Re: RIAA Notices

[Anthony Maszeroski <maszeroskia3 () SCRANTON EDU>]

It's a matter of logging. We log NAT translations, DHCP leases, and NAC
authentication. It's then just a matter of scripting to tie External IP
-> Internal IP -> MAC Address -> username.

Anand S Malwade wrote:
> We are facing the same issue as we NAT IP's as well. Any suggestions for NAT'ed IP translation ?
>
>
> -----Original Message-----
> From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of John 
> Kaftan
> Sent: Monday, January 26, 2009 10:51 AM
> To: SECURITY () LISTSERV EDUCAUSE EDU
> Subject: Re: [SECURITY] RIAA Notices
>
> This is a problem for us too.  We have a hard time identifying the
> students as we NAT them all to a single IP on their way out.  When we
> get an RIAA Notice it just tells us that someone was uploading from our
> NATted address.  That does not help me much.
>
> Do your students all have routable IPs?  I don't see how I could
> positively prove a student was uploading unless they have routable IPs.
> Am I missing something?
>
>
>
> Timothy Payne wrote:
> We use Campus Manager to identify the registered user of the device
> (when they are on ResNet), and they get a nice invitation to go see
> the Dean of Students.  We do not block P2P traffic, but limit user's
> bandwidth based on total demand using our NetEqualizer.
>
> >

--
- Anthony Maszeroski, CCNA
-----------------------------------
Information Security Manager
The University of Scranton
email : maszeroskia3 () scranton edu
phone : 570-941-4226
-----------------------------------