Networking Forums
Home Register Members Search Links
Member Login:

Networking Forums > Computer Networking > Linux Networking > Securing a LAN

Reply
Thread Tools Display Modes

Securing a LAN

 
 
Daniel Camps
Guest
Posts: n/a

 
      12-01-2004, 11:10 PM
I have a LAN configured with private IP adresses and a machine doing nat to
go out to the Internet. I have a DHCP configured in the gateway, and I have
an Ethernet network. I would like to add some authentication in this
network, now anyone can go there plug a cable in the hub an the dhcp will
assign him an ip address and will be able to use the Internet, this maybe is
not feasible with an Ethernet but it is with a Wi-Fi access network.

I think that with DHCP is possible to filter by MAC address only giving an
IP to a certain MAC, but I heard something about RADIUS, that is a server
used for authentication, I actually have no idea about what is a RADIUS and
how to configure it, but I would like some information about which are the
extra functionalities that RADIUS provide over a simple filtering by MAC
address and some clues to start learning about it.

Thanks a lot
 
Reply With Quote
 
 
 
 
Frank Sweetser
Guest
Posts: n/a

 
      12-01-2004, 11:36 PM
Daniel Camps <(E-Mail Removed)> wrote:
> I have a LAN configured with private IP adresses and a machine doing nat to
> go out to the Internet. I have a DHCP configured in the gateway, and I have
> an Ethernet network. I would like to add some authentication in this
> network, now anyone can go there plug a cable in the hub an the dhcp will
> assign him an ip address and will be able to use the Internet, this maybe is
> not feasible with an Ethernet but it is with a Wi-Fi access network.
>
> I think that with DHCP is possible to filter by MAC address only giving an
> IP to a certain MAC, but I heard something about RADIUS, that is a server
> used for authentication, I actually have no idea about what is a RADIUS and
> how to configure it, but I would like some information about which are the
> extra functionalities that RADIUS provide over a simple filtering by MAC
> address and some clues to start learning about it.

What you're looking for is 802.1X authentication. A google search should turn
up ample documentation on it. Note that it's pretty uncommon for consumer
grade ethernet switches to support 1X authentication.

--
Frank Sweetser fs at wpi.edu
WPI Network Engineer
GPG fingerprint = 6174 1257 129E 0D21 D8D4 E8A3 8E39 29E3 E2E8 8CEC
 
Reply With Quote
Reply

« 3 nics in one box | test »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
securing w/l cnnction? hankus Wireless Networks 4 07-18-2007 07:49 PM
Securing Windows XP James Taylor Home Networking 5 07-24-2006 03:32 PM
Securing root? Alex Brandt Linux Networking 9 04-09-2005 05:26 PM
Securing a WLAN Dani Camps Linux Networking 1 02-23-2005 01:34 PM
securing wireless /dev/null Linux Networking 12 01-17-2005 08:41 PM


Forum Software Powered by vBulletin®, Copyright Jelsoft Enterprises Ltd.
SEO by vBSEO 3.3.2 ©2009, Crawlability, Inc.
Contact Us - Archive - Privacy Statement - Top

1 2 3 4 5 6 7 8 9 10 11