Misconfigured Ap Detection; Configuring Misconfigured Ap Protection - NETGEAR ProSafe WFS709TP Software Administration Manual

Note: Use caution when enabling both "Mark Unknown APs as Rogue" and "Disable
Users from Connecting to Rogue APs." If the system is installed in an area where
APs from neighboring locations can be detected, these two options will disable all
APs in the area.

Misconfigured AP Detection

If desired, you can specify the valid channels for an AP. This capability is primarily used when
third-party APs are being used in the network, since the WFS709TP cannot configure the third-
party APs. If a valid AP is detected as misconfigured, the system will deny access to the
misconfigured AP. In cases where someone gains configuration access to a third-party AP and
changes the configuration, this policy is useful in blocking access to that AP until the
configuration can be fixed.

Configuring Misconfigured AP Protection

An AP is classified as misconfigured if it does not meet configured valid channels. To configure
protection for misconfigured APs, navigate to Configuration > Advanced > RF Policies > Policies
> Misconfigured AP as shown in
Figure 12-4
Table 12-2 describes the fields shown in this section.
Table 12-2. Valid Channel Types
Field
Valid Enterprise 802.11b/g Channels
Valid Enterprise 802.11a Channels
Configuring Wireless Intrusion Protection
WFS709TP ProSafe Smart Wireless Switch Software Administration Manual
Figure 12-4.
v1.0, June 2007
Description
Defines the list of valid 802.11b/g channels that third-
party APs are allowed to use.
Defines the list of valid 802.11a channels that third-
party APs are allowed to use.
12-5