sunhux
asked on
Securing network printers & how difficult to set up MAC addr based Cisco ACLs
https://www.experts-exchange.com/questions/29056334/Steps-to-block-AD-IDs-from-login-to-30-critical-PCs.html
Further to the question I posted above, besides the 30+ critical PCs (for Swift processing), we have about
20 Tally network printers used to print critical SWIFT messages : the PCs & printers are at various physical
locations : 1-3 PCs may spool print to one of those printers.
Heard that in Banglades bank's SWIFT heist, hacker intercepted print job, learnt how to send fabricated
data to the printer. We can secure the PCs with Windows Firewall but what about the printers?
To create isolated VLANs & move these PCs & printers to the dedicated VLANs require changing IP addrs
of these PCs/printers & may incur downtime & if not planned carefully, disruptions. Would creatiing
MAC addr ACLs on the switches that these PCs & printers are connected to help?
Our netwk support said it's no longer a common practice to do MAC-based ACLs? Is this true?
Or it's simply too much of an effort for the 30 PCs & 20 printers?
Can Layer 2 switch support MAC ACLs?
Further to the question I posted above, besides the 30+ critical PCs (for Swift processing), we have about
20 Tally network printers used to print critical SWIFT messages : the PCs & printers are at various physical
locations : 1-3 PCs may spool print to one of those printers.
Heard that in Banglades bank's SWIFT heist, hacker intercepted print job, learnt how to send fabricated
data to the printer. We can secure the PCs with Windows Firewall but what about the printers?
To create isolated VLANs & move these PCs & printers to the dedicated VLANs require changing IP addrs
of these PCs/printers & may incur downtime & if not planned carefully, disruptions. Would creatiing
MAC addr ACLs on the switches that these PCs & printers are connected to help?
Our netwk support said it's no longer a common practice to do MAC-based ACLs? Is this true?
Or it's simply too much of an effort for the 30 PCs & 20 printers?
Can Layer 2 switch support MAC ACLs?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Predrag Jovic
Which Cisco device and what is installed license on it?