Hello Julien, it looks that you enabled "Deauth on previous switch" in the switch configuration for 172.16.252.100 (packetfence side). Disable it and retry. Regards Fabrice
Le lun. 12 déc. 2022 à 08:55, Julien Dejean via PacketFence-users < packetfence-users@lists.sourceforge.net> a écrit : > Hello, > > > > I configured packetfence for 802.1x, but for th mac using the portal i > still have an issue to change vlan after portal authentification. > > I use an cisco sg300, with snmp for reauthentification. I used the > configuration for this type of switch from > https://www.packetfence.org/doc/PacketFence_Network_Devices_Configuration_Guide.html#_cisco_small_business_smb > > > > But when i succesful login on the portal nothing seems to appears between > packetfence and the switch. I made a tcpdump trace but no traffic… > > If i disconnect the wired cable and reconnect it it’s ok, the vlan was > changed. It ssems that the connection switch to packetfence is ok but no > traffic from packetfence to the switch… > > > > I checked logs : > > > > Dec 12 11:45:41 packetfence auth[5127]: Adding client 172.16.252.100/32 > > Dec 12 11:45:41 packetfence auth[5127]: (21818) Login OK: [54ee7556475a] > (from client 172.16.252.100/32 port 51 cli 54:ee:75:56:47:5a) > > Dec 12 11:45:41 packetfence httpd.aaa-docker-wrapper[1936]: httpd.aaa(7) > INFO: [mac:54:ee:75:56:47:5a] handling radius autz request: from switch_ip > => (172.16.252.100), connection_type => Ethernet-NoEAP,switch_mac => > (80:e8:6f:b8:bc:1a), mac => [54:ee:75:56:47:5a], port => 51, username => > "54ee7556475a" (pf::radius::authorize) > > Dec 12 11:45:41 packetfence httpd.aaa-docker-wrapper[1936]: httpd.aaa(7) > INFO: [mac:54:ee:75:56:47:5a] (172.16.252.100) Added VLAN 4 to the returned > RADIUS Access-Accept (pf::Switch::returnRadiusAccessAccept) > > Dec 12 11:45:41 packetfence httpd.aaa-docker-wrapper[1936]: httpd.aaa(7) > WARN: [mac:54:ee:75:56:47:5a] No parameter registrationRole found in > conf/switches.conf for the switch 172.16.252.100 (pf::Switch::getRoleByName) > > Dec 12 11:46:13 packetfence httpd.portal-docker-wrapper[3205]: > httpd.portal(371) WARN: [mac:54:ee:75:56:47:5a] previous location log entry > not found for and 54:ee:75:56:47:5a 172.16.252.100 > (pf::enforcement::_vlan_reevaluation) > > > > I don’t where i can get more information on logs. Could you please give me > some help ? > > > > Regards > > > > Cordialement, > > MACC > > Julien > > DEJEAN > > Administrateur systèmes et réseaux > > Service Informatique > > T. <+33(0)549025576> > > <+33(0)549025576> > > +33 (0)5 49 02 55 76 <+33(0)549025576> > > 9, Rue Des Frères Lumière > > 86100 > > CHATELLERAULT > > - > > > > France > > > > www.macc.fr > <https://cloud.letsignit.com/collect/bc/626fdf0f7211c0b9b0c95427?p=2OoXpcDvFOwaHD9-VRtS8YUosrJ6FSC_ZOPx8d380SZ8zOL6951EcBpA0uwWgX-_i39WCbfA_rVrRusqMfjWrUG6lJlqg11ctSGr93-zMfqTgo0MbChS3VGMeFTwCEhT> > > _______________________________________________ > PacketFence-users mailing list > PacketFence-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/packetfence-users >
_______________________________________________ PacketFence-users mailing list PacketFence-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/packetfence-users
