Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1198
Views
0
Helpful
3
Replies

Rogue AP

mml4cisco
Level 1
Level 1

‎01-13-2012 03:15 PM - edited ‎07-03-2021 09:22 PM

The WLC2504 detects quite a few Unclassified Rogue APs. What's the best practice to handle these Rogue APs? Classify them as Malicious and contain them?

Labels:
0 Helpful
3 Replies 3

Scott Fella
Hall of Fame
Hall of Fame

‎01-13-2012 03:17 PM

I would not contain them as it does a DOS which can be illegal and also uses a percentage of the ap CPU. You can create rules to add then as friendly, etc. that's what you should do.

Thanks,

Scott Fella

Sent from my iPhone

-Scott
*** Please rate helpful posts ***
0 Helpful

Stephen Rodriguez
Cisco Employee
Cisco Employee
In response to Scott Fella

‎01-13-2012 03:30 PM

piggy backing Scott. You should try ti determine where the AP are in relation to your network. If they belong to neighboring companies than friendly is the way to go. I'd they are in your network then you could go malicious and contain them. Just make very sure they are in your network before doing so.

Steve

Sent from Cisco Technical Support iPhone App

HTH,
Steve

------------------------------------------------------------------------------------------------
Please remember to rate useful posts, and mark questions as answered
0 Helpful

Leo Laohoo
Hall of Fame
Hall of Fame

‎01-13-2012 03:41 PM 

What's the best practice to handle these Rogue APs? Classify them as Malicious and contain them?

In some countries, containing Rogue APs constitutes to "jamming" and because of this can be construed as illegal.

However, if in some countries, if you can prove the Rogue AP is located INSIDE your premises then ...

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card