From owner-freebsd-questions Thu Apr 11 11:24:29 2002 Delivered-To: freebsd-questions@freebsd.org Received: from pumba.nur.ac.rw (pumba.nur.ac.rw [216.147.148.9]) by hub.freebsd.org (Postfix) with ESMTP id 67A1F37B417 for ; Thu, 11 Apr 2002 11:24:16 -0700 (PDT) Received: from [216.147.148.11] (account ) by pumba.nur.ac.rw (CommuniGate Pro WebUser 3.4.2) with HTTP id 3090971 for ; Thu, 11 Apr 2002 18:23:56 +0000 From: "mike ndabarasa" Subject: dhcp question To: freebsd-questions@freebsd.org X-Mailer: CommuniGate Pro Web Mailer v.3.4.2 Date: Thu, 11 Apr 2002 18:23:56 +0000 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="ISO-8859-1" Content-Transfer-Encoding: 8bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG hello, i have here a question about how we can secure DHCP use in a network. as i understand DHCP use broadcast to function. this means a desktop power up and then querry in the network who can provide it an IP address.the first available dhcp server makes an offer and ..... let's suppose now for one reason(a user was just trying to "learn" how a dhcp server works,someone with bad intentions) there is one misconfigured dhcp "server" that stands there in the network and you don't know about its existence.it's making offers upon requests from clients and those offers are not acceptable for our precise network. we will end up with clients with IP addresses that will prevent them from being routed to others networks since they are not relevant to our network. here is my question: ==================== how do i know who in my network is making dhcp offers so that i can recognize officials dhcp from un-officials. i understant one way is to check running processes on every machine but this may be a daunting task. i want a tool that i may use from my desktop before i go down to the identified troublemaker. NDABARASA MIKE *** CCNA(Cisco Certified Network Associate) *** *** CCAI(Cisco Certified Academy Instructor) *** National University of Rwanda COMPUTING CENTRE E-mail: mike@nur.ac.rw Voice: office (+250)530666 mobile (+250)08425269 ============================================================ Felix qui potuit rerum cognoscere causas *** &&& $$$ &&& *** Heureux celui qui comprend l'ultime raison des choses ============================================================ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message