Cisco Cisco Aironet 350 Wireless Bridge Manual Técnica

Descargar
Página de 13
!−−− Authentication [user validation] is to be done for
!−−− users in a group called "eap_methods" who use server group "rad_eap".
.
.
.
!         
bridge irb
!
interface Dot11Radio0
 no ip address
 no ip route−cache
 !
 encryption vlan 1 key 1 size 128bit 
   12345678901234567890123456 transmit−key
!This step is optional−−−−!−−− This value seeds the initial key for use with
!−−− broadcast [255.255.255.255] traffic.  If more than one VLAN is
!−−− used, then keys must be set for each VLAN.
encryption vlan 1 mode wep mandatory
!−−− This defines the policy for the use of Wired Equivalent Privacy (WEP).  
!−−− If more than one VLAN is used, 
!−−− the policy must be set to mandatory for each VLAN.  
broadcast−key vlan 1 change 300
!−−− You can also enable Broadcast Key Rotation for each vlan and Specify the time
   after which Brodacst key is changed. If it is disabled Broadcast Key is still
   used but not changed.
ssid cisco
           vlan 1
!−−− Create a SSID Assign a vlan to this SSID
            authentication open eap eap_methods
            authentication network−eap eap_methods 
!−−− Expect that users who attach to SSID "cisco"  
!−−− request authentication with the type 128 Open EAP and Network EAP  authentication 
!−−− bit set in the headers of those requests, and group those users into
!−−− a group called "eap_methods." 
 !
 speed basic−1.0 basic−2.0 basic−5.5 basic−11.0
 rts threshold 2312
 channel 2437
 station−role root
 bridge−group 1
 bridge−group 1 subscriber−loop−control
 bridge−group 1 block−unknown−source
 no bridge−group 1 source−learning
 no bridge−group 1 unicast−flooding
 bridge−group 1 spanning−disabled
.
.
.
interface FastEthernet0
 no ip address
 no ip route−cache
 duplex auto
 speed auto
 bridge−group 1