RE: can we have mac-addresses as client address sets for acl in isa
- From: "Thomas W Shinder" <tshinder@xxxxxxxxxxxxxxxxxx>
- To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
- Date: Wed, 18 Jun 2003 19:56:51 -0500
Hey guys,
I seems strange to me that anyone would want to use MAC address control
when one of the major advantages of using an ISA firewall is user/group
based access control. Its pretty easy to spoof your MAC address. But as
Dave said, if you want to use MAC based control, just create static
entries in DHCP and use Group Policy to prevent users from changing
their addressing schemes.
HTH,
Tom
Thomas W Shinder
www.isaserver.org/shinder
ISA Server and Beyond: http://tinyurl.com/1jq1
Configuring ISA Server: http://tinyurl.com/1llp
-----Original Message-----
From: David V. Dellanno [mailto:ddellanno@xxxxxxxxxx]
Sent: Wednesday, June 18, 2003 3:10 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: can we have mac-addresses as client address sets
for acl in isa
http://www.ISAserver.org
I believe ISA doesn't support the mac-addresses but the
alternative solution would be at your hard working MS DHCP server and
make IP reservations to the mac-addresses. Then at your beloved ISA
server you can create under Policy Elements your Client Address Sets.
Sorry that I have no input about the comparison of the Squidy
:-)
-----Original Message-----
From: Rajiv Kulkarni [mailto:rajiv_nag@xxxxxxxxx]
Sent: Wednesday, June 18, 2003 4:03 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] can we have mac-addresses as client address sets for
acl in isa
http://www.ISAserver.org
Hello Friends,
I wanted to know whether we could configure
mac-address based client-address sets in isa.if not
what prevents the configuration in isa.
Also i have observed that a squid proxy has this
facility (of mac-address based acl) and also that the
responses from the squid proxy is very fast compared
to isa..even when we have only ONE TEST USER.
can anybody advice me please??
thank you
PS: I will still remain as passionate as ever for MS-products...it's
just that i sometimes debate with my unix collegues often wrt MS
products.
__________________________________
Do you Yahoo!?
SBC Yahoo! DSL - Now only $29.95 per month! http://sbc.yahoo.com
------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
Leading Network Software Directory: http://www.serverfiles.com No.1
Exchange Server Resource Site: http://www.msexchange.org Windows
Security Resource Site: http://www.windowsecurity.com/ Network Security
Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions:
http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
ddellanno@xxxxxxxxxx To unsubscribe send a blank email to
$subst('Email.Unsub')
Confidentiality Notice:
This e-mail message, including any attachments, is for the sole use of
the intended recipient(s) and may contain confidential and privileged
information. Any unauthorized review, use, disclosure or distribution is
prohibited. If you are not the intended recipient, please contact the
sender by reply e-mail and destroy all copies of the original message.
Confidentiality Notice:
This e-mail message, including any attachments, is for the sole use of
the intended recipient(s) and may contain confidential and privileged
information. Any unauthorized review, use, disclosure or distribution is
prohibited. If you are not the intended recipient, please contact the
sender by reply e-mail and destroy all copies of the original message.
------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
tshinder@xxxxxxxxxxxxxxxxxx
To unsubscribe send a blank email to $subst('Email.Unsub')
Other related posts:
