This is really only usefull in my home environment. As anybody can request a static IP without accessing router. BUT nobody in my house WILL do that! This allows me to easily block any device I havn't given static IPs to. (non of my devices obviously) I prefer IP based Allow/Deny with SMB especially @ home because the alternative is a linux daemon authorizing windows credentials and I find that much more complicated then setting the DHCP pool on my router to 192.168.1.1-127!
Example /etc/samba/smb.conf
[SMB_StaticIP_Pool_Share] path = /path/to/share available = yes hosts allow = 127.0.0.1 192.168.1.128/25 10. hosts deny = 192.168.1.0/25 read only = no browseable = yes public = yes writable = yes
OR for Public
hosts allow = 127.0.0.1 192.168.1. 10. hosts deny = 0.0.0.0/0
127.0.0.1 = loopback 192.168.1.128/25 = 192.168.1.128-225 ALLOW (Static POOL) 10. = entire 10.*.*.* network 192.168.1.0/25 = 192.168.1.1-127 DENY (DHCP Pool)
PS: The hosts allow overrides the host deny.