Re: DHCP
From: Steven L Umbach (sumbach_at_N0spam.ameritech.net)
Date: 04/22/04
- Next message: Tedd Riggs: "Re: Is there a downloadable ISO?"
- Previous message: Alan: "TCP Vulnerabilites - Windows affected?"
- In reply to: Lanwench [MVP - Exchange]: "Re: DHCP"
- Next in thread: Steven L Umbach: "Re: DHCP"
- Reply: Steven L Umbach: "Re: DHCP"
- Reply: Steve: "Re: DHCP"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 22 Apr 2004 14:05:40 -0500
I agree.
I have not been an employee for anyone for a number of years, but don't
employees get disciplined for anything anymore? Can they park their cars on
the grass next to their office window? Can they leave work unannounced
whenever? Can they take work supplies for home use? Can they put a stocked
beer cooler under their desk? If no, why can they put their computers on the
network and risk infecting the whole thing whenever it suits their fancy?
Having said that and understanding the importance of some proactive
intervention in addition to what Lanwench mentions, other options may
include ipsec negotiation policies to protect servers, but NT4.0 will not be
ipsec aware, or using switches that use mac filtering and/or 802.1X machine
authentcation. Dlink sells a 24 port managed switch in the mid $400 range
that can do both. --- Steve
http://www.dlink.com/products/?pid=86 --- Dlink switch.
"Lanwench [MVP - Exchange]"
<lanwench@heybuddy.donotsendme.unsolicitedmail.atyahoo.com> wrote in message
news:unJxQFJKEHA.1892@TK2MSFTNGP09.phx.gbl...
> Alas, the only native way to do this is to set up a reservation for each
> allowed MAC address and not have any available, non-reserved, addresses in
> the scope(s) - a royal pain. I think there are some third party
> options...I'm sure someone else will post as I don't have them handy.
>
> If your company has a policy against "rogue laptop" users, make this an HR
> issue.
>
> Steve wrote:
> > I have a mixed Winnt4, Win2k, and Win2k3 server environment with a
> > couple of DHCP servers. These are in domain "A". I have some users
> > that plug in their personal laptops - they DO NOT log into the Domain
> > A, they just login in their laptop - but the DHCP server's are
> > dishing them an IP address. Can this be prevented?
>
>
- Next message: Tedd Riggs: "Re: Is there a downloadable ISO?"
- Previous message: Alan: "TCP Vulnerabilites - Windows affected?"
- In reply to: Lanwench [MVP - Exchange]: "Re: DHCP"
- Next in thread: Steven L Umbach: "Re: DHCP"
- Reply: Steven L Umbach: "Re: DHCP"
- Reply: Steve: "Re: DHCP"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
