Wireless Access

Reply
Contributor I
Posts: 80
Registered: ‎04-29-2013

should I ever see hotspotter attacks from my own ssids?

well, the title really says about half of it. I recently turned on the hotspotter checkbox on my controller, and I am being inundated with IDS events that certainly appear to be from my own APs/SSIDs. Is that a 'better' AP trying to lure a client from a 'worse' AP, or something nefarious? If benign, can I filter those out?

 

Secondly, since xfinitywifi and CableWifi have done their thing, I added them as legit SSIDs. Should I still be getting IDS events - noth hotspotter and Valid Client Misassociation - from those SSIDs now?

 

thanks,

 

Russell

Search Airheads
Showing results for 
Search instead for 
Did you mean: