Enhanced Open Beacon - ネットワークエンジニアのブログ / Blog of Network Engineer

Enhanced Open の Beacon フレームをキャプチャしてみました。
opmode-transition が有効 (default) な SSID 「bin4-enhanced-open-trans」と opmode-transition が無効な SSID 「bin4-enhanced-open」、比較として Open モードの SSID 「bin4-open」を設定しました。

show ap bss-table コマンド

AP505# show ap bss-table

Aruba AP BSS Table
------------------
bss                ess                              port  ip              phy   type  ch/EIRP/max-EIRP  cur-cl  ap name  in-t(s)  tot-t    flags
---                ---                              ----  --              ---   ----  ----------------  ------  -------  -------  -----    -----
b8:3a:5a:8b:36:d0  bin4-enhanced-open               ?/?   192.168.215.13  a-HE  ap    44/20.0/23.0      0       AP505    0        10m:28s  WET
b8:3a:5a:8b:36:d1  bin4-enhanced-open-trans         ?/?   192.168.215.13  a-HE  ap    44/20.0/23.0      0       AP505    0        10m:28s  oT
b8:3a:5a:8b:36:d2  _owetm_bin4-enhanced-1803478119  ?/?   192.168.215.13  a-HE  ap    44/20.0/23.0      0       AP505    0        10m:28s  WOT
b8:3a:5a:8b:36:d3  bin4-open                        ?/?   192.168.215.13  a-HE  ap    44/20.0/23.0      0       AP505    0        10m:28s  T

Channel followed by "*" indicates channel selected due to unsupported configured channel.
"Spectrum" followed by "^" indicates Local Spectrum Override in effect.

Num APs:5
Num Associations:0

Flags:       K = 802.11K Enabled; W = 802.11W Enabled; r = 802.11r Enabled; 3 = WPA3 BSS; O = Enhanced-open BSS with transition mode; o = Enhanced-open transition mode open BSS; M = WPA3-SAE mixed mode BSS; E = Enhanced-open BSS without transition mode; m = Agile Multiband (MBO) BSS; c = MBO Cellular Data Capable BSS; I = Imminent VAP Down; T = Individual TWT Enabled; t = Broadcast TWT Enabled; d = Deferred Delete Pending; a = Airslice policy; A = Airslice app monitoring; D = VLAN Discovered;
AP505#

bin4-enhanced-open-trans (opmode-transitionが有効) の Beacon フレーム

f:id:bin4:20200705193824p:plain

OWE Transition Mode タグに SSID: _owetm_bin4-enhanced-1803478119 が埋め込まれていることが分かる。RSN Information タグがなく、Open モードであることがわかる。

f:id:bin4:20200705194632p:plain

SSID が Wildcard (Hidden/Stealth) で、OWE Transition Mode タグに SSID: bin4-enhanced-open-trans が埋め込まれていることが分かる。また、RSN Information タグの AKM (Auth Key Management) に 00:0f:ac:12 (OWE) となっていることが確認できます。

bin4-enhanced-open (opmode-transitionが無効) の Beacon フレーム

f:id:bin4:20200705194816p:plain
RSN Information タグの AKM (Auth Key Management) に 00:0f:ac:12 (OWE) となっていることが確認できます。また、OWE Transition Mode タグがないことが確認できます。

bin4-open (Open モード) の Beacon フレーム

f:id:bin4:20200705193901p:plain

[English Version]

I captured Enhanced Open Beacon frames.

I set opmode-transition enabled SSID: bin4-enhanced-open-trans and disabled SSID: bin4-enhanced-open. For comparison. I also set bin4-open as Open mode.

output of show ap bss-table

AP505# show ap bss-table

Aruba AP BSS Table
------------------
bss                ess                              port  ip              phy   type  ch/EIRP/max-EIRP  cur-cl  ap name  in-t(s)  tot-t    flags
---                ---                              ----  --              ---   ----  ----------------  ------  -------  -------  -----    -----
b8:3a:5a:8b:36:d0  bin4-enhanced-open               ?/?   192.168.215.13  a-HE  ap    44/20.0/23.0      0       AP505    0        10m:28s  WET
b8:3a:5a:8b:36:d1  bin4-enhanced-open-trans         ?/?   192.168.215.13  a-HE  ap    44/20.0/23.0      0       AP505    0        10m:28s  oT
b8:3a:5a:8b:36:d2  _owetm_bin4-enhanced-1803478119  ?/?   192.168.215.13  a-HE  ap    44/20.0/23.0      0       AP505    0        10m:28s  WOT
b8:3a:5a:8b:36:d3  bin4-open                        ?/?   192.168.215.13  a-HE  ap    44/20.0/23.0      0       AP505    0        10m:28s  T

Channel followed by "*" indicates channel selected due to unsupported configured channel.
"Spectrum" followed by "^" indicates Local Spectrum Override in effect.

Num APs:5
Num Associations:0

Flags:       K = 802.11K Enabled; W = 802.11W Enabled; r = 802.11r Enabled; 3 = WPA3 BSS; O = Enhanced-open BSS with transition mode; o = Enhanced-open transition mode open BSS; M = WPA3-SAE mixed mode BSS; E = Enhanced-open BSS without transition mode; m = Agile Multiband (MBO) BSS; c = MBO Cellular Data Capable BSS; I = Imminent VAP Down; T = Individual TWT Enabled; t = Broadcast TWT Enabled; d = Deferred Delete Pending; a = Airslice policy; A = Airslice app monitoring; D = VLAN Discovered;
AP505#

bin4-enhanced-open-trans (opmode-transition enabled) Beacon frame

f:id:bin4:20200705193824p:plain

In OWE Transition Mode Tag, there is SSID: _owetm_bin4-enhanced-1803478119. There is no RSN Information Tag, hence this means Open mode.

f:id:bin4:20200705194632p:plain

SSID is Wildcard (Hidden/Stealth) and In OWE Transition Mode Tag, there is SSID: bin4-enhanced-open-trans. In RSN Information tag, there is AKM (Auth Key Management) 00:0f:ac:12 (OWE).

bin4-enhanced-open (opmode-transition disabled) Beacon frame

f:id:bin4:20200705194816p:plain

In RSN Information tag, there is AKM (Auth Key Management) 00:0f:ac:12 (OWE). There is no OWE Transition Mode Tag.

bin4-open (Open mode) Beacon frame

f:id:bin4:20200705193901p:plain