Manual

ManualsBrandsCisco ManualsWireless Access PointCisco Aironet 1530e Outdoor Access Point

161

162

163

164

165

166

167

168

169

170

6-31

Cisco IOS Software Configuration Guide for Cisco Aironet Access Points

OL-30644-01

Chapter 6 Configuring Radio Settings

Enabling and Disabling Public Secure Packet Forwarding

To enable and disable PSPF using CLI commands on the wireless device, you use bridge groups. You

can find a detailed explanation of bridge groups and instructions for implementing them in this

document:

• Cisco IOS Bridging and IBM Networking Configuration Guide, Release 12.2. Click this link to

browse to the Configuring Transparent Bridging chapter:

http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122cgcr/fibm_c/bcfpart1/bcftb.

htm

You can also enable and disable PSPF using

the web-browser interface. The PSPF setting is on the Radio

Settings pages.

PSPF is disabled by default. Beginning in privileged EXEC mode, fol

low these steps to enable PSPF:

Command Purpose

Step 1

Step 2

Step 3

Step 4

Step 5

Use the no form of the command to disable PSPF.

Configuring Protected Ports

To prevent communication between client devices associated to different access points on your wireless

LAN, you must set up protected ports on the switch to which the wireless devices are connected.

Beginning in privileged EXEC mode, follow these steps to define a port on your switch as a protected

rt:

Command Purpose

Step 1

Step 2

Step 3

Step 4

Step 5

Step 6

To disable protected port, use the no switchport protected interface configuration command.

configure terminal Enter g

lobal configuration mode.

interface dot11radio {0 | 1}

Enter interface configuration mode for the radio interface. The

2.4-GHz radio is radio 0, and the 5-GHz radio is radio 1.

The 802.11n 2.4-GHz radio is radio 0

The 802.11n 5-GHz radio is radio 1.

bridge-group gr

oup port-protected Enable PSPF.

end Retu

rn to privileged EXEC mode.

copy running-config startup-config (Op

tional) Save your entries in the configuration file.

configure terminal Enter global configuration mode.

interface in

terface-id Enter interface configuration mode, and enter the type and

number of the switchport interface to configure, such as

gigabitethernet0/1.

switchport protected C

onfigure the interface to be a protected port.

end Retu

rn to privileged EXEC mode.

show interfaces in

terface-id

switchport

Verify your entries.

copy running-config startup-config (Op

tional) Save your entries in the configuration file.