Hi Chris, on Tuesday, 2006-01-17 at 17:50:01, you wrote: > Say, I have a DHCP server is distributing 172.30.10.0/24 IP range, > but a joker simply plug in another DHCP server and distributing > 192.168.12.0/24 IP. Is there anyway I can stop the unwanted DHCP broadcast?
That's a network infrastructure and policy issue. Use port security in your switches, i.e. filter by MAC addresses so everybody who wants to plug in their machine hast to pass by your desk and register their MAC. Set up dhcpcd on every machine to log its actions to syslog so you can determine the MAC address of every fake server that assigned some wrong address. Then get a cat-5-o'nine-tails (http://www.tasigh.org/tuq/whips.html) and wait. regards Matthias -- I prefer encrypted and signed messages. KeyID: FAC37665 Fingerprint: 8C16 3F0A A6FC DF0D 19B0 8DEF 48D9 1700 FAC3 7665
pgpqiTVmtlBf1.pgp
Description: PGP signature