Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
323
Views
0
Helpful
3
Replies

Cisco WLC Controler 3750 switch

Ross Ghanim
Level 1
Level 1

‎06-08-2015 11:14 PM - edited ‎07-05-2021 03:22 AM

We have two switches 3750 each supports 25 AP WLC software is version 5.2.193.0 Lately we have discovered about 100 Rogue AP that we are making them Malicious Rogue APs is this enough to contain them and making them not affecting our wireless network.  Also what is the difference between Malicious Rogue AP and Contained Rogue AP?

 

Ross Ghanim
Labels:
0 Helpful
3 Replies 3

Saurav Lodh
Level 7
Level 7

‎06-09-2015 12:49 AM

Classifying the Rogues

http://www.cisco.com/c/en/us/td/docs/wireless/controller/7-4/configuration/guides/consolidated/b_cg74_CONSOLIDATED/b_cg74_CONSOLIDATED_chapter_0111110.html

0 Helpful

Rasika Nayanajith
VIP
VIP

‎06-09-2015 09:01 PM

what's the reason for running these WLCs on 5.x, at least get them upgraded to 7.0.252.0 as 7.0.x the last supported on these.

HTH

Rasika 

0 Helpful

mohanak
Cisco Employee
Cisco Employee

‎06-16-2015 02:15 AM

Upgrade your OS version to minimum 7.x

Any device that shares your spectrum and is not managed by you can be considered a rogue. A rogue becomes dangerous in the following scenarios:

When the Rogue AP uses the same SSID as your network (honeypot).

When the Rougue AP device is detected on wired network also.

Ad-hoc rogues are also a big threat.

Setup by an outsider with malicious intent.

There are three main phases of rogue device management in Cisco Unified Wireless Network (UWN) solution:

Detection - Radio Resource Management (RRM) scanning is used to detect the presence of rogue devices.

Classification - Rogue Location Discovery Protocol (RLDP), Rogue Detectors and switch port tracing are used to identify if the rogue device is connected to the wired network. Rogue classification rules also assist in filtering rogues into specific categories based on their characteristics.

Mitigation - Switch port Trace and shutting down, rogue location, and rogue containment are used to track down physical location and nullify the threat of rogue devices.

http://www.cisco.com/c/en/us/td/docs/wireless/technology/roguedetection_deploy/Rogue_Detection.html

 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card