Re: Link level security with static arp tables

[Luke Butcher <luke.butcher () alphawest com au>]

On Sun, 2003-10-12 at 23:32, Debian User wrote:
> I need to limit access to the gateway according to allowed MACs, ie Ethernet 
> frames from allowed MAC addresses are forwarded to and fro in the gateway, 
> but others will be dropped (and logged if possible).
...
> Any solutions?

You could look into 802.1x MAC Authentication type solutions. Normally
these however are implemented at a switch level. 

Generally EAP/LEAP/PEAP type stuff is normally associated with wireless
but the concepts apply to any publicly available connection mechanism.
It's used to secure the first point of entry into the network.

Luke Butcher
Network/Security Consultant
Alphawest
--


Alphawest Disclaimer

---------------------------------------------------------------------------
If this communication is not intended for you and you are not an authorised
recipient of this email you are prohibited by law from dealing with or
relying on the email or any file attachments. This prohibition includes
reading, printing, copying, re-transmitting, disseminating, storing or in
any other way dealing or acting in reliance on the information.
If you have received this email in error, we request you contact Alphawest 
immediately by returning the email to postmaster () alphawest com au and
destroy the original. This email is confidential and may contain privileged
client information. Alphawest  has taken reasonable steps to ensure the
accuracy and integrity of all its communications, including electronic
communications, but accepts no liability for materials transmitted.
---------------------------------------------------------------------------
_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards