Category Archives: Administration Guides

FortiWLC – Supported Modes of Operation for APs

Supported Modes of Operation for APs

AP332/AP400/AP832 and AP1000 with two radios can have both set to 5.0 GHz, but both radios cannot be set to 2.4 GHz. If you want to use both radios on 2.4 GHz, put the radios on separate channels.

AP1000 radios default to the following bands:

AP Model	Radio 1	Radio 2	Radio 3
AP122	BGN	AC	–
AP332	BGN	AN	–
AP1010	BGN		–
AP1020	BGN	AN	–
AP400	BGN	AN	Scanning on both bands (in AP433is)

Supported Modes of Operation for APs

AP Model	Radio 1	Radio 2		Radio 3
AP822	BGN	AC
AP832	BGN	AC	–
FAP-U421EV	BGN	AC	–
FAP-U423EV	BGN	AC	–

Security Modes

Although AP400/AP1000 support all security modes supported by the 802.11i security standard (WEP, WPA, WPA2 and mixed mode), 802.11n supports only clear and WPA2 security. Even though you can configure any security mode for 802.11n, you only gain 11n benefits using WPA2 or clear. Because of this, any 11n client connected to an SSID configured for WEP or WPA will behave like a legacy ABG client. An 802.11n ESSID configured for either

WEP or WPA has no 802.11n rates for that ESSID. If you configure an ESSID for Mixed Mode, 802.11n rates are enabled only for the WPA2 clients; WPA clients behave like a legacy ABG client. See the chart below for details.

ESSID Security	AP400/AP1000 Realize These 11n Benefits
Clear and WPA2	All 11n benefits are realized.
WEP and WPA	No 11n benefits are realized. Clients behave like legacy ABG clients.
Mixed Mode	11n performance in ESS configured for mixed mode depends on kind of application used in the network. Only WPA2 clients connected to mixed mode have 11n benefits. WPA clients behave like legacy ABG clients.

Having trouble configuring your Fortinet hardware or have some questions you need answered? Check Out The Fortinet Guru Youtube Channel! Want someone else to deal with it for you? Get some consulting from Fortinet GURU!

FortiWLC – Replacing Access Points

Leave a reply

Replacing Access Points

You can replace APs in one of the following conditions:

If you have a faulty AP, you can replace that with a new AP of the same model as the faulty AP.
Migrate from an older AP model to a newer AP model.

Before Replacing Access Points

The following are important points to remember before you replace your access points: • Replacing one AP model with another usually preserves the settings of the original configuration. A newer AP may have settings that the older one does not; those settings will be set to the default.

Despite the fact that some AP settings and configurations can be carried over when replacing an AP, users cannot simply replace an AP400 with a different model (such as an AP1000). The two models have very different capabilities and configuration specifications and should not be considered synonymous.

Replacing Access Points

How to Replace Access Points

If you are replacing existing APs with a newer model of APs, use the ap‐swap command to ease the task of updating your site’s AP settings. To use the ap‐swap command, you need the MAC addresses of the new and old APs. You can check MAC addresses of the APs to be replaced with the show ap command.

The ap‐swap command equates the MAC address of an AP that you want to replace with the MAC address of the new AP. By linking the numbers to an AP ID in the replacement table, the system can assign the configured settings from the old AP to the new AP. The settings that are tracked are the channel number, preamble, and power settings. After inputting the swap information, use the show ap‐swap command to double check the AP MAC settings before physically swapping the APs.

Once you have double-checked the MAC addresses, take the old APs off-line by disconnecting them from the system. Replace the APs. When the APs are discovered, the replacement table is checked, and the changes are applied to the new APs. Once the new AP has been updated, the entry is removed from the replacement table.

To summarize the steps to replace the APs:

meru‐wifi (config)# show ap (gets the serial numbers of the APs you are replacing) meru‐wifi (config)# swap ap 00:oc:e6:00:00:66 00:CE:60:00:17:BD meru‐wifi (config)# exit meru‐wifi# show ap‐swap

AP Serial Number New AP Serial Number 00:0c:e6:00:00:66 00:ce:60:00:17:bd

AP Replacement Table(1 entry) meru‐wifi# show ap

After you completed the commands for replacing APs, disconnect the old APs and make sure they show Disconnect/off-line status) and then replace the old APs with the new APs

Replacing Access Points

Configuration Updates After AP Replacements

TABLE 25: Configuration Updates After AP Replacement

AP Types

Configuration Changes

Other

Both APs (new and the one that is replaced) are same

The following configurations are preserved: • ATS-Entry: AP name, location, Contact, Descr, KeepAlive

• 802.11 Entry: RFType, Channel, Tx Power, Channel-Width, VCell Mode.

• ESS-AP Entry: BSSID, Channel

This is usually used while replacing faulty APs.

AP Models are different

Only the following AP configurations will be preserved

• ATS-Entry: AP name, location, Contact, Descr,

KeepAlive

The following Radio/BSSID configuration will be changed to default setting for the newer AP model.

• 802.11 Entry: RFType, Channel, Tx Power, Channel-Width, VCell Mode.

• ESS-AP Entry: BSSID, Channel

This is usually done while migrating from older AP models to newer AP models.

For example: Migrating from AP1020/ AP1010 to AP822

FortiWLC – Roaming Across Controllers (RAC)

Leave a reply

Roaming Across Controllers (RAC)

Clients can roam between access points connected to two different controllers in same subnet or different subnets. FortiWLC (SD) allows you to specify static or dynamic roaming.

Things to consider before enabling RAC

IP PREFIX validation has to be OFF in the RAC enabled ESS profile.
RAC can be enabled on more than one ESSID
If any parameter of an ESSID profile is changed, then RAC must be stopped and the changes made in the ESSID must be updated to all controllers in the roaming domain. Ensure that the controller IP is reachable before adding its IP address to the roaming domain.
In the output of show roaming-domain all command, the -1 value in the VLAN column depicts tunnelling to another controller in the roaming domain.

In static DHCP home configuration, you specify one of the controllers (in the roaming domain) as the home controller. A client associating with any controller in the roaming domain will receive an IP address from this home controller. Once a controller is set has the home controller, it applies to all the native VLAN, configured VLAN and dynamic VLAN configurations of that controller as per the “tunnel interface type” set in the ESS profile.

In dynamic DHCP home configuration, a client associating with a controller for the first time will continue to receive IP address from that controller and will be the clients the home controller. To allow dynamic roaming, set the home controller IP address as 0.0.0.0.

Roaming Time-out

In a dynamic roaming scenario, if a client leaves the coverage area and returns after the configured timeout value, a fresh association happens and the client may get associated with a different controller as its home controller. The roaming time-out value (in minutes) for clients can be configured via CLI:

default(15)(config)# roaming‐domain roam‐time‐out 70

Roaming Across Controllers (RAC)

Default and minimum timeout value is 60 minutes and maximum is 240 minutes. The roaming timeout countdown starts as soon as the client leaves the coverage area.

NOTE: When RCA is stopped all the existing clients are forcefully de-authenticated and forced to reconnect. Irrespective of the client has roamed or not, this process is applied to all clients in the roaming domain.

Setting up RAC requires the following steps

Static Roaming

Specify an ESSID for the roaming domain.
Add your controller’s IP address as the member controller.
Add your controller’s IP address as the Home controller.
Repeat the above steps for adding peer controllers. Ensure that you keep the same ESSID name and the home controller IP address.

Dynamic Roaming

Specify an ESSID for the roaming domain.
Add your controller’s IP address as the member controller.\
Add 0.0.0.0 as the IP address of the home controller.
Repeat the above steps for adding peer controllers. Ensure that you keep the same ESSID name and the home controller IP address as 0.0.0.0.

Configuring Using WebUI

Go to Configuration > Wired > RAC.
In the Peer Controllers tab add the following:

ESSID: This should be replicated as-is across in all controllers in the roaming domain.
Peer Controller IP address

Roaming Across Controllers (RAC)

Home DHCP controller IP address: IP address of the home controller in the roaming domain. All the DHCP packets from the visiting client will be forwarded to this home controller and will be delivered locally in the home controller.

Roaming Across Controllers (RAC)

Configuring Using CLI

A new CLI command roaming-domain with the following options is available to set up RAC • essid – Specify the name of the common ESSID that is available in all 6 controllers in the roaming domain

start – To start RAC.
stop – To stop RAC
peer-controller – To specify the IP address of the peer controller in the roaming domain
homedhcp-controller – To specify the home controller in the roaming domain.

Example default(15)(config)# roaming‐domain start

default(15)(config)# roaming‐domain essid Roaming1 peer‐controller 10.10.1.20 homedhcp‐controller 10.10.12.100

Dynamic DHCP home

default(15)(config)# roaming‐domain essid Roaming1 peer‐controller 10.10.1.20 homedhcp‐controller 0.0.0.0.

Where, essid is the name of the “ESS profile” string displayed in the show essid command.

FortiWLC – Configuring 802.11k/r

1 Reply

Configuring 802.11k/r

Devices can now benefit from the 802.11r implementation to fast roam between best available access points within a controller domain. Additionally, with implementation of 802.11k specifications you can now calculate 802.11k neighbor and radio measurement reports.

The fast roaming capability and 802.11k is configurable in ESS profile.

Supported Access Points: AP122, AP822, AP832, OAP832

Limitations

Supported only for clients that are compliant with 802.11k/v/r specifications • Fast roaming is not available in inter-controller roaming.

Enabling 802.11k

Using WebUI

Go to Configuration > Wireless > ESS and in the ESS Profile tab, change the following:
For 802.11r, select On.
For 802.11r Mobility Domain, enter an integer value.
For 802.11k, select On to perform radio measurements.

Configuring 802.11k/r

Using CLI

default(15)# configure terminal default(15)(config)# essid fastroam‐1 default(15)(config‐essid)# 802.11r on default(15)(config‐essid)# 802.11k on default(15)(config‐essid)# 802.11r‐mobility‐domain‐id 100

FortiWLC – Hotspot 2.0

Leave a reply

Hotspot 2.0

Hotspot 2.0 is a specification by the Wi-Fi Alliance that specifies a framework for seamless roaming between WiFi networks and Cellular networks. The specification is based on the IEEE802.11u standard; a Generic Advertisement Service (GAS) that provides over-the-air

Hotspot 2.0

transportation for frames of higher layer advertisements between stations APs and external information servers. This feature will allow users to configure hotspot profiles that can (optionally) be connected to existing ESS Profiles as desired. An ESS-profile connected to a hotspot profile will advertise 802.11u capabilities in its beacons.

FAP-U42x and FAP-U32x are Passpoint R2 certified.

Adding a Hotspot 2.0 Profile

The Hotspot Profiles can be created from the Configuration > Wireles > Hotspot 2.0 page. By default, the page shows the following details about a Hotspot profile.

Hotspot Profile Name – Displays the name of the Hotspot Profile.
Description – Displays the Description provided for the Hotspot profile.
Venue Type – Displays the Venue Type.
Access Network Type – Select the Access Network Type from the list. The default selection is displayed as Private Network. The types are as follows:
Private Network
Private Network with Guest Access
Chargeable Public Network
Free Public Network
Personal Device Network
Emergency Services Only Network
Test or Experimental Network
Wildcard Network
IPv6 Availability – Select the IPv6 Availability from the list. The default selection is displayed as Address type not available. The types are as follows:
Address type available
Address type not available
Availability of the Address type not known
IPv4 Availability – Select the IPv4 Availability from the list. The default selection is displayed as Address type not available. The types are as follows:
Address type available
Address type not available
Availability of the Address type not known
Port-restricted IPv4 address available
Single NATed private IPv4 address available
Double NATed private IPv4 address available

Hotspot 2.0

Port-restricted IPv4 address and single NATed IPv4 address available

Port-restricted IPv4 address and double NATed IPv4 address available
Roaming Consortium – Enter the roaming ORG ID for the Hotspot profile. The valid range is 0-10 characters.
Operators – Enter multiple network operators. Select a language and enter a name. The valid range is 0 – 256 characters.
Venue – Enter multiple hotspot venues. Select a language and enter a name. The valid range is 0 – 512 characters.
3GPP Cell Network – Provide the following details:
Country code of the operator.
Provide the 3GPP Cell Network MCC. The default value is displayed is 0. The Valid range is [0-999]. Provide the 3GPP Cell Network MNC. The default value is displayed is 0. The Valid range is [0-999].
Domain Name – Provide the Domain Name. The valid range is [0-128] chars.
NAI Realm from 1-10 – Provide the NAI Realm [1-10] from the list. The valid range is [0-50] chars.
NAI Realm Auth Method from 1-10 – Select the NAI Realm Auth Method [1-10] from the list. The valid range is [0-50] chars. The types are as follows:
EAP TLS Certificate
EAP TTLS MSCHAPv2 Username/Password
EAP SIM
EAP AKA
EAP AKA`
Advanced Settings – Provide the following configuration details for advanced settings: HESSID – A globally unique identifier, used to give a single identifier for a group of APs connected to the same SP or other destination network(s).
GTK Per Station – Enables the Group Temporal Key (GTK) to be assigned per station.
Gas Come Back Flag – Enables the Generic Advertisement Service (GAS) comeback request/response option.
Gas Come back Delay (millisecs) – At the end of the GAS comeback delay interval, the client can attempt to retrieve the query response using the comeback request action frame.
ASRA Flag – Enable the Additional Step Required for Access (ASRA) to indicate that the network requires one more step for access. Authentication type – Configure the network authentication type required as per ASRA. Supported values are, Acceptance of terms and conditions, On line enrolment supported, http/https redirection, and DNS redirection.

Hotspot 2.0

Redirect URL – Specify the Redirect URL in case of http/https redirection and DNS Redirection.

WAN Metrics – Provide the following configuration details for WAN metrics:
Link Status State – Select the status of the WAN link.
Symmetric Link – Enable symmetric bandwidth. At Capacity – Select whether the WAN link is at capacity and no additional mobile devices will be allowed to associate with the AP.
Down Link speed/Up Link speed – The WAN Backhaul link for current downlink/uplink speed in KBPS.
Down Link load/Up Link load – The current percentage load of the downlink/uplink connection, measured over an interval the duration of which is reported by the Load Measurement Duration.
Load Measurement Duration – The duration over which the downlink/uplink load is measured in KBPS.
Connection CapabilityThe Connection Capability enables filtering of protocols, allowing or restricting traffic on some protocols and ports. A set of system defined protocols as listed. Additionally, you can also create rules for custom protocols.
QoS Map – Create a Quality of Service (QoS) policy by configuring the following DSCP ranges and DSCP exceptions.
DSCP Ranges – For a given DSCP range, specify the User Priority (valid range: 0 -7), DSCP High Priority (valid range: 0 – 255), and DSCP Low Priority (valid range: 0-255). DSCP Exceptions – For a given DSCP exception, specify the User Priority (valid range: 0 -7) and the DSCP Value (valid range: 0 – 255).
OSU Settings – The Online Sign Up (OSU) Service settings configures one or more Hotspot providers offering OSU service.
Online Sign Up Support – Select to enable OSU.
OSEN Enable – Enable OSU Server-only authenticated layer-2 Encryption Network (OSEN) to indicate that the hotspot uses a OSEN network type. This network provisions clients using the OSU functionality.
OSU/OSEN ESSID – Specify the OSU ESSID.

OSU Server URL – Specify the URL of the OSU server.

OSU NAI – Specify the OSU NAI for authentication.

Click Settings to configure the OSU provider settings.

OSU Provider Friendly Names
OSU Provoder Icons
OSU Provider Method – Select one of the OSU provider provisioning methods, OMADM or SOAP-XML.

Hotspot 2.0

OSU Provider Description – The description of the OSU Provider.

Select OK. The Hotspot Profile is added and displayed on the Hotspot Profile screen.

The following operations can be performed on the Hotspot 2.0 profile.

Delete – Select a Hotspot Profile and click Delete. The selected Hotspot Profile gets deleted from the Hotspot Profile screen.
Edit – Select a Hotspot Profile and click Edit.
View – Allows to view the details of the Hotspot Profile. Select a Hotspot Profile and click View.

FortiWLC – Automatic Radio Resource Provisioning (ARRP)

Leave a reply

Automatic Radio Resource Provisioning (ARRP)

By using the ARRP feature, each AP scans all channels and provides the scan details to the controller. The controller uses this information to select and allocate the best available channel per radio. By default, this feature is disabled.

Supported only on 11ac APs.
Once enabled, the virtual cell is not available for 11ac APs.
Non-11ac APs will continue to work as configured and will not be affected by auto channel feature.
The APs will reboot to the newly allocated channel after both initial planning and dynamic channel change.
If the ARRP is disabled, all 11ac APs will reboot to default channels.

Automatic Radio Resource Provisioning (ARRP)

Configuring Using WebUI

To enable this feature, go to Configuration > Wireless > ARRP and in the configuration tab, enable the Auto Channel option.

Planning Channel: Once enabled, the respective radios of all APs are set to the channels selected for radio 1 and radio 2. In the above screenshot, the planning channel is set to 1 / 20MHz for radio 1 and 149/40MHz for radio 2. Based on the report received by all APs, the controller allocates the optimum channel. DFS channels are not available to be set as planning channel.
Auto Power: The auto power functionality is applied only after channel allocation irrespective of when the auto power option was enabled. When enabled, the controller will determine the optimum power level between neighbouring (by channel) 11ac APs. The auto power option can be enabled and applied only when ARRP feature is enabled.
Freeze: The option is applied after the initial planning phase. When this option is disabled, the 11ac APs perform a periodic scan (at the end of every minute) on their allocated channels. This is used to determine the quality of the channel. If the quality of the channel crosses the threshold limit (based on three consecutive scans), it sends a request for change of channel. If enabled, the periodic scan is disabled and the 11ac APs remain in allocated channels irrespective of the channel quality.
If this option is disabled, the radio interface settings cannot be modified.
Timer State and Timer: This option is available only when the Freeze option is disabled. If Timer State is Off, channel scanning occurs every one minute continuously. To avoid frequent channel change, you can set the channel scan interval to happen at the end of 15

Automatic Radio Resource Provisioning (ARRP)

minutes. With this, channel scan is scheduled for once in 15 mins. In each scan cycle sampling is done for 10 iterations i.e. for 10 mins.

DFS: By default scanning and allocation of DFS channel is disabled during the planning phase. If enabled, the APs can scan DFS channels and they can be allocated DFS channels.
DFS option must be selected when the ARRP is enabled. Enabling DFS after enabling Auto RF will require re-planning of channel allocation for all APs
REPLAN: This option is to be used if a new AP is added to the network after the initial planning is complete.

The AP-Radio Interfaces tab lists all APs with its operating frequency and transmit-power respectively.

Configuring Using CLI

Use the show arrp‐config command to view the current settings

MC‐4200‐AC‐MCA(15)# show arrp‐config MCA Global Settings

Enable/Disable Auto Channel : enable Radio 1 Channel : 11 Radio 1 Channel Width : 20‐mhz Radio 2 Channel : 48 Radio 2 Channel Width : 20‐mhz

Auto Power on/off : off

Freeze yes/no : No

Timer State on/off : on

Timer : 15

Dfs on/off : on

Use the show arrp‐ap‐radio‐interface command to view the list of APs and their operating frequency and power values.

MC‐4200‐AC‐ARRP(15)# show arrp‐ap‐radio‐interface

AP ID AP Name Radio1 oper ch Radio2 oper ch Radio1 Transmit Power (dBm) Radio2 Transmit Power (dBm)

AP‐3 6 36 24 23

Automatic Radio Resource Provisioning (ARRP)

AP‐4 1 36 24 23 6 AP‐6 6 40 24 23 13 AP‐13 1 36 24 23 17 AP‐17 1 36 24 23 19 AP‐19 6 36 10 13 20 AP‐20 6 36 24 23

ARRP radio interfaces(7 entries)

Use the arrp global command followed by one of the following options to configure and use the ARRP feature

‐auto‐power ‐ To enable or disable auto allocation of transmit power

‐dfs ‐ To enable or disable the use of DFS channels in planning

‐disable ‐ To disable ARRP

‐Enable ‐ To enable ARRP

‐Freeze‐ To enable or disable dynamic channel scanning

‐radio1‐channel‐planning‐ To specify channel for initial planning

‐radio2‐channel‐planning‐ To specify channel for initial planning

‐replan‐ To perform re‐planning if a new AP has joined network

‐timer‐state‐ Enable or disable to avoid frequent channel change

‐timer‐value‐ To specify the time interval for the dynamic channel scan

Limitations

If disabled, existing vCell profiles will be pushed to all 11ac APs irrespective of whether the AP was part of the vCell profile before auto channel feature was enabled. Native cell profiles will remain unchanged.
As part of auto power functionality, the Tx power levels on the AP is not increased back to default values if the neighboring AP which this AP earlier reported as having high power goes down.

FortiWLC – Sitesurvey

Leave a reply

Sitesurvey

Fortinet sitesurvey is a simple tool that aids in network planning to find the right placement (mounting location) of APs such that clients connected to these APs receive high throughput, excellent coverage. To find the right placement of your AP, connect your Wi-Fi client to the AP that is in the sitesurvey mode and move around the deployment perimeter to identify areas that provide good connectivity (based on the results from the sitesurvey tool) to the Wi-Fi client. You can adjust the placement of the AP depending on the sitesurvey results.

Pre-requisites

Sitesurvey is supported only on AP832, AP822, FAP-U421, and FAP-U423.
The AP must be running FortiWLC (SD) 6.1-2 or higher and can connect only in Open Clear mode.

Configuring Sitesurvey Options

Sitesurvey configuration and monitor options are available via CLI (AP boot console) and GUI. To access sitesurvey options, Connect to AP CLI from a controller or use a serial port.

Using the CLI

After the normal AP boot process, enter the sitesurvey enable command at the AP boot prompt to restart AP into the sitesurvey mode. In the sitesurvey mode the AP displays the sitesurvey prompt (ss >).

Sitesurvey commands always begin with the sitesurvey keyword or alternatively you can use the ss (alias) instead of the sitesurvey keyword. Sitesurvey provides the following additional commands to configure and monitor sitesurvey features.

Enabling Sitesurvey

sitesurvey enable

This command enables the sitesurvey mode. The AP will reboot into sitesurvey mode and display the sitesurvey prompt. ss > _

Disabling Sitesurvey

sitesurvey disable

This command disables the sitesurvey mode. AP will reboot into normal mode of operation.

Setting Country Code and Channel

sitesurvey countrycode set <country code>

By default the country code is set to US. When you set a country code, the first valid channel and the max supported Tx power for radio 0 and radio 1 for that country code is automatically set. To override the default channel for a country code, enter the following command sitesurvey channel set <radio_index> <channel>

Where,

radio_index refers to the AP radios.
Enter 1 for radio 1 (2.4 Ghz).
Enter 2 for radio 2 (5Ghz).

To get the list of supported country codes, use the ss countrycode help command.

Setting Inactivity Time

sitesurvey inactivitytime <itime>

This command sets the time (in seconds) the AP will remain in the sitesurvey mode before a client associates with it. The time is specified in seconds and by default the AP will remain in the sitesurvey mode for 3600s. After the period of inactivity, the AP will reboot into normal AP mode.

When using the GUI, the browser window will reset after 3600 seconds of inactivity, irrespective of the time set for inactivity. The browser refresh time cannot be changed.

Setting IP Address

sitesurvey ipconfig <ip_address> <netmask>

This command configures the sitesurvey AP with an IP address. You can use this IP address to access the sitesurvey GUI page via a browser. By default, the IP address and netmask are set to 192.168.0.1 and 255.255.255.0.

Configuring SSID

sitesurvey ssid <radio_index> [<ssid>]

Where,

radio_index can be 0, 1, or 3
Enter 0 for radio 1 (2.4 Ghz)
Enter 1 for radio 2 (5 Ghz)
Enter 3 to specify SSID for both the radios

This command configures SSID for the specified radio. By default, SSID for radio 1 (2.4Ghz) is set to Meru_Site_Survey_2.4 and SSID for radio 2 (5 Ghz) is set to Meru_Site_Survey_5.

Examples ss > sitesurvey ssid 3

MERU_SITE_SURVEY SSID is assigned for both radio1 and radio2 as MERU_SITE_SURVEY

ss > sitesurvey ssid 1 <‐‐ if SSID is not specified SSID is assigned to radio1 as MERU_SITE_SURVEY_2.4 by default

ss > sitesurvey ssid 2 <‐‐ if SSID is not specified SSID is assigned to radio2 as MERU_SITE_SURVEY_5 by default

ss > sitesurvey ssid 3 <‐‐ if SSID is not specified MERU_SITE_SURVEY_2.4 is assigned as SSID for radio1

MERU_SITE_SURVEY_5 is assigned as SSID for radio2.

After configuring SSID on AP radios, you can use the following command to selectively (per radio) enable or disable broadcasting SSID. sitesurvey publishssid <radio_index> [on|off] By default, SSID for both radios are broadcast.

Enable or Disable Radio

sitesurvey {radio | r} <radio_index> [on|off]

Where,

radio_index can be 0, 1, or 3
Enter 0 for radio 1 (2.4 Ghz)
Enter 1 for radio 2 (5 Ghz)
Enter 3 for both the radios

This command enables or disables AP radio. Wi-fi clients connecting to the sitesurvey AP must use the same radio that is enabled in the AP. By default, both the radios are enabled.

Configure Sitesurvey Refresh Rate

sitesurvey statsrefrate [<rate>]

This command configures the time interval (specified in milliseconds) at which the AP will collect and send (display) sitesurvey results. By default, the refresh rate is set to 1000ms. The sitesurvey results can be viewed from the sitesurvey GUI page or the CLI.

Setting the Tx Power

sitesurvey txpwr set <radio_index> [<tx_power>]

Where,

radio_index can be 0, 1, or 3
Enter 0 for radio 1 (2.4 Ghz)
Enter 1 for radio 2 (5 Ghz)
Enter 3 for both the radios

Use this command to selectively set the transmit power for AP radios. By default, Tx power is set to maximum possible Tx power based on the country code, channel and the hardware capabilities. The sitesurvey txpwr set 3 command (without the power value) will set the max Tx power supported for the selected country to both the radios.

Save Sitesurvey Configuration

sitesurvey save

After you have configured all sitesurvey options, enter this command to save your sitesurvey configuration. This command creates an ESSID with all configured parameters. Your Wi-Fi can now associate to this AP using the ESSID.

Using GUI

To access the sitesurvey GUI page, enter the IP address of the AP. If not previously set, enter the default IP address (192.168.0.1) of the AP. By default, the GUI page shows the sitesurveyresults page. Click the Configure button to access the sitesurvey configuration options.

Figure 67: Sitesurvey Configuration Options:

TABLE 24: Sitesurvey Configuration Parameters using GUI

Parameters	Description
SSID Radio 0 SSID Radio 1	Enter a value that you will be broadcast for connecting your Wi-Fi client. The default values are Meru_Site_Survey_2.4 for Radio 0 and Meru_Site_Survey_5 for Radio 1.
Country	Select a country from this list. This selection automatically sets the first valid channel for each radio. However, you can choose to override them by selecting a different channel number.
Radio 2.4 Ghz Radio 5 Ghz	Select ON or OFF to enable or disable a radio.
Tx Power Radio 0 Tx Power Radio 1	Enter transmit power for each of the radios. Maximum value for Radio 0 (2.4 Ghz) and maximum value for Radio 1 (5 Ghz) is dependent on the selected country and the channel.
2.4 Ghz Channels 5 Ghz Channels	Select a valid channel. By default this is automatically set to the first valid channel for the selected country.
Publish SSID Radio 0 Publish SSID Radio 1	Select ON or OFF to broadcast SSID.

TABLE 24: Sitesurvey Configuration Parameters using GUI

Parameters	Description
Stats Refresh Rate	Enter the time interval (in milliseconds) to collect and send (display) sitesurvey results.
Inactivity timeout period	Enter the time interval (in seconds) for the AP to wait for client to connect. After the inactivity time period, the AP will reboot to normal AP mode.

After configuring the above parameters click the Apply button to save the configuration.

Viewing Sitesurvey Results

Sitesurvey results can be viewed from CLI and using the GUI.

Using GUI

By default, the Sitesurvey page (Figure 2) is displayed when you connect to the AP via browser. The Sitesurvey page among other pre-configured values displays key information about the connectivity experience of your Wi-Fi client.

The GUI page shows Sitesurvey results of only ONE client (the last connected client) connected to the AP. To view Sitesurvey results from all connected clients, use options from CLI.

Figure 68: Viewing Sitesurvey Results

Connectivity Experience Parameters

The Sitesurvey parameters that include RSSI, S/N Ratio, Tx Power, 802.11 Tx Rate, and

802.11 Rx Rate illustrate the connection experience of the Wi-Fi client at the given location.

Troubleshooting Parameters

The parameters, Tx Retry count and Tx Failure illustrate issues or errors in connection between the Wi-Fi client and the AP at the given location.

Network Parameters

Tx Packets and Rx Packets indicate the network data traffic between the AP and the Wi-Fi client.

NOTE : As you move with your Wi-Fi client, the survey results are updated as per configured refresh rate.

Disable Site Survey

To disable Sitesurvey on the AP, click the Disable Sitesurvey button. This button will reboot the AP into normal AP mode.

Using CLI

Viewing Sitesurvey Configuration

sitesurvey showconfig

This command displays the current sitesurvey configuration.

Sample Output ss > sitesurvey showconfig

Site Survey : 1

Country Code : US

AP IP address : 192.168.0.1

AP Netmask : 255.255.255.0

SSID for radio0 : MERU_SITE_SURVEY_2.4

SSID for radio1 : MERU_SITE_SURVEY_5

Broadcast SSID for radio0 : 1

Broadcast SSID for radio1 : 1 radio0 <2.4G> : 1 radio1 <5G> : 1 Channel for radio0 : 6

Channel for radio1 : 36

Tx Power for radio0 : 25

Tx Power for radio1 : 23

Basic Tx Rate for radio0 : 1 2 5.5 11

Basic Tx Rate for radio1 : 1 2 5.5 11

Stats Refresh Rate : 1000

Inactivity Timeout : 3600 ss >

Viewing Sitesurvey Results (Statistics)

sitesurvey showstatistics

This command displays sitesurvey results of all the Wi-Fi clients connected to the AP.

Sample Output

ss > sitesurvey showstatistics ss >

AP MAC STATION MAC ESSID Ch ChWd SNR RSSI TxPwr TxRate RxRate TxRetry TxFail TxPkts RxPkts

‐‐‐‐‐‐‐‐‐‐‐‐‐‐‐‐‐ ‐‐‐‐‐‐‐‐‐‐‐‐‐‐‐‐‐ ‐‐‐‐‐‐‐‐‐‐‐‐‐‐‐‐‐‐‐‐‐‐‐‐‐‐‐‐‐‐ ‐‐‐ ‐‐‐‐ ‐‐ ‐‐‐‐ ‐‐‐‐‐ ‐‐‐‐‐‐ ‐‐‐‐‐‐ ‐‐‐‐‐‐‐ ‐‐‐‐‐‐‐ ‐‐‐‐‐‐‐ ‐‐‐‐‐‐‐

00:0c:e6:12:28:1f 6c:88:14:f3:a8:04 survey51 36 20 42 ‐45 23 144 130 0 1 65 68 ss stats ss >

AP MAC STATION MAC ESSID Ch ChWd SNR RSSI TxPwr TxRate RxRate TxRetry TxFail TxPkts RxPkts

00:0c:e6:12:28:1f 6c:88:14:f3:a8:04 survey51 36 20 42 ‐45 23 144 130 0 1 66 68 ss stats ss >

AP MAC STATION MAC ESSID Ch ChWd SNR RSSI TxPwr TxRate RxRate TxRetry TxFail TxPkts RxPkts

00:0c:e6:12:28:1f 6c:88:14:f3:a8:04 survey51 36 20 42 ‐45 23 144 123 0 1 68 68 ss stats ss >

AP MAC STATION MAC ESSID Ch ChWd SNR

RSSI TxPwr TxRate RxRate TxRetry TxFail TxPkts RxPkts

00:0c:e6:12:28:1f 6c:88:14:f3:a8:04 survey51 36 20 42 ‐45 23 144 104 0 1 69 691 ss >

FortiWLC – Configuring an AP’s Radio Channels

Leave a reply

Configuring an AP’s Radio Channels

AP channel configuration is configurable for 802.11bg which consists of 11 overlapping channels in United States deployments. Channel configuration for 802.11a is not an issue because there are no overlapping channels within the 802.11a spectrum.

In the 802.11b/g standard, there are 14 channels. As a result of FCC rules, there are 11 channels: channels 1 through 11 are used in the USA. Other countries may also use channels 12, 13, and 14. These channels represent the center frequency of the wireless transmission wave.

In practice, 802.11bg has only three operational frequencies in a given area, and most deploy-

Configuring an AP’s Radio Channels

ments use channels 1, 6, and 11, for which there is no overlap.

Figure 66: Channel 1, 6, and 11

To assign a channel, use the Dot11Radio interface command channel. With the Web UI, configure a channel by clicking Configuration > Wireless > Radio, select a radio and then select a Channel from the drop-down list.