It's really simple and just a matter of the following line within the subnet declaration.
deny unknown-clients;
See example below:
subnet 10.25.20.0 netmask 255.255.255.0 {
range 10.25.20.11 10.25.20.254;
deny unknown-clients;
option routers 10.25.20.10;
option domain-name-servers 208.67.222.222;
host client05 {
hardware ethernet aa:bb:cc:dd:ee:ff;
}
}
After that only clients with a declared host statement will be able to get a DHCP lease increasing security a little bit.
dhcpd, conf, ip, leasesit, subnet, declaration, netmask, routers, domain, servers, hardware, ethernet, aa, bb, cc, dd, ee, ff, declared, dhcp, lease, increasing,