Manualshelf

User Guide

ManualsBrandsNortel Networks ManualsOther4050
31323334353637383940
Chapter 1 Overview 33
Nortel Secure Network Access Switch 4050 User Guide
Java Runtime Environment (JRE) for all browsers:
JRE 1.5.0_04 or later
VoIP phones
Nortel IP Phone 2002
Nortel IP Phone 2004
Nortel IP Phone 2007
See Release Notes for the Nortel Secure Network Access Solution,
Software Release 1.0 (320850-A) for the minimum firmware versions
required for the IP Phones operating with different call servers.
Each NSNA-enabled port on a network access device can support one PC
(untagged traffic) and one IP Phone (tagged traffic). Softphone traffic is
considered to be the same as PC traffic (untagged).
Role of the Nortel SNAS 4050
The Nortel SNAS 4050 helps protect the network by ensuring endpoint
compliance for devices that connect to the network.
Before allowing a device to have full network access, the Nortel SNAS 4050
checks user credentials and host integrity against predefined corporate policy
criteria. Through tight integration with network access devices, the Nortel
SNAS 4050 can:
dynamically move the user into a quarantine VLAN
dynamically grant the user full or limited network access
dynamically apply per port firewall rules that apply to a device’s connection
Once a device has been granted network access, the Nortel SNAS 4050
continually monitors the health status of the device to ensure continued
compliance. If a device falls out of compliance, the Nortel SNAS 4050 can
dynamically move the device into a quarantine or remediation VLAN.
Note: Where there is both an IP Phone and a PC, the PC must be
connected through the 3-port switch on the IP Phone.