hi ya
i'd just assign the valid ip# to a dummy box...
where the "dummy box" will reply to all pings to all "unused" ip#
( virtual hosts )
pain in the butt ... if you have to do 250 of um for 4 valid hosts
- why not route it differently or firewall it with the right masks
they can change their local mask on their pc..but there is
no routes to their (sneaky) laptops they sneak in
c ya
alvin
On Wed, 13 Feb 2002, Brett Lymn wrote:
> According to Paul Robertson:
> >
> >That doesn't stop an internal user on the same subnet from "stealing" a
> >valid IP address.
> >
>
> Depending on how much work you want to do you can manually fill the
> arp cache with IP/Mac address pairs. That way they will have to steal
> the network card or reprogram the MAC on the network card...
>
_______________________________________________
Firewalls mailing list
[EMAIL PROTECTED]
http://lists.gnac.net/mailman/listinfo/firewalls
