Cisco Cisco 5520 Wireless Controller Guida Alla Progettazione
1-37
Book Title
OL-xxxxx-xx
Chapter 1 Cisco Adaptive wIPS Management Deployment Guide, Release 8.0
Cisco Adaptive wIPS Introduction
To add a policy rule, click Add.
The policy rule window allows the severity of the alarm to be modified in addition to a number of
other parameters. The notification item is a check box which defines whether forensic (packet
captures) are taken for this particular alarm. There is also a specific threshold for this alarm, which
in this case is defined as the number of active associations but this is different for every alarm. Next,
the type parameter defines what SSIDs the system will monitor. If the type is changed to ‘Device
Group’ then the system will monitor attacks only against APs in the same ‘RF Group’. In the case
that ‘SSID’ is selected, then the system can be utilized to monitor attacks against a separate WLAN
infrastructure as defined by the SSID Groups earlier in the setup.
other parameters. The notification item is a check box which defines whether forensic (packet
captures) are taken for this particular alarm. There is also a specific threshold for this alarm, which
in this case is defined as the number of active associations but this is different for every alarm. Next,
the type parameter defines what SSIDs the system will monitor. If the type is changed to ‘Device
Group’ then the system will monitor attacks only against APs in the same ‘RF Group’. In the case
that ‘SSID’ is selected, then the system can be utilized to monitor attacks against a separate WLAN
infrastructure as defined by the SSID Groups earlier in the setup.
After any changes have been made, click Save.
Step 9
Configuring Additional Policy Rules (Optional):