This is a big point. In order to be certain about rogues, you need to be able to see traffic on the LAN as well as over the AIR (mac addresses). Rogue sensors / detectors need to be in all of the public facing VLANs (either trunked or sitting in them natively). That way rogues are APs that are actually plugged into your LAN and not the neighbor next door. -Emerson
________________________________ From: Lee H Badman [mailto:[EMAIL PROTECTED] Sent: Thursday, April 12, 2007 12:08 PM To: [EMAIL PROTECTED] Subject: Re: [WIRELESS-LAN] Rogue AP's For us, containment is a bit risky- we are surrounded by hospitals, residences, etc- their devices can show up as rogues. Would be bad to contain these. We're relying on a lot of communication/cooperation and growing a new culture as we go- which is actually gaining traction. For students, we ask them to remove, if they don't- ports can get shut down. But where we have 100% wireless, we are seeing far fewer rogues. And anything we do has CIO sponsorship, and is being well-communicated to all. Lee ________________________________ From: ktaillon [mailto:[EMAIL PROTECTED] Sent: Thursday, April 12, 2007 11:54 AM To: [EMAIL PROTECTED] Subject: Re: [WIRELESS-LAN] Rogue AP's Will you be using the Containment option in the WCS? Or hunting down the units and removing them from the Network. Could someone point out some of the pro's and con's to using containment.. ________________________________ From: Lee H Badman [mailto:[EMAIL PROTECTED] Sent: Thursday, April 12, 2007 11:40 AM To: [EMAIL PROTECTED] Subject: Re: [WIRELESS-LAN] Rogue AP's With wireless rolling out on a much larger scale on our campus, we are revising our policy and attitude to be a bit more restrictive in both philosophy and practice when it comes to UNCOORDINATED rogues... We are also taking a stab at coordinating not just APs, but also ANY wireless system- classroom response systems, wireless AV, etc.- trying to keep the environment somewhat under control as more wireless technologies hit. Not always restrictive per se, but more coordinated. Lee H. Badman Wireless/Network Engineer KC2IYK, CWNA/CWSP Information Technology and Services Syracuse University 315 443-3003 ________________________________ From: M. Sjulstad [mailto:[EMAIL PROTECTED] Sent: Thursday, April 12, 2007 11:32 AM To: [EMAIL PROTECTED] Subject: Re: [WIRELESS-LAN] Rogue AP's We too have the policy of no rogues, but I admit I don't go looking for them. I know we have them, probably a lot more than I know of, but as long as they aren't causing problems, I don't really care. Worst things I've seen are mis-configured APs that want to be a DHCP server and try handing out IPs on the wired side. Mike _________________________________ M. Sjulstad Network/Electronics Engineer - IIT Dept. St. Olaf College Northfield, MN 55057 _____________ 1-507-786-3835 [EMAIL PROTECTED] www.stolaf.edu/people/sjulstad On Apr 12, 2007, at 9:33 AM, Brian J David wrote: I just wanted to here from other schools on what they are doing about Rogues. Is your policy not to allow them but don't do too much to prevent them. Do you let the dorms be the wild wild west? Or are you actively finding them and removing them through one means or another. We are an Aruba networks shop and have some great capabilities for Rogue detection and prevention and wanted to get a feel what other schools process is concerning them. Also any horror stories that you would like to share? Brian J David Network Systems Engineer Boston College ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
