CLI Reference Guide
Adding a Rogue’s Clients to the Black List 433
Adding a Rogue’s
Clients to the Black
List
The client black list is a switch’s list of MAC addresses of wireless clients
who are not allowed on the network. MSS prevents clients on the list
from accessing the network through an WX switch.
1 In the Filtered List of rogues on the Rogue Detection tab, select the
rogues whose clients you want to place on the black list.
2 Click on the toolbar. The Select Devices dialog is displayed.
3 Select the clients you want to add to the black list.
4 If the switch(es) on which you want to enforce the black list are in a
Mobility Domain, select the Mobility Domain. Otherwise, select None.
5 Click next to Select to select all the switches that are listed, or click next
to individual switches to select them.
6 Click B. The selected clients are added to the attack list. MSS drops all
packets from these clients.
Configuring RF
Detection Options
from the Organizer
Panel
Although the Rogue Detection tab provides the simplest way to configure
rogue detection features, you also can configure them on an individual
switch basis. To configure rogue detection settings for a switch:
1 Expand the switch in the Equipment area of the Organizer panel.
2 Select RF Detection, right-click, and select Edit. The Modify RF Detection
wizard appears.
3 To enable MSS to use MAP signatures to verify the authenticity of packets
whose source MAC address belongs to a MAP, select Enable Signature.
A MAP signature is a set of bits in a management frame sent by a MAP
that identifies that MAP to MSS. If someone attempts to spoof
management packets from a 3Com MAP, MSS can detect the spoof
attempt.
This option is disabled by default.
4 To add a MAC address to the known addresses list:
a Click Known Addresses.
b Click New Known Address Entry. The Create Known Address Entry
wizard is displayed.
c Type the device’s MAC address.