Command Groups

Rogue AP Commands

ʺRogue APʺ describes an access point that is not authorized to participate on the network. It may not have the proper security settings in place. Rogue APs can potentially allow unauthorized users access to the network. In addition, a legitimate client may mistakenly associate to a Rogue AP with invalid encryption settings and not to the AP that has been configured for it to use. This can cause a denial of service problem.

This feature scans the airwaves and collects information about access points in the area. It lists neighbor access points found during the scan in the Neighbor AP Detection Status page after the scan is complete.

In addition, if RADIUS is enabled, it performs a RADIUS server look up for the MAC address of each access point found. It reports access points whose MAC addresses it finds in the RADIUS server in the Neighbor AP Detection status list. It reports access points whose MAC addresses it does not find as rogue APs in the syslog.

Use the commands described in Table A‐16 to configure and use rogue AP.

Table A-17 Rogue AP Commands

Command

Function

Mode

Page

 

 

 

 

rogue-ap enable

Enables the rogue AP feature on the

GC

A-159

 

radio interfaces.

 

 

 

 

 

 

rogue-ap duration

Sets amount of time to scan each

GC

A-160

 

frequency channel.

 

 

 

 

 

 

rogue-ap

Sets amount of time to make frequency

GC

A-161

interduration

channels active to clients.

 

 

rogue-ap interval

Sets amount of time between scans.

GC

A-162

rogue-ap scan

Scans the specified radio interface for

GC

A-165

 

rogue access points and for neighbors.

 

 

 

 

 

 

rogue-ap radius

Enables the access point to identify

GC

A-164

 

rogue APs by performing a RADIUS

 

 

 

server look up of the MAC addresses of

 

 

 

all access points it finds during a scan.

 

 

rogue-ap scan

rogue-ap sortmode

Scans all interfaces for rogue APs.

GC

A-165

 

 

 

Specifies the parameter by which the

GC

A-166

rogue ap report sorts the list of APs for

 

 

display.

 

 

show rogue-ap

Displays rogue AP feature settings and

Exec

A-166

 

results of rogue AP scan.

 

 

 

 

 

 

A-158

Page 284
Image 284
Enterasys Networks 9033900-04 manual Table A-17 Rogue AP Commands Function Mode