I have a sector that have a deauth attack “data from unknown device XX:XX:XX:XX:XX:XX sent deauth” (10 seconds between different macs).
I’m reading the docs:
http://sysnet.ucsd.edu/~bellardo/pubs/usenix-sec03-80211dos-slides.ppt
http://sysnet.ucsd.edu/~bellardo/pubs/jsoe04-80211dos-poster.pdf
but I not know how made on routeros this technique of defence?
Other possibilities of defence? (I think in buy a rifle for solution this attack)
To enable MAC-address security, set default-auhtentication=no to wireless AP, and add clients to access-list.
Security-profiles provide with more advanced security WEP,WPA,WPA2.
Yes, I have enable MAC-address security, and default-auhtentication=no, and hide SSID = yes, but I not use advanced security WEP,WPA,WPA2.
Actually I have problems for use security, because I use differents cpe Engenius-Senao, Linksys, dlink, Mikrotik, I’m migrating all cpe to 112 mikrotik, and I was waiting to end this migration to enable WPA2.
But I have doubts if enable WEP,WPA,WPA2 can stop a deauth attack