[TriLUG] IP Addresses and Geography...
Kristopher Kane
kristopher.kane at gmail.com
Sat Jul 12 21:43:17 EDT 2008
I second.
I would love for the Army to adopt this since we have such a large
enterprise environment, but ya know, always behind. Now where is that Win2k
CD...
-Kane
On Fri, Jul 11, 2008 at 11:22 AM, Cristóbal Palmer <cmp at cmpalmer.org> wrote:
> On Fri, Jul 11, 2008 at 6:11 AM, Kevin Flanagan <kevin at flanagannc.net>
> wrote:
> > If you are interested in this kind of control there are solutions out
> there,
> > Network Access Control (NAC) and Network Access Protection (NAP) team up
> to
> > make a very controlled environment.
> >
> > The ideas are that when a workstation joins your corporate network it's
> > placed in a DMZ of sorts until it checks in to report it's health state,
> AV,
> > updates, etc, then a set of services on your corporate network decides if
> > it's up to spec, If it passes, it's then given a "real address", if not
> > there's either remediation steps, or isolation.
> >
> > This can be used to only allow machines to see internal devices if they
> are
> > up to your standards, and have your corporate install, but if a personal
> or
> > vendor device they get to see the internet and nothing else.
> >
> > It's a complicated scenario, but a growing number of larger companies are
> > going there.
> >
> >
> > http://www.networkworld.com/news/2007/032907-open-source-swarms.html
> >
>
> A presentation on setting one of these up would kick ass, imho. Any
> volunteers?
>
> Cheers,
> --
> Cristóbal M. Palmer
> "Small acts of humanity amid the chaos of inhumanity provide hope. But
> small acts are insufficient."
> -- Paul Rusesabagina
> --
> TriLUG mailing list : http://www.trilug.org/mailman/listinfo/trilug
> TriLUG FAQ : http://www.trilug.org/wiki/Frequently_Asked_Questions
>
More information about the TriLUG
mailing list