Network Access Control and Port Security

  • Controlling physical access to your network

  • Physical security of your network ports

    • Locked cabinets

    • Disable unused ports

    • Protect cable runs

  • Simple method: Port Security or MAC Filtering

  • Advanced method: NAC / NAP / 802.1x / port based authentication

    • Supplicant (you)

    • Authenticator (the network access device)

    • Authentication server (RADIUS server)

    • EAPoL traffic allowed

    • Additional checks can be performed

      • Health check / posture validation

      • Is it our device?

      • OS updates

      • AV updates and scans

      • Group membership

      • Location (network type, GeoIP, GPS)

      • Time of day

      • Remediation options:

        • Deny access

        • Restricted VLAN (quarantine)

PreviousURL Analysis & DNS in MalwareNextIdentity and Access Management (IAM)

Last updated