Why not lock down the switches? If the port is not used for your hardware turn it off.
Jon On Tue, Feb 21, 2012 at 12:34 PM, Evan Brastow <[email protected] > wrote: > Hi all,**** > > ** ** > > I've recently set up a wireless router in the DMZ on our firewall. This > will allow consultants, salesmen, etc... to have a connection to the > Internet when they come in, with no connection to our network.**** > > ** ** > > Now, however, in order to take the final step in this process and be sure > someone can't just plug into a network port, it would seem I need to do one > of two things:**** > > ** ** > > 1) Stop our DHCP server and give all network devices (less than 50 or so) > static IP's.**** > > ** ** > > or**** > > ** ** > > 2) Restrict DHCP to only listed MAC addresses.**** > > ** ** > > So, my questions are - which of these two would be easier (does it really > make much difference?) or is there a third option I don't see? **** > > ** ** > > Thanks, as always :)**** > > ** ** > > Evan**** > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > --- > To manage subscriptions click here: > http://lyris.sunbelt-software.com/read/my_forums/ > or send an email to [email protected] > with the body: unsubscribe ntsysadmin > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin
