Netgear WNDAP660 Reference Manual - Page 93

Detection, Result, Solution, Delete, Policy, Description, Policy Rule

Get Netgear WNDAP660 PDF manuals and user guides View all Netgear WNDAP660 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 93 highlights

ProSafe Premium 3 x 3 Dual-Band Wireless-N Access Point WNDAP660 Table 24. IDS/IPS policies and policy rules (continued) Policy Ad-hoc network detected Description Policy Rule Threshold Notification • Detection. A group of wireless access points are part of an 0 ad hoc network that might broadcast the same SSID as the secured wireless network. • Result. Wireless security might be compromised. Trap Note: The IDS detects ad hoc networks, but the IPS does not take action against ad hoc networks. Ad-hoc network with • Detection. A group of wireless access points are part of an 0 wired connectivity ad hoc network that has a wired connection and that might broadcast the same SSID as the secured wireless network. • Result. Wireless security might be compromised. Trap Known client associating with ad-hoc network AP property changed Note: The IDS detects ad hoc networks, but the IPS does not take action against ad hoc networks. • Detection. Clients that should be connected to the secured 0 wireless network are instead connected to wireless access points that are part of an ad hoc network. • Result. Wireless security might be compromised. • Solution. The clients are disconnected from the ad hoc network. • Detection. Unauthorized changes such as a change of SSID, 0 security settings, or channel are made on a known wireless access point in the network. • Result. Wireless security is compromised and clients cannot connect to the wireless access point. Trap Trap Note: The IDS detects that the properties of a known wireless access point in the network are changed, but the IPS does not take action. The changes that the IDS detects are listed in a table. The affected wireless access point is identified by its MAC address. To correct the situation, access the web management interface of the affected wireless access point, and reverse the changes. To remove the detected changes from the table: 1. Select the check box to the left of the wireless access point for which you want to remove the changes from the table. 2. Above the table, click Delete. Management and Monitoring 93

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
  • 119
  • 120
  • 121
  • 122
  • 123
  • 124
  • 125
  • 126
  • 127
  • 128
  • 129
  • 130
  • 131
  • 132
  • 133
  • 134
  • 135
  • 136
  • 137
  • 138
  • 139
  • 140
  • 141
  • 142
  • 143
  • 144
  • 145
  • 146
  • 147
  • 148
  • 149
  • 150
  • 151
  • 152
  • 153
  • 154
  • 155
  • 156
  • 157
  • 158
  • 159
  • 160
  • 161
  • 162
  • 163
  • 164
  • 165
  • 166
  • 167
  • 168
  • 169
  • 170
  • 171
  • 172
  • 173
  • 174
Management and Monitoring
93
ProSafe Premium 3 x 3 Dual-Band Wireless-N Access Point WNDAP660
Ad-hoc network
detected
Detection
. A group of wireless access points are part of an
ad hoc network that might broadcast the same SSID as the
secured wireless network.
Result
. Wireless security might be compromised.
Note:
The IDS detects ad hoc networks, but the IPS does not take
action against ad hoc networks.
0
Trap
Ad-hoc network with
wired connectivity
Detection
. A group of wireless access points are part of an
ad hoc network that has a wired connection and that might
broadcast the same SSID as the secured wireless network.
Result
. Wireless security might be compromised.
Note:
The IDS detects ad hoc networks, but the IPS does not take
action against ad hoc networks.
0
Trap
Known client
associating with
ad-hoc network
Detection
. Clients that should be connected to the secured
wireless network are instead connected to wireless access
points that are part of an ad hoc network.
Result
. Wireless security might be compromised.
Solution
. The clients are disconnected from the ad hoc
network.
0
Trap
AP property
changed
Detection
. Unauthorized changes such as a change of SSID,
security settings, or channel are made on a known wireless
access point in the network.
Result
. Wireless security is compromised and clients cannot
connect to the wireless access point.
Note:
The IDS detects that the properties of a known wireless
access point in the network are changed, but the IPS does not take
action.
The changes that the IDS detects are listed in a table. The affected
wireless access point is identified by its MAC address. To correct
the situation, access the web management interface of the affected
wireless access point, and reverse the changes.
To remove the detected changes from the table:
1.
Select the check box to the left of the wireless access point for
which you want to remove the changes from the table.
2.
Above the table, click
Delete
.
0
Trap
Table 24.
IDS/IPS policies and policy rules (continued)
Policy
Description
Policy Rule
Threshold
Notification