Rogue System Discovery Detecting Invalid Single IP Subnets
Our rogue system detection is detecting thousands of uncovered subnets, yet the majority of these subnets are not valid subnets - they are denoted as a single IP subnet, in the format 10.x.y.z /32, yet we have no subnets in the format of 10.x, 10.x.y, or 10.x.y.z.
Any ideas on why this is happening would be appreciated.
I've seen this before with mobile users (laptops) that connect back to an EPO server over the internet or VPN. Imagine a mobile user connected to a hotel access point - the agent is going to report back the locally assigned address.