From: David Foster (foster@dim.ucsd.edu)
Date: Mon Mar 10 2003 - 19:32:39 EST
Platform: SunOS donor 5.8 Generic_108528-18 sun4u sparc SUNW,Ultra-80
I wanted a way to limit access to our Sun DHCP server using a
list of "blessed" MAC addresses, while still providing a range
of dynamically assigned addresses. This is not currently possible
with Sun's server, but a Sun engineer did tell me that it would
be put on the "wish list" for a future release.
I should have been more explicit in my post...many suggested
assigning IPs statically with the MAC address specified, so each
IP will only be assigned to a particular MAC address. This is fine,
except I really needed to keep the functionality of a dynamically
assigned pool of IPs.
You _can_ do what I want using ISC's DHCP server ( http://www.isc.org ),
the solution is summarized well here:
http://marc.theaimsgroup.com/?l=dhcp-server&m=94042921818650&w=2
Here's what your dhcp.conf file might look like:
#declarations des hosts : adresses ethernet
host dell_aa { hardware ethernet 00:04:76:4f:e1:f3;}
host pc_p_laurence { hardware ethernet 00:08:74:97:af:92; }
pool {
range 147.94.21.230 147.94.21.250;
default-lease-time 21600;
max-lease-time 43200;
deny unknown clients;
}
Everyone highly recommended ISC's DHCP server over Sun's. I've been
having problems with IPs becoming "unusable" so I think it's time
for a transition.
Thanks to:
Casper Dik
Dave Miner
William Yodlowsky
Josh Glover
John Adams
Larye D. Parkins
Alexei Kotelnikov
Bryan J. Smith
Marco Greene
Tim Chipman
Francisco Puente
Heiden, John
Steve Sandau
Peter Ondruska
Mike Cunningham
Gerard Henry
Paul Greidanus
Brett Lymn
>
> Is there a way, using Solaris DHCP (or any version of DHCP for
> that matter), to limit which clients may obtain IP addresses?
>
> Something similar to MAC address filtering. I've gone through
> the Sun DHCP manual and don't see anything.
>
> Really like the convenience of DHCP, but we need a way to
> limit access.
>
> Dave Foster
>
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
David Foster National Center for Microscopy and Imaging Research
Programmer/Analyst University of California, San Diego
dfoster@ucsd.edu Department of Neuroscience, Mail 0608
(858) 534-7968 http://ncmir.ucsd.edu/
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
"The reasonable man adapts himself to the world; the unreasonable one
persists in trying to adapt the world to himself. Therefore, all progress
depends on the unreasonable." -- George Bernard Shaw
_______________________________________________
sunmanagers mailing list
sunmanagers@sunmanagers.org
http://www.sunmanagers.org/mailman/listinfo/sunmanagers
This archive was generated by hypermail 2.1.7 : Wed Apr 09 2008 - 23:25:58 EDT