On Mon, 2007-07-16 at 08:38 -0600, Gnarlodious wrote: > Thanks for the quick response. Not sure I understand all of that... > Yes, this LAN is all on one IP range. The routers are all connected > with ethernet. > > I don't want to block client computers, but I understand that if I > drop DHCP ports 67 and 68 to and from other routers then DHCP will be > handled by the router the computer is connected to. Is that right? AFAIK, DHCP request aren't usually passed on by (Linux) routers (Pseudo-UDP/IP-Packet to 255.255.255.255/FF:FF:FF:FF:FF:FF Port), and if they were, you could probably simply stop them by filtering everything to udp destination port 68. What makes you think that your router passes on DHCP requests? On the contrary, one usually does have to put in a bit of effort to allow dhcp over routers (=> dhcp relay)...