There are alot of ways to skin this cat. Keep in mind that it's pretty
easy to change your mac address but for most cases it won't be an issue.
To log the username to mac-address you can use NetReg. To see a history
of every IP the user gets, log DHCP leases.
To get the switch/port info you could use DHCP snooping. The switch can
be configured to store all the entries will be on a TFTP server. You can
back these up periodically or do some backend scripting for historical
purposes. A typical Cisco entry looks like this:
[amdin@r tftpboot]# more <switchname--dhcp>
192.168.84.53 584 aaaa.bbbb.cccc 52F41999
Also don't forget about mac-notify traps. A message will be sent to your
SNMP trapd server every time a mac address is seen on a switchport. I've
used this many times to track down mac addresses from a long as a month
ago. You can use snmptrapd(Linux) or Kiwi Syslog(Windows) to log the
If you don't want to do netreg, you can do 802.1x. The 802.1x wired
clients are a pain in the ass but if you want you can so Mac-Based
authentication so no 802.1x client configuration is needed. I think
Packetfence has this built in.
Nedi may help too. We used to use it many years ago. I haven't kept up
with it though.
On 2/6/2014 12:22 PM, Fishel Erps wrote:
> We are looking for a way to track a user's MAC to IP, and we want it to get updated dynamically, and we want to know what others out there, are using.
> For example, I am a student with a new laptop, and I want to connect to the network. When I connect - either wired or wirelessly, I should have my browser pop-up and asks me to enter my credentials (LDAP, AD, etc.). It should them log my MAC as belonging to user XYZ.
> From that point forward, it should also store a history of every IP the user gets, each time they get one.
> The ultimate purpose is to provide a deterrent for students who might use bit-torrents. That way, when we get a notice from someone that XYX downloaded a copyrighted movie, we can now research which student had which IP at what time, and pursue the issue.
> Fishel Erps
> Sr. Network & Infrastructure Engineer,
> School of Visual Arts
> LL: 212-592-2000
> E: [log in to unmask]
> Please excuse any typographical errors as this e-mail has been sent from my mobile device
> Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.