ExtremeCloud IQ- Site Engine & Extreme Management Center

Expand all | Collapse all

GRE tunnel endpoint on NAC gateways?

  • 1.  GRE tunnel endpoint on NAC gateways?

    Posted 11-06-2014 14:33
    Hi,

    short question - is it possible to setup a GRE tunnel endpoint within an NAC gateway like in purview appliances?
    Goal: achieve user account information from kerberos packets in NAC, virtualized gateways, policy mirror for kerberos



  • 2.  RE: GRE tunnel endpoint on NAC gateways?

    Posted 11-06-2014 14:40
    That is not possible at the moment.
    But: if you happen to have XOS-based switches, you can use their Identity Manager (IDM) to forward XML notifications containing Kerberos data to Netsight/NAC.


  • 3.  RE: GRE tunnel endpoint on NAC gateways?

    Posted 01-22-2015 05:30
    Also you could just mirror your Kerberos traffic from the S/K series switch to a free port of Tour NAC Appliance. But without GRE. Regards Michael


  • 4.  RE: GRE tunnel endpoint on NAC gateways?

    Posted 01-22-2015 07:20
    i only use virtualized nac gateways - so i dont want to mirror traffic to any esx host, using dedicated NICs in the servers isnt an option.


  • 5.  RE: GRE tunnel endpoint on NAC gateways?

    Posted 01-22-2015 07:58
    I see - in this case this would be a pretty good feature request.

    a) GRE Tunnel support for NAC Appliance
    b) Sharing of Kerberos information from Purview to NAC

    By the way, if you use 802.1X the kerberos Info is not used anyway because the same Field in the NAC info tupel is used. I requested to introduce a new field for this.