Jump to content



Photo

Monitor WiFi access points

wifi monitoring email notifications

  • Please log in to reply
35 replies to this topic

#1 c.grz

c.grz

    Neowinian

  • Joined: 22-September 04
  • Location: Chicago, Illinois
  • OS: Windows 8.1U1 Professional
  • Phone: Nokia Lumia 925

Posted 13 December 2012 - 23:00

Hi,

I work for a local government agency and we support both Police and Fire. We're currently having issues with people at the fire stations bringing in their own hotspots to bypass our proxy.

I'm wondering if there's a program that will scan for new wifi SID's and notify us via email when one pops up. These buildings are big and we rarely see any external wifi network show up so we know if a wifi SID pops up; it'll be from within the building.

Anybody know of a program that will give us that ability?

I've looked at a few but most don't have notifications of new networks. Cost isn't an issue.

All help is appreciated!!


#2 sc302

sc302

    Neowinian Senior

  • Tech Issues Solved: 30
  • Joined: 12-July 05
  • Location: NJ, USA

Posted 14 December 2012 - 02:43

The simple answer is no. The more explained answer is you are asking a system to monitor the air waves for any new ssids that pop up. These can come from anywhere. The best you can do is lock down your computers to a certain ssid and do not allow them to connect to anything else. Their computers and phones are their problems and you do not support them. I worked at local government on the municipality level as it support. You have absolutely no right to stop someone from bringing in their equipment and using their equipment. You have absolutely every right to lock your computers down so tight that if they sneeze on it you get notified.

#3 Raa

Raa

    Resident president

  • Tech Issues Solved: 7
  • Joined: 03-April 02
  • Location: NSW, Australia

Posted 14 December 2012 - 02:55

You could always introduce some wireless interference so their hotspots won't work. Bit on the dodgy side perhaps...

#4 Dot Matrix

Dot Matrix

    Neowinian Senior

  • Tech Issues Solved: 7
  • Joined: 14-November 11
  • Location: Upstate New York
  • OS: Windows 8.1
  • Phone: Nokia Lumia 920

Posted 14 December 2012 - 02:59

Maybe Inssider? Don't think it sends out e-mails, but it certainly logs the time first seen, and time last seen, for later study.

#5 francescob

francescob

    Neowinian Senior

  • Tech Issues Solved: 1
  • Joined: 04-November 08

Posted 14 December 2012 - 03:04

You can write a very easy script for that because there's the "netsh wlan show networks mode=bssid" command that returns all the data about the detected networks (also useful for knowing the wifi channels of nearby networks in case you need to avoid interference). There are many powershell examples that show how to parse the result of the command, you only need to add some conditions to exclude your own known wifis and a few commands to send the email (both very easy tasks for which you can find plenty of examples on the web).

#6 trek

trek

    7 / X

  • Joined: 11-August 02
  • Location: Vancouver, Canada

Posted 14 December 2012 - 07:23

Cisco CleanAir can automatically tag and isolate rouge AP's. Though you're looking at a WLAN controller and Enterprise level AP's

#7 dvb2000

dvb2000

    Neowinian

  • Joined: 21-November 07

Posted 14 December 2012 - 07:58

Cisco CleanAir can automatically tag and isolate rouge AP's. Though you're looking at a WLAN controller and Enterprise level AP's


Won't work, they are bringing in their own hotspots, not access points connected to the local network.

Actually what this guy wants to do is impossible, pretty much anyone with a phone these days can connect DIRECTLY to their own personal internet bypassing any proxy these guys are trying to use to filter THEIR corporate internet. Most smartphones will also allow their own broadband connection to be used as a hotspot too, or even using the USB port as a modem without broadcasting anything.

#8 dvb2000

dvb2000

    Neowinian

  • Joined: 21-November 07

Posted 14 December 2012 - 08:08

I work for a local government agency and we support both Police and Fire. We're currently having issues with people at the fire stations bringing in their own hotspots to bypass our proxy.


I doubt you can do what you want, but even if you tried to no doubt the staff would tell you to bugger off and mind your own business/network. You can't stop them using their own network on their own phones/devices.

You could always introduce some wireless interference so their hotspots won't work. Bit on the dodgy side perhaps...


that would be illegal :)

and would affect their own Access Points as well (if they are using them)

#9 sc302

sc302

    Neowinian Senior

  • Tech Issues Solved: 30
  • Joined: 12-July 05
  • Location: NJ, USA

Posted 14 December 2012 - 11:26

It isn't the staffs choice. First the the township manager signs off (everybody in the municipalities boss) then the chief of police signs off. Fire chief has no pull against their wishes nor does any other director. Then I push policies using ad group policies, I don't touch their computers at all and the default image only gives users user rights, no power user or admin level access.

There is a hierchy that needs to be followed and the end users have no say in the matter, even the patrolmen. The patrolmen had access to about 30 approved government sites, they were ****ed and tried to get that lifted...that got them a big can of shut the hell up from management.

#10 OP c.grz

c.grz

    Neowinian

  • Joined: 22-September 04
  • Location: Chicago, Illinois
  • OS: Windows 8.1U1 Professional
  • Phone: Nokia Lumia 925

Posted 14 December 2012 - 15:11

I doubt it was possible but the IT Director asked that I pursue this per the request of the Fire Chief.

I guess we'll just have to update our IT policy forbidding the use of wireless devices not approved for use by the I.T. Department.

#11 Draconian Guppy

Draconian Guppy

    LippyZillaD Council

  • Tech Issues Solved: 3
  • Joined: 22-August 04
  • Location: Neowin

Posted 14 December 2012 - 15:16

I doubt it was possible but the IT Director asked that I pursue this per the request of the Fire Chief.

I guess we'll just have to update our IT policy forbidding the use of wireless devices not approved for use by the I.T. Department.


Not my business, but what's wrong with people using their own devices? Like pointed above, any smartphone can function as a hotspot :/ Are you going to forbid smartphones?

(Don't mean to sound like a jerk, just curious is all).

#12 Dot Matrix

Dot Matrix

    Neowinian Senior

  • Tech Issues Solved: 7
  • Joined: 14-November 11
  • Location: Upstate New York
  • OS: Windows 8.1
  • Phone: Nokia Lumia 920

Posted 14 December 2012 - 15:53

Not my business, but what's wrong with people using their own devices? Like pointed above, any smartphone can function as a hotspot :/ Are you going to forbid smartphones?

(Don't mean to sound like a jerk, just curious is all).


From the sound of things, it sounds as if they are using their own hotspots with work-issued devices.

#13 xpablo

xpablo

    XPablo

  • Joined: 11-December 01
  • OS: Windows 7 Pro

Posted 14 December 2012 - 15:56

Not my business, but what's wrong with people using their own devices? Like pointed above, any smartphone can function as a hotspot :/ Are you going to forbid smartphones?

(Don't mean to sound like a jerk, just curious is all).


Are you kidding? on a corporate laptop or computer, it could be a huge security risk, not to mention any confidential data on the computers..

Here's some reading on securing your airwaves.

http://www.arubanetw...al_security.pdf

Here are some solutions to your problem.

http://www.arubanetw.../solutions/msp/

#14 Draconian Guppy

Draconian Guppy

    LippyZillaD Council

  • Tech Issues Solved: 3
  • Joined: 22-August 04
  • Location: Neowin

Posted 14 December 2012 - 16:14

Are you kidding? on a corporate laptop or computer, it could be a huge security risk, not to mention any confidential data on the computers..

Here's some reading on securing your airwaves.

http://www.arubanetw...al_security.pdf

Here are some solutions to your problem.

http://www.arubanetw.../solutions/msp/


Yeah i'm probably "desensitized" on sensitive information... :p
BUTT that said, disabling wifi is easy, installing group policies as well. Eg email SHOULDn'T if not in same domain. Most desktops shouldn't have admin. privileges to install a wifi dongle (seeing as how most desktop don't come with built in wifi) etc...

#15 sc302

sc302

    Neowinian Senior

  • Tech Issues Solved: 30
  • Joined: 12-July 05
  • Location: NJ, USA

Posted 14 December 2012 - 16:30

The solution to the problem is a cell phone jammer. But that creates issues on a whole different level.