Hello,
I was wondering what people thoughts are; I have a question about NAC, so, if we have a dot1x enabled port on a switch with a client that is successfully authenticated and authorised to connect to the network, the clients MAC address is entered into the IPDT table and of course also in the MAC address table;
If the successfully authenticated and authorised machine became compromised and started to flood the network with packets that have spoofed MAC addresses;
1) would all the spoofed MAC addresses enter the MAC address table filling it up and compromising the performance of the switch?
2) would all the MAC address enter the IPDT table filling it up and compromising the performance of the switch?
3) would the dot1x port try and authenticate/authorise the spoofed MAC addresses against NAC?
Thanks for reading
Kind regards