[c-nsp] securing trunk
Scott A. Keoseyan
skeoseyan at btspartners.com
Sun Apr 10 11:52:45 EDT 2005
Niels Bakker wrote:
> * lee.e.rian at census.gov (lee.e.rian at census.gov) [Fri 08 Apr 2005, 11:05 CEST]:
>
>>"Arne Larsen" <arl at nordicom.tele.dk> wrote on 04/08/2005 03:43:27 AM:
>
> [..]
>
>>>and further more prevent "him" for gaining access to the network by
>>>unplugging the access point, and connecting his own computer to the
>>>switch.
>>
>>802.1x plus IPSec?
>
> [..]
>
> Reasonable. The Foundry IronPoint 200 access point supports operation
> as a supplicant as well as authenticator, probably for this exact scenario.
> Getting IPsec into the AP may be a bit of a stretch though.
>
> It's written "802.1X" by the way - see under Archived Projects at
> http://grouper.ieee.org/groups/802/1/
>
>
> -- Niels.
>
Problem here is, Cisco doesn't support 802.1"X" on trunk-ports.
--
Scott A. Keoseyan
More information about the cisco-nsp
mailing list