Rogue AP Containment Methods:
HPE Aruba Networking recommends using wireless deauthentication as the preferred method for rogue AP containment.
Deauthentication sends deauth frames to clients connected to rogue APs, causing them to disconnect. This method is effective without introducing unnecessary disruptions to the wired infrastructure.
Key Points:
Wireless Deauthentication is simple, efficient, and widely supported across client devices.
Tarpit Containment is more aggressive and may cause unintentional disruptions to legitimate clients.
Wired Containment involves blocking traffic at the switch level but is complex and may impact legitimate infrastructure traffic.
Option Analysis:
Option A: Correct. Wireless deauthentication is the recommended method as it targets rogue AP clients without excessive network impact.
Option B: Incorrect. Combining wireless tarpit and wired containment is overkill and not typically recommended.
Option C: Incorrect. Wireless tarpit can be effective but is generally not the first choice due to its aggressive nature.
Option D: Incorrect. Wired containment is more complex and reserved for specific use cases, not general recommendations.
