Network Security Best Practices
Home > Ask the Networking Experts > Enterprise security with Michael Gregg Questions & Answers > What are the best methods for handling rogue access points?
Ask The Networking Expert: Questions & Answers
EMAIL THIS

What are the best methods for handling rogue access points?

Michael Gregg EXPERT RESPONSE FROM: Michael Gregg

Pose a Question
Other Networking Categories
Meet all Networking Experts
Become an Expert for this site


Network security news, advice and technical information
Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us    Add to Google


>
QUESTION POSED ON: 08 May 2008
What are the best methods of dealing with rogue access points (APs)? Can you suggest a small-scale business network with rogue access points?

>
EXPERT RESPONSE
There are several potential problems with allowing end users to add wireless or other devices to the company network without approval. One big one is they may not employ the proper security measures. There is also the issue of maintaining control of the organizations infrastructure.

For the smaller organization there are several layers of control that can be built in to reduce the rouge wireless threat. The first place to start is with policy. All employees should know the rules regarding wireless and what can and cannot be plugged into the network.

Policy enforcement will be easier if you have managed switches. You can disable unused ports and start restricting down active ones by MAC address filtering.

Next, find some tools that will let you scan for rogue access points. There are commercial tools that will do this such as AirMagnet and AirDefense, and if your budget is tight you might want to try an open source tools such as RogueScanner.

Finally, don't be shy about using tools like NetStumbler and other site survey tools to identify access points and verify their legitimacy.


Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us    Add to Google


RELATED CONTENT
Network Security Monitoring
Tracking NetFlow over MPLS helps airline with compliance
Securing the new network architecture: Security for distributed, dynamic networks
When it comes to data loss prevention, networking should be part of the conversation
What is data loss prevention? -- An introduction to DLP
Internet monitoring vendor adds throttling, filtering, to its appliance
How to interpret test scan results to assess network vulnerability
Endpoint security locks down law firm's network
Can a broadband network installer compromise your network security?
Network security: Using unified threat management (UTM)
Network analysis -- Enhancing security assessments

Network Security Best Practices
Securing the new network architecture: Security for distributed, dynamic networks
How to set passwords on folders in Windows 2003 servers
How to configure Windows Server 2008 advanced firewall MMC snap-in
Governance, compliance, security: How are these network problems?
Holidays are over; now beware the gadgets
Prevent unauthorized USB devices with software restriction policies, third-party apps
Introduction to firewalls: Types of firewall
Network firewall know-how: Avoid network latency while protecting your network
Firewalls for network security and auditing
Can users on my LAN view my computer from other machines?

Enterprise security with Michael Gregg
How to interpret test scan results to assess network vulnerability
What should I know before implementing a packet sniffer?
Will WPA2-PSK keep wireless networks safe from war drivers?
How to train intrusion detection systems (IDS)
Can a broadband network installer compromise your network security?
Do social networking products (blogs) pose network security threats?
What types of network firewalls are there?
After a server outage what emergency steps secure your network?
What protocol works on all layers of OSI?
How to block some users from the Internet while allowing others

RELATED GLOSSARY TERMS
Terms from Whatis.com − the technology online dictionary
deep packet inspection (DPI)  (SearchNetworking.com)
FCAPS  (SearchNetworking.com)
Nessus  (SearchNetworking.com)
netstat  (SearchNetworking.com)
port mirroring  (SearchNetworking.com)

RELATED RESOURCES
2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
Search Bitpipe.com for the latest white papers and business webcasts
Whatis.com, the online computer dictionary



Search and Browse the Expert Answer Center
Search and browse more than 25,000 question and answer pairs from more than 250 TechTarget industry experts.
Browse our Expert Advice

HomeNewsTopicsITKnowledge ExchangeTipsAsk the ExpertsWebcastsWhite PapersNetworking Product Trials
About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
SEARCH 
TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organizations' IT projects - with its network of technology-specific Web sites, events and magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Reprints  |  Site Map




All Rights Reserved, Copyright 2000 - 2008, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts