C
CAMC1
How can make my DHCP to deny IP address to a PC on my LAN?
MC
MC
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.
You should upgrade or use an alternative browser.
H
Herb Martin
CAMC1 said:How can make my DHCP to deny IP address to a PC on my LAN?
You cannot do that exactly. DHCP is without authentication
or security features.
Do you know the MAC address of the offending PC? (If not,
how else would you identify this machine?)
You can use the MAC address to setup a RESERVERATION for
the machine which MAKES no sense....
Give it an address that is worthless, with a phony default gateway,
DNS, and WINS server etc.
C
CAMC1
Thanks, will try
MC
MC
Herb Martin said:CAMC1 said:How can make my DHCP to deny IP address to a PC on my LAN?
You cannot do that exactly. DHCP is without authentication
or security features.
Do you know the MAC address of the offending PC? (If not,
how else would you identify this machine?)
You can use the MAC address to setup a RESERVERATION for
the machine which MAKES no sense....
Give it an address that is worthless, with a phony default gateway,
DNS, and WINS server etc.
--
Herb Martin, MCSE, MVP
Accelerated MCSE
http://www.LearnQuick.Com
[phone number on web site]
C
CAMC1
I know the Mac Address, when I try to add reservation with an odd IP address
I get error message "The specified DHCP client is not a reserved client"
whatever it means.
MC
I get error message "The specified DHCP client is not a reserved client"
whatever it means.
MC
Herb Martin said:CAMC1 said:How can make my DHCP to deny IP address to a PC on my LAN?
You cannot do that exactly. DHCP is without authentication
or security features.
Do you know the MAC address of the offending PC? (If not,
how else would you identify this machine?)
You can use the MAC address to setup a RESERVERATION for
the machine which MAKES no sense....
Give it an address that is worthless, with a phony default gateway,
DNS, and WINS server etc.
--
Herb Martin, MCSE, MVP
Accelerated MCSE
http://www.LearnQuick.Com
[phone number on web site]
H
Herb Martin
CAMC1 said:I know the Mac Address, when I try to add reservation with an odd IP
address
I get error message "The specified DHCP client is not a reserved client"
whatever it means.
Sorry, I left out the details since I wasn't even sure
that you would use this suggestion (and you might
have known how to do it <grin>).
Create another SCOPE, use the range of "bad" addresses
you wish.
Add the reservation to this phony scope.
Create a Superscope*, and add both the real scope and the
phony scope to it.
*Superscope is misnamed (Microsoft didn't do it this is a
standard term): Superscope should be called a ScopeGroup.
It allows the DHCP server to understand that the SuperScopeGrouped
addresses can be given out through the same NIC.
In fact, I teach my students to always append the word "group"
onto this term so that they will forever remember the purpose of
Superscope(groups).
[Similarly, we do this with "Site Link Bridge" (groups) which are
really just Groups of SiteLinks that are transitively linked (by
the KCC automatically.)]
--
Herb Martin, MCSE, MVP
Accelerated MCSE
http://www.LearnQuick.Com
[phone number on web site]
MC
Herb Martin said:CAMC1 said:How can make my DHCP to deny IP address to a PC on my LAN?
You cannot do that exactly. DHCP is without authentication
or security features.
Do you know the MAC address of the offending PC? (If not,
how else would you identify this machine?)
You can use the MAC address to setup a RESERVERATION for
the machine which MAKES no sense....
Give it an address that is worthless, with a phony default gateway,
DNS, and WINS server etc.
--
Herb Martin, MCSE, MVP
Accelerated MCSE
http://www.LearnQuick.Com
[phone number on web site]
C
CAMC1
I was going to create a new scope with a fake range of IPs, but was afraid
that DHCP would confuse and tought it would distribute to good computers. I
guess as long as I don't put any range to "Address Pool" I don't have to
worry about DHCP assigning those fake addresses, right
(new to this)
MC
that DHCP would confuse and tought it would distribute to good computers. I
guess as long as I don't put any range to "Address Pool" I don't have to
worry about DHCP assigning those fake addresses, right
(new to this)
MC
Herb Martin said:CAMC1 said:I know the Mac Address, when I try to add reservation with an odd IP
address
I get error message "The specified DHCP client is not a reserved client"
whatever it means.
Sorry, I left out the details since I wasn't even sure
that you would use this suggestion (and you might
have known how to do it <grin>).
Create another SCOPE, use the range of "bad" addresses
you wish.
Add the reservation to this phony scope.
Create a Superscope*, and add both the real scope and the
phony scope to it.
*Superscope is misnamed (Microsoft didn't do it this is a
standard term): Superscope should be called a ScopeGroup.
It allows the DHCP server to understand that the SuperScopeGrouped
addresses can be given out through the same NIC.
In fact, I teach my students to always append the word "group"
onto this term so that they will forever remember the purpose of
Superscope(groups).
[Similarly, we do this with "Site Link Bridge" (groups) which are
really just Groups of SiteLinks that are transitively linked (by
the KCC automatically.)]
--
Herb Martin, MCSE, MVP
Accelerated MCSE
http://www.LearnQuick.Com
[phone number on web site]
MC
Herb Martin said:How can make my DHCP to deny IP address to a PC on my LAN?
You cannot do that exactly. DHCP is without authentication
or security features.
Do you know the MAC address of the offending PC? (If not,
how else would you identify this machine?)
You can use the MAC address to setup a RESERVERATION for
the machine which MAKES no sense....
Give it an address that is worthless, with a phony default gateway,
DNS, and WINS server etc.
--
Herb Martin, MCSE, MVP
Accelerated MCSE
http://www.LearnQuick.Com
[phone number on web site]
H
Herb Martin
CAMC1 said:I was going to create a new scope with a fake range of IPs, but was afraid
that DHCP would confuse and tought it would distribute to good computers.
I
guess as long as I don't put any range to "Address Pool" I don't have to
worry about DHCP assigning those fake addresses, right
(new to this)
You must reserver (or exclude) ALL of the addresses of course.
Since they are all reserved for specific MAC addresses they will
never be given to legitimate (non-matching) computers.
--
Herb Martin, MCSE, MVP
Accelerated MCSE
http://www.LearnQuick.Com
[phone number on web site]
MC
Herb Martin said:CAMC1 said:I know the Mac Address, when I try to add reservation with an odd IP
address
I get error message "The specified DHCP client is not a reserved
client"
whatever it means.
Sorry, I left out the details since I wasn't even sure
that you would use this suggestion (and you might
have known how to do it <grin>).
Create another SCOPE, use the range of "bad" addresses
you wish.
Add the reservation to this phony scope.
Create a Superscope*, and add both the real scope and the
phony scope to it.
*Superscope is misnamed (Microsoft didn't do it this is a
standard term): Superscope should be called a ScopeGroup.
It allows the DHCP server to understand that the SuperScopeGrouped
addresses can be given out through the same NIC.
In fact, I teach my students to always append the word "group"
onto this term so that they will forever remember the purpose of
Superscope(groups).
[Similarly, we do this with "Site Link Bridge" (groups) which are
really just Groups of SiteLinks that are transitively linked (by
the KCC automatically.)]
--
Herb Martin, MCSE, MVP
Accelerated MCSE
http://www.LearnQuick.Com
[phone number on web site]
MC
How can make my DHCP to deny IP address to a PC on my LAN?
You cannot do that exactly. DHCP is without authentication
or security features.
Do you know the MAC address of the offending PC? (If not,
how else would you identify this machine?)
You can use the MAC address to setup a RESERVERATION for
the machine which MAKES no sense....
Give it an address that is worthless, with a phony default gateway,
DNS, and WINS server etc.
--
Herb Martin, MCSE, MVP
Accelerated MCSE
http://www.LearnQuick.Com
[phone number on web site]