Specifications

ManualsBrandsMotorola ManualsSoftwareWiNG 5.2.6

421

422

423

424

425

426

427

428

429

430

6 - 32 WiNG 5.2.6 Wireless Controller CLI Reference Guide

6.1.20 firewall



show commands

Displays wireless firewall information, such as DHCP snoop table entries, denial of service statistics, active session

summaries etc.

Supported in the following platforms:

• Access Points — AP300, AP621, AP622, AP650, AP6511, AP6521, AP6532, AP71XX, AP81XX

• Wireless Controllers — RFS4000, RFS6000, RFS7000, NX9000, NX9500

Syntax

show firewall [dhcp|dos|flows]

show firewall [dhcp snoop-table|dos stats] {on <DEVICE-NAME>}

show firewall flows {[filter|management|on|stats|wireless-client <MAC>]}

show firewall flows {filter [dir|dst port <1-65535>|ether|flow-type|icmp|

igmp|ip|max-idle|min-bytes|min-idle|min-pkts|not|port|src|tcp|udp]}

show firewall flows {management {on <DEVICE-NAME>}|stats {on <DEVICE-

NAME>}|wireless-client <MAC>|on <DEVICE-NAME>}

Parameters

• show firewall [dhcp snoop-table|dos stats]

• show firewall flows {management {on <DEVICE-NAME>}|stats {on <DEVICE-NAME>}|

wireless-client <MAC>|on <DEVICE-NAME>}

dhcp snoop-table Displays Dynamic Host Configuration Protocol (DHCP) snoop table entries

• snoop-table – Displays DHCP snoop table entries

DHCP snooping acts as a firewall between non-trusted hosts and the DHCP server. Snoop

table entries contain MAC address, IP address, lease time, binding type, and interface

information of non-trusted interfaces.

dos stats Displays Denial of Service (DoS) statistics

on <DEVICE-NAME> The following are common to the DHCP snoop table and DoS stats parameters:

• on <DEVICE-NAME> – Optional. Displays snoop table entries, or DoS stats on a

specified device

• <DEVICE-NAME> – Specify the name of the AP or wireless controller.

firewall flows Notifies a session has been established

management

{on <DEVICE-NAME>}

Optional. Displays management traffic firewall flows

• on <DEVICE-NAME> – Optional. Displays firewall flows on a specified device

• <DEVICE-NAME> – Specify the name of the AP or wireless controller.

stats

{on <DEVICE-NAME>}

Optional. Displays active session summary

• on <DEVICE-NAME> – Optional. Displays active session summary on a specified device

• <DEVICE-NAME> – Specify the name of the AP or wireless controller.

wireless-client <MAC> Optional. Displays wireless clients firewall flows

• <MAC> – Specify the MAC address of the wireless client.