Hi
If you list all the client MAC addresses on the switch, can you eliminate all legit MAC addresses and find the MAC address of the Rouge AP?
Do you have any form of authentication on the switch ports?
------------------------------
Best Regards
Jonas Hammarbäck
MVP Guru 2024, ACEX, ACDX #1600, ACCX #1335, ACX-Network Security, Aruba SME, ACMP, ACSA
Aranya AB
If you find my answer useful, consider giving kudos and/or mark as solution
------------------------------
Original Message:
Sent: Jun 24, 2024 04:37 AM
From: phancuong3812
Subject: Prevent AP from plugging into LAN
Thank you,
The wan port of the Wifi Router (AP Rogue) has been cloned to the MAC, so how can you detect the AP Rogue?
Original Message:
Sent: Jun 24, 2024 03:05 AM
From: cordless
Subject: Prevent AP from plugging into LAN
Depending on the Cisco Switch Type (supported Device or not) you can put it as monitored Device into AirWave. Than you will get the Switch Port Information in the Rogue dashboard / Report.
Original Message:
Sent: Jun 22, 2024 02:50 AM
From: phancuong3812
Subject: Prevent AP from plugging into LAN
Hi everyone :)
I discovered that there is a rogue AP plugged into the Cisco switch, but I can't tell which switch port the rogue AP is plugged into. Clients successfully entered the fake SSID to the internet.
Please explain to me why clients can access the internet and how to prevent APs on the device system.
I can go to the site to detect the signal through the analyzer software, but I live quite far away and there are many sites.
I really want advice, thank you very much.