[cisco-voip] Cisco NAC (Need Suggestions!)
Syed Khalid Ali
Khalid_Khursheed at hotmail.com
Mon May 5 05:21:41 EDT 2008
Greeting to all,
Need suggestion!
The scenario is for campus network, around 80 - 90 users. I have decided to go with:
1- Deployment Model: Centralized
2- Deployment Mode: Out-of-Band
3- Posture Assessment: L2-IP Adjacent
4- Posture Assessment mode: Virtual Gateway
Another thing is that the client is expecting 40+ branches (expected number of users/branch is 15 -20) in near future which will be connected via site-to-site VPNs. Will the Inline mode + L3-mode restriction will apply in this scenario or the above suggested model will work with exception of L3-IP Posture Assessment? I am also thinking to proposed another NAC server for VPN/Wireless Clients in case the suggested model does not work!
Also what about the Antivirus Server, I have checked the NAC partner list and Symantec, McAfee and eTrust (these 3 are easily available in my country) are on the list but I was unable to find any thing on either Cisco website or the partner for integration expect some papers that discuss how they are able to help customer with being Cisco NAC compatible! Any one have guides / links to sites or experience.
Regards,
Syed Khalid Ali
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://puck.nether.net/pipermail/cisco-voip/attachments/20080505/8d83dbfd/attachment.html
More information about the cisco-voip
mailing list