Date: Tue, 28 Sep 2004 08:37:51 -0500 From: Eric Crist <ecrist@secure-computing.net> To: "Ted Mittelstaedt" <tedm@toybox.placo.com> Cc: "freebsd-questions@FreeBSD.ORG" <freebsd-questions@freebsd.org> Subject: Re: IP address conflicts Message-ID: <984880D8-1153-11D9-94B7-000D9333E43C@secure-computing.net> In-Reply-To: <LOBBIFDAGNMAMLGJJCKNCEGEEPAA.tedm@toybox.placo.com> References: <LOBBIFDAGNMAMLGJJCKNCEGEEPAA.tedm@toybox.placo.com>
next in thread | previous in thread | raw e-mail | index | archive | help
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 For what it's worth, aside from some reconfiguration that could be a little time consuming, I would suggest putting the servers on a different subnet that everything else. If all the computers that are not servers are supposed to be configured for DHCP, insert a FreeBSD box that filters out any addresses outside that subnet. i.e. Server IP addresses are all 192.168.1.0 thru 192.168.1.50. Set your DHCP server to only assign IP addresses above 192.168.1.75 and up or so. I'm too lazy to do the math right now, but use the appropriate subnet mask and filter all the other stuff out. Aside from those students disrupting some of the other users on the network, they can't spoof the servers anymore. Just my $.02. - ----- Eric F Crist Secure Computing Networks -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (Darwin) iEYEARECAAYFAkFZaTAACgkQRAAY9knOW+qSsACghfRW0BGQg5Rq9tShVcTbcxzY C1IAn3FEjWy1BS4ROedTsC3MKIJehoOm =8XMh -----END PGP SIGNATURE-----
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?984880D8-1153-11D9-94B7-000D9333E43C>