Netgear WNDAP660 Reference Manual - Page 94
To enable and con the IDS/IPS, Configuration > IDS/IPS, Enable, Table 24.
View all Netgear WNDAP660 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 94 highlights
ProSafe Premium 3 x 3 Dual-Band Wireless-N Access Point WNDAP660 Table 24. IDS/IPS policies and policy rules (continued) Policy Description Policy Rule Threshold Notification Device probing for access points • Detection. Multiple probe requests (30 or more) are sent to 30 collect information about the wireless access point for possible future attacks. For example, it is suspect when there are too many probe requests with a different SSID from same MAC address. • Result. An attack might occur, or wireless security might become compromised. • Solution. The wireless access point does not respond to probe requests that do not contain its SSID. Trap PS poll flood attack • Attack. Multiple power save (PS)-Poll frames (50 or more) are 50 sent to the wireless access point from an address that has a spoofed MAC address of a legitimate client. • Result. Traffic that is intended for the legitimate client is sent to the attacking address and is lost. • Solution. PS-Poll frames without a corresponding traffic indication map (TIM) are rejected. Trap To enable and configure the IDS/IPS: 1. Select Configuration > IDS/IPS. The IDS/IPS screen displays: Figure 54. 2. Select the Enable radio button. By default, the IDS/IPS is disabled. Management and Monitoring 94