Operation: Add Wireless Network / Update Wireless Network
Description: Add Wireless Network and Update Wireless Network 

Sample Configuration
<WirelessNetworks> <Name>Descriptive name of network</Name> <Hardware>wlnet1</Hardware> <SSID>wlnet123</SSID> <SecurityMode>WPA2Personal</SecurityMode> <Key>123456789</Key> <ClientTraffic>SeparateZone</ClientTraffic> <Zone>LAN</Zone> <IPAddress>12.12.12.12</IPAddress> <Netmask>255.255.255.0</Netmask> <BridgetoVLANid>15</BridgetoVLANid> <Description>test wlnet</Description> <Encryption>TKIP(only abg)</Encryption> <FrequencyBand>2.4and5GHz</FrequencyBand> <ClientIsolation>Enable</ClientIsolation> <HideSSID>Enable</HideSSID> </WirelessNetworks>



Parameter Mandatory Default Description
HardwareNameYes  
Enter a hardware name for the network.
HardwareName confines to:
  • Type is 'SCALAR'.
  • Datatype is 'STRING'.
  • APINTERFACENAME
  • Maximum characters allowed are 10.
DescriptionNo  
Enter a description for the wireless network that helps you to identify it.
Description confines to:
  • Type is 'SCALAR'.
  • Datatype is 'STRING'.
SSIDYes  
Enter the Service Set Identifier (SSID) for the network to identify the wireless network.
SSID confines to:
  • Type is 'SCALAR'.
  • Datatype is 'STRING'.
SecurityModeYes WPA2 Personal 
Select a security mode.
SecurityMode confines to:
  • Type is 'SCALAR'.
  • Only 'NoEncryption', 'WEPOpen', 'WPAPersonal', 'WPA2Personal', 'WPA2/WPAPersonal', 'WPAEnterprise', 'WPA2Enterprise', 'WPA2/WPAEnterprise' are allowed.
KeyNo  
Enter the passphrase to protect the wireless network from unauthorized access.
Key confines to:
  • Type is 'SCALAR'.
  • Datatype is 'STRING'.
Note:
Applicable only if Security Mode is selected as 'WPA Personal', 'WPA2Personal' or 'WPA2/WPA Personal'..
ClientTrafficYes Separate Zone 
Select a method to integrate wireless network into local network.
ClientTraffic confines to:
  • Type is 'SCALAR'.
  • Only 'SeparateZone', 'BridgetoAPLAN', 'BridgetoVLAN' are allowed.
ZoneNo  
Specify Zone
Zone confines to:
  • Type is 'SCALAR'.
  • Datatype is 'STRING'.
Client VLAN IDNo  
Specify Client VLAN ID
Client VLAN ID confines to:
  • Type is 'SCALAR'.
  • Only '0', '1' are allowed.
EncryptionNo TKIP (only abg) 
Select an encryption algorithm.
Encryption confines to:
  • Type is 'SCALAR'.
  • Datatype is 'STRING'.
Note:
Not Applicable if Security Mode is selected as 'No Encryption' or 'WEP Open'..
TimeBasedAccessNo Disable 
Enable or Disable the wireless network according to a time schedule.
TimeBasedAccess confines to:
  • Type is 'SCALAR'.
  • Only 'Enabled', 'Disabled' are allowed.
TimeNo  
Select a schedule definition which determines when the wireless network is enabled.
Time confines to:
  • Type is 'ARRAY'.
  • Datatype is 'STRING'.
  • Multiple values are allowed.
Note:
Applicable only if 'Time-based Access' is Enabled..
ClientIsolationYes Disabled 
Enable or disable to deny or allow clients within a network to communicate with one another.
ClientIsolation confines to:
  • Type is 'SCALAR'.
  • Only 'Disabled', 'Enabled' are allowed.
HideSSIDNo Disable 
Enable or disable to hide or display wireless network's SSID.
HideSSID confines to:
  • Type is 'SCALAR'.
  • Only 'Enabled', 'Disabled' are allowed.
FastTransitionNo  
Specify Enable or Disable
FastTransition confines to:
  • Type is 'SCALAR'.
  • Only 'Disabled', 'Enabled' are allowed.
MACFilteringYes None 
Select the required approach to filter the MAC addresses that can be connected to this wireless network.
MACFiltering confines to:
  • Type is 'SCALAR'.
  • Only 'None', 'Whitelist', 'Blacklist' are allowed.
MACListNo  
With Blacklist, all MAC addresses are allowed except those listed on the MAC List. With Whitelist, all MAC addresses are prohibited except those listed on the MAC List.
MACList confines to:
  • Type is 'SCALAR'.
  • Datatype is 'STRING'.
Note:
Applicable only when MAC Filtering is selected as 'Whitelist' or 'Blacklist'..
FrequencyBandYes 2.4 and 5 GHz 
Select the frequency band at which the assigned access points of the wireless network should transmit.
FrequencyBand confines to:
  • Type is 'SCALAR'.
  • Only '5GHz', '2.4GHz', '2.4and5GHz' are allowed.
NetmaskNo /24(255.255.255.0) 
Select a subnet mask for the IP address.
Netmask confines to:
  • Type is 'SCALAR'.
  • Datatype is 'STRING'.
Note:
Applicable only if Client Traffic is selected as 'Separate Zone'..
KeyNo  
Enter a WEP key.
Key confines to:
  • Type is 'SCALAR'.
  • Datatype is 'STRING'.
Note:
Applicable only if Security Mode is selected as 'WEP Open'..
NameYes  
Enter a name for the network.
Name confines to:
  • Type is 'SCALAR'.
  • Datatype is 'STRING'.
  • Maximum characters allowed are 58.
BridgetoVLANidNo  
Enter the VLAN ID of the network that the wireless clients should be part of.
BridgetoVLANid confines to:
  • Type is 'SCALAR'.
  • Datatype is 'INTEGER'.
  • Range 0 to 4095 is allowed.
Note:
Applicable only if Client Traffic is selected as 'Bridge to VLAN'..
IPAddressNo  
Assign an IP address to the wireless network.
IPAddress confines to:
  • Type is 'SCALAR'.
  • Datatype is 'STRING'.
Note:
Applicable only if Client Traffic is selected as 'Separate Zone'..



Operation   Status   Message
Add Wireless Network200
Add Wireless Network500
Add Wireless Network502
Add Wireless Network503
Add Wireless Network541
Add Wireless Network542
Add Wireless Network544
Add Wireless Network545
Update Wireless Network200
Update Wireless Network500
Update Wireless Network503
Update Wireless Network541
Update Wireless Network542
Update Wireless Network543
Update Wireless Network544
Update Wireless Network545
Update Wireless Network546
Update Wireless Network547


© Copyright 2019 Sophos Firewall Limited. All rights reserved.
Sophos Firewall is registered trademarks of Sophos Firewall Limited and Sophos Firewall Group. All other product and company names mentioned are trademarks or registered trademarks of their respective owners.
No part of this publication may be reproduced, stored in a retrieval system, or transmitted, in any form or by any means, electronic, mechanical, photocopying, recording or otherwise unless you are either a valid licensee where the documentation can be reproduced in accordance with the license terms or you otherwise have the prior permission in writing of the copyright owner.