Cisco product configuration information (http://www.cisco.com) "Catalyst 6500 Series Software Configuration Guide, 8.5" (Port Security, Configuring Access Control, Cat6K Configuring Dynamic Port VLAN membership with VMPS, mac-auth-bypass and much, much more) "Configuring IEEE 802.1x Port-Based Authentication: IOS Configuration" (also has information about guest and auth-fail VLAN and voice and port security integration) "Configure IEEE 802.1x Authentication with Catalyst 6500/6000 Running Cisco IOS Software" "VPN Access Control Using 802.1X Authentication" "User Guide for the Cisco Secure User Registration Tool Release 2.5" "Cisco IOS Service Selection Gateway Configuration Guide" (web-based access solution) "Cisco Building Broadband Service Manager" (web-based access) "EAP-TLS Deployment Guide for Wireless LAN Networks" Cisco design and technology references (http://www.cisco.com) "Layer 2 Access Control: Cisco IOS Software 802.1x" "Gigabit Campus Network Design Principles and Architecture" "VLAN Load Balancing Between Trunks Using the Spanning-Tree Protocol Port Priority" "Spanning Tree PortFast BPDU Guard Enhancement" "Cisco StackWise Technology" "Cisco Catalyst Integrated Security-Enabling the Self-Defending Network" "Cisco IP Telephony Reference Guide for Call Manager 4.0 and 4.1Network Infrastructure" Internal documents (created by TMEs in Cisco Technology Systems and enterprise Systems Engineering teams) "IBNS/802.1x BasicDetails of AAA attributes for 802.1x implementation" "Application Note: 802.1x and DHCPInteroperability of Clients, Supplicants and Cisco implementation" "Deployment Guide: Authenticated Identity InformationDHCP Snooping, RADIUS Accounting" "Deployment Guide: L2 Security Features and Port-Based Access Control" "Cisco IBNS Multiple Authentication Techniques in Hub Environments" "IBNS and IP Telephony Application Note: Deployment Guide" "Application Note: Use of 802.1x Guest VLAN to Provide Guest Access" "Routing & Switching VT, November 2004: Wireless and Wired Guest Access Solution" (by Max Ardica, Simone Arena, Alex Dolan) "Routing & Switching VT, May 2005: Campus VPN for NAC Remediation and Guest Access" (by Max Ardica, Henry Carmouche) Books Kaza, R. , and S. Asadullah. Planning for Cisco IP Telephony. Indianapolis: Cisco Press, 2005. Reddy, K. Building MPLS-Based Broadband Access VPNs. Indianapolis: Cisco Press, 2004. (Discusses service provider solution for some of the access problems discussed here, such as per-VRF services, virtual home gateways for PPP to MPLS termination, RADIUS attributes, and so on.) |