Chapter 32
Instant supports the use of Command Line Interface (CLI) for scripting purposes. You can access the Instant CLI through a Secure Shell (SSH).
To enable the SSH access to the Instant CLI:
1. | From the Instant UI, navigate to > . |
2. | Select | from the drop-down list.
3. | Click | .
On connecting to a CLI session, the system displays its host name followed by the login prompt. Use the administrator credentials to start a CLI session. For example:
(Instant AP)
User: admin
Password: *****
If the login is successful, the privileged command mode is enabled and a command prompt is displayed. For example:
(Instant AP)#
The privileged mode provides access to
, , , , and commands. The configuration commands are available in the configuration (config) mode. To move from privileged mode to the configuration mode, enter the following command at the command prompt:(Instant AP)# configure terminal
The configure terminal command allows you to enter the basic configuration mode and the command prompt is displayed as follows:
(Instant AP)(config)#
The Instant CLI allows CLI scripting in several other sub-command modes to allow the users to configure individual interfaces, SSIDs, access rules, and security settings.
You can use the question mark (?) to view the commands available in a privileged mode, configuration mode, or sub-mode.
|
Although automatic completion is supported for some commands such as , the complete and commands must be entered at command prompt for successful execution. |
Each command processed by the Virtual Controller is applied on all the slave IAPs in a cluster. When you make configuration changes on a master IAP in the CLI, all associated IAPs in the cluster inherit these changes and subsequently update their configurations. The changes configured in a CLI session are saved in the CLI context.
The CLI does not support the configuration data exceeding the 4K buffer size in a CLI session: therefore,
To apply and save the configuration changes at regular intervals, use the following command in the privileged mode:
(Instant AP)# commit apply
To apply the configuration changes to the cluster, without saving the configuration, use the following command in the privileged mode:
(Instant AP)# commit apply no-save
To view the changes that are yet to be applied, use the following command in the privileged mode:
(Instant AP)# show uncommitted-config
To revert to the earlier configuration, use the following command in the privileged mode.
(Instant AP)# commit revert
(Instant AP)(config)# rf dot11a-radio-profile
(Instant AP)(RF dot11a Radio Profile)# beacon-interval 200
(Instant AP)(RF dot11a Radio Profile)# no legacy-mode
(Instant AP)(RF dot11a Radio Profile)# dot11h
(Instant AP)(RF dot11a Radio Profile)# interference-immunity 3
(Instant AP)(RF dot11a Radio Profile)# csa-count 2
(Instant AP)(RF dot11a Radio Profile)# spectrum-monitor
(Instant AP)(RF dot11a Radio Profile)# end
(Instant AP)# show uncommitted-config
rf dot11a-radio-profile
no legacy-mode
beacon-interval 200
no dot11h
interference-immunity 3
csa-count 1
no spectrum-monitor
Instant Access Point# commit apply
Some commands in configuration mode allow you to enter into a sub-mode to configure the commands specific to that mode. When you are in a configuration sub-mode, the command prompt changes to indicate the current sub-mode.
You can exit a sub-command mode and return to the basic configuration mode or the privileged Exec (enable) mode at any time by executing the
or command.Use the
command to delete or negate previously-entered configurations or parameters. | To view a list of no commands, type | at the prompt in the relevant mode or sub-mode followed by the question mark. For example:
(Instant AP)(config) # no?
| To delete a configuration, use the | form of a configuration command. For example, the following command removes a configured user role:
(Instant AP)(config) # no user <username>
| To negate a specific configured parameter, use the | parameter within the command. For example, the following command deletes the PPPoE user configuration settings:
(Instant AP)(config) # pppoe-uplink-profile
(Instant AP)(pppoe_uplink_profile)# no pppoe-username
The Instant CLI does not support positioning or precedence of sequence-sensitive commands. Therefore, Aruba
The following table lists the sequence-sensitive commands and the corresponding
command to remove the configuration.
Sequence-Sensitive Command |
Corresponding no command |
opendns <username <password> |
no opendns |
rule <dest> <mask> <match> <protocol> <start-port> <end-port> {permit |deny | src-nat | dst-nat {<IP-address> <port>| <port>}}[<option1…option9>] |
no rule <dest> <:mask> <match> <protocol> <start-port> <end-port> {permit | deny | src-nat | dst-nat} |
mgmt-auth-server <auth-profile-name> |
no mgmt-auth-server <auth-profile-name> |
set-role <attribute>{{equals| not-equals| starts-with| ends-with| contains} <operator> <role>| value-of} |
no set-role <attribute>{{equals| not-equals| starts-with| ends-with| contains} <operator>| value-of} no set-role |
set-vlan <attribute>{{equals| not-equals| starts-with| ends-with| contains} <operator> <VLAN-ID>| value-of} |
no set-vlan <attribute>{{equals| not-equals| starts-with| ends-with| contains} <operator>| value-of} no set-vlan |
auth-server <name> | no auth-server <name> |
New Commands and Modified Commands in Aruba Instant 6.4.0.2-4.1
auth-survivability cache-time-out
clear airgroup state statistics
hotspot anqp-domain-name-profile
hotspot anqp-ip-addr-avail-profile
hotspot anqp-nai-realm-profile
hotspot anqp-roam-cons-profile
hotspot anqp-venue-name-profile
hotspot h2qp-oper-name-profile
hotspot h2qp-oper-class-profile
hotspot h2qp-wan-metrics-profile
mgmt-auth-server-load-balancing
show ap debug airwave-config-received
show ap debug airwave-data-sent
show ap debug airwave-events-pending
show ap debug airwave-signon-key
show ap debug persistent-clients
show distributed-dhcp-branch-counts
show ap debug dot1x-statistics
show ap debug radius-statistics
vpn reconnect-time-on-failover