centos at 911networks.com wrote: >All computers with a non-registered MAC address with get an IP in the >172.20/16 address space. Their default gateway is the secondary IP >address of the gateway. This is very clever, but I wonder, unless you control employees laptops one way or another, it seems like employee laptops would only be marginally better than unknown, external hosts in terms of malware. What's your experience on this, or how do you guarantee that employee laptops are clean? Dave Thompson UW-Madison