How to Secure a DHCP Server in Windows?

As we all know, DHCP Servers are used to assign IP Addresses and other configuration information to client computers running almost any sort of operating system, ranging from regular desktop computers, through laptop computers, up to thin clients and mobile devices. All these require a DHCP server in order to get their TCP/IP configuration settings (unless you manually configure them). One of the major headaches around using DHCP servers was the fact that the moment a computer is connected to your network, it will ask for, and receive, an IP Address from any available DHCP. This will happen to both trusted and un-trusted computers, causing us, the administrators, a potential security risk.

DHCP Administrators would like to control access to their networks, by issuing IP addresses to known clients or denying the same to selected machines. This functionality may be added to the MS DHCP Server, by installing this package, thereby adding an additional lightweight layer of security on the network. This DHCP Server Callout DLL allows the administrator to filter incoming DHCP Requests to DHCP Server based on the MAC Address of the DHCP client. When a device or computer tries to connect to the network, it shall first try to obtain an IP address from the DHCP Server. DHCP Server Callout DLL checks if the MAC address of the machine is present in a known list of MAC addresses (, that has been configured by administrators). The client’s request to obtain an IP address or other configuration information (via DHCP), shall be forwarded or dropped based on the list configured by administrator.

You can download MAC address filtering from under given link;

[download id=”15″]

Read more