Solved

Restrict DCHP  / Issue different Default Gateway to Domain Members

Posted on 2009-03-30
8
414 Views
Last Modified: 2012-05-06
Is it possible to restrict issuing of DHCP leases to Domain Members only? Or to issue a different default gateway based on Domain Membership?

From what I know already and research so far it does not look to be possible.

Group Policy currently points Domain Members to an ISA Proxy Server via IE Settings.
I would like to ensure that non-domain members which connect to the network are either directed to the Proxy or, directed to a different Default Gateway (which is on a connection which is restricted via another method.).

Is the only way to do this for the Router/Firewall that is normally issued as the default gateway (and is the Gateway for the ISA Server) to only accept web traffic from the ISA Server?

Or is there a way to only issue DHCP Leases to Domain Members?
Given PXE booting exists I'm assuming DHCP is picked up long before Domain Credentials are checked for?
0
Comment
Question by:Softech99754096
  • 3
  • 2
8 Comments
 
LVL 31

Expert Comment

by:Justin Owens
ID: 24020261
You could do it if you want to input the MAC Address of each machine for a reserved DHCP lease, but that is even more maintenance than static IP addresses.  I don't think it is possible, though, outside that.
0
 

Author Comment

by:Softech99754096
ID: 24026892
That is not an option. It would be an administrative nightmare as there are approximately 200 client machines on the network.
0
 
LVL 31

Expert Comment

by:Justin Owens
ID: 24028224
You could VLAN those machines and have a seperate DHCP scope for them...
0
Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

 

Author Comment

by:Softech99754096
ID: 24028566
Hmm.. yes, though I don't know if the Switches in use support multiple VLan's.

If I were to do that I would have to then have multiple DHCP servers - connecting each to an appropriate VLan, right?
0
 
LVL 31

Accepted Solution

by:
Justin Owens earned 25 total points
ID: 24032386
No, you can have multiple scopes on one DHCP server.  I use one Server 2003 DHCP server to farm out 97 different scopes for 92 different locations.
0
 
LVL 7

Assisted Solution

by:hau_it
hau_it earned 25 total points
ID: 24145545
Try to search the DHCP option classes.
With this configuration you can assign classes to to the users and each Class gets its own DHCP configuration.
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
DHCP Best Practice 8 52
Claiming a Domain Name 7 38
SIP / Streaming - real time communications testing 8 51
QoS for Voip 7 39
In this article, I am going to show you how to simulate a multi-site Lab environment on a single Hyper-V host. I use this method successfully in my own lab to simulate three fully routed global AD Sites on a Windows 10 Hyper-V host.
I had an issue with InstallShield not being able to use Computer Browser service on Windows Server 2012. Here is the solution I found.
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

773 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question