Disable Broadcast Ssid

The following scenario shows how to disable SSID broadcasting which makes the device to not announce the SSID in the beacons associated to the configured network.

Disable SSID broadcasting

Description

In this example, a WLAN interface will be created on top of the 2.4GHz radio module in access-point mode. Then, SSID broadcasting will be disabled be mean of the disable-broadcast-ssid command.

Scenario

Example 1

Step 1: Set the following configuration in DUT0:

set controllers wlan radios wifi1 band 2.4GHz
set controllers wlan radios wifi1 channel 1
set interfaces bridge br0
set interfaces wlan wlan4 bridge-group bridge br0
set interfaces wlan wlan4 phy wifi1
set interfaces wlan wlan4 type access-point security akm none
set interfaces wlan wlan4 type access-point ssid network_2.4GHz

Note

By default, WLAN beacons are periodically announced so any WLAN station can detect the presence of an access point.

Step 2: Configure the MON device to listen for packets on channel 1 for 10s seconds discarding all packets not sent by DUT0. Then, apply the following filter to the captured traffic:

wlan.ssid == network_2.4GHz

At least one packet with the provided criteria must be present.

Step 3: Set the following configuration in DUT0:

set interfaces wlan wlan4 type access-point disable-broadcast-ssid

Warning

Disabling SSID broadcasting is considered a weak security measure since an attacker can just capture the WLAN traffic to detect the presence of the access point.

Step 4: Expect a failure in the following command: Configure the MON device to listen for packets on channel 1 for 10s seconds discarding all packets not sent by DUT0. Then, apply the following filter to the captured traffic:

wlan.ssid == network_2.4GHz

At least one packet with the provided criteria must be present.

---