There's no way of stopping a determined user that wants to bypass whatever filters or red tape you have in place really but if you're able to restrict most of the users, would you say no to it? There's not a single solution to deploy where people can't find a way to use another device, at least not that I know of. Maybe you could shed some light on it instead of just pointing out that the MAC address can be spoofed and would you expect your average run of the mill user know how to spoof MAC addresses?



On 06-Nov-2009, at 3:12 PM, Peter Rathlev wrote:

On Fri, 2009-11-06 at 11:10 +0800, mark [at] edgewire wrote:
Why is it not possible to check it against the MAC address of the
connecting device? Log incoming connections and their MAC address and
match it against a list of hardware that has been assigned to the users.

Please state how you expect this not to be spoofed. :-)

--
Peter



_______________________________________________
cisco-nsp mailing list  [email protected]
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/

Reply via email to