Network Access Control

 View Only

  • 1.  SNAC Problems

    Posted Jan 08, 2010 09:21 AM
    Hi everyone,

    I am the SNAC newbie. I need to know what is the different between the 3 enforcer like DHCP, LAN & Gateway.

    Then may I know anyway if I don't install the enforcer with the SNAC, is it possible I set those failed the Host Integrity to the Quarantine VLAN?

    If it is ok, may I know what is the steps to do so?

    Can anyone help me?



  • 2.  RE: SNAC Problems

    Posted Jan 08, 2010 09:44 AM
    go through these
    Symantec Network Access Control - LAN Enforcement
    http://service1.symantec.com/support/ent-security.nsf/854fa02b4f5013678825731a007d06af/f28b620ec0b8d9a980257362005d23fb?OpenDocument 
    Symantec Network Access Control - DHCP Enforcement
    http://service1.symantec.com/SUPPORT/ent-security.nsf/docid/2007092617525648

    Symantec Network Access Control - Gateway Enforcement
    http://service1.symantec.com/SUPPORT/ent-security.nsf/docid/2007092618043248

    I think you can do the quarantine , let me know if you have any issues.



  • 3.  RE: SNAC Problems

    Posted Jan 08, 2010 10:24 AM
    Thank you Rafeeq.

    But I am a bit confusing, can you explain for me? For the Gateway Enforcement, the enforcer will authenticate the clients from remote to identify the clients are correct or not. But for the LAN enforcement and Gateway enforcement, both seem like similar.

    For the LAN enforcement which it will authenticate the clients through the LAN or WLAN but the DHCP is authenticated through the LAN also.
    What is the different is the DHCP is through the DHCP server.

    I want to get opinion from you, what is the best enforcer that I should choose among 3. My company is using the AD server to authenticate the clients, some are getting the static IPs but mostly are using the dynamic, and using the LAN and WLAN.

    By the way, if without the enforcer how can I create the QVLAN and move those to the QLAN if it is failed? And how to provide the remediation for those clients too.

    Please kindly advise. If there are the print screen it is the best way.

    Thank you


  • 4.  RE: SNAC Problems

    Posted Jan 08, 2010 12:16 PM
     You can qurantine the clients when HI fails without a enforcer ( Hardware ).
    You can do that with SNAC DHCP Plugin.
    You will have to create scopes for Quarantine VLAN and Production.

    In Gateway enfocer you cannot quarntine as it will do only pass and fail.

    Lan Enforcer works in hand in hand with your switches and router and captures the traffic.

    However a DHCP Enforcer ( Appliance) work hand in hand with the DHCP server.


  • 5.  RE: SNAC Problems

    Posted Jan 08, 2010 06:49 PM
    Hi Vikram Kumar-SAV to SEP

    Is it the SNAC DHCP Plugin is free or have to purchase?

    Any website and steps can you share with me regarding the SNAC DHCP Plugin for installation, setting and remediation?


  • 6.  RE: SNAC Problems

    Posted Jan 08, 2010 11:11 PM
    May I know the LAN enforcer can be authenticated by the AD server or only the RADIUS Server?

    Can the LAN enforcer authenticated the wireless clients??


  • 7.  RE: SNAC Problems

    Posted Jan 09, 2010 12:29 PM
     You need license of SNAC ...DHCP Pluggin is free.

    Install and configure the Symantec Network Access Control (NAC) integrated enforcer plug-in for Microsoft DHCP servers
    http://service1.symantec.com/support/ent-security.nsf/docid/2008101315503848
     
    Symantec Network Access Control 11.0 DHCP Enforcement Overview
    http://service1.symantec.com/SUPPORT/ent-security.nsf/docid/2007092617525648


  • 8.  RE: SNAC Problems

    Posted Jan 09, 2010 08:40 PM
    Good. May I know the LAN enforcer can authenticate through the AD/LDAP?




  • 9.  RE: SNAC Problems

    Posted Jan 10, 2010 12:32 PM

    Symantec Network Access Control 11.0 LAN Enforcement Overview

    http://service1.symantec.com/support/ent-security.nsf/854fa02b4f5013678825731a007d06af/f28b620ec0b8d9a980257362005d23fb?OpenDocument