From: Peter Valian (valianp@southwestern.edu)
Date: Fri Jun 30 2000 - 09:23:27 CDT
Neil,
Most of our students stay in the same dorm for 9 or more months. We
choose to flush our database (our dhcpd.conf file that holds
registration info) and make them re-register each semester to catch
students that have moved or graduated.
It's not required you do that...you can just manually remove MAC
addresses one at a time if you'd like.
Also, our registered user pool of IP addresses is greater than the
number of anticipated machines on any particular subnet. That way
students will most likely get the same IP address everytime they get a
lease from that DHCP server.
I think you would like what we have planned for NetReg 2.0...
We are going campus-wide with DHCP and NetReg'ing it all, however, we
need the ability to give static addresses to some machines. NetReg 2
will allow you to dynamically assign static IPs based on MAC address.
so (in theory :), when a new machine is purchased for a faculty member
and it needs to be given a static address, I can just take it's MAC and
define what address it should always get in the dhcpd.conf (sort of a
permanent leases only for that MAC address).
This all has yet to be worked out...hopefully should have something
before the fall (like the other hundred projects that need to be done)
...so don't anyone hold their breath :)
-- Peter Valian Network & Systems Administrator Southwestern University Georgetown, Texas 512.863.1586Neil Francis wrote: > > Hi peter - thanks for your reply. > > We could do something similar I think. The only issue I have is that we > were thinking of using this method for our students to obtain access to the > network from their student bedrooms. Maybe this is the wrong tool for the > job here as these people would be permanently connected for ~9 months of > the years and I dare say some would like a fixed IP address. > > I have not installed netreg yet - am planning to do so next week. Can I > check that once a user is registered they stay in the dhcp.conf file until > they are manually removed. If so this could mean that they can register, > obtain an IP address, have a look at what they have been allocated and then > choose a similar IP address to hardwire in. > > In this way their MAC address would appear in the netreg database so it > would look like they were OK when checking against the router ARP tables. > Is this correct or have I missed something? > > NEil > > At 13:59 29/06/00, Peter Valian wrote: > >Hi Neil, > > > >I am not including this file in the distribution as I think the code is > >pretty proprietary. > > > >The program simply dumps our router's ARP table and searches for MAC > >addresses in the residence halls that are not in the dhcpd.conf file > >(machines that are not registered). Further investigation is delt with > >manually. > > > >NetReg was not written with security in mind however, we are trying to > >patch our holes as we think them up. > > > >I'd like to up this question up to the mailing list to see if anyone > >else has an idea to help fix this. > > > >-peter > > > >-- > >Peter Valian > >Network & Systems Administrator > >Southwestern University > >Georgetown, Texas > > > > > >Neil Francis wrote: > > > > > > Hi, > > > > > > Just been reading about your netreg system. > > > > > > Security concerns me slightly. You mention a program you have written > > > called findrogue to aid in finding people who hardwire IP addresses into > > > their PCs. > > > > > > I didn't see this in the distribution I downloaded. Can you tell me more > > > about it? > > > > > > Regards > > > ---------------------- > > > Neil Francis > > > n.j.francis@bath.ac.uk > > > Tel: (44) 122 532 3571 > > > Bath University Computing Services > >********************************************************************** > >To unsubscribe from this list, send an e-mail message to > >majordomo@southwestern.edu containing a single line with the words: > >unsubscribe netreg > >Send requests for assistance to: owner-netreg@southwestern.edu > >********************************************************************** > > ---------------------- > Neil Francis > n.j.francis@bath.ac.uk > Tel: (44) 122 532 3571 > Bath University Computing Services > ********************************************************************** > To unsubscribe from this list, send an e-mail message to > majordomo@southwestern.edu containing a single line with the words: > unsubscribe netreg > Send requests for assistance to: owner-netreg@southwestern.edu > ********************************************************************** ********************************************************************** To unsubscribe from this list, send an e-mail message to majordomo@southwestern.edu containing a single line with the words: unsubscribe netreg Send requests for assistance to: owner-netreg@southwestern.edu **********************************************************************
This archive was generated by hypermail 2.1.4 : Thu Aug 12 2004 - 12:01:33 CDT