58
AT-WR4500 Series - IEEE 802.11abgh Outdoor Wireless Routers
RouterOS v3 Configuration and User Guide
tls-mode
(no-certificates | dont-verify-certificate | verify-certificate; default:
no-certificates
) - TLS
certificate mode
no-certificates
- certificates are negotiated dynamically using anonymous Diffie-Hellman MODP 2048 bit
algorithm
dont-verify-certificate
- require a certificate, but do not chack, if it has been signed by the available CA
certificate
verify-certificate
- require a certificate and verify that it has been signed by the available CA certificate
unicast-ciphers
(
multiple choice:
tkip | aes-ccm) - a set of ciphers used to encrypt frames sent to
individual wireless station (unicast transfers) in the order of preference
tkip
- Temporal Key Integrity Protocol - encryption protocol, compatible with lagacy WEP equipment,
but enhanced to correct some of WEP flaws
aes-ccm
- more secure WPA encryption protocol, based on the reliable AES (Advanced Encryption
Standard). Networks free of WEP legacy should use only this
wpa-pre-shared-key
(
text
; default:
""
) - string, which is used as the WPA Pre Shared Key. It must be
the same on AP and station to communicate
wpa2-pre-shared-key
(
text
; default:
""
) - string, which is used as the WPA2 Pre Shared Key. It must be
the same on AP and station to communicate
The keys used for encryption are in hexadecimal form. If you use
40bit-wep
, the key has to be 10
characters long, if you use
104bit-wep
, the key has to be 26 characters long.
Wireless encryption cannot work together with wireless compression.
4.3.17
Sniffer
Submenu level:
/interface wireless sniffer
Description
With wireless sniffer you can sniff packets from wireless networks.
Property Description
channel-time
(
time
; default:
200ms
) - how long to sniff each channel, if multiple-channels is set to yes
file-limit
(
integer
; default:
10
) - limits
file-name
's file size (measured in kilobytes)
file-name
(
text
; default:
""
) - name of the file where to save packets in PCAP format. If file-name is not
defined, packets are not saved into a file
memory-limit
(
integer
; default:
1000
) - how much memory to use (in kilobytes) for sniffed packets
multiple-channels
(yes | no; default:
no
) - whether to sniff multiple channels or a single channel
no
- wireless sniffer sniffs only one channel in
frequency
that is configured in
/interface wireless
yes
- sniff in all channels that are listed in the
scan-list
in
/interface wireless
only-headers
(yes | no; default:
no
) - sniff only wireless packet heders
receive-errors
(yes | no; default:
no
) - whether to receive packets with CRC errors
streaming-enabled
(yes | no; default:
no
) - whether to send packets to server in TZSP format
streaming-max-rate
(
integer
; default:
0
) - how many packets per second the router will accept
0
- no packet per second limitation
streaming-server
(
IP address
; default:
0.0.0.0
) - streaming server's IP address
4.3.18
Sniffer Sniff
Submenu level:
/interface wireless sniffer sniff
Description
Wireless Sniffer Sniffs packets
Property Description
file-over-limit-packets
(
read-only: integer
) - how many packets are dropped because of exceeding file-
limit
file-saved-packets
(
read-only: integer
) - number of packets saved to file