No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

Configuration Guide - WLAN-AC

S5700 and S6720 V200R012C00

This document describes the configurations of WLAN, including WLAN Service Configuration, Radio Resource Management, Roaming, WLAN QoS, WLAN Security, WDS, Mesh, Location, Hotspot 2.0, Dual-Link Cold Backup, N+1 Backup.
Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
(Optional) Configuring Fuzzy Matching Rules for Identifying Spoofing SSIDs

(Optional) Configuring Fuzzy Matching Rules for Identifying Spoofing SSIDs

Context

WLAN services are available in public places, such as banks and airports. Users can connect to the WLANs after associating with corresponding SSIDs. If a rogue AP is deployed and provides spoofing SSIDs similar to authorized SSIDs, the users may be misled and connect to the rogue AP, which brings security risks. To address this problem, configure a fuzzy matching rule to identify spoofing SSIDs. The device compares a detected SSID with the matching rule. If the SSID matches the rule, the SSID is considered a spoofing SSID. The AP using the spoofing SSID is a rogue AP. After rogue AP containment is configured, the device contains the rogue AP and disconnects users from the spoofing SSID.

Procedure

  1. Run system-view

    The system view is displayed.

  2. Run wlan

    The WLAN view is displayed.

  3. Run wids-spoof-profile name profile-name

    A WIDS spoof SSID profile is created and the WIDS spoof SSID profile view is displayed.

    By default, no WIDS spoof SSID profile exists in the system.

  4. Run spoof-ssid fuzzy-match regex regex-value

    The fuzzy matching rule is configured for spoofing SSIDs.

    By default, no fuzzy matching rule is configured for spoofing SSIDs.

  5. Run quit

    Return to the WLAN view.

  6. Run wids-profile name profile-name

    The WIDS profile view is displayed.

  7. Run wids-spoof-profile profile-name

    The WIDS spoof SSID profile is applied to the WIDS profile.

    By default, no WIDS spoof SSID profile is bound to a WIDS profile.

Translation
Download
Updated: 2018-12-24

Document ID: EDOC1100038361

Views: 182239

Downloads: 480

Average rating:
This Document Applies to these Products
Related Version
Related Documents
Share
Previous Next