Configuring detection rules, Check whether a client is a rogue – H3C Technologies H3C WX6000 Series Access Controllers User Manual

42-7

An AP operating in hybrid mode can provide WLAN data services as well as scanning devices in

the WLAN, so WLAN configurations are needed.

An AP operating in monitor mode cannot provide WLAN data services, so WLAN configurations

are not needed.

Configuring Detection Rules

Configuring detection rules is to configure rogue device classification rules. An AC classifies devices as

rogues and friends based on the configured classification rules.

Check whether an AP is a rogue.

Figure 42-7 Check whether an AP is a rogue

In the static

attack list?

No or the list is

not configured

In the permitted

MAC address list?

No or the list is not

configured

In the permitted

vendor list?

Yes or the list is

not configured

Legal AP

(Friend)

Yes

In the permitted

SSID list?

Yes or the list is

not configured

No

No

Illegal AP

(Rogue)

Yes

AP

Check whether a client is a rogue.