IPSec (to protect internal resources) + outbound proxy server can do this for you without having to implement 802.1x
Cheers Ken From: Jon Harris [mailto:[EMAIL PROTECTED] Sent: Tuesday, 16 September 2008 10:40 PM To: NT System Admin Issues Subject: Re: DHCP question At the moment nothing for me but I have some ideas in the back of my head. One of the things will be doing when I have time will be NAC via 2008 but I just don't have time at the moment and I would like eventually to secure the domain from rogue users and their friends. Jon On Tue, Sep 16, 2008 at 8:29 AM, Ken Schaefer <[EMAIL PROTECTED]<mailto:[EMAIL PROTECTED]>> wrote: 802.1x Or You could give the MAC address bogus reservations. DHCP doesn't really have security built-in - it relies on other protocols to handle that (which is why DHCP is so popular and robust and easy to implement). I suppose my question would be: what are you trying to achieve? Cheers Ken From: Jon Harris [mailto:[EMAIL PROTECTED]<mailto:[EMAIL PROTECTED]>] Sent: Tuesday, 16 September 2008 10:26 PM To: NT System Admin Issues Subject: Re: DHCP question THAT I would like to know as well. Better yet is there a way to make it so that only certain types of machines can use DHCP say prevent Mac's from using DHCP? Jon On Tue, Sep 16, 2008 at 8:17 AM, Dennis Melahn <[EMAIL PROTECTED]<mailto:[EMAIL PROTECTED]>> wrote: Is there any way to prevent certain MAC addresses from aquiring an IP address from a DHCP server? ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
