warning: reply to an old thread On 03/09/09 10:29 AM, Kevin Manuel wrote: > What is the best way to reset all of the packetfence nodes for a switch > while keeping the mac addresses registered? We are using port security > traps and we recently had an issue where several traps were missed by > packetfence because snmptrapd did not log them properly. This led to > several switchports not being flipped to the proper vlan. To correct it, > we cleared the packetfence mysql locationlog & iplog tables and the mac > addr security table on the switch so that new port security traps would > be sent for all of the ports in use. If they were already registered pf > would put the into the proper vlan. This worked fine but I am wondering > if there is a better way to do it and if it is necessary to clear the iplog.
pfcmd_vlan can help you in that case: -reAssignVlan re-assign a switch port VLAN -resetVlanAllPort reset VLAN on all non-UpLink ports of the specified switch -resetVlanNetwork reset VLAN on all non-UpLink ports of all managed switches Re-assign VLAN is probably the safest but you can test the other two also. -- Olivier Bilodeau [email protected] :: +1.514.447.4918 *115 :: www.inverse.ca Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence (www.packetfence.org) ------------------------------------------------------------------------------ The modern datacenter depends on network connectivity to access resources and provide services. The best practices for maximizing a physical server's connectivity to a physical network are well understood - see how these rules translate into the virtual world? http://p.sf.net/sfu/oracle-sfdevnlfb _______________________________________________ Packetfence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
