Date: 09-01-03 17:56
does 'no access to dhcp-server' mean you don't have access to it?
who does? is it serving private addresses or public?
if it is serving private addresses, I wouldn't worry about it. If you want to use mac filtering anyway, I wouldn't use a firewall for it. Just use dhcpd. You can reserve IPs based on the mac address.
If it is serving public addresses and you are not an ISP, I would seriously consider reevaluating your current environment and move every user to a private subnet.
MAC addresses change... they are only valid for your local segment.
say you want the mac address of yahoo.com. the mac address of a host outside your network is always going to be the mac of your default gateway, so the mac for yahoo.com will be same as the mac of your default as far as your system is concerned. your default gateway then can get the mac of the next hop on the way to yahoo.com, but only the yahoo's router will know the real mac of yahoo.com...
sorry, this is kind of a weird description, but i hope you get the point.