2 Comments on “Which of the following statements are true regarding RLDP?”

1. Carlos Valentin says:

   January 3, 2014 at 10:33 pm

   You can make an AP operate as a rogue detector, which allows it to be placed on a trunk port so that it can hear all wired-side connected VLANs. It proceeds to find the client on the wired subnet on all the VLANs. The rogue detector AP listens for Address Resolution Protocol (ARP) packets in order to determine the Layer 2 addresses of identified rogue clients or rogue APs sent by the controller. If a Layer 2 address that matches is found, the controller generates an alarm that identifies the rogue AP or client as a threat. This alarm indicates that the rogue was seen on the wired network.

   RLDP is an active approach, which is used when rogue AP has no authentication (Open Authentication) configured. This mode, which is disabled by default, instructs an active AP to move to the rogue channel and connect to the rogue as a client. During this time, the active AP sends deauthentication messages to all connected clients and then shuts down the radio interface. Then, it will associate to the rogue AP as a client.

   
   
   
   0

   
   
   
   0
2. John says:

   March 26, 2015 at 6:06 am

   (CCNP Wireless IAUWS QR)
   Rogue Location Discovery Protocol (RLDP) can be used by any local or monitor mode AP to help determine whether a rogue is on the wired network. After a rogue has been detected the WLC contacts one of its local mode APs. The AP pretends to be a client device and attempts 802.11 authentication and association. If no security is configured on the rogue, the managed AP will succeed, after which it requests an IP address and then sends a test packet to the controller. If all of this is successful, the rogue has been shown to be on the wired network. Note that if the rogue uses any kind of security other than open authentication (for example, static WEP or WPA/PSK), RLDP will fail.

   
   
   
   0

   
   
   
   0