DHCP security
Ashley M. Kirchner
ashley at pcraft.com
Tue Oct 9 20:10:10 UTC 2007
While I realize DHCPd isn't a security program of any kind, this
does have to do with it. So I just switched our entire network over to
DHCP assigned IPs in preparation for another project. But in doing
that, I've come to realize that anyone could plug in their machine and
manually set their IP address and by-pass the DHCP discovery all
together. And thus also gaining access to our internal network,
something we might not necassarily want to allow. So the question now
is, is there some way to restrict traffic to only those assigned IPs
(through DHCP) and block anything else that happens to show up on the
network? Maybe through iptables somehow?
-- A
--
W | It's not a bug - it's an undocumented feature.
+--------------------------------------------------------------------
Ashley M. Kirchner <mailto:ashley at pcraft.com> . 303.442.6410 x130
IT Director / SysAdmin / Websmith . 800.441.3873 x130
Photo Craft Imaging . 3550 Arapahoe Ave. #6
http://www.pcraft.com ..... . . . Boulder, CO 80303, U.S.A.
More information about the users
mailing list