Hi Bob, I take it you are planning to use 8021X? The other methods don't scale well in large networks.
I have several 'normal' VLANS on my network, all seperate subnets with DHCP handled elsewhere. The 'normal' one is the default VLAN a port gets put into once the machine is registered. If I then want to move the machine into another VLAN I set it via the Bypass VLAN attribute on the device record in PF. There is a bit of additional config that has to be done to have PF return this attribute to the RADIUS server. I'll dig out my notes and get back to you on that and the general PF config I used. I use 3Com 5500G's and 4800G's here - we sponsored and worked with Inverse to get those working with 8021X - happy to share switch side config as well if you need although it's pretty well documented in the switch config guide. I can say that it wasn't too difficult to get this working and so far it has been faultless in production. Regards, Mark On 7 Dec 2011, at 18:57, "Bob L. Soderlund" <[email protected]<mailto:[email protected]>> wrote: Hey everyone, Newbie here. I have a large network with 32 vlans, Each VLAN is its own subnet, and DNS and DHCP are all handled by our Sonic wall NSA. I would like to use Packet Fence for NAC. The documentation refers to several vlans, manage, Registration, Isolation, Mac Detection, Guest, and Normal. I already have a management VLAN, and have no problem creating the other 4. My question is the ‘Normal� vlan. I would have 32 of these correct? I sure someone has done this, and is documented it here. I just need someone to point me in right direction. I’m using the Newest Version of PF in a VM. I have 3Comm 5500 switches. Thanks for your help. Bob Soderlund Network Engineer, MCP, MCSE [email protected]<blocked::mailto:[email protected]> Person County Government <image003.jpg>Information Technology 329 S. Morgan St. Roxboro NC, 27573 Office 336-597-7810 Fax 336-597-7455 ------------------------------------------------------------------------------ Cloud Services Checklist: Pricing and Packaging Optimization This white paper is intended to serve as a reference, checklist and point of discussion for anyone considering optimizing the pricing and packaging model of a cloud services business. Read Now! http://www.accelacomm.com/jaw/sfnl/114/51491232/ _______________________________________________ Packetfence-users mailing list [email protected]<mailto:[email protected]> https://lists.sourceforge.net/lists/listinfo/packetfence-users ________________________________ Nuffield College is a Registered Charity No. 1137506. Registered Office: Nuffield College, New Road, Oxford, OX1 1NF ------------------------------------------------------------------------------ Cloud Services Checklist: Pricing and Packaging Optimization This white paper is intended to serve as a reference, checklist and point of discussion for anyone considering optimizing the pricing and packaging model of a cloud services business. Read Now! http://www.accelacomm.com/jaw/sfnl/114/51491232/ _______________________________________________ Packetfence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
