cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
536
Views
0
Helpful
2
Replies

WLSE Switchport Tracking

david.enenkel
Level 1
Level 1

Hy,

we just started using the rouge ap detection and have a question regarding the switchport tracking feature. The AP's do see the rouge APs and also the clients connected to it (frame report). The problem is that mostly the aps have a bridge configuration so we will never see those mac's on our switches. Also the +1 -1 searching the WLSE does when detecting the rouge mac does not help because the fast ethernet of the devices is mostly always in a different range.

Am i missing something or is this how it works ?

all the very best

D@ve

2 Replies 2

thomas.chen
Level 6
Level 6

How about enabling CDP? I think CDP should track the mac addresses of the devices coonected to it. IF this is not what you were looking for, can you send me a screenshot of the mac address and the details of the switchport tracking output? I think you should be able to see those APs acting as bridge too.

CDP is enabled. Appended you find a extract out of the tracing process

Checking the CDP neighbors of xxx.xx.xx.xxx...

Tracing the MAC Address on /xxx.xx.x.xx

SNMP Connectivity to xxx.xx.x.xx OK

Checking for MAC Address: 00-1a-a2-db-f6-f0 ...

Checking for MAC Address: 00-1a-a2-db-f6-ef ...

Checking for MAC Address: 00-1a-a2-db-f6-f1 ...

Tracing the MAC address on Vlan 1 of xxx.xx.x.xx

Checking for MAC Address: 00-1a-a2-db-f6-f0 ...

Checking for MAC Address: 00-1a-a2-db-f6-ef ...

Checking for MAC Address: 00-1a-a2-db-f6-f1 ...

Tracing the MAC address on Vlan 101 of xxx.xx.x.xx

Checking for MAC Address: 00-1a-a2-db-f6-f0 ...

Checking for MAC Address: 00-1a-a2-db-f6-ef ...

Checking for MAC Address: 00-1a-a2-db-f6-f1 ...

Tracing the MAC address on Vlan 102 of xxx.xx.x.xx

Checking for MAC Address: 00-1a-a2-db-f6-f0 ...

Checking for MAC Address: 00-1a-a2-db-f6-ef ...

Checking for MAC Address: 00-1a-a2-db-f6-f1 ...

Tracing the MAC address on Vlan 120 of xxx.xx.x.xx

Checking for MAC Address: 00-1a-a2-db-f6-f0 ...

Checking for MAC Address: 00-1a-a2-db-f6-ef ...

Checking for MAC Address: 00-1a-a2-db-f6-f1 ...

The mac of the AP is 001a.a2db.f6f0 on the Dot11. The fastethernet is 0019.3076.b9ae.

Even having the client mac address does not help because the only mac that shoes up in bridge mode is the bridge mac address.

Review Cisco Networking for a $25 gift card