• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1492
  • Last Modified:

How to discover the IP address of a wireless access point without looking at the DHCP client list

I need to discover the IP addresses of a few Cisco 1300 access points in order to login to them and configure them.  Does anyone have any suggestions?  They are mounted pretty high so getting to them would be a pain in the A**!
0
JJMarquart
Asked:
JJMarquart
  • 4
  • 3
  • 2
  • +2
2 Solutions
 
cwalter9Commented:
Do you have access to any other cisco device on the same network?

You can use cdp (Cisco Discovery Protocol) to find some info about each one and hopefully which switch port it is on.

You can then use the mac address table and arp entries on the switch/router to find the IP address.

Let me know if you have access to a cisco device on the network already. If not we can look at using nmap (Network Mapper) to find them.
0
 
inbox788Commented:
You are a network administrator and not hacking, right?

You could try a sniffer like

http://www.kismetwireless.net/screenshot.shtml

or

http://www.stumbler.net/readme/readme_0_4_0.html

0
 
JJMarquartAuthor Commented:
I looking to be the new admin.  They want to replace the old one.  They want to know if I can manage their network.  Which I'm pretty sure I can.  One thing I am iffy about is they have a SBS server that is involved somehow with the wireless possibly for RAIDUS authentaction but you don't have to enter a logon to get on the network.  They also have a nomadix gateway too.

I use netsumbler all the time but never saw the IP of the AP just the AP and SSID.  Am I missing something? I don't work with Linux so not sure about Kismet, unless they have a windows app I'm not aware of.

Thanks for the feedback!
0
NEW Internet Security Report Now Available!

WatchGuard’s Threat Lab is a group of dedicated threat researchers committed to helping you stay ahead of the bad guys by providing in-depth analysis of the top security threats to your network.  Check out this quarters report on the threats that shook the industry in Q4 2017.

 
cwalter9Commented:
I was assuming you have the credentials to login to them correct? Otherwise, you are going to need to scissor lift on up there. I know it isn't fun trust me, I have had to do it a few times.
0
 
cwalter9Commented:
Do you have the username and password to login to the Cisco devices when we do find them? If not then we need to gain physical access to the devices. Knowing the IP address will not do much more than get you a login prompt that you can't do anything with or a web interface asking for the same. Since you are taking over a Cisco network I'm assuming you know the Cisco IOS?
0
 
JJMarquartAuthor Commented:
there is a 24 port managed Cisco switch but I don't have access to it at the moment.
0
 
JJMarquartAuthor Commented:
I was hoping for the default UN and PW to work.  If not I told them they would need to get that info from the current admin.
0
 
inbox788Commented:
I thought Netsumbler showed IPs, but maybe it doesn't. Looks like Ethereal does:

http://zedomax.com/image/200702/ethereal.jpg

http://www.ethereal.com/
0
 
cwalter9Commented:
If you can get on the Cisco switch you can do:

sh cdp neighbors

It will list each Cisco device on it and the port which it is connected to. It will also provide it's hostname if set, the type of device it is, if there are other switches on the network this would help you find those also.

Lets say that it told you that one of the APs was on port Gig3/36 then you can do:

#sh mac-address-table | inc 3/36
   1    0011.85d7.facc   dynamic ip                    GigabitEthernet3/36

Now you have the mac you can do:

sh arp | inc facc

Which will give you the IP address.

You could also download and bootup a Knoppix CD and use nmap to map the network.
0
 
Roachy1979Commented:
Nmap with OS detection will do it.  It'll certainly give you mac, ip and IOS version.

Got to www.insecure.org, download and install nmap and then run

Nmap -sS -sV -O 192.168.1.0/24

Against your ip range.
0
 
Alan HardistyCo-OwnerCommented:
You could try Softperfects Network Scanner (which is FREE) from http://www.download3k.com/Install-SoftPerfect-Network-Scanner.html.

We have used this to discover IP Addresses on networks when we don't know what we are looking for IP Address wise.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 4
  • 3
  • 2
  • +2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now