On Fri, 18 Jan 2002 07:37:10 -0600 "Schmeits, Roger" <[EMAIL PROTECTED]> spewed into the bitstream:
[snip] > > >the internet using a single public ip address and an access list of > >internal ip's that you assign. If it's an ip address not allowed to be > >masqueraded, then nobody can "steal services" from you. A good reason > >to stay away from DHCP and use fixed addressing. > > With the cisco 350 I can register the network cards by MAC address. > Preventing anyone from stealing a ip address. I prevent this by using iptables and only accepting known MAC addresses. However, this will _not_ prevent someone from reconfiguring their MAC address (i.e., doing a MAC address takeover) and breaking into your net, but it does make it a little more difficult. Combine that with WEP and you should be OK against 99% of folks who want to try to break in. > > > >40 ip addresses should be a no brainer to administer. > I am terrible lazy... no cure for this, but I'd suggest using bootp rather than dhcp or static IPs. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto Internet (H323) phone: 206.28.187.30 _______________________________________________ Linux-users mailing list Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users