Network Router User Manual
Table Of Contents
- About This Document
- Introduction
- Common Commands
- In this chapter
- Common commands
- show
- autoinstall
- banner
- commands
- crypto
- environment
- history
- interfaces
- ip
- ldap
- licenses
- logging
- mac
- mac-address-table
- management
- mobility
- ntp
- port-channel
- power
- privilege
- radius
- redundancy dynamic-ap-load-balance
- redundancy group
- redundancy history
- redundancy members
- rtls
- smtp-notification
- snmp
- snmp-server
- spanning-tree
- static-channel-group
- terminal
- timezone
- traffic-shape
- users
- version
- wireless
- (config-wireless) Executable Mode
- wlan-acl
- access-list
- aclstats
- alarm-log
- boot
- clock
- debugging
- dhcp
- file
- ftp
- password-encryption
- running-config
- securitymgr
- sessions
- startup-config
- upgrade-status
- mac-name
- firewall
- role
- virtual-IP
- wwan
- aap-wlan-acl
- aap-wlan-acl-stats
- protocol-list
- service-list
- User Exec Commands
- Privileged Exec Commands
- Global Configuration Commands
- In this chapter
- Global Configuration commands
- aaa
- access-list
- autoinstall
- banner
- boot
- bridge
- country-code
- crypto
- do
- end
- errdisable
- ftp
- hostname
- interface
- ip
- license
- line
- local
- logging
- mac
- mac-address-table
- mac-name
- management
- ntp
- prompt
- radius-server
- ratelimit
- redundancy
- role
- rtls
- service
- smtp-notification
- snmp-server
- spanning-tree
- timezone
- traffic-shape
- username
- vpn
- wireless
- wlan-acl
- network-element-id
- firewall
- virtual-ip
- wwan
- aap-wlan-acl
- arp
- power
- aap-ipfilter-list
- whitelist
- Crypto-isakmp Instance
- Crypto-group Instance
- Crypto-peer Instance
- Crypto-ipsec Instance
- Crypto-map Instance
- Crypto-trustpoint Instance
- Interface Instance
- Spanning tree-mst Instance
- Extended ACL Instance
- Standard ACL Instance
- Extended MAC ACL Instance
- DHCP Server Instance
- DHCP Class Instance
- Radius Server Instance
- Wireless Instance
- In this chapter
- Wireless configuration commands
- aap
- admission-control
- adopt-unconf-radio
- adoption-pref-id
- ap
- ap-containment
- ap-detection
- ap-image
- ap-ip
- ap-standby-attempts-threshold
- ap-timeout
- ap-udp-port
- auto-select-channels
- broadcast-tx-speed
- client
- clrscr
- cluster-master-support
- convert-ap
- country-code
- debug
- dhcp-one-portal-forward
- dhcp-sniff-state
- dot11-shared-key-auth
- end
- exit
- fix-broadcast-dhcp-rsp
- help
- hotspot
- load-balance
- mac-auth-local
- manual-wlan-mapping
- wireless-client
- mobility
- multicast-packet-limit
- multicast-throttle-watermark
- nas-id
- nas-port-id
- no
- proxy-arp
- qos-mapping
- radio
- rate-limit
- secure-wispe-default-secret
- self-heal
- sensor
- service
- show
- smart-rf
- smart-scan-channels
- wlan
- wlan-bw-allocation
- dot11k
- wips
- non-preferred-ap-attempts-threshold
- test
- RTLS Instance
- ESPI Instance
- RFID Instance
- SOLE Instance
- Smart RF Instance
- Role Instance
- AAP IP Filtering
236 Brocade Mobility RFS4000, RFS6000 and RFS7000 CLI Reference Guide
53-1001931-01
Global Configuration commands
5
key
[export|generate|import|
zeroize]
Authentication key management functions.
• export rsa <name> URL [tftp|ftp] – Exports a keypair related
configuration
• generate rsa <name> <1024-2048> – Generates a keypair
• <1024-2048> – Size of keypair in bits
• import rsa <name> URL [tftp|ftp] – Imports keypair related
configuration
• zeroize rsa <name> – Deletes a keypair
• rsa <identifier> – RSA keypair identifier associated with
keypair
• URL for sending the key, it can be one of the following:
• tftp://<IP>/path/file (or)
• ftp://<user>:<passwd>@<IP>/path/file
map <name> <sequence>
[ipsec-isakmp|
ipsec-manual] dynamic
Enter a crypto map. For more information, see
Crypto-map Instance on page 371.
• name <name> – Names the crypto map entry (not to exceed
32 characters)
• <1-1000> – Sequence to insert into crypto map entry
• ipsec-isakmp – IPSEC w/ISAKMP
• ipsec-manual – IPSEC w/manual keying
• dynamic – Dynamic map entry (remote VPN
configuration) for XAUTH with mode-config or ipsec-l2tp
configuration
pki [authenticate|enroll|
export|import|trustpoint]
Configures certificate parameters. The public key infrastructure is
a protocol that creates encrypted public keys using digital
certificates from certificate authorities. The PKI ensures each
online party is who they claim to be.
• authenticate <name> (terminal|tftp|ftp) – Defines the
authenticate and import CA certificate
• enroll <name> (request|self-signed) – Generates a
certificate request or selfsigned certificate for the trustpoint
• export <name> (request|trustpoint) (tftp|ftp) – Exports the
trustpoint related configuration
• import – Imports a trustpoint related configuration
• certificate – Imports server certificate for the trust point
• crl – certificate Revocation list
• URL – URL to get certificate from URLS:
tftp://<IP>/path/file
ftp://<user>:<passwd>@<IP>/path/file
• terminal – Copy and paste mode of enrollment
• trustpoint – Import trust point including either private
key and server certificate or ca certificate or both
• trustpoint – Creates and configures a trustpoint