Managed Gigabit Switch with MAC address filtering

Managed Gigabit Switch with MAC address filtering
NewsGroups | Search | Tools
User Password
Register Now! Lost Password?
 comp.dcom.lans.ethernet  Post an article  get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content  add this group's latest topics to your Google content  YahooMyWeb Yahoo!  Google Google  Windows Live Favorites Windows Live  del.icio.us del.icio.us  digg digg  Add to Netscape Netscape
Subject Author Date
Managed Gigabit Switch with MAC address filtering Nite Rider 07-14-2005
Posted by Nite Rider on July 14, 2005, 11:29 pm
If you were  Registered and logged in, you could reply and use other advanced thread options


Hi all,

I need a 24 port managed Gigabit switch that can let people connect to
the network based on their network card's MAC address. If the MAC
address is known then it lets them connect, if the MAC address is not
known then the switch would reject all traffic from the computer.
Basically the switch needs to have a MAC based ACL. It also has to be
under $800. All ports have to be gigabit, not just a couple.

I need this because the location where this switch is to be installed
is not really secure. And the patch panel is used by two tenents, which
means that one tenent could sneakily connect a patch wire from the
patch panel to the switch and steal internet, try hacking the server,
or simply infect workstations.

So if you know of any gigabit switches that do this, please post them.

Thanks,
Nite Rider



Posted by Patrick Schaaf on July 15, 2005, 6:56 am
If you were  Registered and logged in, you could reply and use other advanced thread options



>I need a 24 port managed Gigabit switch that can let people connect to
>the network based on their network card's MAC address. If the MAC
>address is known then it lets them connect, if the MAC address is not
>known then the switch would reject all traffic from the computer.

Are you aware that it is trivial to set the MAC address used by
an end stations to any arbitrary value? If a potential attacker
knows which MAC address is configured on a certain port, they
can disconnect the port, connect their own machine, set the
correct MAC address, and use your service without a chance
for the MAC acl to recognize the situation.

Also, with a switch in an unsecure area, nothing stops a dedicated
attacker from inserting his own switch (at lower bandwidth usage,
maybe even a dumb hub), into the uplink of your switch, circumventing
all measures configured on your switch.

best regards
Patrick


Similar ThreadsPosted
Managed gigabit switch as router..? August 6, 2007, 7:43 am
Cisco vs. Netgear: 24 port gigabit managed switch February 10, 2006, 4:44 pm
Gigabit Flexibility with Magnum 6K32T Managed Switch from GarrettCom, Inc. August 30, 2005, 3:21 pm
small managed switch HW recommendations? February 10, 2005, 12:40 pm
Partition network (managed switch?) December 17, 2005, 7:46 am
Simple (I think?) Managed Switch Setup August 15, 2006, 9:56 pm
help me decide wich managed switch to buy... January 17, 2007, 7:37 am
Assign static IPs to port of a managed switch June 24, 2005, 10:42 am
Ethernet Switch -- Managed versus Unmanaged January 25, 2007, 3:33 pm
Ethernet Switch -- Managed versus Unmanaged January 28, 2007, 1:43 pm

other useful resources:
The Federal Communications Commission (FCC)
Telecommunications Industry Association
Electronic and Software Security Products and Services
International Telecommunication Union

Custom CGI Perl and PHP programming by 1-Script.com

Contact Us | Privacy Policy
The site map in XML format XML site map