08-12-2015 03:26 AM
What are the available methods to prevent rogue AP in a cooperate enviroment ? Would deauth be the only method ? I understand that i would have to convert one of my AP to air monitor mode in order to achieve this. Is this true ?
Solved! Go to Solution.
08-12-2015 03:34 AM
Please read the chapter on Wireless Intrusion Protection Here: http://www.arubanetworks.com/techdocs/ArubaOS_64x_WebHelp/Web_Help_Index.htm#ArubaFrameStyles/New_WIP/New_WIP.htm%3FTocPath%3DWireless%2520Intrusion%2520Detection%7C_____0
With the base license, rogue access points can be contained with Deauths. You do not need to have dedicated air monitors to attempt to stop rogue access points, but it is much more effective with dedicated air monitors.
With the RF Protect license, rogue access points can be contained with Tarpit shielding, which is more effective than deauths and requires less airtime. http://www.arubanetworks.com/techdocs/ArubaOS_64x_WebHelp/Web_Help_Index.htm#ArubaFrameStyles/New_WIP/Tarpit_Shielding.htm%3FTocPath%3DWireless%2520Intrusion%2520Detection%7C_____11
You have to be careful, because in some regulatory domains, wireless containment is illegal under some circumstances and you should consult legal counsel before turning containment on. Please read here: http://community.arubanetworks.com/t5/Unified-Wired-Wireless-Access/The-FCC-has-clarified-their-stance-on-wireless-containment-but/m-p/226286/highlight/true#M46120
*Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba Networks or Hewlett Packard Enterprise.*
ArubaOS 8.4 User Guide
InstantOS 8.3 User Guide
Airheads Learning Videos
Aruba Central Documentation
Sign up for Security Alerts
Aruba Technical Webinars