User Manual
Page 1
... of management simplicity and flexibility that simplifies and helps reduce the costs of data during transmission Simple, cost-effective wired and wireless networking for small to medium-sized businesses and branch offices FEATURES Switch-based centralized upgradable architecture Enhanced performance and functionality; Support for all -in-one wired and wireless switch for enterprise branch offices The WS2000 Wireless Switch...
... of management simplicity and flexibility that simplifies and helps reduce the costs of data during transmission Simple, cost-effective wired and wireless networking for small to medium-sized businesses and branch offices FEATURES Switch-based centralized upgradable architecture Enhanced performance and functionality; Support for all -in-one wired and wireless switch for enterprise branch offices The WS2000 Wireless Switch...
User Manual
Page 2
...-play WS2000 automatically detects and configures access ports with Built-in Stateful Packet Inspection firewall; optimizing network performance and availability. Ideal for clients Wireless IDS/IPS Enhanced intrusion detection system (IDS) provides Rogue AP detection, Rogue AP containment and anomaly analysis of wireless data packets and client blacklisting Wired IDS/IPS Built-in RF management features...
...-play WS2000 automatically detects and configures access ports with Built-in Stateful Packet Inspection firewall; optimizing network performance and availability. Ideal for clients Wireless IDS/IPS Enhanced intrusion detection system (IDS) provides Rogue AP detection, Rogue AP containment and anomaly analysis of wireless data packets and client blacklisting Wired IDS/IPS Built-in RF management features...
User Manual
Page 3
... management options; enables centralized authentication to a Radius server, simplifying hotspot enablement for the enterprise and the user Site-to-Site IPSec VPN Cost-effective secure pointto-point and client device-tohost...Motorola RF Management Suite (RFMS); trusted host provisioning; SNMPv3; easy-to branch offices and other distributed locations. keyword analysis in 4-port PoE eliminates need and expense to enable public hot spots Provides secure public access - WS2000 Network Architecture The WS2000 brings enterprise mobility and secure wired and wireless networking...
... management options; enables centralized authentication to a Radius server, simplifying hotspot enablement for the enterprise and the user Site-to-Site IPSec VPN Cost-effective secure pointto-point and client device-tohost...Motorola RF Management Suite (RFMS); trusted host provisioning; SNMPv3; easy-to branch offices and other distributed locations. keyword analysis in 4-port PoE eliminates need and expense to enable public hot spots Provides secure public access - WS2000 Network Architecture The WS2000 brings enterprise mobility and secure wired and wireless networking...
User Manual
Page 4
Motorola mobile client assist IP Filtering: Configurable incoming and outgoing IP filtering policies on detection of RF interference or loss of data traffic performed on one wired and wireless switch for small to 3,658 m Safety Certifications: UL, cUL (60950-1), EN60950-1, TUV/GS EMI ...KeyGuard, WPA - SPECIFICATION Sheet ws2000 All-in-one or all zero addresses Premium Wireless IPS: Via RF Management Suite for forensics and reporting VPN gateway: Supports DES, 3DES and AES-128 and AES-256 encryption; trusted host provisioning Anomaly Analysis: Source Media Access Control ...
Motorola mobile client assist IP Filtering: Configurable incoming and outgoing IP filtering policies on detection of RF interference or loss of data traffic performed on one wired and wireless switch for small to 3,658 m Safety Certifications: UL, cUL (60950-1), EN60950-1, TUV/GS EMI ...KeyGuard, WPA - SPECIFICATION Sheet ws2000 All-in-one or all zero addresses Premium Wireless IPS: Via RF Management Suite for forensics and reporting VPN gateway: Supports DES, 3DES and AES-128 and AES-256 encryption; trusted host provisioning Anomaly Analysis: Source Media Access Control ...
Quick Start Guide
Page 1
...device. • Verify the power connector is accessible at all times during the operation of the wireless switch. 3. Return the switch to the upright position in , position equipment near an easily accessible socket-outlet. (2) Introduction The WS2000 Wireless Switch provides centralized management of the switch... problem running your unit or using your equipment, contact your network and devices (see the WS2000 Wireless Switch System Reference available on the Motorola website). (4) WS2000 Wireless Switch Box • WS2000 Wireless Switch • Clear snap-on a flat surface, a wall,...
...device. • Verify the power connector is accessible at all times during the operation of the wireless switch. 3. Return the switch to the upright position in , position equipment near an easily accessible socket-outlet. (2) Introduction The WS2000 Wireless Switch provides centralized management of the switch... problem running your unit or using your equipment, contact your network and devices (see the WS2000 Wireless Switch System Reference available on the Motorola website). (4) WS2000 Wireless Switch Box • WS2000 Wireless Switch • Clear snap-on a flat surface, a wall,...
Reference Guide
Page 120
...It can be enabled from the [Network Configuration]-->Wireless-->WIDS screen. Appropriate action can be performed based on analysis decides if an intrusion is disabled. By default, WIDS is happening on the WS2000 Wireless Switch. EAP Start Frames For WIDS ...- Authentication Failures • crypto-replay - 5-38 WS2000 Wireless Switch System Reference Guide 5.11 Wireless Intrusion Detection System The Motorola Wireless Intrusion Detection System (WIDS) protects against a wide range of malicious attacks on the device. WIDS provides alerts when thresholds are received. Probe ...
...It can be enabled from the [Network Configuration]-->Wireless-->WIDS screen. Appropriate action can be performed based on analysis decides if an intrusion is disabled. By default, WIDS is happening on the WS2000 Wireless Switch. EAP Start Frames For WIDS ...- Authentication Failures • crypto-replay - 5-38 WS2000 Wireless Switch System Reference Guide 5.11 Wireless Intrusion Detection System The Motorola Wireless Intrusion Detection System (WIDS) protects against a wide range of malicious attacks on the device. WIDS provides alerts when thresholds are received. Probe ...
Reference Guide
Page 512
... • invalid-frame-len - 13-238 WS2000 Wireless Switch System Reference Guide WS2000> admin(network.wips)> set mode enable/ disable detect- Enables or disables the detection of anomalies as set in . Same source and destination IP anomaly • mcas-src - Enables or disables WIDS Sets the duration for analysis. NULL destination MAC anomaly • same-src...
... • invalid-frame-len - 13-238 WS2000 Wireless Switch System Reference Guide WS2000> admin(network.wips)> set mode enable/ disable detect- Enables or disables the detection of anomalies as set in . Same source and destination IP anomaly • mcas-src - Enables or disables WIDS Sets the duration for analysis. NULL destination MAC anomaly • same-src...
Reference Guide
Page 515
...-fails : 80211-replay-fails : decrypt-fails : unassoc-frames : eap-starts : Threshold (0 == disabled) mu radio switch 80 0 0 80 0 0 80 0 0 80 0 0 80 0 0 80 0 0 80 0 0 80 0 0 80 0 0 Filter-Ageout (Secs) 80 80 80 80 80 80 80 80 80 Anomaly Analysis :: null-dst : same-src-dst : mcast-src : weak-wep-iv : tkip-cntr-meas : invalid...
...-fails : 80211-replay-fails : decrypt-fails : unassoc-frames : eap-starts : Threshold (0 == disabled) mu radio switch 80 0 0 80 0 0 80 0 0 80 0 0 80 0 0 80 0 0 80 0 0 80 0 0 80 0 0 Filter-Ageout (Secs) 80 80 80 80 80 80 80 80 80 Anomaly Analysis :: null-dst : same-src-dst : mcast-src : weak-wep-iv : tkip-cntr-meas : invalid...
Reference Guide
Page 516
13-242 WS2000 Wireless Switch System Reference Guide WS2000> admin(network.wips)> show Description: Displays the default WIDS configuration information Syntax: show wids WIDS feature is Detect Window : Enabled : 10 (Secs) Excessive Operations...replay-fails : decrypt-fails : unassoc-frames : eap-starts : Threshold (0 == disabled) mu radio switch 80 0 0 80 0 0 80 0 0 80 0 0 80 0 0 80 0 0 80 0 0 80 0 0 80 0 0 Filter-Ageout (Secs) 80 80 80 80 80 80 80 80 80 Anomaly Analysis :: null-dst : same-src-dst : mcast-src : weak-wep-iv : tkip-cntr-meas...
13-242 WS2000 Wireless Switch System Reference Guide WS2000> admin(network.wips)> show Description: Displays the default WIDS configuration information Syntax: show wids WIDS feature is Detect Window : Enabled : 10 (Secs) Excessive Operations...replay-fails : decrypt-fails : unassoc-frames : eap-starts : Threshold (0 == disabled) mu radio switch 80 0 0 80 0 0 80 0 0 80 0 0 80 0 0 80 0 0 80 0 0 80 0 0 80 0 0 Filter-Ageout (Secs) 80 80 80 80 80 80 80 80 80 Anomaly Analysis :: null-dst : same-src-dst : mcast-src : weak-wep-iv : tkip-cntr-meas...
CLI Guide
Page 286
... WIDS information is collected to (5 300) seconds. detect-window Sets the duration for is sent for analysis. can be enable or disable. Once collected, the information is 10 seconds. 3-250 WS2000 Wireless Switch System Reference Guide 3.48.2 Network WIDS set Command set excess-op filter-ageout Parameters mode Enables or disables WIDS. Syntax set [mode...-mode [mode|filter-ageout] set anomaly-mode mode set anomaly-mode filter-ageout set excess-op [threshold|filter-ageout] set excess-op threshold [mu|radio|switch] set Network WIDS Commands Sets the WIDPS parameters.
... WIDS information is collected to (5 300) seconds. detect-window Sets the duration for is sent for analysis. can be enable or disable. Once collected, the information is 10 seconds. 3-250 WS2000 Wireless Switch System Reference Guide 3.48.2 Network WIDS set Command set excess-op filter-ageout Parameters mode Enables or disables WIDS. Syntax set [mode...-mode [mode|filter-ageout] set anomaly-mode mode set anomaly-mode filter-ageout set excess-op [threshold|filter-ageout] set excess-op threshold [mu|radio|switch] set Network WIDS Commands Sets the WIDPS parameters.
CLI Guide
Page 289
Network CLI Commands Reference 3-253 crypto-replay-fails : 80 0 0 80 80211-replay-fails : 80 0 0 80 decrypt-fails : 80 0 0 80 unassoc-frames : 80 0 0 80 eap-starts : 80 0 0 80 Anomaly Analysis :: null-dst : same-src-dst : mcast-src : weak-wep-iv : tkip-cntr-meas : invalid-frame-len : Status enabled enabled enabled enabled enabled enabled Filter-Ageout (Secs) 120 120 120 120 120 120
Network CLI Commands Reference 3-253 crypto-replay-fails : 80 0 0 80 80211-replay-fails : 80 0 0 80 decrypt-fails : 80 0 0 80 unassoc-frames : 80 0 0 80 eap-starts : 80 0 0 80 Anomaly Analysis :: null-dst : same-src-dst : mcast-src : weak-wep-iv : tkip-cntr-meas : invalid-frame-len : Status enabled enabled enabled enabled enabled enabled Filter-Ageout (Secs) 120 120 120 120 120 120
CLI Guide
Page 290
3-254 WS2000 Wireless Switch System Reference Guide 3.48.3 Network WIDS show Command show Network WIDS Commands Displays the default WIDS configuration settings Syntax show [wids|filter] Parameters show wids WIDS feature is Detect Window : Enabled : ...-fails : decrypt-fails : unassoc-frames : eap-starts : Threshold (0 == disabled) mu radio switch 80 0 0 80 0 0 80 0 0 80 0 0 80 0 0 80 0 0 80 0 0 80 0 0 80 0 0 Filter-Ageout 80 80 80 80 80 80 80 80 80 Anomaly Analysis :: null-dst : same-src-dst : mcast-src : weak-wep-iv : tkip-cntr-meas...
3-254 WS2000 Wireless Switch System Reference Guide 3.48.3 Network WIDS show Command show Network WIDS Commands Displays the default WIDS configuration settings Syntax show [wids|filter] Parameters show wids WIDS feature is Detect Window : Enabled : ...-fails : decrypt-fails : unassoc-frames : eap-starts : Threshold (0 == disabled) mu radio switch 80 0 0 80 0 0 80 0 0 80 0 0 80 0 0 80 0 0 80 0 0 80 0 0 80 0 0 Filter-Ageout 80 80 80 80 80 80 80 80 80 Anomaly Analysis :: null-dst : same-src-dst : mcast-src : weak-wep-iv : tkip-cntr-meas...