NAC specific interface for management purposes only
I should deploy a NAC solution consisting in a CAS, a CAM and a Guest Mgr to provide wi-fi guest access to an organization. Every server is a NAC3310 appliance.
All components of the solution are going to be deployed entirely in an extranet area, isolated from the corporate intranet. The network administrator, located in the intranet, should access the CAM console for management purposes. Therefore, one possibility could be to deploy a firewall between the intranet and the extranet trusted side where the CAM and CAS are located to allow him to access the web consoles.
According with the documentation, the eth0 interface for both the CAS and the CAM should be wired to the trusted network.
My question is: Provided that the NAC appliance 3310 is equipped with four RJ-45 eth interfaces, can I take advantage of another currently unused CAM or CAS appliance eth interface for management purposes only?
Therefore, by using an additional eth interface of the CAS and CAM directly connected in the intranet side would be the easier way to gain access to them from the intranet side for management purposes.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...