Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

How to Limit MAC addresses in my DHCP Linux server

Posted on 2009-07-11
6
1,745 Views
Last Modified: 2013-12-06
Hi all ...

Hi have dhcp linux server , it is work fine , but I need to specify MAC's addresses for Trusted PC Only witch Only I need to get dynamic ip from dhcp , so if another/Unowned  PC's connect to my switch then it can not get ip from my dhcp

Note : I need PC get Dynamic IP NOT Static/Reserved  IP

my desrto is CentOS 5.3

Thank ..


Show my DHCP configurations
############################
## DHCP Configurations
## Configured By KING SABRI
############################
 
# ---> Options
 
ddns-update-style none; # keep it simple for now ( donn't use this option when you have DNS server )
ignore client-updates;  # here too authoritative ( donn't use this option when you have DNS server )
default-lease-time 600;
max-lease-time 7200;
authoritative;
DHCPARGS=eth1;          # what interface to listen on as DHCP
# ---> END
 
# ---> Subnet 30.0.0.0/8
 
subnet 30.0.0.0 netmask 255.0.0.0 {
 
       option routers                  30.0.0.1;         # gateway is eth1 LAN interface
       option subnet-mask              255.0.0.0;        # subnet mask
       option domain-name              "30.0.0.1";       # domain name given to client
       option domain-name-servers      30.0.0.1;         # the IP of your ISP's nameservers you're using
       option broadcast-address        30.255.255.255;   # Broadcast
       range 30.0.0.11 30.0.0.100;                       # the range of IP's your clients will get
# ---> END

Open in new window

0
Comment
Question by:eng-sabri
  • 3
  • 2
6 Comments
 
LVL 9

Accepted Solution

by:
DCMBS earned 125 total points
ID: 24831894
Hi.  MAC address filtering can be done ip IPtables MC Module.  It is not a DHCP function.

Check the following link.

http://www.cyberciti.biz/tips/iptables-mac-address-filtering.html
0
 
LVL 1

Author Comment

by:eng-sabri
ID: 24833619
Thank you DCMBS for help , but I know how to allow and prevent MAC from iptables

I think sir there are options can support my request like playing with

 host apex {

      hardware ethernet 00:A0:78:8E:9E:AA;
      fixed-address 192.168.1.4;
   }

you can see " fixed-address 192.168.1.4  "

so I think there are some options do not force fixed ip of put " if statement  " or thing like that  
0
 
LVL 9

Expert Comment

by:DCMBS
ID: 24834032
Well I'm not sure what you are tring to achieve.  If you use iptables to restrict connections based on MAC addess then if a connection is allowed it will get a dynamic IP address from DHCP.  I don't know any way to do this just using DHCP.  DHCP issues dynamic or reserved IP addresses.  A Dynamic IP address will be provided to any MAC address that does not have a reservation allocated to it. A reserved address can be issued to a nominated MAC address.
0
 
LVL 1

Author Comment

by:eng-sabri
ID: 24846883
thank you DCMBS ..

but I think Limitation/Handling offering IP's this is DHCP business because it depend on MAC to offer this service to it must me handle MAC's ,, I think I sow this function in Windows DHCP server

so ..

Do you have Ideas ?
0
 
LVL 9

Expert Comment

by:DCMBS
ID: 24847295
I have never seen this as part of a DHCP server in any O/S.  Even in wireless routers the MAC filtering function is seperate from DHCP.  Someone may come along and contradict me but in my experience I have never seen this.
0

Featured Post

Master Your Team's Linux and Cloud Stack

Come see why top tech companies like Mailchimp and Media Temple use Linux Academy to build their employee training programs.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
liboauth-php x oauth-1.2.3 3 79
Secondary DNS Server 2008 R2 not kicking in 1 80
How to mount an LVM partition that is part of a disk image. 3 82
awk file 6 78
This article will explain how to establish a SSH connection to Ubuntu through the firewall and using a different port other then 22. I have set up a Ubuntu virtual machine in Virtualbox and I am running a Windows 7 workstation. From the Ubuntu vi…
Hello EE, Today we will learn how to send all your network traffic through Tor which is useful to get around censorship and being tracked all together to a certain degree. This article assumes you will be using Linux, have a minimal knowledge of …
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

856 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question