Brocade Mobility RFS7000-GR Controller CLI Reference Guide (Supporting software release 4.1.0.0-040GR and later) User Manual

Page 23

Advertising
background image

Brocade Mobility RFS7000-GR Controller CLI Reference Guide

9

53-1001945-01

Common Criteria Operational Requirements

1

RFS7000(config-dhcp)#exit

RFS7000(config)#service dhcp

Create ACL to block Non Capwap Packets(Allow only CAPWAP packets coming on UDP port 24576
and DHCP Port 67)

RFS7000(config)#ip access-list extended drop_noncapwap

RFS7000(config-ext-nacl)#permit udp host 172.16.1.99 host 172.2.1.100 eq 24576

RFS7000(config-ext-nacl)#permit udp host 0.0.0.0 host 255.255.255.255 eq 67

rule-precedence 20

RFS7000(config-ext-nacl)#exit

RFS7000(config)#interface vlan 20

RFS7000(config-if)#ip access-group drop_noncapwap in

RFS7000(config-if)#exit

Creating MAC ACL to assign to a physical port to allow arp,ip and wisp packets.

RFS7000(config)#mac access-list extended drop_nonwisp

RFS7000(config-ext-macl)#permit any any type arp rule-precedence 5

RFS7000(config-ext-macl)#permit any any type ip rule-precedence 10

RFS7000(config-ext-macl)#permit any 00:15:70:13:f0:5e/00:15:70:13:f0:5e type wisp

rule-precedence 20

RFS7000(config-ext-macl)#exit

RFS7000(config)#interface ge 1

RFS7000(config-if)#mac access-group drop_nonwisp in

RFS7000(config-if)#exit

Creating WLAN1 with Preshared Key and Assigning VLAN20

RFS7000(config)#wireless

RFS7000(config-wireless)#wlan 1 ssid cc

RFS7000(config-wireless)#wlan 1 enable

RFS7000(config-wireless)#wlan 1 encryption-type ccmp

RFS7000(config-wireless)#wlan1 1 vlan 20

RFS7000(config-wireless)#wlan 1 dot11i key 1234567890123456789012345678901234567

890123456789012345678901234

RFS7000(config-wireless)#exit

Adopt a ap7131 to the switch over L2. (Connect a cable from GE1 to POE Switch and

connect ap7131 to POE Switch)and see ap7131 is adopted to the switch.

RFS7000(config-wireless)#show wireless ap

Number of access-ports adopted : 1

Available licenses : 47

Redundancy enabled : N

Redundancy mode : active

# Mac Radios [indices] Model-Number Adoption-Mode Static IP

1 00-A0-F8-D8-7E-94 2 [ 1 2 ] WSAP-5110-100-WW L2 (vlan: 20)

RFS7000(config-wireless)#

Configure Static and Switch IP Addresses to AP 1

RFS7000(config-wireless)#ap-ip 1 ?

static-ip Static IP address, netmask and gateway address

switch-ip static switch IP addresses

RFS7000(config-wireless)#ap-ip 1 static-ip 172.16.1.99/24 172.16.1.101

RFS7000(config-wireless)#ap-ip 1 switch-ip add 172.2.1.100

RFS7000(config)#show wireless ap

Number of access-ports adopted : 0

Number of AAPs adopted : 0

Available AP licenses : 0

Available AAP licenses : 0

Redundancy enabled : N

Redundancy mode : active

Advertising
Popular Brands
Popular manuals