Enable Rogue AP Containment vs "friendly-ap" vs "rogue-ap" roles
Freshman Member
What does "Enable Rogue AP Containment" actually do?
And what does it have to do with the "roles" of 'friendly-ap" and 'rogue-ap'?
If I have marked all unknown AP's as rogue in the "monitor" area. That does what to those devices?
If they happen to be attached to the zyxel gateway network, then any client from that AP would be rejected?
I did look it up in the manual, the answer didn't help:
Enable Rogue AP Containment = Select this to enable rogue AP containment.
Best Answers
-
Hi @jef ,
Thank you for bringing your concerns to our attention.
Our current APs include support for 802.11w, also known as Protected Management Frames (PMF), is to enhance the security of wireless networks by protecting management frames from being spoofed or tampered with, so Rogue AP Containment is no longer necessary. Therefore, we plan to phase out Rogue AP Containment in an upcoming firmware update.
Be a Community MVP: Win a VIP Deal Dash on Your Next Zyxel Purchase!
0 -
Hi @jef ,
In a network configured for "WPA2" only, every client device must support WPA2 (AES) encryption to authenticate and connect successfully.
On the other hand, a network set to "WPA2-mix mode" allows for the connection of devices using either WPA (TKIP) or WPA2 (AES) encryption standards, accommodating a broader range of client devices.
Should you opt to disable or deselect the "WPA2-mixed" mode, be advised that devices only capable of supporting WPA (TKIP) encryption will not be able to connect to the specified SSID (Wi-Fi network name).
Be a Community MVP: Win a VIP Deal Dash on Your Next Zyxel Purchase!
0
Zyxel Employee
All Replies
-
Hi @jef ,
Thank you for bringing your concerns to our attention.
Our current APs include support for 802.11w, also known as Protected Management Frames (PMF), is to enhance the security of wireless networks by protecting management frames from being spoofed or tampered with, so Rogue AP Containment is no longer necessary. Therefore, we plan to phase out Rogue AP Containment in an upcoming firmware update.
Be a Community MVP: Win a VIP Deal Dash on Your Next Zyxel Purchase!
0 -
Thank you Judy, Wpa2 vs wpa2-mixed.. limits the PMF.. If I deselect "mixed" what do I loose?
0 -
Hi @jef ,
In a network configured for "WPA2" only, every client device must support WPA2 (AES) encryption to authenticate and connect successfully.
On the other hand, a network set to "WPA2-mix mode" allows for the connection of devices using either WPA (TKIP) or WPA2 (AES) encryption standards, accommodating a broader range of client devices.
Should you opt to disable or deselect the "WPA2-mixed" mode, be advised that devices only capable of supporting WPA (TKIP) encryption will not be able to connect to the specified SSID (Wi-Fi network name).
Be a Community MVP: Win a VIP Deal Dash on Your Next Zyxel Purchase!
0
Categories
- All Categories
- 395 Beta Program
- 2.1K Nebula
- 117 Nebula Ideas
- 81 Nebula Status and Incidents
- 5.1K Security
- 82 USG FLEX H Series
- 247 Security Ideas
- 1.3K Switch
- 69 Switch Ideas
- 914 WirelessLAN
- 34 WLAN Ideas
- 5.9K Consumer Product
- 210 Service & License
- 337 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 2K FAQ
- 912 Nebula FAQ
- 415 Security FAQ
- 237 Switch FAQ
- 207 WirelessLAN FAQ
- 46 Consumer Product FAQ
- 139 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 72 About Community
- 62 Security Highlight
