System information
Introduction
Introduction to D-Link Unified Access System
Secure Wireless Connectivity – WIPS/Threat
Miti
g
ation
g
DWS-4026 supports advanced Wireless Intrusion Detection and Mitigation:
• Detect and classify AP :
– Managed, Standalone, Unknown, Rogue (fake managed AP, fake SSID, illegal channel, etc…)
• Detect and Classif
y
Wireless Client
y
– Authenticated, Black-listed, Rogue (probe attack, flooding network, etc…)
Detect & ClassifyMitigate Rogue
Mitigate attacks from Rogue AP
Disable Rogue AP once detected
Managed
Standalone
Unknown
-Fake managed AP
-Fake managed SSID
-AP using illegal channel
-AP using invalid channel
-Incorrect security config
-Invalid SSID
Utd WDS di
-
Disable Rogue AP once detected
Mitigate attacks from Rogue Clients
(AP must operate in Sentry Mode)
- Disable Rogue Client once detected
Unified Switch
A
ut
h
e
n
t
i
cated
Rogue
Wireless AP
-Not in client database
-Probe attack
-
U
nexpec
t
e
d WDS d
ev
i
ce
-Etc…
11
ut e t cated
Black-Listed
Rogue
Wireless Client
-Flooding network
-Too many failed auth
-Authenticated with
Unknown AP
-Etc…
Page is Animated