Cisco 2100 Series Configuration Manual page 280
Wireless lan controller
Hide thumbs
Also See for 2100 Series:
- Configuration manual (50 pages) ,
- Quick start manual (12 pages) ,
- Configuration manual (406 pages)
Table of Contents
Advertisement
Managing Rogue Devices
Note
To specify whether a detected rogue access point must meet all or any of the conditions specified by the
Step 4
rule in order for the rule to be matched and the rogue access point to adopt the classification type of the
rule, enter this command:
config rogue rule match {all | any} rule_name
To enable all rules or a specific rule, enter this command:
Step 5
config rogue rule enable {all | rule_name}
Note
To add a new friendly access point entry to the friendly MAC address list or delete an existing friendly
Step 6
access point entry from the list, enter this command:
config rogue ap friendly {add | delete} ap_mac_address
To save your changes, enter this command:
Step 7
save config
Step 8
To view the rogue classification rules that are configured on the controller, enter this command:
show rogue rule summary
Information similar to the following appears:
Priority Rule Name
-------- ----------- -------- ------------ ------ ---------
1
2
3
To view detailed information for a specific rogue classification rule, enter this command:
Step 9
show rogue rule detailed rule_name
Information similar to the following appears:
Priority......................................... 2
Rule Name........................................ Rule2
State............................................ Enabled
Type............................................. Malicious
Match Operation.................................. Any
Hit Count........................................ 352
Total Conditions................................. 6
Condition 1
type......................................... Client-count
value........................................ 10
Condition 2
type......................................... Duration
value (seconds).............................. 2000
Condition 3
type......................................... Managed-ssid
value........................................ Enabled
Condition 4
type......................................... No-encryption
value........................................ Enabled
Cisco Wireless LAN Controller Configuration Guide
5-92
You can add up to six conditions per rule. If you ever want to delete all of the conditions or a
specific condition from a rule, enter this command: config rogue rule condition ap delete {all
| condition_type} condition_value rule_name.
For your changes to become effective, you must enable the rule.
State
Rule1
Disabled
Rule2
Enabled
Rule3
Disabled
Type
Match
Hit Count
Friendly
Any
0
Malicious
Any
339
Friendly
Any
0
Chapter 5
Configuring Security Solutions
OL-17037-01
Hide quick links:
Advertisement
Chapters
Table of Contents
Troubleshooting
