WIPS-POLICY 22 - 5
22.1.3 event
wips-policy
Configures an event
Supported in the following platforms:
• RFS7000
• RFS6000
• RFS4000
• AP71xx
• AP650
• AP6511
• AP6532
Syntax
event [ap-anomaly|client-anomaly|enable-all-events|excessive]
event ap-anomaly [ad-hoc-violation|airjack|ap-ssid-broadcast-in-
beacon|asleap||impersonation-attack|null-probe-response|transmitting-device-using-
invalid-mac|unencrypted-wired-leakage|wireless-bridge]
event client-anomaly [crackable-wep-iv-key-used|dos-broadcast-deauth|fuzzing-all-
zero-macs|fuzzing-invalid-frame-type|fuzzing-invalid-mgmt-frames|fuzzing-invalid-
seq-num|identical-src-and-dest-addr|invalid-8021x-frames| netstumbler-generic|non-
changing-wep-iv|tkip-mic-counter-measures|wellenreiter]{filter-ageout <0-86400>}]
event excessive [80211-replay-check-failure| aggressive-scanning|auth- server-
failures|decryption-failures|dos-assoc-or-auth-flood|dos-eapol-start-storm |dos-
unicast-deauth-or-disassoc|eap-flood|eap-nak-flood |frames-from-unassoc-station]
{filter-ageout <0-86400>|threshold-client <0-65535> |threshold-radio <0-65535>}
Comments to this Manuals