NETGEAR ProSafe Premium WNDAP620 Reference Manual page 92

Prosafe premium 3 x 3 dual-band wireless-n access point

Hide thumbs Also See for ProSafe Premium WNDAP620:

Installation manual (2 pages)

Installation manual (28 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

Table of Contents

ProSafe Premium 3 x 3 Dual-Band Wireless-N Access Point WNDAP620

Table 24. IDS/IPS policies and policy rules (continued)

Policy

Description

RF jamming attack

•

Attack. Multiple RF transmissions (100 or more) are sent to the

wireless access point, jamming the radio frequency.

•

Result. Wireless service is disrupted.

Note:

against this attack.

Virtual carrier attack •

Attack. Multiple frames (60 or more) with a large duration value

are sent to the wireless access point.

•

Result. Wireless service is disrupted.

•

Solution. The wireless access point sends a channel change

frame to the legitimate clients and uses automatic channel

selection to switch to a new clear channel.

MAC spoofing

•

Attack. Several frames (3 or more) that contain the spoofed

MAC address of the wireless access point itself or the spoofed

MAC address of a legitimate client are sent to the wireless

access point.

•

Result. Wireless security might be compromised.

Note:

action against MAC spoofing.

Rogue AP detection •

Detection. A wireless access point is not in the managed AP

list (see

not connected to the secured wireless or wired network.

•

Result. Wireless security might be compromised.

Note:

against rogue APs. For information about how to exclude rogue APs

from your network, see

Access Points

Ad-hoc network

•

Detection. A group of wireless access points are part of an

detected

ad hoc network that might broadcast the same SSID as the

secured wireless network.

•

Result. Wireless security might be compromised.

Note:

action against ad hoc networks.

Ad-hoc network with

•

Detection. A group of wireless access points are part of an

wired connectivity

ad hoc network that has a wired connection and that might

broadcast the same SSID as the secured wireless network.

•

Result. Wireless security might be compromised.

Note:

action against ad hoc networks.

The IDS detects this attack, but the IPS does not take action

The IDS detects MAC spoofing, but the IPS does not take

View and Save Access Point Lists

The IDS detects rogue APs, but the IPS does not take action

Enable Rogue AP Detection and Monitor

on page 85.

The IDS detects ad hoc networks, but the IPS does not take

Management and Monitoring

Policy Rule

Threshold

100

on page 87) and is

Notification

Trap

Table of Contents

NETGEAR ProSafe Premium WNDAP620 Reference Manual page 92

Related Manuals for NETGEAR ProSafe Premium WNDAP620

Related Products for NETGEAR ProSafe Premium WNDAP620

Table of Contents