Release Notes
Parameter Description Range Default
detect-disconnect-station
In a station disconnection
attack, an attacker spoofs the
MAC address of either an
active client or an active AP.
The attacker then sends
deauthenticate frames to the
target device, causing it to
lose its active association.
Use this command to enable
the detection of disconnect
station attack.
true
false
enable
detect-eap-rate-anomaly
Enables Extensible
Authentication Protocol (EAP)
handshake analysis to detect
an abnormal number of
authentication procedures on
a channel and generate an
alarm when this condition is
detected.
true
false
false
detect-fata-jack-attack
Enable/disable detection of
FATA-Jack attack
true
false
enable
detect-ht-40mhz-intolerance
Enables or disables detection
of 802.11n 40 MHz intolerance
setting, which controls
whether stations and APs
advertising 40 MHz
intolerance will be reported.
true
false
false
detect-invalid-address
Enable/disable detection of
invalid address combinations
true
false
false
detect-malformed-association-
request
Enable/disable detection of
malformed association
requests.
true
false
disable
detect-malformed-auth-frame
Enable/disable detection of
malformed authentication
frames
true
false
disable
detect-malformed-htie
Enable/disable detection of
malformed HT IE
true
false
false
detect-malformed-large-duration
Enable/disable detection of
unusually large durations in
frames
true
false
true
detect-omerta-attack
Enable/disable detection of
Omerta attack
true
false
enable
detect-overflow-eapol-key
Enable/disable detection of
overflow EAPOL key requests
true
false
disable
detect-overflow-ie
Enable/disable detection of
overflow Information Elements
(IE)
true
false
disable
Dell Networking W-Series ArubaOS 6.4.x | Reference Guide ids dos-profile | 368