Announcement

Collapse
No announcement yet.

how to secure my network!

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • how to secure my network!

    Hi all,

    i recently bought a cisco router 2811 and made it my LAN internet Gateway.
    everything is working perfectly, i configured secondary ips, did shaping, configured access lists and so on!
    but theres one prob thats haunting me!
    network security..
    the fact remains that anyone which has access to my network (wall sockets) could plug in his laptop and simply acquire a dynamic ip! and hes simply in my network!

    is there a way that i could configure my router to deny new pcs unless if i allow them to acquire an ip?!

    any help would be appreciated

  • #2
    Re: how to secure my network!

    Their are many ways to secure your network.

    A few examples:
    port security on the switches
    802.1x Authentication with Certificates (not tried it yet but it's possible to block the switch port until the authentication succeeded).
    Give out only dhcp reservations
    Marcel
    Technical Consultant
    Netherlands
    http://www.phetios.com
    http://blog.nessus.nl

    MCITP(EA, SA), MCSA/E 2003:Security, CCNA, SNAF, DCUCI, CCSA/E/E+ (R60), VCP4/5, NCDA, NCIE - SAN, NCIE - BR, EMCPE
    "No matter how secure, there is always the human factor."

    "Enjoy life today, tomorrow may never come."
    "If you're going through hell, keep going. ~Winston Churchill"

    Comment


    • #3
      Re: how to secure my network!

      smart switch wise its pretty easy..
      though the prob is that i dont have any on my network!
      its a small network with 100 user and dumb switches all around..

      im thinking of something thats router based!


      Originally posted by Dumber View Post
      Their are many ways to secure your network.

      A few examples:
      port security on the switches
      802.1x Authentication with Certificates (not tried it yet but it's possible to block the switch port until the authentication succeeded).
      Give out only dhcp reservations

      Comment


      • #4
        Re: how to secure my network!

        Then DHCP is the way to go.
        Give everybody a reservation and limit your scope which fit into your reserverationlist.
        Extend the scope when more clients are added.
        However you really really should look at what you are posting. You simply post not enough information so I expected that you got cisco switches.

        Simplified: Security cost money. Invest or keep it simple and cheap by using the DHCP reservations.
        Marcel
        Technical Consultant
        Netherlands
        http://www.phetios.com
        http://blog.nessus.nl

        MCITP(EA, SA), MCSA/E 2003:Security, CCNA, SNAF, DCUCI, CCSA/E/E+ (R60), VCP4/5, NCDA, NCIE - SAN, NCIE - BR, EMCPE
        "No matter how secure, there is always the human factor."

        "Enjoy life today, tomorrow may never come."
        "If you're going through hell, keep going. ~Winston Churchill"

        Comment

        Working...
        X