IP address conflicts
Eric Crist
ecrist at secure-computing.net
Tue Sep 28 06:40:10 PDT 2004
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
For what it's worth, aside from some reconfiguration that could be a
little time consuming, I would suggest putting the servers on a
different subnet that everything else. If all the computers that are
not servers are supposed to be configured for DHCP, insert a FreeBSD
box that filters out any addresses outside that subnet.
i.e. Server IP addresses are all 192.168.1.0 thru 192.168.1.50. Set
your DHCP server to only assign IP addresses above 192.168.1.75 and up
or so. I'm too lazy to do the math right now, but use the appropriate
subnet mask and filter all the other stuff out. Aside from those
students disrupting some of the other users on the network, they can't
spoof the servers anymore.
Just my $.02.
- -----
Eric F Crist
Secure Computing Networks
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (Darwin)
iEYEARECAAYFAkFZaTAACgkQRAAY9knOW+qSsACghfRW0BGQg5Rq9tShVcTbcxzY
C1IAn3FEjWy1BS4ROedTsC3MKIJehoOm
=8XMh
-----END PGP SIGNATURE-----
More information about the freebsd-questions
mailing list