- Table of Contents
-
- 27-WLAN Command Reference (AC)
- 00-Preface
- 01-Compatibility of hardware and AC functionality
- 02-AP management commands
- 03-Radio management commands
- 04-WLAN access commands
- 05-WLAN security commands
- 06-WIPS commands
- 07-WLAN QoS commands
- 08-WLAN roaming commands
- 09-WLAN load balancing commands
- 10-WLAN radio resource measurement commands
- 11-Channel scanning commands
- 12-Band navigation commands
- 13-WLAN high availability commands
- 14-Wireless location commands
- 15-WLAN multicast optimization commands
- 16-User isolation commands
- 17-WLAN probe commands
- 18-Spectrum management commands
- 19-WLAN optimization commands
- 20-WLAN RRM commands
- 21-WLAN IP snooping commands
- 22-WLAN forwarding commands
- 23-WLAN radio load balancing commands
- 24-Client roaming center commands
- Related Documents
-
Title | Size | Download |
---|---|---|
13-WLAN high availability commands | 176.79 KB |
WLAN high availability commands
display wlan persistent-client
wlan ap-backup hot-backup enable
display dot1x connection-backup
display mac-authentication connection-backup
wlan client-backup hot-backup enable
wlan client-backup hot-backup delay
vsrp-instance (Global configuration view)
WLAN high availability commands
Dual-link backup commands
backup-ac
Use backup-ac to specify a backup AC.
Use undo backup-ac to remove the backup AC configuration.
Syntax
backup-ac { ip ipv4-address | ipv6 ipv6-address }
undo backup-ac { ip | ipv6 }
Default
In AP view, an AP uses the configuration in AP group view.
In AP group view, no backup AC is specified.
Views
AP view
AP group view
Predefined user roles
network-admin
Parameters
ip ip-address: Specifies a backup AC by its IPv4 address.
ipv6 ipv6-address: Specifies a backup AC by its IPv6 address.
Usage guidelines
You can specify only one IPv4 address or one IPv6 address in either AP view or AP group view.
The configuration in AP view takes precedence over the configuration in AP group view. If you execute the undo command in AP view, the backup AC specified in AP group view will be used.
Executing the undo command also terminates the backup CAPWAP tunnel.
Examples
# Specify a backup AC for AP ap1.
<Sysname> system-view
[Sysname] wlan ap ap1 model WA6320
[Sysname-wlan-ap-ap1] backup-ac ip 192.168.1.1
# Specify a backup AC for AP group group1.
<Sysname> system-view
[Sysname] wlan ap-group 1
[Sysname-wlan-ap-group-1] backup-ac ip 192.168.1.1
client-persistence enable
Use client-persistence enable to enable client persistence.
Use undo client-persistence enable to restore the default.
Syntax
client-persistence enable
undo client-persistence enable
Default
Client persistence is disabled.
Views
Global configuration view
Predefined user roles
network-admin
Usage guidelines
In a dual-link network, when the backup AC becomes the master AC, it synchronizes all client entries with the master AC. During the synchronization, wireless clients will go offline simultaneously and it will take a long time for them to come online again. With this feature enabled, the backup AC synchronizes entries with the master AC slowly, allowing wireless clients to slowly go offline and come online, thereby keeping clients online.
To use this feature together with portal authentication, configure MAC-based quick portal authentication for users to complete authentication without awareness.
Examples
# Enable client persistence.
<Sysname> system-view
[Sysname] wlan global-configuration
[Sysname-wlan-global-configuration] client-persistence enable
display wlan persistent-client
Use display wlan persistent-client to display information about clients kept online by client persistence.
Syntax
display wlan persistent-client
Views
Any view
Predefined user roles
network-admin
mdc-admin
Usage guidelines
APs report information about clients kept online by client persistence to the backup AC. You can use this method to view the information.
Examples
# Display information about clients kept online by client persistence.
<Sysname> display wlan persistent-client
Total number of persistent clients: 3
MAC address APID RadioID AID BSSID
000f-e265-6400 1 1 1 001c-f08f-f804
000f-e265-6401 2 1 1 001c-f0bf-9c92
84db-ac14-dd08 1 1 2 001c-f08f-f805
Table 1 Command output
Field |
Description |
Total number of persistent clients |
Total number of clients kept online by client persistence. |
MAC address |
Client MAC address. |
APID |
ID of the AP with which the client is associated. |
RadioID |
ID of the radio with which the client is associated. |
AID |
Unique identifier of the client. |
BSSID |
BSSID with which the client is associated. |
Related commands
client-persistence enable
reset wlan persistent-client
reset wlan persistent-client
Use reset wlan persistent-client to clear clients kept online by client persistence.
Syntax
reset wlan persistent-client
Views
User view
Predefined user roles
network-admin
mdc-admin
Examples
# Clear clients kept online by client persistence.
<Sysname> reset wlan persistent-client
Related commands
client-persistence enable
wlan tunnel-preempt
Use wlan tunnel-preempt enable to enable master CAPWAP tunnel preemption.
Use wlan tunnel-preempt disable to disable master CAPWAP tunnel preemption.
Use undo wlan tunnel-preempt to restore the default.
Syntax
wlan tunnel-preempt { disable | enable }
undo wlan tunnel-preempt
Default
In AP view, an AP uses the configuration in AP group view. If no configuration exists in AP group view, the AP uses the configuration in global configuration view.
In AP group view, an AP uses the configuration in global configuration view.
In global configuration view, master CAPWAP tunnel preemption is disabled.
Views
AP view
AP group view
Global configuration view
Predefined user roles
network-admin
Usage guidelines
With this feature enabled, the backup CAPWAP tunnel becomes the master tunnel after 10 minutes if the backup AC has higher AP connection priority than the master AC.
When this feature is disabled, the backup CAPWAP tunnel becomes the master tunnel only when the master AC fails.
Examples
# Enable master CAPWAP tunnel preemption for AP ap1.
<Sysname> system-view
[Sysname] wlan ap ap1 model WA6320
[Sysname-ap-ap1] wlan tunnel-preempt enable
# Enable master CAPWAP tunnel preemption for APs in AP group group1.
<Sysname> system-view
[Sysname] wlan ap-group group1
[Sysname-wlan-ap-group-group1] wlan tunnel-preempt enable
# Enable master CAPWAP tunnel preemption globally.
<Sysname> system-view
[Sysname] wlan global-configuration
[Sysname-wlan-global-configuration] wlan tunnel-preempt enable
AP backup commands
wlan ap-backup hot-backup enable
Use wlan ap-backup hot-backup enable to enable AP backup in a cloud cluster.
Use undo wlan ap-backup hot-backup enable to disable AP backup in a cloud cluster.
Syntax
wlan ap-backup hot-backup enable
undo wlan ap-backup hot-backup enable
Default
AP backup is disabled.
Views
System view
Predefined user roles
network-admin
Usage guidelines
AP backup enables the active AC (master AC) in an IRF fabric to synchronize information about connected APs to all the non-active ACs. When the active AC fails, one of the non-active ACs becomes active to provide services, ensuring service continuity.
This feature does not take effect on online APs. Disabling this feature removes backup AP information from all ACs.
Examples
# Enable AP backup.
<Sysname> system-view
[Sysname] wlan ap-backup hot-backup enable global
Client backup commands
display dot1x connection-backup
Use display dot1x connection-backup to display backup information about 802.1X clients associated with the specified AC.
Syntax
display dot1x connection-backup [ ap ap-name [ radio radio-id ] ] slot slot-number
Views
Any view
Predefined user roles
network-admin
network-operator
Parameters
ap ap-name: Specifies an AP by its name, a case-sensitive string of 1 to 64 characters. The string can contain letters, digits, underscores (_), dots (.), left brackets ([), right brackets (]), forward slashes (/), and hyphens (-). If you do not specify an AP, this command displays backup information about all 802.1X clients.
radio radio-id: Specifies a radio by its ID. The value range for the radio-id argument varies by AP model. If you do not specify a radio, this command displays backup information about 802.1X clients associated with all radios of the specified AP.
slot slot-number: Specifies a cloud cluster member device by its member ID.
Examples
# Display backup information about 802.1X clients associated with AP ap1 connected to IRF member device 1.
<Sysname> display dot1x connection-backup ap ap1 slot 1
Total backup connections: 1
User MAC address : 0015-e9a6-7cfe
AP name : ap1
Radio ID : 1
SSID : EASY
BSSID : 0015-e9a6-7cf0
Username : ias
IPv4 address : 192.168.1.1
IPv6 address : 2000:0:0:0:1:2345:6789:abcd
Authentication method : CHAP
Authentication domain : 1
Initial VLAN : 1
Authorization VLAN : 100
Authorization ACL number : 3001
Authorization user profile : N/A
Authorization CAR :
Average input rate : 102400 bps
Average output rate : 102400 bps
Authorization URL : N/A
Termination action : Radius-request
Session timeout period : 2 sec
Online from : 2017/03/02 13:14:15
Online duration : 0h 2m 15s
Table 2 Command output
Field |
Description |
Total backup connections |
Number of backup 802.1X clients. |
User MAC address |
MAC address of the client. |
AP name |
Name of the AP with which the client is associated. |
Radio ID |
ID of the radio with which the client is associated. |
SSID |
SSID with which the client is associated. |
BSSID |
ID of the BSS with which the client is associated. |
Username |
Username of the client. |
IPv4 address |
IPv4 address of the client. If the device does not obtain the IPv4 address of the client, this field is not displayed. |
IPv6 address |
IPv6 address of the client. If the device does not obtain the IPv6 address of the client, this field is not displayed. |
Authentication method |
EAP message handling method: · CHAP—Performs EAP termination and uses CHAP to communicate with the RADIUS server. · EAP—Relays EAP packets and supports any of the EAP authentication methods to communicate with the RADIUS server. · PAP—Performs EAP termination and uses PAP to communicate with the RADIUS server. |
Authentication domain |
Name of the ISP domain for authentication. |
Initial VLAN |
VLAN to which the client belongs before 802.1X authentication. |
Authorization VLAN |
VLAN authorized to the client. |
Authorization ACL number |
ACL authorized to the client. |
Authorization user profile |
User profile authorized to the client. |
Authorization CAR |
Authorization CAR: · Average input rate—Average uplink rate in bps. · Average output rate—Average downlink rate in bps. · N/A—This field displays N/A if the authentication server is not configured with authorization CAR for users. |
Authorization URL |
Redirect URL authorized to the client. |
Termination action |
Action attribute assigned by the server to terminate the user session: · Default—Logs off the online authenticated 802.1X client when the session timeout timer expires. This attribute does not take effect when 802.1X periodic reauthentication is enabled and the periodic reauthentication timer is shorter than the session timeout timer. · Radius-request—Reauthenticates the online client when the session timeout timer expires, regardless of whether the 802.1X periodic reauthentication feature is enabled or not. If the device performs local authentication, this field displays N/A. |
Session timeout period |
Session timeout timer assigned by the server. If the device performs local authentication, this field displays N/A. |
Online from |
Time from which the 802.1X client came online. |
Online duration |
Online duration of the 802.1X client. |
display mac-authentication connection-backup
Use display mac-authentication connection-backup to display backup information about MAC authentication clients associated with the specified AC.
Syntax
display mac-authentication connection-backup [ ap ap-name [ radio radio-id ] ] slot slot-number
Views
Any view
Predefined user roles
network-admin
network-operator
Parameters
ap ap-name: Specifies an AP by its name, a case-sensitive string of 1 to 64 characters. The string can contain letters, digits, underscores (_), dots (.), left brackets ([), right brackets (]), forward slashes (/), and hyphens (-). If you do not specify an AP, this command displays backup information about all MAC authentication clients.
radio radio-id: Specifies a radio by its ID. The value range for the radio-id argument varies by AP model. If you do not specify a radio, this command displays backup information about MAC authentication clients associated with all radios of the specified AP.
slot slot-number: Specifies an IRF member device by its member ID.
Examples
# Display backup information about MAC authentication clients associated with AP ap1 connected to IRF member device 1.
<Sysname> display mac-authentication connection-backup ap ap1 slot 1
Total backup connections: 1
User MAC address : 0015-e9a6-7cfe
AP name : ap1
Radio ID : 1
SSID : EASY
BSSID : 0015-e9a6-7cf0
Username : ias
Authentication domain : 1
Initial VLAN : 1
Authorization VLAN : 100
Authorization ACL number : 3001
Authorization user profile : N/A
Authorization CAR :
Average input rate : 102400 bps
Average output rate : 102400 bps
Authorization URL : N/A
Termination action : Radius-request
Session timeout period : 2 sec
Online from : 2017/03/02 13:14:15
Online duration : 0h 2m 15s
Table 3 Command output
Field |
Description |
Total backup connections |
Number of backup MAC authentication clients. |
User MAC address |
MAC address of the client. |
AP name |
Name of the AP with which the client is associated. |
Radio ID |
ID of the radio with which the client is associated. |
SSID |
SSID with which the client is associated. |
BSSID |
ID of the BSS with which the client is associated. |
Username |
Username of the client. |
Authentication domain |
Name of the ISP domain for authentication. |
Initial VLAN |
VLAN to which the client belongs before MAC authentication. |
Authorization VLAN |
VLAN authorized to the client. |
Authorization ACL number |
ACL authorized to the client. |
Authorization user profile |
User profile authorized to the client. |
Authorization CAR |
Authorization CAR: · Average input rate—Average uplink rate in bps. · Average output rate—Average downlink rate in bps. · N/A—This field displays N/A if the authentication server is not configured with authorization CAR for users. |
Authorization URL |
Redirect URL authorized to the client. |
Termination action |
Action attribute assigned by the server when the session timeout timer expires. The following server-assigned action attributes are available: · Default—Logs off the online authenticated user when the session timeout timer expires. · Radius-request—Reauthenticates the online user when the session timeout timer expires. If the device performs local authentication, this field displays N/A. |
Session timeout period |
Session timeout timer assigned by the server. If the device performs local authentication, this field displays N/A. |
Online from |
Time from which the MAC authentication client came online. |
Online duration |
Online duration of the MAC authentication client. |
display wlan client-backup
Use display wlan client-backup to display backup client information.
Syntax
display wlan client-backup [ ap ap-name [ radio radio-id ] | mac-address mac-address ] [ verbose ]
display wlan client-backup [ ap ap-name [ radio radio-id ] | mac-address mac-address ] [ verbose ] [ slot slot-number ]
Views
Any view
Predefined user roles
network-admin
network-operator
Parameters
ap-name name: Specifies an AP by its name, a case-sensitive string of 1 to 64 characters. The string can contain letters, digits, underscores (_), dots (.), left brackets ([), right brackets (]), forward slashes (/), and hyphens (-).
radio radio-id: Specifies a radio by its ID. The value range for the radio-id argument varies by AP model. If you do not specify a radio, this command displays client backup information for all radios on the specified AP.
mac-address mac-address: Specifies the MAC address of a client.
verbose: Displays detailed client information. If you do not specify this keyword, the command displays brief client information.
slot slot-number: Specifies a cloud cluster member device by its member ID.
Usage guidelines
If you do not specify the ap ap-name [ radio radio-id ] option, this command displays all client information backed up on the device.
Examples
# Display brief backup client information in slot 2.
<Sysname> display wlan client-backup slot 2
Total number of clients: 3
MAC address Username AP name RID IP address IPv6 address VLAN
7854-2e1c-c59e user ap1 1 1.1.1.1 1::2:0:0:3 1
000b-c002-9d09 N/A 5866-ba74-e780 1 192.168.33.16 200
000f-e265-6400 N/A ap2 1 1.3.1.2 100
Table 4 Command output
Field |
Description |
MAC address |
MAC address of the client. |
Username |
Username of the client. · If the client uses 802.1X or MAC authentication, this field displays the username used for authentication. · If the client does not use 802.1X or MAC authentication, this field displays N/A. NOTE: If the client uses portal authentication, this field will not display the portal username of the client. |
AP name |
Name of the AP associated with the client. |
RID |
ID of the radio associated with the client. |
IP address |
IPv4 address of the client. |
IPv6 address |
IPv6 address of the client. |
VLAN |
VLAN to which the client belongs. |
# Display detailed backup client information in slot 2.
<Sysname> display wlan client-backup slot 2 verbose
Total number of clients: 1
MAC address : 000f-e265-6400
IPv4 address : 10.1.1.114
IPv6 address : 2001::1234:5678:0102:0304
Username : N/A
AID : 1
AP ID : 1
AP name : ap1
Radio ID : 1
SSID : office
BSSID : 0026-3e08-1150
VLAN ID : 3
Sleep count : 1
Power save mode : Active
Wireless mode : 802.11ac
Channel bandwidth : 80MHz
SM power save : Enabled
SM power save mode : Dynamic
Short GI for 20MHz : Supported
Short GI for 40MHz : Supported
Short GI for 80MHz : Supported
Short GI for 160/80+80MHz : Not supported
STBC RX capability : Not supported
STBC TX capability : Not supported
LDPC RX capability : Not supported
SU beamformee capability : Not supported
MU beamformee capability : Not supported
Beamformee STS capability : N/A
Block Ack : TID 0 In
Supported VHT-MCS set : NSS1 0, 1, 2, 3, 4, 5, 6, 7, 8
NSS2 0, 1, 2, 3, 4, 5, 6, 7, 8
Supported HT MCS set : 0, 1, 2, 3, 4, 5, 6, 7,
8, 9, 10, 11, 12, 13, 14,
15, 16, 17, 18, 19, 20,
21, 22, 23
Supported rates : 6, 9, 12, 18, 24, 36,
48, 54 Mbps
QoS mode : WMM
Listen interval : 10
RSSI : 62
Rx/Tx rate : 130/11 Mbps
Authentication method : Open system
Security mode : PRE-RSNA
AKM mode : Not configured
Cipher suite : N/A
User authentication mode : Bypass
Authorization ACL ID : 3001(Not effective)
Authorization user profile : N/A
Roam status : N/A
Key derivation : SHA1
PMF status : Enabled
Forward policy : Not configured
Online time : 0 days 0 hours 1 minutes 13 seconds
FT status : Inactive
Table 5 Command output
Field |
Description |
MAC address |
MAC address of the client. |
IPv4 address |
IPv4 address of the client. If no IPv4 address is available, this field displays N/A. |
IPv6 address |
IPv6 address of the client. If no IPv6 address is available, this field displays N/A. |
Username |
Username of the client. · If the client uses 802.1X or MAC authentication, this field displays the username used for authentication. · If the client does not uses 802.1X or MAC authentication, this field displays N/A. NOTE: If the client uses portal authentication, this field will not display the portal username of the client. |
AID |
Association ID of the client. |
AP ID |
ID of the AP associated with the client. |
AP name |
Name of the AP associated with the client. |
Radio ID |
ID of the radio associated with the client. |
SSID |
SSID associated with the client. |
VLAN ID |
ID of the VLAN to which the client belongs. |
Sleep count |
Number of transitions to the sleep state. |
Power save mode |
Power saving mode of the client: · Active. · Sleep. |
Wireless mode |
Radio mode of the client: · 802.11a. · 802.11b. · 802.11g. · 802.11gn. · 802.11an. · 802.11ac. |
Channel bandwidth |
Channel bandwidth: · 20 MHz. · 40 MHz. · 80 MHz. · 160 MHz. |
SM power save |
SM power save status: · Enabled—Only one antenna of the client operates in active state, and others operate in sleep state to save power. · Disabled. |
SM power save mode |
Power saving mode: · Dynamic. · Static. |
Short GI for 20MHz |
Whether the client supports short GI when its channel bandwidth is 20 MHz: · Supported. · Not supported. |
Short GI for 40MHz |
Whether the client supports short GI when its channel bandwidth is 40 MHz: · Supported. · Not supported. |
Short GI for 80MHz |
Whether the client supports short GI when its channel bandwidth is 80 MHz: · Supported. · Not supported. |
Short GI for 160/80+80MHz |
Whether the client supports short GI when its channel bandwidth is 160 MHz or 80 + 80 MHz: · Supported. · Not supported. |
STBC RX capability |
Client STBC receive capability: · Supported. · Not supported. |
STBC Tx capability |
Client STBC transmit capability: · Supported. · Not supported. |
LDPC Rx capability |
Client LDPC receive capability; · Supported. · Not supported. |
SU beamformee capability |
Client SU beamformee capability: · Supported. · Not supported. |
MU beamformee capability |
Client MU beamformee capability: · Supported. · Not supported. |
Beamformee STS capability |
Client beamformee STS capability. This field displays N/A if the feature is not supported. |
Negotiation result of Block ACK with TID: · TID 0 In—Sends Block ACK for inbound traffic. · TID 0 Out—Sends Block ACK for outbound traffic. · TID 0 Both—Sends Block ACK for both inbound and outbound traffic. · N/A—Does not send Block ACK for both inbound and outbound traffic. |
|
Supported VHT-MCS set |
VHT-MCS supported by the client. |
Supported HT MCS set |
HT-MCS supported by the client. |
Supported rates |
Rates supported by the client, in Mbps. |
QoS mode |
QoS mode: · N/A—WMM is not supported. · WMM—WMM is supported. An AP and a client negotiates WMM information. This field displays WMM only when both the AP and the client support WMM. |
Listen interval |
Interval at which the client wakes up to listen for beacon frames. It is counted by beacon interval. |
RSSI |
Received signal strength indication. This value indicates the client signal strength detected by the AP. |
Rx/Tx rate |
Sending and receiving rates of data, management, and control frames, in Mbps. |
Authentication method |
Authentication method: · Open system. · Shared key. |
Security mode |
Security mode: · RSN—Beacons and probe responses carry RSN IE. · WPA—Beacons and probe responses carry WPA IE. · PRE-RSNA—Beacons and probe responses do not carry RSN IE or WPA IE. |
AKM mode |
AKM mode: · 802.1X. · PSK. This field displays Not configured if no AKM mode is configured. |
Cipher suite |
Cipher suite: · N/A. · WEP40. · WEP104. · WEP128. · CCMP. · TKIP. |
User authentication mode |
User authentication mode: · Bypass—No client authentication. · MAC. · 802.1X. · OUI. |
Authorization ACL number |
Authorized ACL number. · This field displays the ACL number if the authorized ACL takes effect. · This field displays ACL number(Not effective) if the authorized ACL does not take effect. · This field displays N/A if the authentication server is configured without any authorization ACL. |
Authorization user profile |
Name of the authorized user profile. · This field displays the authorized user profile name if the authorized user profile takes effect. · This field displays authorized user profile name(Not effective) if the authorized user profile does not take effect. · This field displays N/A if the authentication server is configured without any authorization user profile. |
Roam status |
Roam status: · Roaming in progress. · Inter-AC roam. · Inter-MA roam. · Intra-AC roam. · Intra-MA roam. This field displays N/A if the client stays in one BSS after coming online. |
Key derivation |
Key derivation type: · SHA1—Uses the HMAC-SHA1 hash algorithm. · SHA256—Uses the HMAC-SHA256 hash algorithm. This field displays N/A if no key derivation algorithm is involved for the authentication type. |
PMF status |
PMF status: · Enabled—Management frame protection is enabled. · Disabled—Management frame protection is disabled. This field displays N/A if management frame protection is not involved. |
Forward policy |
Name of the WLAN forwarding policy. This field displays Not configured if no WLAN forwarding policy is configured. |
Online time |
Client online duration. |
FT status |
Fast BSS transition (FT): · Active—FT is enabled. · Inactive—FT is disabled. |
wlan client-backup hot-backup enable
Use wlan client-backup hot-backup enable to enable client backup in an IRF fabric.
Use undo wlan client-backup hot-backup enable to disable client backup in an IRF fabric.
Syntax
wlan client-backup hot-backup enable
undo wlan client-backup hot-backup enable
Default
Client backup is disabled in an IRF fabric.
Views
System view
Predefined user roles
network-admin
Usage guidelines
For this command to take effect, make sure AP backup is enabled.
After client backup is enabled, an active AC backs up information about associated clients to other member ACs. When the active AC fails, the associated clients can associate with another member AC so that the clients are always online. Client backup is triggered every time client information changes.
This command takes effect only on clients that come online after client backup is enabled. Disabling client backup deletes client backup information from all member ACs.
Examples
# Enable client backup.
<Sysname> system-view
[Sysname] wlan client-backup hot-backup enable
wlan client-backup hot-backup delay
Use wlan client-backup hot-backup delay to set the client backup delay.
Use undo wlan client-backup hot-backup delay to restore the default.
Syntax
wlan client-backup hot-backup delay delay-time
undo wlan client-backup hot-backup delay
Default
The client backup delay is 60 seconds.
Views
System view
Predefined user roles
network-admin
Parameters
delay-time: Specifies the client backup delay time in the range of 0 to 300 seconds. If you set the delay time to 0, the AC backs up information changes about associated clients to other ACs in real time.
Parameters
This feature takes effect only when client backup is enabled.
This command takes effect only on clients that come online after the client backup delay is set.
If an active/standby switchover occurs during the delay time, online clients whose information has not been backed up will be logged off and need to come online again. An active/standby switchover can be triggered by a restart of the active AC process.
Examples
# Set the client backup delay to 240 seconds.
<System> system-view
[System] wlan client-backup hot-backup delay 240
Related commands
wlan client-backup hot-backup enable
WLAN VSRP commands
display vsrp instance
Use display wlan client vsrp instance to display WLAN VSRP instance information.
Syntax
display wlan client vsrp instance [ instance-name ]
Views
Any view
Predefined user roles
network-admin
network-operator
Parameters
instance-name: Specifies a WLAN VSRP instance by its name, a case-sensitive string of 1 to 31 characters. If you do not specify a WLAN VSRP instance, this command displays information about all WLAN VSRP instances.
Examples
# Display information about WLAN VSRP instance abc.
<Sysname> display wlan client vsrp instance abc
VSRP instance name : abc
Instance peer address : 1.1.1.1
Instance status : Master
Tunnel status : Checking
Created at : 2021.9.16
------------------------------------------------------------------------
Table 6 Command output
Field |
Description |
Instance peer address |
Peer IP address of the TCP connection. |
Instance status |
VSRP instance state: · Master—The device acts as the master in the VSRP instance. · Backup—The device acts as the backup in the VSRP instance. · Down—The device is not running in the VSRP instance. |
Tunnel status |
Backup data tunnel state: · Up—The tunnel is in up state and can be used for data backup. · Down—The tunnel is in down state and cannot be used for data backup. · Checking—Checking AP BSS information at both ends of the tunnel. If the information is consistent, the system can perform data backup for wireless clients. If the information is inconsistent, the system cannot perform data backup for wireless clients. |
Created at |
Time at which the VSRP instance is associated with the AC. |
client vsrp-port
Use client vsrp-port to specify a TCP port number for WLAN VSRP to establish the data channel for wireless client data backup.
Use undo client vsrp-port to restore the default.
Syntax
client vsrp-port port-number
undo client vsrp-port
Default
TCP port 60048 is used to establish the data channel for wireless client data backup.
Views
Global configuration view
Predefined user roles
network-admin
Parameters
port-number: Specifies a TCP port number in the range of 1025 to 65535. The TCP port cannot be used by other services or be a well-known port.
Usage guidelines
To back up wireless client data, the device must establish a TCP data channel with the peer device. You can use this command to change the TCP port number for establishing the data channel. After you change the port number, the device disconnects the data channel and then reestablishes it by using the new port number.
Examples
# Specify TCP port 20000 for VSRP to establish the data channel for wireless client data backup.
<Sysname> system-view
[Sysname] wlan global-configuration
[Sysname-wlan-global-configuration] client vsrp-port 20000
Related commands
vsrp-instance (Global configuration view)
vsrp-instance (Global configuration view)
Use vsrp-instance to associate the AC with a VSRP instance.
Use undo vsrp-instance to restore the default.
Syntax
vsrp-instance vsrp-instance-name
undo vsrp-instance
Default
The AC is not associated with any VSRP instance.
Views
Global configuration view
Predefined user roles
network-admin
Parameters
vsrp-instance-name: Specifies a VSRP instance by its name, a case-sensitive string of 1 to 31 characters.
Usage guidelines
WLAN VSRP establishes a data backup tunnel between the master AC and backup AC for real-time synchronization of WLAN service data. If the master AC or the link to the master AC fails, the backup AC takes over services to ensure service continuity. After the switchover, online clients can still access network resources without being reauthenticated and client accounting and authorization information is retained.
Make sure the master AC and backup AC are associated with the same VSRP instance.
Examples
# Associate the AC with VSRP instance abc.
<Sysname> system-view
[Sysname] wlan global-configuration
[Sysname-wlan-global-configuration] vsrp-instance abc
Related commands
client vsrp-port