Comment Re:Clueless Analyst Syndrome (Score 4, Informative) 76
Reply to clueless slashdotter:
NAC Phase 1 was deployed using EAPoUDP (EAP over UDP). It used routers to quarantine devices. It is a layer 3 solution. Other devices could still infect layer 2 connected devices.
NAC Phase 2 (just announced) is deployed using EAPo802.1x (EAP over 802.1x). It uses switches to quarantine devices. It is a layer 2 solution. Thus an infected device cannot infect other layer 2 devices.
http://www.acuitive.com/musings/hmv7-12.htm
http://newsroom.cisco.com/dlls/2005/prod_101805.ht ml
NAC Phase 1 was deployed using EAPoUDP (EAP over UDP). It used routers to quarantine devices. It is a layer 3 solution. Other devices could still infect layer 2 connected devices.
NAC Phase 2 (just announced) is deployed using EAPo802.1x (EAP over 802.1x). It uses switches to quarantine devices. It is a layer 2 solution. Thus an infected device cannot infect other layer 2 devices.
http://www.acuitive.com/musings/hmv7-12.htm
http://newsroom.cisco.com/dlls/2005/prod_101805.h
