Security Basics mailing list archives
Re: Client application to control access to untrusted networks?
From: Fabien Vincent <fabvincent () gmail com>
Date: Wed, 23 Sep 2009 19:20:42 +0200
Hi, For "location aware" client software, check around Juniper Infranet Controller (IC) and Odyssey Client (formely Funk Odyssey 802.1x client/supplicant). They built a solution with IDS/IPS and FW to enforce policies on all 802.1x clients/servers which is really sympathetic ! I'm not sure you can enforce Windows themselves, but I know they're fully compatible with TCG's Trusted Network Connect (TNC), which is also supported by many vendors. After this, I know that SkyRecon clients support also deep Wifi rules and hotspots timed access, with perhaps some VPN features access (allow computers to connect to no IPs address and close network access except VPN IPsec access is kind of things you can do to enforce policies into Windows Kernel). I think you need to search around term "EndPoint Security" to be more larger and deeper in your analysis ! Rgds, ------------------------------------------------------------------- FV On Tue, Sep 22, 2009 at 22:22, <louder () hotmail com> wrote:
Hello,I am just looking to see if anyone can provide any experiences and/or recommendations of software to be installed on clients that is "location aware" and can enforce certain ACL's or network policies. i.e. Symantec, McAfee, Cisco? My scenario and what I am trying to do is with my users laptops, currently we do not allow them to connect to any public wireless networks. Ofcourse this is something that I am being pressured on allowing. We would like to be able to force a VPN client to load as soon as the mobile device running Windows XP connects to a public "hot spot" and if the VPN connection fails to disconnect the system from that network. It would be an IPSEC VPN from either Cisco or Juniper. Thank you! Brandon L. ------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1 ------------------------------------------------------------------------
------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1 ------------------------------------------------------------------------
Current thread:
- Client application to control access to untrusted networks? louder (Sep 23)
- Re: Client application to control access to untrusted networks? Fabien Vincent (Sep 28)
- Re: Client application to control access to untrusted networks? H. Willstrand (Sep 28)
- Re: Client application to control access to untrusted networks? Gleb Paharenko (Sep 28)