Mac cloning | docsis.org

You are here

Mac cloning

5 posts / 0 new
Last post
dkokoshi
Mac cloning

Hi,
I found the same mac address in different CMTS. I am using BPI+ enforce in the CMTS.
The cloned MAC address goes online again. How can i stop cloned mac addresses ?
I need some help with this.

Regards,
Dori

wittmann
Model?

Can you tell us the model which was used? Did you allow self-signed certificates? If not, then you should look if one of the both cable modem belongs to a customer. It is possible that this customer provides access to its cable modem und you can contact him for asking about the sh*t what he is doing.

cmcaldas
Clone

On your cmts, do you have host auth and dhcp lease query enable?

~Carl

cdearborn
If you use the same shared

If you use the same shared secrets on both CMTS chassis, customers can copy the nvram out of one modem, install it in another, and have a perfect clone that they can use on any CMTS using the same shared secret accessing the same TFTP.

Best practices include unique shared secrets per CMTS, unique cable modem configuration files, and enabling your CMTS vendor's security ("cable security" for BSR, "dynamic secrets" for uBR)

Good luck!

dkokoshi
Thank you for your

Thank you for your explanation.

I dont know what kind of modem was he using. We are using only THOMSON cable modems and CASA C3200 CMTS. Which CMTS vendor security should we use in CASA CMTS? If I want to put unique shared secrets per CMTS, what can i do? Do i have to create different modem configuration files for each CMTS.

Regards,
Dori

Log in or register to post comments