On 2020-09-21 15:59, Cody Ensain wrote: > Which makes sense to me: pre-upgrade its the devices real mac > address/IP which is known by the controller... post-upgrade the > "private address" toggle is turned on by default, so IOS generates a > random mac address for any wireless network profile on the device. > Now, the phone tries sending traffic with new-mac/IP combo and of > course the controller now thinks its ARP spoofing.
That doesn't make sense to me. The MAC is generated before the device associates. Once it has associated/auth'd, it will do DHCP and get a new address. From the controller's perspective, it just looks like a totally new device, not something spoofing. I could be missing something, though. -- Jonathan Waldrep Network Engineer Network Infrastructure and Services Virginia Tech ********** Replies to EDUCAUSE Community Group emails are sent to the entire community list. If you want to reply only to the person who sent the message, copy and paste their email address and forward the email reply. Additional participation and subscription information can be found at https://www.educause.edu/community
signature.asc
Description: PGP signature
