Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 459
  • Last Modified:

Deny Static IP clients

Hi,

This question is just started from the related question. As I asked for another question.

Could you please review the last comment on that comment and help.

Thanks
0
masdf123
Asked:
masdf123
1 Solution
 
Rick_O_ShayCommented:
On our Enterasys switches we set a port policy to not allow packets sourced from critical resources like the gateway etc. on user connections. I don't know how that is done on other vendor's equipment.
0
 
nociSoftware EngineerCommented:
you need .1x support to be able to differentiate on that level.

Then you can give someone a password to be able to do more.

You can combine a radius server, switch  etc. to supply a port profile that enters the user in a public lan to nowhere but some kind of (payment/authorisation gateway) and after getting a key through that let the user reconnect using .1x and allow forther access.

Also if there is a firewall between vlan66 and the remainder of the network you can do this without .1x support. It will block until some authorisation is given after which a user is supplied a IP address belonging with that MAC address. Or the combination is allowed to pass the firewall.

But IMHO chillispot should be capable to handle this kind of traffic.
0

Featured Post

What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now