Security

Reply
Occasional Contributor II
Posts: 13
Registered: ‎10-31-2012

Aruba 3200 manual blacklist/block

Hi,

We have a Aruba 3200 controller. What i would like to do is block/ban/blacklist a devide (prob by MAC address) if i feel it is acting inappropriately. I know i can search for the device and select to blacklist it, but if the device is not currently connected then i cannot find it on the client search and therefore cannot blacklist it. 

 

Is there a way to manually add a MAC address so that device is blacklisted when it tries to connect? I have a list of MAC addresses id like to blacklist. Or is there a better way to blockban devices then above. I know i can do it at a firewall/UTM level but would prefer to do it at the Aruba WiFi level. Currently we are just using basic SSID with WPA security. No RADIUS, captive portal, etc.

 

Thanks in advance for your help.

Guru Elite
Posts: 20,002
Registered: ‎03-29-2007

Re: Aruba 3200 manual blacklist/block

You need to do it from the commandline.

 

Please see here:  http://community.arubanetworks.com/t5/Command-of-the-Day/COTD-stm-add-blacklist-client/m-p/1048/highlight/true#M79

 

Colin Joseph
Aruba Customer Engineering

Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base

Validated Reference Design Guides : http://community.arubanetworks.com/t5/Validated-Reference-Design/tkb-p/Aruba-VRDs
Occasional Contributor II
Posts: 13
Registered: ‎10-31-2012

Re: Aruba 3200 manual blacklist/block

Thanks for the reply. I tried that and got the attached result unfortunately.

 

Guru Elite
Posts: 20,002
Registered: ‎03-29-2007

Re: Aruba 3200 manual blacklist/block

You need to be in "enable" mode to do this.  type "enable" and  then the enable password.

 

Colin Joseph
Aruba Customer Engineering

Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base

Validated Reference Design Guides : http://community.arubanetworks.com/t5/Validated-Reference-Design/tkb-p/Aruba-VRDs
Occasional Contributor II
Posts: 13
Registered: ‎10-31-2012

Re: Aruba 3200 manual blacklist/block

Great! Thanks for that.

Occasional Contributor II
Posts: 12
Registered: ‎08-19-2013

Re: Aruba 3200 manual blacklist/block

I know this is an old thread but for those like me who do end up reading it:

 

The blacklist now stays through controller reboot huzzah! 

 

Tested on 6.3.1.5

Occasional Contributor II
Posts: 51
Registered: ‎05-03-2011

Re: Aruba 3200 manual blacklist/block

I can successfully block users from the CLI, but the problem is that i cant make them permanent blacklisted.

Ive set the Blacklist Time within the virtual APs that is affected to zero, but what ever I do when i use show ap blacklist-clients i get 3600 sec.

 

What am i doing wrong?

 

Regards,

Johan

Guru Elite
Posts: 20,002
Registered: ‎03-29-2007

Re: Aruba 3200 manual blacklist/block

[ Edited ]

jokohanho,

 

Are you blacklisting a user that is currently connected, or no longer connected.  If the user is connected, it is the virtual AP that controls it.  If the user is NOT connected to the controller it corresponds to the "show ap blacklist-time" parameter:

 

To see how long a user is not connected would be blacklisted:

 

(192.168.1.3) #show ap blacklist-time 

ap blacklist-time:3600

 To change the blacklist to permanent:

 

(192.168.1.3) #configure t
Enter Configuration commands, one per line. End with CNTL/Z

(192.168.1.3) (config) #ap ap-blacklist-time ?
<ap-blacklist-time>     time in seconds

(192.168.1.3) (config) #ap ap-blacklist-time 0

 

Colin Joseph
Aruba Customer Engineering

Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base

Validated Reference Design Guides : http://community.arubanetworks.com/t5/Validated-Reference-Design/tkb-p/Aruba-VRDs
Occasional Contributor II
Posts: 51
Registered: ‎05-03-2011

Re: Aruba 3200 manual blacklist/block

Sorry, i missed to mention im trying to block mac addresses. :)

The mac address is not connected at this point.

Occasional Contributor II
Posts: 51
Registered: ‎05-03-2011

Re: Aruba 3200 manual blacklist/block

So how do I change the ap blacklist-time?

Search Airheads
Showing results for 
Search instead for 
Did you mean: