Q: How can I eliminate rogue access points from my network?

Solutions to eliminate rogue wireless network access points include a spectrum analyzer, a wireless intrusion detection system, and a wireless intrusion prevention system. Find out what's right for you!

1 Min Read
ITPro Today logo in a gray background | ITPro Today

A:To eliminate rogue access points (APs), you first need to find them. And to do that, you need to be close enough to sniff them over the air.

There are plenty of solutions for doing so. The right solution for you depends on whether the issue is such a seismic problem that you need to monitoreverywhere 24/7 or whether you can periodically sweep the building.

If you need constant monitoring, you need to install additional APs in monitor mode across your site. These APs are in a constant listening mode. They willalert you to anomalies such as unapproved AP models. This type of system is called a wireless intrusion detection system (WIDS) or wireless intrusionprevention system (WIPS). The difference is that the latter actually takes steps to prevent the rogue AP from operating.

If you don't want to go to this expense or don't need this level of protection, then you can send someone out to the network location with a spectrumanalyzer. This person can literally walk the corridors looking for sources of interference. You can buy a fairly inexpensive tool such as MetaGeekChanalyzer or a more sophisticated tool such as Cisco Spectrum Expert or Fluke AirMagnet Analyzer.

Sign up for the ITPro Today newsletter
Stay on top of the IT universe with commentary, news analysis, how-to's, and tips delivered to your inbox daily.

You May Also Like