Hi @digininja,
it seems that I wasn't clear about my intention... Sorry, for that! I'm not going to do something illegal. I just want to understand how big the risk of arp spoofing in the described setup is and if countermeasures like IDS behind the AP would work or what would have to be done to work. Of course I will set up a test environment, but I can't do that before next week as I'm on a short vacation at the moment...
Hi @IDNeon,
sorry, if my following question is dumb as shit... IP assigning is working over DHCP. During the IP assignment process the client will only test the received IP with an ARP package (as far as I understood). While also a bridge could be configured to forward DHCP packages to the DHCP server (DHCP-relay agent), I didn't find anything that it also relays ARP packages...
So, I think that I could still get an IP address (not from the AP but from the DHCP server in the LAN behind) and ARP packages might still stay only in the WIFI... Am I wrong?