3Com 8760 User Guide - Page 228

CHAPTER 5: COMMAND LINE INTERFACE The access point can be configured to periodically scan all radio channels and find other access points within range. A database of nearby access points is maintained where any rogue APs can be identified. Table 27 Rogue AP Commands Command rogue-ap enable rogue-ap authenticate rogue-ap duration rogue-ap interval rogue-ap scan show rogue-ap Function Mode Enables the periodic detection of other nearby access GC points Enables identification of all access points GC Sets the duration that all channels are scanned GC Sets the time between each scan GC Forces an immediate scan of all radio channels GC Shows the current database of detected access points Exec Page 5-126 5-127 5-128 5-128 5-129 5-130 rogue-ap enable This command enables the periodic detection of nearby access points. Use the no form to disable periodic detection. Syntax [no] rogue-ap enable Default Setting Disabled Command Mode Interface Configuration (Wireless) Command Usage • While the access point scans a channel for rogue APs, wireless clients will not be able to connect to the access point. Therefore, avoid frequent scanning or scans of a long duration unless there is a reason to believe that more intensive scanning is required to find a rogue AP. • A "rogue AP" is either an access point that is not authorized to participate in the wireless network, or an access point that does not have the correct security configuration. Rogue access points can be identified by unknown BSSID (MAC address) or SSID configuration. A database of nearby access points should therefore be maintained on a RADIUS server, allowing any rogue APs to be identified (see "rogue-ap authenticate" on page 5-127). 5-126