Or if you're poor and can't afford a management suite, you can display the ARP table on the switch to figure out what's plugged in where, or if they're "nice" switches, they have a sticky learning capability that will lock whatever is on the port at the time in and not let other mac addresses connected.
-----Original Message----- From: [email protected] [mailto:[email protected]] On Behalf Of Josh Olson Sent: Thursday, July 29, 2010 7:33 AM To: PaulDotCom Security Weekly Mailing List Subject: Re: [Pauldotcom] Locking down Ports and DHCP Depending on the switches, you could lock ports to mac addresses. A management suite such as pinnacle would likely ease the implementation. http://www.pinnsoft.com/ On Thu, Jul 29, 2010 at 12:18 AM, Denis Hancock <[email protected]> wrote: > Have you considered NAP ? > http://technet.microsoft.com/en-us/library/cc774814%28WS.10%29.aspx > > > On Thu, Jul 29, 2010 at 7:36 AM, Tyler Robinson <[email protected]> > wrote: >> >> I am coming into an environment of over 1000 clients everything is setup >> DHCP except printers and servers I am trying to work towards a much more >> secure network but am at a loss of how to start locking down switches and >> DHCP I want to make sure no one is plugging in unauthorized devices or rogue >> devices for that matter so just wondering how everyone else is securing >> there networks as always pauldotcom listeners are the best and all help is >> welcomed. >> >> TR >> >> _______________________________________________ >> Pauldotcom mailing list >> [email protected] >> http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom >> Main Web Site: http://pauldotcom.com > > > > -- > All the Best > > TheMenace > > > _______________________________________________ > Pauldotcom mailing list > [email protected] > http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom > Main Web Site: http://pauldotcom.com > _______________________________________________ Pauldotcom mailing list [email protected] http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com ****************************************************************************** This email contains confidential and proprietary information and is not to be used or disclosed to anyone other than the named recipient of this email, and is to be used only for the intended purpose of this communication. ****************************************************************************** _______________________________________________ Pauldotcom mailing list [email protected] http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
