RE: Dhcp security
From: Shawn Wall (sjwall_at_shaw.ca)
Date: 01/21/05
- Previous message: Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP]: "Re: IIS6 on W2k3 DCs"
- In reply to: Paul Aviles: "Dhcp security"
- Next in thread: Cory Stoker: "Re: Dhcp security"
- Reply: Cory Stoker: "Re: Dhcp security"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 21 Jan 2005 07:33:18 -0700 To: 'Paul Aviles' <paviles@adjoined.com>, focus-ms@securityfocus.com
You could reserve every IP address on you DHCP server with MAC addresses
from you known user base. A pain in the hump for sure. If you have network
switches capable of L2 security you could lock down the ports to prevent
unauthorized MAC addresses from connecting to the network to begin with.
HTH
-----Original Message-----
From: Paul Aviles [mailto:paviles@adjoined.com]
Sent: Wednesday, January 19, 2005 3:30 PM
To: focus-ms@securityfocus.com
Subject: Dhcp security
I have a weird question maybe. Is there a way to prevent our DHCP from
giving leases to computers not in our domain? I don't want anyone that walks
in to just connect and have the possibility of a network viruses getting
loose. Is this possible?
My setup is a typical AD 2K environment, simple domain no empty root.
Thanks
Paul
---------------------------------------------------------------------------
---------------------------------------------------------------------------
---------------------------------------------------------------------------
---------------------------------------------------------------------------
- Previous message: Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP]: "Re: IIS6 on W2k3 DCs"
- In reply to: Paul Aviles: "Dhcp security"
- Next in thread: Cory Stoker: "Re: Dhcp security"
- Reply: Cory Stoker: "Re: Dhcp security"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
