?
Solved

3Com managed switches port edge security

Posted on 2009-04-14
4
Medium Priority
?
625 Views
Last Modified: 2012-05-06
Hi Experts

I have taken alot of time to try and figure this one out, but I am failing misserablely. I have 3Com managed swithes in my network, models 4200G and 2948. I want to setup port edge security on these switches due to unauthorised PC's being connected to the LAN.

I have spent almost 2 weeks reading on how to do this, and testing but it is not working out. It seems the only type I can use that both models support is 802.1x. I have installed and IAS server for radius and configured it. The radius client on the switch is configured to point to that Radius server. I have enabled 802.1x globally and also on the ports on my test 4200G switch.

In theory it should disable the port if i connect a notebook that is not part of the domain on the switch, guess what it does not do that. I know it is not the device but me behind the keyboard that is missing something.

Can someone please assist me in getting this working or point me in the right direction to guides or anything that could help me. I have read alot of 3com guides to no avail. My time is running out cause I need to implement this before the yearly intrusion test from an external party is conducted.

Your assistance will be highly appreciated .

Kind Regards,
0
Comment
Question by:eexsupport
2 Comments
 
LVL 32

Expert Comment

by:harbor235
ID: 24329509


Do you port security, i.e binding mac addresses to particular ports or do you want network access control (NAC)? DOT1X provides authentication, authorization, guest services, utilizing an external radius server to maintain user databbases etc ......

Two different things here, which do you want?

harbor235 ;}
0
 

Accepted Solution

by:
eexsupport earned 0 total points
ID: 25067715
With the 2 models 4200G and 2948 I am looking for 1 port edge security solution to implement on both so that my whole network is the same.

NAC please, I would prefer using radius as there is an Active Directory domain in place.
0

Featured Post

NEW Internet Security Report Now Available!

WatchGuard’s Threat Lab is a group of dedicated threat researchers committed to helping you stay ahead of the bad guys by providing in-depth analysis of the top security threats to your network.  Check out this quarters report on the threats that shook the industry in Q4 2017.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

This article explains the fundamentals of industrial networking which ultimately is the backbone network which is providing communications for process devices like robots and other not so interesting stuff.
Tech spooks aren't just for those who are tech savvy, it also happens to those of us running a business. Check out the top tech spooks for business owners.
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…

569 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question