edu> | (843) 300–8009
From: The EDUCAUSE Wireless Issues Constituent Group Listserv
on behalf of Wesley Troy Scott
Reply-To: The EDUCAUSE Wireless Issues Constituent Group Listserv
Date: Tuesday, January 30, 2018 at 1:27 PM
To: "WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU"
Subject: R
On 4/26/2012 4:13 PM, Mark Duling wrote:
> I think many have found enforcing remediation of NAC to be problematic
> with an increasingly protected and sophisticated user base. Whether
> or not to do posture assessment and enforce remediation seems to me to
> be the main determinant of how much one
Fair enough regarding "NAC". Our custom "Get Connected" process has been in
place for over a decade for wired Residence Hall connectivity. We have switch
ports on a fixed vlan and we have two IP subnets on that vlan (call them
registration and student). When the dhcp request comes across i
Hi Adam,
My personal opinion is that NAC as a generic term has gotten almost too
ambiguous to be useful. The Wikipedia entry for NAC says this:
Initially 802.1X was also thought of as NAC. Some still consider 802.1X as
> the most simple form of NAC, but most people think of NAC as something more
We started to look at PacketFence but before even getting to test it Cisco
released ISE and then we switched to kicking the tires on that. Though I
know some universities use PacketFence quite successfully, for all the
strengths of the open source way the hassles of it in a product like that
(poor
It used ARP spoofing (which is the last time I used it in a past job) and
has changed quite a bit.
I know Weber State uses it and Tristan (their network engineer) often
promotes it on the NETMAN list, as shown in this post:
http://listserv.educause.edu/cgi-bin/wa.exe?A2=ind11&L=NETMAN&T=0&F=&S=&P=
The last time I looked at it (years and years ago), it used dns spoofing to
capture/redirect clients? My first thought was that it would not work w/
dnssec, so I haven't looked at it since and would be curious if that
changed.
Dale
Thus spake Johnson, Neil M (neil-john...@uiowa.edu) on Thu, Ap
We use PacketFence in our residence system, but do not use it over wireless.
The VLAN isolation model has worked tremendously for us. We have not
implemented the NAC portion of it (basically it uses NEssus scanning from
what I can tell), we're using it more for simple registration/tracking of
stude