Improve company productivity with a Business Account.Sign Up

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 747
  • Last Modified:

How to find the IP address of the rogue access point using its MAC address

Hi

We user Cisco 4400 WLC . On WLC  console I have found some rogue access points detected and is  listed with is MAC address and its SSID. Is  there a utility /software to find the IP address of this device using the MAC Address of the listed rogue access point.


Thanks
0
lianne143
Asked:
lianne143
5 Solutions
 
Istvan KalmarHead of IT Security Division Commented:
Hi,

You need on capsa on your notebook:

http://www.youtube.com/watch?v=XxuIxLQY54g
0
 
ded_chCommented:
You could use a wireless device to connect to the rogue access point and then check the ip configuration you received. The Gateway entry would be the ip of the access point.

You can also check the ARP Table of a switch that is on the same network.
Or check the local ARP Table on a device that can see the access points mac  address using a command prompt to run:  arp -a
0
 
Darr247Commented:
Not unless it's on your network.
If it's on your network you can ping every address using a tool like Angry IP Scanner, which should make it show up in the output of
arp -a

Other than that, you can look up the manufacturer by the MAC address on lots of web sites.
e.g. http://www.macvendorlookup.com/
0
 
AkinsdNetwork AdministratorCommented:
Several options (ONLY if the device is in your network)
1- Use IP Scanners eg angry ip scanner, advanced ip scanner etc) - Then match the mac to ip on the list

2- Pinging the hostname (if known)
eg ping hostname
This will resolve the name to ip

3- Check the lease address on the DHCP router or DHCP server (whichever one you're using) then match the mac addresses on the list to the ip
0
 
Istvan KalmarHead of IT Security Division Commented:
IP scannaner usable only if you conneted to ROGUE AP, if you not connected you need capture with capsa
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Improved Protection from Phishing Attacks

WatchGuard DNSWatch reduces malware infections by detecting and blocking malicious DNS requests, improving your ability to protect employees from phishing attacks. Learn more about our newest service included in Total Security Suite today!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now