[TriLUG] IP Addresses and Geography...
Cristóbal Palmer
cmp at cmpalmer.org
Fri Jul 11 11:22:06 EDT 2008
On Fri, Jul 11, 2008 at 6:11 AM, Kevin Flanagan <kevin at flanagannc.net> wrote:
> If you are interested in this kind of control there are solutions out there,
> Network Access Control (NAC) and Network Access Protection (NAP) team up to
> make a very controlled environment.
>
> The ideas are that when a workstation joins your corporate network it's
> placed in a DMZ of sorts until it checks in to report it's health state, AV,
> updates, etc, then a set of services on your corporate network decides if
> it's up to spec, If it passes, it's then given a "real address", if not
> there's either remediation steps, or isolation.
>
> This can be used to only allow machines to see internal devices if they are
> up to your standards, and have your corporate install, but if a personal or
> vendor device they get to see the internet and nothing else.
>
> It's a complicated scenario, but a growing number of larger companies are
> going there.
>
>
> http://www.networkworld.com/news/2007/032907-open-source-swarms.html
>
A presentation on setting one of these up would kick ass, imho. Any volunteers?
Cheers,
--
Cristóbal M. Palmer
"Small acts of humanity amid the chaos of inhumanity provide hope. But
small acts are insufficient."
-- Paul Rusesabagina
More information about the TriLUG
mailing list