On Jun 5, 2008, at 2:22 PM, Chuck Braden wrote:
You will want to double check that how you authorize your users
fits with your response to CALEA.
I am at a loss to understand the relevance. We dont have this
traffic routed through a digital phone exchange. Does CALEA
specifically concern that?
Here's some links to relevant material:
http://www.educause.edu/FederalPolicyProgram/CALEAFrequentlyAskedQuestions/9354
http://connect.educause.edu/term_view/CALEA?time=1212702107
Could you use netflow export from your routers
to provide this data?
Response from our wide area network staff...
"I am pretty sure MAC is not exported in the Netflow V5 records, just
IP source and destination information."
Can someone provide me something that Netflow 5 DOES provide that
would identify these connections? Or, is there a version that does
provide MAC addresses, and which version would that be?
A common approach is to record the arp tables from your edge
routers every 'n' minutes via SNMP (netToMedia table). Then
you can link that data with netflow using the ip address and
timestamp. Depending on how often you need to look at the
data, you can do this correlation by hand or use SQL.
Dale
**********
Participation and subscription information for this EDUCAUSE Constituent Group
discussion list can be found at http://www.educause.edu/groups/.
