Brocade Mobility RFS Controller System Reference Guide (Supporting software release 5.5.0.0 and later) User Manual

600

Brocade Mobility RFS Controller System Reference Guide

53-1003099-01

10

9. Refer to the Rogue AP Detection field to define the following detection settings for this WIPS

policy:

10. Use the Device Categorization Policy drop-down menu to select a policy describing whether a

device is filtered as sanctioned, a client or Access Point and the MAC and SSID addresses used
as filtering mechanisms.

If a policy requires creation, select the Create button. If an existing policy requires
modification, select the Edit button and update the Device Categorization Policy as
needed.

11. Select OK to update the settings. Select Reset to revert to the last saved configuration.

12. Select the WIPS Events tab to enable events, filters and threshold values for this WIPS policy.

The Excessive tab displays by default.

Enable Rogue AP
Detection

Select the checkbox to enable the detection of unauthorized (unsanctioned) devices fro this WIPS policy.
The default setting is disabled.

Wait Time to
Determine AP Status

Define a wait time in either Seconds (10 - 600) or Minutes (1 - 10) before a detected AP is interpreted as
a rogue (unsanctioned) device, and potentially removed. The default interval is 1 minute.

Ageout for AP Entries

Set the interval the WIPS policy uses to ageout rogue devices. Set the policy in either Seconds (30 -
86,400), Minutes (1- 1,440), Hours (1 - 24) or Days (1). The default setting is 5 minutes.

Interferer Threshold

Specify a RSSI threshold (from -100 to -10 dBm) after which a detected Access Point is classified as an
interferer (rogue device).

Recurring Event
Interval

Set an interval that, when exceeded, duplicates a rogue AP event if the rogue devices is still active
(detected) in the network. The default setting is 5 minutes.

Air Termination

Select this option to enable the termination of detected rogue AP devices. Air termination lets you
terminate the connection between your wireless LAN and any Access Point or client associated with it. If
the device is an Access Point, all clients dis-associated with the Access Point. If the device is a client, its
connection with the Access Point is terminated. This setting is disabled by default.

Air Termination
Channel Switch

Select this option to allow neighboring Access Points to switch channels for rogue AP termination. This
setting is disabled by default.

Air Termination Mode

If termination is enabled, use the drop-down menu to specify the termination mode used on detected
rogue devices. The default setting is manual.