D-Link DWC-1000 User Manual - Page 287
AP is operating on an illegal channel
View all D-Link DWC-1000 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 287 highlights
Wireless Controller User Manual Manag ed S S ID from a fak e manag ed AP : A h acker may s et u p an A P wit h t h e s ame M A C ad d res s as o ne o f t h e man ag ed A Ps an d co n fig u re it t o s en d o n e o f t h e man ag ed SSIDs . Th is t est ch ecks fo r a v en d or field in t h e b eaco ns wh ich is alway s t ran s mit t ed b y man ag ed A Ps . If t h e v e n d o r field is n o t p res en t , t h en t h e A P is identified as a fake AP. AP wi thout an S S ID: SSID is an o p t io n al field in b eaco n frames . To av o id d et ect io n a h acker may s et u p an A P wit h t h e man ag ed n et wo rk SSID, b u t d is ab le SSID t ran s mis sio n in t h e b eacon frame s . Th e A P wo u ld s till s en d p ro b e res p o n s es t o clien t s t h at s en d p ro b e req u es t s fo r t h e man ag ed SSID fo o lin g t h e clien t s in t o as s o ciat in g wit h t h e h acker's A P. Th is t es t d et ect s an d flag s A Ps t h at t ran s mit b eaco n s wit h o u t t h e SSID field . Th e t es t is au t o mat ically d is ab led if an y o f t h e radios in the profiles are configured not to s end SSID field, which is not reco mmen d ed b ecause it d o es n ot p rov id e an y real s ecu rit y an d d is ab les t h is t es t . Fak e manag ed AP on an i nval i d channel : Th is t es t d et ect s ro g u e A Ps t h at t ran s mit b eacon s fro m t h e s o urce M A C ad d ress o f o n e o f t h e man ag ed A Ps , b u t o n different channel from which the AP is s uppos ed to be operating. Manag ed S S ID detected wi th i ncorrect s ecuri ty : Du rin g RF Scan t h e A P examin es b eaco n frames receiv ed fro m o t h er A Ps an d d et ermin es wh et h er t h e d et ect ed A P is ad v ert isin g an o p en n et work, W EP, o r W PA . If t h e SSID rep o rt ed in t h e RF Scan is o n e o f t h e man ag ed n etwo rks an d it s co nfig u red s ecu rit y n o t mat ch t h e d et ect ed s ecu rit y t h en t h is t es t marks t h e A P as ro g u e. Inval i d S S ID from a manag ed AP : Th is t es t checks wh eth er a kn o wn man ag ed A P is s en d in g an u n exp ect ed SSID. Th e SSID rep o rt ed in t h e RF Scan is co mp ared t o t h e lis t o f all co n fig u red SSIDs t h at are u sed b y t he p ro file as sign ed t o t h e man aged A P. If t h e d et ect ed SSID d o esn 't mat ch an y co n figu red SSID t h en t h e A P is marked as rogue. AP i s operati ng on an i l l eg al channel : Th e p u rpose o f t h is t est is t o d et ect h ackers o r in co rrect ly co n fig ured d evices t hat are o p eratin g o n ch an nels t hat are n o t leg al in the country where the wireles s s ys tem is s et up. Note: In order for the wireles s s y s tem t o d et ect t his t hreat, t h e wireles s n et wo rk mu s t co n t ain o n e o r mo re rad io s t h at o p erat e in s en t ry mo d e. S tandal one AP wi th unexpected confi g urati on : If t h e A P is clas s ified as a kn own s tandalone AP, then the controller checks whether the AP is operating with the exp ect ed co n fig uratio n p aramet ers. Yo u co n fig u re t h e exp ect ed p aramet ers fo r t h e 285