When you have PC with operating system Ex: WIN7 and on this WIN7 VMware machine Ex: XP, this PC connect to the Switch port 802.1X
From ISE I define policy to profile VM-XP as VMware station and denied this group to access the network
When the PC connect to Switch its Authenticated and NAC agent do posture assessment then access the network , and the VMware –XP denied by ISE policy but it still access the network through VM-XP when I do some trouble shooting I found that the VM-XP address is the PC-WIN7 address so it allowed to access , and from ISE monitor the VM-XP address denied and PC-WIN7 is permitted
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...