?
Solved

3Com managed switches port edge security

Posted on 2009-04-14
4
Medium Priority
?
617 Views
Last Modified: 2012-05-06
Hi Experts

I have taken alot of time to try and figure this one out, but I am failing misserablely. I have 3Com managed swithes in my network, models 4200G and 2948. I want to setup port edge security on these switches due to unauthorised PC's being connected to the LAN.

I have spent almost 2 weeks reading on how to do this, and testing but it is not working out. It seems the only type I can use that both models support is 802.1x. I have installed and IAS server for radius and configured it. The radius client on the switch is configured to point to that Radius server. I have enabled 802.1x globally and also on the ports on my test 4200G switch.

In theory it should disable the port if i connect a notebook that is not part of the domain on the switch, guess what it does not do that. I know it is not the device but me behind the keyboard that is missing something.

Can someone please assist me in getting this working or point me in the right direction to guides or anything that could help me. I have read alot of 3com guides to no avail. My time is running out cause I need to implement this before the yearly intrusion test from an external party is conducted.

Your assistance will be highly appreciated .

Kind Regards,
0
Comment
Question by:eexsupport
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
4 Comments
 
LVL 32

Expert Comment

by:harbor235
ID: 24329509


Do you port security, i.e binding mac addresses to particular ports or do you want network access control (NAC)? DOT1X provides authentication, authorization, guest services, utilizing an external radius server to maintain user databbases etc ......

Two different things here, which do you want?

harbor235 ;}
0
 

Accepted Solution

by:
eexsupport earned 0 total points
ID: 25067715
With the 2 models 4200G and 2948 I am looking for 1 port edge security solution to implement on both so that my whole network is the same.

NAC please, I would prefer using radius as there is an Active Directory domain in place.
0

Featured Post

Cyber Threats to Small Businesses (Part 2)

The evolving cybersecurity landscape presents SMBs with a host of new threats to their clients, their data, and their bottom line. In part 2 of this blog series, learn three quick processes Webroot’s CISO, Gary Hayslip, recommends to help small businesses beat modern threats.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

How to set-up an On Demand, IPSec, Site to SIte, VPN from a Draytek Vigor Router to a Cyberoam UTM Appliance. A concise guide to the settings required on both devices
I had an issue with InstallShield not being able to use Computer Browser service on Windows Server 2012. Here is the solution I found.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special. It's completely agentless, but does let you create an agent, if you desire. It offers powerful scalability …
Suggested Courses

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question