05-05-2010 06:32 PM - edited 03-06-2019 10:57 AM
I've had the pleasure, or displeasure for those who may, of working on a 600-700 devi
ce(7000-10000) user base network with Open vmpsd as the vlan assignment method. Granted it's been rendered obsolete, and no longer supported on newer devices, is there an alternative vlan assignment scheme flexible enough to work well with this size of a network, and with NAC deployment taking foot, work well with this technology?? What vlan assignment solutions would you recommend in a network with thousands of ports in need of effective vlan assignment, yet secure enough to pass US Gov Standards.
05-05-2010 11:26 PM
I've had the pleasure, or displeasure for those who may, of working on a 600-700 devi
ce(7000-10000) user base network with Open vmpsd as the vlan assignment method. Granted it's been rendered obsolete, and no longer supported on newer devices, is there an alternative vlan assignment scheme flexible enough to work well with this size of a network, and with NAC deployment taking foot, work well with this technology?? What vlan assignment solutions would you recommend in a network with thousands of ports in need of effective vlan assignment, yet secure enough to pass US Gov Standards
Hi,
What i would suggest go with Dynamic VLAN Assignment with RADIUS Server,check out the below link for the same !!
http://www.cisco.com/en/US/tech/tk722/tk809/technologies_configuration_example09186a008076317c.shtml
Hope to Help !!
Ganesh.H
Remember to rate the helpful post
05-06-2010 06:45 AM
Hello Dim,
you may want to consider also 802.1X for vlan assignment if there are security requirements
Vlan can be assigned during 802.1X port authentication:
But I'm afraid it can be not compatible with Cisco NAC.
Hope to help
Giuseppe
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide