Solved

Restricting clients based on mac address

Posted on 2004-08-06
7
197 Views
Last Modified: 2010-04-14
We have a window 2000 server running without dhcp with 12 clients running windows 98.

1)we would like to restrict unauthorised mac addressed systems form connecting to our server or by asssigning static ip of their own.

2) we also like to restrict logins from unauthorised systems

thanks in advance. i am in a real need of a solution
0
Comment
Question by:das711
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
7 Comments
 
LVL 9

Accepted Solution

by:
SamuraiCrow earned 125 total points
ID: 11741156
It seems that the MAC address issue can be taken care of with client reservations in windows 2000 or 2003 DHCP.  This allows you to reserve a certain ip address for a client based on MAC address.  Furthermore you can lock down the routing ingrastructure by only allowing traffic from the range of ip addresses specified in the reserved DHCP scope.  The following talks about making client reservations:

http://www.microsoft.com/windows2000/en/server/help/default.asp?url=/windows2000/en/server/help/sag_DHCP_imp_UsingClientReservations.htm

If you would like more info, let me know a little more about your network such as routing, firewall physical connectivity.  Also are you running in a windows 2000 domain enviroment?
0
 

Author Comment

by:das711
ID: 11742188
Thanks samurai.I would like have more info.We dont have any firewalls or routers or routing.Every system is connected to the server via utp cables thru a switch which is not manageable

our server is running as a domain controller and clients log in to the domain controller

0
 
LVL 14

Assisted Solution

by:dlwyatt82
dlwyatt82 earned 125 total points
ID: 11743022
If you want true network security in a small network such as this, you will need a managable switch. Setting DHCP server options will not stop people from configuring static IP addresses on their workstations and accessing your server that way.
0
 
LVL 9

Expert Comment

by:SamuraiCrow
ID: 11743394
I have to agree with dlwyatt82 on this one.  There is no way the I know of to keep someone from configuring their own static IP and talking with your network unless there is some sort of managed routing enviroment.  I'll do a little digging and see if I can come up with something though.
0

Featured Post

Comparison of Amazon Drive, Google Drive, OneDrive

What is Best for Backup: Amazon Drive, Google Drive or MS OneDrive? In this free whitepaper we look at their performance, pricing, and platform availability to help you decide which cloud drive is right for your situation. Download and read the results of our testing for free!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
In this blog we highlight approaches to managed security as a service.  We also look into ConnectWise’s value in aiding MSPs’ security management and indicate why critical alerting is a necessary integration.
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…
If you’ve ever visited a web page and noticed a cool font that you really liked the look of, but couldn’t figure out which font it was so that you could use it for your own work, then this video is for you! In this Micro Tutorial, you'll learn yo…

695 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question