How do I block a MAC address on my network so that a PC with that particular MAC address cannot get any IP address from my DHCP server?
You can do it in two ways:
- If you know the number of PC's on your network, then force MAC binding in DHCP and limit the range of available IP's in your DHCP to the number of PC's on your network. This way there will be no free IP's available for the DHCP to assign to a new PC that comes online. Of course, you will have exclusion range for your servers configured already.
- The best solution is to use NAC -- a network access control product. The one that is available, free and works great is Packetfence. It's an open source distribution and does a lot more than just problem solve a DHCP. You can download this from the Sourceforge site.
Dig Deeper on Network Access Control
Related Q&A from Puneet Mehta
To view network security expert Puneet Mehta's latest advice, see his Public Profile on the IT Knowledge Exchange: http://...continue reading
Find out if there's a difference between a virtual private network (VPN) concentrator and a network access server (NAS) in this explanation from our ...continue reading
Our network security expert explains how to keep unauthorized users from accessing your router's IP address for Internet access in this advice ...continue reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.