Configuration Example, Security

MAB and MDA in an IP Phone environment

René Jorissen on February 5, 2010 26 Comments • Tags: #5330 #authenticate #bypass #cdp #cisco-av-pair #device-traffic-classvoice #domain #host-mode #lldp #mab #mac #mda #mitel #multi-domain #multiple #phone #radius #vsa

I blogged before about the MAC Authentication Bypass (MAB) feature in network environments. MAC Authentication Bypass can be used to secure the wired network by verifying MAC addresses to a central database. By using a radius server, like Microsoft IAS or FreeRadius, you can also redirect verified MAC addresses to a specific VLAN. Lately I … Read More

Security

Wired 802.1X

René Jorissen on June 24, 2008 0 Comments • Tags: #8021x #authenticate #bypass #iab #inaccessible #wired

The session about wired 802.1X deployment was really interesting. I was stunned about the information I already knew after my testing with MAC Authentication Bypass last week. Of course the speaker had more configuration options when configuring the switch ports. Important for me to hear where the ways for deploying 802.1X in environments. It isn’t … Read More

Configuration Example, Security

MAC Authentication Bypass – Continued

René Jorissen on June 20, 2008 1 Comment • Tags: #8021x #authenticate #bypass #caveats #guest-vlan #ias #lan #mac #nac #nap #on #radius #wake #wol

Finally I had a day “off” and could test MAC Authentication Bypass (MAB) in our test environment at the office. I created the following test environment: There are 4 different VLAN’s and a Cisco Catalyst 3750 connects the VLAN’s to each other. I wanted to create an environment with the following properties: All switch ports … Read More

Configuration Example, Security

MAC Authentication Bypass

René Jorissen on June 17, 2008 0 Comments • Tags: #8021x #authenticate #bypass #caveats #guest-vlan #mac #nac #nap

NAC (for Cisco – Network Admission Control) or NAP (for Microsoft – Network Access Protection) in conjunction with 802.1x will be standard for authenticating network components and allowing them access to the network. At least in the future. Currently their aren’t a lot of companies how are using NAC in the network. Techworld released an … Read More