OPNsense Forum

Archive => 21.1 Legacy Series => Topic started by: nik_S on May 30, 2021, 05:55:39 am

Title: Apple IOS 14 Private MAC Address issue
Post by: nik_S on May 30, 2021, 05:55:39 am

I am experiencing unique issue. my iPhones and other Apple devices are unable to connect to WiFi after about 24 hours. I believe Apple rotates private MAC addresses every 24 hours. This problem started I updated to latest IOS I am able to connect once I go to DHCP leases and manually delete the DHCP lease. Any suggestions on how to fix this issue?

Title: Re: Apple IOS 14 Private MAC Address issue
Post by: smema79 on May 30, 2021, 08:29:21 am

Hello

The same applies to recent Android systems. For security and privacy reasons, the mac addresses change, with the result that they appear in the local network as another device and therefore require an additional IP. Obviously, all opening and closing rules for specific IPs or macs are broken. At the moment the only solution I have found is to remove the option from the device itself. I still have to try creating aliases based on the fqdn of the devic3 registered on the dns via dhcp and understand how often this alias is updated.

Ste

Inviato dal mio SM-A415F utilizzando Tapatalk

Title: Re: Apple IOS 14 Private MAC Address issue
Post by: Greelan on May 30, 2021, 10:46:06 am

Quote from: nik_S on May 30, 2021, 05:55:39 am

I am experiencing unique issue. my iPhones and other Apple devices are unable to connect to WiFi after about 24 hours. I believe Apple rotates private MAC addresses every 24 hours. This problem started I updated to latest IOS I am able to connect once I go to DHCP leases and manually delete the DHCP lease. Any suggestions on how to fix this issue?

Think you might be confusing two things? If set (it can be disabled if you want), iOS sets a unique MAC address for the device for each wifi network it connects to. So the MAC address is different between networks, but doesn’t change for an individual network.

On IPv6, iOS implements temporary addresses/privacy extensions for SLAAC, meaning that a new IPv6 temporary address is generated every 24 hours. But there is also a “normal” SLAAC address that does not change.

Title: Re: Apple IOS 14 Private MAC Address issue
Post by: 134 on May 30, 2021, 04:16:32 pm

iOS allows user to disable this feature for individual WiFi networks, it's called Private Address. However i doubt this is issue though. My iphone connect to my home WiFi as usual with Private Address turned on by default.

Title: Re: Apple IOS 14 Private MAC Address issue
Post by: nik_S on May 31, 2021, 10:51:34 pm

I have tried multiple options but nothing seems to work until I restart everything. I opened a case with Unifi, they are saying the IOS devices are not getting IP addresses from the OPnSense gateway. Things seem to work fine for 24 hours but after that I need to restart things for my IOS devices to work. In unifi, I can see the mac addresses for IOS devices showing up in the logs but they disconnect shortly. I checked on my iphone, it connects to wifi for few seconds but doesn't get any IP address and then the connection drops. My current set-up is as follows:

3 APs - Unifi LRs
OpnSense Gateway

Any ideas?