Wireless: Wireless isolation and whether the SonicWALL wireless can stop ARP poisoning
03/26/2020 1 7138
Question: Wireless isolation in SonicWall and whether the SonicWALL wireless can stop ARP poisoning ?
If clients connect to the same ssid, they are on same broadcast domain.
That is why other client can receive the ARP request or other broadcast packets from other clients.
Further, all clients will share same group key if associate same ssid.
So it doesn’t make sense to isolate ARP request or other broadcast packets. All unicast packet will be forwarded to gateway, and UTM can apply any security rules to control inter-client communication.
SonicWALL UTM won’t do arp proxy. If the client request other client ARP, then the other client reply ARP itself.
There is no way to filter broadcast packet on same L2 domain. Every client needs to listen/send broadcast packets over the same L2 domain.