Security Basics mailing list archives
Re: prohibiting visitors from connecting to network
From: Kurt Buff <kurt.buff () gmail com>
Date: Mon, 17 Oct 2005 16:17:27 -0700
Cesar Diaz wrote:
List: My company is looking for a way to prohibit visitors to our offices from connecting a laptop to a network port and gaining access to our network. We have policies in place prohibiting employees from allowing this, and have network jacks in our conference roomsthat are on a seperate VLAN that allows only access to the Interent. We still have problems with visitors connecting to the network. In one case an infected laptop started spreading a virus in the network. Our network is W2K based and uses DHCP running on a W2K server. We do have some Unix and Linux boxes. What I'm looking for is a way to secure DHCP so that only our laptops/workstations can get a DHCP address. I was thinking of something like EAP used for remote access with certificates to keep computers without a certificate from receiving an IP address, but I can find any information on implementing this. Any ideas, resources or comments are welcome. Thanks, Cesar
This should provide some beginning thoughts for you... Beware the wrap: http://www.networkworld.com/news/2005/101705-cisco.html?nltxc=1017ciscoalert1&code=nlciscoalert8958
Current thread:
- prohibiting visitors from connecting to network Cesar Diaz (Oct 17)
- Re: prohibiting visitors from connecting to network Kelly Lucas (Oct 18)
- Re: prohibiting visitors from connecting to network xyberpix (Oct 18)
- Re: prohibiting visitors from connecting to network Kurt Buff (Oct 18)
- Re: prohibiting visitors from connecting to network Saqib Ali (Oct 18)
- Re: prohibiting visitors from connecting to network Nobody Special (Oct 18)
- RE: prohibiting visitors from connecting to network Murad Talukdar (Oct 18)
- Re: prohibiting visitors from connecting to network phunked up! (Oct 18)
- Re: prohibiting visitors from connecting to network Mark Leonard (Oct 18)
- RE: prohibiting visitors from connecting to network Alexander Suhovey (Oct 21)
- RE: prohibiting visitors from connecting to network Brian Loe (Oct 24)
- Re: prohibiting visitors from connecting to network Terence Summers (Oct 25)
- RE: prohibiting visitors from connecting to network Brian Loe (Oct 26)
- Re: prohibiting visitors from connecting to network Fred Cohen (Oct 25)
- RE: prohibiting visitors from connecting to network Brian Loe (Oct 24)
- Re: prohibiting visitors from connecting to network Kelly Lucas (Oct 18)