NAC Deployement

Unanswered Question


in campus envirments where a collapsed 2 Core and 2 Distribution with VSS enabled on both 6513 core/Distribution, along with 2000 users,

Question Is:

according the above situation what is the best deployment for NAC Manager/NAC Server,in term of L2/L3 out of band,What do y say in this deplyoment


I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (3 ratings)
Federico Coto F... Mon, 04/26/2010 - 13:12


I agree that you should be more specific.

For example L2 is when the NAS is going to be adjacent on the same L2 segment of the client.
L3 generally is better since the NAS does not have to be adjacent to the client (more scalable)

In-band is when the traffic passes through the NAS all the time.
OOB is when only the authentication and posture passes through the NAS, then all normal traffic
is redirected to the appropiate VLAN.
For OOB you need Cisco Switches.

One NAS server can only serve certain connections, therefore depending on your topology you might need
more than one NAS servers and a Lite-Manager or Standard Manager.

Check out the NAC datasheet for the NAC Appliances and let us know if you have any questions.



This Discussion