1. Home
    2. /
  2. Manuals
    3. /
  3. NETGEAR
    4. /
  4. WG302v2
    5. /
  5. 19
Page 91 / 102 Scroll up to view Page 86 - 90
NETGEAR ProSafe 802.11g Wireless Access Point WG302v2 Reference Manual
Command Line Reference
C-9
v1.0, May 2006
Configuring Security Profile Settings
You can configure up to eight security profiles on the AP.
Table C-8
maps the Web UI security
profile for wlan0 to the profile name in the CLI.
Configure the Wireless Network
Name (SSID)
set interface wlan0 ssid <ssid_name>
Example
:
set interface wlan0 ssid test_lab
Allow SSID Broadcasts
set bss wlan0bssvap0 ignore-broadcast-ssid off
Deny SSID Broadcasts
set bss wlan0bssvap0 ignore-broadcast-ssid on
Set the Wireless Mode
set radio wlan0 mode g
set radio wlan0 mode b
Set the Channel/Frequency
Not permitted
Set the Data Rate
get supported-rate wlan0
add supported-rate wlan0 <rate>
remove supported-rate wlan0 <rate>
Set the Output Power
set radio wlan0 tx-power <percent>
Table C-8
Security Profile Interface Names
Web UI Security Profile
Default Profile Name
CLI Name
Profile 1
NETGEAR
vap0
Profile 2
NETGEAR-1
vap1
Profile 3
NETGEAR-2
vap2
Profile 4
NETGEAR-3
vap3
Profile 5
NETGEAR-4
vap4
Profile 6
NETGEAR-5
vap5
Profile 7
NETGEAR-6
vap6
Profile 8
NETGEAR-7
vap7
Table C-7
Wireless Setting (continued)s
Task
Command
Page 92 / 102
NETGEAR ProSafe 802.11g Wireless Access Point WG302v2 Reference Manual
C-10
Command Line Reference
v1.0, May 2006
The commands in
Table C-9
correspond to the Security Profile Settings page on the Web UI. The
commands in this table show how to configure Security Profile 1, which is the default profile and
has a default profile name of NETGEAR.
Note:
The commands in
Table C-9
configure the default security profile, which is vap0
on radio wlan0. To configure other security profiles, use
vapx
, where
x
is the VAP
ID associated with the security profile.
Table C-9
Security Profile Settings
Task
Command
Enable a security profile
set vap vap0 with radio wlan0 status up
Disable a security profile
set vap vap0 with radio wlan0 status down
Set the security profile name
set vap vap0 with radio wlan0 profile <name>
Set the SSID of the security
profile
set interface wlan0vap0 ssid <ssid_name>
Broadcast wireless network
name.
set bss wlan0bssvap0 ignore-broadcast-ssid off
Do not broadcast wireless
network name.
set bss wlan0bssvap0 ignore-broadcast-ssid on
Set Network Authentication to
Open System
set interface wlan0 security plain-text
Set Network Authentication to
Shared Key
set interface wlan0 security static-wep
Set the Data Encryption to 64-bit
WEP
set interface wlan0vap0 wep-key-length 40
Set the Data Encryption to 128-bit
WEP
set interface wlan0vap0 wep-key-length 104
Set the Key Type to ASCII
set interface wlan0vap0 wep-key-ascii yes
Set the Data Encryption to 152-bit
WEP
set interface wlan0vap0 wep-key-length 128
Set the Key Type to Hex:
set interface wlan0vap0 wep-key-ascii no
Page 93 / 102
NETGEAR ProSafe 802.11g Wireless Access Point WG302v2 Reference Manual
Command Line Reference
C-11
v1.0, May 2006
Set the WEP Keys
set interface wlan0 wep-key-1 <key>
Note
: For 64-bit WEP, use 5 ASCII characters or 10 Hex characters. For
128-bit WEP, use 13 ASCII characters or 26 Hex characters. For 152-bit
WEP, use 32 hexadecimal or 16 ASCII characters.
Example
(64-bit WEP with ASCII):
set interface wlan0 wep-key-1 abcde
set interface wlan0 wep-key-2 fghi
set interface wlan0 wep-key-3 klmno
set interface wlan0 wep-key-4 pqrst
Set Network Authentication to
802.1X
set interface wlan0 security dot1x
Set Network Authentication to
WPA
set interface wlan0 security wpa-personal
set bss wlan0bssvap0 wpa-allowed on
set bss wlan0bssvap0 wpa2-allowed off
Set Network Authentication to
WPA2
set interface wlan0 security wpa-personal
set bss wlan0bssvap0 wpa-allowed off
set bss wlan0bssvap0 wpa2-allowed on
Set Network Authentication to
WPA and WPA2
set interface wlan0 security wpa-personal
set bss wlan0bssvap0 wpa-allowed on
set bss wlan0bssvap0 wpa2-allowed on
Set the WPA Passphrase
set interface wlan0 wpa-personal-key <key>
Example
set interface wlan0 wpa-personal-key “KeY!”
or
set interface wlan0 wpa-personal-key My!KeY
Set Network Authentication to
WPA with RADIUS
set interface wlan0 security wpa-enterprise
set bss wlan0bssvap0 wpa-allowed on
set bss wlan0bssvap0 wpa2-allowed off
Set Network Authentication to
WPA2 with RADIUS
set interface wlan0 security wpa-enterprise
set bss wlan0bssvap0 wpa-allowed off
set bss wlan0bssvap0 wpa2-allowed on
Table C-9
Security Profile Settings (continued)
Task
Command
Page 94 / 102
NETGEAR ProSafe 802.11g Wireless Access Point WG302v2 Reference Manual
C-12
Command Line Reference
v1.0, May 2006
RADIUS Server Settings
The commands in
Table C-10
correspond to the RADIUS Server Settings page on the Web UI.
Set Network Authentication to
WPA and WPA2 with RADIUS
set interface wlan0 security wpa-enterprise
set bss wlan0bssvap0 wpa-allowed on
set bss wlan0bssvap0 wpa2-allowed on
Enable Wireless Client Security
Separation
set radio wlan0 station-isolation on
Disable Wireless Client Security
Separation
set radio wlan0 station-isolation off
Set the VLAN ID for the Security
Profile
set vap vap0 with radio wlan0 vlan-id <1-4096>
Table C-10
RADIUS Server Settings
Task
Command
Set the IP Address of the
Primary Authentication Server
set radius-client
primary-authentication-server <ip_address>
Set the Port Number of the
Primary Authentication Server
set radius-client
primary-authentication-port <port_number>
Set the Shared Secret for the
Primary Authentication Server
set radius-client
primary-authentication-key <value>
Set the IP Address of the
Secondary Authentication
Server
set radius-client
secondary-authentication-server <ip_address>
Set the Port Number of the
Secondary Authentication
Server
set radius-client
secondary-authentication-port <port_number>
Set the Shared Secret for the
Secondary Authentication
Server
set radius-client
secondary-authentication-key <value>
Set the IP Address of the Pri-
mary Accounting Server
set radius-client
primary-accounting-server <ip_address>
Table C-9
Security Profile Settings (continued)
Task
Command
Page 95 / 102
NETGEAR ProSafe 802.11g Wireless Access Point WG302v2 Reference Manual
Command Line Reference
C-13
v1.0, May 2006
Access Control
The commands in
Table C-11
correspond to the Access Control page on the Web UI.
Set the Port Number of the Pri-
mary Accounting Server
set radius-client
primary-accounting-port <port_number>
Set the Shared Secret for the
Primary Accounting Server
set radius-client
primary-accounting-key <value>
Set the IP Address of the Sec-
ondary Accounting Server
set radius-client
secondary-accounting-server <ip_address>
Set the Port Number of the Sec-
ondary Accounting Server
set radius-client
secondary-accounting-port <port_number>
Set the Shared Secret for the
Secondary Accounting Server
set radius-client
secondary-accounting-key <value>
Table C-11
Access Control Settings
Task
Command
View a list of wireless clients
by MAC address
get association station
Create a list of clients to permit
access to the AP
set bss wlan0bssvap0 mac-acl-mode accept-list
Add a client to the Trusted
Wireless Stations list
add mac-acl wlan0bssvap0 mac <mac_address>
Example
:
add mac-acl wlan0bssvap0 mac 00:01:02:03:04:05
add mac-acl wlan0bssvap0 mac 00:01:02:03:04:06
Remove a client from the
Trusted Wireless Stations list
remove mac-acl wlan0bssvap0 mac <mac_address>
Disable MAC Access Control
(remove all clients from the
list)
remove mac-acl all
Table C-10
RADIUS Server Settings (continued)
Task
Command

Rate

4 / 5 based on 1 vote.

Popular NETGEAR Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top