topic Client gets IP address before authentication in Wireless Questions and Best Practices https://community.ruckuswireless.com/t5/Wireless-Questions-and-Best/Client-gets-IP-address-before-authentication/m-p/42976#M2101 We are using web authentication and the problem is that clients are getting the IP address before entering the credentials, and they can ping, telnet on to other IP's on the same subnet etc. <BR /><BR />Any ideas how solve this issue? Fri, 26 Aug 2016 14:39:20 GMT augustas_margys 2016-08-26T14:39:20Z Client gets IP address before authentication https://community.ruckuswireless.com/t5/Wireless-Questions-and-Best/Client-gets-IP-address-before-authentication/m-p/42976#M2101 We are using web authentication and the problem is that clients are getting the IP address before entering the credentials, and they can ping, telnet on to other IP's on the same subnet etc. <BR /><BR />Any ideas how solve this issue? Fri, 26 Aug 2016 14:39:20 GMT https://community.ruckuswireless.com/t5/Wireless-Questions-and-Best/Client-gets-IP-address-before-authentication/m-p/42976#M2101 augustas_margys 2016-08-26T14:39:20Z Re: Client gets IP address before authentication https://community.ruckuswireless.com/t5/Wireless-Questions-and-Best/Client-gets-IP-address-before-authentication/m-p/42977#M2102 WebAuth clients are allowed to ARP, DHCP, DNS only before authentication, when they are allowed full network access.<BR /><BR />Add Client Isolation to the WLAN, to prevent same AP client communications that you describe beforehand. Fri, 26 Aug 2016 18:16:48 GMT https://community.ruckuswireless.com/t5/Wireless-Questions-and-Best/Client-gets-IP-address-before-authentication/m-p/42977#M2102 michael_brado 2016-08-26T18:16:48Z Re: Client gets IP address before authentication https://community.ruckuswireless.com/t5/Wireless-Questions-and-Best/Client-gets-IP-address-before-authentication/m-p/42978#M2103 Hi Michael,<BR /><BR />Thank you for quick reply. So from your comment it looks like I shouldn't be able to ping or telnet on to other devices before authentication? <BR />Also let me know if I am correct thinking that client isolation will prevent communication between clients after authentication?<BR /><BR />What I want to achieve is that users should not be able to ping, telnet or do a packet capture before authentication but could do everything once authenticated?<BR /><BR />Thanks,<BR />Augustas Tue, 30 Aug 2016 08:58:12 GMT https://community.ruckuswireless.com/t5/Wireless-Questions-and-Best/Client-gets-IP-address-before-authentication/m-p/42978#M2103 augustas_margys 2016-08-30T08:58:12Z