06-20-2007 06:47 AM - edited 07-03-2021 02:14 PM
Hy,
we just started using the rouge ap detection and have a question regarding the switchport tracking feature. The AP's do see the rouge APs and also the clients connected to it (frame report). The problem is that mostly the aps have a bridge configuration so we will never see those mac's on our switches. Also the +1 -1 searching the WLSE does when detecting the rouge mac does not help because the fast ethernet of the devices is mostly always in a different range.
Am i missing something or is this how it works ?
all the very best
D@ve
06-26-2007 06:22 AM
How about enabling CDP? I think CDP should track the mac addresses of the devices coonected to it. IF this is not what you were looking for, can you send me a screenshot of the mac address and the details of the switchport tracking output? I think you should be able to see those APs acting as bridge too.
06-27-2007 11:51 PM
CDP is enabled. Appended you find a extract out of the tracing process
Checking the CDP neighbors of xxx.xx.xx.xxx...
Tracing the MAC Address on /xxx.xx.x.xx
SNMP Connectivity to xxx.xx.x.xx OK
Checking for MAC Address: 00-1a-a2-db-f6-f0 ...
Checking for MAC Address: 00-1a-a2-db-f6-ef ...
Checking for MAC Address: 00-1a-a2-db-f6-f1 ...
Tracing the MAC address on Vlan 1 of xxx.xx.x.xx
Checking for MAC Address: 00-1a-a2-db-f6-f0 ...
Checking for MAC Address: 00-1a-a2-db-f6-ef ...
Checking for MAC Address: 00-1a-a2-db-f6-f1 ...
Tracing the MAC address on Vlan 101 of xxx.xx.x.xx
Checking for MAC Address: 00-1a-a2-db-f6-f0 ...
Checking for MAC Address: 00-1a-a2-db-f6-ef ...
Checking for MAC Address: 00-1a-a2-db-f6-f1 ...
Tracing the MAC address on Vlan 102 of xxx.xx.x.xx
Checking for MAC Address: 00-1a-a2-db-f6-f0 ...
Checking for MAC Address: 00-1a-a2-db-f6-ef ...
Checking for MAC Address: 00-1a-a2-db-f6-f1 ...
Tracing the MAC address on Vlan 120 of xxx.xx.x.xx
Checking for MAC Address: 00-1a-a2-db-f6-f0 ...
Checking for MAC Address: 00-1a-a2-db-f6-ef ...
Checking for MAC Address: 00-1a-a2-db-f6-f1 ...
The mac of the AP is 001a.a2db.f6f0 on the Dot11. The fastethernet is 0019.3076.b9ae.
Even having the client mac address does not help because the only mac that shoes up in bridge mode is the bridge mac address.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide