deny unknown-clients

classic Classic list List threaded Threaded
1 message Options
Reply | Threaded
Open this post in threaded view
|

deny unknown-clients

mymlact@gmx.com
Hi All,

I'm running openbsd current and running dhcpd, on all of my subnets I
use "deny unknown-clients;" and comment out the range.

I have a wireless access point defined in one subnet (192.168.0.0/24),
but not in another (192.168.1.0/24).   When I move the ethernet cable
from the interface where it's defined to the other interface, where it's
not defined, it still picks up an address, is this by design?

Clients that are not defined anywhere in the dhcpd.conf do get denied
addresses.

subnet 192.168.0.0 netmask 255.255.255.0 {
         option routers 192.168.0.254;
         option domain-name-servers 192.168.0.254;
# range 192.168.0.33 192.168.0.127;
        deny unknown-clients;

host eap245 { hardware ethernet 78:da:d4:35:33:d0; fixed-address
192.168.0.1; }

        }

subnet 192.168.1.0 netmask 255.255.255.0 {
         option routers 192.168.1.254;
         option domain-name-servers 192.168.1.254;
# range 192.168.1.33 192.168.1.127;
        deny unknown-clients;

        }

Thanks in advance.