re: 7.0 Pix software capabilities

["Robert MacDonald" <Robert.MacDonald () Haworth com>]

James,
 
I may not be reading this properly, but the MAC/hardware addresses
do not traverse routers or firewalls. The MAC address that you will see
is the device that delivers the packet to you. It sounds like your internal
network uses 802.1x to authenticate, before allowing access to the
network(switch port.)
 
As for authenticating users from the public side, you should try RADIUS
or use the Cisco VPN client software.
 
Robert

________________________________

From: firewall-wizards-admin () honor icsalabs com on behalf of James Wyant
Sent: Wed 11/2/2005 2:28 PM
To: Alan Holmes; Vahid Pazirandeh; firewall-wizards () honor icsalabs com
 
All,

Does anyone know if software version 7.0 has the ability to transfer the
mac address of a device on the outside interface to the inside secure
interface without altering it.

I have a need to put a pix between a public wireless network and my
network gateway which requires the mac address of the user to  determine
if they are new member trying to attach to the gateway.

Those of you who travel can think of how such a system word work in a
hotel environment.

J.

_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards