WLSE Switchport Tracking

Unanswered Question
Jun 20th, 2007

Hy,

we just started using the rouge ap detection and have a question regarding the switchport tracking feature. The AP's do see the rouge APs and also the clients connected to it (frame report). The problem is that mostly the aps have a bridge configuration so we will never see those mac's on our switches. Also the +1 -1 searching the WLSE does when detecting the rouge mac does not help because the fast ethernet of the devices is mostly always in a different range.

Am i missing something or is this how it works ?

all the very best

[email protected]

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
thomas.chen Tue, 06/26/2007 - 06:22

How about enabling CDP? I think CDP should track the mac addresses of the devices coonected to it. IF this is not what you were looking for, can you send me a screenshot of the mac address and the details of the switchport tracking output? I think you should be able to see those APs acting as bridge too.

david.enenkel Wed, 06/27/2007 - 23:51

CDP is enabled. Appended you find a extract out of the tracing process

Checking the CDP neighbors of xxx.xx.xx.xxx...

Tracing the MAC Address on /xxx.xx.x.xx

SNMP Connectivity to xxx.xx.x.xx OK

Checking for MAC Address: 00-1a-a2-db-f6-f0 ...

Checking for MAC Address: 00-1a-a2-db-f6-ef ...

Checking for MAC Address: 00-1a-a2-db-f6-f1 ...

Tracing the MAC address on Vlan 1 of xxx.xx.x.xx

Checking for MAC Address: 00-1a-a2-db-f6-f0 ...

Checking for MAC Address: 00-1a-a2-db-f6-ef ...

Checking for MAC Address: 00-1a-a2-db-f6-f1 ...

Tracing the MAC address on Vlan 101 of xxx.xx.x.xx

Checking for MAC Address: 00-1a-a2-db-f6-f0 ...

Checking for MAC Address: 00-1a-a2-db-f6-ef ...

Checking for MAC Address: 00-1a-a2-db-f6-f1 ...

Tracing the MAC address on Vlan 102 of xxx.xx.x.xx

Checking for MAC Address: 00-1a-a2-db-f6-f0 ...

Checking for MAC Address: 00-1a-a2-db-f6-ef ...

Checking for MAC Address: 00-1a-a2-db-f6-f1 ...

Tracing the MAC address on Vlan 120 of xxx.xx.x.xx

Checking for MAC Address: 00-1a-a2-db-f6-f0 ...

Checking for MAC Address: 00-1a-a2-db-f6-ef ...

Checking for MAC Address: 00-1a-a2-db-f6-f1 ...

The mac of the AP is 001a.a2db.f6f0 on the Dot11. The fastethernet is 0019.3076.b9ae.

Even having the client mac address does not help because the only mac that shoes up in bridge mode is the bridge mac address.

Actions

This Discussion

 

 

Trending Topics - Security & Network