Switch User Manual
Rogue detection and counter measures 703
Nortel WLAN—Security Switch 2300 Series Configuration Guide
To clear all classifications and reset to default values, use the following command:
WSS-2# clear rfdetect classification
Rogue detection lists
Rogue detection lists specify the third-party devices and SSIDs that WSS Software allows on the network, and
the devices WSS Software classifies as rogues. You can configure the following rogue detection lists:
• Permitted SSID list—A list of SSIDs allowed in the Mobility Domain. WSS Software generates a
message if an SSID that is not on the list is detected.
• Rogue List—devices not permitted on the network.
• Client black list—A list of MAC addresses of wireless clients who are not allowed on the network. WSS
Software prevents clients on the list from accessing the network through a WSS. If the client is placed on
the black list dynamically by WSS Software due to an association, reassociation, or disassociation flood,
WSS Software generates a log message.
• Neighbor list—A list of third-party devices to exempt from rogue detection. MSS does not count devices
on the Neighbor list as rogues or interfering devices, and does not issue counter measures against them.
An empty permitted SSID list or permitted vendor list implicitly allows all SSIDs or vendors. However, when
you add an entry to the SSID or vendor list, all SSIDs or vendors that are not in the list are implicitly disal-
lowed. An empty client black list implicitly allows all clients, and an empty ignore list implicitly considers all
third-party wireless devices to be potential rogues.
All the lists except the black list require manual configuration. You can configure entries in the black list and
WSS Software also can place a client in the black list due to an association, reassociation or disassociation
flood from the client.
The rogue classification algorithm examines each of these lists when determining whether a device is a rogue.
Figure 37 shows how the rogue detection algorithm uses the lists.