Solved

Restricting clients based on mac address

Posted on 2004-08-06
7
192 Views
Last Modified: 2010-04-14
We have a window 2000 server running without dhcp with 12 clients running windows 98.

1)we would like to restrict unauthorised mac addressed systems form connecting to our server or by asssigning static ip of their own.

2) we also like to restrict logins from unauthorised systems

thanks in advance. i am in a real need of a solution
0
Comment
Question by:das711
  • 2
7 Comments
 
LVL 9

Accepted Solution

by:
SamuraiCrow earned 125 total points
ID: 11741156
It seems that the MAC address issue can be taken care of with client reservations in windows 2000 or 2003 DHCP.  This allows you to reserve a certain ip address for a client based on MAC address.  Furthermore you can lock down the routing ingrastructure by only allowing traffic from the range of ip addresses specified in the reserved DHCP scope.  The following talks about making client reservations:

http://www.microsoft.com/windows2000/en/server/help/default.asp?url=/windows2000/en/server/help/sag_DHCP_imp_UsingClientReservations.htm

If you would like more info, let me know a little more about your network such as routing, firewall physical connectivity.  Also are you running in a windows 2000 domain enviroment?
0
 

Author Comment

by:das711
ID: 11742188
Thanks samurai.I would like have more info.We dont have any firewalls or routers or routing.Every system is connected to the server via utp cables thru a switch which is not manageable

our server is running as a domain controller and clients log in to the domain controller

0
 
LVL 14

Assisted Solution

by:dlwyatt82
dlwyatt82 earned 125 total points
ID: 11743022
If you want true network security in a small network such as this, you will need a managable switch. Setting DHCP server options will not stop people from configuring static IP addresses on their workstations and accessing your server that way.
0
 
LVL 9

Expert Comment

by:SamuraiCrow
ID: 11743394
I have to agree with dlwyatt82 on this one.  There is no way the I know of to keep someone from configuring their own static IP and talking with your network unless there is some sort of managed routing enviroment.  I'll do a little digging and see if I can come up with something though.
0

Featured Post

Complete VMware vSphere® ESX(i) & Hyper-V Backup

Capture your entire system, including the host, with patented disk imaging integrated with VMware VADP / Microsoft VSS and RCT. RTOs is as low as 15 seconds with Acronis Active Restore™. You can enjoy unlimited P2V/V2V migrations from any source (even from a different hypervisor)

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
We need a new way to communicate time sensitive or critical info.   The best part of my role at xMatters is visiting our clients all over the world to learn about how they operate their businesses, share insights that xMatters has gleaned across…
Internet Business Fax to Email Made Easy - With eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…
Many functions in Excel can make decisions. The most simple of these is the IF function: it returns a value depending on whether a condition you describe is true or false. Once you get the hang of using the IF function, you will find it easier to us…

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now