Filter
Top Products
Radio Interface
BreezeMAX Wi² and BreezeACCESS Wi² System Manual 89
on page 74) are sent for each AP detected. Rogue APs can be identified by
unknown BSSID (MAC address) or SSID configuration.
AP Detection – Enables the periodic scanning for other APs. (Default: Disable)
AP Scan Interval – Sets the time between each rogue AP scan. (Range: 30
-10080 minutes; Default: 720 minutes)
AP Scan Duration – Sets the length of time for each rogue AP scan. A long scan
duration time will detect more access points in the area, but causes more
disruption to client access. (Range: 100 -1000 milliseconds; Default: 350
milliseconds)
Rogue AP Authenticate – Enables or disables RADIUS authentication. Enabling
RADIUS Authentication allows the AP to discover rogue APs. With RADIUS
authentication enabled, the access point checks the MAC address/ Basic
Service Set Identifier (BSSID) of each access point that it finds against a
RADIUS server to determine whether the access point is allowed. With RADIUS
authentication disabled, the access point can detect its neighboring APs only;
it cannot identify whether the APs are allowed or are rogues. If you enable
RADIUS authentication, you must configure a RADIUS server for this AP (see
“RADIUS” on page 4-52.).
Scan AP Now – Starts an immediate rogue AP scan on the radio interface.
(Default: Disable)
4.6.1.2.1 CLI Commands for Rogue AP Detection
From the global configuration mode, enter the interface wireless command to
access the 802.11g radio interface. From the wireless interface mode, use the
rogue-ap enable command to enable rogue AP detection. Set the duration and
interval times with the rogue-ap duration and rogue-ap interval commands. If
required, start an immediate scan using the rogue-ap scan command. To view the
database of detected access points, use the show rogue-ap command from the
Exec level.
NOTE
While the AP scans a channel for rogue APs, wireless clients will not be able to connect to the
access point. Therefore, avoid frequent scanning or scans of a long duration unless there is a
reason to believe that more intensive scanning is required to find a rogue AP.