Lab · Configure Wireless Intrusion Prevention (WIPS)

Scenario: harden the Wi-Fi for Northgate Coffee Roasters against wireless attacks on the Halonet WC-7 controller.
SY0-701 · 2.4 SY0-701 · 3.2 SY0-701 · 4.1
Halonet WC-7 · WLAN CONTROLLER
3 APs online   signed in as wlc-admin
Security Intrusion Prevention (WIPS)

Wireless Intrusion Prevention

Detect and block wireless attacks against the WLAN. Apply your changes when finished — pending edits are not enforced until applied.

Denial-of-service protection

Limit attacks that exhaust the controller or flood it with connection attempts.

Excessive request protection
Throttle clients that send abnormally high volumes of association / probe requests.
Block on repeated authentication failures
Temporarily lock out clients that fail authentication too many times.

Intrusion detection & prevention

Identify unauthorized (rogue) devices and actively defend against rogue access points.

Rogue device reporting
Which detected unauthorized devices the controller logs and alerts on.
Rogue access point protection
Actively contain rogue APs by deauthenticating clients that associate with them.

Rogue services

Watch for unauthorized infrastructure services advertised on the wireless network.

Rogue DHCP server detection
Alert when an unauthorized device hands out IP leases on the WLAN.
● unsaved changes ✓ configuration applied