Login
- Table of Contents
-
- 27-WLAN Command Reference (AC)
- 00-Preface
- 01-Compatibility of hardware and AC functionality
- 02-AP management commands
- 03-Radio management commands
- 04-WLAN access commands
- 05-WLAN security commands
- 06-WIPS commands
- 07-WLAN QoS commands
- 08-WLAN roaming commands
- 09-WLAN load balancing commands
- 10-WLAN radio resource measurement commands
- 11-Channel scanning commands
- 12-Band navigation commands
- 13-WLAN high availability commands
- 14-Wireless location commands
- 15-WLAN multicast optimization commands
- 16-User isolation commands
- 17-WLAN probe commands
- 18-Spectrum management commands
- 19-WLAN optimization commands
- 20-WLAN RRM commands
- 21-WLAN IP snooping commands
- 22-WLAN forwarding commands
- 23-WLAN radio load balancing commands
- 24-Client roaming center commands
- Related Documents
-
| Title | Size | Download |
|---|---|---|
| 19-WLAN optimization commands | 76.81 KB |
WLAN optimization commands
option 4-way-handshake resend
Use option 4-way-handshake resend to set the maximum number of retransmissions for an EAPOL-Key packet and the retransmission interval.
Use undo option 4-way-handshake resend to restore the default.
Syntax
option 4-way-handshake resend max-count [ interval interval ]
undo option 4-way-handshake resend
Default
The maximum number of retransmissions for an EAPOL-Key packet is three, and the retransmission interval is 300 milliseconds.
Views
Service template view
Predefined user roles
network-admin
Parameters
resend max-count: Specifies the maximum number of retransmissions for an EAPOL-Key packet, in the range of 0 to 3.
interval interval: Specifies the retransmission interval in the range of 200 to 500 milliseconds.
Usage guidelines
In Robust Security Network Association (RSNA) authentication, an AP and a client use EAPOL-Key packets in the four-way handshake to negotiate the keys. After that, the AP and the client periodically exchange EAPOL-Key packets to update the keys.
During key negotiation or update, the AP keeps retransmitting an EAPOL-Key packet until a response is received or the maximum number of retries for an EAPOL-Key packet is reached.
The system starts to count the retries when the maximum number of retransmissions is reached.
To ensure successful RSN key negotiation or update, you can increase the maximum number of retransmissions and the maximum number of retries for an EAPOL-Key packet.
For more information about RSN key negotiation or update, see "Configuring WLAN security."
Examples
# In service template view, set the maximum number of retransmissions for an EAPOL-Key packet to one and the retransmission interval to 400 milliseconds.
<Sysname> system-view
[Sysname] wlan service-template service1
[Sysname-wlan-st-svervice1] option 4-way-handshake resend 1 interval 400
Related commands
option 4-way-handshake retry
option 4-way-handshake retry
Use option 4-way-handshake retry to set the maximum number of retries for an EAPOL-Key packet and the retry interval.
Use undo option 4-way-handshake retry to restore the default.
Syntax
option 4-way-handshake retry max-count [ interval interval ]
undo option 4-way-handshake retry
Default
The maximum number of retries for an EAPOL-Key packet is three, and the retry interval is 5 seconds.
Views
Service template view
Predefined user roles
network-admin
Parameters
retry max-count: Specifies the maximum number of retries for an EAPOL-Key packet, in the range of 0 to 3.
interval interval: Specifies the retry interval. The value range is 2 to 5 seconds.
Usage guidelines
During RSN key negotiation or update, an AP keeps retransmitting an EAPOL-Key packet until a response is received or the maximum number of retries for an EAPOL-Key packet is reached.
The system starts to count the retries when the maximum number of retransmissions is reached.
If you execute this command for multiple times, the most recent configuration takes effect.
Examples
# In service template view, set the maximum number of retries for an EAPOL-Key packet to two and the retry interval to 3 seconds.
<Sysname> system-view
[Sysname] wlan service-template service1
[Sysname-wlan-st-service1] option 4-way-handshake retry 2 interval 3
Related commands
option 4-way-handshake resend
option client fast-forwarding
Use option client fast-forwarding enable to enable fast forwarding of AP-to-client data frames.
Use option client fast-forwarding disable to disable fast forwarding of AP-to-client data frames.
Use undo option client fast-forwarding to restore the default.
Syntax
option client fast-forwarding { disable | enable level level-value }
undo option client fast-forwarding
Default
In radio view, a radio uses the configuration in an AP group's radio view.
In an AP group's radio view, fast forwarding of AP-to-client data frames is disabled.
Views
Radio view
AP group's radio view
Predefined user roles
network-admin
Parameters
level level-value: Specifies the fast forwarding level in the range of 1 to 4.
Usage guidelines
This feature enables an AP to forward data frames to clients without extra processing (such as verification and counting) to improve processing efficiency.
Examples
# Enable fast forwarding of AP-to-client data frames for AP ap1.
<Sysname> system-view
[Sysname] wlan ap ap1 model WA6320
[Sysname-wlan-ap-ap1] radio 1
[Sysname-wlan-ap-ap1-radio-1] option client fast-forwarding enable level 1
# Enable fast forwarding of AP-to-client data frames for APs with model WA6320 in AP group 1.
<Sysname> system-view
[Sysname] wlan ap-group 1
[Sysname-wlan-ap-group-1] ap-model WA6320
[Sysname-wlan-ap-group-1-ap-model-WA6320] radio 1
[Sysname-wlan-ap-group-1-ap-model-WA6320-radio-1] option client fast-forwarding enable level 1
option client hide-node-protection
Use option client hide-node-protection enable to enable hidden node protection.
Use option client hide-node-protection disable to disable hidden node protection.
Use undo option client hide-node-protection to restore the default.
Syntax
option client hide-node-protection { disable | enable }
undo option client hide-node-protection
Default
In radio view, a radio uses the configuration in an AP group's radio view.
In an AP group's radio view, hidden node protection is disabled.
Views
Radio view
AP group's radio view
Predefined user roles
network-admin
Usage guidelines
This command takes effect only on 802.11g, 802.11n, and 802.11ac clients.
This feature enables clients to send RTS or CTS frames before transmitting frames to avoid interference from hidden nodes.
Examples
# Enable hidden node protection for AP ap1.
<Sysname> system-view
[Sysname] wlan ap ap1 model WA6320
[Sysname-wlan-ap-ap1] radio 1
[Sysname-wlan-ap-ap1-radio-1] option client hide-node-protection enable
# Enable hidden node protection for APs with model WA6320 in AP group 1.
<Sysname> system-view
[Sysname] wlan ap-group 1
[Sysname-wlan-ap-group-1] ap-model WA6320
[Sysname-wlan-ap-group-1-ap-model-WA6320] radio 1
[Sysname-wlan-ap-group-1-ap-model-WA6320-radio-1] option client hide-node-protection enable
option client reconnect
Use option client reconnect enable to enable AP-triggered client reassociation.
Use option client reconnect disable to disable AP-triggered client reassociation.
Use undo option client reconnect to restore the default.
Syntax
option client reconnect { disable | enable [ rssi rssi-value ] [ interval interval ] }
undo option client reconnect
Default
In radio view, a radio uses the configuration in an AP group's radio view.
In an AP group's radio view, AP-triggered client reassociation is disabled.
Views
Radio view
AP group's radio view
Predefined user roles
network-admin
Parameters
rssi rssi-value: Specifies the RSSI threshold in the range of 5 to 100. The default and recommended RSSI thresholds are 10 and 20, respectively.
interval interval: Specifies the interval at which an AP detects the signal strength of the clients. The value range for the interval argument is 3 to 10 seconds and the default interval is 3 seconds.
Usage guidelines
This feature enables an AP to send deauthentication frames to a client when the AP detects that the signal strength of the client is lower than the specified RSSI threshold. Then, the client can reassociate with the AP or roam to another AP.
Examples
# Enable AP-triggered client reassociation for AP ap1. Set the RSSI threshold and detection interval to 30 and 5 seconds, respectively.
<Sysname> system-view
[Sysname] wlan ap ap1 model WA6320
[Sysname-wlan-ap-ap1] radio 1
[Sysname-wlan-ap-ap1-radio-1] option client reconnect enable rssi 30 interval 5
# Enable AP-triggered client reassociation for APs with model WA6320 in AP group 1. Set the RSSI threshold and detection interval to 30 and 5 seconds, respectively.
<Sysname> system-view
[Sysname] wlan ap-group 1
[Sysname-wlan-ap-group-1] ap-model WA6320
[Sysname-wlan-ap-group-1-ap-model-WA6320] radio 1
[Sysname-wlan-ap-group-1-ap-model-WA6320-radio-1] option client reconnect enable rssi 30 interval 5
option client reject
Use option client reject enable to enable an AP to reject weak-signal clients.
Use option client reject disable to disable an AP from rejecting weak-signal clients.
Use undo option client reject to restore the default.
Syntax
option client reject { disable | enable [ rssi rssi-value ] }
undo option client reject
Default
In radio view, a radio uses the configuration in an AP group's radio view.
In an AP group's radio view, a radio does not reject weak-signal clients.
Views
Radio view
AP group's radio view
Predefined user roles
network-admin
Parameters
rssi rssi-value: Specifies the RSSI threshold in the range of 5 to 100. Both the default and recommended RSSI thresholds are 10.
Usage guidelines
This feature enables an AP to reject clients with an RSSI lower than the specified threshold to release channel resources and enhance WLAN performance.
After you enable this feature, wireless clients with an RSSI lower than the threshold might fail to access the WLAN.
After a client accesses the WLAN, an AP will not log off the client with an RSSI lower than the threshold but will reject the client after it disconnects from the network.
Examples
# Enable AP ap1 to reject clients with an RSSI lower than 30 dBm.
<Sysname> system-view
[Sysname] wlan ap ap1 model WA6320
[Sysname-wlan-ap-ap1] radio 1
[Sysname-wlan-ap-ap1-radio-1] option client reject enable rssi 30
# Enable APs with model WA6320 in AP group 1 to reject clients with an RSSI lower than 30 dBm.
<Sysname> system-view
[Sysname] wlan ap-group 1
[Sysname-wlan-ap-group-1] ap-model WA6320
[Sysname-wlan-ap-group-1-ap-model-WA6320] radio 1
[Sysname-wlan-ap-group-1-ap-model-WA6320-radio-1] option client reject enable rssi 30
rrop client fast-keep-alive
Use rrop client fast-keep-alive enable to enable client fast keepalive.
Use rrop client fast-keep-alive disable to disable client fast keepalive.
Use undo rrop client fast-keep-alive to restore the default.
Syntax
rrop client fast-keep-alive { disable | enable [ count count-value ] }
undo rrop client fast-keep-alive
Default
In radio view, a radio uses the configuration in the AP group's radio view.
In an AP group's radio view, the client fast keepalive feature is enabled.
Views
Radio view
AP group's radio view
Predefined user roles
network-admin
Parameters
count count-value: Specifies the maximum number of keepalive packets that an AP can send to a client, in the range of 128 to 2048. The default value is 450.
Usage guidelines
The client keepalive feature enables an AP to send keepalive packets to clients at the specified interval to determine whether the clients are online. To quickly determine whether clients are online and save radio resources, execute this command to set the maximum number of keepalive packets that an AP can send to a client. The AP logs off a client if it does not receive any replies from the client after sending the specified number of keepalive packets to the client.
This command is mainly used in scenarios with high client mobility. If the network quality is poor, reduce the maximum number of keepalive packets that an AP can send to a client. As a best practice, use the default setting in scenarios with stable clients.
The configuration in radio view takes precedence over the configuration in an AP group's radio view.
Examples
# Enable client fast keepalive for AP ap1 and set the maximum number of keepalive packets to 300.
<Sysname> system-view
[Sysname] wlan ap ap1 model WA6320
[Sysname-wlan-ap-ap1] radio 1
[Sysname-wlan-ap-ap1-radio-1] rrop client fast-keep-alive enable count 300
# Enable client fast keepalive for APs with model WA6320 in AP group 1 and set the maximum number of keepalive packets to 300.
<Sysname> system-view
[Sysname] wlan ap-group 1
[Sysname-wlan-ap-group-1] ap-model WA6320
[Sysname-wlan-ap-group-1-ap-model-WA6320] radio 1
[Sysname-wlan-ap-group-1-ap-model-WA6320-radio-1] rrop client fast-keep-alive enable count 300
Related commands
client keep-alive
wlan client inspect
Use wlan client inspect enable to enable client inspection.
Use wlan client inspect disable to disable client inspection.
Use undo wlan client inspect to restore the default.
Syntax
wlan client inspect { disable | enable }
undo wlan client inspect
Default
Client inspection is disabled.
Views
AP view
AP group view
Predefined user roles
network-admin
Usage guidelines
The client inspection feature enables you to view information about packets exchanged and time consumed in each stage of the client association process.
In the current software version, the client inspection feature supports only client association, client association failure, and IP address lease extension events.
Examples
# Enable client inspection for AP ap1.
<Sysname> system-view
[Sysname] wlan ap ap1 model WA6320
[Sysname-wlan-ap-ap1] wlan client inspect enable
# Enable client inspection for APs in AP group group1.
<Sysname> system-view
[Sysname] wlan ap-group group1
[Sysname-ap-group-group1] wlan client inspect enable
