CCIE Wireless: countermeasure tkip hold-time

Monday, 7 February 2011

countermeasure tkip hold-time

Use this to freeze out clients that perform an attack such as a bit-flip. To be applied per radio.

Use the countermeasure tkip hold-time configuration interface command to configure a TKIP MIC failure holdtime. If the access point detects two MIC failures within 60 seconds, it blocks all the TKIP clients on that interface for the holdtime period.

countermeasure tkip hold-time seconds

Syntax Description


seconds	Specifies the length of the TKIP holdtime in seconds (if the holdtime is 0, TKIP MIC failure hold is disabled)

Defaults

TKIP holdtime is enabled by default, and the default holdtime is 60 seconds.

Command Modes

Configuration interface

Command History


Release	Modification
12.2(11)JA	This command was introduced.

Examples

This example shows how to configure the TKIP holdtime on the access point radio:

ap(config-if)# countermeasure tkip hold-time 120

1 comment:

Ruwan5 September 2017 at 20:43
cheers
ReplyDelete
Replies

Add comment

Search This Blog

Monday, 7 February 2011

countermeasure tkip hold-time

countermeasure tkip hold-time

Use this to freeze out clients that perform an attack such as a bit-flip. To be applied per radio.

Syntax Description

Defaults

Command Modes

Command History

Examples

1 comment: