Classifying Rogue Policy

You can create rogue classification policy with rules at the zone-level. This helps in automatic classification behavior when a specific-rogue detection criteria are met.

To create a rogue classification policy:
  1. Go to Services & Profiles > WIPS.
  2. In the Policy tab, select the zone for which you want to create the policy.
  3. Click Create.
    The Create Rogue Classification Policy page appears.
  4. Configure the following:
    1. Name : Type a name for the policy.
    2. Description : Type a description for the policy.
    3. Rogue Classification Rules : Create the policy rule by configuring the following :
      • Click Create. The Create Rogue Classification Rules page appears.
      • Configure the following options:
        • Name: Enter a name for the rule.

        • Rule Type: Select one of following the rule type for the Classification:

          • Low RSSI
          • MAC OUI
          • MAC Spoofing
          • Same Network
          • SSID
          • SSID Spoofing
        • Signal Threshold: Enter the RSSI threshold in dBm. This option is available only for Low RSSI rule type.

        • MAC OUI: Enter the first three octets of the MAC. For example, 11:22:33. This option is available only for MAC OUI rule type.

        • SSID: Enter the SSID. This option is available only for SSID rule type.

        • Classification: Select one of the following action for the selected Rule Type:

          • Ignore
          • Know
          • Malicious
          • Rogue
      • Click OK. You have created a Rogue classification rule.

        .

  5. Click OK.
    You have created Rogue classification policy.
Note: You can also edit or delete a Rogue classification policy. To do so, select the rogue classification from the list and click Configure or Delete as required.
Note: To prioritize the classification rule, select the rule from the list and click UP or Down to position the rule.