News: This forum is now permanently frozen.
Pages: [1]
Topic: Deny MAC address from DHCP  (Read 2271 times)
« on: October 14, 2009, 20:02:38 »
arell12 *
Posts: 11

I have this issue, a user has placed a wireless router on the LAN and it is giving open access. Looks like he has it setup so that the wireless router is getting an IP from my m0n0wall and the wireless router is then giving out other addresses.

I was thinking if I could juest deny that MAC address from getting an IP address I could stop this from happening, but I dont see where I can deny an IP, I can only deny unkown clients which means I would have to add every other client in there.

Another thought, if this user puts the wireless router into "access Point" mode where it basically just passes along DHCP requests, how can you stop something like this?
« Reply #1 on: October 15, 2009, 05:08:59 »
gus *
Posts: 27

I would give the wireless router a *static* IP in the m0n0 DHCP and then make a firewall rule to block all traffic to it.  This will work until the router admin spoofs a new MAC or statically assigns it an IP in your range. 

I have to wonder why not just break layer one??  Unplug it??

Or have some fun, upside-down-ternet anyone?
 
Pages: [1]
 
 
Powered by SMF 1.1.20 | SMF © 2013, Simple Machines