Ereli,
I am currently entangled in a battle getting pf and a 470 to play
nicely, it seems that the security OID is either missing on the 470 or
the wrong is being used. PF tosses an error when it goes to check port
security via SNMP.
I filed a bug (http://www.packetfence.org/bugs/view.php?id=1183), if you
have any additional info might be worth while adding it to the bug report.
-Ron
On 3/1/2011 7:27 AM, Ereli Eran wrote:
Hey,
We're in a project of setting up pf as central NAC. this will include
several switches (Nortel: passport 8610, passport 1612, ERS 5510, ERS
5530, baystack 380, baystack 420, baystack 450, baystack 425, baystack
470, ERS 2526T, and 3com: 5500-EI, 7906E, 5500G-EI) with potentially
several k users in multiple sites.
we're doing the pilot in vlan mode with one of the 425s. currently it
sends up\down traps but the mac-security traps seems to baffle pf as
is does not expect it. have anyone tried it before?
are any modification necessary for one of the Nortel modules in order
to it work with the 425?
we've tested pf successful in vlan mode on a old Cisco 2900XL as a POF
and it was very easy to handle. can anyone share their
positive\negative experience with Nortel switches?
here is the error i've been getting
from snmptrapd.log
2011-02-16|13:49:45|UDP: [10.0.10.2]:1024|10.0.10.2|BEGIN TYPE 6 END
TYPE BEGIN SUBTYPE .1 END SUBTYPE BEGIN VARIABLEBINDINGS END
VARIABLEBINDINGS
and from packetfence.log
Feb 16 08:47:34 pfsetvlan(23) INFO: ignoring unknown trap:
2011-02-16|13:47:31|UDP: [10.0.10.2]:1024|10.0.10.2|BEGIN TYPE 6 END
TYPE BEGIN SUBTYPE .1 END SUBTYPE BEGIN VARIABLEBINDINGS END
VARIABLEBINDINGS (main::parseTrap)
If anyone can shed light on this, it'll highly appreciated.
Cheers,
*Ereli Eran*
*Mobile*: +972-52-6094539 | ✉ [email protected]
<mailto:[email protected]>
*T*: +972-77-9100870 | *F*: +972-77-9100870
www.securegion.com <http://www.securegion.com/>
------------------------------------------------------------------------------
Free Software Download: Index, Search& Analyze Logs and other IT data in
Real-Time with Splunk. Collect, index and harness all the fast moving IT data
generated by your applications, servers and devices whether physical, virtual
or in the cloud. Deliver compliance at lower cost and gain new business
insights. http://p.sf.net/sfu/splunk-dev2dev
_______________________________________________
Packetfence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
------------------------------------------------------------------------------
Free Software Download: Index, Search & Analyze Logs and other IT data in
Real-Time with Splunk. Collect, index and harness all the fast moving IT data
generated by your applications, servers and devices whether physical, virtual
or in the cloud. Deliver compliance at lower cost and gain new business
insights. http://p.sf.net/sfu/splunk-dev2dev
_______________________________________________
Packetfence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
