IAP: interference AP log

CLIでは以下で確認しています。

show log security

Mar 31 15:24:38  sapd[1789]: <127004> <NOTI> |AP 6c:f3:7f:c5:35:68@1.1.1.1 sapd| |ids-ap| AP(6c:f3:7f:d3:56:80): Interfering AP: An AP detected an interfering access point (BSSID e8:08:8b:bf:2f:1a and SSID EMOBILE-GL10P-2F1A on CHANNEL 11).

6c:f3:7f:c5:35:68# show log system | in New

Mar 31 15:31:34  sapd[1789]: <326272> <NOTI> |AP 6c:f3:7f:c5:35:68@1.1.1.1 sapd| |ap| AM: New AP Detected Channel = 60 SSID = nk-dummy2 BSSID = 24:de:c6:36:83:f2

以下の2つのSyslogは少なくとも利用可能です。

Mar 31 14:57:02 10.215.1.39 Mar 31 14:57:02 2015 10.215.1.39 sapd[1789]: <127004> <NOTI> <10.215.1.39 6C:F3:7F:C5:35:68> |ids-ap| AP(6c:f3:7f:d3:56:80): Interfering AP: An AP detected an interfering access point (BSSID 6c:f3:7f:e8:c5:40 and SSID nk-psk on CHANNEL 6).

Mar 31 14:57:02 10.215.1.39 Mar 31 14:57:02 2015 10.215.1.39 sapd[1789]: <326272> <NOTI> <10.215.1.39 6C:F3:7F:C5:35:68> |ap| AM: New AP Detected Channel = 6 SSID = nk-psk BSSID = 6c:f3:7f:e8:c5:40

APが消えた場合に上がるログ

Mar 31 14:54:07 10.215.1.39 Mar 31 14:54:07 2015 10.215.1.39 sapd[1789]: <326276> <NOTI> <10.215.1.39 6C:F3:7F:C5:35:68> |ap| AM: Inactive AP Detected SSID = nk-psk BSSID = 6c:f3:7f:e8:c5:40

SNMPWは干渉検出用のMIBはありません。

AOS: Aruba MC: Setup Overview: MCセットアップ1 HotSpot20

Intial-Setup-Wizard --> JP3 for Japan country code
--------------------------------------------------------------------
Step0. Basic Configuration
--------------------------------------------------------------------
control-plane-security
   no cpsec-enable
!
ap-group "default"
 dot11a-radio-profile rp-monitor-a
 dot11g-radio-profile rp-monitor-g
!
web-server
   session-timeout 3600
telnet cli
   loginsession timeout 0

--------------------------------------------------------------------
Step1. PSK-Configuration
--------------------------------------------------------------------
aaa profile "test1"
  initial-role authenticated
  authentication-dot1x "default-psk"
!
wlan ssid-profile test1
 essid "TK-dcm-psk"
 wpa-passphrase aruba123
 opmode wpa2-psk-aes
!
----------------------------------
wlan virtual-ap test1
 vlan 200
 aaa-profile test1
 ssid-profile test1
!
ap-group DCM
 virtual-ap test1
----------------------------------
Step2-1. AP Setup (Campus AP mode)
----------------------------------
provision-ap copy-provisioning-params ap-name "00:24:6c:c0:18:c3"
provision-ap master 10.215.200.193
provision-ap server-ip 10.215.200.193
provision-ap ap-group "DCM"
provision-ap ap-name "AP-1"
provision-ap reprovision ap-name "00:24:6c:c0:18:c3"

provision-ap copy-provisioning-params ap-name "d8:c7:c8:ca:45:68"
provision-ap master 10.215.200.193
provision-ap server-ip 10.215.200.193
provision-ap ap-group "DCM"
provision-ap ap-name "AP-2"
provision-ap reprovision ap-name "d8:c7:c8:ca:45:68"

--------------------------------------------------------------------
Step2-2. AP Setup (Remote AP mode)
--------------------------------------------------------------------
whitelist-db rap add mac-address d8:c7:c8:cd:d1:34 ap-group DCM  ap-name "RAP-1" remote-ip 1.1.1.1
ip local pool VPN 192.168.1.1 192.168.1.100

provision-ap copy-provisioning-params ap-name "d8:c7:c8:cd:d1:34"
provision-ap master 153.150.107.202
provision-ap server-ip 153.150.107.202
provision-ap ap-group "DCM"
provision-ap ap-name "RAP-1"
provision-ap remote-ap
provision-ap reprovision ap-name "d8:c7:c8:cd:d1:34"
----------------------------------
Step2-3. AP Setup verification
----------------------------------
show ap bss-table
show ap database
show user

--------------------------------------------------------------------
Step4. PEAP-Configuration
--------------------------------------------------------------------
aaa authentication-server radius "CP-1"
  host 10.215.200.190
  key aruba123
!
aaa server-group "RADIUS-1"
  auth-server "CP-1" position 1
!
aaa rfc-3576-server "10.215.200.190"
   key aruba123
!
aaa profile "EAP-PEAP"
  dot1x-server-group "RADIUS-1"
  dot1x-default-role "authenticated"
  authentication-dot1x "default"
  radius-accounting "RADIUS-1"
  radius-interim-accounting
  rfc-3576-server "10.215.200.190"
!
wlan ssid-profile "TK-dcm-PEAP"
   essid "TK-dcm-PEAP"
   opmode wpa2-aes
!
wlan virtual-ap "TK-dcm-PEAP"
   aaa-profile "EAP-PEAP"
   ssid-profile "TK-dcm-PEAP"
   vlan 200
!
ap-group DCM
 virtual-ap "TK-dcm-PEAP"

--------------------------------------------------------------------
Step5. Open-SSID-Configuration
--------------------------------------------------------------------
aaa profile "test2"
  initial-role authenticated

wlan ssid-profile "test2"
  essid "TK-dcm-open"
  opmode open

wlan virtual-ap test2
  aaa-profile test2
  ssid-profile test2
  vlan 200
!
ap-group DCM
  virtual-ap test2
--------------------------------------------------------------------
Step6. HS20
--------------------------------------------------------------------
wlan hotspot anqp-venue-name-profile "dcm-anqp-vn-prof"
   venue-group business
   venue-type business-research-and-development
   venue-lang-code "jpn"
   venue-name "DCM"
!
wlan hotspot anqp-nwk-auth-profile "dcm-anqp-nwk-auth-prof"
!
wlan hotspot anqp-nai-realm-profile "dcm-anqp-nr-prof"
   nai-realm-name "dcm.com"
   nai-realm-eap-method eap-ttls
   nai-realm-auth-id-1 non-eap-inner-auth
   nai-realm-auth-value-1 non-eap-mschapv2
   nai-home-realm
!
wlan hotspot anqp-3gpp-nwk-profile "dcm-anqp-3gpp-nwk-prof"
   3gpp-plmn1 "44010"
!
!wlan hotspot h2qp-operator-friendly-name-profile "dcm-ofn-prof"
!   op-lang-code "jpn"
!   op-fr-name "DCM Wi-Fi"
!
wlan hotspot anqp-domain-name-profile "dcm-anqp-dn-prof"
   domain-name "dcm"
!
wlan hotspot advertisement-profile "dcm-adv-prof"
   anqp-venue-name-profile "dcm-anqp-vn-prof"
   anqp-nwk-auth-profile "dcm-anqp-nwk-auth-prof"
   anqp-roam-cons-profile "default"
   anqp-nai-realm-profile "dcm-anqp-nr-prof"
   anqp-3gpp-nwk-profile "dcm-anqp-3gpp-nwk-prof"
   anqp-ip-addr-avail-profile "default"
   h2qp-wan-metrics-profile "default"
   h2qp-operator-friendly-name-profile "default"
   h2qp-conn-cap-profile "default"
   h2qp-op-cl-profile "default"
   anqp-domain-name-profile "dcm-anqp-dn-prof"
!
wlan hotspot hs2-profile "dcm-hs-prof"
   hotspot-enable
   advertisement-profile "dcm-adv-prof"
   internet
   query-response-length-limit 127
   venue-group residential
   venue-type business-research-and-development
!
wlan virtual-ap "TK-dcm-PEAP"
   hs2-profile "dcm-hs-prof"

--------------------------------------------------------------------
Step7. HS20
--------------------------------------------------------------------
wlan hotspot h2qp-osu-prov-list-profile "dcm-osu-prof"
   osu-server-uri "https://10.215.200.190/guest/HotSpot2OnlineSignUp.php"
   srvc-desc1 "DCM Testing"
   osu-method SOAP-XML
!  osu-server-uri "https://153.150.107.201/guest/HotSpot2OnlineSignUp.php"

wlan hotspot advertisement-profile "dcm-adv-prof"
   h2qp-osu-prov-list-profile "dcm-osu-prof"
!
--------------------------------------------------------------------
Step8. Memo(not used yet)
--------------------------------------------------------------------
wlan ssid-profile "dcm-ssid-prof-secure"
   essid "hs20dcm-secure"
   opmode wpa2-aes
!
wlan ssid-profile "dcm-ssid-prof-open"
   essid "hs20dcm-open"
   opmode open
!
aaa profile "dcm-aaa-prof-secure"
  dot1x-server-group "RADIUS-1"
  dot1x-default-role "authenticated"
  authentication-dot1x "default"
  radius-accounting "RADIUS-1"
  radius-interim-accounting
  rfc-3576-server "10.215.200.190"
!
aaa profile "dcm-aaa-prof-open"
  initial-role authenticated
!
wlan virtual-ap "dcm-vap-prof-secure"
   aaa-profile "dcm-aaa-prof-secure"
   hs2-profile "dcm-hs-prof??"
   ssid-profile "dcm-ssid-prof-secure"
   vlan 200
!
wlan virtual-ap "dcm-vap-prof-open"
   aaa-profile "dcm-aaa-prof-open??"
   hs2-profile "dcm-hs-prof??"
   ssid-profile "dcm-ssid-prof-open"
   vlan 200
----------------------------------