[Fedora] Re: DHCP security
Ashley M. Kirchner
ashley at pcraft.com
Wed Oct 10 01:57:24 UTC 2007
Ed Kasky wrote:
> That depends on your wireless device. I use Linksys and use static
> dhcp based on mac address as well as WEP for a more secure netowrk.
> If the mac address is not in the list, it won't get access.
This might work for wireless, however in a mixed environment, where
one DHCP server is serving both wired as well as wireless, that might
not work. Assuming a client actually broadcasted a DHCPREQUEST to get
an IP, you can have the DHCP server deny it based on it being an unknown
MAC. But if someone manually configures their machine and simply plugs
into your network, how will your DHCP server know to block them? It
never assigned an IP to them, it never even received a request for an
IP, so how would it know what to do?
More information about the fedora-list
mailing list