-
May 4th, 2004, 07:40 PM
#1
Junior Member
MAC Access Control List
I'm trying to implement a MAC Access Control List on our Microsoft LAN.
Can anyone point me in the right direction?
-
May 4th, 2004, 08:01 PM
#2
What kind of hardware do you use? Specifically, your managed switches.
Quitmzilla is a firefox extension that gives you stats on how long you have quit smoking, how much money you\'ve saved, how much you haven\'t smoked and recent milestones. Very helpful for people who quit smoking and used to smoke at their computers... Helps out with the urges.
-
May 4th, 2004, 09:36 PM
#3
Junior Member
In our LAN, we're only using unmanaged switches, is there a way to accomplish this via the domain controller w/ dhcp??
-
May 4th, 2004, 09:38 PM
#4
Then you need to buy some managed switches.
And to your second question, no, no way that can't be easily bypassed. *cough* static address *cough*
Mankind have a great aversion to intellectual labor; but even supposing knowledge to be easily attainable, more people would be content to be ignorant than would take even a little trouble to acquire it.
- Samuel Johnson
-
May 4th, 2004, 09:38 PM
#5
could u give us detail about "where" and "why" u want to establish that security? It will be wellcome to allow us to help u.
Meu sítio
FORMAT C: Yes ...Yes??? ...Nooooo!!! ^C ^C ^C ^C ^C
If I die before I sleep, I pray the Lord my soul to encrypt. If I die before I wake, I pray the Lord my soul to brake.
-
May 4th, 2004, 10:37 PM
#6
Junior Member
We're a small startup company we have quite a few people coming in just plugging their laptops into our network. I would like to only authorize people who have their macs on our access control list to be able to get an IP address and connectivity.
Unfortunately we don't have the money to buy a managed switch right now.
-
May 4th, 2004, 11:01 PM
#7
Hey Hey,
Have you checked out the NetReg Software? We have it implemented here for ITD students running laptops. You have a username and password and plug in your laptop and if it's an unknown MAC address it asks you to login, however each user can only register one PC on the network. It's quite handy software and probably fairly close to what you are looking for. You can check it out @ http://www.netreg.org/
Overview
NetReg is an automated system that requires an unknown DHCP client to register their hardware before gaining full network access. Through a simple web interface, the client is prompted for their user identification. Powerful scripts then retrieve the client's network fingerprint and store it along with the user's information in a database. The database provides administrators with real-time information for troubleshooting and auditing their networks. The entire system was developed utilizing unmodified, open-source servers and in-house developed CGI programs.
Peace,
HT
-
May 5th, 2004, 07:27 AM
#8
Get yourself a L2 type switch that allows you to configure ACLs based on MAC addresses.
I personally recommend cisco 3550 switch. The 3550 supports L2 and L3 functionality, however for your application/requirement, the L2 is way to go......alot cheaper. I deployed about 500 of them in last 6 month for international bank and they work very nicely..
If your looking for something cheaper, buy the lower model, either the Cisco 1900 or 2900 (although they are discontinued..Cisco no longer supports...works just as well) off Ebay..
Good Luck,,
P.S.
Configuration is straight forward.. All documentation is available on Cisco web site.
-
May 5th, 2004, 07:27 AM
#9
Get yourself a L2 type switch that allows you to configure ACLs based on MAC addresses.
I personally recommend cisco 3550 switch. The 3550 supports L2 and L3 functionality, however for your application/requirement, the L2 is way to go......alot cheaper. I deployed about 500 of them in last 6 month for international bank and they work very nicely..
If your looking for something cheaper, buy the lower model, either the Cisco 1900 or 2900 (although they are discontinued..Cisco no longer supports...works just as well) off Ebay..
Good Luck,,
P.S.
Configuration is straight forward.. All documentation is available on Cisco web site.
-
May 5th, 2004, 02:27 PM
#10
With these types of switches why not simply turn on port security?
Oliver's Law:
Experience is something you don't get until just after you need it.
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|