Forgive me if I am missing something here. But doesn't Cisco NAC by default block any user or device that has multiple MAC addresses coming from one port? Thus if ICS was turned on, all NAT-ed users would be denied access because they have a different MAC address than the ICS host?
Henry Guzman NSG Security -----Original Message----- From: Cisco Clean Access Users and Administrators [mailto:[EMAIL PROTECTED] On Behalf Of BACHAND, Dave (Info. Tech. Services) Sent: Monday, November 24, 2008 11:25 AM To: [email protected] Subject: Re: How do you detect Internet Connection Sharing? Hello- We went through the same pain. I checked registry keys, services, arguments, all the same on XP. The only workable answer we could come up with was that CCA can't detect ICS on XP, and that it's time to look for other solutions.... Dave Bachand Information Technology Services Director of Technical Services Eastern Connecticut State University E-mail [EMAIL PROTECTED] (860)465-5376 -----Original Message----- From: Cisco Clean Access Users and Administrators [mailto:[EMAIL PROTECTED] On Behalf Of Cal Frye Sent: Monday, November 24, 2008 12:46 PM To: [email protected] Subject: Re: How do you detect Internet Connection Sharing? Russ Hearn wrote: > Cal Frye wrote: >> Looks like what we've been playing with doesn't work. Does someone have >> a good way to identify when a Windows XP user has Internet Connection >> Sharing turned on? I can't seem to differentiate between the firewall >> service and ICS particularly -- I want the firewall on, but ICS >> definitely turned off, of course. Registry key? Service/process? >> >> Maybe it's just Monday morning, and my mind is fuzzy yet... > Hi Cal, > > You want to do a service check for "SharedAccess" to see if the > connection sharing is enabled as per what I've tested. Thanks, Russ. The problem I'm having is, at least with the test machine I'm using, that service remains active if sharing is off and the firewall is on, which kind of defeats the purpose ;-) -- Regards, -- Cal Frye, Network Administrator, Oberlin College www.calfrye.com, www.pitalabs.com "A man's library is a sort of harem." --Ralph Waldo Emerson (1803-82)
