An 802.11 network is open and borderless, making it vulnerable to attack (e.g., rogue APs, unauthorized clients, DoS attacks). The Wireless Intrusion Protection System (WIPS) application monitors the wireless radio spectrum for the presence of unsafe access points and clients, and can take countermeasures to mitigate the impact of foreign intrusions. WIPS provides an overview of wireless network threats/intrusions for Stellar APs, and enables users to set up policies to detect threats and take countermeasures.
The WIPS Home Page provides links to an overview of network threats and intrusions for Stellar APs, including Rogue APs and Blocklisted Clients, as well as network attacks over a 24 hour or one week period.
Click on the Rogue APs and Blocklist Clients widget on the Home Page and select Rogue Client Association for an overview of detected Rogue APs and Clients. Click on Blocklist Clients to for an overview of clients that have been automatically and manually added to the Blocklist.
Click on the Top N Attacks widget to view a list of attacks from foreign APs and Clients, Click on the Settings icon to configure the number of attacks to display (Top 5, 10, 20), as well as the monitoring period (24 Hours, 1 Week).
In addition to the overview provided on the WIPS Home Page, you can view detailed information on intrusive APs and wireless attacks, and create policies to detect and react to the attacks. Detailed views and policies are configured using the links on the left side of the WIPS Home Page: