topic Web authentication allows DNS tunnelling in Wireless https://community.cisco.com/t5/wireless/web-authentication-allows-dns-tunnelling/m-p/854332#M20228 <P>Hi,</P><P></P><P>I have noticed that with only web authentication, the guest client can send DNS requests through the wireless network and out to the internet via the controller prior to being authenticated.</P><P></P><P>Then, using DNS tunnelling techniques, could surf the web, albeitly slowly, without authenticating.</P><P></P><P>Is there anyway to stop this other than turning on WPA/WEP authentication on the WLAN ?</P><P></P><P>Thanks</P><P></P><P>Lee</P> Sat, 03 Jul 2021 21:37:24 GMT lee.messenger 2021-07-03T21:37:24Z Web authentication allows DNS tunnelling https://community.cisco.com/t5/wireless/web-authentication-allows-dns-tunnelling/m-p/854332#M20228 <P>Hi,</P><P></P><P>I have noticed that with only web authentication, the guest client can send DNS requests through the wireless network and out to the internet via the controller prior to being authenticated.</P><P></P><P>Then, using DNS tunnelling techniques, could surf the web, albeitly slowly, without authenticating.</P><P></P><P>Is there anyway to stop this other than turning on WPA/WEP authentication on the WLAN ?</P><P></P><P>Thanks</P><P></P><P>Lee</P> Sat, 03 Jul 2021 21:37:24 GMT https://community.cisco.com/t5/wireless/web-authentication-allows-dns-tunnelling/m-p/854332#M20228 lee.messenger 2021-07-03T21:37:24Z Re: Web authentication allows DNS tunnelling https://community.cisco.com/t5/wireless/web-authentication-allows-dns-tunnelling/m-p/854333#M20229 <HTML><HEAD></HEAD><BODY><P>WPA authentication is a better method of authenticatiing the clients in the network.Wi-Fi Protected Access is a standards-based, interoperable security enhancement that strongly increases the level of data protection and access control for existing and future wireless LAN systems</P><P><A class="jive-link-custom" href="http://cisco.com/en/US/docs/wireless/access_point/12.2_11_JA/configuration/guide/s11auth_ps430_TSD_Products_Configuration_Guide_Chapter.html#wp1039377" target="_blank">http://cisco.com/en/US/docs/wireless/access_point/12.2_11_JA/configuration/guide/s11auth_ps430_TSD_Products_Configuration_Guide_Chapter.html#wp1039377</A></P><P><A class="jive-link-custom" href="http://www.cisco.com/en/US/products/hw/wireless/ps4570/products_configuration_example09186a00801c40b6.shtml" target="_blank">http://www.cisco.com/en/US/products/hw/wireless/ps4570/products_configuration_example09186a00801c40b6.shtml</A></P></BODY></HTML> Wed, 19 Sep 2007 20:22:38 GMT https://community.cisco.com/t5/wireless/web-authentication-allows-dns-tunnelling/m-p/854333#M20229 bwilmoth 2007-09-19T20:22:38Z