?
Solved

Deny Static IP clients

Posted on 2010-11-15
3
Medium Priority
?
461 Views
Last Modified: 2012-05-10
Hi,

This question is just started from the related question. As I asked for another question.

Could you please review the last comment on that comment and help.

Thanks
0
Comment
Question by:masdf123
2 Comments
 
LVL 21

Expert Comment

by:Rick_O_Shay
ID: 34196248
On our Enterasys switches we set a port policy to not allow packets sourced from critical resources like the gateway etc. on user connections. I don't know how that is done on other vendor's equipment.
0
 
LVL 41

Accepted Solution

by:
noci earned 2000 total points
ID: 34203712
you need .1x support to be able to differentiate on that level.

Then you can give someone a password to be able to do more.

You can combine a radius server, switch  etc. to supply a port profile that enters the user in a public lan to nowhere but some kind of (payment/authorisation gateway) and after getting a key through that let the user reconnect using .1x and allow forther access.

Also if there is a firewall between vlan66 and the remainder of the network you can do this without .1x support. It will block until some authorisation is given after which a user is supplied a IP address belonging with that MAC address. Or the combination is allowed to pass the firewall.

But IMHO chillispot should be capable to handle this kind of traffic.
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Problem Description:   Couple of months ago we upgraded the ADSL line at our branch office from Home to Business line. The purpose of transforming the service to have static public IP’s. We were in need for public IP’s to publish our web resour…
Quality of Service (QoS) options are nearly endless when it comes to networks today. This article is merely one example of how it can be handled in a hub-n-spoke design using a 3-tier configuration.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

599 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question