On Sun, Oct 18, 2009 at 8:58 AM, Marko Vojinovic <vvmarko@xxxxxxxxx> wrote:
---8<----
> I imagine the following scenario: someone walks into my office building with a
> laptop (a colleague, a visitor, a guest, whoever), and hooks up onto the local
> net (wired or wireless). The server detects an unknown MAC address, issues a
> bogus dhcp lease which resolves all dns queries to a single internal web page
> with a form the user is supposed to fill in and send. After he does so, an
> administrator does a sanity check of the data the user provided, and grants or
> denies access. If access is granted, the user gets a new, unrestricted dhcp
> lease, which provides him with a normal access to local network.
--->8----
> So what are my options?
Maybe a Network Access Control solution, either from a vendor such as Cisco
or a "roll your own" with something like <http://freenac.org>.
The theory would be that clients are granted restricted access, then some checks
are made, and only if they pass, are they given real access. Wouldn't
be to hard
to use a name somewhere in there to track WHO and not only WHAT is connecting.
-jonathan
_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos
