> -----Original Message----- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf > Of Lule George William > Sent: Friday, June 17, 2005 4:18 PM > To: Linux Users Group Uganda > Subject: Re: [LUG] Refusing connections with DHCP > > On Friday 17 June 2005 13:22, Ronny wrote: > > George ,Benjamin and Mark have given the same clue so chose.Machines you > > want to ban will still disturb your LAN .They will try to look for the > > IP's that can access the LAN they might even put the IP od the server > > ;-) !.I advise you to attack first on layer 2 or 1 you either remove > > their network cards or block the MAC addresses at the Switch level Hope > > this helps my friend. > > Ronny > > > Hmm, I am finding it hard to swallow the fact it can't be done in the dhcp > configuration!! > O.K, where did I place that console cable?
Maybe you can, but it simply will be more effective and straight-forward doing it at Layer2 level. Not sure what gear you're using but some vendors switches have simple black-holing commands which enable you to devnull all traffic coming from a particular MAC address wherever that user attaches himself onto the LAN switching fabric. And it also might be a good idea to assign your switches IP addresses so you don't have to look for that console in future... > > -- > ************************************************************************ > Lule George William (Mr) > Network and Systems Administrator > Uganda Martyrs University, Nkozi > P.O. Box 5498 Kampala > Uganda > /* The only reason some people are alive is because it is illegal to shoot > them */ > _______________________________________________ > LUG mailing list > [email protected] > http://kym.net/mailman/listinfo/lug > %LUG is generously hosted by INFOCOM http://www.infocom.co.ug/ _______________________________________________ LUG mailing list [email protected] http://kym.net/mailman/listinfo/lug %LUG is generously hosted by INFOCOM http://www.infocom.co.ug/
