I have a wireless controller 4400 with IDS sensor. How do i configure to stunned attackers when the IDS detected signature attacks like Disassoc attack. Do i need to point CID IDS to my own controller IP address?
When an associated client sends malicious traffic through the Cisco Unified Wireless Network, a Cisco wired IDS device detects the attack and sends shun requests to Cisco Wireless LAN Controllers (WLCs), which then disassociate the client device.
Here is the URL for the Wireless LAN Controller and IPS Integration Guide
Actually i saw this guide before. How can i make use of the IDS in wireless Controller to disassociate clients who attempt to do malicious traffic instead?
Thanks
Learn, share, save
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
