Wireless LAN Array Procedure for Configuring Radius Servers 1. Radius Server Mode: Choose Internal if you want to use the XS-3900’s internal RADIUS server, or choose External to use an external RADIUS server. 2. Primary IP Address: If you are using an external RADIUS server, enter the primary server’s IP address. 3. Primary Port Number: If you are using an external RADIUS server, enter the primary port number. 4.
Wireless LAN Array Radius User This page allows you to manage local RADIUS user accounts (create, modify and delete). When finished, click on the Save button to save your changes. Figure 79.
Wireless LAN Array Procedure for Configuring Radius Users 1. New User Name: Enter a new RADIUS user name. 2. User Password: Enter a password for this user. 3. Verify Password: Re-enter the user password to verify that you typed it correctly. 4. SSID (Network Name): Choose an SSID from the pull-down list (this will be the only SSID a user can associate to). 5. Click on the Create User button to add this user to the list. Editing Radius Users 6.
Wireless LAN Array MAC Access List This page allows you to create new MAC access lists, delete existing lists, and add/remove MAC addresses. When finished, click on the Save button to save your changes. Figure 80.
Wireless LAN Array Procedure for Configuring MAC Access Lists 1. # MAC Access List Type: Select the MAC Access List type—either Disabled, Allow List or Deny List, then click on the Modify button to apply your changes. z Allow List: Only allows these MAC addresses to associate to the Array. z Deny List: Allows all MAC addresses except the addresses defined in this list. In addition to these lists, other authentication methods (for example, RADIUS) are still enforced for users. 2.
Wireless LAN Array Admin Management This page allows you to manage network administrator accounts (create, modify and delete). It also allows you to limit account access to a read only status. When finished, click on the Save button to save your changes. Figure 81.
Wireless LAN Array Procedure for Creating Network Administrator Accounts 1. New Admin ID: Enter a meaningful description for this new network administrator ID. 2. Privilege Level: Choose Read to restrict this administrator ID to read only status, or choose Read/Write if you want to give this administrator ID full read/write privileges. In the read only mode, administrators cannot save changes to configurations. 3. Admin Password: Enter a password for this ID. 4.
Wireless LAN Array Rogue AP List This page displays rogue APs, according to the list you select (either Unknown, Known or Approved). In addition, you can sort the results based on the following parameters: z SSID z BSSID z Channel z RSSI z Secure z IP Address You can refresh the list at any time by clicking on the Refresh button. Figure 82.
Wireless LAN Array Rogue Control List This page allows you to set up a control list for rogue APs, based on a type that you define. When finished, click on the Save button to save your changes. Figure 83.
Wireless LAN Array Procedure for Establishing Rogue AP Control 1. New Rogue SSID: Enter the SSID for the new rogue AP. 2. Rogue Control Type: Define the type, either Known or Approved. 3. Click on the Create button to add this rogue AP to the Rogue Control List. 4. Rogue Control List: If you want to edit the control type for a rogue AP, select the rogue from the list. a.
Wireless LAN Array Stations This page displays stations (clients) that are currently associated with the Array. You can sort the results based on the following parameters: z MAC z IP Address z Interface z SSID z VLAN Figure 84.
Wireless LAN Array Services This is a status only page that allows you to review the current status of syslog and SNMP services. There are no configuration options available on this page, but if you are experiencing issues with network services, you may want to print this page for your records. Figure 85.
Wireless LAN Array Time Settings This page allows you to manage the Array’s time settings, including synchronizing the Array’s clock with a universal clock from an NTP (Network Time Protocol) server. Synchronizing the Array’s clock with an NTP server ensures that syslog time-stamping is maintained across all units. Figure 86.
Wireless LAN Array Procedure for Managing the Time Settings Manual Time 1. Adjust Time: Check this box to allow manual adjustment of the time in hours, minutes and seconds (hrs:min:sec). 2. Adjust Date: Check this box to allow manual adjustment of the date (day/month/year). 3. Auto Adjust Daylight Savings: Check this box if you want the system to automatically adjust the time for daylight savings. 4.
Wireless LAN Array System Log This page allows you to enable or disable the Syslog server, define the server’s IP address, and set the level for Syslog reporting—the Syslog service will send Syslog messages to the defined Syslog server. When finished, click on the Apply button to apply the new settings to this session, then click on the Save button to save your changes. Figure 87.
Wireless LAN Array Procedure for Configuring Syslog 1. Enable Syslog Server: Choose Yes to enable Syslog functionality, or choose No to disable this feature. 2. Server IP Address: If you enabled Syslog, enter the IP address of the Syslog server. 3. Syslog Server Level: Choose the level of Syslog reporting from the pull-down list. Levels include: z Emergency z Alerts z Critical z Error z Warning z Notification z Information z Debug The default level is Debug. 134 4.
Wireless LAN Array SNMP This page allows you to enable or disable SNMP and define the SNMP parameters. SNMP allows remote management of the Array by the Xirrus Management System (XM-3300), or other SNMP-based management system. When finished, click on the Apply button to apply the new settings to this session, then click on the Save button to save your changes. Figure 88.
Wireless LAN Array Procedure for Configuring SNMP 136 1. Enable SNMP: Choose Yes to enable SNMP functionality, or choose No to disable this feature. 2. SNMP Link IP Address: Enter the IP address of the SNMP link. 3. Trap Port: Enter the trap port. 4. Community String: Enter the community string. 5. Click on the Apply button to apply the new settings to this session. 6. Click on the Save button to save your changes (otherwise your new settings will not take effect).
Wireless LAN Array Array Info This is a status only page that allows you to review the current status of the Array. There are no configuration options available on this page, but if you are experiencing issues with network services, you may want to print this page for your records. Figure 89.
Wireless LAN Array Tools This page allows you to reset the system’s configuration parameters to their factory default values, reboot the system, and ping other IP addresses for diagnostic purposes. Figure 90.
Wireless LAN Array Procedure for Configuring System Tools 1. System Configuration Reset: Click on the Reset button to reset the system’s current configuration settings to the factory default values—all previous configuration settings will be lost. 2. System Reboot: Click on the Reboot button to reboot the system—you must reboot the Array. 3.
Wireless LAN Array Show Config This page allows you to display the configuration settings for the Array, based on the following sort options: z z z z Running—Displays the current configuration (the one running now). Saved—Displays the saved configuration from this session. Startup—Displays the configuration at start up. Factory—Displays the configuration established at the factory. Figure 91.
Wireless LAN Array If you want to see just the differences between the Running, Saved, Startup, and Factory configurations, you can do this by choosing a configuration from the Select Config pull-down menu then selecting an alternative configuration from the Select Diff pull-down menu. You also have the option of including the default configuration settings. To do this, choose your configuration then click in the Include Defaults check box.
Wireless LAN Array Event Log This is a status only page that allows you to review the event log, where system alerts and messages are displayed. Although there are no configuration options available on this page, you do have the choice of deciding how the event messages are sorted (Time Stamp, Priority, or Message). z Time Stamp—sorts the list based on the time the event occurred. z Priority—sorts the list based on the priority assigned to the message.
Wireless LAN Array The Command Line Interface This chapter covers configuration and management tasks using the product’s Command Line Interface (CLI), and includes a procedure for establishing a Telnet connection to the Xirrus Array.
Wireless LAN Array Basic Commands Help To get help at any point type help or ? to view the interactive help system. Tab Key The Tab key allows auto-completion of commands such that only a few unique characters need to be entered followed by the Tab key, which will automatically fill in the rest of the command. ? Key The ? key displays the list of available commands at any point of typing in the command line.
Wireless LAN Array Command Modes Configure Mode Allows major functional changes to interfaces and Array configuration. Requires read/write administrator privileges From the default prompt, type configure then press Xirrus-Array# configure Xirrus-Array(config)# The prompt changes to show the current mode in parentheses. # When inputting commands you need only type as many characters as the system requires before it recognizes your input.
Wireless LAN Array Date & Time Mode Allows you to configure the date and time settings used by the Array. Requires read/write administrator privileges From the configure mode, type date then press Xirrus-Array(config)# date Xirrus-Array(config-date-time)# DHCP Mode Allows you to enable, disable and configure the DHCP server.
Wireless LAN Array Run Test Mode Allows you to execute diagnostic run tests (for example, pings and trace routes). Requires read/write administrator privileges From the configure mode, type run-tests then press Xirrus-Array(config)# run-tests Xirrus-Array(run-test)# Security Mode Allows you to set security parameters for the Array.
Wireless LAN Array Syslog Mode Allows you to enable, disable and configure the Syslog server. Requires read/write administrator privileges From the configure mode, type syslog then press Xirrus-Array(config)# syslog Xirrus-Array(config-syslog)# Selecting Interfaces From the configure mode select the desired interface.
Wireless LAN Array Commands This section contains detailed information for each CLI command, organized alphabetically. The following table provides a listing of the commands. Click on any command in this list to “jump” to that command.
Wireless LAN Array administrator DESCRIPTION Adds and edits administrator accounts and privileges—available from the config command mode. SYNTAX administrator [add password [enc] {read_only | read_write} | del ] PARAMETERS add read_only read_write password enc Add user ID Read only permissions Read/write permissions Define user password Enter password in encrypted form (must be in quotes) DEFAULTS None.
Wireless LAN Array EXAMPLE To add a new administrator account: config-administrator (config-admin)# add johnk password xtyrk567 read_write Figure 94. CLI: Adding a New Administrator Account SEE ALSO None.
Wireless LAN Array acl DESCRIPTION Configures the MAC based Access Control Lists to allow or limit the association of stations to the Array.
Wireless LAN Array console DESCRIPTION Configures the Console Interface (serial port)—available from the configinterface command mode.
Wireless LAN Array USAGE GUIDELINES None. EXAMPLE To set the baud rate of the console serial port to 9600 baud: config-interface console (config-console)# baud 9600 Figure 96. CLI: Setting the IP Address for the Serial Port SEE ALSO None.
Wireless LAN Array contact-info DESCRIPTION Sets the contact information for this Array—available from the config command mode. SYNTAX contact-info {name [] | email [] | phone []}@ PARAMETERS contact-info name email phone Contact information for assistance on this Array Contact name (must be within quotes) Contact email address (must be within quotes) Contact telephone number (must be within quotes) DEFAULTS None. USAGE GUIDELINES None.
Wireless LAN Array SEE ALSO None. copy DESCRIPTION Creates a copy of the specified file on the Flash file system. SYNTAX copy PARAMETERS sourcefile destinationfile The existing source file name The new destination file name DEFAULTS None. USAGE GUIDELINES None. EXAMPLE To create a backup of the current system image file, type: Xirrus_WLAN_Array(config)# copy XS-39-1.1.0 XS-39-1.1.
Wireless LAN Array date-time DESCRIPTION Set the date/time for the Array—available from the config command mode, using the format hh:mm mm/dd/yyyy. SYNTAX date-time PARAMETERS dst_adjust no ntp set timezone Adjust daylight savings Disable daylight savings Configure the NTP server Set the date and time for the Array Configure the time zone DEFAULTS None. USAGE GUIDELINES You access the date-time command mode from the config mode.
Wireless LAN Array EXAMPLE To disable daylight savings, type: (config-date-time)# no dst Figure 98. CLI: Disabling Daylight Savings SEE ALSO None. dhcp-server DESCRIPTION Configures the local DHCP server settings—available from the Config-> dhcp-server command mode.
Wireless LAN Array PARAMETERS on off start-ip-range end-ip-range default-lease max-lease show Enable the DHCP server Disable the DHCP server Starting IP address for the lease pool Ending IP address for the lease pool Default lease period (in minutes), if one is not requested Maximum lease period allowed Display the current DHCP server settings DEFAULTS Default lease time 300 Maximum lease time 300 USAGE GUIDELINES None.
Wireless LAN Array dir DESCRIPTION Lists the contents of the local Flash file system directory. SYNTAX dir PARAMETERS None. DEFAULTS None. USAGE GUIDELINES None. EXAMPLE To list the local Flash file system directory contents, type: Xirrus_WLAN_Array(config)# dir The following will appear: . .. lastboot xs37-1.0.37.
Wireless LAN Array dns DESCRIPTION Used to configure the DNS settings—available from the Config-> dns command mode. SYNTAX dns { domain [] | server1 [] | server2 [] | server3 []} PARAMETERS domain server1 server2 server3 Enter your domain name (Example: www.mydomain.com) Enter the first DNS server IP address Enter the second DNS server IP address Enter the third DNS server IP address DEFAULTS None.
Wireless LAN Array erase DESCRIPTION Erases the specified file from the Flash file system. SYNTAX Erase PARAMETERS filename existing file to delete. DEFAULTS None. USAGE GUIDELINES None.
Wireless LAN Array eth0 DESCRIPTION Configures the 10/100 Ethernet Interface Settings—available from the config-interface command mode.
Wireless LAN Array EXAMPLE To set the IP address of the 10/100 Ethernet interfaces: config-interface eth0 (config-eth0)# ip addr 192.168.39.186 mask 255.255.255.0 Figure 99.
Wireless LAN Array ftp DESCRIPTION Opens an ftp connection to a remote system. SYNTAX ftp PARAMETERS IP address of remote ftp host (in A.B.C.D format) DEFAULTS None. USAGE GUIDELINES Once an ftp connection is established, the following commands are available from the ftp prompt: binary delete ls recv bye dir mkdir rename cd disconnect open rmdir cdup get put send chmod hash pwd size close help quit ? EXAMPLE None. SEE ALSO None.
Wireless LAN Array gig1 DESCRIPTION Configures the Gigabit 1 Ethernet Interface Settings—available from the config-interface command mode.
Wireless LAN Array DEFAULTS None. USAGE GUIDELINES Setting the Gigabit1 interface parameters will automatically set the Gigabit2 parameters to the same values. EXAMPLE To set the IP address of the gigabit Ethernet interfaces: config-interface gig1 (config-gig1/2)# ip addr 192.168.39.186 mask 255.255.255.0 Figure 100.
Wireless LAN Array gig2 DESCRIPTION Configures the Gigabit 2 Ethernet Interface Settings—available from the config-interface command mode.
