Chapter 7: Quarantined Networks; Endpoint Quarantine Precedence - Extreme Networks AG200 User Manual
Version 5.0
Hide thumbs
Also See for AG200:
- Installation manual (80 pages) ,
- Hardware installation manual (40 pages) ,
- Hardware quick start manual (2 pages)
Table of Contents
Advertisement
7
Quarantined Networks
This chapter describes the following general Sentriant AG quarantine information:
"Endpoint Quarantine Precedence" on page 201
●
"Using Ports in Accessible Services and Endpoints" on page 203
●
"Determining Accessible Services Example" on page 204
●
"Always Granting Access to an Endpoint" on page 210
●
"Always Quarantining an Endpoint" on page 211
●
"New Users" on page 212
●
"Shared Resources" on page 212
●
"Untestable Endpoints and DHCP Mode" on page 212
●
Endpoint Quarantine Precedence
Endpoints are quarantined in the following hierarchical order:
1 Access mode (normal operation, quarantine all, or allow all)
2 Temporarily quarantine for/Temporarily grant access for radio buttons
3 Endpoint testing exceptions (always grant access, always quarantine)
4 NAC policies
NOTE
In DHCP mode, if an endpoint with an unsupported OS already has a DHCP-assigned IP address, Sentriant AG
cannot affect this endpoint in any way until the lease on the existing IP address for that endpoint expires. If an
endpoint with an unsupported OS has a static IP address, Sentriant AG cannot affect this endpoint in any way. In
both of these cases, the System Monitor window may show the quarantined icon next to these endpoints; however, if
you hover your mouse over the red circle, the actual status shows that the endpoint should be quarantined, but the
quarantine action was unsuccessful.
Sentriant AG Users' Guide, Version 5.0
201
Advertisement
Table of Contents
