On Thu, 2002-12-26 at 13:27, Ambar Roy wrote:
> > now was slightly worried that if 192.168.0.10 machine is switched off,
> > someone can assign 192.168.0.10 to his/her machine and access net.
> >
> > my method is not good though, and would appreciate if anyone can provide
> > something better.
> If your network is small, you can probably try scanning the arp table at
> regular intervals and then find out if someone is using an ip address not
> assigned to the mac address of that card. When you find out a rouge machine
> using an ip address, ban it's mac address from the network and talk to the
> user. If you are doing this in a normal office environment and you feel that
> this can be an issue, then I guess you need better users or probably a more
> sophisticated firewalling solution. Probably you might need to use or
> develop some code that will allow you to do mac address level screening at
> the firewall. Note that a user could probably also change the mac address of
> his card to match that of a taken over machine,
thanks a ton. good ideas, but can't say if i can implement them
successfully :-|. though will work on it. users are not sophisticated
enough to change MAC addresses, so that is not a concern. and may not
prefer user authentication.
thanks for the help.
vivek
================================================
To unsubscribe, send email to [EMAIL PROTECTED] with unsubscribe in subject
header. Check archives at http://www.mail-archive.com/ilugd%40wpaa.org
