Information Technology Reference
In-Depth Information
Wired
Infrastructure
Autonomous
AP
L3 Switch
Si
Data VLAN
Voice VLAN
Management VLAN
Wireless Clients
Wired
Infrastructure
L3 Switch
LWAP
WLC
Si
Layer 3
CAPWAP Tunnel
Data VLAN
Voice VLAN
Management VLAN
Wireless Clients
Figure 5-5
Autonomous AP Versus CAPWAP AP with WLC
Monitor mode:
Monitor mode is a feature designed to allow specified CAPWAP-en-
abled APs to exclude themselves from handling data traffic between clients and the
infrastructure. They instead act as dedicated sensors for location-based services
(LBS), rogue AP detection, and intrusion detection (IDS). When APs are in Monitor
mode, they cannot serve clients and continuously cycle through all configured chan-
nels, listening to each channel for approximately 60 ms.
■
Rogue detector mode:
LWA P s t h a t o p e r a t e i n R o g u e D e t e c t o r m o d e t o m o n i t o r fo r
rogue APs. They do not transmit or contain rogue APs. The idea is that the rogue de-
tector (RD) should be able to see all the VLANs in the network, because rogue APs
can be connected to any of the VLANs in the network. (Therefore, we connect it to a
trunk port.) The LAN switch sends all the rogue AP/client MAC address lists to the
RD. The RD then forwards those to the WLC to compare with the MAC addresses of
clients that the WLC APs have heard over the air. If the MAC addresses match, the
WLC knows that the rogue AP to which those clients are connected is on the wired
network.
■
Sniffer mode:
A CAPWAP that operates in Sniffer mode functions as a sniffer and
■