• Home
• Topics
• Wireless LANs
• WLAN Security
• Secure network against illegal users

Secure network against illegal users

Requires Free Membership to View

Login

• E-mail Address: 

By submitting your registration information to SearchNetworking.com you agree to receive email communications from TechTarget and TechTarget partners. We encourage you to read our Privacy Policy which contains important disclosures about how we collect and use your registration and other information. If you reside outside of the United States, by submitting this registration information you consent to having your personal data transferred to and processed in the United States. Your use of SearchNetworking.com is governed by our Terms of Use. You may contact us at webmaster@TechTarget.com.

Your DHCP manager may support MAC Address Access Control Lists, giving out IP addresses to known, authorized MACs while denying requests from everyone else. This method is slightly more scalable -- the same ACL works no matter which switch port or AP a given laptop is using. However, it is still vulnerable to MAC spoofing.

Many new Ethernet switches and wireless APs support 802.1X Port Access Control. 802.1X is designed to overcome MAC spoofing by dynamically enabling/disabling a LAN port based on something more than MAC address. Specifically, the wired or wireless laptop will be challenged for credentials and must authenticate before network access is granted. To use 802.1X, you will need an Authentication Server that supports 802.1X, but you can probably run that on one of your NT servers and leverage your Windows workgroup and domain to authenticate LAN users. To learn about 802.1X, check out searchNetworking's Wireless Lunchtime Learning Access Control lesson.

Finally, you can also control access to your NT servers at a higher layer. For example, you could put a small business firewall between the servers and all LAN stations, requiring users to log in at the firewall to gain access to the server subnet. Or you could require domain login when workstations access individual applications and shared files/printers offered by your NT servers. Ideally, you should consider creating a layered defense by controlling access to both your LAN and your network/applications.

Dig Deeper

This was first published in August 2006

More from Related TechTarget Sites

• Enterprise WAN
• Unified Communications
• Mobile Computing
• Data Center
• Networking Channel

• Enterprise WAN

  • Ensuring Quality of Experience: Monitor networks or applications?

    Experts debate whether enterprises should focus on network monitoring or on application performance monitoring to measure quality of experience.

  • Should you redesign WAN architecture for cloud and UC?

    Connecting to the cloud and supporting unified communication (UC) applications is forcing enterprises to redesign WAN architecture.

  • Interop 2012: Can putting video in the cloud save WAN bandwidth?

    The number of devices supporting video is growing; an Interop 2012 panel discusses whether putting video in the cloud can help lessen bandwidth burdens over the WAN.

• Unified Communications

  • Enterprises turning to session management for UC interoperability

    The use of session management middleware is being floated as a way to use SIP to improve UC interoperability for collaboration and UC apps.

  • Interop 2012: UC apps vendors must strive for interoperability

    Vendors are aware of and gradually responding to issues around multi-vendor UC strategies and UC interoperability, according to a discussion panel at Interop 2012.

  • Tackling virtual UC and VDI for the distributed enterprise

    Virtual UC applications are being deployed beyond the data center into the distributed enterprise and should be planned with virtual desktop infrastructure deployment.

• Mobile Computing

  • Bringing BYOD to your enterprise

    Bring your own device (BYOD) can be a boon for both employees and enterprises, but clear policies and management tools are needed.

  • Meeting technical requirements for mobile health care deployments

    IT departments deploying mobile health care solutions must ensure that using mobile devices in health care settings doesn't violate federal laws or compromise security.

  • Making the call: Distributed antenna systems and in-building wireless

    Distributed antenna systems and in-building wireless solutions are two options to improve wireless cellular coverage within an enterprise facility.

• Data Center

  • Facebook Open Compute Project a role model for data centers

    Data center experts say most enterprises can’t imitate Facebook’s Open Compute Project, but they could reap the benefits over time.

  • Optimize data center virtualization with strategic capacity planning

    Use strategic capacity planning to future-proof your data center's virtualization efficiency and make the most of server hardware.

  • Download the High Performance Comptuing E-Zine

    Get exclusive access to the High Performance Computing E-Zine, produced quarterly by the independent experts and analysts at SearchDataCenter.com

• Networking Channel

  • Partners learn to sell telemedicine solutions

    Selling telemedicine solutions can be an opportunity for partner growth, but it comes with its share of technology and skill set challenges to overcome.

  • Think you can't make digital signage sales?

    When video wall technology was expensive it was hard to sell. But selling digital signage has dropped in cost and many companies are now eager to replace static signs.

  • Cisco Partner Summit 2012: Support services, cloud and mobility reign

    At Cisco Partner Summit 2012, Cisco continues its attempt to improve business by refocusing its channel partner strategy with support services, mobility and cloud announcements.

• About us
• Contact us
• Site index
• Privacy policy
• Advertisers
• Business partners
• Events
• Media kit
• TechTarget corporate site
• Reprints
• Site map