Hello all,
I'm trying to get PacketFence working with an Aruba 3600 series controller and
AP-225s. The machine I have running is running CentOS 6.5 and using the
PacketFence repositories. I am attempting VLAN enforcement. When clients come
onto the Aruba controller they seem to never get DHCP from the PF Host.
TCPDump shows the discover and offer. But the offer never makes it to the
wireless supplicant.
Any help or an example of configuration from Aruba and Packetfence would be
enormously appreciated.
Thanks!
My VLAN Layout is as follows:
PacketFence is fully configured with FreeRADIUS running (if you want 802.1X or
MAC Auth)
PacketFence IP address: 172.16.0.30
Normal VLAN: 3101
Registration VLAN: 3105
Isolation VLAN: 3106
MAC Detection VLAN: 3107
VoIP, Voice VLAN: 541
use SNMP v2c
Here is my network configuration:
[10.10.105.0]
dns=10.10.105.5
dhcp_start=10.10.105.10
gateway=10.10.105.5
domain-name=vlan-registration.osfashland.org
named=enabled
dhcp_max_lease_time=30
dhcpd=enabled
type=vlan-registration
netmask=255.255.255.0
dhcp_end=10.10.105.246
dhcp_default_lease_time=30
[10.10.106.0]
dns=10.10.106.5
dhcp_start=10.10.106.10
gateway=10.10.106.5
domain-name=vlan-isolation.osfashland.org
named=enabled
dhcp_max_lease_time=30
dhcpd=enabled
type=vlan-isolation
netmask=255.255.255.0
dhcp_end=10.10.106.246
dhcp_default_lease_time=30
Here is my switches.conf
mode=production
guestVlan=3101
deauthMethod=RADIUS
description=Aruba Controller
employeeVlan=3101
type=Aruba::Controller_200
macDetectionVlan=3107
VoIPEnabled=N
isolationVlan=3106
radiusSecret=aPlainYellowPumpkin
SNMPVersion=3
registrationVlan=3105
SNMPCommunityWrite=osfnoc
SNMPVersionTrap=3
controllerIp=10.10.100.2
registrationRole=pflogon
defaultRole=authenticated
guestRole=pflogon
employeeRole=authenticated
Below is the aruba AAA configuration:
aaa profile "packetfence-dot1x"
authentication-dot1x "packetfence-dot1x"
dot1x-default-role "authenticated"
!
aaa profile "packetfence-mac-auth"
initial-role "pflogon"
authentication-mac "packfence-macAuth"
mac-default-role "pfguest"
mac-server-group "packetfence"
radius-accounting "packetfence"
wlan virtual-ap "OSF-Guest-vap_prof"
aaa-profile "packetfence-mac-auth"
ssid-profile "OSFGuest-ssid_prof"
!
wlan virtual-ap "OSF-Secure-vap_prof"
aaa-profile "packetfence-dot1x"
ssid-profile "OSFSecure-ssid_prof"
?
------------------------------------------------------------------------------
Learn Graph Databases - Download FREE O'Reilly Book
"Graph Databases" is the definitive new guide to graph databases and their
applications. Written by three acclaimed leaders in the field,
this first edition is now available. Download your free book today!
http://p.sf.net/sfu/13534_NeoTech
_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
