If you want to see if you can get clients to connect to the access point quicker than they would if you simply waited, you can effectively bump them off their current access point, the good twin, and get them to reconnect to your access point. To do this, we will fuse a deauthentication frame to boot everyone off a targeted access point. Once they are booted off, they will attach to our evil twin if we have positioned ourselves properly. Our next step is to bump the neighbor off his access point.
We can do this by using aireplay-ng with the deauth packet:
aireplay-ng --deauth 0 -a 60:A4:4C:69:D2:48
What we have done with aireplay is send a deauth frame with the address of the Tarlogic access point. The following ...