Security Basics mailing list archives
Fw: MAC level authentication or filtering
From: "GUs" <rootz () fibertel com ar>
Date: Thu, 7 Oct 2004 21:43:17 -0300
Cheap and easy, you can Turn on Dhcp Server with MAC asociated to ip addresses (in linux or windows server) So, when one client plug his notebook into your network, his out. But, this is the half part, you must to put some filter at IP level on the server or in front, so you filter those allowed ip addresses. The idea is like a cablemodem network, if the MAC in your cablemodem isn't in the database, you're out. (but Cmodem have a dhcp client, and no chance to turn off) More ideas? Saludos Brother. GUs.T. Sys Admin
----- Original Message ----- From: "David Nardoni" <dnardoni () firstresponseconsulting com> To: <security-basics () securityfocus com> Sent: Thursday, October 07, 2004 1:53 PM Subject: MAC level authentication or filteringI need a solution that will allow me to prevent a user from coming in tomyoffice and plugging in a laptop and gaining access to the network. I have users that are currently using thin clients to connect to the
main
server to do all their processing. If a legitimate user turns bad and decides to bring in a system (laptop) from home and connect it to the network and proceed to use their proper username and password to gather information from terminal services, I want to be able to recognize thattheyhave plugged in an unauthorized system and keep them from gaining accesstothe network. I welcome all ideas no matter what vendor solution or no matter how
simple
or complex. If you need more info on the situation let me know. Dave Nardoni CISSP First Response Consulting Services, Inc. dnardoni () firstresponseconsulting com
Current thread:
- MAC level authentication or filtering David Nardoni (Oct 07)
- Re: MAC level authentication or filtering Ajay (Oct 08)
- Re: MAC level authentication or filtering Jon Lawhead (Oct 08)
- Re: MAC level authentication or filtering Ajay (Oct 12)
- Re: MAC level authentication or filtering Jon Lawhead (Oct 08)
- RE: MAC level authentication or filtering Kurt (Oct 08)
- RE: MAC level authentication or filtering Jay Archibald (Oct 08)
- Re: MAC level authentication or filtering GuidoZ (Oct 08)
- Re: MAC level authentication or filtering Josh Mills (Oct 08)
- Re: MAC level authentication or filtering Jerry Eblin (Oct 08)
- <Possible follow-ups>
- RE: MAC level authentication or filtering Paris E. Stone (Oct 08)
- Fw: MAC level authentication or filtering GUs (Oct 08)
- RE: MAC level authentication or filtering Roy Sgan-Cohen (Oct 08)
- RE: MAC level authentication or filtering Mike (Oct 08)
- FW: MAC level authentication or filtering David Nardoni (Oct 08)
- RE: MAC level authentication or filtering Roy Sgan-Cohen (Oct 08)
- RE: MAC level authentication or filtering Jay Archibald (Oct 12)
- Re: MAC level authentication or filtering Ajay (Oct 08)