Motorola RFS Series Reference Manual page 724

20-46 Motorola RF Switch CLI Reference Guide
Parameters
anomaly-detection
[all|bad-essid-frame|
beacon-broadcast-essid|
deauth-broadcast-smac|
detect-adhoc-networks|
invalid-8021x-frame|
invalid-frame-length|
invalid-frame-type|
invalid-sequence-
number|
multicast-source|
non-chaining-wep-iv|
null-destination|
same-source-
destination|
tkip-countermeasures|
unencrypted-traffic|
weak-wep-iv]
[enable|filter-ageout]
Configures parameters related to the detection of
anomalous frames on the RF network. The parameters are:
• all – Enables all types of anomalous frames
• bad-essid-frame{<1-10> <info>}– Enables an AP
detector to configure up to 10 known bad ESSIDs
• <1-10> – Configure list of known bad ESSIDs
• <info> – A string of upto 32 characters
• beacon-broadcast-essid – Enables an AP detector to find
beacons with broadcast ESSIDs
• deauth-broadcast-smac – Enables monitoring and
filtering of broadcast deauthentication messages from a
source.
• detect-adhoc-networks – Detects adhoc networks.
• invalid-8021x-frame – Detects invalid 802.1x frames
• invalid-frame-length – Detects frames with an invalid
length
• invalid-frame-type – Detects frames with an invalid type
• invalid-sequence-number – Detects frames with invalid
sequence numbers
• multicast-source – Broadcast or multicast source
• non-changing-wep-iv – Detects frames with a non
changing WEP IV
• null-destination – Detects addresses with all zeros
• same-source-destination – Identical source and
destination addresses
• tkip-countermeasures – Filters mobile units causing
TKIIP countermeasures
• unencrypted-traffic – Detects unencrypted-traffic
• weak-wep-iv – Uses weak WEP sequence numbers