Before you begin
Select Optional Settings
Customize under Additional Settings
in the Configure Standard
Wireless Networks window.
About this task
This task is part of a series of optional settings for configuring a standard
wireless network policy. In the DoS Prevention
section, configure defensive settings to protect against Denial of Service (DoS)
attacks, and configure SSID access filters based on MAC addresses.
Procedure
-
Under MAC-based Dos Prevention rules for, select
SSID to protect against DoS attacks at the MAC layer
(Layer 2) on the radio channel that an AP uses for SSID access traffic.
The settings for an SSID apply
cumulatively to the total amount of Layer 2 traffic that an AP receives on the
access channel for the SSID.
-
Select Client to protect against DoS attacks at the MAC
layer (Layer 2) on the radio channel that an AP uses for SSID access
traffic.
The settings in the MAC DoS
configuration object apply to the total amount of Layer 2 traffic that an AP
receives on the access channel for the SSID from a single MAC address.
-
Under IP-based Dos Prevention rules for, select
SSID to protect against Denial of Service attacks at
the IP layer (Layer 3) on the radio channel that an AP uses for SSID access
traffic.
The settings in the IP DoS
configuration object apply cumulatively to the total amount of Layer 3 traffic
that an AP receives on the access channel for the SSID.
-
Enable MAC-Based filters and select whether to
Deny or Permit an
action.
Choose Permit to enable traffic from clients that do
not match one of the selected filters, or choose Deny to
block traffic from clients that do not match any of the selected MAC
filters.
What to do next
Continue configuring Optional Settings in the Standard Wireless Networks
configuration window.
