You are here: Home > CLI Commands > Just_CLI_Topics > show wms rogue-ap list

show wms rogue-ap list

show wms rogue-ap list

Description

This command displays the information on the rogue APs in the network.

Syntax

No parameter.

Usage Guidelines

When an AMAir Monitor. AM is a mode of operation supported on wireless APs. When an AP operates in the Air Monitor mode, it enhances the wireless networks by collecting statistics, monitoring traffic, detecting intrusions, enforcing security policies, balancing wireless traffic load, self-healing coverage gaps, and more. However, clients cannot connect to APs operating in the AM mode. classifies an interfering AP as a Rogue AP it sends that classification to the WMS process.

Use this command to list all known Rogue APs that may be potential security threats.

Examples

The show wms rogue-ap list command displays a list of rogue APs detected in the network.

(host)[mynode] #show wms rogue-ap list

AP List

-------

BSSID ESSID Class PHY Type AP-name Encryp IBSS Last Mon Eth MAC

----- ----- ----- -------- ------- ------ ---- ----------------

ac:a3:1e:53:72:94 arturo04 rogue 80211A wpa2-psk-aes no ac:a3:1e:cd:35:5a

84:d4:7e:64:1c:72 hpeguest rogue 80211A open no ac:a3:1e:cd:35:5a

00:62:ec:26:2e:2f smtcwireless rogue 80211A wpa-8021x-tkip no c8:b5:ad:c3:ac:fc

Total: 3

The output of this command includes the following information:

Column

Description

BSSID

Basic Service Set Identifier (BSSIDBasic Service Set Identifier. The BSSID identifies a particular BSS within an area. In infrastructure BSS networks, the BSSID is the MAC address of the AP. In independent BSS or ad hoc networks, the BSSID is generated randomly.) for the AP. This is usually the AP’s MACMedia Access Control. A MAC address is a unique identifier assigned to network interfaces for communications on a network. address.

ESSID

The Extended Service Set Identifier (SSIDService Set Identifier. SSID is a name given to a WLAN and is used by the client to access a WLAN network.) that identifies a wireless network.

Class

AP classification: will always be set to ‘rogue’.

A rogue AP that is unauthorized and is plugged into the wired side of the network. You can configure automatic shutdown of rogue APs in the IDSIntrusion Detection System. IDS monitors a network or systems for malicious activity or policy violations and reports its findings to the management system deployed in the network. unauthorized device detection profile.

PHY Type

Shows one of the following 802.11802.11 is an evolving family of specifications for wireless LANs developed by a working group of the Institute of Electrical and Electronics Engineers (IEEE). 802.11 standards use the Ethernet protocol and Carrier Sense Multiple Access with collision avoidance (CSMA/CA) for path sharing. types:

802.11a802.11a provides specifications for wireless systems. Networks using 802.11a operate at radio frequencies in the 5 GHz band. The specification uses a modulation scheme known as orthogonal frequency-division multiplexing (OFDM) that is especially well suited to use in office settings. The maximum data transfer rate is 54 Mbps.

802.11b802.11b is a WLAN standard often called Wi-Fi and is backward compatible with 802.11. Instead of the Phase-Shift Keying (PSK) modulation method used in 802.11 standards, 802.11b uses Complementary Code Keying (CCK) that allows higher data speeds and makes it less susceptible to multipath-propagation interference. 802.11b operates in the 2.4 GHz band and the maximum data transfer rate is 11 Mbps.

802..11g

802.11802.11 is an evolving family of specifications for wireless LANs developed by a working group of the Institute of Electrical and Electronics Engineers (IEEE). 802.11 standards use the Ethernet protocol and Carrier Sense Multiple Access with collision avoidance (CSMA/CA) for path sharing. ag

AP-name

Name of the rogue AP.

Encryp

Encryption type used on each listed rogue AP.

IBSS

Shows if ad hoc BSSBasic Service Set. A BSS is a set of interconnected stations that can communicate with each other. BSS can be an independent BSS or infrastructure BSS. An independent BSS is an ad hoc network that does not include APs, whereas the infrastructure BSS consists of an AP and all its associated clients. is enabled or disabled on each listed rogue AP.

Last Mon Eth MAC

Shows the last monitored MACMedia Access Control. A MAC address is a unique identifier assigned to network interfaces for communications on a network. address seen on the wired network for this rogue AP.

Related Commands

Command

Description

wms ap

This command allows you to classify an AP into one of several categories.

wms client

This command allows you to classify a wireless client into one of several categories.

Command History

Release

Modification

ArubaOS 8.2.0.0

Command introduced.

Command Information

Platforms

License

Command Mode

All platforms

Base operating system.

Enable or Config mode on the controller or managed device.

/*]]>*/