-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 #Global Declarations ddns-update-style ad-hoc; option domain-name "home.local"; default-lease-time 604800; # Default Lease 1 Week max-lease-time 1209600; # Max Lease 2 weeks authoritative; # We are the official DHCP Server for this network subnet 10.10.20.0 netmask 255.255.255.0 { authoritative; # Everybody in here will not get an ip whatsoever pool { range 10.10.20.20 10.10.20.127; deny known-clients; host slide { hardware ethernet 00:c0:9f:15:d7:3f; } } pool { range 10.10.20.128 10.10.20.253; deny unknown-clients; host fixed { hardware ethernet 00:11:22:33:44:55; # fixed-address 10.10.20.25; } } } Basically what you want is at least two pools. The first pool will do the most of your address assignments, but if you specify the host, it will deny it due to the deny known-hosts. The second pool I'm using for static assignments, but it's crucial to have the deny unknown-clients or else anybody you deny up top will be able to get an ip here. As usual, questions, comments anything else is always welcome. Jared Greenwald wrote:
So, why don't you post the answer so that others may benefit from it?
-Jared
On 6/2/06, Eric Martin <freak4uxxx@gmail.com> wrote: I figured it out. Thanks to all who helped point me in the right direction. The man page was just really hard to grasp until I took a few breaks and took a shot in the dark.
Theo Van Dinter wrote:
On Fri, Jun 02, 2006 at 12:22:22PM -0700, Mike Leo wrote:
could you just assign that MAC a bad IP setup? like the wrong netmask or something? Would that solve your problem?
fwiw, I believe the "correct" method is listed in the dhcpd.conf man page. Look for "ALLOW AND DENY WITHIN POOL DECLARATIONS". there's a way to do allow/deny. without digging further, I'd guess you make a class with the mac addr's you don't want getting addresses, then deny the class.
_______________________________________________ Wlug mailing list Wlug@mail.wlug.org http://mail.wlug.org/mailman/listinfo/wlug
_______________________________________________ Wlug mailing list Wlug@mail.wlug.org http://mail.wlug.org/mailman/listinfo/wlug
_______________________________________________ Wlug mailing list Wlug@mail.wlug.org http://mail.wlug.org/mailman/listinfo/wlug
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2.2 (GNU/Linux) iD8DBQFEgW5baI8VEtSi4H8RAltyAJ4hPopL2xxIq8CpveaX8FAWv262zgCgjxCT 0xzC1YuLntipH0LvZ99FfRU= =D3Kf -----END PGP SIGNATURE-----