config system settings

set sip-helper disable

set sip-nat-trace disable

set default-voip-alg-mode kernel-helper-based


config system session-helper 

delete 13

config voip profile
edit default
config sip
set rtp disable

execute reboot


Disable ability to open several tabs with Mobile Access portal. This brings some inconvenience:
SNX will be disconnected if user opens portal in another tab
SNX connection will remain active if user closes tab with portal or the whole browser
- Go to $CVPNDIR/phpincs on the gateway
- Find and backup file SNXController.php
- Open SNXController.php for editing
- Find line this.getComponent().start(1, "<?= $snx_session_id ?>"); (approx. line number 703)
- Replace the line with this.getComponent().start(1);
- Save file
- Changes are applied immediately.

Global settings for remote syslog server.

  config log syslogd setting
      Description: Global settings for remote syslog server.
      set status [enable|disable]
      set server {string}
      set mode [udp|legacy-reliable|...]
      set port {integer}
      set facility [kernel|user|...]
      set source-ip {string}
      set format [default|csv|...]
      set enc-algorithm [high-medium|high|...]
      set ssl-min-proto-version [default|SSLv3|...]
      set certificate {string}
      config custom-field-name
          Description: Custom field name for CEF format logging.
          edit <id>
              set name {string}
              set custom {string}
      set syslog-type {integer}

The Mobility Master serial number and passphrase are required to generate a license key for that specific VM configuration. The Mobility Master serial number is auto-generated, and does not have to be manually configured.

To identify the Mobility Master passphrase, access Mobility Master via the command-line interface and issue the command show license passphrase.
To identify the Mobility Master serial number, access Mobility Master via the command-line interface and issue the command show inventory.

Use the passphrase, the Mobility Master serial number, and the certificate ID in the licensing website to generate a license key that can be added to sharable license pools on Mobility Master.


Locate the VMX file associated with it. Edit the file and locate the Ethernet section. Add a new entry for each Ethernet you want to be in promiscuous mode:

(replace %d with the ethernet number)

Manually Configuring NTP in the Network 

The easiest way to use a time server in the network is to set server parameters. For example, if a time server called is reachable from the network, add its name to the file /etc/ntp.conf by adding the following line:

Dynamic Time Synchronization at Runtime

If the system boots without network connection, ntpd starts up, but it cannot resolve DNS names of the time servers set in the configuration file. This can happen if you use Network Manager with an encrypted WLAN.

If you want ntpd to resolve DNS names at runtime, you must set the dynamic option. Then, when the network is establish some time after booting, ntpd looks up the names again and can reach the time servers to get the time.

Manually edit /etc/ntp.conf and add dynamic to one or more server entries:

Or use YaST and proceed as follows:

  1. In YaST click Network Services › NTP Configuration.
  2. Select the server you want to configure. Then click Edit.
  3. Activate the Options field and add dynamic. Separate it with a space, if there are already other options entered.
  4. Click Ok to close the edit dialog. Repeat the previous step to change all servers as wanted.
  5. Finally click Ok to save the settings.

Source :

Product and Software: This article applies to Aruba Instant till Version 4.0.x.

To reset the admin password on Aruba Instant:

1) From the console, enter this username and password:

Username: admin
Password: forgetme!

2) Get into configure terminal mode:

# configure terminal

3) Issue this command to reset the password:

(config)# mgmt-user <username> <password>
(config)# exit
# write memory

As of IAP4.1.0.0, the recovery password in the console CLI has been removed for security reasons. To retain serviceability of the system, the standard username and password have been enhanced so that users can access the CLI even when the AP is in a bad state.

Username: admin
Password: forgetme!

-ToEmail address of a recipient or recipients
-BccEmail address of a BCC recipient or recipients
-CcEmail address of a CC recipient or recipients
-FromSender’s email address
-SubjectEmail subject
-BodyEmail body text
-BodyAsHtmlDefines that email body text contains HTML
-AttachmentsFilenames to be attached and the path to them
-CredentialAuthentication to send the email from the account
-SmtpServerName of the SMTP server
-PortPort of the SMTP server
-DeliveryNotificationOptionThe sender(s) specified in the Form parameter will be notified on the email delivery. Here are the options:None – notifications are off (default parameter) OnSuccess – notification of a successful delivery OnFailure – notification of an unsuccessful delivery Delay – notification of a delayed deliveryNever – never receive notifications
-EncodingThe encoding for the body and subject
-PriorityDefines the level of priority of the message. Valid options are:Normal (default parameter)LowHigh
-UseSslConnection to the SMTP server will be established using the Secure Sockets Layer (SSL) protocol