iOS14 and iPadOS14 WiFi - Private Address setting circumvents parental controls and possibly QOS

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
iOS14 and iPadOS14 WiFi - Private Address setting circumvents parental controls and possibly QOS
iOS14 and iPadOS14 WiFi - Private Address setting circumvents parental controls and possibly QOS
2020-08-09 10:03:56 - last edited 2020-08-11 02:38:49
Model: Deco
Hardware Version: V1
Firmware Version:

I've noticed a new feature of iOS14 which is to enable a wifi private address. This gives the iphone and ipad a random and regularly renewing Mac address. This is done to make it harder to track devices when connected to wifi networks. Sounds good but it has it's implications.

 

Each time my son's ipad decides to use a new Mac address the Deco identifies this as a new device connecting to the network, and of course is no longer registered as one of his devices that has parental controls enabled (both website blocking and time limits).

 

I can see this is going to be a problem for many people and all router manufactures that use Mac address to restrict devices.

 

Thought everyone might want to have a think about this one. 

 

P.S Additional thought : Presumably this will affect QOS as well where you have a prioritised device and the Mac address changes. 

-- Deco X20 user
4
4
#1
Options
1 Accepted Solution
Re:iOS14 and iPadOS14 WiFi - Private Address setting circumvents parental controls and possibly QOS-Solution
2020-08-11 02:38:44 - last edited 2020-08-11 02:38:49

@Oakmeister 

 

Hello,

 

Thanks for reporting this to the community.

 

We actually are aware of this private address feature on the iOS 14 beta as well, which periodically changes the MAC address it uses with each Wi-Fi network, so it will be treated as a new device every time it connects.

 

The current workaround is disabling the "User Private Address" on your iPhone or iPad.

 

We will also investigate and see how to optimize the firmware of the TP-Link device, thanks a lot again for your advice.

 

Good day.

Recommended Solution
0
0
#2
Options
26 Reply
Re:iOS14 and iPadOS14 WiFi - Private Address setting circumvents parental controls and possibly QOS-Solution
2020-08-11 02:38:44 - last edited 2020-08-11 02:38:49

@Oakmeister 

 

Hello,

 

Thanks for reporting this to the community.

 

We actually are aware of this private address feature on the iOS 14 beta as well, which periodically changes the MAC address it uses with each Wi-Fi network, so it will be treated as a new device every time it connects.

 

The current workaround is disabling the "User Private Address" on your iPhone or iPad.

 

We will also investigate and see how to optimize the firmware of the TP-Link device, thanks a lot again for your advice.

 

Good day.

Recommended Solution
0
0
#2
Options
Re:iOS14 and iPadOS14 WiFi - Private Address setting circumvents parental controls and possibly QOS
2020-08-11 12:47:07

@TP-Link_Deco 

A very useful way to address this would be to provide a way to have a default filtering category for new devices (before another is assigned). This would enable a secure by default, and extras by exemption setup which would mean that randomising the MAC would not bypass the filters (but might lose any additional access granted)

 

this is is a feature that has been requested before, so would have value outside of just solving this issue.

 

 

8
8
#3
Options
Re:iOS14 and iPadOS14 WiFi - Private Address setting circumvents parental controls and possibly QOS
2020-08-11 19:13:18
@ajharvey, Yes fully agree, some routers do have a default profile that all new devices are assigned which would at least allow you to maintain parental control. It would then discourage children from turning on the wifi private address if they lost connectivity by disabling it.
-- Deco X20 user
3
3
#4
Options
Re:iOS14 and iPadOS14 WiFi - Private Address setting circumvents parental controls and possibly QOS
2020-10-14 15:54:55
+1
1
1
#5
Options
Re:iOS14 and iPadOS14 WiFi - Private Address setting circumvents parental controls and possibly QOS
2020-11-03 07:17:41

@TP_LINK 

 

Is anything going to be done about this as it makes the parental controsl redundant 

 

Thanks 

 

 

3
3
#6
Options
Re:iOS14 and iPadOS14 WiFi - Private Address setting circumvents parental controls and possibly QOS
2020-11-04 15:45:59

Just bumping this post as it appears to have been missed by TP-Link

3
3
#7
Options
Re:iOS14 and iPadOS14 WiFi - Private Address setting circumvents parental controls and possibly QOS
2020-11-05 15:47:47

bump

2
2
#8
Options
Re:iOS14 and iPadOS14 WiFi - Private Address setting circumvents parental controls and possibly QOS
2020-11-09 19:19:10

Up

Disable Private adres is not an option as the device will turn back to it by default once you've resetted the device for any reason. Besides this, my kids are aware of this setting and can with this 'work-around' grant themselfs access to all kind of things I didn'st allowed im in the first place. 
 

4
4
#9
Options
Re:iOS14 and iPadOS14 WiFi - Private Address setting circumvents parental controls and possibly QOS
2020-11-09 19:23:39

@PDAHazzard 

 

I agree this needs sorting as a matter of urgency, otherwise I think I will have to return them and find something else that has proper controls 

6
6
#10
Options
Re:iOS14 and iPadOS14 WiFi - Private Address setting circumvents parental controls and possibly QOS
2020-12-07 11:51:20

@TP-Link_Deco Is there any update on this? The recommended workaround is silly because it defeats the purpose of the parental controls - which is the reason for which I purchased the system. Now when I try to disable my kids iphones' access to the internet during school nights - they can use this iphone feature to override the parental controls.

I was about to buy a second deco system from my brother until I realized that it has this flaw and i will return the system I just purchases because of this. 

The easy solution was already proposed below - tp-link should allow the deco admin to set a default parental control profile for any unknown devices accessing the network.

Could you advise asap if will you be doing this?

Thank you.

X20 user. 

2
2
#11
Options