Dell PowerConnect W-Airwave W-Airwave 7.2 Configuration Guide - Page 80
Profiles > IDS > Signature Matching, General, IDS > General, Signature Matching
View all Dell PowerConnect W-Airwave manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 80 highlights
Table 27 Profiles > IDS > General Profile Settings (Continued) Field Default Description Wireless Containment Deauth only Debug Wireless No Containment Wired Containment No Wired Containment of No AP's Adj MACs Monitored Device Stats 0 Update Interval (0-36000 sec) Mobility Manager RTLS No Send Ad-hoc Info to Yes Controller Ad-hoc AP Max Unseen 180 Timeout (5-36000 sec) Enable wireless containment including Tarpit Shielding. Tarpit shielding works by steering a client to a tarpit so that the client associates with it instead of the AP that is being contained. deauth-only-Containment using deauthentication only none-Disable wireless containment tarpit-all-sta-Wireless containment by tarpit of all stations tarpit-non-valid-sta-Wireless containment by tarpit of non-valid clients NOTE: Tarpit requires a minimum version of 6.0.0.0. Enable/disable debug of containment from the wireless side. Note: Enabling this debug option will cause containment to not function properly. Enable containment from the wired side. Enable/disable wired containment of MACs offset by one from APs BSSID. NOTE: This setting requires a minimum of AOS 6.0.0.0. Time interval, in seconds, for AP to update the switch with stats for monitored devices. Minimum is 60. Enable/disable RTLS communication with the configured mobility-manager Enable or disable sending Ad hoc information to the controller from the AP. NOTE: This setting requires a WIPS or RFprotect license and a minimum of AOS 6.0.0.0. Ageout time in seconds since ad hoc (IBSS) AP was last seen. NOTE: This setting requires a minimum of AOS 6.0.0.0. Ad-hoc (IBSS) AP 5 Inactivity Timeout (5- 36000 sec) Ad hoc (IBSS) AP inactivity timeout in number of scans. NOTE: This setting requires a minimum of AOS 6.0.0.0. IDS Event Generation on None AP Enable or disable IDS event generation from the AP. Event generation from the AP can be enabled for syslogs, traps, or both. This does not affect generation of IDS correlated events on the switch. 3. Select Add or Save. The added or edited General profile appears on the IDS > General profiles page. Profiles > IDS > Signature Matching The IDS signature matching profile contains signatures for intrusion detection. This profile can include predefined or custom signatures. Table 28 describes the predefined signatures that you can add to the profile. Perform these steps to configure a Signature Matching profile. 1. Select Profiles > IDS > Signature Matching in the Dell PowerConnect W Navigation pane. 2. Select the Add button to create a new Signature Matching profile, or click the pencil icon next to an existing profile to edit. The Details page appears. Complete the settings as described in Table 28: Table 28 Profiles > IDS > Signature Matching Profile Settings Field Default Description General Settings Folder Top Set the folder with which the profile is associated. The drop-down menu displays all folders available for association with the profile. 80 | Dell PowerConnect W Configuration Reference Dell PowerConnect W AirWave 7.2 | Configuration Guide