Careers & Certifications

10:09 PM
Connect Directly
LinkedIn
Google+
Twitter
RSS
E-Mail
50%
50%

NAC Ideas Worth Hearing

So many vendors were shouting about Network Admission Control (NAC) at this year???s Interop that they nearly drowned out the ???ding-ding??? of the slot machines. That means enterprises investigating NAC first have to tune out high levels of marketing B.S.,...

By deploying an SSL VPN proxy on the LAN in front of critical applications, you can now run a health check on every device that accesses the applications and provide an additional level of policy-based access. The traffic between the proxy and the end point will also be encrypted, which may be a plus if your users work with sensitive information.

The key drawback here is scalability. Because the SSL VPN is a proxy it may have a hard time scaling to support a large numbers of users and/or a high volume of transactions. This solution may also require a significant effort to ???Webify??? the applications you want to protect.

As you can see, neither of these options are perfect. However, both may serve as NAC starter kits, allowing you to run trials and track end point compliance to corporate policies without breaking the bank or requiring major overhauls to your existing architecture. If you???re sounding out a NAC architecture, these two ideas are worth hearing.

Drew is formerly editor of Network Computing and currently director of content and community for Interop. View Full Bio
Previous
2 of 2
Next
Comment  | 
Print  | 
More Insights
Slideshows
Cartoon
Audio Interviews
Archived Audio Interviews
Jeremy Schulman, founder of Schprockits, a network automation startup operating in stealth mode, joins us to explore whether networking professionals all need to learn programming in order to remain employed.
White Papers
Register for Network Computing Newsletters
Current Issue
Video
Twitter Feed