From owner-freebsd-net@FreeBSD.ORG Wed Sep 26 13:46:25 2012 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id B82BE106566B for ; Wed, 26 Sep 2012 13:46:25 +0000 (UTC) (envelope-from rafaelhfaria@cenadigital.com.br) Received: from mail-pa0-f54.google.com (mail-pa0-f54.google.com [209.85.220.54]) by mx1.freebsd.org (Postfix) with ESMTP id 822188FC0C for ; Wed, 26 Sep 2012 13:46:25 +0000 (UTC) Received: by padbi1 with SMTP id bi1so501969pad.13 for ; Wed, 26 Sep 2012 06:46:25 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cenadigital.com.br; s=mail; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc:content-type; bh=f+NoTmFFDKl6c3gGstfv/IS2nV9Op6ZNOhmUrOWRQfU=; b=Y2GFvm+0xfZdQrTcdeRvJ514AR9yv7GoxoUi7wpi+zjFYq2PIMwDP+rmymgPzOPb04 tZSkXPAX15Q/hm0AnRQTwFPTZAYKRY6Th9o+VfVvLeaYoo1KGEVJjGgKJLgxKxt8AdB4 M7glDu2cHgAKxQtQMQFZ+6pWXCkRTU2+d25s4= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc:content-type:x-gm-message-state; bh=f+NoTmFFDKl6c3gGstfv/IS2nV9Op6ZNOhmUrOWRQfU=; b=CS/bcws0TEm1BuvW1MaVdxr7XpL1qRH6NHNshCpEYiMXwaMjlvCSArf8XHvqV4Z9e/ osCZEeB9r0XtzgJtJTDzkRhK4N0lrIASA/5SeM734h/dNcKGgQrke93kVfRrQ2CQzEJm bXQ3d2utOQ75zHBHMRqoVa2cMDZHGf8ILrq0ukSwc/gpNP6uyu1S8bjyvUQGViwEIZ71 bXqQM/q8r3Qgd+XSZflIjvyesNSh72X9XghDXSfLOD1hOL5gUij6/DycZD2dwDRHj4ix Dv29w2iCx8vdf90ZBa6o6LNRzyUkRglJUO5TjY86KIkMixGaavgRd4cZ2dmBuRCNzElA 2NNw== Received: by 10.68.197.9 with SMTP id iq9mr2770832pbc.17.1348667184846; Wed, 26 Sep 2012 06:46:24 -0700 (PDT) MIME-Version: 1.0 Received: by 10.66.12.99 with HTTP; Wed, 26 Sep 2012 06:45:44 -0700 (PDT) In-Reply-To: References: From: Rafael Henrique Faria Date: Wed, 26 Sep 2012 10:45:44 -0300 Message-ID: To: "ded1@MyBSD.org.my" X-Gm-Message-State: ALoCoQlCgxSBTOczLm0tXyq14+CPvJfojP0SyVf+7v4wt0a/2qkh9Gvw/ChaC8Z1IM8yHk4ot2qy Content-Type: text/plain; charset=ISO-8859-1 X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: freebsd-net@freebsd.org Subject: Re: DHCP server with a group of mac address X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 26 Sep 2012 13:46:25 -0000 On Wed, Sep 26, 2012 at 7:03 AM, ded1@MyBSD.org.my wrote: > Hi, > > i'm installing isc-dhcp42-server and run in the network for like 1000 > node. i have like 1000 mac address (servers, PC's, printers, phones, etc) > which i put in the text file. > > FYI, > > Any mac address (which is in the text file) who plug into the network will > get the ip address based on the vlan configured on the switch. Any mac > address who's NOT in the text file, will not getting any IP and they will > not authorize to be in our network. > > Is this possible to do with isc-dhcp ? I try to search around these topic > but not much help. > > Anyone have any tips / shed me some light ? > > > --- > ded1 > MyBSD Malaysia Project > http://www.MyBSD.org.my > ______________________________**_________________ > freebsd-net@freebsd.org mailing list > http://lists.freebsd.org/**mailman/listinfo/freebsd-net > To unsubscribe, send any mail to "freebsd-net-unsubscribe@**freebsd.org > " > Sorry, but I think that this kind of control you want will be provided only by the 802.1x. Anyone can put a static ip address from your network range and use your network without having its MAC Address into the dhcpd conf file. With a layer-3 switch 802.1x cappable you can even specify a vlan to the authenticated user, so if 2 users uses the same machine, they can get different IP Numbers and different vLan. All based on the user authentication before any network connection. -- Rafael Henrique da Silva Faria