Hi guys, On 16/02/11 4:29 PM, Sallee, Stephen (Jake) wrote: > Just my $.02 so take it with a grain of salt (especially if you love salt!) > > 1) since PF is Perl you could interject a wait<whatever> seconds statement > into the code, but that's an ugly hack and will probably cause you no end of > trouble if you ever upgrade
I'm probably going to extract the 2 seconds in a configurable parameter. Also, I might increase the default 2 second to something that would fix the ubuntu issue. > > 2) since you are still testing perhaps using 802.1x authentication would be > better for you, since this implicitly involves the client through the > supplicant, the client fully understands that it should see a state change ad > should react accordingly. > You would think that but unfortunately reality is not so bright.. Problems both on wireless and wired 802.1X. #1161: Ubuntu Wireless 802.1X doesn't do DHCP after a VLAN change I would think that the situation is the same on wired (not tested). http://www.packetfence.org/bugs/view.php?id=1161 #1004: Mac OS X doesn't renew DHCP after a 802.1x re-auth requested from a switch Might be fixed by latest 10.6 (not tested). http://www.packetfence.org/bugs/view.php?id=1004 #1132: Mac OS X DHCP issues after a VLAN change on wireless networks Considered fixed in latest 10.6 but 10.5 is still not working. http://www.packetfence.org/bugs/view.php?id=1132 I think the 802.1X standard never clarified the interaction with DHCP.. So, it seems that only Windows is the OS giving dot1x the attention it deserves.. probably because it's an "enterprise" feature. But hey, I'm all for 802.1X!! It is more robust, more secure and you can get rid of the portal for all non-guest users! We only need to take these bugs upstream and have them fixed. -- Olivier Bilodeau [email protected] :: +1.514.447.4918 *115 :: www.inverse.ca Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence (www.packetfence.org) ------------------------------------------------------------------------------ Free Software Download: Index, Search & Analyze Logs and other IT data in Real-Time with Splunk. Collect, index and harness all the fast moving IT data generated by your applications, servers and devices whether physical, virtual or in the cloud. Deliver compliance at lower cost and gain new business insights. http://p.sf.net/sfu/splunk-dev2dev _______________________________________________ Packetfence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
