No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

Configuration Guide - WLAN-AC

S5700 and S6720 V200R012C00

This document describes the configurations of WLAN, including WLAN Service Configuration, Radio Resource Management, Roaming, WLAN QoS, WLAN Security, WDS, Mesh, Location, Hotspot 2.0, Dual-Link Cold Backup, N+1 Backup.
Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
(Optional) Configuring a WIDS Whitelist

(Optional) Configuring a WIDS Whitelist

Context

After the rogue device containment function is enabled, rogue APs can be detected and contained. However, there may be APs of other vendors or on other networks working in the existing signal coverage areas. If these APs are contained, their services will be affected. To prevent this situation, you can configure the WIDS whitelist profile to add these APs to a WIDS whitelist which includes an authorized MAC address list, OUI list, and SSID list.

The device determines whether a detected AP is authorized as follows:
  1. Check whether the AP's MAC address is in the authorized MAC address list.
    • If so, the AP is an authorized AP.

    • If not, go to step 2.

  2. Check whether the AP's OUI and SSID are in the OUI and SSID lists.
    • If only the SSID is configured, check whether the AP's SSID is in the authorized SSID list.
      • If so, the AP is an authorized AP.
      • If not, the AP is an unauthorized AP.
    • If only the OUI is configured, check whether the AP's OUI is in the authorized OUI list.
      • If so, the AP is an authorized AP.
      • If not, the AP is an unauthorized AP.
    • Check whether the AP's OUI and SSID are in the OUI and SSID lists.
      • If so, the AP is an authorized AP.
      • If neither or either of them is in the list, the AP is an unauthorized AP.

Procedure

  1. Run system-view

    The system view is displayed.

  2. Run wlan

    The WLAN view is displayed.

  3. Run wids-whitelist-profile name profile-name

    A WIDS whitelist profile is created and the WIDS whitelist profile view is displayed.

    By default, no WIDS whitelist profile exists in the system.

  4. Run permit-ap { mac-address mac-address | oui oui | ssid ssid }

    A WIDS whitelist is configured.

    By default, no WIDS whitelist is configured.

  5. Run quit

    Return to the WLAN view.

  6. Run wids-profile name profile-name

    The WIDS profile view is displayed.

  7. Run wids-whitelist-profile profile-name

    The WIDS whitelist profile is applied to the WIDS profile.

    By default, no WIDS whitelist profile is bound to a WIDS profile.

Translation
Download
Updated: 2018-12-24

Document ID: EDOC1100038361

Views: 160724

Downloads: 445

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Share
Previous Next