Hello,
I am looking into configuring Dynamic ARP Inspection and DHCP snooping on my network. While the configuration is pretty straight forward, I am not finding much information in regards to wireless deployments. My networks utilizes a single vlan for both wired and wireless clients. Obviously, I do not want to disable ports which would affect other users. Instead I would like an malicious traffic to be dropped and logged. The primary objective is to prevent cell phone based man in the middle attacks. Has anyone deployed these technologies in a similar environment?
Thanks