Bruce Marshall wrote:
But if you're going to do that, why bother with DHCP in the first place?
Because that's how you secure the corporate network. Customers of mine have presentation rooms and everyday some group of either customers or suppliers come there. There is always somebody with a laptop that want to connect so they can check their email [I have caught one downloading porno]... 1. All known PCs/laptops with a known MAC will be on the 172.18.x.x network. 2. All unknown PCs will be on 10.1.x.x, they can only access the internet and not any of the corporate resources. They cannot spread viruses, worms or cause other damages... 3. Placing the conference room on a separate VLAN is not an option because if the regular salesman with known laptop plugs in he must have access to the network resources.