Concept Guide
323 | Intrusion Detection Dell Networking W-Series Instant 6.4.3.1-4.2.0.0 | User Guide
Protection Level Protection Policy
Off All protection policies are disabled
Low Protect Valid Station
High Protect Windows Bridge
Table 61: Client Protection Policies
Containment Methods
You can enable wired and wireless containments to prevent unauthorized stations from connecting to your
Instant network.
Instant supports the following types of containment mechanisms:
l Wired containment— When enabled, W-IAPs generate ARP packets on the wired network to contain wireless
attacks.
l Wireless containment— When enabled, the system attempts to disconnect all clients that are connected or
attempting to connect to the identified Access Point.
n None— Disables all the containment mechanisms.
n Deauthenticate only— With deauthentication containment, the Access Point or client is contained by
disrupting the client association on the wireless interface.
n Tarpit containment— With Tarpit containment, the Access Point is contained by luring clients that are
attempting to associate with it to a tarpit. The tarpit can be on the same channel or a different channel
as the Access Point being contained.