I have spoke with our office of General council and also my supervisor (who was involved in the implementation of equipment at our internet connection point to support wiretaps for CALEA compliance). Neither felt CALEA was applicable for the connections provided from our wireless routers at these locations.
At this point in time I guess I am looking at trying to utilize http://www.dd-wrt.com/ for some type of solution. >>> "Dale W. Carder" <[EMAIL PROTECTED]> 6/5/2008 4:52 PM >>> On Jun 5, 2008, at 2:22 PM, Chuck Braden wrote: >> You will want to double check that how you authorize your users > fits with your response to CALEA. > > I am at a loss to understand the relevance. We dont have this > traffic routed through a digital phone exchange. Does CALEA > specifically concern that? Here's some links to relevant material: http://www.educause.edu/FederalPolicyProgram/CALEAFrequentlyAskedQuestions/9354 http://connect.educause.edu/term_view/CALEA?time=1212702107 >> Could you use netflow export from your routers > to provide this data? > > Response from our wide area network staff... > > "I am pretty sure MAC is not exported in the Netflow V5 records, just > IP source and destination information." > > Can someone provide me something that Netflow 5 DOES provide that > would identify these connections? Or, is there a version that does > provide MAC addresses, and which version would that be? A common approach is to record the arp tables from your edge routers every 'n' minutes via SNMP (netToMedia table). Then you can link that data with netflow using the ip address and timestamp. Depending on how often you need to look at the data, you can do this correlation by hand or use SQL. Dale ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
