Properly configured, switches can add another layer of security to your network. This article provides best practices configurations that should be considered for any organization. The tips within can help isolate systems from hackers, prevent the spread of zero day viruses and prevent unauthorized systems from connecting to your network.

http://isc.sans.org/diary.php?storyid=1583

Also consider the uses of Cisco Network Admission Control (NAC). NAC requires computers to present their security policy before attaching to the network. If a system does not have the appropriate security patches or anti-virus definitions, it can be redirected to a restricted network or denied access altogether. "NAC provides remediation capabilities so that all required security components can be installed and enabled for endpoint devices. Such a remediation path allows noncompliant devices to be brought into compliance".

http://www.cisco.com/en/US/netsol/ns466/networking_solutions_package.html

Kind regards,

Gideon

Gideon T. Rasmussen
CISSP, CISA, CISM, IAM
Charlotte, NC
http://www.gideonrasmussen.com/contact.html

http://www.ussecurityawareness.org
http://groups.yahoo.com/group/insider-threat

Posted: Thu Aug 17, 2006 12:51 am

Copyright © 2002 - 2007 Gideon T. Rasmussen All Rights Reserved.
Legal Notices