-----Original Message-----
From: David A. Bandel [mailto:[EMAIL PROTECTED]]
Sent: Friday, January 18, 2002 8:39 AM
To: [EMAIL PROTECTED]
Subject: Re: network/ limited number of ips
On Fri, 18 Jan 2002 07:37:10 -0600
"Schmeits, Roger" <[EMAIL PROTECTED]> spewed into the
bitstream:
[snip]
>
> >the internet using a single public ip address and an access list of
> >internal ip's that you assign. If it's an ip address not allowed to be
> >masqueraded, then nobody can "steal services" from you. A good reason
> >to stay away from DHCP and use fixed addressing.
>
> With the cisco 350 I can register the network cards by MAC address.
> Preventing anyone from stealing a ip address.
I prevent this by using iptables and only accepting known MAC addresses.
However, this will _not_ prevent someone from reconfiguring their MAC
address (i.e., doing a MAC address takeover) and breaking into your net,
but it does make it a little more difficult. Combine that with WEP and
you should be OK against 99% of folks who want to try to break in.
>
>
> >40 ip addresses should be a no brainer to administer.
> I am terrible lazy...
no cure for this, but I'd suggest using bootp rather than dhcp or static
IPs.
Ciao,
David A. Bandel
--
Focus on the dream, not the competition.
-- Nemesis Racing Team motto
Internet (H323) phone: 206.28.187.30
_______________________________________________
Linux-users mailing list
Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
_______________________________________________
Linux-users mailing list
Archives, Digests, etc at http://linux.nf/mailman/listinfo/linux-users
