Wits end with this Hacker.. "come on experts explain this!!

wirelesswaves · June 12, 2009, 7:37pm

Plagued by hacker for 10 weeks now… Have made the ARP table “static” and AP wlan “reply-only”

Have firewalls inplace also to match IP to MAC, if no match, drop packet!

So I thought, that an ARP fix was one of the last options… Not so!

So the hacker may have now found the identical IP matched to the MAC and thus a way through the ARP table..

But if he is using the customers IP, why dont I see him in the QUEUE or better still in Firewall connections list??

How is this possible???

Yes I know about WPA and WPA2, and I would employ it if I could, but I have a bundle of these client units in the field and the best security they have is WEP, which aint worth a light.

Short of changing them al over, what else is there? (apart from Hotspot options)

But best still, can one of you experts give me an answer why the hacker does not appear in either QUEUE or IP CONNECTIONS?

Thanks in advance… Simon
Hacker 3.JPG
hacker 2.JPG
hacker 1.JPG

wirelesswaves · June 12, 2009, 8:03pm

Its OK guys… Dont loose sleep… I have answered my own problem… The snapshot was taken at the time the Hacker was active, showing that he is using a client b/g mode to impersonate the real client(b mode), however whilst he is persistantly trying and I add going the rounds with each client unit, systematically disconnecting them each time he tries…

I suspect that the continual attempts for over an hour would suggest that he actually isnt getting anywhere, hence nothing in the queues or connections list.

Sorry for panicky post! This chap is making me paranoid!

Moderators, please remove post if you wish.