credmood
asked on
Securing your network using MAC Addresses
All, this is a security/switch question so I came to this forum first
I have a problem with people just coming into our offices and plugging there laptops in without asking...:-| Im not best pleased with this but how do I remedy this?
My thoughts are to create a backbone using a layer 3 switch (we have 1 Cisco catalyst switch that we can use) and then create VLANS off of this onto our current switches (this is a seprate idea in that I want to *subnet* certain depts and remote users) ... anyway, my question is can I configure the Cisco switch to accept ONLY certain MAC addreseses? I know I have to build a list of all MAC addresses in the company, however Id rather this than take the chance of someone letting loose a virus just cos we have no *internal* security as such....
Anyone any thoughts on whether this is possible
I have a problem with people just coming into our offices and plugging there laptops in without asking...:-| Im not best pleased with this but how do I remedy this?
My thoughts are to create a backbone using a layer 3 switch (we have 1 Cisco catalyst switch that we can use) and then create VLANS off of this onto our current switches (this is a seprate idea in that I want to *subnet* certain depts and remote users) ... anyway, my question is can I configure the Cisco switch to accept ONLY certain MAC addreseses? I know I have to build a list of all MAC addresses in the company, however Id rather this than take the chance of someone letting loose a virus just cos we have no *internal* security as such....
Anyone any thoughts on whether this is possible
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
All, I will be assigning points to you on this, Im just leaving it open until i get my catalyst switch (this coming week) in which im going to test some points from above
ASKER
The switch that I got was'nt up to the task, so Im going to have to bet some money from somewhere and buy a decent one....
Thnaks for all your pointers, I will be using them
Thnaks for all your pointers, I will be using them
ASKER
The remote users are always a problem, however I need to a) turn spilt tunneling off and b) set up the cisco vpn client to *kick in* as soon as a connection to the internet is instigated....a problem that Im aware of and need to get round to doing....but as pseudocyber says time and money are not usually on our side ;o)
I'll check out all above, thanks for all your help