 
| Subject: | |
| From: | |
| Reply To: | |
| Date: | Thu, 8 Sep 2005 13:49:01 -0400 |
| Content-Type: | text/plain |
| Parts/Attachments: |
|
|
> -----Original Message-----
> From: Perfigo SecureSmart and CleanMachines Discussion List
> [mailto:[log in to unmask]] On Behalf Of Michael Grinnell
> Sent: Thursday, September 08, 2005 1:09 PM
>
> We've looked at eventually moving these devices from
> "allowed" to a specific role, but we wanted to see what other
> schools' experiences were first.
>
We have a role called GameConsole that has an allow all. So effectivily
it's the same, but it would be very easy for us to change the filer
quickly.
One of the Cisco guys I met mentioned this, that it is (Administravitly,
not performance or anything else wise) better to make a role for
whatever your adding to allow filters. That way you can group like
machines. Also, in the future, it is easier to make changes to the
roles if they are in them, rather than if they are all just "allow all"
I reiterate that there is no performance reason for doing this, it's
just better administratively.
|
|
|
