I'm new here.
I'm looking for a way to prevent my network users to connect to internet using static IPs on their devices outside DHCP range (dhcp range: 10.5.0.1-10.9.254.254). It's like denying device if IP don't mach MAC and vice versa as I have some static leases.
example:
unauthorized client with static ip (defined in device)
10.0.3.1 tries to connect to internet as he knows that
this address is registered with other computer
and certain computer is not turned on to use internet,
so he may get connectivity.
However, router notices that IP of clients device do
not match records stored in static leases list and thus
it denies usage of that IP and block connection to internet
I also have static leases.
Edit: I am using Ubuntu server on IBM x3400 server with 4 NIC I also plan to implement captive portal and/or DansGuardian+privoxy or similar.