Cisco Cisco Aironet 350 Mini-PCI Wireless LAN Client Adapter Guia Do Desenho
4-26
Enterprise Mobility 4.1 Design Guide
OL-14435-01
Chapter 4 Cisco Unified Wireless Network Architecture—Base Security Features
Cisco Unified Wireless Security Features
Figure 4-22
Standard WLAN IDS Signatures
Client Exclusion
In addition to Wireless IDS, the WLC is able to take additional steps to protect the WLAN infrastructure
and WLAN clients. The WLC is able to implement policies that exclude WLAN clients whose behavior
is considered threatening or inappropriate.
and WLAN clients. The WLC is able to implement policies that exclude WLAN clients whose behavior
is considered threatening or inappropriate.
shows the Exclusion Policies window, containing
the following currently supported client exclusion policies:
•
Excessive 802.11 association failures—Possible faulty client or DoS attack
•
Excessive 802.11 authentication failures—Possible faulty client or DoS attack
•
Excessive 802.1X authentication failures—Possible faulty client or DoS attack
•
External policy server failures—Network-based IPS server identified client for exclusion
•
IP theft or IP reuse—Possible faulty client or DoS attack
•
Excessive web authentication failures—Possible DoS or password-cracking attack