Nortel snas functions, Nortel snas enforcement types, Vlans and filters – Nortel Networks 5500 series User Manual

28

Overview

Nortel SNAS functions

The Nortel SNAS performs the following functions:

•

Acts as a web server portal, which is accessed by users in clientless
mode for authentication and host integrity check and which sends
remediation instructions and guidelines to endpoint clients if they fail
the host integrity check.

•

Communicates with backend authentication servers to identify
authorized users and levels of access.

•

Acts as a policy server, which communicates with the Nortel Health
Agent applet that verifies host integrity.

•

Instructs the network access devices to move clients to the appropriate
enforcement zones.

•

Can be a DNS proxy in the Red VLAN when the Nortel SNAS functions
as a captive portal

•

Supports the RADIUS server

•

Supports Microsoft NAP Interoperability.

•

Performs session management.

•

Monitors the health of clients and switches.

•

Performs logging and auditing functions.

•

Provides High Availability (HA) through IPmig protocol.

Nortel SNAS enforcement types

Nortel SNAS provides several enforcement types for restricting access
to the network.

•

VLANs and filters uses a combination of VLANs and filters to provide
enforcement. It is available with NSNA network access devices; that is,
devices that support SSCP (Switch-SNAS Communication Protocol),
SSCP-Lite, and 802.1x switches.

•

Filters only uses only filters to provide enforcement. It is available with
NSNA network access devices.

•

NSNA network access devices including Nortel Ethernet Switch
models - 325, 425, 450, 470 and 2500 series and Ethernet Routing
Switch models - 4500 series, 5500 series, 8300 and 8600 as well as
third-party switches.

VLANs and filters

Nortel Secure Network Access Switch

Using the Command Line Interface

NN47230-100

03.01

Standard

28 July 2008

Copyright © 2007, 2008 Nortel Networks

.