i have successfully setup our organisation Meraki but i can see some MAC address with default Vlan 1 and unknown Ip address connected on the device, how can i stop the vlan and the ip address?
Thanks for your response.
sorry we dont have any wire connection else VoIP phone and they are not configured on Vlan 1
All kinds of sh1t turns up on VLAN 1.
I never use LAN 1 / VLAN 1, ever. When something turns up on VLAN 1, alarm bells should go off, or, in my case, "fit sonner le klaxon", as I caught the Électricité de France(EDF) supplied smart power meter, trying to weasel into the network using ZigBee and the BLE on the MR. Because the allegedly smart meter had attempted to use VLAN1, it stood out like a zizi d'âne. Unlike WC Fields, I do not keep a snake handy, but I do have VLAN 101 - which, as you might expect, goes nowhere.
Guess what? One of the smart meter component suppliers was Huawei, and some other bits were sourced from one of the "dark-side" Israeli firms, much used by governments around the world for their covert snooping activities. Unfortunately, it is becoming harder to refuse to allow the installation of a smart meter.
How best do you think I can deal with this?
That isn't everything, but its a good starting place. Because your network exists in the real world, it will get more complicated.
For the last 20 years anywhere I have worked has the policy of disabling VLAN 1 on all networks unless the network infrastructure doesn't permit that.
Always assume that anything unpleasant will attempt to exploit VLAN1 at some point.
Try and track down the device. As mentioned, I suspect it is somehow connected to the wired LAN rather than the WALN. You have the IP address. A fingerprinting tool such as nmap or if you want a GUI Ring (available for iOS / Android) may be able to assist you with determining what the heck is connected.
You will need to put the fingerprinting device onto VLAN (I suspect) in order to get a fingerprint.