Home > Ask the Networking Experts > Enterprise security Questions & Answers > What are the best methods for handling rogue access points?
Ask The Networking Expert: Questions & Answers
EMAIL THIS

What are the best methods for handling rogue access points?

Michael Gregg EXPERT RESPONSE FROM: Michael Gregg

Pose a Question
Other Networking Categories
Meet all Networking Experts
Become an Expert for this site


Network security news, advice and technical information
Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us    Add to Google


>
QUESTION POSED ON: 08 May 2008
What are the best methods of dealing with rogue access points (APs)? Can you suggest a small-scale business network with rogue access points?


Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us    Add to Google



RELATED CONTENT
Network Security Monitoring and Analysis
Application-specific network intrusion detection systems emerge
Anomaly-based intrusion protection configuration and installation
How can I calculate perimeter firewall throughput?
How do I find the application on my network that's dropping packets?
Integrating NAC with network security tools
Where can I find a sample security audit report? How can I run my own?
The firewall remains the network traffic cop, but its role is changing
Troubleshooting VLANs: How to monitor 802.1q tagged traffic
Poor data-loss prevention practices almost cost Intel a billion
How can I block my competitor's IP address range from my website?

Network Security Best Practices and Products
3Com acquisition confirms HP-Cisco battle for China
Enterprises demand next-generation firewalls with IPS, app visibility
Preventing hacker attacks with network behavior analysis IPS
Is there a way to trace my stolen laptop computer?
Integrating NAC with network security tools
Should organizations separate technical from administrative security?
What network equipment is needed to secure a small business LAN?
Ethical hacking and countermeasures: Network penetration testing intro
Are you on a domain name system (DNS) blacklist database?
Rogue access points: Preventing, detecting and handling best practices

Enterprise security
How can I calculate perimeter firewall throughput?
Where can I find a wire driver that unblocks recognized passwords?
How do I find the application on my network that's dropping packets?
Is there a way to trace my stolen laptop computer?
Is WPA2 secure enough for a commercial business wireless network?
Should organizations separate technical from administrative security?
What network equipment is needed to secure a small business LAN?
How to lock wireless routers
Are you on a domain name system (DNS) blacklist database?
Where can I find a sample security audit report? How can I run my own?

RELATED GLOSSARY TERMS
Terms from Whatis.com − the technology online dictionary
deep packet inspection (DPI)  (SearchNetworking.com)
FCAPS  (SearchNetworking.com)
Nessus  (SearchNetworking.com)
netstat  (SearchNetworking.com)
port mirroring  (SearchNetworking.com)

RELATED RESOURCES
2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
Search Bitpipe.com for the latest white papers and business webcasts
Whatis.com, the online computer dictionary


There are several potential problems with allowing end users to add wireless or other devices to the company network without approval. One big one is they may not employ the proper security measures. There is also the issue of maintaining control of the organizations infrastructure.

For the smaller organization there are several layers of control that can be built in to reduce the rogue wireless threat. The first place to start is with policy. All employees should know the rules regarding wireless and what can and cannot be plugged into the network.

Policy enforcement will be easier if you have managed switches. You can disable unused ports and start restricting down active ones by MAC address filtering.

Next, find some tools that will let you scan for rogue access points. There are commercial tools that will do this such as AirMagnet and AirDefense, and if your budget is tight you might want to try an open source tools such as RogueScanner.

Finally, don't be shy about using tools like NetStumbler and other site survey tools to identify access points and verify their legitimacy.

This question was also answered by our wireless networking expert, Lisa Phifer. Read her response to this question: Monitoring your network to detect rogue access points.



Search and Browse the Expert Answer Center
Search and browse more than 25,000 question and answer pairs from more than 250 TechTarget industry experts.
Browse our Expert Advice



Expert networking advice and tips for IT professionals
About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
SEARCH 
TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Site Map




All Rights Reserved, Copyright 2000 - 2009, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts