Authentication Request flood, what can be done about it.

Unanswered Question
Oct 12th, 2008
User Badges:

Situation : the IDS in the wlc is reporting Authentication Request flood, attachs around 250 times in 1 hour.

Clearly something is wrong. However, what is the best way to fix the problem ?

- change the rf sensitivty on the controller ?

- change the aggresiveness of the client (barcodescanner)

Additionally, whats the reason of this attack ? bad rf design ?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Scott Fella Sun, 10/12/2008 - 08:28
User Badges:
  • Super Silver, 17500 points or more
  • Hall of Fame,

    The Hall of Fame designation is a lifetime achievement award based on significant overall achievements in the community. 

  • Cisco Designated VIP,

    2017 Wireless

Forget about the reporting for now.... do you have any issues with your wireless? If not then it can be due to the scanners and how they operate causing the IDS trap. You can download the signature file from the wlc to your tftp server and edit the signature file and them upload it back to the wlc.

You can always try to change the aggressiveness of the clients, but again.. if it is working why take a chance and break it. Check for yourself how the scanners are performing... if you see nothing wrong, then change the signature file.


This Discussion



Trending Topics - Security & Network