FreeBSD Man PagesIndex:
IPXrouted(8)MAKEDEV(8)
ac(8)
accton(8)
acpiconf(8)
acpidb(8)
acpidump(8)
adding_user(8)
adduser(8)
adjkerntz(8)
amd(8)
amq(8)
ancontrol(8)
apm(8)
apmconf(8)
apmd(8)
arlcontrol(8)
arp(8)
asf(8)
atacontrol(8)
atm(8)
atmarpd(8)
atmconfig(8)
atrun(8)
authpf(8)
badsect(8)
bcmfw(8)
boot(8)
boot0cfg(8)
boot_i386(8)
bootparamd(8)
bootpd(8)
bootpef(8)
bootpgw(8)
bootptest(8)
bsdlabel(8)
bt3cfw(8)
btxld(8)
burncd(8)
camcontrol(8)
catman.local(8)
ccdconfig(8)
chat(8)
chkgrp(8)
chkprintcap(8)
chown(8)
chroot(8)
clri(8)
comcontrol(8)
comsat(8)
config(8)
conscontrol(8)
crash(8)
cron(8)
cvsbug(8)
daemon(8)
dconschat(8)
devd(8)
devfs(8)
devinfo(8)
dhclient-script(8)
dhclient(8)
digictl(8)
diskinfo(8)
disklabel(8)
diskless(8)
dmesg(8)
dnssec-keygen(8)
dnssec-signzone(8)
dump(8)
dumpfs(8)
dumpon(8)
editmap(8)
edquota(8)
extattrctl(8)
faithd(8)
fastboot(8)
fasthalt(8)
fdcontrol(8)
fdisk(8)
ffsinfo(8)
fingerd(8)
fixmount(8)
flowctl(8)
fore_dnld(8)
fsck(8)
fsck_4.2bsd(8)
fsck_ffs(8)
fsck_msdosfs(8)
fsck_ufs(8)
fsdb(8)
fsinfo(8)
fsirand(8)
ftp-proxy(8)
ftpd(8)
fwcontrol(8)
gbde(8)
gconcat(8)
geom(8)
getextattr(8)
getfmac(8)
getpmac(8)
getty(8)
ggatec(8)
ggated(8)
ggatel(8)
glabel(8)
gmirror(8)
gnop(8)
gpt(8)
graid3(8)
growfs(8)
gshsec(8)
gstat(8)
gstripe(8)
halt(8)
hccontrol(8)
hcsecd(8)
hcseriald(8)
hlfsd(8)
hprop(8)
hpropd(8)
iasl(8)
ifconfig(8)
ifmcstat(8)
ilmid(8)
inetd(8)
init(8)
intro(8)
iostat(8)
ip6addrctl(8)
ip6fw(8)
ipf(8)
ipfs(8)
ipfstat(8)
ipfw(8)
ipmon(8)
isdnd(8)
isdndebug(8)
isdndecode(8)
isdnmonitor(8)
isdnphone(8)
isdntel(8)
isdntelctl(8)
isdntrace(8)
ispcvt(8)
jail(8)
jexec(8)
jls(8)
kadmin(8)
kadmind(8)
kdc(8)
kerberos(8)
keyserv(8)
kgmon(8)
kgzip(8)
kldconfig(8)
kldload(8)
kldstat(8)
kldunload(8)
kldxref(8)
kpasswdd(8)
kstash(8)
ktrdump(8)
ktutil(8)
l2control(8)
l2ping(8)
lastlogin(8)
ldconfig(8)
loader.4th(8)
loader(8)
locate.updatedb(8)
lockd(8)
lpc(8)
lpd(8)
lptcontrol(8)
lsextattr(8)
lwresd(8)
mail.local(8)
mailstats(8)
mailwrapper(8)
makekey(8)
makemap(8)
makewhatis.local(8)
manctl(8)
map-mbone(8)
mdconfig(8)
mdmfs(8)
memcontrol(8)
mergemaster(8)
mixer(8)
mk-amd-map(8)
mknetid(8)
mknod(8)
mksnap_ffs(8)
mkuzip(8)
mld6query(8)
mlxcontrol(8)
mount(8)
mount_cd9660(8)
mount_devfs(8)
mount_ext2fs(8)
mount_fdescfs(8)
mount_linprocfs(8)
mount_mfs(8)
mount_msdosfs(8)
mount_nfs(8)
mount_nfs4(8)
mount_ntfs(8)
mount_nullfs(8)
mount_nwfs(8)
mount_portalfs(8)
mount_procfs(8)
mount_smbfs(8)
mount_std(8)
mount_udf(8)
mount_umapfs(8)
mount_unionfs(8)
mountd(8)
moused(8)
mrinfo(8)
mrouted(8)
mtest(8)
mtrace(8)
mtree(8)
named-checkconf(8)
named-checkzone(8)
named(8)
named.reconfig(8)
named.reload(8)
natd(8)
ndiscvt(8)
ndp(8)
newfs(8)
newfs_msdos(8)
newkey(8)
newsyslog(8)
nextboot(8)
nfsd(8)
nfsiod(8)
ngctl(8)
nghook(8)
nis(8)
nologin(8)
nos-tun(8)
nsupdate(8)
ntpd(8)
ntpdate(8)
ntpdc(8)
ntpq(8)
ntptime(8)
ntptrace(8)
pac(8)
pam_chroot(8)
pam_deny(8)
pam_echo(8)
pam_exec(8)
pam_ftpusers(8)
pam_group(8)
pam_guest(8)
pam_krb5(8)
pam_ksu(8)
pam_lastlog(8)
pam_login_access(8)
pam_nologin(8)
pam_opie(8)
pam_opieaccess(8)
pam_passwdqc(8)
pam_permit(8)
pam_radius(8)
pam_rhosts(8)
pam_rootok(8)
pam_securetty(8)
pam_self(8)
pam_ssh(8)
pam_tacplus(8)
pam_unix(8)
pccardc(8)
pccardd(8)
pciconf(8)
periodic(8)
pfctl(8)
pflogd(8)
picobsd(8)
ping(8)
ping6(8)
pnpinfo(8)
ppp(8)
pppctl(8)
pppd(8)
pppoed(8)
pppstats(8)
praliases(8)
procctl(8)
pstat(8)
pw(8)
pwd_mkdb(8)
pxeboot(8)
quot(8)
quotacheck(8)
quotaoff(8)
quotaon(8)
rarpd(8)
raycontrol(8)
rbootd(8)
rc(8)
rc.atm(8)
rc.d(8)
rc.early(8)
rc.firewall(8)
rc.local(8)
rc.network(8)
rc.pccard(8)
rc.sendmail(8)
rc.serial(8)
rc.shutdown(8)
rc.subr(8)
rcorder(8)
rdump(8)
reboot(8)
renice(8)
repquota(8)
rescue(8)
restore(8)
revnetgroup(8)
rexecd(8)
rfcomm_pppd(8)
rip6query(8)
rlogind(8)
rmail(8)
rmextattr(8)
rmt(8)
rmuser(8)
rndc-confgen(8)
rndc(8)
route(8)
route6d(8)
routed(8)
rpc.lockd(8)
rpc.rquotad(8)
rpc.rstatd(8)
rpc.rusersd(8)
rpc.rwalld(8)
rpc.sprayd(8)
rpc.statd(8)
rpc.umntall(8)
rpc.yppasswdd(8)
rpc.ypxfrd(8)
rpcbind(8)
rpcinfo(8)
rrenumd(8)
rrestore(8)
rshd(8)
rtadvd(8)
rtquery(8)
rtsol(8)
rtsold(8)
rwhod(8)
sa(8)
savecore(8)
sconfig(8)
scspd(8)
sdpcontrol(8)
sdpd(8)
securelevel(8)
sendmail(8)
setextattr(8)
setfmac(8)
setfsmac(8)
setkey(8)
setpmac(8)
sftp-server(8)
showmount(8)
shutdown(8)
sicontrol(8)
slattach(8)
slip(8)
sliplogin(8)
slstat(8)
smbmsg(8)
smrsh(8)
spkrtest(8)
spppcontrol(8)
spray(8)
ssh-keysign(8)
sshd(8)
sticky(8)
strfile(8)
sunlabel(8)
swapctl(8)
swapinfo(8)
swapoff(8)
swapon(8)
sync(8)
sysctl(8)
sysinstall(8)
syslogd(8)
talkd(8)
tcpd(8)
tcpdchk(8)
tcpdmatch(8)
tcpdrop(8)
telnetd(8)
tftpd(8)
timed(8)
timedc(8)
traceroute(8)
traceroute6(8)
trpt(8)
tunefs(8)
tzsetup(8)
ugidfw(8)
umount(8)
unstr(8)
updatedb(8)
usbd(8)
usbdevs(8)
verify_krb5_conf(8)
vinum(8)
vipw(8)
vmstat(8)
vnconfig(8)
watch(8)
watchdog(8)
watchdogd(8)
wicontrol(8)
wire-test(8)
wlconfig(8)
yp(8)
yp_mkdb(8)
ypbind(8)
ypinit(8)
yppoll(8)
yppush(8)
ypserv(8)
ypset(8)
ypxfr(8)
zdump(8)
zic(8)
zzz(8)
wicontrol(8)
NAME
wicontrol -- configure Lucent, Intersil, and Atheros wireless devices
SYNOPSIS
wicontrol [-i] iface [-o]
wicontrol [-i] iface -l (dump associated stations)
wicontrol [-i] iface -L (list available access points)
wicontrol [-i] iface -t tx_rate
wicontrol [-i] iface -n network_name
wicontrol [-i] iface -s station_name
wicontrol [-i] iface -c 0 | 1
wicontrol [-i] iface -q SSID
wicontrol [-i] iface -p port_type
wicontrol [-i] iface -a access_point_density
wicontrol [-i] iface -m mac_address
wicontrol [-i] iface -d max_data_length
wicontrol [-i] iface -e 0 | 1
wicontrol [-i] iface -k key [-v 1 | 2 | 3 | 4]
wicontrol [-i] iface -T 1 | 2 | 3 | 4
wicontrol [-i] iface -r RTS_threshold
wicontrol [-i] iface -f frequency
wicontrol [-i] iface -P 0 | 1
wicontrol [-i] iface -S max_sleep_duration
wicontrol [-i] iface -Z (zero signal cache)
wicontrol [-i] iface -C (display signal cache)
DESCRIPTION
The wicontrol utility controls the operation of Lucent, Intersil, and
Atheros-based wireless networking devices via wi(4) or ath(4) driver.
You should not use this program to configure IEEE 802.11 parameters. Use
ifconfig(8) instead to do those tasks (i.e., set SSID, WEP key, etc.).
The wicontrol utility can also be used to view the current settings of
these parameters, dump out the values of the card's statistics counters,
list associated stations (in HostAP mode), and scan for available access
points.
The iface argument given to wicontrol should be the logical interface
name associated with the Lucent, Intersil, and Atheros device (wi0, wi1,
ath0, etc.). If none is specified then ``wi0'' is used as default.
OPTIONS
The options are as follows:
[-i] iface [-o]
Display the current settings of the specified wireless interface.
This retrieves the current card settings from the driver and
prints them out. Using the additional -o flag will cause
wicontrol to print out the statistics counters instead of the
card settings. Encryption keys are only displayed if wicontrol
is run as root.
[-i] iface -a access_point_density
Specify the access point density for a given interface. Legal
values are 1 (low), 2 (medium) and 3 (high). This setting influ-
ences some of the radio modem threshold settings.
Set the maximum receive and transmit frame size for a specified
interface. The max_data_length can be any number from 350 to
2304. The default is 2304.
[-i] iface -r RTS_threshold
Set the RTS/CTS threshold for a given interface. This controls
the number of bytes used for the RTS/CTS handshake boundary. The
RTS_threshold can be any value between 0 and 2347. The default
is 2347.
[-i] iface -Z
Clear the signal strength cache maintained internally by the
wi(4) driver.
[-i] iface -C
Display the cached signal strength information maintained by the
wi(4) driver. The driver retains information about signal
strength and noise level for packets received from different
hosts. The signal strength and noise level values are displayed
in units of dBms. The signal quality value is produced by sub-
tracting the noise level from the signal strength (i.e., less
noise and better signal yields better signal quality).
DEPRECATED AND OBSOLETE OPTIONS
The wicontrol utility has a number of options that are now deprecated or
obsolete, as they have been overtaken by extensions to ifconfig(8) and
changes to the driver. The deprecated and obsolete options are as fol-
lows:
[-i] iface -t tx_rate
This flag is deprecated. Use ifconfig(8) mediaopt instead.
Set the transmit rate of the specified interface. The legal val-
ues for the transmit rate vary depending on whether the interface
is a standard WaveLAN/IEEE or a WaveLAN/IEEE Turbo adapter. The
standard NICs support a maximum transmit rate of 2Mbps while the
turbo NICs support a maximum speed of 6Mbps. The following table
shows the legal transmit rate settings and the corresponding
transmit speeds:
TX rate NIC speed
1 Fixed Low (1Mbps)
2 Fixed Standard (2Mbps)
3 Auto Rate Select (High)
4 Fixed Medium (4Mbps)
5 Fixed High (6Mbps)
6 Auto Rate Select (Standard)
7 Auto Rate Select (Medium)
The default driver setting is 3 (auto rate select). The numbers
vary from card to card.
[-i] iface -n network_name
This flag is deprecated. Use ifconfig(8) ssid or nwid instead.
Set the name of the service set (IBSS) that this station wishes
to join. The network_name can be any text string up to 30 char-
acters in length. The default name is the string ``ANY'' which
[-i] iface -s station_name
This flag is deprecated. Use ifconfig(8) stationname or station
instead.
Sets the station name for the specified interface. The
station_name is used for diagnostic purposes. The Lucent
WaveMANAGER software can poll the names of remote hosts.
[-i] iface -c 0 | 1
This flag is deprecated. IBSS networks are automatically created
on those cards whose firmware supports it while in IBSS mode.
Allow the station to create a service set (IBSS). Permitted val-
ues are 0 (don't create IBSS) and 1 (enable creation of IBSS).
The default is 0.
Only newer versions of the Lucent firmware support this.
[-i] iface -q SSID
This flag is deprecated. The ssid setting from ifconfig(8) is
the current preferred way of setting this parameter.
Specify the name of an IBSS (SSID) to create on a given inter-
face. The SSID can be any text string up to 30 characters long.
Note: this option is provided for experimental purposes only:
enabling the creation of an IBSS on a host system doesn't appear
to actually work.
[-i] iface -p port_type
This flag is deprecated. It should never be used. Do not use
this flag. Its meaning depends on the type of card you are
using, as well as the firmware you have installed in the card in
some cases. Beware. Danger. Do not use. Instead, use the
ifconfig(8) media and mediaopt commands.
Set the port type for a specified interface. The legal values
for port_type are 1 (BSS mode) and 3 (ad-hoc) mode. In ad-hoc
mode, the station can communicate directly with any other sta-
tions within direct radio range (provided that they are also
operating in ad-hoc mode). In BSS mode, hosts must associate
with a service set controlled by an access point, which relays
traffic between end stations. The default setting is 1 (BSS
mode). Lucent cards have one set of meanings. Prism cards have
another. Symbol cards have a third. Do not use this flag.
[-i] iface -e 0 | 1
This flag is deprecated. It has been replaced by the ifconfig(8)
wepmode option.
Enable or disable WEP encryption. Permitted values are 0
(encryption disabled) or 1 (encryption enabled). Encryption is
off by default.
Both 128-bit and 64-bit WEP have been broken. See the BUGS sec-
tion for details.
or a series of hexadecimal digits (i.e., ``0x1234512345''). For
WaveLAN Turbo Silver cards, the key is restricted to 40 bits,
hence the key can be either a 5 character text string or 10 hex
digits. For WaveLAN Turbo Gold cards, the key can also be 104
bits, which means the key can be specified as either a 13 charac-
ter text string or 26 hex digits in addition to the formats sup-
ported by the Silver cards.
For maximum portability, hex keys are recommended; the mapping of
text keys to WEP encryption is usually driver-specific. In par-
ticular, the Windows drivers do this mapping differently to
FreeBSD.
Note: Both 128-bit and 64-bit WEP encryption have been broken.
See the BUGS section for details.
[-i] iface -T 1 | 2 | 3 | 4
This flag is obsolete. The ifconfig(8) weptxkey should be used
instead.
Specify which of the four WEP encryption keys will be used to
encrypt transmitted packets.
Note: Both 128-bit and 64-bit WEP have been broken. See the BUGS
section for details.
[-i] iface -f frequency
This flag is deprecated. Use ifconfig(8) channel instead.
Set the radio frequency of a given interface. The frequency
should be specified as a channel ID as shown in the table below.
The list of available frequencies is dependent on radio regula-
tions specified by regional authorities. Recognized regulatory
authorities include the FCC (United States), ETSI (Europe),
France and Japan. Frequencies in the table are specified in MHz.
Channel ID FCC ETSI France Japan
1 2412 2412 - 2412
2 2417 2417 - 2417
3 2422 2422 - 2422
4 2427 2427 - 2427
5 2432 2432 - 2432
6 2437 2437 - 2437
7 2442 2442 - 2442
8 2447 2447 - 2447
9 2452 2452 - 2452
10 2457 2457 2457 2457
11 2462 2462 2462 2462
12 - 2467 2467 2467
13 - 2472 2472 2472
14 - - - 2484
If an illegal channel is specified, the NIC will revert to its
default channel. For NICs sold in the United States and Europe,
the default channel is 3. For NICs sold in France, the default
channel is 11. For NICs sold in Japan, the default channel is
14, and it is the only available channel for pre-11Mbps NICs.
Note that two stations must be set to the same channel in order
to help conserve power on mobile stations, at the cost of some
increased receive latency. Power management is off by default.
Note that power management requires the cooperation of an access
point in order to function; it is not functional in ad-hoc mode.
Also, power management is only implemented in Lucent WavePOINT
firmware version 2.03 or later, and in WaveLAN PCMCIA adapter
firmware 2.00 or later. Older revisions will silently ignore the
power management setting. Legal values for this parameter are 0
(off) and 1 (on).
[-i] iface -S max_sleep_interval
This flag is obsolete. The ifconfig(8) powersleep should be used
instead.
Specify the sleep interval to use when power management is
enabled. The max_sleep_interval is specified in milliseconds.
The default is 100.
SEE ALSO
ath(4), awi(4), ipsec(4), wi(4), ifconfig(8)
BUGS
There are deprecated flags here that duplicate functionality of
ifconfig(8). These flags were deprecated in FreeBSD 5.1 and will be
removed in a future release.
The WEP encryption method has been broken so that third parties can
recover the keys in use relatively quickly at distances that are surpris-
ing to most people. Do not rely on WEP for anything but the most basic,
remedial security. IPSEC will give you a higher level of security and
should be used whenever possible. Do not trust access points or wireless
machines that connect through them as they can provide no assurance that
the traffic is legitimate. MAC addresses can easily be forged and should
therefore not be used as the only access control.
The attack on WEP is a passive attack, requiring only the ability to
sniff packets on the network. The passive attack can be launched at a
distance larger, up to many miles, than one might otherwise expect given
a specialized antenna used in point to point applications. The attacker
can recover the keys from a 128-bit WEP network with only 5,000,000 to
6,000,000 packets. While this may sound like a large number of packets,
empirical evidence suggests that this amount of traffic is generated in a
few hours on a partially loaded network. Once a key has been compro-
mised, the only remedial action is to discontinue it and use a new key.
See http://www.cs.rice.edu/~astubble/wep/wep_attack.html for details of
the attack. Many programs to assist in cracking WEP keys are widely
available.
If you must use WEP, you are strongly encouraged to pick keys whose bytes
are random and not confined to ASCII characters. Brute force attacks on
WEP keys are also possible. Experience has showns that ASCII keys can be
cracked in less than a day. Even random bytes can be cracked in less
than two weeks.
Signal cache is broken right now.
HISTORY
SPONSORED LINKS
Man(1) output converted with man2html , sed , awk