name of the interface that is selected ge <1-8> Gigabit Ethernet interface (4 for RFS7000 and 8 for RFS6000) Fast Ethernet interface sa <1-4> Static Aggregate interface (in RFS7000 only) WAN interface (in RFS6000 only) vlan <1-4094>...
Page 333 Global Configuration Commands 5-57 5.1.17 ip  Global Configuration Commands Configures a selected Internet Protocol (IP) component Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 NOTE: Using moves you to the access-list extended instance. For more information, see (config-ext-nacl) Chapter , Extended ACL Instance.
Page 334 5-58 Motorola RF Switch CLI Reference Guide ip dhcp excluded-address <IP-range-low> {<IP-range-high>} ip dhcp option <option-name> <option-code> [ascii|ip] ip dhcp ping timeout <1-10> ip dhcp pool <pool-name> ip domain-name <domain-name> ip dos [ascend|bcast-mcast-icmp|chargen|enable|fraggle| ftp-bounce|invalid-protocol|option-route| router-solicit|router-advt| smurf|snork|tcp-intercept|tcp-max-incomplete|twinge] log [<0-8>|alerts|critical|debugging|emergencies|error| informational|none|notifications|warnings] ip http [secure-server|secure-trustpoint|server] ip http [secure-server|server] ip http secure-trustpoint <trustpoint-name>...
Page 335 Global Configuration Commands 5-59 ip nat inside destination static <IP> <port> [tcp|udp] <outside-global-IP> {<outside-port>} ip nat inside destination static <IP> {<outside-global-IP> <outside-port>} ip nat inside source list <acl-name> interface [<interface- name>|vlan <1-4094>] overload ip nat inside source static <local-IP> <outside-global-IP> ip nat outside destination static <IP>...
Page 336 5-60 Motorola RF Switch CLI Reference Guide ip dhcp [bootp|class| DHCP server configuration excluded-address|option| • bootp ignore – Defines the BOOTP specific configuration. ping|pool] • ignore – Configures the DHCP server to ignore BOOTP requests • class <class-name> – Defines a DHCP class and enters the DHCP class configuration mode •...
Page 337 Global Configuration Commands 5-61 http [secure-server| Hyper Text Transfer Protocol (HTTP) configuration secure-trustpoint| • secure-server – Sets the device to start the Secure HTTP server] Server (HTTPS) • secure-trustpoint <trustpoint-name> – Sets the name of the trustpoint used for secure connection to <trustpoint- name>...
Page 338 5-62 Motorola RF Switch CLI Reference Guide nat [inside|outside] Defines Network Address Translation (NAT) configuration [destination|source] values. These following commands are possible for NAT • ip nat [inside|outside] destination static <IP> <port> [tcp|udp] <outside-global-IP> {<outside-port>} – Sets the parameters for translation for inside destination •...
Page 339 Global Configuration Commands 5-63 • ip nat [inside|outside] source static <outside-global-IP> <local-IP> – Sets the parameters for translation for inside sources • inside – Indicates inside address translation • outside – Indicates outside address translation • source – Indicates source address translation •...
Page 340 5-64 Motorola RF Switch CLI Reference Guide dos [ascend| Configures the Denial of Service (DOS) attack parameters. bcast-mcast-icmp| • ascend – Enables Ascend DoS checks chargen|enable|fraggle| • bcast-mcast-icmp – Detects Broadcast/Multicast Icmp ftp-bounce| traffic as attack invalid-protocol| • chargen – Enables chargen DoS checks option-route|router-advt| •...
Page 341 Global Configuration Commands 5-65 • tcp -max-incomplete – Configures the maximum half- open TCP connections in the system • high <1-1000> – Sets the upper threshold value between 1 and 1000 • low <1 - 1000> – Sets the lower threshold value between 1 and1000...
Page 342 5-66 Motorola RF Switch CLI Reference Guide igmp snooping Configures IGMP Snooping parameters. {[querier|unknown- • unknown-multicast-fwd – Optional. Forwards packets multicast-fwd|vlan]} from unregistered multicast servers • querier {[address|max-response-time|query- interval|timer|version]}}– Configures IGMP querier. All options are optional • address <IP> – Sets GMP querier source IP address •...
Page 343 Global Configuration Commands 5-67 Usage Guidelines 1 1. Use the command along with ip to undo any IP based configuration. [no] ip(access-list|default-gateway|dos|dhcp|domain-lookup| domain-name|http|local|name-server|nat|route|routing|ssh|telnet) 2. When using the parameter, enter the following contexts: ip access-list • ext-nacl – Extended ACL. For more information, see Chapter , Extended ACL Instance •...
Page 344 5-68 Motorola RF Switch CLI Reference Guide 5. The switch leads you to a new mode (config-dhcp-class). Use this mode to add an address range used with the DHCP class associated with the pool. RFSwitch(config-dhcp-class)#address range 11.22.33.44 Example RFSwitch(config)#ip access-list extended TestACL...
Page 345: License
Global Configuration Commands 5-69 5.1.18 license  Global Configuration Commands Adds a feature license Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax license <feature> <license-key> Parameters <feature> The feature for which the license is to be added <license-key>...
Page 346: Line
5-70 Motorola RF Switch CLI Reference Guide 5.1.19 line  Global Configuration Commands Configures the terminal line Opens the config-line mode, where you can configure the various parameters for the selected terminal. Supported in the following platforms: • RFS7000 • RFS6000 •...
Page 347: Local
Global Configuration Commands 5-71 5.1.20 local  Global Configuration Commands Sets the username and password for local user authentication Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax local username <username> password [<password>|0 <password>| 2 <password>] Parameters username <username>...
Page 348: Logging
5-72 Motorola RF Switch CLI Reference Guide 5.1.21 logging  Global Configuration Commands Modifies message logging facilities Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax logging [aggregation-time|buffered|cli-commands|console| facility|host|monitor|on|snmp-set|syslog] logging aggregation-time <1-60> logging [buffered|console|monitor|syslog] [<0-7>|alerts| critical|debugging|emergencies|errors|informational| notifications|warnings]...
Page 349 Global Configuration Commands 5-73 buffered [<0-7>|alerts| Sets the buffered logging level critical|debugging| • <0-7> – Enter the logging severity level (0-7) emergencies|errors| • alerts – Immediate action needed, (severity=1) informational| • critical – Critical conditions, (severity=2) notifications|warnings] • debugging – Debugging messages, (severity=7) •...
Page 350 5-74 Motorola RF Switch CLI Reference Guide monitor [<0-7>|alerts| Sets the terminal lines logging level critical|debugging| emergencies|errors| informational| notifications|warnings] Enables the logging of system messages snmp-set enable Set logging for SNMP set requests • enable – Enable SNMP set logging syslog [<0-7>|alerts|...
Page 351: Mac
Global Configuration Commands 5-75 5.1.22 mac  Global Configuration Commands Configures MAC access lists (goes to the MAC ACL mode) For more information on this mode, see Chapter , Extended MAC ACL Instance. Supported in the following platforms: • RFS7000 •...
Page 352: Mac-Address-Table
5-76 Motorola RF Switch CLI Reference Guide 5.1.23 mac-address-table  Global Configuration Commands Configures the MAC address table Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax mac-address-table aging-time [0|<10-1000000>] Parameters aging-time The duration for which a learned mac address persists after [0|<10-1000000>]...
Page 353: Mac-Name
Global Configuration Commands 5-77 5.1.24 mac-name  Global Configuration Commands Sets a name to the MAC address Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax mac-name <MAC> <mac-name> Parameters <MAC> <name> The MAC address to set a ease-of-use name for <mac-name>...
Page 354: Management
5-78 Motorola RF Switch CLI Reference Guide 5.1.25 management  Global Configuration Commands Sets management interface properties Limits local access (through web/telnet) to management interfaces only. Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax management secure...
Page 355: Ntp
Global Configuration Commands 5-79 5.1.26 ntp  Global Configuration Commands Configure Network Time Protocol (NTP) values Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax ntp [access-group|authenticate|authentication-key|autokey| broadcast|broadcastdelay|master|peer|server|trusted-key] ntp access-group [peer|query-only|serve|serve-only] [<1-99>|<100-199>|<1300-1999>|<2000-2699>] ntp authenticate ntp authentication-key <key> md5 [0 <secret>|2 <secret>|<secret>] ntp autokey [client-only|host] ntp broadcast [client|destination]...
Page 356 5-80 Motorola RF Switch CLI Reference Guide Parameters access-group Controls NTP access. [peer|query-only|serve| • peer – Provides full access serve-only] [<1-99>| • query-only – Allows only control queries <100-199>|<1300-1999>| • serve – Provides server and query access <2000-2699>] • serve-only – Provides only server access •...
Page 357 Global Configuration Commands 5-81 broadcast Configures the NTP broadcast service. [client|destination] • client – Listens to NTP broadcasts • destination <IP> {[key <1-65534>|version <1-4>]}– Configures broadcast destination address • IP Address – Defines the destination broadcast IP address • key <1-65536> – Optional. Sets the broadcast key number •...
Page 358 5-82 Motorola RF Switch CLI Reference Guide • prefer {version <1-4>} – Sets the preference for autokey. Optionally set the NTP version to use • version <1-4> {prefer} – Sets the NTP version to use. Optionally set this peer as preferred peer server Configures the NTP server.
Page 359 Global Configuration Commands 5-83 RFSwitch(config)#ntp peer TestPeer autokey ? prefer Prefer this peer when possible version Configure NTP version <cr> RFSwitch(config)#ntp peer TestPeer autokey prefer ? version Configure NTP version <cr> RFSwitch(config)#ntp peer TestPeer autokey prefer version ? <1-4> NTP version number RFSwitch(config)#ntp peer TestPeer autokey prefer version 3 RFSwitch(config)# RFSwitch(config)#ntp peer TestPeer key ?
Page 360: Prompt
5-84 Motorola RF Switch CLI Reference Guide 5.1.27 prompt  Global Configuration Commands Configures and sets the systems prompt Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax prompt <prompt> Parameters <prompt> Enter the new prompt displayed by the system. The following operational modifiers are available.
Page 361: Radius-Server
Global Configuration Commands 5-85 5.1.28 radius-server  Global Configuration Commands Enters the RADIUS server mode, the system prompt changes from the default config mode to the RADIUS server mode Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 NOTE: mode takes you to the RADIUS server radius-server local...
Page 362 5-86 Motorola RF Switch CLI Reference Guide retransmit <1-100> Specifies the number of retries to active server. • <0-100> – Number of retries for a transaction (default is 3) timeout <1-1000> Time to wait for a RADIUS server to reply.
Page 363: Ratelimit
Global Configuration Commands 5-87 5.1.29 ratelimit  Global Configuration Commands Configures rate limit parameters Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax ratelimit [arp|bcast|mcast|ucast] [<0-7>|alerts|critical| debugging|emergencies|errors|informational|notifications| warnings] Parameters ratelimit Sets the logging levels for ratelimit feature. [arp|bcast|mcast|ucast] •...
Page 364: Redundancy
5-88 Motorola RF Switch CLI Reference Guide 5.1.30 redundancy  Global Configuration Commands Configures redundancy group parameters Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax redundancy [auto-revert|auto-revert-period| critical-resource-ip|dhcp-server|discovery-period| dynamic-ap-load-balance|enable|group-id|handle-stp| heartbeat-period|hold-period|interface-ip|manual-revert| member-ip|mode] redundancy auto-revert enable redundancy auto-revert-period <1-1800>...
Page 365 Global Configuration Commands 5-89 Parameters auto-revert enable Enables auto-revert auto-revert-period Sets the redundancy auto-revert delay interval in <1-1800> minutes. The default is 5 minutes critical-resource-ip Sets critical resource IP address <ip_address> • <ip_address> – IP address of the critical resource dhcp-server enable Enables the DHCP redundancy protocol discovery-period <10-60>...
Page 366 5-90 Motorola RF Switch CLI Reference Guide interface-ip <IP> Sets the redundancy interface IP address manual-revert Reverts standby to non-active mode member-ip <IP> Adds a member with the IP <IP> to this redundancy group mode [primary|standby] Sets the mode to either primary or standby...
Page 367: Role
Global Configuration Commands 5-91 5.1.31 role  Global Configuration Commands Configures role parameters Opens the role configuration mode to enable further configuration of the (confi-role) role. For more information, see Chapter , Role Instance. NOTE: Avance Security Licence must be installed for Role Based Firewall to work.
Page 368 5-92 Motorola RF Switch CLI Reference Guide RFSwitch(config-role)# ? RFSwitch(config)#role assignment immediate enable RFS7000(config)#show role role officeuser 10 authentication-type any encryption-type any ap-location exact "office" essid office mu-mac any group any role globaluser 11 authentication-type any encryption-type any ap-location any...
Page 369: Rtls
Global Configuration Commands 5-93 5.1.32 rtls  Global Configuration Commands Configures Real Time Location System (RTLS) parameters This enables the Switch to provide complete visibility to the location of assets and thereby enabling location based service. Supported in the following platforms: •...
Page 370: Service
5-94 Motorola RF Switch CLI Reference Guide 5.1.33 service  Global Configuration Commands Retrieves system data (tables, log files, configuration, status and operation) for debugging and problem resolution Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 To view the command of User Exec and Priv Exec Mode, refer to Chapter 2.1.5,...
Page 371 Global Configuration Commands 5-95 diag [enable|limit|period| Services diagnostics configuration. tech-support-period| • enable – Enable in service diagnostics tech-support-url] • limit – Displays diagnostic limit command • period <100-30000> – Sets diagnostics period • tech-support-period <10-10080> – Sets the tech support period.
Page 372 5-96 Motorola RF Switch CLI Reference Guide set [command- Sets service parameters. history|reboot- • command-history <10-300> – Sets the number of history|upgrade-history] previous commands to remember. Default 200 • reboot-history <10-100> – Sets the number of previous reboot details to remember. Default 50 •...
Page 373: Smtp-Notification
Global Configuration Commands 5-97 5.1.34 smtp-notification  Global Configuration Commands Modifies SMTP notification parameters Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax smtp-notification [authenticate|enable|password|port|prefix| recipient|sender|smtp-server-address|user] smtp-notification authentication enable smtp-notification enable {traps [all|dhcp-server| diagnostics|miscellaneous|mobility|nsm|radius-server| redundancy|snmp|wireless] smtp-notification enable traps all smtp-notification enable traps dhcp-server {[dhcpServerDown|dhcpServerUp]} smtp-notification enable traps diagnostics {[cpuLoad1Min|...
Page 374 5-98 Motorola RF Switch CLI Reference Guide smtp-notification enable traps wireless ap-detection {[externalAPDetected|externalAPRemoved]} smtp-notification enable traps wireless ids {[muExcessiveEvents|radioExcessiveEvents| switchExcessiveEvents]} smtp-notification enable traps wireless radio {[adopted|unadopted|detectedRadar]} smtp-notification enable traps wireless self-healing activated smtp-notification enable traps wireless station {[associated|deniedAssociationAsPortCapacityReached| deniedAssociationOnCapability|deniedAssociationOnErr| deniedAssociationOnInvalidWPAWPA2IE|...
Page 375 Global Configuration Commands 5-99 Parameters authenticate enable Enables SMTP Server authentication enable traps [all| Enables SMTP notification for traps dhcp-server|diagnostics| • all – Enables SMTP Notification for all traps miscellaneous|mobility| • dhcp-server [dhcpServerDown|dhcpServerUp]– Enables nsm|radius-server| dhcp-server traps redundancy|snmp • dhcpServerDown – DHCP Server down |wireless] •...
Page 376 5-100 Motorola RF Switch CLI Reference Guide • miscellaneous [caCertExpired|lowFsSpace|periodicHeartbeat| processMaxRestartsReached|savedConfigModified| serverCertExpired|switchEvent] – Enables miscellaneous traps • caCertExpired – CA certificate has expired • lowFsSpace – Available file system space is lower than the limit • periodicHeartbeat – Periodic Heartbeat •...
Page 377 Global Configuration Commands 5-101 • nsm [dhcpIPChanged] – Enables nsm traps and changes the DHCP IP • radius-server [radiusServerDown|radiusServerUp] – Enables radius-server traps • radiusServerDown – Radius Server is down • radiusServerUp – Radius Server is up • redundancy [adoptionExceeded|criticalResourceDown| criticalResourceUp|grpAuthLevelChanged|memberDown| memberMisConfigured|memberUp] –...
Page 378 5-102 Motorola RF Switch CLI Reference Guide • wireless [ap-detection|ids|radio|self-healing|station| wlan] – Enables wireless traps • ap-detection [externalAPDetected| externalAPRemoved] – Enables wireless AP detection traps • externalAPDetected – Detects an external AP • externalAPRemoved – Removes an external AP • id [muExcessiveEvents|radioExcessiveEvents| switchExcessiveEvents] –...
Page 379 Global Configuration Commands 5-103 • associated – Wireless station associated • deniedAssociationAsPortCapacity Reached – Wireless station denied association due to port capacity reached • deniedAssociationOnCapability – Wireless station denied association due to unsupported capability • deniedAssociationOnErr – Wireless station denied association due to internal error •...
Page 380 5-104 Motorola RF Switch CLI Reference Guide • wlan [vlanUserLimitReached|webPortalUnavailable| webPortalUnconnected||webPortalUnreachable] – Enables wireless wlan traps when: • vlanUserLimitReached – WLAN-VLAN user limit is reached • webPortalUnavailable – Web portal unavailable • webPortalUnconnected – Web portal disconnected • webPortalUnreachable – Web portal unreachable password 0 <password>...
Page 381: Snmp-Server
Global Configuration Commands 5-105 5.1.35 snmp-server  Global Configuration Commands Modifies SNMP engine parameters Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax snmp-server [community|contact|enable|engine-id|host| location|manager|periodic-heartbeat-interval|sysname|user] snmp-server community <community-string> [ro|rw] snmp-server contact <contact-person> snmp-server enable traps {[all|dhcp-server|diagnostics| miscellaneous|mobility|nsm|radius-server|redundancy|snmp| wireless|wireless-statistics]} snmp-server enable traps all...
Page 382 5-106 Motorola RF Switch CLI Reference Guide snmp-server enable traps wireless ids {[muExcessiveEvents|radioExcessiveEvents| switchExcessiveEvents]} snmp-server enable traps wireless radio {[adopted|unadopted|detectedRadar]} snmp-server enable traps wireless self-healing activated snmp-server enable traps wireless station {[associated|deniedAssociationAsPortCapacityReached| deniedAssociationOnCapability|deniedAssociationOnErr| deniedAssociationOnInvalidWPAWPA2IE| deniedAssociationOnRates|deniedAssociationOnShortPream| deniedAssociationOnSpectrum|deniedAssociationOnSSID| deniedAuthentication|disassociated|radiusAuthFailed| tkipCounterMeasures|vlanChanged]} snmp-server enable traps wireless wlan...
Page 383 Global Configuration Commands 5-107 pktsps-greater-than|tput-greater-than| undecrypt-percent-greater-than] snmp-server engineid [netsnmp {<word>}|text <word>] snmp-server host <IP> [v2c|v3] {<1-65535>} snmp-server location <location-text> snmp-server manager [all|v2|v3] snmp-server periodic-heartbeat-interval <interval> snmp-server sysname snmp-server user [snmpmanager|snmpoperator|snmptrap] Parameters community Sets the community string and access privileges. <community-string> •...
Page 384 5-108 Motorola RF Switch CLI Reference Guide enable traps dhcp-server Enables dhcp-server traps. {[dhcpServerDown| • dhcpServerDown – DHCP server down dhcpServerUp]} • dhcpServerUp – DHCP server up enable traps diagnostics Enables diagnostics traps. {[cpuLoad1Min| • cpuLoad15Min cpuLoad5Min| • cpuLoad1Min cpuLoad15Min| •...
Page 385 Global Configuration Commands 5-109 enable traps mobility Enable mobility traps {[operationallyDown| • operationallyDown – Mobility down operationallyUp| • operationallyUp – Mobility up peerDown|peerUp]} • peerDown – Mobility peer down • peerUp – Mobility peer up enable traps nsm Enables nsm traps {dhcpIPChanged} •...
Page 386 5-110 Motorola RF Switch CLI Reference Guide enable traps wireless Enables wireless traps {[ap-detection|ids| • ap-detection {[externalAPDetected| radio|self-healing| externalAPRemoved]} – Enables wireless AP station|wlan]} detection traps • externalAPDetected – External AP detected • externalAPRemoved – External AP detected • ids {[muExcessiveEvents| radioExcessiveEvents|switchExcessiveEvents]} –...
Page 387 Global Configuration Commands 5-111 deniedAssociationOnSpectrum| deniedAssociationOnSSID|deniedAuthent ication| disassociated|radiusAuthFailed| tkipCounterMeasures|vlanChanged]} – Enables wireless station traps • associated– Wireless station associated • deniedAssociationAsPortCapacityReached – Wireless station denied association - port capacity reached • deniedAssociationOnCapability – Wireless station denied association due to unsupported capability •...
Page 388 5-112 Motorola RF Switch CLI Reference Guide • tkipCounterMeasures – TKIP counter measures invoked • vlanChanged – Wireless station VLAN ID has changed • wlan {[vlanUserLimitReached|webPortal Unavailable|webPortalUnreachable|webPortal Unconnected]}– Enables wireless wlan traps • vlanUserLimitReached – WALN/VLAN user limit reached • webPortalUnavailable – Webportal is unavailable •...
Page 389 Global Configuration Commands 5-113 snmp-server enable traps Modifies wireless-stats rate traps wireless-statistics [mesh| • mesh [avg-bit-speed-less-than| min-packets|mobile-unit| avg-retry-greater-than|avg-signal-less-than| radio|wireless-switch|wlan] gave-up-percent-greater-than| nu-percent-greater-than| num-mobile-units-greater-than| pktsps-greater-than|tput-greater-than| undecrypt-percent-greater-than] – Modifies mesh rate traps • avg-bit-speed-less-than – Average bit speed in Mbps between <0.00> and <54.00> •...
Page 390 5-114 Motorola RF Switch CLI Reference Guide • tput-greater-than – Throughput in Mbps is greater than 0.00 and less than or equal to 100000.00 • undecrypt-percent-greater-than – Percentage of undecryptable pkts is greater than 0.00 and less than or equal to 100.00 •...
Page 391 Global Configuration Commands 5-115 • pktsps-greater-than – Packets per sec is greater than 0.00 and less than or equal to 100000.00 • tput-greater-than – Throughput in Mbps is greater than 0.00 and less than or equal to 100000.00 • undecrypt-percent-greater-than – Percentage of undecryptable pkts is greater than 0.00 and less than or equal to 100.00 engineid [netsnmp {<word>}|...
Page 392 5-116 Motorola RF Switch CLI Reference Guide user [snmpmanager| Defines a user who can access the SNMP engine. snmpoperator|snmptrap] • snmpmanager v3– Manager user • v3 [auth|encrypted] – User using v3 security model • auth md5 <password> – Sets authentication parameters for the user •...
Page 393 Global Configuration Commands 5-117 RFSwitch(config)#snmp-server enable traps wireless detection externalAPDetected RFSwitch(config)# RFSwitch(config)#snmp-server enable traps wireless excessiveProbes RFSwitch(config)# RFSwitch(config)#snmp-server enable traps wireless radio adopted RFSwitch(config)# RFSwitch(config)#snmp-server enable traps wireless self- healing activated RFSwitch(config)# RFSwitch(config)#snmp-server enable traps wireless station tkipCounterMeasures RFSwitch(config)# RFSwitch(config)#snmp-server enable traps wireless- statistics min-packets 120 RFSwitch(config)# RFSwitch(config)#snmp-server location "Located at thh 5th...
Page 394: Spanning-Tree
5-118 Motorola RF Switch CLI Reference Guide 5.1.36 spanning-tree  Global Configuration Commands Configures spanning-tree commands Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax spanning-tree [mst|portfast] spanning-tree mst [<0-15> priority <0-61440>| cisco-interoperability [enable|disable]|configuration| forward-time <4-30>|hello-time <1-10>|max-age <6-40>| max-hops <7-127>]...
Page 395 Global Configuration Commands 5-119 Parameters mst [<0-15> priority Enables the Multiple Spanning Tree Protocol on a bridge <0-61440>| • <0-15> priority <0-61440> – Set the bridge priority for an cisco-interoperability MST instance to the value specified. Use the no [enable|disable]| parameter with this command to restore the default configuration| bridge priority value...
Page 396 5-120 Motorola RF Switch CLI Reference Guide • max-age <6-40> – Max-age is the maximum time in seconds for which (if a bridge is the root bridge) a message is considered valid. This prevents the frames from looping indefinitely. The value of max-age must be...
Page 397 Global Configuration Commands 5-121 portfast Enables the portfast feature on a bridge. It has the [bpdufilter|bpduguard] following options: default • bpdufilter default – Use the command to bpdu-filter set the portfast BPDU filter for the port. Use the parameter with this command to revert the port BPDU filter value to default.
Page 398: Timezone
5-122 Motorola RF Switch CLI Reference Guide 5.1.37 timezone  Global Configuration Commands Configures switch timezone settings Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax timezone <timezone> Parameters <timezone> Press <tab> to traverse a list of files. This displays a list of files containing timezone information.
Page 399: Traffic-Shape
Global Configuration Commands 5-123 5.1.38 traffic-shape  Global Configuration Commands Optimizes network traffic Supported in the following platforms: • RFS7000 SWITCH NOTE: This command is not supported with: • RFS6000 • RFS4000 Syntax traffic-shape [class|priority-map] traffic-shape class <class-identifier> [max-buffers| max-latency|rate] traffic-shape class <class-identifier>...
Page 400 5-124 Motorola RF Switch CLI Reference Guide Parameters class <class-identifier> Traffic shaping packet class. Select an identifier between max-buffers ... red-level 1-4. Traffic shaping also uses queues numbered 0-7 • max-buffers – Maximum traffic-shape queue length in class <class-identifier> packets max-buffers ...
Page 401 Global Configuration Commands 5-125 RFSSwitch(config)#show traffic-shape config Traffic shaping class 1 Rate: 10 Mbps Prio-| max | | max rity | pkts | pkts pcnt | latency 0 | 1000 | 75% | - 1 | 1000 | 75% | - 2 | 1000 | 75% | - 3 | 1000 |...
Page 402: Username
5-126 Motorola RF Switch CLI Reference Guide 5.1.39 username  Global Configuration Commands Establishes user name authentication Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax username <name> [access|password|privilege] username <name> access [console|ssh|telnet|web] username <name> password [0 <password>|1 <password>| <password>]...
Page 403: Encrypting A Password
1. Enable password encryption and provide the passphrase required for encrypting the passwords. RFS7000(config)#service password-encryption secret 2 Symbol RFS7000(config)#username Jiri password Motorola 2. On completion of the above step, all the passwords, crypto keys, shared secrets etc are displayed in an encrypted format in the running/startup configuration.
Page 404 5-128 Motorola RF Switch CLI Reference Guide username admin password 1 8e67bb26b358e2ed20fe552ed6fb832f397a507d username admin privilege superuser username operator password 1 fe96dd39756ac41b74283a9292652d366d73931f username Jiri password 1 399f01e13e372ba2dc02f37d869021873e60aa85 3. The password in the above running configuration is displayed in an encrypted format...
Page 405: Vpn
Global Configuration Commands 5-129 5.1.40 vpn  Global Configuration Commands Configures VPN authentication settings Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax vpn authentication-method [local|radius] Parameters authentication-method Selects the authentication scheme. [local|radius] • local – Used for user based authentication •...
Page 406: Wireless
5-130 Motorola RF Switch CLI Reference Guide 5.1.41 wireless  Global Configuration Commands Configures switch wireless parameters This command moves you to the instance. For more information, see config-wireless Chapter , Wireless Instance. Supported in the following platforms: • RFS7000 •...
Page 407: Wlan-Acl
Global Configuration Commands 5-131 5.1.42 wlan-acl  Global Configuration Commands Applies an ACL on a WLAN index Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax wlan-acl <1-256> [<1-99>|<100-199>|<1300-1999>| <2000-2699>|<acl-name>] [in|out] Parameters WLAN index number <1-256> [<1- 99>|<100- •...
Page 408 5-132 Motorola RF Switch CLI Reference Guide When a packet goes out of a access port, it becomes outbound traffic to the wireless LAN index. Apply an ACL to a WLAN index in outbound direction to filter traffic from both wired and wireless interfaces.
Page 409 Global Configuration Commands 5-133 ip access-list standard stdacl3 deny host 30.0.0.14 rule-precedence 54 no access-list stdacl wlan-acl 5 stdacl1 in wlan-acl 6 stdacl2 in The stdacl must be detached from the interface to which it was associated and stdacl3 must be attached to that interface. When the user explicitly creates ACL rules with WLAN index as selector, the switch consumes that ACL without WLAN index selector.
Page 410: Network-Element-Id
5-134 Motorola RF Switch CLI Reference Guide 5.1.43 network-element-id  Global Configuration Commands Use this command to set system’s network-element-ID Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax network-element-id <element-id> Parameters <element-id> Specifies system’s network element ID...
Page 411: Firewall
<8-1500> firewall vlan-stacking permit Parameters enable Enables the firewall for this switch. 802.2.-encapsulation Sets 802.2 packet encapsulation. permit • permit – Allow 802.2 packet encapsulations which can bypass the firewall. Enabling this option is not recommended by Motorola...
Page 412 5-136 Motorola RF Switch CLI Reference Guide clamp [path-mtu| Configures wireless firewall tcp-mss] • clamp [path-mtu|tcp-mss] – Displays clamp value • path-mtu – Displays limit discovered path-mtu • tcp-mss – Displays limit TCP to inner path-mtu dhcp-snoop-conflict- Displays IP Address, MAC Address conflict detection...
Page 413 1st fragment to a value between 8 and 1500 vlan-stacking permit Configures 802.1q VLAN stacking. • permit – Permits 802.1q VLAN stacking that can bypass the firewall. Motorola does not recommend the use of this option Example RFSwitch(config)#firewall clamp RFSwitch(config)#...
Page 414: Virtual-Ip
5-138 Motorola RF Switch CLI Reference Guide 5.1.45 virtual-ip  Global Configuration Commands Displays virtual-ip configuration of the switch Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax virtual-ip [<A.B.C.D/M>|advt-timeout <1-5>|enable| garp-timeout <30-600>|learning-timeout <2-5>|priority|vmac] virtual-ip <A.B.C.D/M> vlan <1-4096>...
Page 415 Global Configuration Commands 5-139 vmac Virtual MAC to be used by the master <AA-BB-CC-DD-EE-FF> • <AA-BB-CC-DD-EE-FF> – Allowed VMACs: from 00:15:70:88:8a:90 to 00:15:70:88:8b:8f Example RFS7K-1(config)#virtual-ip 192.168.11.10/24 vlan 11 RFS7K-1(config)# RFS7K-1(config)#show virtual-ip config VIP Status : Disabled Cluster Redundancy Status : Enabled Priority Selection Mode : Automatic VMAC Selection Mode...
Page 416: Wwan
5-140 Motorola RF Switch CLI Reference Guide 5.1.46 wwan  Global Configuration Commands Configures wireless wwan interface Supported in RFS6000 and RFS4000 platforms only Syntax wwan [apn<STRING>|disable|enable|password<STRING> |username<STRING>] Parameters apn <STRING> Enter the access point name provided by the service provider.
Page 417: Aap-Wlan-Acl
Global Configuration Commands 5-141 5.1.47 aap-wlan-acl  Global Configuration Commands Applies an acl on wlan for aap Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax aap-wlan-acl <1-256> [<100-199>|<WORD>]{in/out} For RFS6000, aap-wlan-acl <1-32>[<100-199>|<WORD>]{in/out} Parameters aap-wlan-acl <1-256> Applies an acl on wlan for an aap [<100-199>| •...
Page 418: Arp
5-142 Motorola RF Switch CLI Reference Guide 5.1.48 arp  Global Configuration Commands Configures Address Resolution Protocol Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax arp [<WORD>|ge <1-5>|sa <1-6>|up1|vlan <1-4094| wwan]{<AB.C.D> <AA-BB-CC-DD-EE-FF>} Parameters arp [<WORD>|ge <1-5>|sa Configures address resolution protocol.
Page 419: Power
Global Configuration Commands 5-143 5.1.49 power  Global Configuration Commands Configures PoE commands Supported in the following platforms: • RFS6000 • RFS4000 Syntax power trap-percent <0-100> Parameters power trap-percent Configures PoE commands <0-100> • trap-percent <0-100> – Configures PoE traps •...
Page 420: Aap-Ipfilter-List
5-144 Motorola RF Switch CLI Reference Guide 5.1.50 aap-ipfilter-list  Global Configuration Commands Applies ipfilter to WLAN/LAN Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 NOTE: command initiates aap-ipfilter-list (config-aap-ip- instance. For more details see Chapter , AAP IP filter-list) Filtering.
Page 421: Whitelist
Global Configuration Commands 5-145 5.1.51 whitelist  Global Configuration Commands White list is a list of host names and IP addresses that are permitted access by default. Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 NOTE: command instantiates whitelist (config-whitelist) instance.
Page 422 5-146 Motorola RF Switch CLI Reference Guide Example RFSwitch(config-whitelist)#permit 172.16.10.3 RFSwitch(config-whitelist)#permit symbol suffix RFSwitch(config-whitelist)#...
Page 423: Chapter 6. Crypto-Isakmp Instance
Crypto-isakmp Instance The (config-crypto-isakmp) instance is used to configure ISAKMP policies. To enter this instance, use this command: RFSwitch(config)#crypto isakmp policy <1-10000> RFSwitch(config-crypto-isakmp)# 6.1 Crypto ISAKMP Config Commands Table 6.1 summarizes commands crypto-isakmp Table 6.1 Crypto ISAKMP Command Summary Command Description Ref.
Page 424 Motorola RF Switch CLI Reference Guide Table 6.1 Crypto ISAKMP Command Summary Command Description Ref. lifetime Sets the lifetime for the ISAKMP security association page 6-11 Negates a command or sets its defaults page 6-12 service Defines the switch’s service commands...
Page 425: Authentication
Crypto-isakmp Instance 6.1.1 authentication  Crypto ISAKMP Config Commands Authenticates rsa-sig and pre-share keys Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax authentication [pre-share|rsa-sig] Parameters pre-share pre shared key rsa-sig rsa signature Example RFSwitch(config-crypto-isakmp)#authentication pre-share RFSwitch(config-crypto-isakmp)# RFSwitch(config-crypto-isakmp)#authentication rsa-sig RFSwitch(config-crypto-isakmp)#...
Page 426: Clrscr
Motorola RF Switch CLI Reference Guide 6.1.2 clrscr  Crypto ISAKMP Config Commands Clears the display screen Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax clrscr Parameters None. Example RFSwitch(config-crypto-isakmp)#clrscr RFSwitch(config-crypto-isakmp)#...
Page 427: Encryption
Crypto-isakmp Instance 6.1.3 encryption  Crypto ISAKMP Config Commands Configures the encryption level of the data transmitted using the crypto-isakmp command Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax encryption [3des|aes|aes-192|aes-256|des] Parameters 3des Triple data encryption standard Advanced data encryption standard aes-192 Advanced data encryption standard...
Page 428: End
Motorola RF Switch CLI Reference Guide 6.1.4 end  Crypto ISAKMP Config Commands Ends and exits the current mode and changes to the PRIV EXEC mode. The prompt changes RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000...
Page 429: Exit
Crypto-isakmp Instance 6.1.5 exit  Crypto ISAKMP Config Commands Ends the current mode and moves to the previous mode (GLOBAL-CONFIG). The prompt changes to RFSwitch(config)# Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax exit Parameters None. Example RFSwitch(config-crypto-isakmp)#exit RFSwitch(config)#...
Page 430: Group
Motorola RF Switch CLI Reference Guide 6.1.6 group  Crypto ISAKMP Config Commands Specifies the Diffie-Hellman group (1 or 2) used by the IKE policy to generate keys (which is then used to create an IPSec SA) Supported in the following platforms: •...
Page 431: Hash
Crypto-isakmp Instance 6.1.7 hash  Crypto ISAKMP Config Commands Specifies the hash algorithm used to authenticate data transmitted over the IKE SA Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax hash [md5|sha] Parameters Choose the MD5 hash algorithm Choose the SHA hash algorithm Example RFSwitch(config-crypto-isakmp)#hash sha...
Page 432: Help
6-10 Motorola RF Switch CLI Reference Guide 6.1.8 help  Crypto ISAKMP Config Commands Displays the system’s interactive help system Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax help Parameters None Example RFSwitch(config-crypto-isakmp)#help CLI provides advanced help feature.
Page 433: Lifetime
Crypto-isakmp Instance 6-11 6.1.9 lifetime  Crypto ISAKMP Config Commands Specifies how long an IKE SA is valid before it expires • RFS7000 • RFS6000 • RFS4000 Syntax lifetime <seconds> Parameters <seconds> Specifies how many seconds an IKE SA lasts before it expires.
Page 434 6-12 Motorola RF Switch CLI Reference Guide 6.1.10 no  Crypto ISAKMP Config Commands Negates a command or sets its defaults Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax no [authentication|encryption|group|hash|lifetime] Parameters None. Example RFSwitch(config-crypto-isakmp)#no lifetime...
Page 435: Service
Crypto-isakmp Instance 6-13 6.1.11 service  Crypto ISAKMP Config Commands Invokes service commands to troubleshoot or debug the (config-crypto-isakmp) instance configurations. Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax service show cli Parameters Displays the CLI tree of current mode Example RFSwitch(config-crypto-isakmp)#service show cli Crypto Isakmp Config mode:...
Page 436 6-14 Motorola RF Switch CLI Reference Guide +-1 [group (1|2|5)] +-2 [group (1|2|5)] +-5 [group (1|2|5)] +-hash +-md5 [hash (sha|md5)] ....RFSwitch(config-crypto-isakmp)#...
Page 437: Show
Crypto-isakmp Instance 6-15 6.1.12 show  Crypto ISAKMP Config Commands Displays current system information running on the switch Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 SWITCH NOTE: The following commands display only for RFS6000 and RFS4000: •...
Page 438 6-16 Motorola RF Switch CLI Reference Guide banner Display Message of the Day Login banner boot Display boot configuration. clock Display system clock commands Show command lists crypto encryption module debugging Debugging information outputs dhcp DHCP Server Configuration environment show environmental information...
Page 439 Crypto-isakmp Instance 6-17 terminal Display terminal configuration parameters timezone Display timezone traffic-shape Display traffic shaping upgrade-status Display last image upgrade status users Display information about currently logged in users version Display software & hardware version wireless Wireless configuration commands virtual-ip IP Redundancy Feature wlan-acl wlan based acl...
Page 440 6-18 Motorola RF Switch CLI Reference Guide...
Page 441: Chapter 7. Crypto-Group Instance
Crypto-group Instance The ( instance configures the default group properties of the config-crypto-group) ISAKMP client. To navigate to this instance, use the command: RFSwitch(config)#crypto isakmp client configuration group default RFSwitch(config-crypto-group)# 7.1 Crypto Group Config Commands Table 7.1 summarizes the switch commands config-crypto-group Table 7.1 Crypto Group Command Summary...
Page 442 Motorola RF Switch CLI Reference Guide Table 7.1 Crypto Group Command Summary Command Description Ref. show Shows running system information page 7-9 wins Defines a Windows Name Server (WINS) page 7-12...
Page 443: Clrscr
Crypto-group Instance 7.1.1 clrscr  Crypto Group Config Commands Clears the display screen Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax clrscr Parameters None Example RFSwitch(config-crypto-group)#clr RFSwitch(config-crypto-group)#...
Page 444: Dns
Motorola RF Switch CLI Reference Guide 7.1.2 dns  Crypto Group Config Commands Specifies the DNS server address(es) to assign to a client Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax dns <IP> <IP > The first DNS server address to assign Example RFSwitch(config-crypto-group)#dns-server 172.1.17.1...
Page 445: End
Crypto-group Instance 7.1.3 end  Crypto Group Config Commands Ends and exits the current mode and changes to the PRIV EXEC mode. The prompt changes RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax Parameters None Example RFSwitch(config-crypto-group)#end RFSwitch#...
Page 446: Exit
Motorola RF Switch CLI Reference Guide 7.1.4 exit  Crypto Group Config Commands Ends the current mode and moves to the previous mode (GLOBAL-CONFIG). The prompt changes to RFSwitch(config)# Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000...
Page 447: Help
Crypto-group Instance 7.1.5 help  Crypto Group Config Commands Displays the system’s interactive help system Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax help Parameters None Example RFSwitch(config-crypto-group)#help CLI provides advanced help feature. When you need help, anytime at the command line please press '?'.
Page 448: Service
Motorola RF Switch CLI Reference Guide 7.1.6 service  Crypto Group Config Commands Invokes service commands used troubleshoot or debug (config-crypto-isakmp) instance configurations Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax service show cli Parameters Displays the CLI tree of current mode...
Page 449: Show
Crypto-group Instance 7.1.7 show  Crypto Group Config Commands Displays current system information running on the switch Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 SWITCH NOTE: The following commands display only for RFS6000 and RFS4000: • power The following commands display only for RFS7000 : •...
Page 450 7-10 Motorola RF Switch CLI Reference Guide banner Display Message of the Day Login banner boot Display boot configuration. clock Display system clock commands Show command lists crypto encryption module debugging Debugging information outputs dhcp DHCP Server Configuration environment show environmental information...
Page 451 Crypto-group Instance 7-11 terminal Display terminal configuration parameters timezone Display timezone traffic-shape Display traffic shaping upgrade-status Display last image upgrade status users Display information about currently logged in users version Display software & hardware version virtual-ip IP Redundancy Feature wireless Wireless configuration commands wlan-acl wlan based acl...
Page 452: Wins
7-12 Motorola RF Switch CLI Reference Guide 7.1.8 wins  Crypto Group Config Commands Specifies the Windows Internet Naming Service (WINS) servers to assign to a client Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax wins <IP>...
Page 453: Chapter 8. Crypto-Peer Instance
Crypto-peer Instance instance to configure ISAKMP peers. To enter this (config-crypto-peer) instance, use the command: RFSwitch(config)#crypto isakmp peer [address|dn|hostname] RFSwitch(config-crypto-peer)# 8.1 Crypto Peer Config Commands Table 8.1 summarizes the commands config-crypto-peer Table 8.1 Crypto Peer Command Summary Command Description Ref. clrscr Clears the display screen page 8-3...
Page 454 Motorola RF Switch CLI Reference Guide Table 8.1 Crypto Peer Command Summary (Continued) Command Description Ref. show Displays running system page 8-...
Page 455: Clrscr
Crypto-peer Instance 8.1.1 clrscr  Crypto Peer Config Commands Clears the display screen Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax clrscr Parameters None Example RFSwitch(config-crypto-peer)#clrscr RFSwitch(config-crypto-peer)
Page 456: End
Motorola RF Switch CLI Reference Guide 8.1.2 end  Crypto Peer Config Commands Ends and exits the current mode and moves to the PRIV EXEC mode. The prompt changes RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000...
Page 457: Exit
Crypto-peer Instance 8.1.3 exit  Crypto Peer Config Commands Ends the current mode and moves to the previous mode (GLOBAL-CONFIG). The prompt changes to RFSwitch(config)# Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax exit Parameters None Example RFSwitch(config-crypto-peer)#exit RFSwitch(config)#...
Page 458: Help
Motorola RF Switch CLI Reference Guide 8.1.4 help  Crypto Peer Config Commands Accesses the system’s interactive help system Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax help Parameters None Example RFSwitch(config-crypto-peer)#help CLI provides advanced help feature.
Page 459 Crypto-peer Instance 8.1.5 no  Crypto Peer Config Commands Negates a command or sets it’s defaults Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax no set aggressive-mode password Parameters command for parameters details Example RFSwitch(config-crypto-peer)#no set aggrerssive-mode password RFSwitch(config-crypto-peer)#...
Page 460: Service
Motorola RF Switch CLI Reference Guide 8.1.6 service  Crypto Peer Config Commands Invokes service commands to troubleshoot or debug the (config-crypto-peer) instance configuration Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax service show cli Parameters...
Page 461: Set
Crypto-peer Instance 8.1.7 set  Crypto Peer Config Commands Configures the aggressive-mode of config-crypto-peer • RFS7000 • RFS6000 • RFS4000 set aggerssive-mode password [0 <password>|2 <password>| <password>] Parameters aggressive-mode Defines aggressive mode attributes password [0 • password – Specifies a tunnel-password attribute <password>|2 •...
Page 462: Show
8-10 Motorola RF Switch CLI Reference Guide 8.1.8 show  Crypto Peer Config Commands Displays current system information running on the switch Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 SWITCH NOTE: The following commands display only for RFS6000 and RFS4000: •...
Page 463 Crypto-peer Instance 8-11 banner Display Message of the Day Login banner boot Display boot configuration. clock Display system clock commands Show command lists crypto encryption module debugging Debugging information outputs dhcp DHCP Server Configuration environment show environmental information file Display filesystem information firewall Wireless firewall Display FTP Server configuration...
Page 464 8-12 Motorola RF Switch CLI Reference Guide terminal Display terminal configuration parameters timezone Display timezone upgrade-status Display last image upgrade status users Display information about currently logged in users version Display software & hardware version virtual-ip IP Redundancy Feature wireless...
Page 465: Chapter 9. Crypto-Ipsec Instance
Crypto-ipsec Instance Use the instance to define the transform configuration for (config-crypto-ipsec) securing data (esp-3des, esp-sha-hmac etc.). To navigate to this instance, use the command RFSwitch(config)#crypto ipsec transform-set <transform-set-name> <encryption-type> <auth-type> RFSwitch(config-crypto-ipsec)# The transform set is assigned to a crypto map using the map’s transform-set command. For more details, see crypto-map transform set page...
Page 466 Motorola RF Switch CLI Reference Guide Table 9.1 Crypto IPsec Command Summary (Continued) Command Description Ref. Negates a command or set its defaults page 9-7 service Invokes service commands to troubleshoot or debug page 9-11 instance configurations (config-crypto-isakmp)
Page 467: End
Crypto-ipsec Instance 9.1.1 end  Crypto IPSec Config Commands Ends and exits the current mode and moves to the PRIV EXEC mode. The prompt changes RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax Parameters None Example RFSwitch(config-crypto-ipsec)#end RFSwitch#...
Page 468: Exit
Motorola RF Switch CLI Reference Guide 9.1.2 exit  Crypto IPSec Config Commands Ends the current mode and moves to the previous mode (GLOBAL-CONFIG). The prompt changes to RFSwitch(config)# Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000...
Page 469: Help
Crypto-ipsec Instance 9.1.3 help  Crypto IPSec Config Commands Accesses the system’s interactive help system Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax help Parameters None Example RFSwitch(config-crypto-peer)#help CLI provides advanced help feature. When you need help, anytime at the command line please press '?'.
Page 470: Mode
Motorola RF Switch CLI Reference Guide 9.1.4 mode  Crypto IPSec Config Commands Configures the IPSec mode of operation Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax mode [transport|tunnel] Parameters transport Transport mode tunnel Tunnel mode...
Page 471 Crypto-ipsec Instance 9.1.5 no  Crypto IPSec Config Commands Negates a command or sets it’s defaults Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax no mode Parameters mode Sets default to tunnel mode. Example RFSwitch(config-crypto-ipsec)#no mode RFSwitch(config-crypto-ipsec)#...
Page 472: Show
Motorola RF Switch CLI Reference Guide 9.1.6 show  Crypto IPSec Config Commands Use this command to view current system information running on the switch Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 SWITCH NOTE: The following commands display only for RFS6000 and RFS4000: •...
Page 473 Crypto-ipsec Instance debugging Debugging information outputs dhcp DHCP Server Configuration environment show environmental information file Display filesystem information firewall Wireless firewall Display FTP Server configuration history Display the session command history interfaces Interface status Internet Protocol (IP) ldap LDAP server licenses Show any installed licenses logging...
Page 474 9-10 Motorola RF Switch CLI Reference Guide users Display information about currently logged in users version Display software & hardware version virtual-ip IP Redundancy Feature wireless Wireless configuration commands wlan-acl wlan based acl wwan Wireless wan interface RFSwitch(config-crypto-ipsec)#show...
Page 475: Service
Crypto-ipsec Instance 9-11 9.1.7 service  Crypto IPSec Config Commands Invokes service commands to troubleshoot or debug the (config-crypto-peer) instance configuration Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax service show cli Parameters Displays the CLI tree of current mode Example RFS7000(config-crypto-ipsec)#service show cli Crypto Ipsec Config mode:...
Page 476 9-12 Motorola RF Switch CLI Reference Guide...
Page 477: Chapter 10. Crypto-Map Instance
Crypto-map Instance The ( commands define a Certificate Authority (CA) trustpoint. config-crypto-map) This is a separate instance, but belongs to the mode under the crypto pki trustpoint instance. config To navigate to this instance, use the command: RFSwitch(config)#crypto map <map-name> <sequence> [ipsec-isakmp|ipsec-manual] {dynamic} RFSwitch(config-crypto-map)# 10.1 Crypto Map Config Commands...
Page 478 10-2 Motorola RF Switch CLI Reference Guide Table 10.1 Crypto Map Command Summary (Continued) Command Description Ref. service Invokes service commands to troubleshoot or debug the page 10-10 instance configurations Sets values for encryption/decryption parameters page 10-12 show Displays the running system information...
Page 479: Clrscr
Crypto-map Instance 10-3 10.1.1 clrscr  Crypto Map Config Commands Clears the display screen Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax clrscr Parameters None Example RFSwitch(config-crypto-map)#clrscr RFSwitch(config-crypto-map)#...
Page 480: End
10-4 Motorola RF Switch CLI Reference Guide 10.1.2 end  Crypto Map Config Commands Ends and exits the current mode and moves to the to PRIV EXEC mode. The prompt changes RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000 •...
Page 481: Exit
Crypto-map Instance 10-5 10.1.3 exit  Crypto Map Config Commands Ends the current mode and moves to the previous mode (GLOBAL-CONFIG). The prompt changes to RFSwitch(config)# Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax exit Parameters None Example RFSwitch(config-crypto-map)#exit...
Page 482: Help
10-6 Motorola RF Switch CLI Reference Guide 10.1.4 help  Crypto Map Config Commands Displays the system’s interactive help system Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax help Parameters None Example RFSwitch(config-crypto-map)#help CLI provides advanced help feature.
Page 483: Match
Crypto-map Instance 10-7 10.1.5 match  Crypto Map Config Commands Use this command to assign an IP access-list to a crypto map definition. The access-list designates the IP packets to be encrypted by this crypto map. A crypto map entry is a single policy that describes how certain traffic is secured. There are two types of crypto map entries: ipsec-manual and ipsec-ike entries.
Page 484 10-8 Motorola RF Switch CLI Reference Guide Usage Guidelines Crypto map entries do not directly contain the selectors used to determine which data to secure. Instead, the crypto map entry refers to an access control list. An access control list (ACL) is assigned to the crypto map using the match address command.
Page 485 Crypto-map Instance 10-9 10.1.6 no  Crypto Map Config Commands Negates a command or sets its defaults Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax no [match|set] Parameters Use the commands configured under this instance. Example RFSwitch(config-crypto-map)#no match address <WORD>...
Page 486: Service
10-10 Motorola RF Switch CLI Reference Guide 10.1.7 service  Crypto Map Config Commands Invokes service commands to troubleshoot or debug the (config-crypto-peer) instance configuration Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax service show cli...
Page 487 Crypto-map Instance 10-11 +-remote-type [no set remote-type] +-security-association +-level +-perhost [no set security-association level perhost] +-lifetime [no set security-association lifetime] +-session-key +-inbound +-ah [no set session-key ( inbound | outbound ) ah] +-esp [no set session-key ( inbound | outbound ) esp] ............
Page 488: Set
10-12 Motorola RF Switch CLI Reference Guide 10.1.8 set  Crypto Map Config Commands Configures set parameters for the peer device Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax set [localid|mode|peer|pfs|remote-type {ipsec-l2tp|xauth}| security-association|session-key|transform-set) set localid [dn|hostname]<name>...
Page 489 Crypto-map Instance 10-13 mode [aggressive|main] Sets the mode of the tunnels for this Crypto Map • aggressive – Initiates aggressive mode • main – Initiates main mode peer Sets the IP address of the peer device. This can be set for [ipaddress| multiple remote peers.
Page 490 10-14 Motorola RF Switch CLI Reference Guide security-association Defines the lifetime (in kilobytes and/or seconds) of the [level perhost|lifetime IPSec SAs created by this crypto map {kilobyte|seconds}] • level perhost – Specifies the security association granularity level for identities • lifetime [kilobyte|seconds] – Security an association...
Page 491 Crypto-map Instance 10-15 RFSwitch(config-crypto-map)#set pfs If left at the default setting, no perfect forward secrecy (PFS) is used during IPSec SA key generation. If PFS is specified, the specified Diffie-Hellman Group exchange is used for the initial (and all subsequent) key generations. This means no data linkage between prior keys and future keys.
Page 492: Show
10-16 Motorola RF Switch CLI Reference Guide 10.1.9 show  Crypto Map Config Commands Displays current system information running on the switch Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 SWITCH NOTE: The following commands display only for RFS6000 and RFS4000: •...
Page 493 Crypto-map Instance 10-17 dhcp DHCP Server Configuration environment show environmental information file Display filesystem information firewall Wireless firewall Display FTP Server configuration history Display the session command history interfaces Interface status Internet Protocol (IP) ldap LDAP server licenses Show any installed licenses logging Show logging configuration and buffer...
Page 494 10-18 Motorola RF Switch CLI Reference Guide version Display software & hardware version virtual-ip IP Redundancy Feature wireless Wireless configuration commands wlan-acl wlan based acl wwan Wireless wan interface RFSwitch(config-crypto-map)#show...
Page 495: Chapter 11. Crypto-Trustpoint Instance
Crypto-trustpoint Instance commands define a Certificate Authority (CA) (config-crypto-trustpoint) trustpoint. This is a separate instance, but belongs to the crypto pki trustpoint mode under the instance. config To navigate to this instance, use the command RFSwitch(config)#crypto pki trustpoint <trustpoint-name> RFSwitch(config-trustpoint)# 11.1 Trustpoint (PKI) Config Commands Table 11.1 summarizes...
Page 496 11-2 Motorola RF Switch CLI Reference Guide Table 11.1 Trustpoint (PKI) Config Command Summary Command Description Ref. ip-address Sets an IP address for the trustpoint page 11-10 Negates a command or sets its defaults page 11-11 password Sets the challenge password (applicable only for...
Page 497: Clrscr
Crypto-trustpoint Instance 11-3 11.1.1 clrscr  Trustpoint (PKI) Config Commands Clears the display screen Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax clrscr Parameters None Example RFSwitch(config-trustpoint)#clrscr RFSwitch(config-trustpoint)#...
Page 498: Company-Name
11-4 Motorola RF Switch CLI Reference Guide 11.1.2 company-name  Trustpoint (PKI) Config Commands Sets the company name (Applicable only for request) Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax company-name <company-name> Parameters <company-name> Company name (2 to 64 characters)
Page 499: Email
Crypto-trustpoint Instance 11-5 11.1.3 email  Trustpoint (PKI) Config Commands Sets the e-mail ID for the trustpoint Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax email <email> Parameters <email> Sets email address (2 to 64 characters) for the trustpoint Example RFSwitch(config-trustpoint)#email abcTestemailID@symbol.com RFSwitch(config-trustpoint)#...
Page 500: End
11-6 Motorola RF Switch CLI Reference Guide 11.1.4 end  Trustpoint (PKI) Config Commands Ends and exits the current mode and moves to the PRIV EXEC mode. The prompt changes RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000 •...
Page 501: Exit
Crypto-trustpoint Instance 11-7 11.1.5 exit  Trustpoint (PKI) Config Commands Ends the current mode and moves to previous the mode (GLOBAL-CONFIG). The prompt changes to RFSwitch(config)# Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax exit Parameters None Example RFSwitch(config-trustpoint)#exit...
Page 502: Fqdn
11-8 Motorola RF Switch CLI Reference Guide 11.1.6 fqdn  Trustpoint (PKI) Config Commands Configures the domain name of the trustpoint (FQDN stands for Fully Qualified Domain Name) Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax fqdn <domain-name>...
Page 503: Help
Crypto-trustpoint Instance 11-9 11.1.7 help  Trustpoint (PKI) Config Commands Displays the systems interactive help system Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax help Parameters None Example RFSwitch(config-trustpoint)#help CLI provides advanced help feature. When you need help, anytime at the command line please press '?'.
Page 504: Ip-Address
11-10 Motorola RF Switch CLI Reference Guide 11.1.8 ip-address  Trustpoint (PKI) Config Commands Sets an IP address for the trustpoint Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax ip-address <IP> Parameters <IP> Enter the IP address for the trustpoint Example RFSwitch(config-trustpoint)#ip-address 157.200.200.02...
Page 505 Crypto-trustpoint Instance 11-11 11.1.9 no  Trustpoint (PKI) Config Commands Negates a command or sets its defaults Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax no [company-name|email|fqdn|ip-address|subject-name] Parameters None. Example RFSwitch(config-trustpoint)#no ip-address RFSwitch(config-trustpoint)#...
Page 506: Password
11-12 Motorola RF Switch CLI Reference Guide 11.1.10 password  Trustpoint (PKI) Config Commands Sets the challenge password (applicable only for requests) to access the trustpoint Syntax password [0<password>|2<password>|<password>] Parameters 0 <password> Password <password> is specified as unencrypted, the password should be between 4 to 20 characters 2 <password>...
Page 507: Rsakeypair
Crypto-trustpoint Instance 11-13 11.1.11 rsakeypair  Trustpoint (PKI) Config Commands Configures a RSA Keypair to associate with the trustpoint Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax rsakeypair <keypair-name> Parameters <keypair-name> RSA Keypair Identifier Usage Guidelines The RSA key pair configures the switch to have Rivest, Shamir, and Adelman (RSA) key pairs.
Page 508: Service
11-14 Motorola RF Switch CLI Reference Guide 11.1.12 service  Trustpoint (PKI) Config Commands Invokes service commands to troubleshoot or debug the crypto pki trustpoint instance configuration Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax service show cli...
Page 509 Crypto-trustpoint Instance 11-15 ....................................RFSwitch(config-trustpoint)#...
Page 510: Show
11-16 Motorola RF Switch CLI Reference Guide 11.1.13 show  Trustpoint (PKI) Config Commands Displays current system information running on the switch Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 SWITCH NOTE: The following commands display only for RFS6000 and RFS4000: •...
Page 511 Crypto-trustpoint Instance 11-17 debugging Debugging information outputs dhcp DHCP Server Configuration environment show environmental information file Display filesystem information firewall Wireless firewall Display FTP Server configuration history Display the session command history interfaces Interface status Internet Protocol (IP) ldap LDAP server licenses Show any installed licenses logging...
Page 512 11-18 Motorola RF Switch CLI Reference Guide users Display information about currently logged in users version Display software & hardware version virtual-ip IP Redundancy Feature wireless Wireless configuration commands wlan-acl wlan based acl wwan Wireless wan interface RFSwitch(config-crypto-map)#show...
Page 513: Subject-Name
Crypto-trustpoint Instance 11-19 11.1.14 subject-name  Trustpoint (PKI) Config Commands Creates a subject name to configure a trustpoint (the subject name is a collection of required parameters to configure a trustpoint) Supported in the following platforms: • RFS7000 • RFS6000 •...
Page 514 11-20 Motorola RF Switch CLI Reference Guide WORD Organization( 2 to 64 characters ) RFSwitch(config-trustpoint)#subject-name TestPool US OH PB SYMBOL ? WORD Organization Unit( 2 to 64 characters ) RFSwitch(config-trustpoint)#subject-name TestPool US OH PB SYMBOL WID ? <cr> RFSwitch(config-trustpoint)#subject-name TestPool US OH PB...
Page 515: Chapter 12. Interface Instance
Interface Instance Use the instance to configure the interfaces – Ethernet, VLAN and tunnel (config-if) associated with the switch. To switch to this mode, use the command: For RFSwitch7000: RFSwitch(config)#interface [<interface-name>|ge <1-4>|me1| sa <1-4>|vlan <1-4094>] RFSwitch(config-if)# For RFSwitch6000: RFSwitch(config)#interface [<interface-name>|ge <1-8>|me1| up1|vlan <1-4094>] RFSwitch(config-if)# For RFSwitch4000:...
Page 516 12-2 Motorola RF Switch CLI Reference Guide Table 12.1 Interface Config Command Summary (Continued) Command Description Ref. crypto Defines the encryption module page 12-5 description Creates an interface specific description page 12-6 duplex Sets the duplex mode used by the interface...
Page 517 Interface Instance 12-3 Table 12.1 Interface Config Command Summary (Continued) Command Description Ref. speed Specifies the speed of a fast-ethernet (10/100) or a page 12-32 gigabit ethernet port (10/100/1000) static- Configures static channel commands page 12-33 channel- group storm-control Sets broadcast rate-limit value page 12-36 switchport Sets switching mode characteristics...
Page 518: Clrscr
12-4 Motorola RF Switch CLI Reference Guide 12.1.1 clrscr  Interface Config Commands Clears the display screen Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax clrscr Parameters None Example RFSwitch(config-if)#clrscr RFSwitch(config-if)#...
Page 519: Crypto
Interface Instance 12-5 12.1.2 crypto  Interface Config Commands Sets the encryption module to use for this interface Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax crypto map <map-tag> Parameters map <map-tag> Assigns a Crypto Map •...
Page 520: Description
12-6 Motorola RF Switch CLI Reference Guide 12.1.3 description  Interface Config Commands Creates an interface specific description Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax description <description> Parameters <description> Defines the characters describing this interface Example RFSwitch(config-if)#description "interface for RetailKing"...
Page 521: Duplex
Interface Instance 12-7 12.1.4 duplex  Interface Config Commands Specifies the duplex mode for the interface NOTE: • Duplexity can only be set for an Ethernet Interface. Enter the instance using the parameter of the (config-if) interface mode • The duplex cannot be set until the speed is set to a non-auto value Supported in the following platforms: •...
Page 522: End
12-8 Motorola RF Switch CLI Reference Guide 12.1.5 end  Interface Config Commands Ends and exits the current mode and moves to the PRIV EXEC mode. The prompt changes RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000...
Page 523: Exit
Interface Instance 12-9 12.1.6 exit  Interface Config Commands Ends the current mode and moves to the previous mode (GLOBAL-CONFIG). The prompt changes to RFSwitch(config)# Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax exit Parameters None Example RFSwitch(config-if)#exit RFSwitch(config)#...
Page 524: Help
12-10 Motorola RF Switch CLI Reference Guide 12.1.7 help  Interface Config Commands Displays the system’s interactive help Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax help Parameters None Example RFSwitch(config-if)#help CLI provides advanced help feature.
Page 525 Interface Instance 12-11 12.1.8 ip  Interface Config Commands Sets the IP address for the assigned Fast Ethernet interface (ME), and VLAN Interface Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax ip [access-group|address|arp|dhcp|helper-address|nat] ip access-group [<1-99>|<100-199>|<1300-1999>| <2000-2699>|WORD in] ip arp [rate-limit|trust] ip dhcp trust...
Page 526 12-12 Motorola RF Switch CLI Reference Guide ip address [ <IP Mask> Sets a static IP address and network mask for a Layer 3 {secondary}|dhcp] SVI (Switch Virtual Interface) • <IP/ Mask> {secondary} – Sets the IP address (10.0.0.1/8) • secondary – Defines an optional secondary IP address •...
Page 527: Creating Helper Address Using Dhcp Server
Interface Instance 12-13 Example RFSwitch(config-if)#ip access-group 110 in RFSwitch(config-if)# RFSwitch(config-if)#ip address 192.168.234.1/24 RFSwitch(config-if)# 12.1.8.1 Creating Helper Address using DHCP Server Follow the steps below to create a helper address on VLAN 2000 for using a DHCP server on VLAN 1000: RFSwitch(config)#interface vlan 1000 RFSwitch(config-if)#ip address 172.168.100.1/24 RFSwitch(config-if)#interface vlan 2000...
Page 528: Mac
12-14 Motorola RF Switch CLI Reference Guide 12.1.9 mac  Interface Config Commands Applies a MAC access list (ACL) to Gigabit Ethernet interface NOTE: The access list cannot be applied on a management interface (me1). Supported in the following platforms: •...
Page 529: Management
Interface Instance 12-15 12.1.10 management  Interface Config Commands Sets the selected interface as management interface. It can only be used on a VLANx interface. The TFTP/FTP server providing the switch its config file at startup must be accessible via this interface. VLAN 1 is the default management interface for the switch.
Page 530 12-16 Motorola RF Switch CLI Reference Guide 12.1.11 no  Interface Config Commands Negates a command or sets its defaults Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 SWITCH NOTE: The following commands are not supported on RFS6000: •...
Page 531: Port-Channel
Interface Instance 12-17 12.1.12 port-channel  Interface Config Commands Selects the load-balance criteria of an aggregated port Supported in the following platforms: • RFS7000 • RFS4000 SWITCH NOTE: RFS6000 does not support this command. Syntax port-channel load-balance [src-dst-ip|src-dst-mac] Parameters load-balance Sets load-balancing for port channel [src-dst-ip|src-dst-mac] •...
Page 532: Configuring A Port Aggregation
12-18 Motorola RF Switch CLI Reference Guide The following example defines the load balance based on the IP or MAC address: RFSwitch(config)#interface sa1 RFSwitch(config-if)#port-channel load-balance src--dst-ip RFSwitch(config-if)# 12.1.12.1 Configuring a Port Aggregation for configuring port aggregation. Follow static-channel-group port-channel the steps below to configure port aggregation: 1.
Page 533 Interface Instance 12-19 5. Use the command to select the criteria used to determine which link is port-channel selected for a given packet. The port-channel selection is based on either source- destination IP or source destination MAC RFS7000(config-if)#port-channel load-balance src-dst-ip RFS7000(config-if)# The default port-channel criteria is based on source-destination IP.
Page 534 12-20 Motorola RF Switch CLI Reference Guide MAC> no matter what host the MU is accessing. But in src-dst-mac balancing, the same link is selected always.
Page 535: Power
Interface Instance 12-21 12.1.13 power  Interface Config Commands Invokes PoE commands to configure PoE power limit and priority for a port. By default the value for a GE port is set to low. Power is applied in order of priority, power overlaods are removed in reverse order of priority.
Page 536 12-22 Motorola RF Switch CLI Reference Guide RFSwitch(config-if)#exit RFSwitch(config)#interface ge3 RFSwitch(config-if)#power priority critical RFSwitch(config-if)#exit RFSwitch(config)#show power configuration Power usage trap at 80% of max power (148 of 185 Watts) port Priority Power limit Enabled high 29.7W high 14.0W crit 29.7W high 29.7W...
Page 537: Service
Interface Instance 12-23 12.1.14 service  Interface Config Commands Invokes service commands to troubleshoot or debug the instance (config-if) configuration. Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax service show cli Parameters Displays the CLI tree of the current mode Example RFSwitch(config-if)#service show cli Interface Config mode:...
Page 538 12-24 Motorola RF Switch CLI Reference Guide +-<100-199> RFSwitch(config-if)#...
Page 539: Show
Interface Instance 12-25 12.1.15 show  Interface Config Commands Displays current system information running on the switch Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 SWITCH NOTE: The following commands display only for RFS6000 and RFS4000: • power The following commands display only for RFS7000 and RFS4000: •...
Page 540 12-26 Motorola RF Switch CLI Reference Guide crypto encryption module debugging Debugging information outputs dhcp DHCP Server Configuration environment show environmental information file Display filesystem information firewall Wireless firewall Display FTP Server configuration history Display the session command history interfaces...
Page 541 Interface Instance 12-27 users Display information about currently logged in users version Display software & hardware version virtual-ip IP Redundancy Feature wireless Wireless configuration commands wlan-acl wlan based acl wwan Wireless wan interface RFSwitch(config-if)#show...
Page 542: Shutdown
12-28 Motorola RF Switch CLI Reference Guide 12.1.16 shutdown  Interface Config Commands Disables the selected interface, the interface is administratively enabled unless explicitly disabled using this command Displays current system information running on the switch Supported in the following platforms: •...
Page 543: Spanning-Tree
Interface Instance 12-29 12.1.17 spanning-tree  Interface Config Commands Configures spanning tree parameters Displays current system information running on the switch. Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax spanning-tree [bpdufilter|bpduguard|edgeport|force-version| guard|link-type|mst|portfast] spanning-tree bpdufilter [enable|disable] spanning-tree bpduguard [enable|disable] spanning-tree [edgeport|portfast] spanning-tree force-version <1-3>...
Page 544 12-30 Motorola RF Switch CLI Reference Guide bpduguard [disable|enable] Use this command to enable or disable the BPDU guard feature on a port. Use the no parameter with this command to set the BPDU guard feature to default values. When the BPDU guard is set for a bridge, all portfast- enabled ports that have the BPDU-guard set to default shut down the port upon receiving a BPDU.
Page 545 Interface Instance 12-31 mst [<0-15> Configures MST values on a spanning tree [cost <1-200000000>| • <0-15> [cost <1-200000000>|port-priority <0-240>] – port-priority <0-240>]| Defines the Instance ID port-cisco-interoperability • cost <1-200000000> – Defines the path cost for a [disable|enable]] port • port-priority <0-240> – Defines the port priority for a bridge •...
Page 546: Speed
12-32 Motorola RF Switch CLI Reference Guide 12.1.18 speed  Interface Config Commands Specifies the speed of a fast-ethernet (10/100) or a gigabit-ethernet port (10/100/1000) Displays current system information running on the switch. Supported in the following platforms: • RFS7000 •...
Page 547: Static-Channel-Group
Interface Instance 12-33 12.1.19 static-channel-group  Interface Config Commands Adds an interface to a static channel group Displays current system information running on the switch. Supported in the following platforms: • RFS7000 • RFS4000 SWITCH NOTE: RFS6000 does not support this command Syntax static-channel-group <1-4>...
Page 548: Switchport
12-34 Motorola RF Switch CLI Reference Guide 12.1.20 switchport  Interface Config Commands Sets switching mode characteristics for the selected interface. Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax switchport [access|mode|trunk] switchport access vlan <1-4094> switchport mode [access|trunk] switchport trunk [allowed|native] switchport trunk allowed vlan [add|none|remove] <vlan-id>...
Page 549 Interface Instance 12-35 Sets the trunking mode characteristics trunk [allowed |native] • allowed vlan – Configures trunk characteristics when the port is in trunk-mode • vlan [add|none|remove] – Sets allowed vlans • none – Allows no vlans to Xmit/Rx through the Layer2 interface •...
Page 550: Storm-Control
12-36 Motorola RF Switch CLI Reference Guide 12.1.21 storm-control  Interface Config Commands Sets storm-control for broadcasting Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax storm-control [bcast|mcast|ucast] rate-limit <1-1000000> Parameters bcast rate-limit Configures storm-control of broadcast packets <1-1000000>...
Page 551: Tunneling
Interface Instance 12-37 12.1.22 tunneling  Interface Config Commands Sets protocol-over protocol tunneling. Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax tunnel [destination <A.B.C.D>|source <A.B.C.D>|ttls <1-255>] Parameters destination <A.B.C.D> Destination of the tunnel packet. • <A.B.C.D> – Specifies the IP address of the destination.
Page 552 12-38 Motorola RF Switch CLI Reference Guide...
Page 553: Chapter 13. Spanning Tree-Mst Instance
Spanning tree-mst Instance Use the instance to configure the switch’s Multi Spanning Tree Protocol (config-mst) (MSTP) configuration. To switch to this instance, use the command: RFSwitch(config)#spanning-tree mst configuration RFSwitch(config-mst)# 13.1 mst Config Commands Table 13.1 summarizes the commands: (config-mst) Table 13.1 MSTI configuration commands Command Description Ref.
Page 554 13-2 Motorola RF Switch CLI Reference Guide Command Description Ref. service Invokes service commands needed to troubleshoot or page 13-11 debug instance configurations (config-if) show Shows running system information page 13-13...
Page 555: Clrscr
Spanning tree-mst Instance 13-3 13.1.1 clrscr  mst Config Commands Clears the display Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax clrscr Parameters None Example RFSwitch(config-mst)#clrscr RFSwitch(config-mst)#...
Page 556: End
13-4 Motorola RF Switch CLI Reference Guide 13.1.2 end  mst Config Commands Ends and exits the current mode and moves to the PRIV EXEC mode. The prompt changes RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000...
Page 557: Exit
Spanning tree-mst Instance 13-5 13.1.3 exit  mst Config Commands Ends the current mode and moves to the previous mode (GLOBAL-CONFIG). The prompt changes to RFSwitch(config)# Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax exit Parameters None Example RFSwitch(config-mst)#exit...
Page 558: Help
13-6 Motorola RF Switch CLI Reference Guide 13.1.4 help  mst Config Commands Displays the system’s interactive help system Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax help Parameters None Example RFSwitch(config-mst)#help CLI provides advanced help feature. When you need help, anytime at the command line please press '?'.
Page 559: Instance
Spanning tree-mst Instance 13-7 13.1.5 instance  mst Config Commands Associates VLAN(s) with an instance Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax instance <1-15> vlan <vlan-id> Parameters <1-15> Defines the instance ID to which the VLAN is associated vlan <vlan-id>...
Page 560: Name
13-8 Motorola RF Switch CLI Reference Guide 13.1.6 name  mst Config Commands Sets the name for the MST region Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax name <region-name> Parameters <region-name> Sets MST region name...
Page 561 Spanning tree-mst Instance 13-9 13.1.7 no  mst Config Commands Negates a command or sets its defaults Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax no [instance|name|revision] Parameters instance Sets the MST Instance • vlan – Delete the association of vlan with this instance •...
Page 562: Revision
13-10 Motorola RF Switch CLI Reference Guide 13.1.8 revision  mst Config Commands Sets the revision number of the MST bridge Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax revision <0-255> Parameters revision <0-255> Defines the revision number for configuration information...
Page 563: Service
Spanning tree-mst Instance 13-11 13.1.9 service  mst Config Commands Invokes service commands needed to troubleshoot or debug instance (config-if) configurations Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax service show cli Parameters None Example RFSwitch(config-mst)#service show cli MSTI configuration mode: +-clrscr [clrscr] +-end [end]...
Page 564 13-12 Motorola RF Switch CLI Reference Guide +-WORD [show commands WORD] +-running-config [show running-config] +-full [show running-config full] +-include-factory [show running-config include-factory] +-service +-show +-cli [service show cli] +-show +-access-list [show access-list] +-<1-99> [show access-list (<1-99>|<100-199>|<1300- 1999>|<2000-2699>|WORD)] +-<100-199> [show access-list (<1-99>|<100-199>|<1300- 1999>|<2000-2699>|WORD)]...
Page 565: Show
Spanning tree-mst Instance 13-13 13.1.10 show  mst Config Commands Displays current system information Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 SWITCH NOTE: The following commands display only for RFS6000 and RFS4000: • power The following commands display only for RFS7000 and RFS4000: •...
Page 566 13-14 Motorola RF Switch CLI Reference Guide dhcp DHCP Server Configuration environment show environmental information file Display filesystem information firewall Wireless firewall Display FTP Server configuration history Display the session command history interfaces Interface status Internet Protocol (IP) ldap LDAP server...
Page 567 Spanning tree-mst Instance 13-15 version Display software & hardware version virtual-ip IP Redundancy Feature wireless Wireless configuration commands wlan-acl wlan based acl wwan Wireless wan interface RFSwitch(config-mst)#show...
Page 568 13-16 Motorola RF Switch CLI Reference Guide...
Page 569: Chapter 14. Dhcp Class Instance
DHCP Class Instance Use the (config-dhcpclass) instance to configure DHCP user classes. The switch supports a maximum of 8 user classes per DHCP class. To navigate to this instance use the command: RFSwitch(config)#ip dhcp class <class-name> RFSwitch(config-dhcpclass)# Refer to ip on page 12-11 DHCP Class Instance on page 14-1 for other DHCP related configurations.
Page 570 14-2 Motorola RF Switch CLI Reference Guide Table 14.1 DHCP Server Class Config Commands Command Description Ref. Negates a command or sets its defaults page 14-8 option Defines DHCP Server options page 14-9 service Invokes service commands to troubleshoot or debug...
Page 571: Clrscr
DHCP Class Instance 14-3 14.1.1 clrscr  DHCP Server Class Config Commands Clears the display screen Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax clrscr Parameters None Example RFSwitch(config-dhcpclass)#clrscr RFSwitch(config-dhcpclass)#...
Page 572: End
14-4 Motorola RF Switch CLI Reference Guide 14.1.2 end  DHCP Server Class Config Commands Ends and exits the current mode and moves to the PRIV EXEC mode. The prompt changes RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000 •...
Page 573: Exit
DHCP Class Instance 14-5 14.1.3 exit  DHCP Server Class Config Commands Ends the current mode and moves to the previous mode (GLOBAL-CONFIG). The prompt changes to RFSwitch(config)# Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax exit Parameters None...
Page 574: Help
14-6 Motorola RF Switch CLI Reference Guide 14.1.4 help  DHCP Server Class Config Commands Displays the system’s interactive help in HTML format Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax help Parameters None Example RFSwitch(config-dhcpclass)#help CLI provides advanced help feature.
Page 575: Multiple-User-Class
DHCP Class Instance 14-7 14.1.5 multiple-user-class  DHCP Server Class Config Commands Enables the multiple-user-class option Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax multiple-user-class Parameters None Example RFSwitch(config-dhcpclass)#multiple-user-class RFSwitch(config-dhcpclass)#...
Page 576 14-8 Motorola RF Switch CLI Reference Guide 14.1.6 no  DHCP Server Class Config Commands Negates a command or sets its defaults Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax no [multiple-user-class|option] np option user-class <class-name>...
Page 577: Creating A Dhcp User Class
DHCP Class Instance 14-9 14.1.7 option  DHCP Server Class Config Commands Specifies a value for DHCP user class options Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax option user-class <class-name> Parameters user-class <class-name> Creates/modifies DHCP server user class options •...
Page 578 14-10 Motorola RF Switch CLI Reference Guide 4. Associate the DHCP class, created in Step 1 with the pool created in Step 3. The switch supports the association of 8 DHCP classes with a pool. RFSwitch(config-dhcp)#class RFS7000DHCPclass RFSwitch(config-dhcp-class)# 5. The switch moves to a new mode (config-dhcp-class). Use this mode to add an address range for the DHCP class associated with the pool.
Page 579: Service
DHCP Class Instance 14-11 14.1.8 service  DHCP Server Class Config Commands Invokes service commands to troubleshoot or debug instance configurations (config-if) Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax service show cli Parameters None Example RFSwitch(config-dhcpclass)#service show cli DHCP Server Class Config mode: +-clrscr [clrscr]...
Page 580: Show
14-12 Motorola RF Switch CLI Reference Guide 14.1.9 show  DHCP Server Class Config Commands Displays current system information Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 SWITCH NOTE: The following commands display only for RFS6000 and RFS4000: •...
Page 581 DHCP Class Instance 14-13 crypto encryption module debugging Debugging information outputs dhcp DHCP Server Configuration environment show environmental information file Display filesystem information firewall Wireless firewall Display FTP Server configuration history Display the session command history interfaces Interface status Internet Protocol (IP) ldap LDAP server licenses...
Page 582 14-14 Motorola RF Switch CLI Reference Guide users Display information about currently logged in users version Display software & hardware version virtual-ip IP Redundancy Feature wireless Wireless configuration commands wlan-acl wlan based acl RFSwitch(config-dhcpclass)#show RFSwitch(config-dhcpclass)#show ip dhcp binding MAC/Client-Id Expiry Time...
Page 583: Chapter 15. Extended Acl Instance
Extended ACL Instance The Extended ACL instance is used to manage the extended (config-ext-nacl) Access Control List entries associated with the switch. To navigate to this instance, use the command RFSwitch(config)#ip access-list extended [<ACL-name>| <100-199>|<2000-2699>] RFSwitch(config-ext-nacl)# 15.1 Extended ACL Config Commands Table 15.1 summarizes commands:...
Page 584 15-2 Motorola RF Switch CLI Reference Guide Table 15.1 Extended ACL Config Command Summary (Continued) Command Description Ref. permit Specifies packets to forward page 15-22 service Invokes the service commands to troubleshoot or page 15-28 debug instance configurations (config-if) show...
Page 585: Clrscr
Extended ACL Instance 15-3 15.1.1 clrscr  Extended ACL Config Commands Clears the display screen Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax clrscr Parameters None Example RFSwitch(config-ext-nacl)#clrscr RFSwitch(config-ext-nacl)#...
Page 586: Deny
15-4 Motorola RF Switch CLI Reference Guide 15.1.2 deny  Extended ACL Config Commands Specifies packets to reject Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax deny [icmp|ip|tcp|upd|proto] deny icmp [<source-IP/Mask>|any|host <IP>] [<dest-IP/ Mask>|any|host <IP>] {<ICMP-type> {<ICMP-code>}} {log} {rule-precedence <1-5000>}...
Page 587 Extended ACL Instance 15-5 Parameters Use with a deny command to reject IP packets deny ip [<source-IP/ Mask>|any|host • deny – Sets the action type on an ACL <IP>][<dest-IP/ • ip – Specifies an IP (to match to a protocol) Mask>|any|host <IP>] •...
Page 588 15-6 Motorola RF Switch CLI Reference Guide deny icmp [<source-IP/ Use with the deny command to reject ICMP packets Mask>|any|host <IP>] • deny – Rejects ICMP packets [<dest-IP/Mask>|any|host • icmp – Specifies ICMP as the protocol <IP>] {<ICMP-type> • [<source-ip/mask>|any|host <IP>] – The source <source- {<ICMP-code>}} {log}...
Page 589 Extended ACL Instance 15-7 deny [tcp|udp] [<source-IP/ Use with the deny command to reject TCP or UDP packets Mask>|any|host <IP>] {eq • deny – Rejects TCP or UDP packets <source-port>|range • tcp|udp – Specifies TCP or UDP as the protocol <starting-source-port>...
Page 590 15-8 Motorola RF Switch CLI Reference Guide • ftp-data – port 20 • gopher – gopher port 70 • https – https port 443 • ldap – ldap port 389 • nntp – nntp port 119 • ntp – ntp port 123 •...
Page 591 Extended ACL Instance 15-9 deny proto [<1- Use with the deny command to deny any protocol other 254>|WORD|eigrp|gre| than TCP, UDP or ICMP packets igmp|igp|ospf|vrrp] • <1-254] – Displays protocol number [<source-IP/ • <WORD> – Refers to any protocol name Mask>|any|host •...
Page 592: Example - Denying Traffic Between Two Subnets
15-10 Motorola RF Switch CLI Reference Guide Usage Guidelines Use this command to deny traffic between networks/hosts based on the protocol type selected in the access list configuration. The following protocol types are supported: • ip • icmp • tcp •...
Page 593: Example - Denying Udp Based Traffic
Extended ACL Instance 15-11 15.1.2.3 Example - Denying UDP Based Traffic The following example denies UDP traffic with a source port range between 20 - 23 (from the source subnet to destination subnet): RFSwitch(config-ext-nacl)#deny udp range 20 23 192.168.1.0/24 192.168.2.0/24 RFSwitch(config-ext-nacl)#permit ip any any RFSwitch(config-ext-nacl)# 15.1.2.4 Example - Denying ICMP Based Traffic...
Page 594: End
15-12 Motorola RF Switch CLI Reference Guide 15.1.3 end  Extended ACL Config Commands Ends and exits the current mode and moves to the PRIV EXEC mode The prompt changes to RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000 •...
Page 595: Exit
Extended ACL Instance 15-13 15.1.4 exit  Extended ACL Config Commands Ends the current mode and moves to the previous mode (GLOBAL-CONFIG). The prompt changes to RFSwitch(config)# Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax exit Parameters None Example...
Page 596: Help
15-14 Motorola RF Switch CLI Reference Guide 15.1.5 help  Extended ACL Config Commands Displays the system’s interactive help system Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax help Parameters None Example RFSwitch(config-ext-nacl)#help CLI provides advanced help feature.
Page 597: Mark
Extended ACL Instance 15-15 15.1.6 mark  Extended ACL Config Commands Specifies packets to mark Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax mark [8021p|dscp|tos] mark [8021p <vlan-priority-value>|dscp <dscp-codepoint-value>|tos <tos-value>] [icmp|ip|tcp|udp] mark [8021p <vlan-priority-value>|dscp <dscp-codepoint- value>|tos <tos-value>] icmp [<source-ip/mask>|any|host <ip>] [<dest-ip/mask>|any|host <ip>] {<ICMP-type>...
Page 598 15-16 Motorola RF Switch CLI Reference Guide tos <tos-value> Sets the TOS value to <tos-value>. The least significant two bits of the <tos-value> must be 0. ip [<source-IP/ Use with mark command to mark a packet Mask>|any|host <IP>] • ip – Specifies an IP (to match to a protocol) [<dest-IP/Mask>|...
Page 599 Extended ACL Instance 15-17 icmp [<source-IP/ Use with the mark command to mark ICMP packets mask>|any|host <IP>] • deny – Rejects ICMP packets [<dest-IP/Mask>|any| • icmp – Specifies ICMP as the protocol host <IP>] {<ICMP-type> • [<source-IP/mask>|any|host <IP>] – The source <source- {<ICMP-code>}} {log} IP>...
Page 600 15-18 Motorola RF Switch CLI Reference Guide [tcp|udp] [<source-IP/ Use with the mark command to mark TCP or UDP packets Mask>|any|host <IP>] {eq • deny – Rejects TCP or UDP packets <source-port>|range • tcp|udp – Specifies TCP or UDP as the protocol <starting-source-port>...
Page 601: Example - Marking Dot1P On Tcp Based Traffic
Extended ACL Instance 15-19 Usage Guidelines Marks traffic between networks/hosts based on the protocol type selected in the access list configuration Use the mark option to specify the type of service (tos) and priority value. The tos value is marked in the IP header and the 802.1p priority value is marked in the dot1q frame. The following types of protocols are supported: •...
Page 602 15-20 Motorola RF Switch CLI Reference Guide RFSwitch(config-ext-nacl)# mark tos 160 udp 192.168.2.0/24 range 5060 5061 RFSwitch(config-ext-nacl)# RFSwitch(config-ext-nacl)# mark dscp 40 udp 192.168.2.0/24 range 5060 5061 RFSwitch(config-ext-nacl)#...
Page 603 Extended ACL Instance 15-21 15.1.7 no  Extended ACL Config Commands Negates a command or sets its defaults Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax no [deny|mark|permit] Negates all the syntax combinations used in the deny, mark and permit designations to configure the Extended ACL Parameters deny...
Page 604: Permit
15-22 Motorola RF Switch CLI Reference Guide 15.1.8 permit  Extended ACL Config Commands Permits specific packets. NOTE: ACLs do not allow DHCP messages to flow by default. Configure an Access Control Entry (ACE) to allow DHCP messages to flow through.
Page 605 Extended ACL Instance 15-23 Parameters Use with a permit command to allow IP packets permit ip [<source-IP/ Mask>|any|host <IP>] • deny – Sets the action type on an ACL [<dest-IP/mask>|any|host • IP – Specifies an IP (to match to a protocol) <IP>] {log} {rule- •...
Page 606 15-24 Motorola RF Switch CLI Reference Guide permit icmp [<source-IP/ Use with the permit command to allow ICMP packets Mask>|any|host <ip>] • deny – Rejects ICMP packets [<dest-IP/Mask>|any| • icmp – Specifies ICMP as the protocol host <IP>] {<ICMP-type> • [<source-IP/Mask>|any|host <IP>] – The source {<ICMP-code>}} {log}...
Page 607 Extended ACL Instance 15-25 permit [tcp|udp] [<source- Use with the permit command to allow TCP or UDP ip/mask>|any|host <IP>] packets {eq <source-port>|range • deny – Rejects TCP or UDP packets <starting-source-port> • tcp|udp – Specifies TCP or UDP as the protocol <ending-source-port>} •...
Page 608 15-26 Motorola RF Switch CLI Reference Guide permit proto Use with the permit command to allow any protocol [<1-254>|WORD|eigrp|gre| other than TCP, UDP or ICMP packets igmp|igp|ospf|vrrp] • <1-254] – Displays protocol number [<source-IP/ • <WORD> – Refers to any protocol name Mask>|any|host...
Page 609: Permitting Ip Based Traffic
Extended ACL Instance 15-27 • ip • icmp • tcp • udp The last ACE in the access list is an implicit deny statement. Whenever the interface receives the packet, its content is checked against all the ACEs in the ACL. It is allowed based on the ACL configuration. •...
Page 610: Service
15-28 Motorola RF Switch CLI Reference Guide 15.1.9 service  Extended ACL Config Commands Invokes service commands to troubleshoot or debug the (config-if) instance configurations Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax service show cli...
Page 611: Show
Extended ACL Instance 15-29 15.1.10 show  Extended ACL Config Commands Displays current system information running on the switch Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 SWITCH NOTE: The following commands display only for RFS6000 and RFS4000: •...
Page 612 15-30 Motorola RF Switch CLI Reference Guide dhcp DHCP Server Configuration environment show environmental information file Display filesystem information firewall Wireless firewall Display FTP Server configuration history Display the session command history interfaces Interface status Internet Protocol (IP) ldap LDAP server...
Page 613 Extended ACL Instance 15-31 version Display software & hardware version virtual-ip IP Redundancy Feature wireless Wireless configuration commands wlan-acl wlan based acl wwan Wireless wan interface RFS6000(config-ext-nacl)#show Example RFS6000(config-ext-nacl)#show access-list Extended IP access list 120 RFS6000(config-ext-nacl)#...
Page 614: Configuring Ip Extended Acl
15-32 Motorola RF Switch CLI Reference Guide 15.2 Configuring IP Extended ACL IP Extended ACLs contain rules based on the following parameters: • Source IP address • Destination IP address • IP Protocol • Source Port–if protocol is TCP or UDP •...
Page 615: Chapter 16. Standard Acl Instance
Standard ACL Instance The Standard ACL instance is used to manage the standard Access (config-std-acl) Control List entries associated with the switch. To navigate to this instance, use the command: RFSwitch(config)#ip access-list standard [<ACL-name>| <1-99>|<1300-1999>] RFSwitch(config-std-acl)# 16.1 Standard ACL Config Commands Table 16.1 summarizes the commands:...
Page 616 16-2 Motorola RF Switch CLI Reference Guide Table 16.1 Standard ACL Config Command Summary (Continued) Command Description Ref. permit Specifies packets to forward page 16-12 service Invokes service commands to troubleshoot or debug page 16-14 instance configurations (config-if) show Displays running system information...
Page 617: Clrscr
Standard ACL Instance 16-3 16.1.1 clrscr  Standard ACL Config Commands Clears the display screen Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax clrscr Parameters None Example RFSwitch(config-std-nacl)#clrscr RFSwitch(config-std-nacl)#...
Page 618: Deny
16-4 Motorola RF Switch CLI Reference Guide 16.1.2 deny  Standard ACL Config Commands Specifies packets to reject Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax deny [<source-IP/Mask>|any|host <IP>] {log} {rule-precedence <1-5000>} Parameters Use with a deny command to reject packets [<source-IP/...
Page 619: Example - Denying Traffic To The Interface
Standard ACL Instance 16-5 Whenever the interface receives the packet, its content is checked against all the ACEs in the ACL. It is allowed/denied based on the ACL configuration. NOTE: The log option is functional only for router ACL’s. The log option results in an informational logging message for the packet matching the entry sent to the console.
Page 620: End
16-6 Motorola RF Switch CLI Reference Guide 16.1.3 end  Standard ACL Config Commands Ends and exits from the current mode and moves to the PRIV EXEC mode. The prompt changes to RFSwitch# Supported in the following platforms: • RFS7000 •...
Page 621: Exit
Standard ACL Instance 16-7 16.1.4 exit  Standard ACL Config Commands Ends the current mode and moves to previous mode (GLOBAL-CONFIG). The prompt changes to RFSwitch(config)# Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax exit Parameters None Example RFSwitch(config-std-nacl)#exit...
Page 622: Help
16-8 Motorola RF Switch CLI Reference Guide 16.1.5 help  Standard ACL Config Commands Displays the system’s interactive help in HTML format Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax help Parameters None Example RFSwitch(config-std-nacl)#help CLI provides advanced help feature.
Page 623: Mark
Standard ACL Instance 16-9 16.1.6 mark  Standard ACL Config Commands Specifies packets to mark Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax mark [8021p|dscp|tos] mark 8021p <vlan-priority-value> mark dscp <dscp-codepoint-value> mark tos <tos-value> [<source-IP/Mask>|any|host <IP>] {log} {rule-precedence <1-5000>} Parameters 8021p <vlan-priority-...
Page 624: Marking Tos For Source Network Traffic
16-10 Motorola RF Switch CLI Reference Guide Use with a mark command to mark packets [<source-IP/Mask>| any|host <IP>] {log} • <source-IP/Mask>|any|host <IP> – The keyword <source- {rule-precedence IP> is the source IP address of the network or host in <1-5000>} dotted decimal format.
Page 625 Standard ACL Instance 16-11 16.1.7 no  Standard ACL Config Commands Negates a command or sets its defaults Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax no [deny|mark|permit] Negates all the syntax combinations used in deny, mark and permit designations. Parameters deny Specifies packets to reject...
Page 626: Permit
16-12 Motorola RF Switch CLI Reference Guide 16.1.8 permit  Standard ACL Config Commands Specifies packet to forward Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax permit [<source-IP/Mask>|any|host <IP>] {log} {rule-precedence <1-5000>} Parameters Use with a permit command to allow packets [<source-IP/Mask>|...
Page 627: Example - Permitting Traffic To Interface
Standard ACL Instance 16-13 Whenever the interface receives the packet, its content is checked against all the ACEs in the ACL. It is allowed based on the ACL’s configuration. NOTE: The log option is functional only for router ACLs. The log option displays an informational logging message about the packet matching the entry sent to the console.
Page 628: Service
16-14 Motorola RF Switch CLI Reference Guide 16.1.9 service  Standard ACL Config Commands Invokes service commands to troubleshoot or debug instance (config-if) configurations Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax service show cli Parameters...
Page 629 Standard ACL Instance 16-15 +-log [(deny|permit|mark (8021p <0-7> | tos <0- 255>))(A.B.C.D/M | host A.B.C.D | any)(log|)(rule-precedence <1-5000> |)] +-rule-precedence +-<1-5000> [(deny|permit|mark (8021p <0-7> | tos <0- 255>))(A.B.C.D/M | host A.B.C.D | any)(log|)(rule-precedence <1-5000> |)] +-rule-precedence +-<1-5000> [(deny|permit|mark (8021p <0-7> | tos <0- 255>))(A.B.C.D/M | host A.B.C.D | any)(log|)(rule-precedence <1-5000>...
Page 630: Show
16-16 Motorola RF Switch CLI Reference Guide 16.1.10 show  Standard ACL Config Commands Displays current system information running on the switch Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 SWITCH NOTE: The following commands display only for RFS6000 and RFS4000: •...
Page 631 Standard ACL Instance 16-17 dhcp DHCP Server Configuration environment show environmental information file Display filesystem information firewall Wireless firewall Display FTP Server configuration history Display the session command history interfaces Interface status Internet Protocol (IP) ldap LDAP server licenses Show any installed licenses logging Show logging configuration and buffer...
Page 632 16-18 Motorola RF Switch CLI Reference Guide version Display software & hardware version virtual-ip IP Redundancy Feature wireless Wireless configuration commands wlan-acl wlan based acl RFSwitch(config-std-nacl)#show...
Page 633: Use Case: Configuring Ip Standard Acl
Standard ACL Instance 16-19 16.2 Use Case: Configuring IP Standard ACL IP Standard ACLs contain rules based on Source IP Address. You can create either a Numbered IP Standard ACL or a Named IP Standard IP Address. Execute the following CLI commands to configure an IP based standard ACL: 1.
Page 634 16-20 Motorola RF Switch CLI Reference Guide...
Page 635: Chapter 17. Extended Mac Acl Instance
Extended MAC ACL Instance Use the instance to configure (config-ext-macl) mac access-list ACLs. To navigate to this instance, use the command: extended RFSwitch(config)#mac access-list extended <acl-name> RFSwitch(config-ext-macl)# 17.1 MAC Extended ACL Config Commands Table summarizes commands: config-ext-macl Table 17.1 MAC Extended ACL Config Command Summary Command Description Ref.
Page 636 17-2 Motorola RF Switch CLI Reference Guide Table 17.1 MAC Extended ACL Config Command Summary (Continued) Command Description Ref. service Invokes service commands to troubleshoot or debug page 17-18 instance configurations (config-if) show Shows running system information page 17-20...
Page 637: Clrscr
Extended MAC ACL Instance 17-3 17.1.1 clrscr  MAC Extended ACL Config Commands Clears the display screens Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax clrscr Parameters None Example RFSwitch(config-ext-macl)#clrscr RFSwitch(config-ext-macl)#...
Page 638: Deny
17-4 Motorola RF Switch CLI Reference Guide 17.1.2 deny  MAC Extended ACL Config Commands Specifies packets to reject NOTE: Use a decimal value representation of ethertypes to implement designation for a packet. The command set for permit/deny/mark Extended MAC ACLs provide the hexadecimal values for each listed ethertype.
Page 639 Extended MAC ACL Instance 17-5 Parameters deny [<MAC/Mask>|any|host Define a source and destination MAC address and <MAC>] [<MAC/Mask>|any| Mask specifying the bits to match. The source and host <MAC>] {[dot1p| destination wildcards can be any one of the rule-precedence|type|vlan]} following: •...
Page 640: Example - Denying Traffic From Any Mac Address
17-6 Motorola RF Switch CLI Reference Guide Usage Guidelines The deny command disallows traffic based on layer 2 (data-link layer) data. The MAC access list denies traffic from a particular source MAC address or any MAC address. It can also disallow traffic from a list of MAC addresses based on the source mask.
Page 641: End
Extended MAC ACL Instance 17-7 17.1.3 end  MAC Extended ACL Config Commands Ends and exits the current mode and moves to the PRIV EXEC mode. The prompt changes RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax Parameters None...
Page 642: Exit
17-8 Motorola RF Switch CLI Reference Guide 17.1.4 exit  MAC Extended ACL Config Commands Ends the current mode and moves to the previous mode (GLOBAL-CONFIG). The prompt changes to RFSwitch(config)# Supported in the following platforms: • RFS7000 • RFS6000 •...
Page 643: Help
Extended MAC ACL Instance 17-9 17.1.5 help  MAC Extended ACL Config Commands Displays the system’s interactive help (in HTML format) Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax help Parameters None Example RFSwitch(config-ext-macl)#help CLI provides advanced help feature. When you need help, anytime at the command line please press '?'.
Page 644: Mark
17-10 Motorola RF Switch CLI Reference Guide 17.1.6 mark  MAC Extended ACL Config Commands Specifies the packet to mark NOTE: Use a decimal value representation of ethertypes to implement permit/deny/mark designations for a packet. An Extended MAC ACL provides the hexadecimal values for each listed ethertype. The switch supports all ethertypes.
Page 645 Extended MAC ACL Instance 17-11 Parameters 8021p<0-7> Modifies the 802.1p VLAN user priority • xx:xx:xx:xx:xx:xx/ xx:xx:xx:xx:xx:xx – Source MAC address and mask • any – Any source host • host – Exact source MAC address to match tos<0-255> Modifies the TOS bits in an IP header •...
Page 646: Example - Marking Dot1P Priority Value For 802.1Q Tagged Traffic
17-12 Motorola RF Switch CLI Reference Guide type [8021q|<1-65535>| Defines an ethertype value represented as an arp|appletalk|ip|ipv6ipx|rarp| integer or keyword for well-known ethertypes (like vlan|wisp] IP, IPv6, ARP etc.) vlan <1-4095> Defines the VLAN tag ID to match dscp <0-63>...
Page 647 Extended MAC ACL Instance 17-13 17.1.7 no  MAC Extended ACL Config Commands Negates a command or sets its defaults Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax no [deny|mark|permit] Negates all the syntax combinations used in deny, mark and permit designations to configure the Extended ACL Parameters deny...
Page 648: Permit
17-14 Motorola RF Switch CLI Reference Guide 17.1.8 permit  MAC Extended ACL Config Commands Specifies packets to forward NOTE: Use a decimal value representation of ethertypes to implement permit/deny/mark designations for a packet. An Extended MAC ACL provides the hexadecimal values for each listed ethertype. The switch supports all ethertypes.
Page 649 Extended MAC ACL Instance 17-15 permit [<dest-IP/ Bit mask specifying the bits to match. The destination wildcard can be one of the following: Mask>|any|host <IP>] {<ICMP-type> {<ICMP-code>}} • xx:xx:xx:xx:xx:xx/ xx:xx:xx:xx:xx:xx – Destination MAC address and mask • any – Uses any available destination host •...
Page 650: Example - Permitting Wisp Traffic
17-16 Motorola RF Switch CLI Reference Guide The permit command in the MAC ACL disallows traffic based on layer 2 (data-link layer) information. A MAC access list permits traffic from a source MAC address or any MAC address. It also has an option to allow traffic from a list of MAC addresses (based on the source mask).
Page 651: Permitting Ip Traffic
Extended MAC ACL Instance 17-17 17.1.8.3 Permitting IP Traffic The example below permits IP based traffic from a source MAC address to any destination MAC address: RFSwitch(config-ext-macl)#permit host 11:22:33:44:55:66 any type ip RFSwitch(config-ext-macl)#...
Page 652: Service
17-18 Motorola RF Switch CLI Reference Guide 17.1.9 service  MAC Extended ACL Config Commands Invokes service commands to troubleshoot or debug instance (config-if) configurations Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax service show cli...
Page 653 Extended MAC ACL Instance 17-19 -65535> | ip | ipv6 | arp | wisp | 8021q | rarp | aarp | appletalk | ip x ) |)(rule-precedence <1-5000> |)] +-rule-precedence +-<1-5000> [(deny|permit|mark (8021p <0-7> | tos <0-255>))(XX:XX:XX: XX:XX:XX/XX:XX:XX:XX:XX:XX | host XX:XX:XX:XX:XX:XX | any)(XX:XX:XX:XX:XX:XX/XX: XX:XX:XX:XX:XX | host XX:XX:XX:XX:XX:XX | any)(vlan <1-4095>...
Page 654: Show
17-20 Motorola RF Switch CLI Reference Guide 17.1.10 show  MAC Extended ACL Config Commands Displays current system information running on the switch Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 SWITCH NOTE: The following commands display only for RFS6000 and RFS4000: •...
Page 655 Extended MAC ACL Instance 17-21 banner Display Message of the Day Login banner boot Display boot configuration. clock Display system clock commands Show command lists crypto encryption module debugging Debugging information outputs dhcp DHCP Server Configuration wios dataplane environment show environmental information file Display filesystem information firewall...
Page 656 17-22 Motorola RF Switch CLI Reference Guide terminal Display terminal configuration parameters traffic-shape Display traffic shaping timezone Display timezone upgrade-status Display last image upgrade status users Display information about currently logged in users version Display software & hardware version virtual-ip...
Page 657: Configuring Mac Extended Acl
Extended MAC ACL Instance 17-23 17.2 Configuring MAC Extended ACL MAC Extended ACLs contain rules based on the following parameters: • Source MAC address • Destination MAC address • Ethertype– accepts well known types like IP, ARP, VLAN or an integer value between 1-65535.
Page 658 17-24 Motorola RF Switch CLI Reference Guide...
Page 659: Chapter 18. Dhcp Server Instance
DHCP Server Instance Use the instance to configure the DHCP server address pool associated (config-dhcp) with the switch. To move to this instance, use the command. RFSwitch(config)#ip dhcp pool <pool-name> RFSwitch(config-dhcp)# Also refer to Chapter 12, Interface Instance, Section 12.1.8 ip for other DHCP related configurations.
Page 660 18-2 Motorola RF Switch CLI Reference Guide Table 18.1 DHCP Server Command Summary Command Description Ref. client-name Assigns a client name page 18-10 clrscr Clears the display screen page 18-11 ddns Configures Dynamic DNS (DDNS) values page 18-12 default-router Configures a default router’s IP address...
Page 661 DHCP Server Instance 18-3 Table 18.1 DHCP Server Command Summary Command Description Ref. service Invokes service commands to troubleshoot or debug page 18-30 instance configurations (config-dhcp) show Displays the running system information page 18-31 unitcast-enable Enables unicast for DHCP page 18-35 update Controls the usage of Dynamic DNS (DDNS) page 18-34...
Page 662: Address
18-4 Motorola RF Switch CLI Reference Guide 18.1.1 address  DHCP Config Commands Specifies a range of addresses for the DHCP network pool Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax address range <low IP address> <high IP address>...
Page 663: Bootfile
DHCP Server Instance 18-5 18.1.2 bootfile  DHCP Config Commands Assigns a bootfile name for the DHCP configuration on the network pool Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax bootfile <FILE> Parameters bootfile <FILE> Sets the boot image for BOOTP clients. The file name can contain letters, numbers, dots and hyphens.
Page 664: Class
18-6 Motorola RF Switch CLI Reference Guide 18.1.3 class  DHCP Config Commands Associates a DHCP class with a pool This command is used in Step 4 of Creating a DHCP User Class. The CLI prompt moves to a sub-instance .The configuration mode...
Page 665: Config-Dhcp-Class
DHCP Server Instance 18-7 3. Create a Pool named , using mode. (config)# RFSwitch(config)#ip dhcp pool WID RFSwitch(config-dhcp)# 4. Associate the DHCP class, created in Step 1 with the pool created in Step 3. The switch supports the association of 8 DHCP classes with a pool. RFSwitch(config-dhcp)#class RFS7000DHCPclass RFSwitch(config-dhcp-class)# 5.
Page 666 18-8 Motorola RF Switch CLI Reference Guide address  config-dhcp-class Sets an address range for a DHCP class within a DHCP server address pool Syntax address range <low IP Address> <high IP Address> Parameters range <low IP Address> Assigns an address range for the DHCP class <high IP Address>...
Page 667: Client-Identifier
DHCP Server Instance 18-9 18.1.4 client-identifier  DHCP Config Commands Assigns a name to the client-identifier A client identifier is used to reserve an IP address for a DHCP client. Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax client-identifier <identifier>...
Page 668: Client-Name
18-10 Motorola RF Switch CLI Reference Guide 18.1.5 client-name  DHCP Config Commands Adds name for DHCP clients Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax client-name <name> Parameters client-name <name> to add a client name (the...
Page 669: Clrscr
DHCP Server Instance 18-11 18.1.6 clrscr  DHCP Config Commands Clears the display screen Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax clrscr Parameters None Example RFSwitch(config-dhcp)#clrscr RFSwitch(config-dhcp)#...
Page 670: Ddns
18-12 Motorola RF Switch CLI Reference Guide 18.1.7 ddns  DHCP Config Commands Sets dynamic DNS parameters Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax ddns [domainname|multiple-user-class|server|ttl] ddns domainname <name> ddns multiple-user-class ddns server <IP Address>...
Page 671 DHCP Server Instance 18-13 Example RFSwitch(config-dhcp)#ddns domainname TestDomain.com RFSwitch(config-dhcp)# RFSwitch(config-dhcp)#ddns multiple-user-class RFSwitch(config-dhcp)# RFSwitch(config-dhcp)#ddns ttl 1000 RFSwitch(config-dhcp)#...
Page 672: Default-Router
18-14 Motorola RF Switch CLI Reference Guide 18.1.8 default-router  DHCP Config Commands Configures the default router or gateway IP address for the network pool. To remove the default router list, use the command. no default-router Supported in the following platforms: •...
Page 673: Dns-Server
DHCP Server Instance 18-15 18.1.9 dns-server  DHCP Config Commands Sets the DNS server’s IP address available to all DHCP clients connected to the pool. Use command to remove the DNS server list. no dns-server Supported in the following platforms: •...
Page 674: Domain-Name
18-16 Motorola RF Switch CLI Reference Guide 18.1.10 domain-name  DHCP Config Commands Sets the domain name for the network pool. Use the command to no domain-name remove the domain name. Supported in the following platforms: • RFS7000 • RFS6000 •...
Page 675: End
DHCP Server Instance 18-17 18.1.11 end  DHCP Config Commands Exits the current mode and moves to the PRIV EXEC mode. The prompt changes to RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax Parameters None Example RFSwitch(config-dhcp)#end RFSwitch#...
Page 676: Exit
18-18 Motorola RF Switch CLI Reference Guide 18.1.12 exit  DHCP Config Commands Ends the current mode and moves to the previous mode (GLOBAL-CONFIG). The prompt changes to RFSwitch#(config)# Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000...
Page 677: Hardware-Address
DHCP Server Instance 18-19 18.1.13 hardware-address  DHCP Config Commands Reserves an IP address (manually) based on a DHCP client’s hardware address. Use the command to remove this from the DHCP pool. hardware-address Supported in the following platforms: • RFS7000 •...
Page 678: Help
18-20 Motorola RF Switch CLI Reference Guide 18.1.14 help  DHCP Config Commands Displays the system’s interactive help in HTML format Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax help Parameters None Example RFSwitch(config-dhcp)#help CLI provides advanced help feature.
Page 679: Host
DHCP Server Instance 18-21 18.1.15 host  DHCP Config Commands Defines a fixed IP address for the host in dotted decimal format Use the command to remove the host from the DHCP pool. no host Supported in the following platforms: •...
Page 680: Lease
18-22 Motorola RF Switch CLI Reference Guide 18.1.16 lease  DHCP Config Commands Sets a valid lease time for the IP address used by DHCP clients in the network pool Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax lease [{<0-365>...
Page 681 DHCP Server Instance 18-23 NOTE: The factory default lease period for a pool – network pool or host pool is configured as 1 day. Example RFSwitch(config-dhcp)#lease 1 0 0 RFSwitch(config-dhcp)# RFSwitch(config)#show running-config ..........................ip dhcp pool Test4lease host 3.33.33.3 client-name test4lease client-identifier tested4lease ..........
Page 682: Netbios-Name-Server
18-24 Motorola RF Switch CLI Reference Guide 18.1.17 netbios-name-server  DHCP Config Commands Sets the netbios-name server’s IP address Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax netbios-name-server <IP> Parameters netbios-name-server <IP> Defines the NetBIOS (WINS) name server •...
Page 683: Netbios-Node-Type
DHCP Server Instance 18-25 18.1.18 netbios-node-type  DHCP Config Commands Defines the netbios-node type Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax netbios-node-type [b-node|h-node|m-node|p-node] Parameters netbios-node-type Defines the NetBIOS (WINS) name servers [b-node | h-node | •...
Page 684: Network
18-26 Motorola RF Switch CLI Reference Guide 18.1.19 network  DHCP Config Commands Sets the network pool’s IP address This address maps the current DHCP pool with a specific network. Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax network [<IP>|<IP/Mask>]...
Page 685: Next-Server
DHCP Server Instance 18-27 18.1.20 next-server  DHCP Config Commands Sets the IP address of the next server in the boot process Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax next-server <IP> Parameters next-server <IP> Sets the next server in boot process •...
Page 686 18-28 Motorola RF Switch CLI Reference Guide 18.1.21 no  DHCP Config Commands Negates a command or sets its defaults Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax no [address|bootfile|class|client-identifier|client-name| ddns|default-router|dns-server|domain-name|hardware-address| host|lease|netbios-name-server|netbios-node-type|network| next-server|option|update|unicast-table] Parameters command negates any command associated with it. Wherever required, use the same parameters associated with the command getting negated.
Page 687: Option
DHCP Server Instance 18-29 18.1.22 option  DHCP Config Commands Defines the DHCP option used in DHCP pools Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax option <option-name> [<IP>|<option-name>] Parameters option name [<IP>| Sets raw DHCP options <option-name>] •...
Page 688: Service
18-30 Motorola RF Switch CLI Reference Guide 18.1.23 service  DHCP Config Commands Invokes service commands to troubleshoot or debug instance (config-dhcp) configurations Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax service show cli Parameters show cli...
Page 689: Show
DHCP Server Instance 18-31 18.1.24 show  DHCP Config Commands Displays current system information Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 SWITCH NOTE: The following commands display only for RFS6000 and RFS4000: • power The following commands display only for RFS7000 and RFS4000: •...
Page 690 18-32 Motorola RF Switch CLI Reference Guide dhcp DHCP Server Configuration environment show environmental information file Display filesystem information firewall Wireless firewall Display FTP Server configuration history Display the session command history interfaces Interface status Internet Protocol (IP) ldap LDAP server...
Page 691 DHCP Server Instance 18-33 version Display software & hardware version virtual-ip IP Redundancy Feature wireless Wireless configuration commands wlan-acl wlan based acl RFSwitch(config-dhcp)#...
Page 692: Update
18-34 Motorola RF Switch CLI Reference Guide 18.1.25 update  DHCP Config Commands Controls the usage of the DDNS service Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax update dns override Parameters update dns override Controls the usage of the DDNS service •...
Page 693: Unitcast-Enable
DHCP Server Instance 18-35 18.1.26 unitcast-enable  DHCP Config Commands Enables unicast for DHCP offer and DHCP Ack Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax unicast-enable Parameters None Example RFSwitch(config-dhcp)#unicast-enable RFSwitch(config-dhcp)#...
Page 694: Configuring The Dhcp Server Using Switch Cli
18-36 Motorola RF Switch CLI Reference Guide 18.2 Configuring the DHCP Server using Switch CLI The switch DHCP configuration is conducted by creating pools and mapping them to L3 interfaces (SVI). • A Network pool is the pool with “include” ranges. When the network pool is mapped to a L3 interface, DHCP clients requesting IPs from the L3 interface get an IP from the configured range.
Page 695: Creating Network Pool
DHCP Server Instance 18-37 18.2.1 Creating network pool To create a network pool: 1. Create a DHCP server dynamic address pool. RFSwitch(config)#ip dhcp pool test 2. Map the DHCP pool to the network pool. RFSwitch(config-dhcp)#network 192.168.0.0/24 3. Add the address range for the dynamic pool. RFSwitch(config-dhcp)#address range 192.168.0.30 192.168.0.60 4.
Page 696: Creating A Host Pool
18-38 Motorola RF Switch CLI Reference Guide 18.2.2 Creating a Host Pool To create a host pool: 1. Create a DHCP server host address pool. RFSwitch(config)#ip dhcp pool hostpool 2. Assign the client name of the host for which static allocation is required.
Page 697: Troubleshooting Dhcp Configuration
DHCP Server Instance 18-39 18.2.3 Troubleshooting DHCP Configuration 1. The DHCP Server is disabled by default. Use the following command to enable the DHCP Server: RFSwitch(config)#service dhcp This command administratively enables the DHCP server. If the DHCP configuration is incomplete, it is possible the DHCP server will be disabled even after the execution of this command.
Page 698 18-40 Motorola RF Switch CLI Reference Guide 5. A host pool should have its corresponding network pool configured, otherwise the host pool is useless. The fixed IP address configured in the host pool must be in the subnet of the corresponding network pool.
Page 699: Creating A Dhcp Option
DHCP Server Instance 18-41 18.2.4 Creating a DHCP Option To create a DHCP option: 1. To create a non standard option named “tftp-server”. RFSwitch(config)#ip dhcp option tftp-server 183 ip 2. Enter the DHCP pool —”test”. RFSwitch(config)#ip dhcp pool test 3. Assign a value to the DHCP option configured above. RFSwitch(config-dhcp)#option tftp-server 192.168.0.100 4.
Page 700 18-42 Motorola RF Switch CLI Reference Guide...
Page 701: Chapter 19. Radius Server Instance
Radius Server Instance Use the instance to configure local RADIUS server parameters. (config-radsrv) Local (Onboard) RADIUS server commands are listed under this mode. To navigate to this instance, use the command: RFSwitch(config)#radius-server local RFSwitch(config-radsrv)# 19.1 Radius Configuration Commands Table 19.1 summarizes the Global Config command: Table 19.1 RADIUS Server Command Summary Command...
Page 702 19-2 Motorola RF Switch CLI Reference Guide Table 19.1 RADIUS Server Command Summary Command Description Ref. group Sets RADIUS user group parameters. page 19-10 NOTE: This command navigates to another sub-instance called with config-radsrv-group its own command summary. help Displays the interactive help system...
Page 703: Authentication
Radius Server Instance 19-3 19.1.1 authentication  Radius Configuration Commands Configures the authentication scheme used with the RADIUS server Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax authentication [data-source|eap-auth-type] authentication data-source [ldap|local] authentication eap-auth-type [all|peap-gtc| peap-mschapv2|tls|ttls-md5|ttls-mschapv2|ttls-pap] Parameters authentication Configures authentication...
Page 704 19-4 Motorola RF Switch CLI Reference Guide eap-auth-type Defines RADIUS EAP and default authentication [all| configurations peap-gtc| peap-mschapv2|tls| • all – Enables TTLS and PEAP settings ttls-md5|ttls-mschapv2 • peap-gtc – Defines the EAP and PEAP settings used with ttls-pap] the default authentication configuration •...
Page 705 Radius Server Instance 19-5 19.1.2 ca  Radius Configuration Commands Configures CA (Certificate Authority) parameters Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax ca trust-point <trustpoint-name> Parameters trust-point Defines the trustpoint configuration <trustpoint-name> • <trustpoint-name> – Displays the existing trustpoint name Usage Guidelines Configures the trustpoint used by the local RADIUS server.
Page 706: Clrscr
19-6 Motorola RF Switch CLI Reference Guide 19.1.3 clrscr  Radius Configuration Commands Clears the display screen Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax clrscr Parameters None Example RFSwitch(config-radsrv)#clrscr RFSwitch(config-radsrv)#...
Page 707: Crl-Check
Radius Server Instance 19-7 19.1.4 crl-check  Radius Configuration Commands Enables a Certificate Revocation List (CRL) check To enable the certificate revocation list, ensure the is loaded using a crl list command. crypto pki import <trustpoint-name> crl Supported in the following platforms: •...
Page 708: End
19-8 Motorola RF Switch CLI Reference Guide 19.1.5 end  Radius Configuration Commands Ends and exits the current mode and moves to the PRIV EXEC mode. The prompt changes RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000...
Page 709: Exit
Radius Server Instance 19-9 19.1.6 exit  Radius Configuration Commands Ends the current mode and moves to the previous mode (GLOBAL-CONFIG). The prompt changes to RFSwitch(config)# Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax exit Parameters None Example RFSwitch(config-radsrv)#exit...
Page 710: Group
19-10 Motorola RF Switch CLI Reference Guide 19.1.7 group  Radius Configuration Commands Configures RADIUS user groups The CLI moves to the sub-instance to create a new group. config-radsrv-group The prompt changes from RFSwitch(config-radsrv)# RFSwitch(config-radsrv-group)# Supported in the following platforms: •...
Page 711: Clrscr
Radius Server Instance 19-11 Table 19.2 RADIUS User Group Command Summary Command Description Ref. service Invokes RADIUS service commands if stopped page 19-18 show Displays running system information page 19-19 19.1.7.1 clrscr  group Clears the display screen Syntax clrscr Parameters None Example...
Page 712: Exit
19-12 Motorola RF Switch CLI Reference Guide 19.1.7.3 exit  group Ends the current mode and moves to the previous mode ). The prompt (config-radsrv) changes to RFSwitch(config)# Syntax exit Parameters None Example RFSwitch(config-radsrv-group)#exit RFSwitch(config-radsrv)#group 19.1.7.4 group  group Establishes RADIUS user group parameters. This command creates a group within the...
Page 713: Help
Radius Server Instance 19-13 Parameters enable Defines this group as a guest group guest-group Usage Guidelines Creates a guest group. The guest user created using can only be part of the rad-user guest group. Example RFSwitch(config-radsrv-group)#guest-group enable RFSwitch(config-radsrv-group)# 19.1.7.6 help ...
Page 714 19-14 Motorola RF Switch CLI Reference Guide 19.1.7.7 no  group Use this command to negate a command or set its defaults Syntax no [policy|rad-user|rate-limit] no policy [day|time|vlan|wlan] no policy wlan [<1-256>|all] <1-256> no rate-limit [wired-to-wireless|wireless-to-wired] Parameters policy [day|time|vlan| Defines the RADIUS group access policy configuration wlan] •...
Page 715: Policy
Radius Server Instance 19-15 RFSwitch(config-radsrv-group)# RFSwitch(config-radsrv-group)#no policy vlan RFSwitch(config-radsrv-group)# RFSwitch(config-radsrv-group)#no policy wlan 2 5 RFSwitch(config-radsrv-group)# RFSwitch(config-radsrv-group)#no rad-user all RFSwitch(config-radsrv-group)# RFSwitch(config-radsrv-group)#no service radius %%Info: Radius service stopped... RFSwitch(config-radsrv-group)# 19.1.7.8 policy  group Sets the authorization policies for a particular group (like day/time of access, WLANs allowed etc.) NOTE: A user-based VLAN is effective only if dynamic VLAN authorization is enabled for the WLAN (as defined within the WLAN...
Page 716 19-16 Motorola RF Switch CLI Reference Guide Parameters Day of access policy configuration [all|su|mo|tu|we|th|fr|sa| • all – All days (from Sunday to Saturday) weekdays] • su – Sunday • mo – Monday • tu – Tuesday • we – Wednesday •...
Page 717: Rad-User
Radius Server Instance 19-17 RFSwitch(config-radsrv-group)#policy wlan 20 21 22 23 RFSwitch(config-radsrv-group)# 19.1.7.9 rad-user  Radius Configuration Commands Adds an existing RADIUS user to this group. If the RADIUS user is not available in the Onboard RADIUS server’s database, create a new RADIUS user using the rad-user command from within the mode.
Page 718 19-18 Motorola RF Switch CLI Reference Guide wireless-to-wired Up link direction from wireless client to network <100-100000> • <100-100000> – Rate in the range of <100-100000> kbps Usage Guidelines to remove the [no] rate-limit [wired-to-wireless|wireless-to-wired] rate limit applied to the group.
Page 719 Radius Server Instance 19-19 +-enable [guest-group enable] +-help [help] ......................................... RFSwitch(config-radsrv-group)# 19.1.7.12 show  Radius Configuration Commands Displays current system information running on the switch Syntax show <paramater> Parameters Displays the parameters for which information can be viewed using the show command Example RFSwitch(config-radsrv-group)#show ?
Page 720 19-20 Motorola RF Switch CLI Reference Guide history Display the session command history interfaces Interface status Internet Protocol (IP) ldap LDAP server licenses Show any installed licenses logging Show logging configuration and buffer Internet Protocol (IP) mac-name Displays the co nfigured MAC names...
Page 721 Radius Server Instance 19-21 RFSwitch(config-radsrv-group)# 19.1.7.13 Example–Creating a Group sub-instance is explained in the example below: (config-radsrv-group) 1. Create a group called Sales in the local RADIUS server database. RFSwitch(config-radsrv)#group sales 2. Check the RADIUS user group’s configuration. RFSwitch(config-radsrv-group)#? RADIUS user group configuration commands: 3.
Page 722 19-22 Motorola RF Switch CLI Reference Guide RFSwitch(config-radsrv)#nas 10.10.10.0/24 ? Radius client shared secret RFSwitch(config-radsrv)#nas 10.10.10.0/24 key ? Password is specified UNENCRYPTED Password is encrypted with password-encryption secret LINE The secret(client shared secret), upto 32 characters RFSwitch(config-radsrv)#nas 10.10.10.0/24 key 0 very-secret!! 8.
Page 723 Radius Server Instance 19-23 19.1.8 help  Radius Configuration Commands Displays the system’s interactive help in HTML format Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax help Parameters None Example RFSwitch(config-radsrv)#help? help Description of the interactive help system RFSwitch(config-radsrv)#help CLI provides advanced help feature.
Page 724 19-24 Motorola RF Switch CLI Reference Guide 19.1.9 ldap-agent  Radius Configuration Commands Sets the LDAP agent parameters. Supported in the following platforms: RFS7000 RFS6000 RFS4000 Syntax ldap-agent[join|join-retry-timeout<60-300> |primary|secondary] ldap-agent join ldap-agent join-retry-timeout <60-300> ldap-agent primary domain-name <WORD> domain-admin-user <WORD> domain-admin-password[0<WORD>|2<WORD>|<WORD>] ldap-agent secondary domain-name <WORD>...
Page 725 Radius Server Instance 19-25 primary Sets the primary LDAP server agent configuration. • domain-name – Sets the LDAP server domain name. • <WORD> – Sets the LDAP server domain name of size 127 • domain-admin-user – Sets the LDAP server administrator username •...
Page 726 19-26 Motorola RF Switch CLI Reference Guide secondary Sets the secondary LDAP server agent configuration. domain-name Sets the LDAP server domain • – name • <WORD> – Sets the LDAP server domain name of size 127 • domain-admin-user – Sets the LDAP server administrator username •...
Page 727 Radius Server Instance 19-27 WORD LDAP server domain admin password of size 63 RFS7000(config-radsrv)#ldap-agent primary domain-name MOTOROLA domain-admin-user Administrator domain-admin- password 0 <Admin user password> RFS7000(config-radsrv)#...
Page 728 19-28 Motorola RF Switch CLI Reference Guide 19.1.10 ldap-group-verification  Radius Configuration Commands Enables or disables the group verification setting. By default, this is enabled. Supported in the following platforms: RFS7000 RFS6000 RFS4000 Syntax ldap-group-verification [disable|enable] Parameters disable Disables the group verification setting enable Enables the group verification setting.
Page 729: Ldap-Server
Radius Server Instance 19-29 19.1.11 ldap-server  Radius Configuration Commands Sets the LDAP server configuration It uses the existing external database (active directory with the onboard RADIUS server) instead of the local database on the switch. Supported in the following platforms: •...
Page 730 19-30 Motorola RF Switch CLI Reference Guide ldap-server primary host Sets the primary LDAP server’s configuration <IP> port <1-65535> • host < IP> – Sets the LDAP server’s IP configuration login <user-name> • <IP> – Defines the LDAP server IP address bind-dn •...
Page 731 Radius Server Instance 19-31 ldap-server secondary host Defines the secondary LDAP server’s configuration. <IP> port <1-65535> login <user-name> bind-dn <distinguished-name> base-dn <distinguished-name> passwd {<password>|<password> |<password>} passwd-attr <password- attribute> group-attr <group-attribute> group-filter <group-filter> group-membership <group> net-timeout <1-10> Usage Guidelines Use the login filter and group filter values (described in the example below) for all LDAP configuration scenarios Use the parameter to enter the password for the active directory user mentioned...
Page 732 19-32 Motorola RF Switch CLI Reference Guide dap-UserDn}))) group-membership radiusGroupName net-timeout RFSwitch(config)#...
Page 733 Radius Server Instance 19-33 19.1.12 nas  Radius Configuration Commands Sets the configuration of the RADIUS client Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax nas <IP/Mask> key [0<key>|2<key>|<key>] Parameters <IP/Mask> Sets the RADIUS client’s IP address [0<key>|2<key>|<key>] Sets the RADIUS client’s shared key •...
Page 734 19-34 Motorola RF Switch CLI Reference Guide 19.1.13 no  Radius Configuration Commands Negates a command or sets its defaults Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax no [authentication|ca|crl-check|group|ldap-server|nas|proxy| rad-user|server] Parameters None Example RFSwitch(config-radsrv)#no authentication data-source...
Page 735: Proxy
Radius Server Instance 19-35 19.1.14 proxy  Radius Configuration Commands Configures a proxy RADIUS server based on the realm/suffix Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax proxy [realm|retry-count|retry-delay] proxy relam <relam-name> server <IP> port <1024-65535> secret{<secret>|<secret>|<secret>} Parameters relam <relam-name>...
Page 736 19-36 Motorola RF Switch CLI Reference Guide Example RFSwitch(config-radsrv)#proxy realm Test server 10.10.10.1 port 2220 secret "Very Very Secret !!!" RFSwitch(config-radsrv)# RFSwitch(config-radsrv)#proxy retry-count 5 RFSwitch(config-radsrv)# RFSwitch(config-radsrv)#proxy retry-delay 8 RFSwitch(config-radsrv)#...
Page 737: Rad-User
Radius Server Instance 19-37 19.1.15 rad-user  Radius Configuration Commands Sets RADIUS user parameters Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax rad-user <user-name> rad-user <user-name> [access|password|privilege] access [console|ssh|telnet|web] rad-user <user-name> rad-user <user-name> password [0 <password>|2 <password> |<password>] group guest expiry-time <HH:MM>...
Page 738 19-38 Motorola RF Switch CLI Reference Guide password Sets the RADIUS user password [0<password>|2<passwo • 0 <password> – Defines the password as rd>|<password>] group UNENCRYPTED guest expiry-time • 2 <password> – The password is encrypted with a <HH:MM> expiry-date password encryption secret <MM:DD:YYYY>...
Page 739 Radius Server Instance 19-39 privilege Set management user access privilege [helpdesk|monitor| • helpdesk nwadmin|superuser| [monitor|nwadmin|superuser|sysadmin|webadmin]– sysadmin|webadmin] helpdesk (troubleshooting) access • monitor [helpdesk|nwadmin|superuser|sysadmin|webadmin]– Monitor (read-only) access • nwadmin [helpdesk|monitor|superuser|sysadmin|webadmin]– Network (wired&wireless) admin access superuser[helpdesk|monitor|nwadmin|sysadmin|webad min– Superuser (root) access • sysadmin [helpdesk|monitor|nwadmin|superuser|webadmin] –...
Page 740: Server
19-40 Motorola RF Switch CLI Reference Guide 19.1.16 server  Radius Configuration Commands Configures server certificate parameters used by a RADIUS server The server certificate is a part of a trustpoint created using crypto on page 5-22. Supported in the following platforms: •...
Page 741: Service
Radius Server Instance 19-41 19.1.17 service  Radius Configuration Commands Invokes the service commands to troubleshoot or debug the instance (config-radsrv) configuration This command is also used to enable the RADIUS server. Supported in the following platforms: • RFS7000 • RFS6000 •...
Page 742 19-42 Motorola RF Switch CLI Reference Guide +-ttls-mschapv2 [authentication eap-auth-type (ttls- md5|ttls-...
Page 743 Radius Server Instance 19-43 19.1.18 show  Radius Configuration Commands Displays current system information running on the switch Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 SWITCH NOTE: The following commands display only for RFS6000 and RFS4000: •...
Page 744 19-44 Motorola RF Switch CLI Reference Guide dhcp DHCP Server Configuration environment show environmental information file Display filesystem information firewall Wireless firewall Display FTP Server configuration history Display the session command history interfaces Interface status Internet Protocol (IP) ldap LDAP server...
Page 745 Radius Server Instance 19-45 virtual-ip IP Redundancy Feature wireless Wireless configuration commands wlan-acl wlan based acl RFSwitch(config-radsrv)#show...
Page 746: Ldap-Group-Verification
19-46 Motorola RF Switch CLI Reference Guide 19.1.19 ldap-group-verification  Radius Configuration Commands Displays ldap group verification settings • RFS7000 • RFS6000 • RFS4000 Syntax ldap-group-verification [disable|enable] Parameters ldap-group-verification Displays ldap group verification settings [disable|enable] • disable – Disables group verification •...
Page 747 Wireless Instance Use the instance to configure local RADIUS server parameters (config-wireless) associated with the switch. To navigate to this instance, use the command from the Global Config mode. RFSwitch(config)#wireless RFSwitch(config-wireless)# 20.1 Wireless Configuration Commands This table summarizes commands: (config-wireless) Command Description Ref.
Page 748 20-2 Motorola RF Switch CLI Reference Guide Command Description Ref. ap-containment Defines the Rogue AP containment page 20-20 configuration ap-detection Defines the AP detection configuration page 20-21 ap-image Defines the path to upload the new image over page 20-23 an AP...
Page 749 Wireless Instance 20-3 Command Description Ref. dhcp-one-portal- Enables forwarding of DHCP responses to one page 20-44 forward portal. dhcp-sniff-state Records mobile unit DHCP state information page 20-45 dot11-shared-key-auth Enables support for 802.11 shared key page 20-46 authentication Ends the current mode and moves to the EXEC page 20-47 mode exit...
Page 750: Show
Displays running system information page 20-106 smart-rf Config Smart-RF Management Parameters page 20-118 smart-scan-channels Specify a list channels to motorola clients to page 20-119 perform smart-scan wlan Sets WLAN related parameters page 20-120 wlan-bw-allocation Allocates radio bandwidth (per WLAN)
Page 751: Chapter 20. Wireless Instance
Wireless Instance 20-5 Command Description Ref. non-preferred-ap- Displays number of attempts after which page 20-155 attempts-threshold switch will adopt non preferred APs test Testing neighbor report page 20-156...
Page 752: Wireless Configuration Commands
20-6 Motorola RF Switch CLI Reference Guide 20.1.1 aap  Wireless Configuration Commands Defines the AAP configuration Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 The number of AAP’s supported differ from switch to switch. • RFS7000 – Supports up to 256 AAP’s •...
Page 753 Wireless Instance 20-7 config-apply Applies AAP configuration settings [def-delay|mesh-delay] • def-delay – Sets the default time to delay before <30-10000> applying AAP configuration • <30 -10000> – Set the delay time (in seconds) • mesh-delay – Defines the interval to delay before applying AAP configuration to Mesh APs •...
Page 754 20-8 Motorola RF Switch CLI Reference Guide Usage Guidelines to disable the auto-upgrade facility on the {no} aap auto-upgrade enable switch Example RFSwitch(config-wireless)#aap config-apply mesh-delay 300 RFSwitch(config-wireless)# RFS6000(config-wireless)#aap fwupdate mode test aap fwupdate mode test RFS6000(config-wireless)# RFS6000(config-wireless)#aap fwupdate stagger-count 1...
Page 755: Admission-Control
Wireless Instance 20-9 20.1.2 admission-control  Wireless Configuration Commands Enable admission control for voice traffic across all radios Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax admission-control voice enable Parameters voice enable Enables admission control for voice on all radios. Usage Guidelines to disable Admission Control for voice {no} admission-control voice enable...
Page 756: Adopt-Unconf-Radio
20-10 Motorola RF Switch CLI Reference Guide 20.1.3 adopt-unconf-radio  Wireless Configuration Commands Adopts a radio (even if not yet configured). Default templates are used for configuring the adopted radio Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000...
Page 757: Adoption-Pref-Id
Wireless Instance 20-11 20.1.4 adoption-pref-id  Wireless Configuration Commands Preference identifier for the switch All radios configured with this preference identifier are more likely to be adopted by this switch. Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax adoption-pref-id <pref-id>...
Page 758 20-12 Motorola RF Switch CLI Reference Guide 20.1.5 ap  Wireless Configuration Commands Defines the name, location and other parameters of access ports Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax ap [<1-256>|<LIST>|<MAC-ADDRESS>|all-aap|default-aap] [ABG Scan|aap-log-storage|aap-admin-passwd| ||adoption-policy|...
Page 759 Wireless Instance 20-13 ap <LIST> aap-syslog-srvr enable level <0-7> ipaddr ap <LIST> country-code <country-code> ap <LIST> leds (enable) ap <LIST> location <location> ap <LIST> name <name> ap <LIST> secure-mode [enable|secret [0 <secret>|2 <secret>|<secret>] ap <LIST> secure-mode-staging enable ap <MAC-ADDRESS> aap-admin-passwd ap <MAC-ADDRESS>...
Page 760 20-14 Motorola RF Switch CLI Reference Guide <1-256> Sets a single AP index. Use the show wireless ap [ABG Scan|adoption- command to view the AP’s index value. policy|aap-admin- • ABG Scan enable – Configures the ABG scan mode on passwd||aap-log-...
Page 761 Wireless Instance 20-15 • leds (enable) – Configures ap LEDs • enable – Enables LEDs • location <location> – Defines the location description of the AP • <location> – A string of upto 40 character’s name <name> – Sets the name of this AP •...
Page 762 20-16 Motorola RF Switch CLI Reference Guide • aap-ipfilter-list – Configures aap IP filter listaap-lan1-ipf- rules – Configures aap Lan 1 IP filter rules • aap-lan1-trunking [disable|enable] – Configures trunking on LAN1 of AAP • disable – Disables trunking on AAP LAN 1 inerface •...
Page 763 Wireless Instance 20-17 <MAC-address> Lists an AP’s MAC address. [ABD-Scan|aap-admin- passwd|aap-log- storage|aap-syslog- srvr|adoption-policy| country-code |location|ledsl| name|radio-config| secure-code| secure-mode- stagging|aap-ipfilter-list | aap-lan1-ipf-rules|aap- lan1-trunking]...
Page 764 20-18 Motorola RF Switch CLI Reference Guide [all-aap|default-aap] Configures all AAP or default AAP LAN1 trunking aap-lan1-trunking parameters • all-aap aap-lan1-trunking – Configures the AAP LAN1 trunking parameters • disable – Disables trunking on AAP LAN1 interface • enable – Enables trunking on AAP LAN1 interface •...
Page 765 Wireless Instance 20-19 to disable secure-mode staging to {no} ap <list> secure-mode-staging enable a set of APs (specified by LIST). The AP's MAC, and staging mode will be saved in the running configuration. In this mode, switch will not send at all configured shared secret in the Join response to the AP and AP will not get adopted by the switch.
Page 766: Ap-Containment
20-20 Motorola RF Switch CLI Reference Guide 20.1.6 ap-containment  Wireless Configuration Commands Sets the rogue AP containment parameters Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax ap-containment [add <MAC>|enable|interval <interval>) Parameters add <MAC> Adds an AP’s MAC Address <MAC> into the rogue AP...
Page 767: Ap-Detection
Wireless Instance 20-21 20.1.7 ap-detection  Wireless Configuration Commands Configures access port detection parameters Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax ap-detection [add|detect-wired-rouge|enable| mu-assisted-scan|timeout] ap-detection add <list-index>[authorized|ignored] [<MAC>|any] <LINE>|any] ap-detection detect-wired-rouge enable ap-detection enable ap-detection mu-assisted-scan [enable|refresh <refresh- period>] ap-detection timeout [authorized|unauthorized|ignored] <timeout>...
Page 768 20-22 Motorola RF Switch CLI Reference Guide detect-wired-rouge Detection of the rogue APs which are also found on the enable wired network • enable – Starts detecting rogue APs on the wired network enable Allows access ports to look for APs...
Page 769: Ap-Image
Wireless Instance 20-23 20.1.8 ap-image  Wireless Configuration Commands Defines the path to upload the new image over an AP Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax ap-image [ap100|ap300-ids-sensor|ap300-wisp|ap300-wispe| ap4131|ap5131|ap650-wispe|ap7131|revert-ap4131] <file-path> Parameters [ap100| The interface to upload new AP image. The following APs ap300-ids-sensor| are supported: ap300-wisp|...
Page 770: Ap-Ip
20-24 Motorola RF Switch CLI Reference Guide 20.1.9 ap-ip  Wireless Configuration Commands Modifies the static IP address for an access port Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax ap-ip [<AP-list/MAC>|default-ap] ap-ip <AP-list/MAC> [static-ip|switch-ip] ap-ip <AP-list/MAC> static-ip <IP/Mask> <gateway-IP>...
Page 771 Wireless Instance 20-25 default-ap switch-ip [ Sets the default static switch IP address add <IP-list>| • switch-ip – Static switch IP address delete [<IP-index>|<IP>]| • add – Adds a static switch IP address set-default] • delete[<IP-index>|<IP>] – Deletes a static switch IP address •...
Page 772: Ap-Standby-Attempts-Threshold
20-26 Motorola RF Switch CLI Reference Guide 20.1.10 ap-standby-attempts-threshold  Wireless Configuration Commands Sets the number of attempts after which the standby switch starts adopting APs. Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax ap-standby-attempts-threshold <attempts>...
Page 773: Ap-Timeout
Wireless Instance 20-27 20.1.11 ap-timeout  Wireless Configuration Commands Changes the default inactivity timeout for access ports Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax ap-timeout <index> <timeout> Parameters • <index> – Access-ports identified by a single index or by <index>...
Page 774: Ap-Udp-Port
20-28 Motorola RF Switch CLI Reference Guide 20.1.12 ap-udp-port  Wireless Configuration Commands Configures the UDP port for layer 3 adoption of APs You also need to configure the DHCP server providing the APs the same parameter. Supported in the following platforms: •...
Page 775: Auto-Select-Channels
Wireless Instance 20-29 20.1.13 auto-select-channels  Wireless Configuration Commands Specifies a list of channels that will be used when automatic channel scan (ACS) and dynamic frequency selection (DFS) Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax auto-select-channels [11a|11bg] [<channel-list>| add <channel-list>|remove <channel-list>] Parameters...
Page 776: Broadcast-Tx-Speed
20-30 Motorola RF Switch CLI Reference Guide 20.1.14 broadcast-tx-speed  Wireless Configuration Commands Configure the rate at which broadcast and multicast traffic is transmitted between the switch and mobile unit Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000...
Page 777: Client
Wireless Instance 20-31 20.1.15 client  Wireless Configuration Commands Use this command to configure a wireless client This command creates an exclude-list or include list. Creating a list moves the user to a new mode config-wireless-client-list Refer section config-wireless-client-list Commands on page 20-33 command summary.
Page 778: Configuring A Client
20-32 Motorola RF Switch CLI Reference Guide 20.1.15.1 Configuring a Client Refer to the configurations below to: • Create an exclude list. RFSwitch(config-wireless)#client exclude-list protected-hosts RFSwitch(config-wireless-client-list)# • Add a host entry into the exclude list. RFSwitch(config-wireless-client-list)# station printers 00:00:AA:DD:EE:11/00:00:FF:DD:EE:11 RFSwitch(config-wireless-client-list)# station testing-host1 00:11:AA:03:1B:FE •...
Page 779: Config-Wireless-Client-List Commands
Wireless Instance 20-33 20.1.15.2 config-wireless-client-list Commands to enter the ( (config-wireless)# client config-wireless-client-list) instance. Use this instance, to create an exclude list or include list. This table summarizes commands: config-wireless-client-list Command Description clrscr Clears the display screen Ends the current mode and moves to the EXEC mode exit Ends the current mode and moves to the previous mode help...
Page 780 20-34 Motorola RF Switch CLI Reference Guide Parameters <host-name> Defines an index for this host entry in the client list. The [<MAC>|<MAC/Mask>] host station name <host-name> must be of size 1-21 characters. • <MAC> –Sets the MU mac address in AA-BB-CC-DD-EE- FF or AA:BB:CC:DD:EE:FF or AABB.CCDD.EEFF format...
Page 781: Clrscr
Wireless Instance 20-35 20.1.16 clrscr  Wireless Configuration Commands Clears the display screen Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax clrscr Parameters None Example RFSwitch(config-wireless)#clrscr RFSwitch(config-wireless)#...
Page 782: Cluster-Master-Support
20-36 Motorola RF Switch CLI Reference Guide 20.1.17 cluster-master-support  Wireless Configuration Commands Sets the parameters for cluster master support.This is required for cluster level functions Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax cluster-master-support enable...
Page 783: Convert-Ap
Wireless Instance 20-37 20.1.18 convert-ap  Wireless Configuration Commands Changes the mode of operation of an AP to either sensor or standalone Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 NOTE: The number of APs supported by command differs convert-ap for each switch.
Page 784 20-38 Motorola RF Switch CLI Reference Guide Parameters <ap-index> Sets the indices of the APs to be converted. [default|sensor| • <ap-index> – The index of the AP to be converted. This standalone] index can be found from the 'show wireless ap' command •...
Page 785: Converting An Ap To Sensor
Wireless Instance 20-39 Example RFSwitch(config-wireless)#convert-ap 1 default 20.1.18.1 Converting an AP to Sensor To convert an AP300 to a sensor: 1. Use command to setup the sensor. sensor RFSwitch(config-wireless)#sensor default-config ? ip-mode configure the IP address mode of the sensors wips-server-ip specify IP addresses of the WIPS server Select either as the sensor parameter.
Page 786: Country-Code
20-40 Motorola RF Switch CLI Reference Guide 20.1.19 country-code  Wireless Configuration Commands Sets the country of operation All existing radio configurations will be erased Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 country-code <country-code> Parameters <country-code>...
Page 787: Debug
Wireless Instance 20-41 20.1.20 debug  Wireless Configuration Commands Debugging functions for the Cellcontroller (wireless) Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax debug cc [access-port|all|alt|ap-containment|ap-detect| capwap|cluster|config|dot11|eap|ids|kerberos|l3-mob|loc-ap| loc-mu|media|mobile-unit|radio|radius|self-heal|smart|snmp| system|wips|wisp|wlan] {debug|err|info|warn} Parameters access-port Sets the parameters for the access-port logs Sets the parameters for all the modules Sets the parameters for the address lookup logs ap-containment...
Page 788 20-42 Motorola RF Switch CLI Reference Guide loc-ap Sets the parameters for the AP locationing logs loc-mu Sets the parameters for the MU locationing logs media Sets the parameters for the encapsulation media logs mobile-unit Sets the parameters for the mobile-unit logs...
Page 789 Wireless Instance 20-43 capwap capwap logs cluster cluster related logs config configuration change logs dot11 datapath logs 802.1x/eap logs intrusion detection logs kerberos kerberos logs l3-mob Layer3 mobility logs loc-ap loc-ap logs loc-mu loc-mu logs media encapsulation media logs mobile-unit mobile-unit logs radio radio logs...
Page 790: Dhcp-One-Portal-Forward
20-44 Motorola RF Switch CLI Reference Guide 20.1.21 dhcp-one-portal-forward  Wireless Configuration Commands Enables the option to forward DHCP responses to one portal when the destination mobile- unit is known from the response content Supported in the following platforms: • RFS7000 •...
Page 791: Dhcp-Sniff-State
Wireless Instance 20-45 20.1.22 dhcp-sniff-state  Wireless Configuration Commands Records mobile unit DHCP state information Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax dhcp-sniff-state enable Parameters enable Allows support for recording DHCP state information for mobile units Use the command to disable recording mobile unit {no} dhcp-sniff-state enable...
Page 792: Dot11-Shared-Key-Auth
20-46 Motorola RF Switch CLI Reference Guide 20.1.23 dot11-shared-key-auth  Wireless Configuration Commands Enables support for 802.11 shared key authentication NOTE: Shared key authentication has known weaknesses that can compromise your WEP key. It should only be configured to accommodate wireless stations unable to carry out Open-System authentication.
Page 793: End
Wireless Instance 20-47 20.1.24 end  Wireless Configuration Commands Ends and exits the current mode and changes to the PRIV EXEC mode. The prompt changes RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax Parameters None Example RFSwitch(config-wireless)#end RFSwitch#...
Page 794: Exit
20-48 Motorola RF Switch CLI Reference Guide 20.1.25 exit  Wireless Configuration Commands Ends the current mode and moves to the previous mode (GLOBAL-CONFIG). The prompt changes to RFSwitch(config)# Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000...
Page 795: Fix-Broadcast-Dhcp-Rsp
Wireless Instance 20-49 20.1.26 fix-broadcast-dhcp-rsp  Wireless Configuration Commands Converts broadcast DHCP server responses to unicast Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax fix-broadcast-dhcp-rsp enable Parameters enable Enables support for converting broadcast DHCP server responses to unicast Usage Guidelines Use the command to disable converting...
Page 796: Help
20-50 Motorola RF Switch CLI Reference Guide 20.1.27 help  Wireless Configuration Commands Displays the system’s interactive help (in HTML format) Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax help Parameters None Example RFSwitch(config-wireless)#help CLI provides advanced help feature.
Page 797: Hotspot
Wireless Instance 20-51 20.1.28 hotspot  Wireless Configuration Commands Configures the WLAN hotspot configuration This overrides or adds to the existing hotspot configuration on the WLAN. Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax hotspot query <query-index> <WORD> [ap-mac|mu-mac||ssid|mu-ip|switch-ip|switch-name||user- string] Parameters...
Page 798 20-52 Motorola RF Switch CLI Reference Guide RFSwitch(config-wireless)# hotspot query 2 from mu-ip RFSwitch(config-wireless)#...
Page 799: Load-Balance
Wireless Instance 20-53 20.1.29 load-balance  Wireless Configuration Commands Configures the user load balance mode Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax load-balance [by-count|by-throughput] Parameters by-count In load balance by user count, the load on the radio is measured by the number of MUs associated.
Page 800: Mac-Auth-Local
20-54 Motorola RF Switch CLI Reference Guide 20.1.30 mac-auth-local  Wireless Configuration Commands Configures the local MAC authentication list Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax mac-auth-local <1-1000> [allow|deny|rate-limit] mac-auth-local <1-1000> [allow|deny] <starting-MAC> <ending-MAC> [<list>|not-mapped] {<radio-desc>| zone [<1-48>|default|unknown]}...
Page 801 Wireless Instance 20-55 <radio-desc> Optional radio description substring. zone Optional GeoFencing location information for devices [<1-48>|default| matching this ACL information. unknown] • <1-48> – Administrator defined-id • default – The user has been located within the site in the default zone •...
Page 802: Manual-Wlan-Mapping
20-56 Motorola RF Switch CLI Reference Guide 20.1.31 manual-wlan-mapping  Wireless Configuration Commands Manually maps WLANs configured on a radio Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax manual-wlan-mapping enable Parameters enable Enables support for manual WLAN mapping.
Page 803: Mobile-Unit
Wireless Instance 20-57 20.1.32 mobile-unit  Wireless Configuration Commands Configures mobile unit related parameters Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax mobile-unit [association-history|probe-history] mobile-unit association-history [enable|clear] mobile-unit probe-history [enable|add <1-200> <MAC>] Parameters association-history Enables a mobile unit’s association history. [enable|clear] •...
Page 804: Mobility
20-58 Motorola RF Switch CLI Reference Guide 20.1.33 mobility  Wireless Configuration Commands Sets mobility parameters Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax mobility [enable|local-address|max-roam-period|peer] mobility enable mobility local-address <IP> mobility max-roam-period <1-300> mobililty peer <IP>...
Page 805: Multicast-Packet-Limit
Wireless Instance 20-59 20.1.34 multicast-packet-limit  Wireless Configuration Commands Sets a multicast packet limit, per second, for a VLAN. This limits the broadcast/multicast packets per VLAN. The default value is 32 broadcast/multicast packets per second. Setting the limit to 0 disables this control. Supported in the following platforms: •...
Page 806: Multicast-Throttle-Watermark
20-60 Motorola RF Switch CLI Reference Guide 20.1.35 multicast-throttle-watermark  Wireless Configuration Commands Configures watermarks for supporting bursts of broadcast/multicast frames Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax multicast-throttle-watermarks low <0-100> high <0-100> Parameters low <0-100>...
Page 807: Nas-Id
Wireless Instance 20-61 20.1.36 nas-id  Wireless Configuration Commands Configures the NAS ID to be sent to the RADIUS server Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax nas-id <nas-id> To override nas-id on a per WLAN basis: wlan <1-4098>...
Page 808: Nas-Port-Id
20-62 Motorola RF Switch CLI Reference Guide 20.1.37 nas-port-id  Wireless Configuration Commands Configures the NAS port ID that must be sent to the RADIUS server Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax nas-port-id <port-id>...
Page 809 Wireless Instance 20-63 20.1.38 no  Wireless Configuration Commands Negates a command or sets its defaults. All the parameters mentioned in the syntax can be negated using the command. Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax no [aap|admission-control|adoption-pref-id| adopt-unconf-radio|ap|ap-containment|ap-detection|ap-image|...
Page 810 20-64 Motorola RF Switch CLI Reference Guide RFSwitch(config-wireless)#no radio lldp mode disable RFS6000(config-wireless)# RFS6000(config-wireless)#no ap 6 aap-log-storage enable % Error: error modifying APs: 6 Please ensure that the AP is adopted RFS6000(config-wireless)# RFS6000(config-wireless)#no ap default-aap aap-lan1-trunking RFS6000(config-wireless)# RFS6000(config-wireless)#no ap all-aap aap-lan1-trunking...
Page 811: Proxy-Arp
Wireless Instance 20-65 20.1.39 proxy-arp  Wireless Configuration Commands Responds to ARP requests from the RON to the WLAN on behalf of mobile units Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 proxy-arp enable Parameters enable Enables the support for proxy arp Usage Guidelines Use the enable command to disable.
Page 812: Qos-Mapping
20-66 Motorola RF Switch CLI Reference Guide 20.1.40 qos-mapping  Wireless Configuration Commands Configures QoS mappings between the wired and wireless domains Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax qos-mapping [wired-to-wireless|wireless-to-wired] qos-mapping wired-to-wireless [dot1p <0-7>|dscp <0-63>] [<0-7>|tid0|tid1|tid2|tid3|tid4|tid5|tid6|tid7]...
Page 813 Wireless Instance 20-67 wireless-to-wired Mappings used while switching wireless traffic to the [tid0|tid1|tid2|tid3| wired side. tid4|tid5|tid6|tid7] • tid0, tid3– best effort category traffic dot1p <0-7> • tid1, tid2 – background category traffic • tid4, tid5 – video traffic category traffic •...
Page 814: Radio
20-68 Motorola RF Switch CLI Reference Guide 20.1.41 radio  Wireless Configuration Commands Sets radio related parameters Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 The radios range differs from switch to switch. group-id • RFS7000 – Supports a range between 0-255 •...
Page 815 Wireless Instance 20-69 radio <1-1000> acs-exception-list [<1-200> | <LIST>] radio <1-4096> admission control voice [max-mu <1-256>| max-perc <1-100>|max-roamed-mus <0-256>| res-roam-perc <0-100>] radio <1-4096> adoption-policy [allow|deny] radio <1-4096> adoption-pref-id <0-65535> radio <1-4096> ampdu [min-spacing|rx-limit|tx-enable| tx-limit] radio <1-4096> ampdu min-spacing [.25|.5|0|1|2|4|8] radio <1-4096> ampdu rx-limit [16383|32767|65535|8191] radio <1-4096>...
Page 816 20-70 Motorola RF Switch CLI Reference Guide radio <1-4096> dtim-period <1-50> bss <1-4> radio <1-4096> detector radio <1-4096> dot11k [enable|quiet-element {defaults|duration|enable}] radio <1-4096> dot11k quiet-element duration <20-150> interval <200-255> radio <1-4096> dynamic-chain-sel enable radio <1-4096> enforce-spec-mgmt enable radio <1-4096> enhanced-beacon-table radio <1-4096>...
Page 817 Wireless Instance 20-71 radio <1-4096> timeout <40-180> radio <1-4096> tunnel tx-rate-class <1-4> radio <1-4096> wmm [background|best-effort|video|voice] [aifsn <1-15>|burst <0-65535>|cw <0-15>] NOTE: All the above commands can be executed using < > also. radio radio-list radio [all-lla|default-11a] [admission-control| adoption-policy|adoption-pref-id|antenna-mode|base-bridge| beacon-interval|bridge-fwd-delay|bridge-hello| bridge-max-ageout|bridge-msg-age|bridge-priority|bss| channel-power|client-bridge|detector|dtim-period| enforce-spec-mgmt|enhanced-beacon-table| enhanced-probe-table|location-led|...
Page 818 20-72 Motorola RF Switch CLI Reference Guide radio [all-llbgn|default-11bgn] [adoption-policy|ampdu| antenna-mode|bss|channel-power|rf-mode|speed|tunnel| short-gi] radio add <1-4096> <MAC> [11a|11an|11b|11bg|11bgn] {[aap5131|aap5181|ap300|ap650|aap7131|aap7181|ap100|ap4131]} radio antenna-mode [1x1-mimo|diversity|mimo| mimo-diversity|primary|secondary] radio configure-8021X <username> <password> {<MAC>} radio dns-name <dns-name> {<MAC>} radio lldp [hold-time|mode|refresh-interval] radio lldp hold-time <4-10> radio lldp mode disable radio lldp refresh-interval <30-32768>...
Page 819 Wireless Instance 20-73 antenna-mode[1x1- Antenna diversity mode. Select diversity from: mimo|diversity|mimo| • 1x1-mimo – Uses only antenna A to transmit and receive |mimo-diversity|primary| • diversity – Use full diversity (both antennas) secondary] • mimo – use MIMO • mimo-diversity – For non-11n transmit rates •...
Page 820 20-74 Motorola RF Switch CLI Reference Guide lldp [hold-time|mode| Displays the commands related to LLDP advertisements. refresh-interval] • hold-time <4-10>– Sets the HoldTime Multiplier value on LCAP. The default value is 4. • <4-10> – Specifies the range of the HoldTime Multiplier value in seconds.
Page 821 Wireless Instance 20-75 admission-control voice Sets the admission control parameters for voice. The [max-mus <0-256>| following options are configured: max-perc <0-100>| • max-mus <0-256> – Configure the maximum number of max-roamed-mus <0- MUs to be admitted 256>| • max-perc <0-100> – Configure the maximum percentage res-roam-perc <0-100>] of air time allotted to voice traffic •...
Page 822 20-76 Motorola RF Switch CLI Reference Guide amsdu [rx-limit| Specifies the settings for the MAC Service frames. The tx-enable] following properties are configured: • rx-limit – The receive buffer limit in bytes • tx-enable – Optional parameters for enabling transmitting A-MSDUs •...
Page 823 Wireless Instance 20-77 bridge-max-ageout Sets the STP bridge maximum ageout (in seconds) <4-3600> • <4-3600> - Time in seconds bridge-msg-age <6-40> Sets the STP bridge message age (in seconds) • <6-40> - Time in seconds bridge-priority Sets the STP bridge priority (in seconds) <0-65535>...
Page 824 20-78 Motorola RF Switch CLI Reference Guide channel-power Sets the location, channel and transmit power level [indoor|outdoor] [<1- • indoor [<1-200>|acs|random]– Defines an indoor location 200>|acs|random] • <1-200> <4-20> {[lower|upper]} – Defines the channel number • <4-20> – Power in dBm •...
Page 825 Wireless Instance 20-79 client-bridge Defines client bridge settings. [bb-radio| • bb-radio <1-16> <MAC>– add the preferred base bridge bridge-selectmode| details enable| • <1-16> – Enables the capability mesh-timeout <2-200>| • MAC – MAC address in AA-BB-CC-DD-EE-FF format ssid <SSID>] • bride-select-mode [auto|manual]– Base bridge selection mode •...
Page 826 20-80 Motorola RF Switch CLI Reference Guide dot11k [enable| Displays dot11k related commands. quiet-element • enable – Enables 802.11k for the radio {default|duration • quiet-element {default|duration|enable} – Displays quiet <20-150>|enable}] element configuration • default – Setting it to defaults • duration <20-150> – Time to remain quiet in TUs •...
Page 827 Wireless Instance 20-81 location-led Changes the mode of operation of the LEDs on an AP. [start-flashing| • start-flashing – Requests parent-ap of specified radio to stop-flashing] begin flashing its LEDs to help locate it • stop-flashing – Requests parent-ap of specified radio to revert its LEDs to normal mode of operation Note: The switch supports this feature on AAP7131 and AAP5131.
Page 828 20-82 Motorola RF Switch CLI Reference Guide reset-ap Resets the parent AP (this will reset all radios on that access port). rf-mode [a|an|b|bg|bgn| Selects the radio speed based on the radio mode selected. custom|g|n] rss enable Remote Site Survivability (RSS) enables the delivery of secure uninterrupted wireless service in remote locations in the event of a device failure.
Page 829 Wireless Instance 20-83 speed [1|11|12|18|2|24| Configures the basic and supported data rates/speed 36|48|54|5p5|6|9|basic1| • 1 1-Mbps basic11|basic11a| • 11 11-Mbps basic11an|basic11b1| • 12 12-Mbps basic11b2|basic11bg| • 18 18-Mbps basic11bgn|basic11g| • 2 2-Mbps basic11gn|basic11n| • 24 24-Mbps basic12|basic18|basic2| • 36 36-Mbps basic24|basic36|basic48| •...
Page 830 20-84 Motorola RF Switch CLI Reference Guide • basic54 basic 54-Mbps • basic5p5 basic 5.5-Mbps • basic6 basic 6-Mbps • basic9 basic 9-Mbps • default {mcs <msc-range>} – Factory default rates based on radio-type. • throughput {mcs <msc-range>} – All rates basic (only 802.11g clients are allowed on 802.11bg radios).
Page 831 Wireless Instance 20-85 wmm [background| Sets 802.11e/Wireless Multi Media (WMM) parameters best-effort|video|voice] (supported on AP300 and AP650). [aifsn<1-15>|burst • background – Prioritizes Background category traffic <0-65535>| cw<0-15>] • best-effort– Prioritizes Best Effort category traffic • video – Prioritizes Video category traffic wmm [video|voice] •...
Page 832 20-86 Motorola RF Switch CLI Reference Guide RFS6000(config-wireless)#...
Page 833: Rate-Limit
Wireless Instance 20-87 20.1.42 rate-limit  Wireless Configuration Commands Sets the default rate limit per user in kbps, and applies to all enabled WLANs Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax rate-limit [wired-to-wireless|wireless-to-wired] <100- 100000> Parameters wired-to-wireless Down link direction from network to wireless client...
Page 834: Secure-Wispe-Default-Secret
20-88 Motorola RF Switch CLI Reference Guide 20.1.43 secure-wispe-default-secret  Wireless Configuration Commands Configures the default shared secret for secure WISPE If a new shared secret is not configured for an AP or a list of APs, then a default shared secret will be assigned.
Page 835: Self-Heal
Wireless Instance 20-89 20.1.44 self-heal  Wireless Configuration Commands Configures self healing values Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax self-heal [interference-avoidance|neighbor-recovery] self-heal interference-avoidance [enable|hold-time <30-65535>|retries <0.0-15.0>] self-heal neighbor-recovery [action|enable|neighbors| run-neighbor-detect] self-heal neighbor-recovery action [both|none|open-rates| raise-power] radio [<1-4096>|<radio-list>] self-heal neighbor-recovery neighbors <1-4096>...
Page 836 20-90 Motorola RF Switch CLI Reference Guide action [both|none| Defines the radio’s self healing action when neighbors are open-rates|raise-power] detected as down. radio [<1-4096>| • both – Raises the power to max and open all rates <radio-list>] • none – No action taken •...
Page 837: Sensor
Wireless Instance 20-91 20.1.45 sensor  Wireless Configuration Commands Configures Wireless Intrusion Protection System (WIPS) parameters Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax sensor [<1-48>|default-config|ping-interval|vlan] sensor <1-48> [default-config|request-config|revert-to-ap] sensor default-config [gateway-ip|ip-mode|wips-server-ip] sensor default-config gateway-ip <IP> sensor default-config ip-mode [dhcp|static <IP/Mask>] sensor default-config wips-server-ip [primary|secondary] <IP>...
Page 838 20-92 Motorola RF Switch CLI Reference Guide default-config [ Invokes the default configuration sent to sensors when gateway-ip|ip-mode| configured. wips-server-ip] • gateway-ip <IP> – Configure the gateway IP address for sensors to <IP> • ip-mode [dhcp|static <IP/Mask>] – Configures the IP address of the sensors •...
Page 839: Service
Wireless Instance 20-93 20.1.46 service  Wireless Configuration Commands Invokes service commands to troubleshoot or debug instance (config-wireless) configurations For more information, see Chapter 2, Section 2.1.5 service on page 2-7. Supported in the following platforms: • RFS7000 • RFS6000 •...
Page 840 20-94 Motorola RF Switch CLI Reference Guide service show wireless group <1-256> service show wireless mu-cache-entry {[<1-8192>|<MAC>]} service show wireless mvlan <1-256> service show wireless radio {[<1-4094>|description|mapping]} service show wireless radio-cache-entry {<MAC>} service show wireless vlan-cache-entry {[<1-8192>|<MAC>]} service show wireless waiting {<0-99> {<0-99>}}...
Page 841 Wireless Instance 20-95 service wireless enhanced-beacon-table scan-interval <10-60> service wireless enhanced-beacon-table scan-time <100-1000> service wireless enhanced-probe-table [enable|erase-report| max-mu|preferred|window-time] service wireless enhanced-probe-table [enable|erase-report] service wireless enhanced-probe-table max-mu <0-512> service wireless enhanced-probe-table preferred <MAC> service wireless enhanced-probe-table window-time <10-60> service wireless free-packet-watermark <0-100> service wireless idle-radio-send-multicast enable service wireless map-radios <1-127>...
Page 842 20-96 Motorola RF Switch CLI Reference Guide show [cli| Displays the current running system information for this radio-neighbor||smart-rf| mode. wireless] • cli – Shows the CLI commands available in this mode • radio-neighbor mu <MAC> – Displays neighboring radios for a station •...
Page 843 Wireless Instance 20-97 • ap-history {<MAC>} – Displays access port history for all MACs. Provide the optional <MAC> parameter to view ap-history for a AP with that MAC address • buffer-counters – Displays allocations for the different buffers • enhanced-beacon-table [config|report] – Displays Enhanced Beacon Table information •...
Page 844 20-98 Motorola RF Switch CLI Reference Guide • description – Description and location co-ordinates of radios • mapping – Radio-to-CPU Mapping • radio-cache-entry {<MAC>} – Displays Radio Cache information. Dumps the whole table if no parameter is given • <MAC> – MAC address of radio-cache entry to show •...
Page 845 Wireless Instance 20-99 • restore [<MAC>|<1-4094>|<index-list>] – Removes radio rescue operation on a given radio • <MAC> – MAC address of a single radio • <1-4094> – Radio index • <index-list> – List of radio indices • save-to-file – Saves smart-rf records to the file smart.bin •...
Page 846 20-100 Motorola RF Switch CLI Reference Guide wireless [ap-history| Configures wireless parameters. clear-ap-log|custom-cli| • ap-history [clear|enable] – Configures access port history dot11i|dump-core| • clear – Clears all history of all APs enhanced-beacon-table| • enable – Enables tracking of AP history enhanced-probe-table| •...
Page 847 Wireless Instance 20-101 • username – The Radius username of the user connected through this device (shown only if applicable and available) • vlan – The VLAN-ID assigned to the mobile-unit • wlan-desc – The WLAN description the mobile-unit is using •...
Page 848 20-102 Motorola RF Switch CLI Reference Guide • dot11i – modify dot11i service parameters • dump-core – Creates a core file of the ccsrvr process • enhanced-beacon-table [channel-set|enable| erase-report|max-ap|scan-interval|scan-time] – Enhanced beacon table for AP locationing • channel-set [a|an|b|bg|bgn] <1-200> – Adds channels to the different radio types.
Page 849 Wireless Instance 20-103 • free-packet-watermark <0-100>– The free packets threshold in percent. If the percentage of free packets is lower than this number, then additional packets will not be queued in the datapath • idle-radio-send-multicast enable – Enables forwarding multicast packets to radios without associated mobile units.
Page 850 20-104 Motorola RF Switch CLI Reference Guide Example RFSwitch(config-wireless)#service show wireless ap-history AP MAC Radio Timestamp Event Reason ============================================================ ======= 00-A0-F8-BF-8A-4B 20090926-20:23:10 Adoption RFSwitch(config-wireless)# RFSwitch(config-wireless)#service show wireless mvlan 20 Wlan 20: pool_size =1 ----------------------------------------------------- [ 0]: wlan=20, vlan_id=1, limit=0, users=0, log_sent=0...
Page 851 Wireless Instance 20-105 RFSwitch(config-wireless)# RFSwitch(config-wireless)#service show wireless radio description # access-port MAC start BSS radio description coordinates 1] 00-A0-F8-BF-8A-4B 00-A0-F8-BF-EF-B0 11bg RADIO1 0 0 0 2] 00-A0-F8-BF-8A-4B 00-A0-F8-BF-ED-BC 11a RADIO2 0 0 0 RFSwitch(config-wireless)# RFSwitch(config-wireless)#service show wireless snmp-trap- throttle throttle : 10 (default = 10) traps allowed through throttle: 9 traps dropped through throttle: 0 RFSwitch(config-wireless)#...
Page 852: Show
20-106 Motorola RF Switch CLI Reference Guide 20.1.47 show  Wireless Configuration Commands Displays current system information running on the switch For other show commands, see Chapter 2, Section 2.1.6 show on page 2-38. Supported in the following platforms: • RFS7000 •...
Page 853 Wireless Instance 20-107 boot Display boot configuration clock Display system clock commands Show command lists crypto encryption module debugging Debugging information outputs dhcp DHCP Server Configuration environment show environmental information file Display filesystem information firewall Wireless firewall Display FTP Server configuration history Display the session...
Page 854 20-108 Motorola RF Switch CLI Reference Guide service-list List of services sessions Display current active open connections smtp-notification Display SNMP engine parameters snmp Display SNMP engine parameters snmp-server Display SNMP engine parameters spanning-tree Display spanning tree information startup-config Contents of startup...
Page 855 Wireless Instance 20-109 user load balance mode : by-throughput ........................................ RFSwitch(config-wireless) RFSwitch(config-wireless)#show wireless radio-group group_id | radios ---------------------------------------------------------- 11 | 1,4 RFSwitch(config-wireless)# RFS7000(config-wireless)#show wireless ap Number of access-ports adopted Number of AAPs adopted Available AP licenses Available AAP licenses Redundancy enabled Redundancy mode : active...
Page 856 20-110 Motorola RF Switch CLI Reference Guide exec 512/tcp biff 512/udp login 513/tcp 513/udp hell 514/tcp syslog 514/udp printer 515/tcp talk 517/udp ntalk 518/udp route 520/udp timed 525/udp tempo 526/tcp courier 530/tcp conference 531/tcp netnews 532/tcp netwall 533/udp gdomap 538/tcp...
Page 857 Wireless Instance 20-111 00-A0-F8-00-00-00 00-23-68-2E-7E-F8 11bgn normal (acs) 8 (8 ) current-switch 00-A0-F8-00-00-00 00-23-68-2E-7A-18 11an normal 104(rnd) 18(20) current-switch 00-A0-F8-BF-8A-70 00-A0-F8-BF-F1-44 11bg normal (rnd) 20(20) current-switch 00-A0-F8-BF-8A-70 00-A0-F8-BF-EE-3C 11a normal 149(rnd) 20(20) current-switch 00-A0-F8-BF-89-45 00-A0-F8-BF-E5-5C 11bg normal (rnd) 20(20) current-switch 00-A0-F8-BF-89-45 00-A0-F8-BF-E6-08 11a normal...
Page 858 20-112 Motorola RF Switch CLI Reference Guide Voice failed Tx BCMC drops : RFS6000(config-wireless)#show wireless wlan statistics 1 detail Rates(Mbps) Tx packets Rx Packets ------------------------------------------ ---------- ------- 802.11b rates (1, 2, 5.5, 6) 802.11a/g low rates (9, 11, 12) 802.11a/g low rates (18, 22, 24) 802.11a/g high rates (36, 48, 54)
Page 859 Wireless Instance 20-113 Voice failed : RFS7000#show wireless mobile-unit IDX MAC/NAME RADIO TYPE WLAN VLAN READY IP-ADDRESS LAST ACTIVE 00-1E-E5-EA-1D-60 11bg 192.168.1.194 359 Sec Number of mobile-units associated: 1 RFS7000#show wireless mobile-unit statistics 00-1E-E5-EA-1D-60 detail mu_idx = 1 Voice Rates(Mbps) Tx packets Rx Packets Tx packets...
Page 860 20-114 Motorola RF Switch CLI Reference Guide Retry Counts Packets ------------ ------- Voice failed : RFS7000# RFS7000#show wireless mobile-unit MAC/NAME RADIO TYPE WLAN VLAN READY IP-ADDRESS LAST ACTIVE 00-1E-E5-EA-1D-60 11an 192.168.1.194 76 Sec Number of mobile-units associated: 1 RFS7000#show wireless mobile-unit statistics 00-1E-E5-EA-1D-60...
Page 861 Wireless Instance 20-115 11.0 12.0 12.0 18.0 22.0 24.0 36.0 48.0 54.0 Retry Counts Packets ------------ -------...
Page 862 20-116 Motorola RF Switch CLI Reference Guide RFS7000#show wireless radio AP MAC RADIO-BSSID TYPE STATE CHANNEL POWER ADOPTED-BY 00-A0-F8-00-00-00 00-0B-6B-B1-E4-90 11bgn normal (rnd) 4 (4 ) curren t-switch 00-A0-F8-00-00-00 00-0B-6B-B1-E4-88 11an normal (rnd) 4 (4 ) curren t-switch RFS7000# t-switch...
Page 863 Wireless Instance 20-117 Voice failed Tx BCMC drops : RFS7000#...
Page 864: Smart-Rf
20-118 Motorola RF Switch CLI Reference Guide 20.1.48 smart-rf  Wireless Configuration Commands Configures Smart-RF Management parameters and moves to the instance (config-wireless-smart-rf) Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 NOTE: initiates the smart-rf (config-wireless-smart-rf) instance. For more details see Chapter , Smart RF Instance.
Page 865: Smart-Scan-Channels
Wireless Instance 20-119 20.1.49 smart-scan-channels  Wireless Configuration Commands Specifies a list of channels for Motorola clients to do smart-scan Syntax smart-scan-channels [<channel-list>|add <channel-list>| remove <channel-list>] Parameters <channel-list> A comma-separated list of channels add <channel-list> Add one or more channels to existing channel list remove <channel-list>...
Page 866: Wlan
20-120 Motorola RF Switch CLI Reference Guide 20.1.50 wlan  Wireless Configuration Commands Configures Wireless LAN related commands NOTE: Manual mapping of wlan will be erased when the actual wlan is disabled and enabled immediately. Syntax wlan [<1-256>|<wlan-list>] [80211-extensions|802.11w-mfp| aap-ipfilter-rules|aap-proxy-radius|accounting|acl|add-...
Page 867 Wireless Instance 20-121 wlan <1-256> dot11i [opp-pmk-caching|pmk-caching| preauthentication wlan <1-256> dot11i handshake timeout <100-5000> retransmit <1-10> wlan <1-256> dot11i key [0 <secret-key>|2 <secret-key>| <secret-key>] wlan <1-256> dot11i key-rotation enable wlan <1-256> dot11i key-rotation-interval <30-86400> wlan <1-256> dot11i phrase [0 <secret-key>|2 <secret-key>| <secret-key>] wlan <1-256>...
Page 868 20-122 Motorola RF Switch CLI Reference Guide wlan <1-256> kdc [password|realm|server] wlan <1-256> kdc password [0 <secret>|2 <secret>|<secret>] wlan <1-256> kdc realm <realm> wlan <1-256> kdc server [primary|secondary|timeout] wlan <1-256> kdc server primary <IP> {auth-port <port>} wlan <1-256> kdc server secondary <IP> {auth-port <port>} wlan <1-256>...
Page 869 Wireless Instance 20-123 wlan <1-256> radius accounting timeout <1-60> retransmit <1-100> wlan <1-256> radius authentication-protocol [chap|pap] wlan <1-256> radius dscp <0-63> wlan <1-256> radius [dynamic-authorization| dynamic-vlan-assignment] enable wlan <1-256> radius mac-auth-format [mac-in-caps| no-delim|pair-colon|pair-dash|quad-dot|middle-dash] wlan <1-256> radius mobile-unit timeout <1-10> retransmit <1-10> wlan <1-256>...
Page 870 20-124 Motorola RF Switch CLI Reference Guide For each of the options <1-256> and <wlan-list> the following commands are available. 80211-extensions Enables support for 802.11 extensions move-command enable • move-command – Enables support for fast roaming • enable – Enables this extension 802.11w-mfp optional...
Page 871 Wireless Instance 20-125 add-vlan [<1-4094>| Instead of starting a new VLAN assignment for given <vlan-list>] WLAN, this command adds a VLAN assignment to an {limit <1-4094>} existing VLAN assignment. All prior VLAN settings are retained. • [<1-4094>|<vlan-list>] – Sets the VLAN range list <vlan- list>.
Page 872 20-126 Motorola RF Switch CLI Reference Guide wlan <1-256> aap- Configures AAP IP Filter rules. ipfilter-rules [in|out] • in – In direction {<1-20>|AAP_IPF_RULE} • out – Out direction • <1-20> – A single index • <AAP_IPF_RULE> – A list (eg: 1,3,7) or range (eg: 3-7)
Page 873 Wireless Instance 20-127 dot11i [handshake | key| Modifies tkip/ccmp (802.11i) related parameters. key-rotation | • handshake timeout <100-5000> retransmit <1-10> – key-rotation-interval| Sets a handshake for the timeout and retransmission opp-pmk-caching | intervals phrase|pmk-caching | • timeout <100-5000> – Sets the timeout (in preauthentication | milliseconds) between retries.The default value is second-key|...
Page 874 20-128 Motorola RF Switch CLI Reference Guide • second-key [enable|key|phrase] – Configures a secondary set of key/passphrase for this WLAN • enable – Enables the use of a secondary key/passphrase • key [0 <secret-key>|2 <secret-key>|<secret-key>] – Configures the key (PMK) •...
Page 875 Wireless Instance 20-129 encryption-type Sets the encryption type for this WLAN. Options include: [ccmp|keyguard| • ccmp – AES Counter Mode CBC-MAC Protocol none|tkip|tkip-ccmp| (AES-CCM CCMP) wep128|wep64| • keyguard – Keyguard-MCM (Mobile Computing Mode) web128-keyguard] • none – No encryption • tkip – Enables Temporal Key Integrity Protocol (TKIP) •...
Page 876 20-130 Motorola RF Switch CLI Reference Guide hotspot [allow-eap| Modifies hotspot related parameters allow- • allow-eap – allow EAP authentication in addition to web list|authentication|dn- based login whitelist|cache-ageout| • allow-list <1-32> <IP> – Specifies the allowed list that connection-mode| user can access without prior authentication. Typically...
Page 877 Wireless Instance 20-131 • pre-auth-vlan <1-4096> – Configures default vlan to be used until users get authorized. Specify the index of the vlan • max-login-attempts <0-10> – Modifies hotspot maximum login attempts • <0-10> – Login attempts between 0-10 • query [<1-10>|<query-list>] – Specifies queries to be appended to redirection URL •...
Page 878 20-132 Motorola RF Switch CLI Reference Guide Note: When using authentication server, the URL parameters ip_address and port are required when the external entity that serves the pages and authentication server are not the same. http://<external_url> <login|welcome|fail>.html?ip_address =<a.b.c.d>&port=<x> where: • <url> is the url of the server serving the web pages •...
Page 879 Wireless Instance 20-133 Note: The full syntax for the internal page definition is as follows: wlan 1 hotspot webpage internal welcome title Welcome to hotspot page. You have logged on successfully • failure – Users are redirected to this Web page if their authentication attempt fails.
Page 880 20-134 Motorola RF Switch CLI Reference Guide ip [arp|dhcp] Sets Internet Protocol settings for ARP and DHCP packets. • arp [rate-limit <1-1000000>|trust] – Address Resolution Protocol configuration • dhcp trust – Dynamic Host Resolution Protocol configuration • trust – Sets the arp/dhcp responses as trusted for this wlan/range •...
Page 881 Wireless Instance 20-135 Modifies KDC related parameters. [password|realm|server] • password [0 <secret>|2 <secret>|<secret>] – Create a KDC server password (up to 127 characters) • 0 <secret>– Password is specified unencrypted • 2 <secret>– Password is encrypted with a password- encryption secret •...
Page 882 20-136 Motorola RF Switch CLI Reference Guide nac-mode [bypass-nac- Sets the Network Access Control (NAC) mode configuration except-include-list| • bypass-nac-except-include-list – No MU NAC check is do-nac-except-exclude- done except for those in include list. Devices in the list|none] include list have NAC checks •...
Page 883 Wireless Instance 20-137 nac-server Configure a NAC server IP address and an optional [primary|secondary| authentication port number. timeout] • [primary|secondary] [<IP> {auth-port <port>}|radius-key [0 <secret>|2 <secret>|<secret>]] – Primary server or secondary server’s IP address • <IP> {auth-port <port>} – Set an EAP server IP address and optional EAP server authentication port (default: is 1812) •...
Page 884 20-138 Motorola RF Switch CLI Reference Guide Quality of Service commands [classification | • classification [background|best-effort|video|voice|wmm] mcast-with-dot11i| – Select how traffic on this WLAN is classified (relative mcast1|mcast2| prioritization on the access port) prioritize-voice| • low – All traffic on this wlan is treated as low priority...
Page 885 Wireless Instance 20-139 • rate-limit [wired-to-wireless|wireless-to-wired] <100-1000000> – Sets traffic rate limit for users on the selected WLAN • wired-to-wireless – Down link direction - from network to wireless client • wireless-to-wired – Up link direction - from wireless client to network •...
Page 886 20-140 Motorola RF Switch CLI Reference Guide • aisfn <2-15> – Arbitration Inter Frame Spacing Number (AIFSN) is the wait time in milliSeconds between data frames. This value is derived using AIFSN and the slot-time • <2-15> – The AIFSN spacing number •...
Page 887 Wireless Instance 20-141 radius [accounting| Configures RADIUS parameters for the select WLAN. authentication-protocol| • accounting [mode|server|timeout] – Sets RADIUS dscp| accounting parameters. dynamic-authorization| • mode [start-stop|stop-only|start-interim-stop] – Sets dynamic-vlan- the Accounting Mode assignment| • start-stop – Sends accounting start-stop mac-auth-format| •...
Page 888 20-142 Motorola RF Switch CLI Reference Guide • authentication-protocol [chap|pap] – Sets the RADIUS Authentication Protocol for RADIUS request. Select from CHAP or PAP • dscp <0-63> – Specify a Differentiated Services Code Point (DSCP) value to provide QoS to RADIUS packets. Set a value in the range 0 to 63 •...
Page 889 Wireless Instance 20-143 • retransmit <1-100> – Sets the number of retries before the wireless switch will give up and disassociate the mobile-unit. Set a value in the range 1 to 100. The default value is 3. • server [primary|secondary] [<IP> {acct-port <port>}| radius-key [0 <key>|2 <key>|<key>]] –...
Page 890 (1,3,7) or a range (3-7) of indices • [<0-8192>] – Sets the VLAN index. The limit is <0-8192> smart-scan-channels Specifies a list of channels to motorola clients to perform a [<channel-list>| smart-scan. The following are the options set: add <channel-list>| •...
Page 891 Wireless Instance 20-145 vlan [<1-4094>| Sets the VLAN assignment of this WLAN. This command <vlan-list>] starts a new VLAN assignment for a WLAN index. All prior {limit <0-8192>} VLAN settings are erased. • [<1-4094>|<vlan-list>] –Establishes the VLAN range list It can be either a single index, a list (1,3,7) or a range (3- •...
Page 892 20-146 Motorola RF Switch CLI Reference Guide wep64 [key|phrase| Configures WEP64 parameters. wep-default-key] • key <1-4> [ascii|hex] – Configures pre-shared hex keys. • ascii [0 <key>|1 <key>|<key>] – Sets keys as ascii characters (5 characters for wep64, 13 for wep128) •...
Page 893 Wireless Instance 20-147 RFSwitch(config-wireless)#wlan 25 dot11i key-rotation enable RFSwitch(config-wireless)# RFSwitch(config-wireless)#wlan 25 dot11i key-rotation- interval 2000 RFSwitch(config-wireless)# RFSwitch(config-wireless)#wlan 25 enable RFSwitch(config-wireless)# RFSwitch(config-wireless)#wlan 25 hotspot webpage external failure "This feature is under development" RFSwitch(config-wireless)# RFS6000(config-wireless)#wlan 4 hs-failover RFS6000(config-wireless)# RFSwitch(config-wireless)#wlan 25 kdc server primary 1.2.3.4 auth-port 50000 RFSwitch(config-wireless)# RFSwitch(config-wireless)#wlan 25 mobility enable...
Page 894 20-148 Motorola RF Switch CLI Reference Guide RFSwitch(config-wireless)#wlan 25 symbol-extensions fast- roaming enable RFSwitch(config-wireless)# RFSwitch(config-wireless)#wlan 25 syslog accounting server 12.13.14.125 port 5005 RFSwitch(config-wireless)# RFSwitch(config-wireless)#wlan 24 qos mcast-with-dot11i enable RFSwitch(config-wireless)#wlan 24 storm-control bcast rate- limit 20000 RFSwitch(config-wireless)#wlan 9 aap-ipfilter-rules in 7...
Page 895: Wlan-Bw-Allocation
Wireless Instance 20-149 20.1.51 wlan-bw-allocation  Wireless Configuration Commands Enables WLAN bandwidth allocation on all radios Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax wlan-bw-allocation enable Parameters enable Enables WLAN bandwidth allocation on all radios. Example RFSwitch(config-wireless)#wlan-bw-allocation enable RFSwitch(config-wireless)#...
Page 896: Dot11K
20-150 Motorola RF Switch CLI Reference Guide 20.1.52 dot11k  Wireless Configuration Commands Displays dot11k related commands Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax dot11k send-beacon-req [<1-8192>|MU|mu] dot11k send-beacon-req <1-8192> measurement-duration <100-10000> dot11k send-beacon-req [mu|MU] <MAC> measurement-duration <100-10000>...
Page 897: Wips
Wireless Instance 20-151 20.1.53 wips Wireless Configuration Commands Configures wips parameters Supported in RFS7000 platform only Syntax RFSwitch7000 (config-wireless) wips [detect-window <5-300>|disable|event|reset-to-default] RFSwitch7000config-wireless) wips event [80211-replay-check-failure| ad-hoc-advertising-authorized- ssid|ad-hoc-network-violation-authorized-device| ad-hoc-network-violation-unauthorized-device| aggressive-scanning |all|ap-default-configuration| ap-ssid-broadcast-in-beacon| crackable-wep-iv-key-used|decryption-failures| dos-association-or-authentication-flood | dos-broadcast-deauthentication|dos-eapol-start-storm| dos-unicast-deauthentication-or-disassociation|eap-flood| eap-nak-flood|failures-reported-by-authentication-servers| fake-ap-flood frames-from-unassociated-stations frames-with-bad-essids|fuzzing-all-zero-mac-address-observed |fuzzing-invalid-frame-type-detected| fuzzing-invalid-management-frame|...
Page 898 20-152 Motorola RF Switch CLI Reference Guide wips events 80211- Configures parameters related to the detection of replay-check-failure| ad- anomalous frames on the RF network. The parameters are: hoc-advertising- • 80211-replay-check-failure – Detects 802.11 replay authorized-ssid | ad-hoc- failure network-violation- •...
Page 899 Wireless Instance 20-153 • fake-ap-flood– Detects suspected ap flood (based on wips events [identical- number of APs observed in a minute) source-and-destination- addresses | • frames-from-unassociated-stations – Detects frames impersonation-attack- from unassociated stations detected|non-changing- • frames-with-bad-essids – filter-ageout <1-86400> – wep-iv|replay-injection- Detects filters age-out duration for the mobile unit frames attack |...
Page 900 20-154 Motorola RF Switch CLI Reference Guide For the above parameters, the following values are set. • enable – Enables monitoring, filtering and triggering alarms • filter-ageout <ageout> – Sets the number of seconds mobile units are filtered in the range <1-86400>...
Page 901: Non-Preferred-Ap-Attempts-Threshold
Wireless Instance 20-155 20.1.54 non-preferred-ap-attempts-threshold  Wireless Configuration Commands Displays the number of attempts after which switch will adopt non preferred APs Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax RFS6000(config-wireless)non-preferred-ap-attempts-threshold <0-20> Parameters non-preferred-ap- Displays the number of attempts after which switch will attempts-threshold adopt non preferred APs <0-20>...
Page 902: Test
20-156 Motorola RF Switch CLI Reference Guide 20.1.55 test Wireless Configuration Commands Testing neighbour report on air Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax RFS7000(config-wireless)test dot11k [make-bcn-rep| send-beacon-req|send-nbr-rep] RFS7000(config-wireless) test dot11k make-bcn-rep mu <MAC> neighbor <MAC>...
Page 903 Wireless Instance 20-157 send-beacon-req [<1- Triggers the beacon send request 8192>|MU|mu] • <1-8192> – A single index • MU – A list (eg: 1,3,7) or range (eg: 3-7) of indices • mu – Displays mobile-units mac address • MAC –Displays mac address in AA-BB-CC-DD-EE-FF format •...
Page 904 20-158 Motorola RF Switch CLI Reference Guide...
Page 905: Chapter 21. Rtls Instance
RTLS Instance Use the instance to configure Real Time Location System (RTLS) (config-rtls) parameters. To navigate to this instance, use the command RFSwitch(config)#rtls RFSwitch(config-rtls)# 21.1 RTLS Config Commands This summarizes commands: config-rtls Command Description Ref. aeroscout Configures aeroscout parameters page 21-2 clear Clears locationing information page 21-3...
Page 906: Aeroscout
21-2 Motorola RF Switch CLI Reference Guide Command Description Ref. Negates a command or sets its defaults page 21-8 reference-tag Configures reference tags page 21-10 rfid Configures RFID readers page 21-11 service Invokes service commands to troubleshoot or debug page 21-12...
Page 907: Clear
RTLS Instance 21-3 multicast- Configures multicast MAC address to which Aeroscout tags listen-addr packets are destined <MAC- • <MAC-Address> – Multicast MAC address. AeroScout’s Address> default multicast MAC address is ‘01:0C:CC:00:00:00’ Usage Guidelines to disable support for Aeroscout RTLS engine. This does [no] aeroscout (enable) not affect on-board locationing.
Page 908: Clrscr
21-4 Motorola RF Switch CLI Reference Guide Parameters rtls tags Real time locationing configuration [aeroscout • tags – Clears tag/asset information for : |mobile-unit|ekahau • aeroscout – Clears Aeroscout tags |rfid|zone <1-48>] • g2 – Clear g2 tags • mobile-unit – Clears mobile-unit(wi-fi clients) •...
Page 909: End
RTLS Instance 21-5 21.1.4 end  RTLS Config Commands Ends and exits the current mode and changes to the PRIV EXEC mode. The prompt changes RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax Parameters None Example RFSwitch(config-rtls)#end RFSwitch#...
Page 910: Exit
21-6 Motorola RF Switch CLI Reference Guide Parameters None Example RFSwitch(config-rtls)espi RFSwitch(config-rtls-espi) 21.1.6 exit  RTLS Config Commands Ends the current mode and moves to the previous mode (GLOBAL-CONFIG). The prompt changes to RFSwitch(config)# Supported in the following platforms: • RFS7000 •...
Page 911: Ekahau
RTLS Instance 21-7 • RFS4000 Syntax help Parameters None Example RFSwitch(config-rtls)#help CLI provides advanced help feature. When you need help, anytime at the command line please press '?'. If nothing matches, the help list will be empty and you must backup until entering a '?' shows the available options.
Page 912 21-8 Motorola RF Switch CLI Reference Guide engine ip<IP> Configures the IP address and port number of the external port <Port> ekahau RTLS engine • ip – Configures external location engine IP address • port <1000-9000> – Configure external location engine...
Page 913 RTLS Instance 21-9 aeroscout Negates aeroscout configuration [enable| • enable – Disable SOLE adapter multi-cast- • multicast-listen-addr– Configure multicast listening listen|addr] address ekahau Negates ekahau configuration [enable|engine • enable – Disable aeroscout external engine |multicast] • engine –reset external location engine parameters •...
Page 914: Reference-Tag
21-10 Motorola RF Switch CLI Reference Guide switch • Negates switch configuration parameters [coordinates • coordinates – Negates switch coordinates |geo- configuration within the site coordinates] • geo-coordinates – Negates switch geo coordinates configuration Usage Guidelines command to undo the configurations on the parameters mentioned in the table.
Page 915: Rfid
RTLS Instance 21-11 Parameters rfid <tag-id> coordinates Configures rfid tag as a reference tag x <0-65535> y <0-65535> • coordinates – Configures tag location {[z <0-65535>]} • x <0-65535> – Configure X coordinate {orientation • y <0-65535> – Configure Y coordinate [0|90|180|270]} {range •...
Page 916: Service
21-12 Motorola RF Switch CLI Reference Guide NOTE: command instantiates sub- rfid (config-rtls-rfid) instance. For more details see RFID Instance on page 23-1. The prompt changes from RFSwitch(config-rtls)# RFSwitch(config-rtls-rfid) Syntax rfid Parameters None Example RFSwitch(config-rtls)#rfid RFSwitch(config-rtls-rfid)# 21.1.12 service  RTLS Config Commands...
Page 917 RTLS Instance 21-13 service inventory [<1-100>|default] service inventory <1-100> [duration <0-100000>| filter{<1-100>|<name>}|report {current|differential}| round <0-10>|start|start-trigger|stop-trigger|zone] service inventory <1-100> start-trigger [gpi port <1-65535> event <0-1> timeout <0-65535> |immediate|periodic offset <0-65535> period <0-65535> ] service inventory <1-100> stop-trigger [duration <0-65535>|gpi port <1-65535> event <0-1> timeout <0-65535> |immediate] service inventory <1-100>...
Page 918 21-14 Motorola RF Switch CLI Reference Guide service A single tag inventory index inventory <1- • duration <0-100000> – Inventory period in msecs 100> [duration • filter [<1-100>|<name>] – Configures the selected tags <0-100000>| filter for inventory filter{<1- • report – Set tag inventory report type 100>|<name>}|...
Page 919 RTLS Instance 21-15 • start-trigger – Configures start trigger for tag inventory • gpi – Configures GPI event based start trigger • port <1-65535> – Configures GPI port number • event <0-1> – Configures a boolean GPI event value that causes GPI event to trigger •...
Page 920: Show
21-16 Motorola RF Switch CLI Reference Guide 21.1.13 show  RTLS Config Commands Displays current system information Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 SWITCH NOTE: The following commands display only for RFS6000 and RFS4000: • power The following commands display only for RFS7000 and RFS4000: •...
Page 921 RTLS Instance 21-17 autoinstall autoinstall configuration banner Display Message of the Day Login banner boot Display boot configuration. clock Display system clock commands Show command lists crypto encryption module debugging Debugging information outputs dhcp DHCP Server Configuration environment show environmental information file Display filesystem information firewall...
Page 922 21-18 Motorola RF Switch CLI Reference Guide static-channel-group static channel group membership service-list List of services terminal Display terminal configuration parameters timezone Display timezone traffic-shape Display traffic shaping upgrade-status Display last image upgrade status users Display information about currently logged...
Page 923: Site
RTLS Instance 21-19 21.1.14 site  RTLS Config Commands Configures RTLS site dimensions Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax site [description|dimension|name|scale] site description <description> site dimension [unit [feet|meters]|x <1-9000> y <1-9000> z <0-180>] site name <site-name> site scale [<1-90>|auto] Parameters description...
Page 924: Sole
21-20 Motorola RF Switch CLI Reference Guide name <site- Configures name for the site name> scale [<1- Configures site scale 90>|auto] • <1-90> – Configures scale value ranging between1-90 • auto – Configures auto scale Usage Guidelines to rollback the configurations...
Page 925: Switch
RTLS Instance 21-21 • RFS4000 NOTE: command instantiates sole (config-rtls-sole) sub-instance. For more details see SOLE Instance on page 24-1. The prompt changes from RFSwitch(config-rtls)# RFSwitch(config-rtls-sole) Syntax sole Parameters None Example RFSwitch(config-rtls)#sole RFSwitch(config-rtls-sole)# 21.1.16 switch  RTLS Config Commands Configures the switch’s geographical location parameters Supported in the following platforms: •...
Page 926: Zone
21-22 Motorola RF Switch CLI Reference Guide coordinates x <0-65535> Configures switch coordinates within the site y <0-65535> z <0-65535> • x <0-65535> – Configures X coordinate • y <0-65535> – Configures Y coordinate • z <0-65535> – Configures Z coordinate longitude <-180.00-...
Page 927 RTLS Instance 21-23 Parameters <1-48>name Select a single zone index for configuration <name>|perimeter x • name <name> – Configures name of new zone <0-65535> • perimeter [x y]– Configures zone perimeter coordinates y <<0-65535> ] • x <0-65535> – Defines X coordinate •...
Page 928 21-24 Motorola RF Switch CLI Reference Guide <MAC> coordinates x <0- Select a single zone index for configuration 9000> • <MAC> – Configures access port MAC Address y <0-9000> • x <0-9000> – Defines X coordinate z <0-180> • y <0-9000> – Defines Y coordinate •...
Page 929: Chapter 22. Espi Instance
ESPI Instance Use the instance to configure Enterprise Services Programming (config-rtls-espi) Interface (ESPI) related configuration commands. To navigate to this instance, use the commands RFSwitch(config)#rtls RFSwitch(config-rtls)#espi RFSwitch(config-rtls-espi)# 22.1 ESPI Config Commands Table 22.1 summarizes commands: config-rtls-espi Table 22.1 ESPI Config Command Summary Command Description Ref.
Page 930 22-2 Motorola RF Switch CLI Reference Guide Table 22.1 ESPI Config Command Summary (Continued) Command Description Ref. show Shows running system information page 22-...
Page 931: Adapter
ESPI Instance 22-3 22.1.1 adapter  ESPI Config Commands Enables/disables a specified adapter or all adapters Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax adapter ale-tcp [enable|port <3000-3100>] Parameters adapter ale-tcp Application side protocol implemented by adapter. [enable|port <3000- •...
Page 932: Clrscr
22-4 Motorola RF Switch CLI Reference Guide 22.1.2 clrscr  ESPI Config Commands Clears the display screen Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax clrscr Parameters None Example RFSwitch(config-rtls-espi)#clrscr RFSwitch(config-rtls-espi)#...
Page 933: End
ESPI Instance 22-5 22.1.3 end  ESPI Config Commands Ends and exits the current mode and moves to the PRIV EXEC mode. The prompt changes RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax Parameters None Example RFSwitch(config-rtls-espi)#end RFSwitch#...
Page 934: Exit
22-6 Motorola RF Switch CLI Reference Guide 22.1.4 exit  ESPI Config Commands Ends the current mode and moves to the previous mode (GLOBAL-CONFIG). The prompt changes to RFSwitch(config)# Supported in the following platforms: • RFS7000 • RFS6000 Syntax exit...
Page 935: Help
ESPI Instance 22-7 22.1.5 help  ESPI Config Commands Displays the system’s interactive help in HTML format Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax help Parameters None Example RFSwitch(config-rtls-espi)#help CLI provides advanced help feature. When you need help, anytime at the command line please press '?'.
Page 936 22-8 Motorola RF Switch CLI Reference Guide 22.1.6 no  ESPI Config Commands Defines the name of the adapter or disables the adapter(s) Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 no adapter ale-tcp [enable|port <3000-3100>] Parameters...
Page 937: Service
ESPI Instance 22-9 22.1.7 service  ESPI Config Commands Invokes service commands to troubleshoot or debug instance configurations (config-if) Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax service show cli Parameters None Example RFSwitch(config-rtls-espi)#service show cli ESPI Config mode: +-adapter +-ADAPTER...
Page 938: Show
22-10 Motorola RF Switch CLI Reference Guide 22.1.8 show  ESPI Config Commands Displays current system information Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 SWITCH NOTE: The following commands display only for RFS6000 and RFS4000: • power The following commands display only for RFS7000 and RFS4000: •...
Page 939 ESPI Instance 22-11 debugging Debugging information outputs dhcp DHCP Server Configuration environment show environmental information file Display filesystem information firewall Wireless firewall Display FTP Server configuration history Display the session command history interfaces Interface status Internet Protocol (IP) ldap LDAP server licenses Show any installed licenses logging...
Page 940 22-12 Motorola RF Switch CLI Reference Guide users Display information about currently logged in users version Display software & hardware version wireless Wireless configuration commands wlan-acl wlan based acl RFSwitch(config-rtls-espi)#show RFSwitch(config-rtls-espi)#show rtls espi ? adapter Adapter Configuration ecspecs ECSpecs configuration...
Page 941: Chapter 23. Rfid Instance
RFID Instance instance is used to configure RFID reader related (config-rtls-rfid) configuration parameters. To navigate to this instance, use the commands RFSwitch(config)#rtls RFSwitch(config-rtls)#rfid RFSwitch(config-rtls-rfid)# 23.1 RFID Config Commands Table 23.1 summarizes commands: config-rtls-rfid Table 23.1 RFID Config Commands Command Description Ref.
Page 942 23-2 Motorola RF Switch CLI Reference Guide Table 23.1 RFID Config Commands Command Description Ref. service Invokes service commands to troubleshoot or page 23-12 debug instance configurations (config-rtls) show Displays the running system information page 23-15...
Page 943: Activate
RFID Instance 23-3 23.1.1 activate  RFID Instance Activates and enables the Real Time Location System (RTLS ) adapter Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 activate Parameters None Usage Guidelines Use [no] to disable and deactivate the RTLS adapter Example RFSwitch(config-rtls-rfid)#activate RFSwitch(config-rtls-rfid)#...
Page 944: Clrscr
23-4 Motorola RF Switch CLI Reference Guide 23.1.2 clrscr  RFID Instance Clears the display screen Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax clrscr Parameters None Example RFSwitch(config-rtls-rfid)#clrscr RFSwitch(config-rtls-rfid)#...
Page 945: End
RFID Instance 23-5 23.1.3 end  RFID Instance Ends and exits the current mode and changes to the PRIV EXEC mode. The prompt changes RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax Parameters None Example RFSwitch(config-rtls-rfid)#end RFSwitch#...
Page 946: Exit
23-6 Motorola RF Switch CLI Reference Guide 23.1.4 exit  RFID Instance Ends the current mode and moves to the previous mode (GLOBAL-CONFIG). The prompt changes to RFSwitch(config)# Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax...
Page 947: Help
RFID Instance 23-7 23.1.5 help  RFID Instance Displays the interactive help system for RTLS instance Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax help Parameters None Example RFSwitch(config-rtls-rfid)#help CLI provides advanced help feature. When you need help, anytime at the command line please press '?'.
Page 948 23-8 Motorola RF Switch CLI Reference Guide 23.1.6 no  RFID Instance Supported in the following platforms: Negates a RTLS command or set its defaults • RFS7000 • RFS6000 • RFS4000 Syntax no [activate|reader|service] Parameters activate Deactivates/disables RTLS adapter reader...
Page 949: Reader
RFID Instance 23-9 23.1.7 reader  RFID Instance Configures RFID Readers parameters Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax reader [<index>|<reader-index-list>] reader <index> [antenna|coordinates|description| enable|id|name] reader <index> antenna [<antenna>|<antenna-list>] reader <index> antenna <antenna-list> [coordinates x <x-coordinate>...
Page 950 23-10 Motorola RF Switch CLI Reference Guide antenna Configures the RFID readers antenna. Select a antenna [<antenna>|<antenna- using its index, between <1-8> or range (eg:3-7) of antenna list>] coordinates x <x- indices or any RFID reader antenna coordinate> y <y- •...
Page 951 RFID Instance 23-11 reader [<index>|<reader- Sets a user friendly name to a RFID reader or a group of index-list>] name RFID readers to <name> (1-20 characters) <name> Usage Guidelines to rollback any configurations [no] reader [<index>|<range>][options] performed using the command reader Example RFSwitch(config-rtls-rfid)#reader 1 antenna 1 coordinates x...
Page 952: Service
23-12 Motorola RF Switch CLI Reference Guide 23.1.8 service  RFID Instance Invokes service commands to troubleshoot or debug (config-if) instance configurations Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax service show cli service reader [<reader-index>|<reader-index-list>] [antenna|upgrade] service reader [<reader-index>|<reader-index-list>] antenna...
Page 953 RFID Instance 23-13 service reader Displays the RFID reader configuration information [<reader-index>| • <reader-index> – The RFID reader index <reader-index-list>] • <reader-index-list> – A list of comma separated RFID antenna [<antenna- reader indices index>|<antenna- • antenna [<antenna-index>|<antenna-list>|all] – The list>|any] filter [<tag- antenna information filter-index>|<tag-filter- •...
Page 954 23-14 Motorola RF Switch CLI Reference Guide Example RFSwitch(config-rtls-rfid)#service show cli RFID readers Config mode: +-activate [activate] +-adopt-unconf-readers [adopt-unconf-readers] +-clrscr [clrscr] +-do +-LINE [do LINE] +-end [end] +-exit [exit] +-help [help] +-no +-activate [no activate] +-adopt-unconf-readers [no adopt-unconf-readers] +-reader +-<1-48>...
Page 955: Show
RFID Instance 23-15 23.1.9 show  RFID Instance Displays current system information Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 SWITCH NOTE: The following commands display only for RFS6000 and RFS4000: • power The following commands display only for RFS7000 and RFS4000: •...
Page 956 23-16 Motorola RF Switch CLI Reference Guide dhcp DHCP Server Configuration wios dataplane environment show environmental information file Display filesystem information firewall Wireless firewall Display FTP Server configuration history Display the session command history interfaces Interface status Internet Protocol (IP)
Page 957 RFID Instance 23-17 timezone Display timezone traffic-shape Display traffic shaping upgrade-status Display last image upgrade status users Display information about currently logged in users version Display software & hardware version virtual-ip IP Redundancy Feature wireless Wireless configuration commands wlan-acl wlan based acl RFSwitch(config-rtls-rfid)#show RFSwitch(config-rtls-rfid)#show rtls rfid ? LLRP...
Page 958 23-18 Motorola RF Switch CLI Reference Guide...
Page 959: Chapter 24. Sole Instance
SOLE Instance Use the instance to configure SOLE Location Engine related (config-rtls-sole) parameters. To navigate to this instance, use the commands RFSwitch(config)#rtls RFSwitch(config-rtls)#sole RFSwitch(config-rtls-sole)# 24.1 SOLE Config Commands Table 24.1 summarizes commands: config-rtls-sole Table 24.1 Location Engine Config Command Summary Command Description Ref.
Page 960 24-2 Motorola RF Switch CLI Reference Guide Table 24.1 Location Engine Config Command Summary (Continued) Command Description Ref. service Invokes service commands to troubleshoot or debug page 24-11 instance configurations (config-rtls) show Displays the running system information page 24-13 rssi-filter...
Page 961: Clrscr
SOLE Instance 24-3 24.1.1 clrscr  SOLE Instance Clears the display screen Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax clrscr Parameters None Example RFSwitch(config-rtls-sole)#clrscr RFSwitch(config-rtls-sole)#...
Page 962: End
24-4 Motorola RF Switch CLI Reference Guide 24.1.2 end  SOLE Instance Ends and exits the current mode and changes to the PRIV EXEC mode. The prompt changes RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000...
Page 963: Exit
SOLE Instance 24-5 24.1.3 exit  SOLE Instance Ends the current mode and moves to the previous mode (GLOBAL-CONFIG). The prompt changes to RFSwitch(config)# Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax exit Parameters None Example RFSwitch(config-rtls-sole)#exit RFSwitch(config-rtls-sole)#...
Page 964: Help
24-6 Motorola RF Switch CLI Reference Guide 24.1.4 help  SOLE Instance Displays the interactive help system for RTLS instance Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax help Parameters None Example RFSwitch(config-rtls-sole)#help CLI provides advanced help feature.
Page 965: Locate
SOLE Instance 24-7 24.1.5 locate  SOLE Instance Configures location commands Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax locate [aeroscout|mobile-unit|ekahau] locate mobile-unit [<MAC-Addr>|enable|interval] locate ekahau [enable|interval] Parameters aeroscout [enable|interval Locates aeroscout tags <5-3600> • enable – Enables on-board aeroscout location engine service •...
Page 966 24-8 Motorola RF Switch CLI Reference Guide Example RFSwitch(config-rtls-sole)#locate aeroscout enable RFSwitch(config-rtls-sole)# RFSwitch(config-rtls-sole)#locate aeroscout interval 300 RFSwitch(config-rtls-sole)#...
Page 967 SOLE Instance 24-9 24.1.6 no  SOLE Instance Disables the locationing adapter(s) and its configurations Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 no [aap-rssi-update-interval|locate|mobile-nit|redundancy| rssi-filter] Parameters aap-rssi-update-interval Disables AAP probe packet interval locate Negates Location commands [aeroscout|ekahau|mobile -unit] mobile-unit [<MAC-...
Page 968: Redundancy
24-10 Motorola RF Switch CLI Reference Guide 24.1.7 redundancy  SOLE Instance Enables redundancy support across cluster members for SOLE Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax redundancy enable Parameters redundancy enable Enables the redundancy support across cluster members for...
Page 969: Service
SOLE Instance 24-11 24.1.8 service  SOLE Instance Invokes service commands to troubleshoot or debug instance (config-rtls) configurations Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax service show cli Parameters None Example RFSwitch(config-rtls-sole)#service show cli Location Engine Config mode: +-clrscr [clrscr] +-end [end] +-exit [exit]...
Page 970 24-12 Motorola RF Switch CLI Reference Guide +-interval......RFSwitch(config-rtls-sole)#...
Page 971: Show
SOLE Instance 24-13 24.1.9 show  SOLE Instance Displays current system information Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 SWITCH NOTE: The following commands display only for RFS6000 and RFS4000: • power The following commands display only for RFS7000 and RFS4000: •...
Page 972 24-14 Motorola RF Switch CLI Reference Guide crypto encryption module debugging Debugging information outputs dhcp DHCP Server Configuration environment show environmental information file Display filesystem information firewall Wireless firewall Display FTP Server configuration history Display the session command history interfaces...
Page 973 SOLE Instance 24-15 users Display information about currently logged in users version Display software & hardware version virtual-ip IP Redundancy Feature wireless Wireless configuration commands wlan-acl wlan based acl RFSwitch(config-rtls-sole)#show RFSwitch(config-rtls-sole)#show rtls sole ? peers Show SOLE peer information probes Show probe information RFSwitch(config-rtls-sole)# RFSwitch(config-rtls-sole)#show rtls sole peers...
Page 974: Rssi-Filter
24-16 Motorola RF Switch CLI Reference Guide 24.1.10 rssi-filter  SOLE Instance Filters rssi values below this threshold Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 rssi-filter <-100-0> Parameters <-100-0> Displays rssi filter value in dbm Example...
Page 975: Aap-Rssi-Update-Interval
SOLE Instance 24-17 24.1.11 aap-rssi-update-interval  SOLE Instance Displays AAP probe packet interval value in seconds Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax aap-rssi-update-interval <5-3600> Parameters aap-rssi-update-interval Displays aap-rssi filter value in seconds <5-3600> Example RFSwitch(config-rtls-sole)#aap-rssi-update-interval 99 RFSwitch(config-rtls-sole)#...
Page 976: Mobile-Unit
24-18 Motorola RF Switch CLI Reference Guide 24.1.12 mobile-unit  SOLE Instance Displays mobile-unit configurations Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax mobile-unit power-level <1-100> Parameters mobile-unit powerlevel Displays mobile-unit configurations <1-100>] • power-level <1-100> – Displays mobile-unit power-level...
Page 977: Chapter 25. Smart Rf Instance
Smart RF Instance Use the instance to configure Smart RF related (config-wireless-smart-rf) configuration commands. To navigate to the instance, config-wireless-smart-rf use the following commands: RFSwitch(config)#wireless RFSwitch(config-wireless)#smart-rf RFSwitch(config-wireless-smart-rf)# 25.1 smart-rf Config Commands The following table summarizes commands: config-wireless-smart-rf Command Description Ref. assignable- Specifies the power range during power-assignment page 25-3...
Page 978 25-2 Motorola RF Switch CLI Reference Guide Command Description Ref. help Displays the interactive help system page 25-6 hold-time The number of seconds to disable interference page 25-7 avoidance after a detection Negates commands or resets values to default page 25-8...
Page 979: Assignable-Power-Range
Smart RF Instance 25-3 25.1.1 assignable-power-range  Smart RF Instance Specifies the power range during power assignment Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax assignable-power-range [<lower bound> <upper bound>] Parameters assignable-power-range Specifies the power range during power assignment [<lower bound>...
Page 980: Clrscr
25-4 Motorola RF Switch CLI Reference Guide Parameters auto-assign Enables individual RF parameters to be auto-assigned [all|channel|detector|po • all - Enables auto-assign for all the RF parameters wer| • channel enable - Enables auto-assign for channels rescuer] enable • detector enable - Enables auto-assign for detectors •...
Page 981: End
Smart RF Instance 25-5 RFSwitch(config-wireless-smart-rf)# 25.1.4 end  Smart RF Instance Ends and exits the current mode and moves to the PRIV EXEC mode. The prompt changes RFSwitch# Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax Parameters None Example...
Page 982: Extensive-Scan
25-6 Motorola RF Switch CLI Reference Guide Example RFSwitch(config-wireless-smart-rf)#exit RFSwitch(config-wireless)# 25.1.6 extensive-scan  Smart RF Instance Enters the extensive scan mode The device needs calibration at every level. tx-power Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000...
Page 983: Hold-Time
Smart RF Instance 25-7 • RFS4000 Syntax help Parameters None Example RFS7000(config-wireless-smart-rf)#help CLI provides advanced help feature. When you need help, anytime at the command line please press '?'. If nothing matches, the help list will be empty and you must backup until entering a '?' shows the available options.
Page 984 25-8 Motorola RF Switch CLI Reference Guide Parameters hold-time <30-65535> The number of seconds to disable interface avoidance after a detection. This prevents the radio from changing channels continuously. Set the values in seconds from 30-65535. Example RFSwitch(config-wireless-smart-rf)#hold-time 400 RFSwitch(config-wireless-smart-rf)# 25.1.9 no...
Page 985 Smart RF Instance 25-9 no schedule-calibrate [enable|interval|start-time] no select-channels <WORD> no service smart-rf [max-history|replay enable|rescue] no smart-rf-module enable no verbose Parameters assignable- Negates the power range assignment power-range <4-20> <4-20> auto-assign [all Negates the auto-assign commands |channel • all - Disables all auto-assignment features |detector|powe •...
Page 986 25-10 Motorola RF Switch CLI Reference Guide radio [<1- Negates all radio related commands 4096>| • <1-4096> – For each of the radio, the following values MAC- are negated or reset: Address|RADI • antenna-gain <GAIN> – Resets the set antenna gain...
Page 987 Smart RF Instance 25-11 radio [<1- • all-11a - for all 802.11a radios, the following values are 4096>|MAC negated or reset: Address|RADI • antenna-gain <GAIN> – Resets the set antenna gain value all-11a|all- • coverage-rate [1|2|5p5|6|9|11|12|18|24|36|48|54)]- 11b|all-11bg] Resets the selected coverage rate value (contd..) •...
Page 988 25-12 Motorola RF Switch CLI Reference Guide scan-dwell- Resets the time a scan dwells on a channel during scan time <1-10> schedule- Resets the calibration schedule parameters calibrate • enable – Disables the calibration schedule feature [enable|interva • interval – Negates the calibration schedule interval •...
Page 989 Smart RF Instance 25-13 recover disable individual self-recovery features retry-threshold The average number retries to cause a radio to re-run channel selection scan-dwell-time The number of seconds to dwell on a channel during scan schedule-calibrate configure calibration schedule parameters select-channels Revert selected-channels to default service Service Commands...
Page 990: Number-Of-Rescuers
25-14 Motorola RF Switch CLI Reference Guide RFSwitch(config-wireless-smart-rf)#no service smart-rf max- history RFSwitch(config-wireless-smart-rf)# RFSwitch(config-wireless-smart-rf)#no smart-rf-module enable RFSwitch(config-wireless-smart-rf)# RFSwitch(config-wireless-smart-rf)#no verbose enable RFSwitch(config-wireless-smart-rf)# 25.1.10 number-of-rescuers  Smart RF Instance Configures the number of rescuers to cover faulty radio conditions Supported in the following platforms: •...
Page 991 Smart RF Instance 25-15 • RFS4000 Syntax radio [<1-4096>|MAC-ADDRESS|RADIO|all-11a|all-11b|all-11bg] antenna-gain|coverage-rate| radio <1-4096> [ lock-auto-assign | radio-mac | rescuer|width] radio <1-4096> anternna-gain <GAIN> radio <1-4096> coverage-rate [1|2|5p5|6|9|11|12|18|24|36|48|54] radio <1-4096> lock-auto-assign [all|channel|detector|power|rescuer] radio <1-4096> radio-mac [MAC-ADDRESS] radio <1-4096> rescuer [MAC-ADDRESS <4-20> <0-65535>] radio <1-4096>...
Page 992 25-16 Motorola RF Switch CLI Reference Guide radio all-11bg coverage-rate [1|2|5p5|6|9|11|12|18|24|36|48|54] radio all-11bg lock-auto-assign [all|channel|detector|power|rescuer] Parameters <1-4096> [antenna-gain | Sets the following parameters for the selected radio: coverage-rate | • antenna-gain <GAIN> – Sets the antenna-gain value to lock-auto-assign |...
Page 993 Smart RF Instance 25-17 AA-BB-CC-DD-EE-FF Sets the following parameters for the selected radio [antenna-gain | • antenna-gain <GAIN> – Sets the antenna-gain value to coverage-rate | GAIN for the selected radio lock-auto-assign | • coverage-rate [1|2|5p5|6|9|11|12|18|24|36|48|54] – Sets rescuer] the coverage rate threshold value for under-coverage detection to the selected value from the list •...
Page 994 25-18 Motorola RF Switch CLI Reference Guide all-11a [antenna-gain| Sets the radio parameters for all 802.11a radios coverage-rate|lock-auto- • antenna-gain <GAIN> – Sets the antenna-gain value to assign] GAIN for the selected radio • coverage-rate [1|2|5p5|6|9|11|12|18|24|36|48|54] – Sets the coverage rate threshold value for under-coverage detection to the selected value from the list •...
Page 995: Recover
Smart RF Instance 25-19 RFSwitch(config-wireless-smart-rf)#radio 1 radio-mac 1-2-3- 4-5-6 RFSwitch(config-wireless-smart-rf)#radio 1 rescuer 1-2-3-4- 5-6 20 30 RFSwitch(config-wireless-smart-rf)#radio 1-2-3-4-5-6 antenna-gain 20 RFSwitch(config-wireless-smart-rf)#radio 2-5,8,11,15 antenna-gain 20 RFSwitch(config-wireless-smart-rf)#radio all-11a coverage- rate 5p5 RFSwitch(config-wireless-smart-rf)#radio all-11b lock-auto- assign power RFSwitch(config-wireless-smart-rf)#radio all-llbg antenna- gain 20 RFSwitch(config-wireless-smart-rf)# RFS6000(config-wireless-smart-rf)#radio 1 width dual RFS6000(config-wireless-smart-rf)# 25.1.12 recover...
Page 996: Retry-Threshold
25-20 Motorola RF Switch CLI Reference Guide Parameters recover [coverage-hole| Enables individual self recovery features: interference|neighbor] • coverage-hole enable – Enables recovery from enable coverage-hole errors • interference enable – Enables recovery from interference errors • neighbor enable – Enables recovery from errors due to...
Page 997: Run-Calibrate
Smart RF Instance 25-21 Example RFSwitch(config-wireless-smart-rf)#retry-threshold 8.4 RFSwitch(config-wireless-smart-rf)# 25.1.14 run-calibrate  Smart RF Instance Starts an automatic RF configuration process Supported in the following platforms: • RFS7000 • RFS6000 • RFS4000 Syntax run-caliberate Parameters None Example run-caliberate 25.1.15 scan-dwell-time  Smart RF Instance Sets the time in seconds to dwell on a channel during a channel scan Supported in the following platforms:...
Page 998: Schedule-Calibrate
25-22 Motorola RF Switch CLI Reference Guide Parameters scan-dwell- The duration in seconds to dwell on a channel during a time <1-10> channel scan. The default scan dwell time value is 1 second. If the scan dwell time is increased, the same time...
Page 999: Select-Channels
Smart RF Instance 25-23 interval <1- Sets the interval in days between each auto calibration 366> start-time Sets the time and day to start the first auto-calibration. <HH:MM> <HH:MM> is in 24 hours format. <1-31> <1-12> <2008-2035> Example RFSwitch(config-wireless-smart-rf)#schedule-calibrate enable RFSwitch(config-wireless-smart-rf)#schedule-calibrate interval 2 RFSwitch(config-wireless-smart-rf)#schedule-calibrate...
Page 1000: Service
25-24 Motorola RF Switch CLI Reference Guide Example RFSwitch(config-wireless-smart-rf)#select-channels 1,2,15-17 RFSwitch(config-wireless-smart-rf)#select-channels add 1,2,15-17 RFSwitch(config-wireless-smart-rf)#select-channels remove 1,2,15-17 RFSwitch(config-wireless-smart-rf)# 25.1.18 service  Smart RF Instance Invokes service commands to troubleshoot or debug (config-wireless-smart-rf) instance configurations Supported in the following platforms: • RFS7000 •...

This manual is also suitable for:

Rfs7000 Rfs6000 Rfs4000

Motorola RFS Series Reference Manual

About this Guide

Chapter 1. Introduction

Chapter 2 .Common Commands

Chapter 3. User Exec Commands

Chapter 4. Privileged Exec Commands

Chapter 5. Global Configuration Commands

Chapter 6. Crypto-Isakmp Instance

Chapter 7. Crypto-Group Instance

Chapter 8. Crypto-Peer Instance

Chapter 9. Crypto-Ipsec Instance

Chapter 10. Crypto-Map Instance

Chapter 11. Crypto-Trustpoint Instance

Chapter 12. Interface Instance

Chapter 13. Spanning Tree-Mst Instance

Quick Links

Related Manuals for Motorola RFS Series

Summary of Contents for Motorola RFS Series