Accessing Internet

[MSR63]

Can someone explain to me how a system non on our domain can plug in a cable in the office and access the internet?
I have seen this for years but do not understand how this happens without that guest getting access to our network

Thanks

 

[scottew]

Basically, your network has a DHCP server handing out IP address. The users laptop/computer is set to automatically obtain and IP address. Once he has an IP address, he is on your network.

Scott

 

[MSR63]

Thanks Scott

The guest is on the network in respects that they can access the internet however they have to authenticate to access servers or anything else on the network.

Which is what I figured that because it's within the IP subnet it has jthat access - our concern was they also have access to our intranet that way.

I needed to explain to a co-worker that we are still secured and the guest only has internet access -- didn't really have a good explaination to give my co-worker but it sound pretty straight forward.

Now knowing that a guest can access our intranet while in the office - we may have to enable authentication on the first page also.

Thanks Scott

 

[58sniper]

You can further secure this via Cisco's NAC, or limiting DHCP to specific MAC addresses. You can also limit DNS traffic through your firewall to only the DNS servers in your domain. I also generally restrict all SMTP traffic as well. Pretty much leaves them in the cold.

Pat Richard MVP
Plan for performance, and capacity takes care of itself. Plan for capacity, and suffer poor performance.

http://www.ucblogs.net/blogs/exchange/