Port Security & Network Access – Quarntining Rogue Access Points

Schedule a Portnox Cloud demo today.

Contents

Before you read this blog post, be sure to check out the first part of this series: “Network Access Control – A Bird’s Eye View”” for an introductory read on the vast and wide-ranging topic surrounding Network Access Control (NAC). Originally, NAC was about blocking devices and restricting access, and in many ways, this still rings true.

Internet security specialist, Bruce Shneier blogged about an interesting case that occurred in Israel a few years ago: Thieves had broken into a small bank, but surprisingly, nothing was taken. Investigators assumed that the perpetrators had run away when the alarm was set off, but what they didn’t know, was that the criminals never intended to steal any money – at least not at the time. What they had done, in fact, was connect a rogue access point to the bank’s network, rented an office nearby and deployed the kill chain intrusion methodology with the aim to syphon money from the financial institute.

Avoid the 5 Pitfalls of NAC – Get our Free Whitepaper Today! 

Unbeknownst to the intruders, their repeated withdrawal of NIS. 49,999 over a period of time, flagged as an irregular occurrence on the bank’s system. One of the suspects went to the branch to withdraw the money, and that’s when police swooped in. This demonstrates how one single rogue access point can exploit company information assets and place them in very precarious positions.

Classic NAC is about blocking, disconnecting ports and identifying rogue devices on the network. The next evolutionary level of NAC, however, is to quarantine – either by VLAN assignment to a containment VLAN, or by setting an access list (ACL). In rare cases ARP poison (arp spoofing) is used. Each one of these policies has advantages and drawbacks to consider when deploying :
Port

Lastly, the importance of blocking a device, AKA keeping the bad guys out of your network, is entrenched as common practice for all organization. PCI and other standards  are quite common for auditors to check.

Share

About the Author

Picture of Portnox Editorial Team

Portnox Editorial Team

Portnox unifies several critical access control technologies into a single cloud platform, allowing you to manage who and what connects to your network.

About the Author

Picture of Portnox Editorial Team

Portnox Editorial Team

Portnox unifies several critical access control technologies into a single cloud platform, allowing you to manage who and what connects to your network.

Related Reading

Network SecuritySecurity Trends

Nobody’s Guardrails Are a Substitute for Yours

June 30, 2026
Network Security

Network-Layer, Not Everywhere-Layer: Defining Our AI Agent Perimeter

June 29, 2026
Network SecuritySecurity Trends

AI Agent Blast Radius: Why It’s Now Everyone’s Problem”

June 29, 2026