LISTSERV - CLEANACCESS Archives - LISTSERV.MIAMIOH.EDU

CLEANACCESS Archives

January 2007

CLEANACCESS@LISTSERV.MIAMIOH.EDU

	LISTSERV Archives
	CLEANACCESS Home
	CLEANACCESS January 2007

	Log In
	Register

	Subscribe or Unsubscribe

	Search Archives

Options:	Use Monospaced Font Show Text Part by Default Show All Mail Headers
Message:	[<< First] [< Prev] [Next >] [Last >>]
Topic:	[<< First] [< Prev] [Next >] [Last >>]
Author:	[<< First] [< Prev] [Next >] [Last >>]

Subject:	Re: gameconsole directions
From:	Greg Schaffer <[log in to unmask]>
Reply To:	Cisco Clean Access Users and Administrators <[log in to unmask]>
Date:	Fri, 26 Jan 2007 09:32:27 -0600
Content-Type:	text/plain
Parts/Attachments:	text/plain (51 lines)

Ken,

I don't think you'll see them in any of the CCA gui logs because they're not
going through the authentication process.  Obviously you won't see them in
the CCA Agent reports either.  

We have a specific gaming role which essentially allows most traffic to/from
the Internet and denies access to local resources.  For the most part
wildcarding the MAC addressess works fine but in a few instances (see my
prev post) the wildcard interferes with other laptops.  

There are two steps.  First create the policy and name it something unique
(like Games).  Put in whatever rules you want here.  Then go to dev
management-> filters and build your filters based on MAC addresses, and
assign to a role.  If you build the filter this way it will apply to all CCA
servers; if you try to do it at each server manually it can get trickier.
We only have two CCA servers and both serve our RESnet so this process makes
it simpler.

Hope this helps,
Greg

-----Original Message-----
From: Cisco Clean Access Users and Administrators
[mailto:[log in to unmask]] On Behalf Of Ken Nelson
Sent: Friday, January 26, 2007 9:25 AM
To: [log in to unmask]
Subject: gameconsole directions

Wondering if any of you using OOB virtual gateway are having issues with 
gameboxes.   I have followed the directions given for adding mac 
addresses to the filter list so they don't have to authenticate or 
negotiate but it doesn't seem to be working.  They get an ip address but 
no internet.  Do these devices show in the monitoring online users or 
event logs anywhere so i can verify the students really are not 
connecting?  I could swear in the fall this was working and nothing has 
changed.

And does Anyone have some good directions on how to make this work so i 
can verify my settings?  In the fall we had just a few xbox360s now we 
have dozens of Ps3, Wii, xbox360s wanting to connect.  Should i create a 
seperate gaming role (actually did this but since didn't work) i tried 
to just stick them in the studentdorm authenticated role i have (but not 
sure that  helped either since i don't see the macs in the logs as on).

Thanks,

Ken Nelson
Network Manager
Marietta college

ATOM RSS1 RSS2

LISTSERV.MIAMIOH.EDU