Grandstream Networks GWN76 Series User Manual page 88

You can specify MAC address of the untrusted AP, which should be formatted as
Untrusted AP XX:XX:XX:XX:XX:XX. If an AP is defined as untrusted AP, countermeasures will be executed on it
when countermeasure is enabled.
In the figure below we would have a list showing all the detected rogue AP on the network scanned by the GWN access point.
Firewall
This section allows user to control the outgoing and incoming traffic from clients by manually setting up.
policies to either deny or permit the traffic based on protocol type and by specifying SSIDs and destinations.
Field Description
Select type of traffic to be affected by the outbound rule like ICMP, HTTP, HTTPS... or you may add
another type of traffic when selecting Custom. When set to Custom, user could enter the following:
Service
Protocol • Protocol: TCP or UDP
• Port: define the port used by this protocol.
Policy Either select to Permit or Deny Outbound traffic.
Select either:
• Particular Domain: enter FQDN of a destination or string: for instance, entering test will block service to
any domain name containing string test.
Destination
• Particular IP: IP address of destination.
• Particular Network: Network IP address.
• All: the rule will apply on all destinations.
SSID Select one or multiple SSIDs to apply the rule on.
User can define outbound and inbound rules on the traffic from the options in figure below:
Field Description
Rogue AP
Rogue AP-Detection
Firewall-Outbound
Firewall- Outbound
Firewall-inbound