Home > Ask the Networking Experts > Enterprise security with Michael Gregg Questions & Answers > What are the best methods for handling rogue access points?
Ask The Networking Expert: Questions & Answers
EMAIL THIS

What are the best methods for handling rogue access points?

Michael Gregg EXPERT RESPONSE FROM: Michael Gregg

Pose a Question
Other Networking Categories
Meet all Networking Experts
Become an Expert for this site


Network security news, advice and technical information
Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us    Add to Google


>
QUESTION POSED ON: 08 May 2008
What are the best methods of dealing with rogue access points (APs)? Can you suggest a small-scale business network with rogue access points?

>
EXPERT RESPONSE
There are several potential problems with allowing end users to add wireless or other devices to the company network without approval. One big one is they may not employ the proper security measures. There is also the issue of maintaining control of the organizations infrastructure.

For the smaller organization there are several layers of control that can be built in to reduce the rouge wireless threat. The first place to start is with policy. All employees should know the rules regarding wireless and what can and cannot be plugged into the network.

Policy enforcement will be easier if you have managed switches. You can disable unused ports and start restricting down active ones by MAC address filtering.

Next, find some tools that will let you scan for rogue access points. There are commercial tools that will do this such as AirMagnet and AirDefense, and if your budget is tight you might want to try an open source tools such as RogueScanner.

Finally, don't be shy about using tools like NetStumbler and other site survey tools to identify access points and verify their legitimacy.


Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us    Add to Google


RELATED CONTENT
Network Security Monitoring
Poor data-loss prevention practices almost cost Intel a billion
How can I block my competitor's IP address range from my website?
Hospital gains network visibility by convincing vendors to collaborate
What software monitors and locks users from accessing my router?
Data leak prevention starts with trusting your users
NagVis -- 'Nagios: System and Network Monitoring, Second Edition,' Chapter 18
What is a genetic algorithm and where can I learn more about them online?
Networking data visualization not just for pointy-headed bosses
Visual Security Analysis -- 'Applied Security Visualization,' Chapter 5
SIEM platform secures university's open network

Network Security Best Practices
Poor data-loss prevention practices almost cost Intel a billion
More than 1 million DNS servers still vulnerable to Kaminsky
Controlling network access by MAC address restriction on wired networks
The TPM chip: An unexploited resource for network security
Tips to secure your network against data theft
Data leak prevention starts with trusting your users
Why do we need IP security at the network layer?
How can I resolve this remote worker's VPN connection problem?
Data loss prevention: Workers in developing economies are a risk
Securing Wireless Systems -- 'Build Your Own Security Lab: A Field Guide for Network Testing,' Chapter 9

Enterprise security with Michael Gregg
How can I block my competitor's IP address range from my website?
What software monitors and locks users from accessing my router?
Why do we need IP security at the network layer?
What's the difference between VPN pass-through and multi-tunneling?
What is a genetic algorithm and where can I learn more about them online?
Why implementing adequate security challenges LAN administration
What security measures are recommended for each level of the TCP/IP model?
How to interpret test scan results to assess network vulnerability
What should I know before implementing a packet sniffer?
Will WPA2-PSK keep wireless networks safe from war drivers?

RELATED GLOSSARY TERMS
Terms from Whatis.com − the technology online dictionary
deep packet inspection (DPI)  (SearchNetworking.com)
FCAPS  (SearchNetworking.com)
Nessus  (SearchNetworking.com)
netstat  (SearchNetworking.com)
port mirroring  (SearchNetworking.com)

RELATED RESOURCES
2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
Search Bitpipe.com for the latest white papers and business webcasts
Whatis.com, the online computer dictionary



Search and Browse the Expert Answer Center
Search and browse more than 25,000 question and answer pairs from more than 250 TechTarget industry experts.
Browse our Expert Advice



Expert networking advice and tips for IT professionals
HomeNewsTopicsITKnowledge ExchangeTipsAsk the ExpertsMultimediaWhite PapersNetworking Product Trials
About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
SEARCH 
TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organizations' IT projects - with its network of technology-specific Web sites, events and magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Reprints  |  Site Map




All Rights Reserved, Copyright 2000 - 2008, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts