Skip to main content

2 Messages

 • 

80 Points

Fri, Aug 26, 2016 2:39 PM

Client gets IP address before authentication

We are using web authentication and the problem is that clients are getting the IP address before entering the credentials, and they can ping, telnet on to other IP's on the same subnet etc.

Any ideas how solve this issue?

Responses

Brand User

Former Employee

 • 

2.6K Messages

 • 

44.8K Points

4 years ago

WebAuth clients are allowed to ARP, DHCP, DNS only before authentication, when they are allowed full network access.

Add Client Isolation to the WLAN, to prevent same AP client communications that you describe beforehand.

2 Messages

 • 

80 Points

Hi Michael,

Thank you for quick reply. So from your comment it looks like I shouldn't be able to ping or telnet on to other devices before authentication?
Also let me know if I am correct thinking that client isolation will prevent communication between clients after authentication?

What I want to achieve is that users should not be able to ping, telnet or do a packet capture before authentication but could do everything once authenticated?

Thanks,
Augustas