Specifications
OmniAccess Reference: AOS-W System Reference
814 Part 031652-00 May 2005
ap-flood-check IDS Fake AP Flood Detection
ap-flood-inc-time Number of consecutive seconds over which the AP
count
is more than the threshold
ap-flood-quiet-time Time to wait in seconds after detecting an AP
flood b
efore continuing the check
ap-flood-threshold The number of spurious APs in the system
dsta-check IDS Disconnect Station Analysis
dsta-quiet-time Time to wait in seconds after detecting
disconnect st
ation attack after which the check can be resumed
eap-check IDS EAP Handshake Anomaly Detection
eap-rate-quiet-time Time to wait in seconds after detecting an EAP
handsh
ake anomlay after which the check can be resumed
eap-rate-threshold Number of EAP handshake packets over the time
interva
l that constitutes an anomaly
eap-rate-time-interval Time interval in seconds over which the packet
count
should be checked. Maximum is 120 seconds.
mac-oui-check IDS MAC OUI Validation
mac-oui-quiet-time Time to wait in seconds after detecting an
invalid MA
C OUI after which the check can be resumed
rate-check IDS Rate Analysis
rate-frame-type-param Type of frame for rate check
sequence-check IDS Sequence Analysis
sequence-diff Difference between sequence numbers that will be
cons
idered an anomaly
sequence-quiet-time Time to wait in seconds after detecting a
sequence nu
mber anomaly after which the check can be resumed
sequence-time-toleran.. Difference in the time between two packets that
is co
nsidered to be non-consecutive (in ms).
signature-check IDS Signature Analysis
signature-quiet-time Time to wait in seconds after detecting a
signature m
atch after which the check can be resumed
wbridge-check IDS Wireless Bridge Detection