User guide

Dell PowerConnect W-Instant Access Point 5.0.3.0-1.1.0.0 | User Guide Intrusion Detection System | 107
Chapter 16
Intrusion Detection System
Intrusion Detection System (IDS) is a feature that monitors the network for the presence of unauthorized IAPs
and clients. It also logs information about the unauthorized IAPs and clients, and generates reports based on the
logged information.
Rogue AP Detection and Classification
The most important IDS functionality offered in the Dell Instant network is the ability to detect rogue APs,
interfering APs, and other devices that can potentially disrupt network operations. An AP is considered to be a
rogue AP if it is both unauthorized and plugged into the wired side of the network. An AP is considered to be an
interfering AP if it is seen in the RF environment but is not connected to the wired network. While the
interfering AP can potentially cause RF interference, it is not considered a direct security threat since it is not
connected to the wired network. However, an interfering AP may be reclassified as a rogue AP.
Figure 84 Intrusion Detection
Rogue Containment
Enable or disable rogue containment on the Instant network. By default, this is disabled.
Figure 85 Rogue Containment
Containment Methods
You can enable wired and wireless containments to prevent unauthorized stations from connecting to your
Instant network.
NOTE: The rouge containment is supported only when the IAPs are in the monitor mode.