Classifying Rogue Policy

You can create rogue classification policy with rules at the zone-level. This helps in automatic classification behavior when a specific-rogue detection criteria are met.

To create a rogue classification policy:
  1. Go to Services & Profiles > WIPS.
  2. In the Policy tab, select the zone for which you want to create the policy.
  3. Click Create. The Create Rogue Classification Policy page appears.
  4. Configure the following:
    1. Name : Type a name for the policy.
    2. Description : Type a description for the policy.
    3. Rogue Classification Rules : Create the policy rule by configuring the following :
      • Click Create. The Create Rogue Classification Rules page appears.
      • Configure the following options:

        • Name: Enter a name for the rule.

        • Rule Type: Select one of following the rule type for the Classification:

          • Low RSSI
          • MAC OUI
          • MAC Spoofing
          • Same Network
          • SSID
          • SSID Spoofing

        • Signal Threshold: Enter the RSSI threshold in dBm. This option is available only for Low RSSI rule type.

        • MAC OUI: Enter the first three octets of the MAC. For example, 11:22:33. This option is available only for MAC OUI rule type.

        • SSID: Enter the SSID. This option is available only for SSID rule type.

        • Classification: Select one of the following action for the selected Rule Type:

          • Ignore
          • Know
          • Malicious
          • Rogue

      • Click OK. You have created a Rogue classification rule.

        .

  5. Click OK. You have created Rogue classification policy.
NOTE
You can also edit or delete a Rogue classification policy. To do so, select the rogue classification from the list and click Configure or Delete as required.
NOTE
To prioritize the classification rule, select the rule from the list and click UP or Down to position the rule.
Parent topic: Services and Profiles