Date: Mon, 5 Apr 2004 18:08:49 +0200 From: =?iso-8859-1?Q?Sten_Daniel_S=F8rsdal?= <sten.daniel.sorsdal@wan.no> To: "Adrian Penisoara" <ady@freebsd.ady.ro>, <freebsd-security@freebsd.org> Cc: freebsd-isp@freebsd.org Subject: RE: Controlling access at the Ethernet level Message-ID: <E3AE90582399B14EB7D037B53B9B17E94E01@exchange.wanglobal.net>
next in thread | raw e-mail | index | archive | help
> What would you recommand ? Are there any other elegant solutions ? > How about using 802.1Q vlan's and dedicate a vlan to each port. If more than 4000 users then add more gateways. Just be sure to go for switches that allow you to deny incoming already tagged packets on the user side as some switches passes already tagged packets. For a wireless environment i would suggest PPPoE and VLANs (separating them). > I also heard about 802.1x technology and seems to be an > interesting and professional alternative; I just don't know > how well supported is on the server side, namely FreeBSD. > 802.1x is fairly new and not very well supported yet, expect bugs. _// Sten Daniel Sørsdal
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?E3AE90582399B14EB7D037B53B9B17E94E01>