How to block network access to devices not given an IP by the DHCP server on a SonicWall?

We have a Sonicwall NSA2400 as our edge firewall with DHCP issuing static addresses to known MAC addresses.
When a new user PC or device needs network access, their MAC address is recorded and a Static DHCP rule is added to issue the IP.  Is there any way to block access to any device that has not received an IP address from the DHCP server?

I know we can add a deny firewall rule and only permit known MAC addresses, but this is another management step that needs to be done per device.  I also know we can institute a RADIUS server, but again, more managing is required.  I was looking for a built in user group such as 'DHCP AUTHENTICATED USERS' or similar.

Thanks.
LVL 9
Rob_JeffreyIT/ProgrammingAsked:
Who is Participating?
 
Craig BeckCommented:
DHCP snooping would be the way to go but I'm not sure that the Sonicwall supports it.

You'd need to do.it at your switches and your wireless network.
0
 
btanExec ConsultantCommented:
Can try to enable its MAC-IP based  Anti-spoof cache checks
https://support.software.dell.com/kb/sw11919
0
 
Craig BeckCommented:
MAC-IP based  Anti-spoof cache checks
A.K.A DHCP snooping :-)

Good shout btan!
0
Protect Your Employees from Wi-Fi Threats

As Wi-Fi growth and popularity continues to climb, not everyone understands the risks that come with connecting to public Wi-Fi or even offering Wi-Fi to employees, visitors and guests. Download the resource kit to make sure your safe wherever business takes you!

 
btanExec ConsultantCommented:
yap same objective just different naming btw Cisco and Sonicwall :)
0
 
Rob_JeffreyIT/ProgrammingAuthor Commented:
Awesome.  I will enable that and see who can break in.
0
 
Craig BeckCommented:
Thanks, Rob, but I think breadtan's comment should be marked as the answer :-)
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.