Hi experts,
Can you please share me with your experience in dealing with the violation?
In my case, when a violation was triggered after the Nessus scanning
finished, the switch port was put into isolation vlan. At the same time
there was a message shown on client's browser like below:
"Quarantine Established! Windows Patches Are Not Up-to-Date. Due to the
threat this poses for other systems on the network, network connectivity
has been disabled until corrective action is taken. ...."
The question is: Because the isolation vlan does not have internet access,
how do the client address the problem, for example, download patch?
If I give the isolation vlan access to internet by connecting the isolation
vlan to other vlan which has internet access, then the above warning
message won't appear on client's system.
How do I let the client know that their system has security issue and need
address, and at the same time they can have access to internet to fix the
problem?
What is your network design in your real scenario?
Thanks a lot in advance.
------------------------------------------------------------------------------
Learn Graph Databases - Download FREE O'Reilly Book
"Graph Databases" is the definitive new guide to graph databases and their
applications. Written by three acclaimed leaders in the field,
this first edition is now available. Download your free book today!
http://p.sf.net/sfu/13534_NeoTech
_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
