Re: DHCP Mac address

From: Jochen Schulz (kannstmichma_at_gmx.net)
Date: 12/13/04

  • Next message: Gayle Lee Fairless: "Re: On your upgrade from woody to sarge" 
    To: debian-user@lists.debian.org
Date: Mon, 13 Dec 2004 17:37:53 +0100

    * Mark Maas:
    >
    > Does anyone know if it's possible to only give out leases to known
    > clients?
    > And those clients be authenticated by there MAC addresses?
    >
    > Prefferably the MAC address I place in a seperate file.

    Yes, I think every DHCP server allows that. If you're not too familiar
    with these things, I suggest you use dnsmasq which primarily is a DNS
    server (as the name suggests), but it can also act as a DHCP server.
    This makes it possible to do DNS resolution for DHCP clients (even
    with dynamical IPs) very easy.

    To answer your question for dnsmasq (at least partly): just comment out
    the option "read- ethers) in the example configuration and create a
    hosts style file named /etc/ethers. See 'man 5 ethers' for an example.
    This will give the same IPs to clients with a specific MAC address.

    As some others already have noted, MAC filtering for security reasons is
    almost useless. It is very easy to spoof a MAC address if someone is
    already able to sniff some traffic (WEP encryption in wireless LANs
    doesn't help very much against that, too).

    If you provide us with more details about your LAN we might be able to
    propose better alternatives.

    J. 

    -- 
I wish I could do more to put the sparkle back into my marriage.
[Agree]   [Disagree]
                 <http://www.slowlydownward.com/NODATA/data_enter2.html>
-- 
To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
  • Next message: Gayle Lee Fairless: "Re: On your upgrade from woody to sarge"

    Relevant Pages

    • RE: Mac to PC file sharing issues on SBS2003
      ... the server or PC clients anymore after moving everything out of the Microsoft ... If the resource fork is still open on the server for no reason they will get ... a username and password prompt on their Mac when they try to move the folder ...
      (microsoft.public.windows.server.sbs)
    • Re: Sodding Word
      ... being a bit of a bug festival. ... I'd have Word 2004 and Word 5.1a fight it out as the best Word for Mac ... documents I receive and have to supply to clients. ... what you think are the compatible Microsoft fonts really are. ...
      (uk.comp.sys.mac)
    • F.A O Eriq Neale
      ... (please see previous thread below re FTP from Mac clients) ... Then created a protocol rule called MAC, enabled, set action to allow, ...
      (microsoft.public.windows.server.sbs)
    • Re: Mac OSX Clients in AD server environment - anomalies
      ... with a handfull of OSX Mac clients (lets say ... > * Issue occurring on current w2k AD file servers ... I had to setup access for 25 Mac OSx ... called the resource fork. ...
      (microsoft.public.win2000.active_directory)
    • Re: Cant get MAC Address when connected via VPN
      ... Just a guess, but depending on the VPN client you are using, it may create ... Older Nortel clients do something ... In essence, the IP will not translate back to the NICs MAC address, ... but back to the virtual adapters addressing layer. ...
      (microsoft.public.vb.winapi)