Configuring Intrusion Protection

Intrusion protection features support containment of an AP or a client. In the case of an AP, we will attempt to disconnect all client that are connected or attempting to connect to the AP. In the case of a client, the client's association to an AP is targeted. The following containment mechanisms are supported:

Deauthentication containment: An AP or client is contained by disrupting its association on the wireless interface.

Tarpit containment: An AP is contained by luring clients that are attempting to associate with it to a tarpit. The tarpit can be on the same channel as the AP being contained, or on a different channel (see "Working with Tarpit Shielding" on page 392).

Wired containment: An AP or client is contained by disrupting its connection on the wired interface.

The WIP feature supports separate enforcement policies that use the underlying containment mechanisms to contain an AP or a client that do not conform to the policy. These policies are discussed in the sections that follow.

Understanding Infrastructure Intrusion Protection

Table 107 presents a summary of the infrastructure intrusion protection features with their related commands, traps, and syslog identifications. Details of each feature follow the table.

Table 107: Infrastructure Protection Summary

Feature

Command

Trap

Syslog ID

"Protecting 40MHz

ids unauthorized-device-profile

wlsxAPDeauthContainment

106005, 106006,

802.11 High

protect-ht-40mhz

wlsxClientDeauthContainment

126102, 126103,

Throughput Devices"

 

wlsxTarpitContainment

126108, 127102,

on page 382

 

 

127103, 127108

 

 

 

 

"Protecting 802.11n

ids unauthorized-device-profile

wlsxAPDeauthContainment

106005, 106006,

High Throughput

protect-high-throughput

wlsxClientDeauthContainment

126102, 126103,

Devices" on page 382

 

wlsxTarpitContainment

126108, 127102,

 

 

 

127103, 127108

 

 

 

 

"Protecting Against

ids unauthorized-device-profile

wlsxAPDeauthContainment

106005, 106006,

Adhoc Networks" on

protect-adhoc-network

wlsxClientDeauthContainment

126012, 126102,

page 382

 

wlsxTarpitContainment

126103, 126108,

 

 

 

127102, 127103,

 

 

 

127108

 

 

 

 

"Protecting Against

ids impersonation-profile

wlsxAPDeauthContainment

106005, 106006,

AP Impersonation " on

protect-ap-impersonation

wlsxClientDeauthContainment

126102, 126103,

page 382

 

wlsxTarpitContainment

126108, 127102,

 

 

 

127103, 127108

 

 

 

 

"Protecting Against

ids unauthorized-device-profile

wlsxAPDeauthContainment

106005, 106006,

Misconfigured APs"

protect-misconfigured-ap

wlsxClientDeauthContainment

126102, 126103,

on page 382

 

wlsxTarpitContainment

126108, 127102,

 

 

 

127103, 127108

 

 

 

 

"Protecting SSIDs" on

ids unauthorized-device-profile

wlsxAPDeauthContainment

106005, 106006,

page 382

protect-ssid

wlsxClientDeauthContainment

126102, 126103,

 

 

wlsxTarpitContainment

126108, 127102,

 

 

 

127103, 127108

 

 

 

 

"Protecting Against

ids unauthorized-device-profile

wlsxAPDeauthContainment

106005, 106006,

Rogue Containment"

rogue-containment

wlsxClientDeauthContainment

126102, 126103,

 

 

 

 

381 Wireless Intrusion Prevention

Dell PowerConnect W-Series ArubaOS 6.2 User Guide

Page 381
Image 381
Dell 6.2 manual Configuring Intrusion Protection, Understanding Infrastructure Intrusion Protection

6.2 specifications

Dell 6.2 is an advanced enterprise solution that caters to the needs of businesses seeking robust performance and efficiency. As a part of Dell's commitment to innovation, the 6.2 series combines cutting-edge technologies and features that enhance productivity and deliver reliable computing experiences.

One of the standout features of the Dell 6.2 is its impressive processing power. Equipped with the latest Intel processors, it offers exceptional speed and multitasking capabilities. This allows businesses to run demanding applications effortlessly, making it ideal for data-intensive tasks such as data analysis, software development, and virtualization. The series also supports substantial RAM configurations, enabling users to manage extensive workloads without experiencing slowdowns.

In terms of storage, the Dell 6.2 line includes advanced SSD options that significantly boost data access speeds compared to traditional hard drives. This rapid access to information is vital for businesses that require quick retrieval of large datasets. Furthermore, the devices support RAID configurations, which enhances data redundancy and security, protecting critical business information from loss.

Connectivity is another critical aspect of the Dell 6.2 series. It includes multiple USB ports, HDMI outputs, and high-speed Ethernet options, ensuring that users can easily connect to various peripherals and networks. The integration of Wi-Fi 6 technology enables faster wireless connections, resulting in improved internet speeds and bandwidth efficiency, which is crucial in today’s increasingly connected workplaces.

Dell has also prioritized security in the 6.2 series. It features enhanced biometric authentication and advanced encryption methods, safeguarding sensitive data from unauthorized access. Additionally, the system's BIOS protection and automatic updates provide an added layer of security, ensuring that the device remains safe from emerging threats.

The design of the Dell 6.2 is not only sleek and modern but also built for durability. Its robust chassis is engineered to withstand the rigors of daily use, making it suitable for various business environments. This durability ensures that the investment in Dell 6.2 will last for years while maintaining performance integrity.

In summary, the Dell 6.2 series embodies a blend of speed, storage efficiency, connectivity, and security, making it a top choice for enterprises looking to enhance their computing capabilities. With its modern features and durable design, Dell 6.2 is positioned as a reliable partner in driving business success.