Unauthenticated clients in DHCP lease logs
-
I am seeing quite a few clients in DHCP that are not devices on my network. When I see them they are never active. I know they are not plugged into my network so they must be from wireless. I thought an IP address wouldn't be supplied until wireless was authenticated though. Is this not correct? Can you think of any other scenario where DHCP leases would be handed out to unauthenticated clients?
Thanks,
Tom
–-------------------------------------------------------------
PFSense used in Home Network Setup:Windows 8.1 Hyper-V Host running PFSense and a few other VMs
External vSwitch - Name: Outside
Physical Port > Cable Modem
Virtual Port > PFSense WAN InterfaceExternal vSwitch - Name: Inside
Pysical Port > Linksys EA6350 in Bridged Mode hosting WPA2 SSID
Virtual Port >PFSense LAN InterfaceInternal vSwitch - Name: Secure
Virtual Port > PFSense Opt1 Interface used for OpenVPN Gateway Group (5 different PrivateInternetAccess VPNs in failover cluster) -
Depends. How are clients on your wireless segment supposed to authenticate? If you're using a captive portal with an open wifi network, then any device that can see the network should be able to get a lease before they can authenticate to your CP. If your wireless network uses WEP or some other form of security, then clients shouldn't be getting a DHCP address before they enter the appropriate authentication key.
-
Not open, using WPA2, sorry I included that at the bottom but it kind of just looked like a signature. I don't understand how they were able to get an IP address.
Tom
-
What leases?? Dude a lease is not handed out unless there is a discover.. If there was a discover, then it will hand out a lease.. You understand P@55word! as your psk doesn't make it secure ;)
