A user connected his smart phone to the “Guest” SSID (no authentication for this) and get a Guest IP address. He also connected his company provided laptop to the “Employee” SSID with machine+user authentication and get Employee IP address. Later the user tethered his smart phone to his laptop trying to access Employee resources on the smart phone. When the two machines are tethered they are seen, by the distribution router where the controller is connected to, as only one MAC address with two IP addresses. The distribution router shuts off the ports that are connected to the controller to avoid a loop. The APs lost connection to the controller resulting in wireless network outage.
Is there any log in the controller that shows what happen? Is there any feature that can be enabled/configured in the controller that can avoid this in the future?