locked
NAP in Different Vlans RRS feed

  • Question

  • Hi to everybody:

    Prequel

     

    ·         We have implemented NPS in a server with Configuration Manager

    ·         We used the DHCP Enforcement

    ·         Configuration Manager has the role of SHVP and has NAP enabled, we have only one Configuration Manager primary site, and yes this primary site have all the roles (management point, software update point, and a distribution, shvp ),and also have the NPS rol Running on him.

     

     

    The biggest problem in this situation is the next:

     

    The client had at least 20 Vlans in one building, this may include 7 or more vlans for one floor. Another inconvenient is that the client only want one remediation server for all the building . How can I configure NPS to work with all the vlans in the building and only one remediation server for all of them??

     

    Thank´s

     

    Monday, June 1, 2009 6:45 PM

Answers

  • Hi,

    If your switch has layer 3 capabilities, you can configure the routing table so that all VLANs can reach the remediation server. Alternatively, you can configure the port that is attached to the remediation server as a trunking port with access to all VLANs. If there were not so many VLANs, you could multi-home the remediation server, but in your case this would require 20 network interface cards, which isn't practical.

    -Greg
    Tuesday, June 2, 2009 5:52 AM

All replies

  • Hi,

    If your switch has layer 3 capabilities, you can configure the routing table so that all VLANs can reach the remediation server. Alternatively, you can configure the port that is attached to the remediation server as a trunking port with access to all VLANs. If there were not so many VLANs, you could multi-home the remediation server, but in your case this would require 20 network interface cards, which isn't practical.

    -Greg
    Tuesday, June 2, 2009 5:52 AM
  • Hi,

    If your switch has layer 3 capabilities, you can configure the routing table so that all VLANs can reach the remediation server. Alternatively, you can configure the port that is attached to the remediation server as a trunking port with access to all VLANs. If there were not so many VLANs, you could multi-home the remediation server, but in your case this would require 20 network interface cards, which isn't practical.

    -Greg

    Hi,

    I have understood that they have switch that has layer 3 capabilities, but they have too switch that has layer 2 capabilities. In the case that you have mecionated above, how can I configure the part of the Network Policy Server?.

    Thank´s
    Monday, June 8, 2009 4:36 PM