RE: 3550 security

From: Jake Jake (spage@nc.rr.com)
Date: Sat Dec 14 2002 - 23:13:30 GMT-3

• Next message: cebuano: "Multicast Test software"
• Previous message: Tony Kwok: "Re: The Policy routing with NAT problem."
• Maybe in reply to: Massimiliano Tognon: "3550 security"
• Next in thread: Robert Slaski: "Re: 3550 security"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

But if you use port-security with do1x and the tacacs server specifys which
ip address is authorized, will that work?

Jake

-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com]On Behalf Of
Keith Steller
Sent: Saturday, December 14, 2002 7:42 PM
To: Robert Slaski
Cc: Larry Letterman; Massimiliano Tognon; ccielab@groupstudy.com
Subject: RE: 3550 security

Yes, correct. 802.x is user based authentication that is independent of
ip/mac controlling physical access based on authentication status of
clients.

-----Original Message-----
From: Robert Slaski [mailto:robin@atm.com.pl]
Sent: Saturday, December 14, 2002 6:21 PM
To: Keith Steller
Cc: Larry Letterman; Massimiliano Tognon; ccielab@groupstudy.com
Subject: Re: 3550 security

Keith Steller wrote:
> Is this what your looking for? Thanks.K
>
>
> Switch(config-if)#dot1x ?
> multiple-hosts Open port to multiple hosts when authenticated
> port-control Control port authentication

802.1X is a totally different concept of _user_ authentication and as
far I know it's independent of host's MAC or IP. So this does not answer
the original question.

mikrobi,

--
.
.

• Next message: cebuano: "Multicast Test software"
• Previous message: Tony Kwok: "Re: The Policy routing with NAT problem."
• Maybe in reply to: Massimiliano Tognon: "3550 security"
• Next in thread: Robert Slaski: "Re: 3550 security"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Fri Jan 17 2003 - 17:21:46 GMT-3