-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi Junix,
> however, the method it has is to identify the MAC of the > offending PC who tried to use another IP that is not for them. > Or have the specific MAC of the offending PC blocked I dont know if i understood the question correctly, but in your requirement, ipsentinel just need to have a list of IP address and MAC pairing, this is for ipsentinel to answer ARP requests which are not included in the list, thus "protecting" the network from non-authorized" MAC or IPs. > > Is there another solution out there that will make sure that ONLY > authorized MAC will participate in the Network. Non authorized PC/MAC > will just get lost. Allow me to give a config sample: [EMAIL PROTECTED]:02:FD:A5:52:60 # ROUTER [EMAIL PROTECTED]:01:02:70:E9:C6 # USER1 [EMAIL PROTECTED]:01:02:70:E5:BB # USER2 192.168.1.4 # Free 192.168.1.5 # Free 192.168.1.6 # Free !192.168.1.7 # DHCP !192.168.1.8 # DHCP !192.168.1.9 # DHCP !192.168.1.10 # DHCP In this example, your requirement of making sure that only authorized MAC can participate in the network was met. The mac address of ROUTER, USER1, and USER2 are the only ones which can only use their specific IP address. The 3 unused IPs are then protected by ipsentinel by answering ARP request for them, thus no-one in your network can use those 3 free ips. The other IPs (192.167.1.7 to 192.168.1.10) are excluded in the IP/MAC pair rule (eg.for reasons such as DHCP pool address). If however you are using DHCP for _all_ your IP address, you just need to specify what IP address your DHCP will lease to a specific MAC address in your DHCP config, and just use ipsentinel to answer for free IP address so that no one in your network can use whatever IP address they wish to use without your prior permission. hth, Kenneth > > JGaspar > > > ------------------------------------------------------------------------ > > _________________________________________________ > Philippine Linux Users' Group (PLUG) Mailing List > [email protected] (#PLUG @ irc.free.net.ph) > Read the Guidelines: http://linux.org.ph/lists > Searchable Archives: http://archives.free.net.ph -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFFtA3C9MTaiXoaMBgRApx/AJ9pihnbuMkpvzh3/YN7HGwLvZ+Z8gCgkhBZ RnlCROPCJ2cXAGoTYECcp2I= =XYOA -----END PGP SIGNATURE----- _________________________________________________ Philippine Linux Users' Group (PLUG) Mailing List [email protected] (#PLUG @ irc.free.net.ph) Read the Guidelines: http://linux.org.ph/lists Searchable Archives: http://archives.free.net.ph
