Answer for:

secure a LAN from unauthorised access

Message 6 of 5

View entire thread
0 Votes

If this is an enterprise (business) environment, then there are several things to do.

As noted above, there should be a formal policy in place regarding personal equipment on the network.

If it is necessary to actually secure the network (such as a bank network for example), then you should probably also look at port security. Higher-end switches such as the Cisco (and presumably other major manufacturers) can lock down ports so that they only allow certain MAC addresses, or only allow the first mac address that talks to the port. If there is a violation, the switch can automatically shut off the port to prevent access.

You can also look at 802.1x authentication for security at the port level.