Hi all- first post.
I have two AC-68U routers running ASUS-Merlin 384.9 firmware. One router is in router mode, the other is in repeater mode.
WPA2 authentication is on, webgui disabled on the WAN side, upnp and wps are disabled according to the webgui. No other holes poked in the firewall for VPN, ssh, etc.
I'm seeing DHCP leases for several devices I don't recognize, and corresponding WLCEVENTD assoc events for their MAC addresses. I can't tell if the devices are authenticating and they don't show up on the network map.
Questions:
1. Does DHCP lease IP addresses on wireless assoc, prior to wireless authentication? IOW, is this just neighborhood devices trying to see if my network is open?
2. What's the best way to log wireless authentication history and network activity for a particular mac address?
Thank you all!
I have two AC-68U routers running ASUS-Merlin 384.9 firmware. One router is in router mode, the other is in repeater mode.
WPA2 authentication is on, webgui disabled on the WAN side, upnp and wps are disabled according to the webgui. No other holes poked in the firewall for VPN, ssh, etc.
I'm seeing DHCP leases for several devices I don't recognize, and corresponding WLCEVENTD assoc events for their MAC addresses. I can't tell if the devices are authenticating and they don't show up on the network map.
Questions:
1. Does DHCP lease IP addresses on wireless assoc, prior to wireless authentication? IOW, is this just neighborhood devices trying to see if my network is open?
2. What's the best way to log wireless authentication history and network activity for a particular mac address?
Thank you all!