Technical Specs
Table Of Contents
- Cisco Connected Grid WPAN Module for CGR 1000 Series Installation and Cisco Resilient Mesh Configuration Guide (Cisco IOS)
- Cisco Connected Grid WPAN Module for CGR 1000 Series Installation and Cisco Resilient Mesh Configuration Guide (Cisco IOS)
- Hardware Overview
- WPAN Antennas, Connectors, and Cables
- Installing and Removing the Module
- Technical Specifications
- Information About Cisco Resilient Mesh and WPAN
- Configuring Cisco Resilient Mesh and the WPAN Module
- Configuring the WPAN Interface
- Configuring the CGM WPAN OFDM Module
- Configuring Adaptive Modulation
- Configuring Group Multicast
- Configuring RPL
- Configuring IPv6
- Configuring PON RPL
- Configuring the Power Outage Server
- Configuring QoS
- Configuring Cisco Resilient Mesh Security
- Configuring IPv6 Multicast Agent
- Configuring Dual-PHY WPAN
- Configuring DTLS Relay for EST
- Configuring Wi-SUN Mode
- Verifying Connectivity to the CGR
- show Command Examples
- Debugging the WPAN Module
- Sample Router Configuration
- Sample CGR and ASR Configuration
- Checking and Upgrading the WPAN Firmware Version
- Related Documentation
- Obtaining Documentation and Submitting a Service Request
From Release 6.1, mesh device supports radius server on TLS1.2. On TLS 1.2. the supported cipher suites are:
TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
TLS_ECDHE_ECDSA_WITH_AES_128_CCM_8
Note
Cisco Resilient Mesh Security Troubleshooting
Use the following commands to troubleshoot Cisco Resilient Mesh:
• show dot1x all details, on page 38
• show mesh-security keys, on page 39
• show mesh-security session all, on page 39
• show mesh-security interface wpan <slot >/<port >
show dot1x all details
To view the configuration and clients of the Cisco Resilient Mesh 802.1X security configuration, use the show dot1x all details
command:
The output for this command shows only new or re-authentications. It will not show nodes that are in the process of
warm-starting (and have cached the security credentials).
Note
# show dot1x all details
Sysauthcontrol Enabled
Dot1x Protocol Version 3
Dot1x Info for Wpan4/1
-----------------------------------
PAE = AUTHENTICATOR
PortControl = AUTO
ControlDirection = Both
HostMode = MULTI_AUTH
QuietPeriod = 60
ServerTimeout = 0
SuppTimeout = 30
ReAuthMax = 2
MaxReq = 2
TxPeriod = 30
Dot1x Authenticator Client List
-------------------------------
EAP Method = (13)
Supplicant = 0108.003c.2303
Session ID = 640000020000001D00288E5C
Auth SM State = AUTHENTICATED
Auth BEND SM State = IDLE
EAP Method = (13)
Supplicant = 0108.003c.2302
Session ID = 640000020000001C002854F8
Auth SM State = AUTHENTICATED
Auth BEND SM State = IDLE
EAP Method = (13)
Supplicant = 0108.003c.2304
Session ID = 640000020000001B0026A39A
38
REVIEW DRAFT - CISCO CONFIDENTIAL