Solved

3Com managed switches port edge security

Posted on 2009-04-14
4
608 Views
Last Modified: 2012-05-06
Hi Experts

I have taken alot of time to try and figure this one out, but I am failing misserablely. I have 3Com managed swithes in my network, models 4200G and 2948. I want to setup port edge security on these switches due to unauthorised PC's being connected to the LAN.

I have spent almost 2 weeks reading on how to do this, and testing but it is not working out. It seems the only type I can use that both models support is 802.1x. I have installed and IAS server for radius and configured it. The radius client on the switch is configured to point to that Radius server. I have enabled 802.1x globally and also on the ports on my test 4200G switch.

In theory it should disable the port if i connect a notebook that is not part of the domain on the switch, guess what it does not do that. I know it is not the device but me behind the keyboard that is missing something.

Can someone please assist me in getting this working or point me in the right direction to guides or anything that could help me. I have read alot of 3com guides to no avail. My time is running out cause I need to implement this before the yearly intrusion test from an external party is conducted.

Your assistance will be highly appreciated .

Kind Regards,
0
Comment
Question by:eexsupport
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
4 Comments
 
LVL 32

Expert Comment

by:harbor235
ID: 24329509


Do you port security, i.e binding mac addresses to particular ports or do you want network access control (NAC)? DOT1X provides authentication, authorization, guest services, utilizing an external radius server to maintain user databbases etc ......

Two different things here, which do you want?

harbor235 ;}
0
 

Accepted Solution

by:
eexsupport earned 0 total points
ID: 25067715
With the 2 models 4200G and 2948 I am looking for 1 port edge security solution to implement on both so that my whole network is the same.

NAC please, I would prefer using radius as there is an Active Directory domain in place.
0

Featured Post

Webinar: Aligning, Automating, Winning

Join Dan Russo, Senior Manager of Operations Intelligence, for an in-depth discussion on how Dealertrack, leading provider of integrated digital solutions for the automotive industry, transformed their DevOps processes to increase collaboration and move with greater velocity.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Comware OS Simulator and GNS3 5 168
adjusting startup config 6 50
Changing Lease Duration for DHCP clients 34 63
HP 2530 switch and routing 4 58
Meet the world's only “Transparent Cloud™” from Superb Internet Corporation. Now, you can experience firsthand a cloud platform that consistently outperforms Amazon Web Services (AWS), IBM’s Softlayer, and Microsoft’s Azure when it comes to CPU and …
Use of TCL script on Cisco devices:  - create file and merge it with running configuration to apply configuration changes
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

740 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question