In an environment were 2.4 GHz access points are installed, will the WLSE be able to detect a rogue 5 GHz access point on the network? If it does not detect the 5 GHz access point, isn't this a security hole as it relates to the capabilities of the WLSE device?
WLSE doesn't do the Rogue AP detection, the clients do. For this to work, the clients have to be running LEAP with CCKM. The APs have to be configured for WDS. If the client tries to associate to an AP and fails, it remembers the APs MAC.If if then correctly associates to an AP, it tells that AP about the previously failed auth. The AP then reports this information to WLSE via WDS. APs in different GHz range will be detected by clients working in those ranges.
Thanks for the reply. I understand that it's actually the client or AP that's performing the detection - the WLSE receives and allows you to view the information. So, in a 2.4 GHz environment, unless the client has "a" capability (assuming "b" and "g" are presently used), the 5GHz rogue access point will never be detected. Is that a true statement?
Transferring Crash file from standby: Login to the Active WLC in HA.
From CLI: (Cisco Controller) >transfer upload datatype crash (Cisco
Controller) >transfer upload filename (Cisco
Controller) >transfer upload mode tftp (Cisco Controller) >transfer
This is the start of a display filter cross reference between Wireshark
and OmniPeek. The 1st installment is a table of advanced filters. More
filters will be added as time allows. It is a living doc, so check back
for changes every so often Please feel f...