Subject: | |
From: | |
Reply To: | |
Date: | Fri, 26 Jan 2007 09:32:27 -0600 |
Content-Type: | text/plain |
Parts/Attachments: |
|
|
Ken,
I don't think you'll see them in any of the CCA gui logs because they're not
going through the authentication process. Obviously you won't see them in
the CCA Agent reports either.
We have a specific gaming role which essentially allows most traffic to/from
the Internet and denies access to local resources. For the most part
wildcarding the MAC addressess works fine but in a few instances (see my
prev post) the wildcard interferes with other laptops.
There are two steps. First create the policy and name it something unique
(like Games). Put in whatever rules you want here. Then go to dev
management-> filters and build your filters based on MAC addresses, and
assign to a role. If you build the filter this way it will apply to all CCA
servers; if you try to do it at each server manually it can get trickier.
We only have two CCA servers and both serve our RESnet so this process makes
it simpler.
Hope this helps,
Greg
-----Original Message-----
From: Cisco Clean Access Users and Administrators
[mailto:[log in to unmask]] On Behalf Of Ken Nelson
Sent: Friday, January 26, 2007 9:25 AM
To: [log in to unmask]
Subject: gameconsole directions
Wondering if any of you using OOB virtual gateway are having issues with
gameboxes. I have followed the directions given for adding mac
addresses to the filter list so they don't have to authenticate or
negotiate but it doesn't seem to be working. They get an ip address but
no internet. Do these devices show in the monitoring online users or
event logs anywhere so i can verify the students really are not
connecting? I could swear in the fall this was working and nothing has
changed.
And does Anyone have some good directions on how to make this work so i
can verify my settings? In the fall we had just a few xbox360s now we
have dozens of Ps3, Wii, xbox360s wanting to connect. Should i create a
seperate gaming role (actually did this but since didn't work) i tried
to just stick them in the studentdorm authenticated role i have (but not
sure that helped either since i don't see the macs in the logs as on).
Thanks,
Ken Nelson
Network Manager
Marietta college
|
|
|