Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

RE: DHCP Appliance based on MAC Authentication

From: "Conlan Adams" <conlan () midwesteyebanks org>
Date: Thu, 22 Dec 2005 14:51:45 -0500
I guess the real question is, what are you trying to protect yourself against?

If they assign themselves a static IP they can still get network access.

Another option might be to allow MAC's at the switch, but even then they can impersonate a MAC address pretty easily.

Otherwise what your doing will work, I think I spelled that exact way out earlier, but really its only going to protect 
you from random machines being plugged in by unwitting users getting addresses.  Is that why your doing it?

Conlan

-----Original Message-----
From: Jhon [mailto:imranfbhatti () gmail com] 
Sent: Monday, December 19, 2005 11:33 PM
To: security-basics () securityfocus com
Subject: Re: DHCP Appliance based on MAC Authentication

Hi all

Thanks every one who participated and also reads all the posts.

I decided to use MS DHCP by using below method

First we define the IP Range in the address pool in the MS DHCP and then
just exclude the entire defined range in that pool. ο£°Then we will assign IP
addresses by reservations  based on MAC addresses.

So by doing this only MAC addresses with sttic mappings can get IP
addresses.

I would like to have comments on this method by the list
Thanks again for reading the posts
Previous By Date Next
Previous By Thread Next

Current thread: