Hi all i am probably being really 'fick' here but can anyone tell me definitively what happens first when an ipod/iphone device connects to the network. Does it get issued an ip address from dhcp and then have to authenticate via any wireless security or is that it has to authenticate before it gets an ip.
I ask because my dhcp server is filling up with iphone/ipods and i can't imagine them guessing ir being told the wpa keys.
As always thanks in advance for any help.
Uraken
AFAIK any wireless device authenticates with the Access Point before the dhcp request is sent across the rest of the network.
Thats how i would of thought it happened but this does not explain the dhcp leases also what protocol dooe sit use? if its tcp surely it must have an ip to do this?
The protocal would be TCP and no it does not need an IP to do this. What happens is the device broadcasts a dhcp request packet across the network and awaits for a reply to be broadcast back. AFAIK, all machine on the network would receive both network packets as they are broadcast to the network as a whole and not directed to any one machine. Only the dhcp server will respond to the first packet, all other PC's will simply discard the packet. Simarly on the PC requesting an IP address, assuming it's marked with the PC's MAC address, would open and use the responding packet - again all other computers will receive and ignore that packet.
You are right, it doesn't explain the leases.
Are all the leases live at the same time? Is it one, or a handful of devices, that have been given the AP key requesting an address multiple times. Maybe days or hours apart?
Wrong. http://www.faqs.org/rfcs/rfc2131.htmlOriginally Posted by tmcd35
tmcd35 (8th November 2010)
We are having a similar problem with ipods filling up our IP addresses. However we know that some silly bugger has leaked our WEP key to the Sixth Form so am having to think about changing the SSID throughout the school.
I don't suppose anyone knows a way, using built in Windows features, that I can block these ipods receiving an IP once I have a list of their MAC addresses??
Give them a reservation with a stupid IP.
themightymrp (8th November 2010)
DOH! Why didn't I think of that before??!! Cheers
there is also block/allow built into the newer versions of DHCP server. 2008 R2 yes. 2008 maybe. 2003 downloadable add-in.
but yes reservation with stupid ip would be preferable
If you have an Windows 2008 R2 DHCP server you can create a mac-address block list
bio..
Because they are all apple devices - just a thought here, am guessing they all use the same make of network card so the first part of the mac address should be the same, is there anyway to use a wild card or the likes when you use a dhcp reservation to dish out daft network details ??
Ban all Apple devices from the network, I like the way you think
mac_shinobi (9th November 2010)
Nope, and it would be short-sighted to do so anyway.
and odds on they are say broadcom/realtek wifi cards anyway rather than really apple so you would probably wnd up blocking legit laptops etc
as mentioned simplest way is just to give them a stupid ip reservation
mac_shinobi (9th November 2010)
OK, the block feature of DHCP is built in to 2008 R2 only. However with this free add-in you can add the feature to 2003 or 2008 R1 server
DHCP Server Callout DLL for MAC Address based filtering - Microsoft Windows DHCP Team Blog - Site Home - TechNet Blogs
All you need to do is modify a TXT file to tell it to deny the following MAC addresses and then populate as many MAC's as you can find! Personally I just went down the list of DHCP leases and looked for obvious ones such as 'Dannys-ipod'. The MAC's are right there in the console. Working a treat so farHave managed to block 43 devices this morning!
Uraken (9th November 2010)
There are currently 1 users browsing this thread. (0 members and 1 guests)
Posting Permissions
LinkBack URL
About LinkBacks