Assume an enterprise with a lot of employee and manager. Avery employee is on the same lan of the manager and sometimes also external user are connected to the same lan. In each floor of the buildin you migth have manager, employee, external consultant... manager does not want to share their information with the other So I tried to do obtain a first level of security using VLAN, not too strenght but a first level... the second level of security may be using desktop protection.... the issue could be the performance.. wath do you think? best regards Carmelo
> -----Messaggio originale----- > Da: pure pure [mailto:[EMAIL PROTECTED]] > Inviato: venerd� 22 marzo 2002 21.31 > A: [EMAIL PROTECTED] > Cc: [EMAIL PROTECTED] > Oggetto: Security Internal Network using VLAN > > > You won't necessairly have the granularity you sound like you > need with just > an ACL and VLANS. Individual VLANS will segregate the traffic > but might not > bring much in the way of real security. That could be enhanced > if you are > considering using layer2 authentication and / or binding rules > (e.g. to a > protocol, MAC, IP, port, etc). The thing to remember about the ACL is > you've got to manage it. That's okay if you've got only a few > rules but if > you've got lots of users with different needs you might soon find > it becomes > difficult to manage. > > Subject: > Security Internal Network using VLAN > Date: > Fri, 22 Mar 2002 09:19:24 +0100 > From: > "Carmelo Floridia" <[EMAIL PROTECTED]> > To: > <[EMAIL PROTECTED]> > > > > > Hi, > Assume a typical Campus LAN (2 Layer3 switch ad a switch for floor) with a > lot of users with different security requirement (CIO, Manager, > Staff, Human > Resource) > Do you think that is feasible manage internal security using VLAN and ACL > applied over Layer3 Switch? > best regards > Carmelo > > > > _________________________________________________________________ > Chat with friends online, try MSN Messenger: http://messenger.msn.com >
