01-10-2012 06:22 AM
See page 580-583 in the userguide:
Blacklist Duration You can configure the duration that clients are blacklisted on a per-SSID basis via the virtual AP profile. There are two different blacklist duration settings: For clients that are blacklisted due to authentication failure. By default, this is set to 0 (the client is blacklisted indefinitely). For clients that are blacklisted due to other reasons, including manual blacklisting. By default, this is set to 3600 seconds (one hour). You can set this to 0 to blacklist clients indefinitely.
To configure the blacklist duration via the WebUI: 1. Navigate to the Configuration > Wireless > AP Configuration page. 2. Select either AP Group or AP Specific tab. Click Edit for the AP group or AP name. 3. In the Profiles list, select Wireless LAN, then Virtual AP. Select the virtual AP instance. To set a blacklist duration for authentication failure, enter a value for Authentication Failure Blacklist Time. To set a blacklist duration for other reasons, enter a value for Blacklist Time. 4. Click Apply.
To configure the blacklist duration via the command-line interface, access the CLI in config mode and issue the following commands: wlan virtual-ap <profile> auth-failure-blacklist-time <seconds> blacklist-time <seconds>
09-18-2012 03:03 AM
I have a client continually failing authentication and am being flooded with messages from Airwave. It seems to be someone who tried to connect with their phone, failed, and now that phone is constantly trying to connect.
I set the blacklist-time on the vap to 0, but when I manually blacklist the client and then do a 'show ap blacklist-client', it is not showing as indefinate.
10-26-2012 01:14 AM
I'm actually on 6.1.3 but when I block some devices on the same SSID it appears to work for some but not others. See below some are counting down for the 1 hour default, but others have been blocked for hours. any ideas?
10-26-2012 04:26 AM
If a client is associated, it will get the blacklist timer from the Virtual AP that it is currently connected to. If it is not connected, it will get the blacklist timer from the "ap-blacklist-time" parameter.