Authentication Request flood, what can be done about it.

Unanswered Question
Oct 12th, 2008

Situation : the IDS in the wlc is reporting Authentication Request flood, attachs around 250 times in 1 hour.

Clearly something is wrong. However, what is the best way to fix the problem ?

- change the rf sensitivty on the controller ?

- change the aggresiveness of the client (barcodescanner)

Additionally, whats the reason of this attack ? bad rf design ?

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Scott Fella Sun, 10/12/2008 - 08:28

Forget about the reporting for now.... do you have any issues with your wireless? If not then it can be due to the scanners and how they operate causing the IDS trap. You can download the signature file from the wlc to your tftp server and edit the signature file and them upload it back to the wlc.

You can always try to change the aggressiveness of the clients, but again.. if it is working why take a chance and break it. Check for yourself how the scanners are performing... if you see nothing wrong, then change the signature file.

Actions

This Discussion

 

 

Trending Topics - Security & Network