version 6.5.1.0-4.3.1 syslocation "" virtual-controller-country IT virtual-controller-key name "spa" virtual-controller-ip 172.28.147.150 virtual-controller-vlan 1 255.255.252.0 172.28.146.253 virtual-controller-dnsip 172.28.144.103 terminal-access ntp-server 172.28.144.103 clock timezone Rome 01 00 clock summer-time CEST recurring last sunday march 00:00 last sunday october 03:00 rf-band all allow-new-aps allowed-ap a8:bd:27:c5:64:10 allowed-ap a8:bd:27:c5:67:c4 allowed-ap 34:fc:b9:c6:82:58 allowed-ap 34:fc:b9:c6:82:46 allowed-ap 34:fc:b9:c6:82:5c allowed-ap 34:fc:b9:c6:80:b8 allowed-ap 34:fc:b9:c6:80:ba allowed-ap 34:fc:b9:c6:80:bc allowed-ap 34:fc:b9:c6:80:96 allowed-ap 34:fc:b9:c6:80:c4 allowed-ap 34:fc:b9:c6:82:5a allowed-ap 34:fc:b9:c6:82:44 allowed-ap 34:fc:b9:c6:82:4c allowed-ap 34:fc:b9:c6:82:52 allowed-ap 34:fc:b9:c6:82:2e allowed-ap 34:fc:b9:c6:80:c8 allowed-ap 34:fc:b9:c6:82:54 allowed-ap 34:fc:b9:c6:80:80 allowed-ap 34:fc:b9:c6:80:cc allowed-ap 34:fc:b9:c6:80:98 allowed-ap 70:3a:0e:c1:14:72 arm wide-bands 5ghz 80mhz-support min-tx-power 18 max-tx-power 127 band-steering-mode prefer-5ghz air-time-fairness-mode default-access client-aware scanning syslog-level warn ap-debug syslog-level warn network syslog-level warn security syslog-level warn system syslog-level warn user syslog-level warn user-debug syslog-level warn wireless extended-ssid hash-mgmt-password hash-mgmt-user admin password wlan access-rule acmeEXPLORER index 0 rule 172.28.146.253 255.255.255.255 match any any any permit rule 192.168.168.135 255.255.255.255 match any any any permit rule 172.28.144.103 255.255.255.255 match any any any permit rule 172.16.0.244 255.255.255.255 match any any any permit rule 10.0.0.0 255.0.0.0 match any any any deny rule 192.168.0.0 255.255.0.0 match any any any deny rule 172.16.0.0 255.240.0.0 match any any any deny rule any any match any any any permit wlan access-rule default_wired_port_profile index 1 rule any any match any any any permit wlan access-rule wired-instant index 2 rule masterip 0.0.0.0 match tcp 80 80 permit rule masterip 0.0.0.0 match tcp 4343 4343 permit rule any any match udp 67 68 permit rule any any match udp 53 53 permit wlan access-rule "acme AP" index 3 rule any any match any any any permit wlan access-rule acmeMAG index 4 rule any any match any any any permit wlan access-rule acmevoip index 5 rule any any match any any any permit wlan access-rule acmeAP index 6 rule any any match any any any permit wlan access-rule CAST index 7 rule any any match any any any permit wlan ssid-profile acmeEXPLORER enable index 0 zone guest type employee essid acmeEXPLORER wpa-passphrase opmode wpa2-psk-aes max-authentication-failures 5 rf-band all captive-portal disable dtim-period 1 broadcast-filter arp deny-inter-user-bridging deny-local-routing enforce-dhcp blacklist dmo-channel-utilization-threshold 90 local-probe-req-thresh 0 max-clients-threshold 64 wlan ssid-profile "acme AP" enable index 1 type employee essid "acme AP" wpa-passphrase opmode wpa-psk-tkip,wpa2-psk-aes max-authentication-failures 5 rf-band all captive-portal disable dtim-period 1 inactivity-timeout 2400 broadcast-filter all blacklist dmo-channel-utilization-threshold 90 local-probe-req-thresh 0 max-clients-threshold 64 wlan ssid-profile acmeMAG enable index 2 type employee essid acmeMAG wpa-passphrase opmode wpa2-psk-aes max-authentication-failures 5 rf-band all captive-portal disable dtim-period 1 broadcast-filter none blacklist dmo-channel-utilization-threshold 90 local-probe-req-thresh 0 max-clients-threshold 64 wlan ssid-profile acmevoip enable index 3 type voice essid acmevoip wpa-passphrase opmode wpa2-psk-aes max-authentication-failures 5 rf-band all captive-portal disable dtim-period 1 broadcast-filter arp blacklist dmo-channel-utilization-threshold 90 local-probe-req-thresh 0 max-clients-threshold 64 dot11k strict-svp wlan ssid-profile acmeAP enable index 4 type employee essid acmeAP wpa-passphrase opmode wpa2-psk-aes max-authentication-failures 5 rf-band all captive-portal disable dtim-period 1 broadcast-filter all blacklist dmo-channel-utilization-threshold 90 local-probe-req-thresh 0 max-clients-threshold 64 wlan ssid-profile CAST enable index 5 type employee essid CAST wpa-passphrase opmode wpa2-psk-aes max-authentication-failures 5 rf-band all captive-portal disable dtim-period 1 broadcast-filter none blacklist dmo-channel-utilization-threshold 90 local-probe-req-thresh 0 max-clients-threshold 64 auth-survivability cache-time-out 24 wlan external-captive-portal server localhost port 80 url "/" auth-text "Authenticated" auto-whitelist-disable https blacklist-time 3600 auth-failure-blacklist-time 3600 ids wireless-containment none wired-port-profile wired-instant switchport-mode access allowed-vlan all native-vlan guest no shutdown access-rule-name wired-instant speed auto duplex auto no poe type guest captive-portal disable no dot1x wired-port-profile default_wired_port_profile switchport-mode trunk allowed-vlan all native-vlan 1 shutdown access-rule-name default_wired_port_profile speed auto duplex full no poe type employee captive-portal disable no dot1x enet0-port-profile default_wired_port_profile uplink preemption enforce none failover-internet-pkt-lost-cnt 10 failover-internet-pkt-send-freq 30 failover-vpn-timeout 180 airgroup enable dlna-only airgroupservice airplay disable description AirPlay airgroupservice airprint disable description AirPrint airgroupservice googlecast enable airgroupservice "DLNA Media" enable airgroupservice "DLNA Print" disable airgroupservice DIAL enable