Configuration Guide Configuring WIDS
2.4 Configuration
Configuring Frame Filtering
(Optional) It is used to configure frame filtering.
Configures the low-rate kickout threshold.
Adds an entry to the whitelist.
Configures the length of the whitelist.
static-blacklist mac-address
Adds an entry to the static blacklist.
Configures the length of the static blacklist.
Enables the dynamic blacklist function.
dynamic-blacklist lifetime
Configures the lifetime of the dynamic blacklist.
Configures the length of the dynamic blacklist on APs.
Configures the SSID-based blacklist and whitelist and
their length.
ssid-filter blacklist mac-address
Adds an entry to the SSID-based blacklist.
ssid-filter blacklist max
Configures the length of the SSID-based blacklist, 32
by default.
ssid-filter whitelist mac-address
Adds an entry to the SSID-based whitelist.
ssid-filter whitelist max
Configures the length of the SSID-based whitelist, 32
by default.
(Mandatory) It is used to configure IDS.
Configures the interval and packet threshold of DDoS
attack detection.
attack-detection flood multi-mac
Configures the interval and packet threshold of
multi-STA flooding attack detection.
attack-detection flood single-mac
Configures the interval and packet threshold of
single-user flood attack detection.
Configures the interval and packet threshold of the
spoofing attack detection.
Configures the interval and packet threshold of the
weak IV attack detection.
attack-detection statistics
ap-max
Configures the length of IDS statistics on APs.
Configuring User Isolation
(Optional) It is used to configure user isolation.
Enables the AP-based and AP-SSID-based layer-2
user isolation.
To Next Page
Loading...
