dhcpd.conf how to secure so only known and allowed clients will be given dhcpd IP address leases

It's really simple and just a matter of the following line within the subnet declaration.

  deny unknown-clients;

See example below:

subnet 10.25.20.0 netmask 255.255.255.0 {
  range 10.25.20.11 10.25.20.254;
  deny unknown-clients;
  option routers 10.25.20.10;
  option domain-name-servers 208.67.222.222;

   host client05 {
   hardware ethernet aa:bb:cc:dd:ee:ff;

   }

}

 

After that only clients with a declared host statement will be able to get a DHCP lease increasing security a little bit.

 


Tags:

dhcpd, conf, ip, leasesit, subnet, declaration, netmask, routers, domain, servers, hardware, ethernet, aa, bb, cc, dd, ee, ff, declared, dhcp, lease, increasing,

Latest Articles

  • FreePBX 17 How To Add a Trunk
  • Docker Container Onboot Policy - How to make sure a container is always running
  • FreePBX 17 How To Add Phones / Extensions and Register
  • Warning: The driver descriptor says the physical block size is 2048 bytes, but Linux says it is 512 bytes. solution
  • Cisco How To Use a Third Party SIP Phone (eg. Avaya, 3CX)
  • Cisco Unified Communication Manager (CUCM) - How To Add Phones
  • pptp / pptpd not working in DD-WRT iptables / router
  • systemd-journald high memory usage solution
  • How to Install FreePBX 17 in Linux Debian Ubuntu Mint Guide
  • How To Install Cisco's CUCM (Cisco Unified Communication Manager) 12 Guide
  • Linux Ubuntu Redhat How To Extract Images from PDF
  • Linux and Windows Dual Boot Issue NIC Won't work After Booting Windows
  • Cisco CME How To Enable ACD hunt groups
  • How to install gns3 on Linux Ubuntu Mint
  • How to convert audio for Asterisk .wav format
  • Using Cisco CME Router with Asterisk as a dial-peer
  • Cisco CME How To Configure SIP Trunk VOIP
  • Virtualbox host Only Network Error Failed to save host network interface parameter - Cannot change gateway IP of host only network
  • Cisco CME and C7200 Router Testing and Learning Environment on Ubuntu 20+ Setup Tutorial Guide
  • Abusive IP ranges blacklist