Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
11698
Views
10
Helpful
17
Replies

DHCP Snooping WLC

Go to solution
julien Hernandez
Level 1
Level 1

‎12-05-2014 01:05 AM - edited ‎07-05-2021 02:04 AM

Hi,

I would like to DHCP snooping on the WLC.

Or a method to block DHCP pirate and authorized my DHCP.

Best Regards,

Julien Hernandez.

1 person had this problem
Labels:
0 Helpful
17 Replies 17

Go to solution
julien Hernandez
Level 1
Level 1
In response to Rasika Nayanajith

‎12-08-2014 08:02 AM

once the mac adress remove with IP 192.168.0.0 on the WLC other MAC adress IP 192.168.0.0 always present on the WLC.

 

But always different MAC adress with IP 192.168.0.0 on WLC.

 

Do you have an idea to allow my DHCP server and block the DHCP pirate.

0 Helpful

Go to solution
Rasika Nayanajith
VIP
VIP
In response to julien Hernandez

‎12-08-2014 11:32 AM

What would be the output looks like for "show client detail <client_mac_addr>" for a suspicious client.

Rasika

 

 

0 Helpful

Go to solution
julien Hernandez
Level 1
Level 1
In response to Rasika Nayanajith

‎12-09-2014 12:57 AM

Here the client 192.168.0.0 :

 

(Cisco Controller) >show client detail 1c:99:4c:6f:c6:96
Client MAC Address............................... 1c:99:4c:6f:c6:96
Client Username ................................. N/A
AP MAC Address................................... 44:ad:d9:57:fd:20
AP Name.......................................... AP-INDE-106
AP radio slot Id................................. 0
Client State..................................... Associated
Client NAC OOB State............................. Access
Wireless LAN Id.................................. 1
Hotspot (802.11u)................................ Not Supported
BSSID............................................ 44:ad:d9:57:fd:20
Connected For ................................... 8127 secs
Channel.......................................... 11
IP Address....................................... 192.168.0.155
Gateway Address.................................. Unknown
Netmask.......................................... Unknown
Association Id................................... 8
Authentication Algorithm......................... Open System
Reason Code...................................... 1
Status Code...................................... 0
Session Timeout.................................. 15000
Client CCX version............................... No CCX support
QoS Level........................................ Silver
Avg data Rate.................................... 0
Burst data Rate.................................. 0
Avg Real time data Rate.......................... 0
Burst Real Time data Rate........................ 0
802.1P Priority Tag.............................. disabled
CTS Security Group Tag........................... Not Applicable
KTS CAC Capability............................... No
WMM Support...................................... Enabled
  APSD ACs.......................................  BK  BE  VI  VO
Power Save....................................... ON
Current Rate..................................... m7
Supported Rates.................................. 5.5,11.0,6.0,9.0,12.0,18.0,
    ............................................. 24.0,36.0,48.0,54.0
Mobility State................................... Local
Mobility Move Count.............................. 0
Security Policy Completed........................ Yes
Policy Manager State............................. RUN
Policy Manager Rule Created...................... Yes
Audit Session ID................................. none
AAA Role Type.................................... none
Local Policy Applied............................. none
IPv4 ACL Name.................................... none
FlexConnect ACL Applied Status................... Unavailable
IPv4 ACL Applied Status.......................... Unavailable
IPv6 ACL Name.................................... none
IPv6 ACL Applied Status.......................... Unavailable
Layer2 ACL Name.................................. none
Layer2 ACL Applied Status........................ Unavailable
mDNS Status...................................... Disabled
mDNS Profile Name................................ none
No. of mDNS Services Advertised.................. 0
Policy Type...................................... N/A
Encryption Cipher................................ None
Protected Management Frame ...................... No
Management Frame Protection...................... No
EAP Type......................................... Unknown
FlexConnect Data Switching....................... Local
FlexConnect Dhcp Status.......................... Local
FlexConnect Vlan Based Central Switching......... No
FlexConnect Authentication....................... Central
Quarantine VLAN.................................. 0
Access VLAN...................................... 321
Client Capabilities:
      CF Pollable................................ Not implemented
      CF Poll Request............................ Not implemented
      Short Preamble............................. Implemented
      PBCC....................................... Not implemented
      Channel Agility............................ Not implemented
      Listen Interval............................ 10
      Fast BSS Transition........................ Not implemented
Client Wifi Direct Capabilities:
      WFD capable................................ No
      Manged WFD capable......................... No
      Cross Connection Capable................... No
      Support Concurrent Operation............... No
Fast BSS Transition Details:
Client Statistics:
      Number of Bytes Received................... 2526655
      Number of Bytes Sent....................... 2425132
      Total Number of Bytes Sent................. 2425132
      Total Number of Bytes Recv................. 2526655
      Number of Bytes Sent (last 90s)............ 64
      Number of Bytes Recv (last 90s)............ 6764
      Number of Packets Received................. 25105
      Number of Packets Sent..................... 5996
      Number of Interim-Update Sent.............. 0
      Number of EAP Id Request Msg Timeouts...... 0
      Number of EAP Id Request Msg Failures...... 0
      Number of EAP Request Msg Timeouts......... 0
      Number of EAP Request Msg Failures......... 0
      Number of EAP Key Msg Timeouts............. 0
      Number of EAP Key Msg Failures............. 0
      Number of Data Retries..................... 1018
      Number of RTS Retries...................... 0
      Number of Duplicate Received Packets....... 56
      Number of Decrypt Failed Packets........... 0
      Number of Mic Failured Packets............. 0
      Number of Mic Missing Packets.............. 0
      Number of RA Packets Dropped............... 0
      Number of Policy Errors.................... 0
      Radio Signal Strength Indicator............ -60 dBm
      Signal to Noise Ratio...................... 24 dB
Client Rate Limiting Statistics:
      Number of Data Packets Recieved............ 0
      Number of Data Rx Packets Dropped.......... 0
      Number of Data Bytes Recieved.............. 0
      Number of Data Rx Bytes Dropped............ 0
      Number of Realtime Packets Recieved........ 0
      Number of Realtime Rx Packets Dropped...... 0
      Number of Realtime Bytes Recieved.......... 0
      Number of Realtime Rx Bytes Dropped........ 0
      Number of Data Packets Sent................ 0
      Number of Data Tx Packets Dropped.......... 0
      Number of Data Bytes Sent.................. 0
      Number of Data Tx Bytes Dropped............ 0
      Number of Realtime Packets Sent............ 0
      Number of Realtime Tx Packets Dropped...... 0
      Number of Realtime Bytes Sent.............. 0
      Number of Realtime Tx Bytes Dropped........ 0
Nearby AP Statistics:
      AP-INDE-108(slot 0)
        antenna0: 5364 secs ago.................. -74 dBm
        antenna1: 5364 secs ago.................. -87 dBm
      AP-INDE-106(slot 0)
        antenna0: 5364 secs ago.................. -67 dBm
        antenna1: 5364 secs ago.................. -57 dBm
      AP-INDE-106(slot 1)
        antenna0: 5363 secs ago.................. -82 dBm
        antenna1: 5363 secs ago.................. -87 dBm
      AP-INDE-111(slot 0)
        antenna0: 5364 secs ago.................. -94 dBm
        antenna1: 5364 secs ago.................. -97 dBm
      AP-INDE-119(slot 0)
        antenna0: 5364 secs ago.................. -87 dBm
        antenna1: 5364 secs ago.................. -91 dBm
      AP-INDE-105(slot 0)
        antenna0: 5364 secs ago.................. -68 dBm
        antenna1: 5364 secs ago.................. -79 dBm
      AP-INDE-105(slot 1)
        antenna0: 5363 secs ago.................. -90 dBm
        antenna1: 5363 secs ago.................. -87 dBm
      AP-INDE-109(slot 0)
        antenna0: 5364 secs ago.................. -75 dBm
        antenna1: 5364 secs ago.................. -85 dBm
      AP-INDE-109(slot 1)
        antenna0: 5364 secs ago.................. -83 dBm
        antenna1: 5364 secs ago.................. -78 dBm
      AP-INDE-121(slot 0)
        antenna0: 14490 secs ago................. -91 dBm
        antenna1: 14490 secs ago................. -92 dBm
      AP-INDE-126(slot 0)
        antenna0: 8132 secs ago.................. -89 dBm
        antenna1: 8132 secs ago.................. -92 dBm
      AP-INDE-126(slot 1)
        antenna0: 38197 secs ago................. -93 dBm
        antenna1: 38197 secs ago................. -83 dBm
      AP-INDE-116(slot 0)
        antenna0: 5364 secs ago.................. -61 dBm
        antenna1: 5364 secs ago.................. -50 dBm
      AP-INDE-116(slot 1)
        antenna0: 5364 secs ago.................. -82 dBm
        antenna1: 5364 secs ago.................. -86 dBm
      AP-INDE-112(slot 0)
        antenna0: 5364 secs ago.................. -71 dBm
        antenna1: 5364 secs ago.................. -71 dBm
      AP-INDE-112(slot 1)
        antenna0: 5364 secs ago.................. -88 dBm
        antenna1: 5364 secs ago.................. -90 dBm
      AP-INDE-107(slot 0)
        antenna0: 8129 secs ago.................. -91 dBm
        antenna1: 8129 secs ago.................. -85 dBm
      AP-INDE-118(slot 0)
        antenna0: 5364 secs ago.................. -94 dBm
        antenna1: 5364 secs ago.................. -91 dBm
      AP-INDE-114(slot 0)
        antenna0: 5364 secs ago.................. -93 dBm
        antenna1: 5364 secs ago.................. -85 dBm
      AP-INDE-114(slot 1)
        antenna0: 38197 secs ago................. -93 dBm
        antenna1: 38197 secs ago................. -91 dBm
      AP-INDE-123(slot 0)
        antenna0: 5364 secs ago.................. -72 dBm
        antenna1: 5364 secs ago.................. -83 dBm
      AP-INDE-103(slot 0)
        antenna0: 5364 secs ago.................. -91 dBm
        antenna1: 5364 secs ago.................. -83 dBm
      AP-INDE-104(slot 0)
        antenna0: 5364 secs ago.................. -87 dBm
        antenna1: 5364 secs ago.................. -90 dBm
      AP-INDE-102(slot 0)
        antenna0: 5364 secs ago.................. -90 dBm
        antenna1: 5364 secs ago.................. -87 dBm
DNS Server details:
      DNS server IP ............................. 0.0.0.0
      DNS server IP ............................. 0.0.0.0
Assisted Roaming Prediction List details:


 Client Dhcp Required:     True
Allowed (URL)IP Addresses
-------------------------

 

 

(Cisco Controller) >show client detail ec:59:e7:e9:e5:68
Client MAC Address............................... ec:59:e7:e9:e5:68
Client Username ................................. N/A
AP MAC Address................................... 44:ad:d9:57:fd:20
AP Name.......................................... AP-INDE-106
AP radio slot Id................................. 0
Client State..................................... Associated
Client NAC OOB State............................. Access
Wireless LAN Id.................................. 1
Hotspot (802.11u)................................ Not Supported
BSSID............................................ 44:ad:d9:57:fd:20
Connected For ................................... 3043 secs
Channel.......................................... 11
IP Address....................................... 192.168.0.162
Gateway Address.................................. Unknown
Netmask.......................................... Unknown
Association Id................................... 4
Authentication Algorithm......................... Open System
Reason Code...................................... 1
Status Code...................................... 0
Session Timeout.................................. 15000
Client CCX version............................... No CCX support
QoS Level........................................ Silver
Avg data Rate.................................... 0
Burst data Rate.................................. 0
Avg Real time data Rate.......................... 0
Burst Real Time data Rate........................ 0
802.1P Priority Tag.............................. disabled
CTS Security Group Tag........................... Not Applicable
KTS CAC Capability............................... No
WMM Support...................................... Enabled
  APSD ACs.......................................  BK  BE  VI  VO
Power Save....................................... ON
Current Rate..................................... m7
Supported Rates.................................. 5.5,11.0,6.0,9.0,12.0,18.0,
    ............................................. 24.0,36.0,48.0,54.0
Mobility State................................... Local
Mobility Move Count.............................. 0
Security Policy Completed........................ Yes
Policy Manager State............................. RUN
Policy Manager Rule Created...................... Yes
Audit Session ID................................. none
AAA Role Type.................................... none
Local Policy Applied............................. none
IPv4 ACL Name.................................... none
FlexConnect ACL Applied Status................... Unavailable
IPv4 ACL Applied Status.......................... Unavailable
IPv6 ACL Name.................................... none
IPv6 ACL Applied Status.......................... Unavailable
Layer2 ACL Name.................................. none
Layer2 ACL Applied Status........................ Unavailable
mDNS Status...................................... Disabled
mDNS Profile Name................................ none
No. of mDNS Services Advertised.................. 0
Policy Type...................................... N/A
Encryption Cipher................................ None
Protected Management Frame ...................... No
Management Frame Protection...................... No
EAP Type......................................... Unknown
FlexConnect Data Switching....................... Local
FlexConnect Dhcp Status.......................... Local
FlexConnect Vlan Based Central Switching......... No
FlexConnect Authentication....................... Central
Quarantine VLAN.................................. 0
Access VLAN...................................... 321
Client Capabilities:
      CF Pollable................................ Not implemented
      CF Poll Request............................ Not implemented
      Short Preamble............................. Implemented
      PBCC....................................... Not implemented
      Channel Agility............................ Not implemented
      Listen Interval............................ 1
      Fast BSS Transition........................ Not implemented
Client Wifi Direct Capabilities:
      WFD capable................................ No
      Manged WFD capable......................... No
      Cross Connection Capable................... No
      Support Concurrent Operation............... No
Fast BSS Transition Details:
Client Statistics:
      Number of Bytes Received................... 13499
      Number of Bytes Sent....................... 7662
      Total Number of Bytes Sent................. 7662
      Total Number of Bytes Recv................. 13499
      Number of Bytes Sent (last 90s)............ 0
      Number of Bytes Recv (last 90s)............ 0
      Number of Packets Received................. 184
      Number of Packets Sent..................... 69
      Number of Interim-Update Sent.............. 0
      Number of EAP Id Request Msg Timeouts...... 0
      Number of EAP Id Request Msg Failures...... 0
      Number of EAP Request Msg Timeouts......... 0
      Number of EAP Request Msg Failures......... 0
      Number of EAP Key Msg Timeouts............. 0
      Number of EAP Key Msg Failures............. 0
      Number of Data Retries..................... 61
      Number of RTS Retries...................... 0
      Number of Duplicate Received Packets....... 2
      Number of Decrypt Failed Packets........... 0
      Number of Mic Failured Packets............. 0
      Number of Mic Missing Packets.............. 0
      Number of RA Packets Dropped............... 0
      Number of Policy Errors.................... 0
      Radio Signal Strength Indicator............ -70 dBm
      Signal to Noise Ratio...................... 18 dB
Client Rate Limiting Statistics:
      Number of Data Packets Recieved............ 0
      Number of Data Rx Packets Dropped.......... 0
      Number of Data Bytes Recieved.............. 0
      Number of Data Rx Bytes Dropped............ 0
      Number of Realtime Packets Recieved........ 0
      Number of Realtime Rx Packets Dropped...... 0
      Number of Realtime Bytes Recieved.......... 0
      Number of Realtime Rx Bytes Dropped........ 0
      Number of Data Packets Sent................ 0
      Number of Data Tx Packets Dropped.......... 0
      Number of Data Bytes Sent.................. 0
      Number of Data Tx Bytes Dropped............ 0
      Number of Realtime Packets Sent............ 0
      Number of Realtime Tx Packets Dropped...... 0
      Number of Realtime Bytes Sent.............. 0
      Number of Realtime Tx Bytes Dropped........ 0
Nearby AP Statistics:
      AP-INDE-120(slot 0)
        antenna0: 36159 secs ago................. -98 dBm
        antenna1: 36159 secs ago................. -97 dBm
      AP-INDE-115(slot 0)
        antenna0: 11075 secs ago................. -96 dBm
        antenna1: 11075 secs ago................. -96 dBm
      AP-INDE-108(slot 0)
        antenna0: 188 secs ago................... -96 dBm
        antenna1: 188 secs ago................... -95 dBm
      AP-INDE-106(slot 0)
        antenna0: 188 secs ago................... -78 dBm
        antenna1: 188 secs ago................... -67 dBm
      AP-INDE-111(slot 0)
        antenna0: 1451 secs ago.................. -98 dBm
        antenna1: 1451 secs ago.................. -95 dBm
      AP-INDE-119(slot 0)
        antenna0: 188 secs ago................... -87 dBm
        antenna1: 188 secs ago................... -95 dBm
      AP-INDE-122(slot 0)
        antenna0: 73165 secs ago................. -95 dBm
        antenna1: 73165 secs ago................. -95 dBm
      AP-INDE-105(slot 0)
        antenna0: 188 secs ago................... -85 dBm
        antenna1: 188 secs ago................... -86 dBm
      AP-INDE-109(slot 0)
        antenna0: 332 secs ago................... -91 dBm
        antenna1: 332 secs ago................... -89 dBm
      AP-INDE-121(slot 0)
        antenna0: 2708 secs ago.................. -98 dBm
        antenna1: 2708 secs ago.................. -96 dBm
      AP-INDE-126(slot 0)
        antenna0: 215 secs ago................... -84 dBm
        antenna1: 215 secs ago................... -86 dBm
      AP-INDE-116(slot 0)
        antenna0: 188 secs ago................... -61 dBm
        antenna1: 188 secs ago................... -61 dBm
      AP-INDE-112(slot 0)
        antenna0: 187 secs ago................... -83 dBm
        antenna1: 187 secs ago................... -85 dBm
      AP-INDE-107(slot 0)
        antenna0: 188 secs ago................... -89 dBm
        antenna1: 188 secs ago................... -90 dBm
      AP-INDE-118(slot 0)
        antenna0: 188 secs ago................... -95 dBm
        antenna1: 188 secs ago................... -98 dBm
      AP-INDE-114(slot 0)
        antenna0: 187 secs ago................... -83 dBm
        antenna1: 187 secs ago................... -85 dBm
      AP-INDE-113(slot 0)
        antenna0: 38981 secs ago................. -94 dBm
        antenna1: 38981 secs ago................. -95 dBm
      AP-INDE-123(slot 0)
        antenna0: 187 secs ago................... -73 dBm
        antenna1: 187 secs ago................... -65 dBm
      AP-INDE-117(slot 0)
        antenna0: 11013 secs ago................. -94 dBm
        antenna1: 11013 secs ago................. -97 dBm
      AP-INDE-103(slot 0)
        antenna0: 187 secs ago................... -70 dBm
        antenna1: 187 secs ago................... -80 dBm
      AP-INDE-104(slot 0)
        antenna0: 214 secs ago................... -95 dBm
        antenna1: 214 secs ago................... -91 dBm
      AP-INDE-102(slot 0)
        antenna0: 215 secs ago................... -87 dBm
        antenna1: 215 secs ago................... -88 dBm
      AP-INDE-100(slot 0)
        antenna0: 11014 secs ago................. -96 dBm
        antenna1: 11014 secs ago................. -96 dBm
      AP-INDE-101(slot 0)
        antenna0: 11013 secs ago................. -96 dBm
        antenna1: 11013 secs ago................. -95 dBm
DNS Server details:
      DNS server IP ............................. 0.0.0.0
      DNS server IP ............................. 0.0.0.0
Assisted Roaming Prediction List details:


 Client Dhcp Required:     True
Allowed (URL)IP Addresses
-------------------------

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card