Re: [plug] dhcpd + pool{} + allow/deny unknown clients

Tue, 30 Sep 2003 17:10:54 -0700

You can assign specific ip based on mac by putting eg.

host myhost {
    hardware ethernet 00:01:23:4d:23:29;
    fixed-address 192.168.1.40;
}

changing the pointing dns server for a client to disable internet access is not the way to go since others might just hardcode their dns/gw and be able access outside. Selective blocking can be done using a fw (e.g shorewall) and/or a proxy server (e.g squid).

Dexter Ang wrote:

Hello people,

I was experimenting with dhcpd.conf (going through man dhcpd.conf), and
read through the part about the pool of addresses. It said something
about being able to set certain addresses ranges for known and unknown
clients separately (for example, to block Internet access for unknown
clients). It's sorta something like this:

subnet 192.168.0.0 netmask 255.255.255.0 {
pool {
        domain-name-servers youhavenointernet.com;
        range 192.168.0.200 192.168.0.220;
        allow unknown clients;
}

pool {
        domain-name-servers 192.168.0.1;
        range 192.168.0.10 192.168.0.20;
        deny unknown clients;
}
}

After that long example, all I want to know is... how do you make a
client "known"? Do I add in some config file the MAC Address? And
advantages or disadvantages? I'm sure it's easier to do it with iptables
and such, but I'm just poking around dhcpd right now for fun.

If it's somewhere in the man pages of dhcpd.conf, please let me know as
I can't seem to see it there.

Thanks
Dex
--
Philippine Linux Users' Group (PLUG) Mailing List
[EMAIL PROTECTED] (#PLUG @ irc.free.net.ph)
Official Website: http://plug.linux.org.ph
Searchable Archives: http://marc.free.net.ph
.
To leave, go to http://lists.q-linux.com/mailman/listinfo/plug
.
Are you a Linux newbie? To join the newbie list, go to
http://lists.q-linux.com/mailman/listinfo/ph-linux-newbie







--
Philippine Linux Users' Group (PLUG) Mailing List
[EMAIL PROTECTED] (#PLUG @ irc.free.net.ph)
Official Website: http://plug.linux.org.ph
Searchable Archives: http://marc.free.net.ph
.
To leave, go to http://lists.q-linux.com/mailman/listinfo/plug
.
Are you a Linux newbie? To join the newbie list, go to
http://lists.q-linux.com/mailman/listinfo/ph-linux-newbie

Reply via email to