Forgot password?
 Register now

Welcome to use this form to feedback your problems with Ruijie Community

The category of your feedback

Your Feedback

Your Email address (optional):

Official
How to optimize WIDS Reply

admin

Level 4

How to optimize WIDS
10446 3 2017-4-26 15:13:33
Original
How to optimize WIDS when the Rogue Device Detectionand containment does not work as good as expectation?

0 2017-4-26 15:14:04 View all replies
1. Countermeasure in a same channel
When the containment effect is not good as expectation, check whether the rogue AP and the WIDS AP use the same channel. If not, configure them to use the same channel or specify a scanning channel (in ap-config mode, run scan-channels 802.11b channels NUM1 NUM2…), and enable the contain of the specified channel (in ap-config mode, run countermeasures channel-match).

2. Containment interval
The contain interval can be shortened (by default, the contain is performed once every 1s). In ap-config mode, run countermeasures interval 100 to set the contain interval to 100 ms.

3. Unicast containment
If the contain effect is not obvious, enable the unicast contain. In the WIDS mode, run device unknown-sta dynamic-enable. Run show wids unknown-sta to check whether any STA-MAC to be contained is learnt. You can also manually configure the STA-MAC to be contained (device unknown-sta mac-address H.H.H). When unknown STA learning is enabled, the AP learns the adjacent terminals. In contain mode, the contain packets are sent to the STAs using the bssid of the rogue AP. However, certain STAs can process the contain packets sent from the non-associated bssid, packet loss or offline state may occur. Therefore, exercise caution when you use this function.

4. Maximum number of contains
By default, the device end can contain up to 30 rogue APs. If more than 30 rogue APs need to be contained, the maximum number of contained APs should be increased. In ap-config mode, you can run countermeasures ap-max NUM (NUM ranges from 1 to 256) to set the maximum number of contained APs.

5. Minimum signal strength for contain
When the contain mode is set to Rogue, by default, the Rogue AP with a signal strength being higher than 25 dBm is contained. To contain an AP with RSSI smaller than 25 dBm, you can configure countermeasures rssi-min NUM (NUM ranges from 0 to 75, and the corresponding negative RSSI ranges from –95 to –20) in ap-config mode. In Rogue mode, the AP contains all APs not on the friendly list. Therefore, exercise caution when you use this function.

0 2017-8-8 10:59:29 View all replies
Good.......

0 2018-4-16 10:26:23 View all replies
this very good

Related Posts
Product Model

Share this topic to

Cancel

This site contains user submitted content, comments and opinions and is for informational purposes only. Ruijie may provide or recommend responses as a possible solution based on the information provided; every potential issue may involve several factors not detailed in the conversations captured in an electronic forum and Ruijie can therefore provide no guarantee as to the efficacy of any proposed solutions on the community forums. Ruijie disclaims any and all liability for the acts, omissions and conduct of any third parties in connection with or related to your use of the site. All postings and use of the content on this site are subject to the Ruijie Community Terms of Use.

More ways to get help: Visit Support Videos, call us via Service Hotline, Facebook or Live Chat.

©2000-2023 Ruijie Networks Co,Ltd