IDS 'Auth flood' Signature attack cleared on AP 'L2Z4-Columnpoint-DesignLines' protocol '802.11a' on Controller '10.0.205.10'. The Signature description is 'Authentication Request flood'.This Signature attack is still detected by 1 APs
IDS 'Broadcast Probe flood' Signature attack detected on AP 'P-Hall-AP-4' protocol '802.11b/g' on Controller '10.0.205.10'. The Signature description is 'Broadcast Probe Request flood', with precedence '7'. The channel number is '6', the number of detections is '500', and one of potentially several attackers' mac addresses is '1c:23:2c:1e:8f:01'
I have found these attack on my cisco WLC 5508. please guide and provide solution so that i may be able to remove these kind of attacks in future
We have currently one WLC 5508 connected with nexus switch and AP are connected with access switches which is 2960.
Transferring Crash file from standby:
Login to the Active WLC in HA.
(Cisco Controller) >transfer upload datatype crash
(Cisco Controller) >transfer upload filename <Desired filename>
(Cisco Controller) >transfer up...
This is the start of a display filter cross reference between Wireshark and OmniPeek.
The 1st installment is a table of advanced filters. More filters will be added as time allows.
It is a living doc, so check back for changes every so often
Please feel ...
I have created a Powershell script to automatically add a Wireless Guest User on Cisco WLCs. (tested on 2500 Series)
The script should be completely self explanatory.
Powershell SNMP Module (Install-Module -Name SNMP)
SNMP Write Access to...