Well, are u using 10G as uplinks from access to CORE/Distribution?
if yes I would assume you are doing that for performance issues and
dont think you would like to introduce a bottleneck there. Check with
Cisco but last i worked with NAC there was no 10G interface option.
So i guess OOB is your only option. Its not too bad if you know what
you are doing.
Also keep in mind NAC is a Access layer technologies intended for End
user computing devices ( and Nodes like printers / IP phones etc), I
am saying this because i read the term "server farm switches" in your
email. Dont risk putting servers behind NAC, not a good design. :)
Good Luck!
-Vijay Shekhar
CCIE#17589/CISSP#65114/RHCE
http://au.linkedin.com/in/vshekhar
Quoting atif raees <atifraees_at_hotmail.com>:
> Hi all
>
> I need advice regarding placement of NAC in a campus network consisting of
> core , distribution, L3 Access switches & Server Farm switches
> (connected via
> 10G links) with wired & wireless Users.
>
> Should i place it inline between Core Switch & Internet Firewall or should i
> connect it on core in out of band.
>
> Advice would be highly appreciable.
>
> Regards
> Atif
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
Blogs and organic groups at http://www.ccie.net
Received on Mon Jan 24 2011 - 19:32:11 ART
This archive was generated by hypermail 2.2.0 : Tue Feb 01 2011 - 07:39:17 ART