From: David Meuleman (dmeuleman@defiance.edu)
Date: Wed Oct 15 2003 - 07:35:18 CDT
Robert,
If a student has a NAT firewall router such as the Linksys BEFSR41, I
would doubt that you would notice (assuming it is configured correctly).
If it was in place when they first registered, the MAC of the firewall
will be what is registered. On top of that, many of these have what is
known as "MAC Address Cloning," which allows them use any MAC they want to
broadcast in order to receive an IP. While it goes against our policy of
a "port per pillow," since I have no way to discover their existence...I'm
assuming they aren't there. :P
You mentioned having the router connected backwards. We did have a
similar situation, where a girl was using her computer at home for ICS
while dialed up to AOL. She forgot to turn off ICS when she came to
school and it was giving out leases. Took us a couple hours and several
strange tech support calls to realize what was happening.
Finally, at some point I plan to go warwalking through the residence halls
to find wireless APs that are connected to our network. If they are
secure with WEP, that will be good for me. But if I can walk by a room
and get connected with no kind of encryption, varification, or access
list, they are getting shut down. This instruction has come from the CFO.
Dave
On Tue, 14 Oct 2003 12:25:05 -0500, Robert Lowe
<Robert.H.Lowe@lawrence.edu> wrote:
> Hi!
>
> I'm curious about what some of you are doing to deal with WAPs and other
> small router boxes. Verboten? How do you find them? Or, if you allow
> them, have you noticed that if a user registers while behind one that the
> MAC address of the WAP/router is registered, not the computer's? The the
> device is capable of NAT, then things can get really interesting. Any
> useful strategies?
>
> I've had a couple that were mis-configured, or even connected backwards
> so that I suddenly had a rogue DHCP server/router on the LAN side, such
> that other students were getting RFC 1918 addresses, but getting service
> by being routed through the DSL/Cable router.
>
> -Robert
>
> **********************************************************************
> To unsubscribe from this list, send an e-mail message to
> majordomo@southwestern.edu containing a single line with the words:
> unsubscribe netreg
> Send requests for assistance to: owner-netreg@southwestern.edu
> **********************************************************************
-- ********************************************************************** To unsubscribe from this list, send an e-mail message to majordomo@southwestern.edu containing a single line with the words: unsubscribe netreg Send requests for assistance to: owner-netreg@southwestern.edu **********************************************************************
This archive was generated by hypermail 2.1.4 : Thu Aug 12 2004 - 12:01:41 CDT