Which of the following statements are true regarding RLDP?

Which of the following statements are true regarding RLDP? (Choose two)

Which of the following statements are true regarding RLDP? (Choose two)

A.
RLDP works only on APs configured in Open Authentication mode.

B.
RLDP only works if the AP is in Monitor Mode.

C.
RLDP will attempt to identify each Rogue AP only once.

D.
RLDP only works if the Rogue AP is connected to a VLAN that is reachable by the WLC.

E.
RLDP only works if the AP is in Local Mode.



Leave a Reply 2

Your email address will not be published. Required fields are marked *


Carlos Valentin

Carlos Valentin

You can make an AP operate as a rogue detector, which allows it to be placed on a trunk port so that it can hear all wired-side connected VLANs. It proceeds to find the client on the wired subnet on all the VLANs. The rogue detector AP listens for Address Resolution Protocol (ARP) packets in order to determine the Layer 2 addresses of identified rogue clients or rogue APs sent by the controller. If a Layer 2 address that matches is found, the controller generates an alarm that identifies the rogue AP or client as a threat. This alarm indicates that the rogue was seen on the wired network.

RLDP is an active approach, which is used when rogue AP has no authentication (Open Authentication) configured. This mode, which is disabled by default, instructs an active AP to move to the rogue channel and connect to the rogue as a client. During this time, the active AP sends deauthentication messages to all connected clients and then shuts down the radio interface. Then, it will associate to the rogue AP as a client.

John

John

(CCNP Wireless IAUWS QR)
Rogue Location Discovery Protocol (RLDP) can be used by any local or monitor mode AP to help determine whether a rogue is on the wired network. After a rogue has been detected the WLC contacts one of its local mode APs. The AP pretends to be a client device and attempts 802.11 authentication and association. If no security is configured on the rogue, the managed AP will succeed, after which it requests an IP address and then sends a test packet to the controller. If all of this is successful, the rogue has been shown to be on the wired network. Note that if the rogue uses any kind of security other than open authentication (for example, static WEP or WPA/PSK), RLDP will fail.