Login
- Table of Contents
-
- 02-WLAN Command Reference
- 00-Preface
- 01-WLAN Interface Commands
- 02-WLAN Access Commands
- 03-WLAN Security Commands
- 04-IACTP Tunnel and WLAN Roaming Commands
- 05-WLAN RRM Commands
- 06-WLAN IDS Commands
- 07-WLAN QoS Commands
- 08-WLAN Mesh Link Commands
- 09-Advanced WLAN Commands
- 10-WLAN High Availability Commands
- 11-WLAN IPS Commands
- 12-WLAN Optimization Commands
- Related Documents
-
| Title | Size | Download |
|---|---|---|
| 04-IACTP Tunnel and WLAN Roaming Commands | 64.21 KB |
WLAN roaming configuration commands
WLAN roaming configuration commands
display wlan client roam-track
wlan mobility-group-isolation enable
WLAN roaming configuration commands
Support for the commands in this chapter depends on the device model. For more information, see About the H3C Access Controllers Command References.
WLAN roaming configuration commands
display wlan client
Use display wlan client to display information about clients that have roamed in or out.
Syntax
display wlan client { roam-in | roam-out } [ member { ip ipv4-address | ipv6 ipv6-address } ] [ verbose ] [ | { begin | exclude | include } regular-expression ]
Views
Any view
Default command level
2: System level
Parameters
roam-in: Displays information about clients that have roamed in.
roam-out: Displays information about clients that have roamed out.
member ip ipv4-address: IPv4 address of the member AC.
member ipv6 ipv6-address: IPv6 address of the member AC.
verbose: Displays detailed information.
|: Filters command output by specifying a regular expression. For more information about regular expressions, see Fundamentals Configuration Guide.
begin: Displays the first line that matches the specified regular expression and all lines that follow.
exclude: Displays all lines that do not match the specified regular expression.
include: Displays all lines that match the specified regular expression.
regular-expression: Specifies a regular expression, a case-sensitive string of 1 to 256 characters.
Usage guidelines
If a member is included, the display wlan client roam-in command displays the MAC addresses and associated BSSIDs of all the clients that have roamed in from the specified member, and the display wlan client roam-out command displays the MAC addresses and associated BSSIDs of all the clients that have roamed out to the specified member.
If no member is included, the display wlan client roam-in command displays the MAC addresses, associated BSSIDs, and home AC IP address of all the roam-in clients, and the display wlan client roam-out command shows the MAC addresses, associated BSSIDs, and foreign AC IP address of all the roam-out clients.
Examples
# Display all roam-in client information.
<Sysname> display wlan client roam-in
Roam-In Table
--------------------------------------------------------------------------
Client-MAC-address BSSID Home-AC-IP-address
--------------------------------------------------------------------------
0012-f0cc-489d 000f-e25d-f3e0 202.0.0.13
--------------------------------------------------------------------------
# Display information about clients that have roamed in from member AC 202.0.0.13.
<Sysname> display wlan client roam-in member ip 202.0.0.13
Roam-In Table
--------------------------------------------------------------------------
Client-MAC-address BSSID
--------------------------------------------------------------------------
0012-f0cc-489d 000f-e25d-f3e0
--------------------------------------------------------------------------
# Display roam-in client information in detail.
<Sysname> display wlan client roam-in verbose
Roam-In Client Information
--------------------------------------------------------------------------
Client-MAC-address : 0012-f0cc-489d
BSSID : 000f-e25d-f3e0
Vlan-ID : 30
Home-AC-IP-address : 202.0.0.13
--------------------------------------------------------------------------
# Display roam-in client information from member AC 202.0.0.13 in detail.
<Sysname> display wlan client roam-in member ip 202.0.0.13 verbose
Roam-In Client Information
--------------------------------------------------------------------------
Client-MAC-address : 0012-f0cc-489d
BSSID : 000f-e25d-f3e0
Vlan-ID : 30
--------------------------------------------------------------------------
# Display all roam-out client information.
<Sysname> display wlan client roam-out
Roam-Out Table
--------------------------------------------------------------------------
Client-MAC-address BSSID Foreign-AC-IP-address
--------------------------------------------------------------------------
0012-f0cc-489d 000f-e25d-f3e0 202.0.0.101
--------------------------------------------------------------------------
# Display roam-out client information to member AC 202.0.0.101.
<Sysname> display wlan client roam-out member ip 202.0.0.101
Roam-Out Table
--------------------------------------------------------------------------
Client-MAC-address BSSID
--------------------------------------------------------------------------
0012-f0cc-489d 000f-e25d-f3e0
--------------------------------------------------------------------------
# Display all roam-out client information in detail.
<Sysname> display wlan client roam-out verbose
Roam-Out Client Information
--------------------------------------------------------------------------
Client-MAC-address : 0012-f0cc-489d
BSSID : 000f-e25d-f3e0
Vlan-ID : 30
Online time (hh:mm:ss) : 00:00:29
Foreign-AC-IP-address : 202.0.0.101
--------------------------------------------------------------------------
# Display roam-out client information to member AC 202.0.0.101 in detail.
<Sysname> display wlan client roam-out member ip 202.0.0.101 verbose
Roam-Out Client Information
--------------------------------------------------------------------------
Client-MAC-address : 0012-f0cc-489d
BSSID : 000f-e25d-f3e0
Vlan-ID : 30
Online time (hh:mm:ss) : 00:03:27
--------------------------------------------------------------------------
Table 1 Command output
|
Field |
Description |
|
Client-MAC-address |
MAC address of the client. |
|
BSSID |
BSSID of the AP to which the client is associated. |
|
Vlan-ID |
VLAN ID of the client. |
|
Online-time |
How long the client has been associated with the AP. |
|
Foreign-AC-IP-address |
IP address of the foreign access controller. |
display wlan client roam-track
Use display wlan client roam-track mac-address to display the roam-track information of a specified client on the client’s HA.
Syntax
display wlan client roam-track mac-address mac-address [ | { begin | exclude | include } regular-expression ]
Views
Any view
Default command level
2: System level
Parameters
mac-address mac-address: Displays the roam-track information of a specified client.
|: Filters command output by specifying a regular expression. For more information about regular expressions, see Fundamentals Configuration Guide.
begin: Displays the first line that matches the specified regular expression and all lines that follow.
exclude: Displays all lines that do not match the specified regular expression.
include: Displays all lines that match the specified regular expression.
regular-expression: Specifies a regular expression, a case-sensitive string of 1 to 256 characters.
Examples
# Display the roam-track information about client 0012-f0cc-489d.
<Sysname> display wlan client roam-track mac-address 0012-f0cc-489d
Roam Track Table
--------------------------------------------------------------------------
BSSID Online-time(d:h:m:s) AC-IP-address
--------------------------------------------------------------------------
000f-e25d-f3e0 0000:00:02:44 202.0.0.101
000f-e26c-2805 0000:00:02:11 202.0.0.100 (HOME AC)
--------------------------------------------------------------------------
# Display the roam-track information about client 1234-19af-cb39 (The configured mobility tunnel version is ipv6).
<Sysname> display wlan client roam-track 1234-19af-cb39
Roam Track Table
--------------------------------------------------------------------------
BSSID Online-time(d:h:m:s) AC-IP-address
--------------------------------------------------------------------------
0e45-38bd-4479 0000:10:30:01 3FFE:A6B0:AA00:16EF:122A:001A:F9E0:3BF4
0000-05b2-ac45 0001:09:00:04 -HOME AC-
Table 2 Command output
|
Field |
Description |
|
BSSID |
BSSID of the AP with which the client is associated. |
|
Online-time |
How long the client has been associated with the AP. |
|
AC-IP-address |
IP address of the access controller with which the client is connected. If mobility tunnel version is set to IPv6, the IPv6 address of the access controller will be present. |
roam enable
Use roam enable to enable WLAN roaming.
Use undo roam enable to disable WLAN roaming.
Syntax
roam enable
undo roam enable
Default
WLAN roaming is disabled.
Views
IACTP tunnel view
Default command level
2: System level
Usage guidelines
Before you enable or disable WLAN roaming, make sure mobility group is disabled. Otherwise, you cannot modify the roaming configuration.
Disable WLAN roaming if no clients want to roam between ACs and packets exchanged in a mobility group need to be reduced. After WLAN roaming is disabled, clients cannot roam between ACs.
Examples
# Display WLAN roaming.
<Sysname> system-view
[Sysname] wlan mobility-group abc
[Sysname-wlan-mg-abc] undo roam enable
Related commands
mobility-group enable
IACTP configuration commands
authentication-mode
Use authentication-mode to configure an IACTP control message integrity authentication mode. When the IACTP control message integrity authentication mode is configured, all control messages transmitted in the IACTP tunnel will carry a digest (integrity code) that is calculated based on the message content. On receiving such a message, the member will calculate the digest again and compare it against the digest present in the message to verify the integrity of the packet received.
Use undo authentication-mode to restore the default.
Syntax
authentication-mode authentication-method [ cipher | simple ] authentication-key
undo authentication-mode
Default
IACTP control message integrity authentication is disabled.
Views
Mobility group view
Default command level
2: System level
Parameters
authentication-method: Authentication method to be used in IACTP control message exchange. Only 128-bit MD5 authentication method is supported.
cipher: Sets a ciphertext key.
simple: Sets a plaintext key.
authentication-key: Specifies the key string. This argument is case sensitive. The length of a plaintext key is in the range of 1 to 16, and the length of a ciphertext key is in the range of 24 to 53. If neither cipher nor simple is specified, you set a plaintext key string.
Usage guidelines
For security purposes, all keys, including keys configured in plain text, are saved in cipher text.
Examples
# Configure the IACTP control message integrity authentication mode as MD5 and set a plaintext key 12345.
<Sysname> system-view
[Sysname] wlan mobility-group office
[Sysname-wlan-mg-office] authentication-mode md5 simple 12345
display wlan mobility-group
Use display wlan mobility-group to display the mobility group configuration and status.
Syntax
display wlan mobility-group [ member { ip ipv4-address | ipv6 ipv6-address } ] [ | { begin | exclude | include } regular-expression ]
Views
Any view
Default command level
2: System level
Parameters
member ip ipv4-address: IPv4 address of a member AC whose information will be displayed.
member ipv6 ipv6-address: IPv6 address of a member AC whose information will be displayed.
|: Filters command output by specifying a regular expression. For more information about regular expressions, see Fundamentals Configuration Guide.
begin: Displays the first line that matches the specified regular expression and all lines that follow.
exclude: Displays all lines that do not match the specified regular expression.
include: Displays all lines that match the specified regular expression.
regular-expression: Specifies a regular expression, a case-sensitive string of 1 to 256 characters.
Examples
# Display information about all member ACs in an IPv4 mobility group.
<Sysname> display wlan mobility-group
Mobility Group Information
--------------------------------------------------------------------------
Group Name : asd
Source IP Address : 196.168.1.4
Authentication Method : MD5
--------------------------------------------------------------------------
Member Information
--------------------------------------------------------------------------
IP-address State Interface
-------------------------------------------------------------------------
192.168.1.10 Run wlan-tunnel0
192.168.1.34 Idle wlan-tunnel1
--------------------------------------------------------------------------
# Display information about all member ACs in an IPv6 mobility group.
<Sysname> display wlan mobility-group
Mobility Group Information
--------------------------------------------------------------------------
Group Name : asd
Source IP Address : 55F2::1001
Authentication Method : MD5
--------------------------------------------------------------------------
Member Information
--------------------------------------------------------------------------
IPv6-address State Interface
--------------------------------------------------------------------------
3FFE:A6B0:AA00:16EF:122A:001A:F9E0:3BF4 Run wlan-tunnel0
4523::3345 Idle wlan-tunnel1
--------------------------------------------------------------------------
# Display the configuration and status of the member AC with the address 192.168.1.10.
<Sysname> display wlan mobility-group member ip 192.168.1.10
Member Information
----------------------------------------------------------------------
IP Address : 192.168.1.10
State : Run
Interface : WLAN-Tunnel0
Online Time (hh:mm:ss) : 00:16:05
----------------------------------------------------------------------
Table 3 Command output
|
Field |
Description |
|
Group Name |
WLAN mobility group name. |
|
Source IP Address |
Source IPv4 address of the mobility group. |
|
Authentication Method |
Authentication method used for the mobility group. |
|
IP Address |
IPv4 address of the AC. |
|
State |
IACTP state. |
|
Interface |
Tunnel interface name. |
|
Online Time (hh:mm:ss) |
IACTP tunnel up time. |
member
Use member to configure the IP address for an AC.
Use undo member to remove the configured IP address.
Syntax
member { ip ipv4-address | ipv6 ipv6-address } [ vlan vlan-id-list ]
undo member { all | ip ipv4-address | ipv6 ipv6-address }
Default
No AC exists in a mobility group.
Views
Mobility group view
Default command level
2: System level
Parameters
ip ipv4-address: IPv4 address of an AC in the mobility group.
ipv6 ipv6-address: IPv6 address of an AC.
vlan vlan-id-list: VLANs to which the member ACs belong. This argument is expressed in the format of vlan-id-list = { vlan-id1 [ to vlan-id2 ] }& <1-10>, where vlan-id ranges from 1 to 4094 and &<1-10> indicates that you can specify up to 10 VLAN IDs or VLAN ID ranges. If this option is not specified, local forwarding is enabled on all the VLANs.
all: Removes all the ACs from the mobility group.
Usage guidelines
If multiple ACs are in the same mobility group, make sure no IACTP loop exists among ACs when you configure WLAN parameters.
Examples
# Add an IPv4 member to the mobility group.
<Sysname> system-view
[Sysname] wlan mobility-group abc
[Sysname-wlan-mg-abc] member ip 192.168.1.55
# Add an IPv6 member to the mobility group.
<Sysname> system-view
[Sysname] wlan mobility-group abc
[Sysname-wlan-mg-abc] member ipv6 3FFE:A6B0:AA00:16EF:122A:001A:F9E0:3BF4
mobility-group enable
Use mobility-group enable to enable IACTP.
Use undo mobility-group enable to disable IACTP.
Syntax
mobility-group enable
undo mobility-group enable
Default
IACTP is disabled.
Views
Mobility group view
Default command level
2: System level
Usage guidelines
IACTP can be enabled only when the IACTP source IP address is configured.
Examples
# Enable IACTP.
<Sysname> system-view
[Syaname] wlan mobility-group abc
[Sysname-wlan-mg-abc] source ip 1.1.1.1
[Sysname-wlan-mg-abc] mobility-group enable
mobility-tunnel
Use mobility-tunnel to set the IACTP tunnel protocol type.
Syntax
mobility-tunnel { iactp | iactp6 }
Default
The IACTP type is IPv4.
Views
Mobility group view
Default command level
2: System level
Parameters
iactp: Specifies IPv4 IACTP.
iactp6: Specifies IPv6 IACTP.
Usage guidelines
You can set the IACTP type only when mobility group is disabled.
Examples
# Set the IACTP tunnel protocol type to IPv6.
<Sysname> system-view
[Sysname] wlan mobility-group abc
[Sysname-wlan-mg-abc] mobility-tunnel iactp6
source
Use source to set the IACTP tunnel source IP address.
Use undo source to restore the default.
Syntax
source { ip ipv4-address | ipv6 ipv6-address }
undo source
Default
No IACTP source IP address is configured.
Views
Mobility group view
Default command level
2: System level
Parameters
ip ipv4-address: Specifies the IACTP tunnel source IPv4 address.
ipv6 ipv6-address: Specifies the IACTP tunnel source IPv6 address.
Usage guidelines
This command can be configured only when the mobility group is disabled.
Examples
# Set the IACTP tunnel source IP address to 192.168.1.66.
<Sysname> system-view
[Sysname] wlan mobility-group abc
[Sysname-wlan-mg-abc] source ip 192.168.1.66
Related commands
mobility-group enable
wlan mobility-group
Use wlan mobility-group to create a mobility group and enter mobility group view.
Use undo wlan mobility-group to remove the mobility group and all its configurations.
Syntax
wlan mobility-group name
undo wlan mobility-group name
Views
System view
Default command level
2: System level
Parameters
name: Name of the mobility group, a case-insensitive string of 1 to 15 characters.
Usage guidelines
An AC can establish IACTP tunnels with at most seven ACs in the same mobility group.
ACs in the same mobility group must have the same group name.
Examples
# Enter mobility group view.
<Sysname> system-view
[Sysname] wlan mobility-group abc
[Sysname-wlan-mg-abc]
wlan mobility-group-isolation enable
Use wlan mobility-group-isolation enable to isolate tunnels in a mobility group.
Use undo wlan mobility-group-isolation enable to disable the tunnel isolation function.
Syntax
wlan mobility-group-isolation enable
undo wlan mobility-group-isolation enable
Default
Tunnel isolation in a mobility group is enabled.
Views
System view
Default command level
2: System level
Examples
# Isolate tunnels in a mobility group.
<Sysname> system-view
[Sysname] wlan mobility-group-isolation enable
