beautypg.com

Initializing the nac controller, Overview, Chapter 6: initializing the nac controller – Enterasys Networks 7S4280-19-SYS User Manual

Page 69: Overview -1

background image

Enterasys NAC Controller Hardware Installation Guide 6-1

6

Initializing the NAC Controller

This chapter provides a detailed discussion of the NAC Controller software initialzation.

Overview

The NAC Controller is composed of two subcompents, the Policy Enforcement Point (PEP) and 
the Engine.  Each component has an IP address, and the components are managed jointly in the 
operation of the NAC Controller on the network.  When configuring the NAC Controller for IP 
connectivity in the network topology, it is important to consider both the NAC Controller PEP and 
NAC Controller Engine as described below.

Two management configurations for the NAC Controller are supported depending on the 
management topology of your network:  in‐band management or out‐of‐band management.  For 
the in‐band management configuration, all management traffic sourced from the NAC Controller 
is generated onto the data VLAN along with end system traffic that is traversing the appliance.  
For the out‐of‐band management configuration, all management traffic sourced from the NAC 
Controller is generated on a different VLAN than the end system traffic.  More details about these 
management configurations as related to required settings of adjacent network infrastructure 
devices are explained below.  Either the in‐band or out‐of‐band management configuration is 
supported for the Layer 2 (L2) and Layer 3 (L3) NAC Controller.  Therefore, one of the following 
configurations must be selected as the installation type during the intialization of the NAC 
Controller:

Layer 2 NAC Controller with In‐Band Management

Layer 2 NAC Controller with Out‐Of‐Band Management

Layer 3 NAC Controller with In‐Band Management

Layer 3 NAC Controller with Out‐Of‐Band Management

For information about...

Refer to page...

Overview

6-1

General Management Considerations

6-3

Preparation for NAC Controller Initialization

6-6

The NAC Controller Initialization Procedure

6-7

The NAC Controller Policy Configuration

6-16

Note: The NAC Controller software initialization will take place within a single discussion.
Unless otherwise specified, the content of the discussion applies to all four installation
types.

This manual is related to the following products:
See also other documents in the category Enterasys Networks Hardware: