Home » Dell Manuals » Wireless » Dell W-Series 324 » Manual Viewer

Dell W-Series 324 Instant 6.4.3.1-4.2 CLI Guide - Page 150

Use this command to con Intrusion Detection System IDS detection and protection policies.

Add to My Manuals
Save this manual to your list of manuals

Page 150 highlights

Parameter wireless-containment no... no ids Description Range Default Enable wireless containment including Tarpit Shielding. Tarpit shielding works by steering a client to a tarpit so that the client associates with it instead of the AP that is being contained. l deauth-only- Enables Containment using deauthentication only . l none- Disables wireless containment. l tarpit-all-sta-Enables wireless containment by tarpit of all stations. l tarpit-non-valid-sta- Enables wireless containment by tarpit of non-valid clients deauth-only, none, tarpitall-sta, tarpitnon-valid-sta deauth-only Removes configuration settings for - - parameters under the ids command. Removes IDS configuration. - - Usage Guidelines Use this command to configure Intrusion Detection System (IDS) detection and protection policies. The IDS feature monitors the network for the presence of unauthorized W-IAPs and clients and enables you to detect rogue APs, interfering APs, and other devices that can potentially disrupt network operations. It also logs information about the unauthorized W-IAPs and clients, and generates reports based on the logged information. Wireless Intrusion Protection (WIP) offers a wide selection of intrusion detection and protection features to protect the network against wireless threats. Like most other security-related features of the Dell network, the WIP can be configured on the W-IAP. You can configure the following policies: l Infrastructure Detection Policies- Specifies the policy for detecting wireless attacks on access points l Client Detection Policies- Specifies the policy for detecting wireless attacks on clients l Infrastructure Protection Policies- Specifies the policy for protecting access points from wireless attacks. l Client Protection Policies- Specifies the policy for protecting clients from wireless attacks. l Containment Methods- Prevents unauthorized stations from connecting to your Instant network. Each of these options contains several default levels that enable different sets of policies. An administrator can customize enable or disable these options accordingly. The following levels of detection can be configured: l Off l Low l Medium l High 150 | ids Dell Networking W-Series Instant 6.4.3.1-4.2.0.0 | CLI Reference Guide

Section	Page
About this Guide	3
Intended Audience	3
Related Documents	3
Conventions	4
Contacting Dell	5
What is New in This Release	6
New Commands	6
Modified Commands	7
Instant CLI	9
Connecting to a CLI Session	9
Applying Configuration Changes	9
Example:	10
Configuration Sub-modes	10
Deleting Configuration Settings	10
Using Sequence Sensitive Commands	11
Saving Configuration Changes	11
Commands that Reset the W-IAP	11
Command Line Editing	12
Specifying Addresses and Identifiers in Commands	13
a-channel	14
Description	14
Syntax	14
Usage Guidelines	14
Example	14
Command History	15
Command Information	15
a-external-antenna	16
Description	16
Syntax	16
Usage Guidelines	16
EIRP and Antenna Gain	16
Example	16
Command History	17
Command Information	17
aaa test-server	18
Description	18
Syntax	18
Usage Guidelines	18
Example	18
Command History	18
Command Information	18
aeroscout-rtls	19
Description	19
Syntax	19
Usage Guidelines	19
Example	19
Command History	19
Command Information	19
airgroup	20
Description	20
Syntax	20
Usage Guidelines	21
Example	21
Command History	21
Command Information	22
airgroupservice	23
Description	23
Syntax	23
Usage Guidelines	24
Example	24
Command History	24
Command Information	25
airwave-rtls	26
Description	26
Syntax	26
Usage Guidelines	26
Example	26
Command History	26
Command Information	27
ale-report-interval	28
Description	28
Syntax	28
Usage Guidelines	28
Example	28
Command History	28
Command Information	28
ale-server	29
Description	29
Syntax	29
Usage Guidelines	29
Example	29
Command History	29
Command Information	29
alg	30
Description	30
Syntax	30
Usage Guidelines	30
Example	30
Command History	30
Command Information	30
allow-new-aps	31
Description	31
Syntax	31
Usage Guidelines	31
Example	31
Command History	31
Command Information	31
allowed-ap	32
Description	32
Syntax	32
Usage Guidelines	32
Example	32
Command History	32
Command Information	32
ams-backup-ip	33
Description	33
Syntax	33
Usage Guidelines	33
Example	33
Command History	33
Command Information	33
ams-identity	34
Description	34
Syntax	34
Usage Guidelines	34
Example	34
Command History	34
Command Information	34
ams-ip	35
Description	35
Syntax	35
Usage Guidelines	35
Example	35
Command History	35
Command Information	35
ams-key	36
Description	36
Syntax	36
Usage Guidelines	36
Example	36
Command History	36
Command Information	36
apply	37
Description	37
Syntax	37
Usage Guidelines	37
Example	37
Command History	37
Command Information	37
arm	38
Description	38
Syntax	38
Usage Guidelines	42
Example	42
Command History	42
Command Information	42
attack	43
Description	43
Syntax	43
Usage Guidelines	43
Example	43
Command History	43
Command Information	43
auth-failure-blacklist-time	44
Description	44
Syntax	44
Usage Guidelines	44
Example	44
Command History	44
Command Information	44
auth-survivability cache-time-out	45
Description	45
Syntax	45
Usage Guidelines	45
Example	45
Command History	45
Command Information	45
blacklist-client	46
Description	46
Syntax	46
Usage Guidelines	46
Example	46
Command History	46
Command Information	46
blacklist-time	47
Description	47
Syntax	47
Usage Guidelines	47
Examples	47
Command History	47
Command Information	47
calea	48
Description	48
Syntax	48
Usage Guidelines	48
Example	48
Command History	49
Command Information	49
cellular-uplink-profile	50
Description	50
Syntax	50
Usage Guidelines	51
Types of Modems	52
Example 1	54
Example 2	54
Command History	55
Command Information	55
clear airgroup state statistics	56
Description	56
Usage Guidelines	56
Example	56
Command History	56
Command Information	56
clear	57
Description	57
Syntax	57
Usage Guidelines	57
Example	57
Command History	57
Command Information	57
clear-cert	58
Description	58
Syntax	58
Usage Guidelines	58
Example	58
Command History	58
Command Information	58
clock set	59
Description	59
Syntax	59
Usage Guidelines	59
Example	59
Command History	59
Command Information	59
clock summer-time	60
Description	60
Syntax	60
Usage Guidelines	60
Example	60
Command History	61
Command Information	61
clock timezone	62
Description	62
Syntax	62
Usage Guidelines	62
Example	62
Command History	62
Command Information	62
commit	63
Description	63
Syntax	63
Usage Guidelines	63
Example	63
Command History	63
Command Information	63
configure terminal	65
Description	65
Syntax	65
Usage Guidelines	65
Example	65
Command History	65
Command Information	65
console	66
Description	66
Syntax	66
Usage Guidelines	66
Example	66
Command History	66
Command Information	66
content-filtering	67
Description	67
Syntax	67
Usage Guidelines	67
Example	67
Command History	67
Command Information	67
convert-aos-ap	68
Description	68
Syntax	68
Usage Guidelines	68
Example	68
Command History	68
Command Information	68
copy	69
Description	69
Syntax	69
Usage Guidelines	70
Example	70
Command History	70
Command Information	70
deny-inter-user-bridging	71
Description	71
Syntax	71
Usage Guidelines	71
Example	71
Command History	71
Command Information	71
deny-local-routing	72
Description	72
Syntax	72
Usage Guidelines	72
Example	72
Command History	72
Command Information	72
device-id	73
Description	73
Syntax	73
Usage Guidelines	73
Example	73
Command History	73
Command Information	73
disable-prov-ssid	74
Description	74
Usage Guidelines	74
Example	74
Command History	74
Command Information	74
disconnect-user	75
Description	75
Syntax	75
Example	75
Command History	75
Command Information	75
dot11a-radio-disable	76
Description	76
Syntax	76
Usage Guidelines	76
Example	76
Command History	76
Command Information	76
dot11g-radio-disable	77
Description	77
Syntax	77
Usage Guidelines	77
Example	77
Command History	77
Command Information	77
download-cert	78
Description	78
Syntax	78
Usage Guidelines	78
Example	78
Command History	79
Command Information	79
dpi	80
Description	80
Syntax	80
Usage Guidelines	80
Example	80
Command History	80
Command Information	80
dpi-error-page-url	81
Description	81
Syntax	81
Usage Guidelines	81
Example	81
Command History	81
Command Information	81
dynamic-cpu-mgmt	82
Description	82
Syntax	82
Usage Guidelines	82
Example	82
Command History	82
Command Information	82
dynamic-radius-proxy	83
Description	83
Syntax	83
Usage Guidelines	83
Example	83
Command History	83
Command Information	83
enet-vlan	84
Description	84
Syntax	84
Usage Guidelines	84
Example	84
Command History	84
Command Information	84
enet0-bridging	85
Description	85
Usage Guidelines	85
Example	85
Command History	85
Command Information	85
enet0-port-profile	86
Description	86
Syntax	86
Usage Guidelines	86
Example	86
Command History	86
Command Information	86
enet1-port-profile	87
Description	87
Syntax	87
Usage Guidelines	87
Example	87
Command History	87
Command Information	87
enet2-port-profile	88
Description	88
Syntax	88
Usage Guidelines	88
Example	88
Command History	88
Command Information	88
enet3-port-profile	89
Description	89
Syntax	89
Usage Guidelines	89
Example	89
Command History	89
Command Information	89
enet4-port-profile	90
Description	90
Syntax	90
Usage Guidelines	90
Example	90
Command History	90
Command Information	90
extended-ssid	91
Description	91
Syntax	91
Usage Guidelines	91
Example	91
Command History	91
Command Information	91
facebook	92
Description	92
Syntax	92
Usage Guidelines	92
Command History	92
Command Information	92
factory-ssid-enable	93
Description	93
Syntax	93
Usage Guidelines	93
Example	93
Command History	93
Command Information	93
firewall-external-enforcement	94
Description	94
Syntax	94
Usage Guidelines	94
Example	94
Command History	95
Command Information	95
g-channel	96
Description	96
Syntax	96
Usage Guidelines	96
Example	96
Command History	96
Command Information	97
g-external-antenna	98
Description	98
Syntax	98
Usage Guidelines	98
EIRP and Antenna Gain	98
Example	98
Command History	99
Command Information	99
gre per-ap-tunnel	100
Description	100
Syntax	100
Usage Guidelines	100
Example	100
Command History	100
Command Information	100
gre primary	101
Description	101
Syntax	101
Usage Guidelines	101
Example	101
Command History	101
Command Information	101
gre type	102
Description	102
Syntax	102
Usage Guidelines	102
Example	102
Command History	102
Command Information	102
help	103
Description	103
Usage Guidelines	103
Example	103
Command History	104
Command Information	104
hostname	105
Description	105
Syntax	105
Usage Guidelines	105
Example	105
Command History	105
Command Information	105
hotspot anqp-3gpp-profile	106
Description	106
Syntax	106
Usage Guidelines	106
Example	106
Command History	107
Command Information	107
hotspot anqp-domain-name-profile	108
Description	108
Syntax	108
Usage Guidelines	108
Example	108
Command History	108
Command Information	108

Match case Limit results 1 per page

150

| ids

Dell Networking W-Series Instant 6.4.3.1-4.2.0.0 | CLI Reference Guide

Parameter

Description

Range

Default

wireless-containment

<type>

Enable wireless containment including

Tarpit Shielding.

Tarpit shielding works by steering a

client to a tarpit so that the client

associates with it instead of the AP that

is being contained.

deauth-only— Enables Containment

using deauthentication only .

none— Disables wireless

containment.

tarpit-all-sta—Enables wireless

containment by tarpit of all stations.

tarpit-non-valid-sta— Enables

wireless containment by tarpit of

non-valid clients

deauth-only,

none, tarpit-

all-sta, tarpit-

non-valid-sta

deauth-only

no…

Removes configuration settings for

parameters under the

ids

command.

—

no ids

Removes IDS configuration.

—

Usage Guidelines

Use this command to configure Intrusion Detection System (IDS) detection and protection policies. The IDS

feature monitors the network for the presence of unauthorized W-IAPs and clients and enables you to detect

rogue APs, interfering APs, and other devices that can potentially disrupt network operations. It also logs

information about the unauthorized W-IAPs and clients, and generates reports based on the logged

information.

Wireless Intrusion Protection (WIP) offers a wide selection of intrusion detection and protection features to

protect the network against wireless threats. Like most other security-related features of the Dell network, the

WIP can be configured on the W-IAP.

You can configure the following policies:

Infrastructure Detection Policies— Specifies the policy for detecting wireless attacks on access points

Client Detection Policies— Specifies the policy for detecting wireless attacks on clients

Infrastructure Protection Policies— Specifies the policy for protecting access points from wireless attacks.

Client Protection Policies— Specifies the policy for protecting clients from wireless attacks.

Containment Methods— Prevents unauthorized stations from connecting to your Instant network.

Each of these options contains several default levels that enable different sets of policies. An administrator can

customize enable or disable these options accordingly. The following levels of detection can be configured:

Off

Low

Medium

High