Unknown node(s) showing up in DHCP scope

First off all clients have statically assigned IPs, there is a very small
DHCP scope available for setting up new computers/printers (6 address).
However recently 2-3 addresses in this range have been used on a
consistent basis (however, not consistent enough to always catch them
being active). This is a medium environment (about 500-1000 computers,
and a large number of printers as well as a few servers) thus tracking
them down by walking to each client and checking IPs would be a rather
large task. I have been able to grab their MAC addresses using arp. The
server is running windows 2000 server clients are a mix of win95/98,
win2k, winXP, mac 7-9, mac os x, linux, unix. I know that it is not any
of the servers and a pretty good feeling that it is not any of them
printers, what i suspect is going on is someone is bringing in their
home laptop and connecting to an active port. Only the IT people know of
the DHCP aspect of the environment.
What I am looking to do is to block those MAC addresses from using the
DHCP scope or from accessing the network as a whole. Then once the users
complain that the "internet is broken" we will be able to take appropriate
measures.
Main reason this is such a big deal is that we are billed from network
usage and the unknown MAC addresses are causing a rather large amount of
traffic when they are on.
So any help would be great!
Thanks
LVL 1
x40ozbabyAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

JammyPakCommented:
the problem is that DHCP can reserve addresses for MACs, but I don't know of a way to prevent certain MACs from getting an address.
x40ozbabyAuthor Commented:
ended up using the cisco router to filter MAC addesses
Computer101Commented:
PAQed, with points refunded (275)

Computer101
E-E Admin

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows Networking

From novice to tech pro — start learning today.