Hey, We're in a project of setting up pf as central NAC. this will include several switches (Nortel: passport 8610, passport 1612, ERS 5510, ERS 5530, baystack 380, baystack 420, baystack 450, baystack 425, baystack 470, ERS 2526T, and 3com: 5500-EI, 7906E, 5500G-EI) with potentially several k users in multiple sites.
we're doing the pilot in vlan mode with one of the 425s. currently it sends up\down traps but the mac-security traps seems to baffle pf as is does not expect it. have anyone tried it before? are any modification necessary for one of the Nortel modules in order to it work with the 425? we've tested pf successful in vlan mode on a old Cisco 2900XL as a POF and it was very easy to handle. can anyone share their positive\negative experience with Nortel switches? here is the error i've been getting from snmptrapd.log 2011-02-16|13:49:45|UDP: [10.0.10.2]:1024|10.0.10.2|BEGIN TYPE 6 END TYPE BEGIN SUBTYPE .1 END SUBTYPE BEGIN VARIABLEBINDINGS END VARIABLEBINDINGS and from packetfence.log Feb 16 08:47:34 pfsetvlan(23) INFO: ignoring unknown trap: 2011-02-16|13:47:31|UDP: [10.0.10.2]:1024|10.0.10.2|BEGIN TYPE 6 END TYPE BEGIN SUBTYPE .1 END SUBTYPE BEGIN VARIABLEBINDINGS END VARIABLEBINDINGS (main::parseTrap) If anyone can shed light on this, it'll highly appreciated. Cheers, *Ereli Eran* *Mobile*: +972-52-6094539 | ✉ [email protected] *T*: +972-77-9100870 | *F*: +972-77-9100870 www.securegion.com
------------------------------------------------------------------------------ Free Software Download: Index, Search & Analyze Logs and other IT data in Real-Time with Splunk. Collect, index and harness all the fast moving IT data generated by your applications, servers and devices whether physical, virtual or in the cloud. Deliver compliance at lower cost and gain new business insights. http://p.sf.net/sfu/splunk-dev2dev
_______________________________________________ Packetfence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
