Proxim AP-4000 User Manual page 112

Hide thumbs Also See for AP-4000:

User manual (270 pages)

Specification sheet (2 pages)

Configuration manual (6 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

240

241

242

243

244

245

246

247

248

249

250

251

252

253

254

255

256

257

258

259

260

261

262

263

264

265

266

267

268

269

270

271

272

273

274

Table of Contents

Advanced Configuration

Alarms

Syslog Message Name

PXU Registration Successful

PXU Registration Failure

PXU Keep-alive Failure

PXU Profile Disabled

Rogue Scan

The Rogue Scan feature provides an additional security level for wireless LAN deployments. Rogue Scan uses the

selected wireless interface(s) for scanning its coverage area for Access Points and clients.

A centralized Network Manager receives MAC address information from the AP on all wireless clients detected by the AP.

The Network Manager then queries all wired switches to find out the inbound switch/port of these wireless clients. If the

switch/port does not have a valid Access Point connected to it as per a pre-configured database, the Network Manager

proceeds to block that switch/port and prevent the Rogue AP from connecting to the wired network.

Figure 4-43 Preventing Rogue AP Attacks

The figure above shows Client 1 connected to a Trusted AP and Client 2 connected to a Rogue AP. The Trusted AP

scans the networks, detects Client 2, and notifies the Network Manager. The Network Manager uses SNMP/CLI to query

the wired switch to find the inbound switch port of Client 2's packets. The Network Manager verifies that this switch/router

and port does not have a valid Access Point as per the administrator's database. Thus it labels Client 2's AP as a Rogue

AP and proceeds to prevent the Rogue AP attack by blocking this switch's port.

APs can be detected either by active scanning using 802.11 probe request frames or passively by detecting periodic

beacons, or both. Wireless clients are detected by monitoring 802.11 connection establishment messages such as

association/authentication messages or data traffic to or from the wireless clients.

There are two scanning modes available per wireless interface: continuous scanning mode and background scanning

mode.

Continuous Scanning Mode

The continuous scanning mode is a dedicated scanning mode where the wireless interface performs scanning alone and

does not perform the normal AP operation of servicing client traffic.

In continuous scanning mode the AP scans each channel for a channel scan time of one second and then moves to the

next channel in the scan channel list. With a channel scan time of one second, the scan cycle time will take less than a

minute (one second per channel). Once the entire scan channel list has been scanned the AP restarts scanning from the

beginning of the scan channel list.

Priority

Severity

Informational

Major

Informational

AP-4000/4000M/4900M User Guide

Description

AP successfully registers with the PXU. Message

also includes PXU IP address.

AP fails to register with the PXU. Message also

includes PXU IP address.

AP does not receive a Keep-alive response from

the PXU. Message also includes PXU IP address.

CMOB is enabled, PXU Profile is disabled

112

Table of Contents

This manual is also suitable for:

Ap-4000mOrinoco ap-4000

Proxim AP-4000 User Manual page 112

Related Manuals for Proxim AP-4000

Related Products for Proxim AP-4000

This manual is also suitable for:

Table of Contents