Link to home
Start Free TrialLog in
Avatar of A B
A BFlag for United States of America

asked on

How can I keep wired users on our corporate lan from connecting to a wireless LAN at the same time?

In other words, I would like to make it so that if you are wired into our LAN you would have to fist disconnect from the wired LAN if in order to connect to a wireless LAN via a Wireless Card.  Thanks in advance!
Avatar of Jim_Coyne
Jim_Coyne

Avatar of A B

ASKER

I would like to keep this question open in hopes that someone else will be able to provide me with a more suitable answer.  The link to this article did not provide me with the informatin I am looking for,
Avatar of rindi
First of all please post back if someone posts something, otherwise there is no way of knowing if that was of any help or not.
Second, an old Question won't attract any new experts. It is better to close it (follow the instructions inside my Link above, it explains how to close unanswered Q's), or open a new Pointer Q, with the word "Pointer" in it's title, and a Link to the original Q where the answers will be posted in. The Pointer Q should only be worth 20 Points.

Please post back what you have decided to do.

Thanks,
rindi
EE Cleanup Volunteer
nytekgirl,

Have you decided to open a pointer Q or are you closing this one?

Thanks for your feedback,
rindi,
EE Cleanup Volunteer
Avatar of A B

ASKER

I want to keep it open for now.
But have you opened a pointer Q like I suggested? As I said there isn't much point in leaving an old Q open as you won't get any help from new experts...
Users could of course disable their own Ethernet connection before launching Wi-Fi, but many users cannot be bothered or forget to do this. So the real question is how can a company automatically disable Wi-Fi whenever Ethernet is active?

Some IT-administered Wi-Fi connection managers have this type of policy option. For example, Juniper's Odyssey Access Client includes a wireless suppression option that uses a wireless connection only when no wired connection is present.

Some host-resident Wireless IPS programs can detect and automatically prevent risky situations, including simultaneous connection to more than one network.

Some distributed Enterprise Wireless IPS products have the ability to enforce policies that block Wi-Fi connections which pose a threat. This kind of prevention can stop a user from staying connected to any unauthorised Wi-Fi network while at the office, independent of other connection(s) that users may have.

Another less effective option is to use conventional desktop management tools to manipulate the routing metrics for Wi-Fi connections so that Wi-Fi will never be preferred over Ethernet when both connections are active. This is less effective because it does not actually stop any traffic from being sent over Wi-Fi -- for example, traffic destined for other users on the same metro-area Wi-Fi network will still leak out.
Those are really your only options. Let me know if you would like me to expand on any of them.
Avatar of A B

ASKER

You just copied and pasted from the article that Rindi posted above?
ASKER CERTIFIED SOLUTION
Avatar of netnounours
netnounours

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Yes, I reposted because it required a password and I didn't know if you had access. I find that a lot of times I post a link like that and people ignore it, then I reprint the article ans it is accepted.

The bottom line is those are the options. Keeping your question open is not going to make an answer magically appear.  

 I agree with netnounours, we use the Juniper client as well.