LinuxQuestions.org
Latest LQ Deal: Linux Power User Bundle
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 08-29-2008, 06:38 AM   #1
cheesewizz
Member
 
Registered: Aug 2004
Location: Philippines
Distribution: Centos
Posts: 221

Rep: Reputation: 15
Unhappy network connection limited


Hello

i have a question about network connection
i have DHCP server and i used firestarter for my firewall
my question is how can i control new computer machine like desktop, laptop and other devices that no one connect first once i plug in our network or it will appear LAN Limited Connection.

because i noticed every time i connect new computer in my network it will become connected in a few second and i think just because of my DHCP server distributing IP addresses without knowing of MAC address of the LAN Card.

My workstation PC i already get the MAC address and configured in my DHCP server just to assigned fixed address because i dont want to become dynamic, its static IP assigned but its not manually typing in each PC i just configured in the server.


For example:

host PC27 {
hardware ethernet 00:19:21:5E:96:44
fixed-address 192.168.1.127
}




is there any way that i can secure my network in a new PC.


Thanks


 
Old 08-29-2008, 07:02 AM   #2
Agrouf
Senior Member
 
Registered: Sep 2005
Location: France
Distribution: LFS
Posts: 1,591

Rep: Reputation: 79
If I got what you want, you just have to ensure that only 192.168.1.127 is routed to the internet. Is that correct?

iptables -A OUTPUT -o eth0 -s 192.168.1.127 -j ACCEPT
iptables -A OUTPUT -o eth0 -j REJECT

(eth0 is connected to the internet)
I don't know if firestarter does overwrite iptable rules or not, but you should be able to do that in firestarter I think.

Last edited by Agrouf; 08-29-2008 at 07:11 AM.
 
Old 08-29-2008, 11:32 AM   #3
Fantasio
Member
 
Registered: Nov 2007
Location: Vinsobres - Drome - France
Distribution: SuSE Linux 11.3
Posts: 152

Rep: Reputation: 19
man dhcpd.conf and you 'll find what to do
 
Old 08-30-2008, 12:13 AM   #4
cheesewizz
Member
 
Registered: Aug 2004
Location: Philippines
Distribution: Centos
Posts: 221

Original Poster
Rep: Reputation: 15
Quote:
Originally Posted by Agrouf View Post
If I got what you want, you just have to ensure that only 192.168.1.127 is routed to the internet. Is that correct?

iptables -A OUTPUT -o eth0 -s 192.168.1.127 -j ACCEPT
iptables -A OUTPUT -o eth0 -j REJECT

(eth0 is connected to the internet)
I don't know if firestarter does overwrite iptable rules or not, but you should be able to do that in firestarter I think.
no sir, that IP address was manually assigned to DHCP server

i was config like this:

host PC27 {
hardware 00:13:46:8c:30:86;
fixed address 192.168.1.127;
option domain-name servers 192.168.1.1, 210.20.23.21; <--- to enable the internet connection for this IP Address


other PC's dont have internet connection only network connection and if i want to enable the internet connection to each client PC i just insert the option domain-name servers on the DHCP Server conf.

but what i want is if i have new PC and i want to plug in my network or in the HUB Switch, it should be appear first in my screen as network limited if i used windows xp or any OS. so that i can monitor and control the connection of our network...




thanks
 
Old 08-30-2008, 03:58 AM   #5
Fantasio
Member
 
Registered: Nov 2007
Location: Vinsobres - Drome - France
Distribution: SuSE Linux 11.3
Posts: 152

Rep: Reputation: 19
in your /etc/dhcpd.conf, set deny unknown-clients; in the global paragraph, to allow static address by dhcp, set host { } for each mac address you give access.
Don't forghet to restart the dhcpd service
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Connection speed is limited to clients on Linux fayax Linux - Networking 4 11-27-2007 12:31 PM
Limited Wireless Connection montj Linux - Wireless Networking 2 09-02-2007 11:46 PM
How'd I get a iptables to call a customer connection limited module that I wrote in c abefroman Linux - Security 1 05-01-2005 10:06 PM
Outgoing data rate limited per connection: how to fix? chrismear Linux - Networking 2 12-24-2004 06:51 PM
network card w/ bandwith limited? 4Gr Linux - Hardware 1 12-03-2004 04:09 PM


All times are GMT -5. The time now is 01:27 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration