While investigating a wireless issue today, I noticed some igmp traffic in TCPDump on one of my AP30's wireless networks.
sudo tcpdump -n -e -i wlan4 ip proto 2
...
19:25:12.380248 00:1a:8c:29:77:84 > 01:00:5e:00:00:01, ethertype IPv4 (0x0800), length 46: 0.0.0.0 > 224.0.0.1: igmp query v2
19:25:22.450799 00:1a:8c:0a:c1:04 > 01:00:5e:00:00:01, ethertype IPv4 (0x0800), length 46: 0.0.0.0 > 224.0.0.1: igmp query v2
The network was empty (no clients, and not bridged to a VLAN) at the time.
00:1a:8c:29:77:84 must be the AP30, as the management MAC is 00:1a:8c:29:77:88.
According to a MAC lookup db, 00:1a:8c:0a:c1:04 is registered to Astaro AG as well, so it must be from the AP30 also.
Neither of these MACs show up with 'arp -an', btw.
So, is this normal traffic for an AP30?
UTM version is 9.006.
Thanks,
Barry
This thread was automatically locked due to age.