1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Restricting IP ranges or forcing DHCP?

Discussion in 'Tomato Firmware' started by ewithrow, Feb 28, 2008.

  1. ewithrow

    ewithrow Guest

    Is there a was to force devices to use DHCP and not be able to assign a static IP?

    My goal is to get known clients (set up in Static DHCP) into a certain IP range (i.e. 192.168.1.[2-99]) and unknown clients get put into a higher IP range (i.e. 192.168.1.[100-255]).

    As it stands right now, any unknown client can configure any static IP that they want, and it will work...I would like to force devices that are not in a MAC whitelist to take on a specific IP range.

    Any ideas would be much appreciated.
     
  2. mstombs

    mstombs Network Guru Member

    I believe you could do this dnsmasq and iptables commands using ACCEPT or DROP in the FORWARD chain

    According to the man page you can get an executable script to run on lan dhcp lease change

    dhcp-script=<path>

    you'd need to get this to only allow connections when an associated lease is valid.
     

Share This Page