NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
NETGEAR ProSafe™ Gigabit Quad WAN SSL VPN Firewall SRX5308
Hii all,
we have a netgear firewall in our company.
we have addedd our all device in this. we have to desable private/random mac adress in our device/mobile phones first, then we can connect to the wifi.
in all devices internet is working well but when i add an iphone with device mac address in this firewall it connects but in my iphone it shows an privacy warning in that warning msg it asking for enable private mac addess and internet also not working. but if i eable private mac addess. but if i enable private mac address firwall won't recogize my iphone and internet will not work
plzz help me...
your reply will appreaciated
thanks
3 Replies
There are some more reasons why iOS complains about privacy issues.
Of course, like a good network admin, you have added the device MAC to the access list. For a test, you can enable the random MAC on one of your iPhones, remove the SSID/wireless config for your business network, and associate it again with the wireless network. Before this device can work, you need to check the random MAC (shown on the device, too), and add this to your router access list. Now the test device can access the WiFi, your business network, and the Internet.
Let it run, and see if the privacy warning is coming back. Most likely, it is. Apple (different from Android which has the random MAC enabled for new wireless connection) does expect more, like encrypted DNS like DoT (DNS over TLS) which the DNS service on the router not support, or the availability of DoH (DNS over HTTPS). Both "features" (while fine when using public WiFi networks) prohibit any local DNS, prohibit content filtering based on DNS names resolved, ...). Probably, it also expects DNSsec on the DNS server, but this is again a DNS protocol extension (similar to DoT) - but this does in my understanding "just" proof the trust of the data received.
Over all, for a business and even a home network is more of a pain. Especially the intrusive privacy warning.
hii,
i have tried with private mac address. with this my iphone connects but after sometime it automatically disconnect or next time it doesn't connect becouse of private mac address is changed. and second problem is that we have multiple wifi's API in our office so when i connect an iphone to any one wifi api and add its random mac adress at that time it's done but after this when i tries to connect another wifi its showing mac address issues(showing obtaining ip address)
in simple words it will not done with random mac address
plz tell any way to connect with device mac address
mohitpanwar_it wrote:
i have tried with private mac address. with this my iphone connects but after sometime it automatically disconnect or next time it doesn't connect becouse of private mac address is changed.
to my knowledge, the Apple random MAC is persistant, as long as you connect to the same network (read the same SSID and the same default gateway - no matter how many APs are involved. On newer OS versions, there is a certain retention in place, e.g. if the network was not used for six weeks, or if the network settings were reset. FMI: https://support.apple.com/en-us/HT211227
Similar, with Android the random MAC are persistent, unless the netork was deleted and newly connected, or the WiFi non-ersistent MAC randomisation is enabled.
So either way, the random mac does not change under normal conditions.
mohitpanwar_it wrote:
and second problem is that we have multiple wifi's API in our office so when i connect an iphone to any one wifi api and add its random mac adress at that time it's done but after this when i tries to connect another wifi its showing mac address issues(showing obtaining ip address)
Yes, of course there is no doubt that all AP need to be managed accordingly. Should you use different network names (SSID) on the different networks - yes, it sucks, the management effort is almost endless.
mohitpanwar_it wrote:
in simple words it will not done with random mac address
i'm not here to argue about the crappy nonense Apple has introduced for business networks and the users. Complain to Apple on these privacy warnings on what is -your- business nework. The reason is that I wanted you to see that there is more behind the crappy "privacy warning". Here again: Complain to Apple.
mohitpanwar_it wrote:
plz tell any way to connect with device mac address
You can connect with the device MAC address if the iOS and Android wireless connections are configured for using the device MAC. The crazy privacy warning will not go away....
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
