|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
RE: Controlling access at the Ethernet level
From: Sten Daniel Sørsdal (sten.daniel.sorsdal
wan.no)
Date: Mon Apr 05 2004 - 11:08:49 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
> What would you recommand ? Are there any other elegant solutions ?
>
How about using 802.1Q vlan's and dedicate a vlan to each port.
If more than 4000 users then add more gateways.
Just be sure to go for switches that allow you to deny incoming already
tagged packets on the user side as some switches passes already tagged packets.
For a wireless environment i would suggest PPPoE and VLANs (separating them).
> I also heard about 802.1x technology and seems to be an
> interesting and professional alternative; I just don't know
> how well supported is on the server side, namely FreeBSD.
>
802.1x is fairly new and not very well supported yet, expect bugs.
_// Sten Daniel Sørsdal
_______________________________________________
freebsd-securityfreebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribefreebsd.org"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]