Wireless Access

last person joined: 13 hours ago 

Access network design for branch, remote, outdoor, and campus locations with HPE Aruba Networking access points and mobility controllers.
Back to discussions
Expand all | Collapse all

Guest is able to list other user before authentication

This thread has been viewed 0 times

  • 1.  Guest is able to list other user before authentication

    Posted Mar 23, 2016 02:50 PM

    Hi,

    I have a Guest Wifi where people can get a list from other users on the Guest SSID using the "Fing" App on Android or Apple, even if they are just connected to the SSID but not authenticated.

    The Guest logon-Role only allows DHCP and DNS, and forces all other traffic to be redirected to the captive Portal.

    The "Deny Inter-User Traffic" is enabled on both logon-role (before the authentication) and guest Role (after a successful Guest authentication). I tried to activate the "Deny Inter-User Bridging" in the Stateful Firewall Options, but this blocks the whole Guest WLAN.

    Did someone already have a similar case?

     

    Thank you for your feedback,

    Kind regards,

    Nicolas.



  • 2.  RE: Guest is able to list other user before authentication

    EMPLOYEE
    Posted Mar 23, 2016 03:09 PM
    Is drop broadcast/multicast enabled in the VAP?


  • 3.  RE: Guest is able to list other user before authentication

    Posted Mar 24, 2016 05:13 AM

    Hi Tim,

     

    No it wasn't. I will inform my client to test it and let you know asap

     

    Thanks.



  • 4.  RE: Guest is able to list other user before authentication

    Posted Mar 26, 2016 10:38 AM

    had it happen in a master / local scenario, but not seeing what you are using.