Wireless Access

last person joined: 14 hours ago 

Access network design for branch, remote, outdoor, and campus locations with HPE Aruba Networking access points and mobility controllers.
Back to discussions
Expand all | Collapse all

WIPS: Containment, Tarpit or Disable?

This thread has been viewed 7 times

  • 1.  WIPS: Containment, Tarpit or Disable?

    Posted Aug 28, 2016 11:10 PM
    Hi,
    i'm a newbie in Aruba WIPS and i'm quite confused on what can a controller with Rfprotect can really do on a rogue AP/device?

    thank you very much for any response :)

    #AirheadsMobile


  • 2.  RE: WIPS: Containment, Tarpit or Disable?
    Best Answer

    EMPLOYEE
    Posted Aug 29, 2016 05:57 AM

    Containment is actively keeping a device off of the network, presumably because it is a rogue device..  There are two types of containment; deauths and tarpitting.  Deauths does not require the WIPS license, but consumes airtime because it is actively sending deauths when a client tries to connect to a resource.  Tarpitting requires the RF Protect license, but it is a method that is much more effective at keeping clients off of the network, along with consuming less airtime.

     

    The FCC has really murky rules about containment, so you should consult your own legal resources to determine if what you are doing is lawful before turning it on in a production environment:  http://community.arubanetworks.com/t5/Wireless-Access/The-FCC-has-clarified-their-stance-on-wireless-containment-but/m-p/226342#M46143