Re: Block Unauthorized Computer
- From: "Steven L Umbach" <n9rou@xxxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Wed, 31 Oct 2007 18:33:25 -0500
As others have mentioned managed switches with mac filtering can certainly
help and such switches have learning modes for existing mac addresses on the
network so that you don't have to enter them all manually. DHCP scopes with
only reservations may stop the computer from getting a dynamic IP but not
from a computer with a static IP on your network. Ipsec policies may be
something to look at to use for traffic between domain computers [excluding
domain controllers] which can prevent non domain computers from accessing
any domain computer other than domain controllers which can not use ipsec
policies for traffic between them and other non domain controller domain
computers. The link below explains how to do this. Most likely someone put a
laptop from home on your network. If that is against policy you may want to
reiterate that to everyone.
Steve
http://www.microsoft.com/technet/security/guidance/architectureanddesign/ipsec/default.mspx
http://support.microsoft.com/kb/254949 --- must read before implementing
any ipsec policies
"Dave Mackler" <dmackler@xxxxxxxxxxxxx> wrote in message
news:OOEYQ%238GIHA.4584@xxxxxxxxxxxxxxxxxxxxxxx
My servers are Server 2003, SP2. I have DHCP running well. I noticed a
computer name in the Address list of the DHCP server that is not a
computer that belongs to our company. All I have is the computer name and
MAC address, which DHCP catches.
How can I block or prohibit this computer from getting an IP address or
from using our network for whatever purpose??
dave Admin
.
- Prev by Date: Re: gpupdate /force killed my DC
- Next by Date: Re: Terminal Services Security Issue with Cached Credentials
- Previous by thread: Re: Block Unauthorized Computer
- Next by thread: Re: Block Unauthorized Computer
- Index(es):
Relevant Pages
|
|
