Wireless Access

Reply
Occasional Contributor II

Guest is able to list other user before authentication

Hi,

I have a Guest Wifi where people can get a list from other users on the Guest SSID using the "Fing" App on Android or Apple, even if they are just connected to the SSID but not authenticated.

The Guest logon-Role only allows DHCP and DNS, and forces all other traffic to be redirected to the captive Portal.

The "Deny Inter-User Traffic" is enabled on both logon-role (before the authentication) and guest Role (after a successful Guest authentication). I tried to activate the "Deny Inter-User Bridging" in the Stateful Firewall Options, but this blocks the whole Guest WLAN.

Did someone already have a similar case?

 

Thank you for your feedback,

Kind regards,

Nicolas.

Guru Elite

Re: Guest is able to list other user before authentication

Is drop broadcast/multicast enabled in the VAP?

Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Occasional Contributor II

Re: Guest is able to list other user before authentication

Hi Tim,

 

No it wasn't. I will inform my client to test it and let you know asap

 

Thanks.

Re: Guest is able to list other user before authentication

had it happen in a master / local scenario, but not seeing what you are using.

Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: