Network Router User Manual
Table Of Contents
- About This Document
- Introduction
- Common Commands
- In this chapter
- Common commands
- show
- autoinstall
- banner
- commands
- crypto
- environment
- history
- interfaces
- ip
- ldap
- licenses
- logging
- mac
- mac-address-table
- management
- mobility
- ntp
- port-channel
- power
- privilege
- radius
- redundancy dynamic-ap-load-balance
- redundancy group
- redundancy history
- redundancy members
- rtls
- smtp-notification
- snmp
- snmp-server
- spanning-tree
- static-channel-group
- terminal
- timezone
- traffic-shape
- users
- version
- wireless
- (config-wireless) Executable Mode
- wlan-acl
- access-list
- aclstats
- alarm-log
- boot
- clock
- debugging
- dhcp
- file
- ftp
- password-encryption
- running-config
- securitymgr
- sessions
- startup-config
- upgrade-status
- mac-name
- firewall
- role
- virtual-IP
- wwan
- aap-wlan-acl
- aap-wlan-acl-stats
- protocol-list
- service-list
- User Exec Commands
- Privileged Exec Commands
- Global Configuration Commands
- In this chapter
- Global Configuration commands
- aaa
- access-list
- autoinstall
- banner
- boot
- bridge
- country-code
- crypto
- do
- end
- errdisable
- ftp
- hostname
- interface
- ip
- license
- line
- local
- logging
- mac
- mac-address-table
- mac-name
- management
- ntp
- prompt
- radius-server
- ratelimit
- redundancy
- role
- rtls
- service
- smtp-notification
- snmp-server
- spanning-tree
- timezone
- traffic-shape
- username
- vpn
- wireless
- wlan-acl
- network-element-id
- firewall
- virtual-ip
- wwan
- aap-wlan-acl
- arp
- power
- aap-ipfilter-list
- whitelist
- Crypto-isakmp Instance
- Crypto-group Instance
- Crypto-peer Instance
- Crypto-ipsec Instance
- Crypto-map Instance
- Crypto-trustpoint Instance
- Interface Instance
- Spanning tree-mst Instance
- Extended ACL Instance
- Standard ACL Instance
- Extended MAC ACL Instance
- DHCP Server Instance
- DHCP Class Instance
- Radius Server Instance
- Wireless Instance
- In this chapter
- Wireless configuration commands
- aap
- admission-control
- adopt-unconf-radio
- adoption-pref-id
- ap
- ap-containment
- ap-detection
- ap-image
- ap-ip
- ap-standby-attempts-threshold
- ap-timeout
- ap-udp-port
- auto-select-channels
- broadcast-tx-speed
- client
- clrscr
- cluster-master-support
- convert-ap
- country-code
- debug
- dhcp-one-portal-forward
- dhcp-sniff-state
- dot11-shared-key-auth
- end
- exit
- fix-broadcast-dhcp-rsp
- help
- hotspot
- load-balance
- mac-auth-local
- manual-wlan-mapping
- wireless-client
- mobility
- multicast-packet-limit
- multicast-throttle-watermark
- nas-id
- nas-port-id
- no
- proxy-arp
- qos-mapping
- radio
- rate-limit
- secure-wispe-default-secret
- self-heal
- sensor
- service
- show
- smart-rf
- smart-scan-channels
- wlan
- wlan-bw-allocation
- dot11k
- wips
- non-preferred-ap-attempts-threshold
- test
- RTLS Instance
- ESPI Instance
- RFID Instance
- SOLE Instance
- Smart RF Instance
- Role Instance
- AAP IP Filtering
Brocade Mobility RFS4000, RFS6000 and RFS7000 CLI Reference Guide 701
53-1001931-01
Wireless configuration commands
20
Syntax
detect-window
<duration>
Configures the number of seconds for which information is
collected before analysis.Value in the range <5-300>
disable Disables WIPS without affecting configuration
wips events
80211-replay-check-failure|
ad-hoc-advertising-authorized-
ssid |
ad-hoc-network-violation-auth
orized-device
|ad-hoc-network-violation-una
uthorized-device
|aggressive-scanning |all|
ap-default-configuration |
ap-ssid-broadcast-in-beacon|
crackable-wep-iv-key-used |
decryption-failures |
dos-association-or-authenticat
ion-flood |
dos-broadcast-deauthenticati
on | dos-eapol-start-storm |
dos-unicast-deauthentication-
or-disassociation |eap-flood |
eap-nak-flood |
failures-reported-by-authentic
ation-servers | fake-ap-flood
|frames-from-unassociated-st
ations |
frames-with-bad-essids
|fuzzing-all-zero-mac-address-
observed
|fuzzing-invalid-frame-type-det
ected |
fuzzing-invalid-management-fr
ame|fuzzing-invalid-sequence
-number]
Configures parameters related to the detection of anomalous
frames on the RF network. The parameters are:
• 80211-replay-check-failure – Detects 802.11 replay failure
• ad-hoc-advertising-authorized-ssid – Detects ad-hoc
advertising authorized ssid
• ad-hoc-network-violation-authorized-device – Enables ad-hoc
network violation authorized device
• ad-hoc-network-violation-unauthorized-device – Enables
ad-hoc network violation unauthorized device
• aggressive-scanning – Detects aggressive scanning
• all – Enables all types of events
• ap-default-configuration – Detects ap default configuration
• ap-ssid-broadcast-in-beacon – Detects ap ssid broadcast in
beacon
• crackable-wep-iv-key-used – Uses crackable wep iv key
• decryption-failures – Detects decryption failures
• dos-association-or-authentication-flood – Detects dos
association or authentication flood
• dos-broadcast-deauthentication – Detects dos broadcast -
deauthentication
• dos-eapol-start-storm – Detects dos eapol-start storm
• dos-unicast-deauthentication-or-disassociation – Detects dos
unicast deauthentication or disassociation
• eap-flood – Detects eap flood
• eap-nak-flood – Detects eap-nak-flood
• failures-reported-by-authentication-servers – Detects failures
reported by authentication servers