Hi,
I found the same mac address in different CMTS. I am using BPI+ enforce in the CMTS.
The cloned MAC address goes online again. How can i stop cloned mac addresses ?
I need some help with this.
Can you tell us the model which was used? Did you allow self-signed certificates? If not, then you should look if one of the both cable modem belongs to a customer. It is possible that this customer provides access to its cable modem und you can contact him for asking about the sh*t what he is doing.
If you use the same shared secrets on both CMTS chassis, customers can copy the nvram out of one modem, install it in another, and have a perfect clone that they can use on any CMTS using the same shared secret accessing the same TFTP.
Best practices include unique shared secrets per CMTS, unique cable modem configuration files, and enabling your CMTS vendor's security ("cable security" for BSR, "dynamic secrets" for uBR)
I dont know what kind of modem was he using. We are using only THOMSON cable modems and CASA C3200 CMTS. Which CMTS vendor security should we use in CASA CMTS? If I want to put unique shared secrets per CMTS, what can i do? Do i have to create different modem configuration files for each CMTS.
Can you tell us the model which was used? Did you allow self-signed certificates? If not, then you should look if one of the both cable modem belongs to a customer. It is possible that this customer provides access to its cable modem und you can contact him for asking about the sh*t what he is doing.
On your cmts, do you have host auth and dhcp lease query enable?
~Carl
If you use the same shared secrets on both CMTS chassis, customers can copy the nvram out of one modem, install it in another, and have a perfect clone that they can use on any CMTS using the same shared secret accessing the same TFTP.
Best practices include unique shared secrets per CMTS, unique cable modem configuration files, and enabling your CMTS vendor's security ("cable security" for BSR, "dynamic secrets" for uBR)
Good luck!
Thank you for your explanation.
I dont know what kind of modem was he using. We are using only THOMSON cable modems and CASA C3200 CMTS. Which CMTS vendor security should we use in CASA CMTS? If I want to put unique shared secrets per CMTS, what can i do? Do i have to create different modem configuration files for each CMTS.
Regards,
Dori