dhcpd.conf how to secure so only known and allowed clients will be given dhcpd IP address leases

It's really simple and just a matter of the following line within the subnet declaration.

  deny unknown-clients;

See example below:

subnet 10.25.20.0 netmask 255.255.255.0 {
  range 10.25.20.11 10.25.20.254;
  deny unknown-clients;
  option routers 10.25.20.10;
  option domain-name-servers 208.67.222.222;

   host client05 {
   hardware ethernet aa:bb:cc:dd:ee:ff;

   }

}

 

After that only clients with a declared host statement will be able to get a DHCP lease increasing security a little bit.

 


Tags:

dhcpd, conf, ip, leasesit, subnet, declaration, netmask, routers, domain, servers, hardware, ethernet, aa, bb, cc, dd, ee, ff, declared, dhcp, lease, increasing,

Latest Articles

  • Cisco Switches How To Get Of Port Line Status Console Messages
  • Cisco DHCP Snooping Relay Setup Information
  • Cisco Switch Setup Guide Command List
  • Cisco 2960 Switch Reset To Factory Defaults
  • How To Boot Cisco CUCM UCSInstall 8.6, 10, 11 and 12 on KVM/Proxmox
  • VBOX VirtualBox How To Import Raw .img Disk File
  • Windows Server 2012, 2016, 2019 How To Install and Missing Disabled Telnet Client
  • proxmox vm networking breaks when you restart your network on the hostnode
  • Linux ln symlink how to update existing symbolic link
  • Ubuntu 18.04 / Linux Mint 19.1 Cannot Type or Login - solution
  • LUKS Hard Drive Encryption on Linux Mint Ubuntu Debian etc how to mount encrypted hard drive
  • How to use nmap locate other machines/computers/servers on your network using nmap
  • Linux Mint 18.2 Create Config File To Start Application Upon Login
  • Dell Wyse Thin Client BIOS Access Key
  • sudoers file in /etc warning about comments/includes!
  • Centos 7 Reallocate logical volume space to another
  • lvm how to reduce volume size
  • letsencrypt certbot error "Unable to find a virtual host listening on port 80 which is currently needed for Certbot to prove to the CA that you control your domain. Please add a virtual host for port 80."
  • SSH error cannot Forward or Listen "bind: Cannot assign requested address"
  • X11 SSH Linux Forwarding Error