NetReg: "booting disallowed"

From: Brian Johnson (brian@netcom.duke.edu)
Date: Tue Sep 09 2003 - 10:56:00 CDT

• Next message: Peter Valian: "Re: NetReg: "booting disallowed""
• Previous message: David Meuleman: "Re: NetReg: MSIE 5.0 and Macintosh Safari"
• Next in thread: Peter Valian: "Re: NetReg: "booting disallowed""
• Reply: Peter Valian: "Re: NetReg: "booting disallowed""
• Maybe reply: PNIXON@ci.somerville.ma.us: "RE: NetReg: "booting disallowed""

Hello All,

This is our second year using NetReg for our Residential users, and our
first for using it on our wireless network. Although we are now able to
track down offending/infected wireless users and contact them, if they
ignore us, there's not much we can do. The only way we've found to deal
with such users is using the 'deny booting' flag at the end of their host
entries in the dhcp server, similar to below:

#<BEGIN_STATIC>#
host qqqq-1 { hardware ethernet 00:00:00:00:00:00 ; deny booting; }
host qqqq-2 { hardware ethernet 00:00:00:00:00:01 ; deny booting; }
host qqqq-3 { hardware ethernet 00:00:00:00:00:02 ; deny booting; }

This morning, I was contacted by a user with Linux on their wireless
laptop saying he was having difficulty getting an ip address. Digging
through the logs, I found:

Sep 9 10:57:30 udc dhcpd: DHCPDISCOVER from <mac address> via
<ip address>: booting disallowed

Problem being, <mac address> was not one of the macs we have 'deny
booting' listed for. More digging shows that between Sep 07 and today,
more than 600 unique mac addresses show up with 'booting disallowed' in
the logs, whereas we only have 'deny booting' for ~36 users.

I realize that this is really more of a dhcp issue than netreg, but I dug
through the ISC mailing list archives for info, and although the
question's been asked, it never seemed to have gotten answered. I thought
this would be a good place to go since everyone here is familiar with the
basic layout of a NetReg system and may have encountered the same thing.

Thank you for any help and I'll be happy to send more information as
requested.

Brian Johnson

-------------
Brian Johnson
OIT Datacom
brian@netcom.duke.edu
919-668-6492
**********************************************************************
To unsubscribe from this list, send an e-mail message to
majordomo@southwestern.edu containing a single line with the words:
unsubscribe netreg
Send requests for assistance to: owner-netreg@southwestern.edu
**********************************************************************

• Next message: Peter Valian: "Re: NetReg: "booting disallowed""
• Previous message: David Meuleman: "Re: NetReg: MSIE 5.0 and Macintosh Safari"
• Next in thread: Peter Valian: "Re: NetReg: "booting disallowed""
• Reply: Peter Valian: "Re: NetReg: "booting disallowed""
• Maybe reply: PNIXON@ci.somerville.ma.us: "RE: NetReg: "booting disallowed""

This archive was generated by hypermail 2.1.4 : Thu Aug 12 2004 - 12:01:40 CDT