I have a wireless controller 4400 with IDS sensor. How do i configure to stunned attackers when the IDS detected signature attacks like Disassoc attack. Do i need to point CID IDS to my own controller IP address?
When an associated client sends malicious traffic through the Cisco Unified Wireless Network, a Cisco wired IDS device detects the attack and sends shun requests to Cisco Wireless LAN Controllers (WLCs), which then disassociate the client device.
Here is the URL for the Wireless LAN Controller and IPS Integration Guide