This is my scenario
1: WLC 2500 software version 126.96.36.199. In Wireless Protection Policies section I enable “Rogue on Wire”, “Using our SSID” and “Valid client on Rogue AP”.
Auto Containment Level is set to 3
The WLC correctly detect Rogue AP in the air and auto contains Rogue AP using same SSID. Also I can contain rogue AP manually with no problem.
10: LAP 1141 Software version 188.8.131.52 in Local Mode
1: LAP 1141 Software version 184.108.40.206 in ROGUE DETECTOR mode connected to trunk port in distribution Switch, all VLAN permitted so that the AP can see traffic from all segments.
I ran this command in the Rogue Detector AP and verify the existence off Rogue AP MAC addres:
AP7081.05b0.e127#show capwap rm rogue detector | include 0021.29e8.8f39
Rogue hindex = 94: MAC 0021.29e8.8f39, flag = 0, unusedCount = 1
According to Cisco Document ID 112045 the flag must be 1 for wired rogue AP, for me this is not happening.
In the GUI off WLC the Rogue TEST AP never show like wired.
I use a TEST Rogue AP that connect to the wired LAN and a Laptop associated to this AP, the WLC never do their job off contain that AP.
I’m missing something ?
Experts please help ?
Sorry for my bad English …