Hi Christopher, On 09/02/12 10:29 AM, Christopher Iversen wrote: > Hello, > > I'm trying to figure out and test the snmp traps feature on packetfence. All > i'm really looking to do is log the switchport and mac address of clients as > they connect. I work at a college where we need to shutdown ports because of > illegal file sharing. what i'd like to do is be able to instantly search a > mac address and get the switchport(s) that mac has conected to in the > packetfence GUI. >
FYI this is not a use case we had in mind when developing PacketFence but we hear about people interested in PacketFence more as an inventory tool (at least to start with). Usually PacketFence completely manages the ports and assign VLANs (registration, isolation or your own infrastructure VLANs) based on the device's state. > I've installed packetfence and configured SNMP on a test switch, from there > i've issued debug commands, connected new devices, verified the snmp packets > were sent from the switch to the packetfence server and then verified in the > packetfence log the packet was recieved. See output below of debug output of > switch and then snmptrapd.log output. > > I'm assuming I dont completely understand how things are supposed to work so > if anyone could shed some light on this it would be appreciated. Thank you. > > You seem to have everything properly configured. The problem why you don't see the switchport information updated is because we don't update the switchport information with MAC notification (or linkup-linkdown) traps. We do the update only with port-security or RADIUS-based techniques and, even then, we don't do it if switch isn't in production mode... For me this is an issue and something we planned on fixing (and, honestly, forgot about.. until you brought it back up!). A switch in 'discovery' mode should gather the switchport information if the port is properly configured (MAC Notif SNMP Traps or even in RADIUS MAC-Auth). There are patches in our issue tracker that might be in the right direction of what you are looking for: http://www.packetfence.org/bugs/view.php?id=1331 http://www.packetfence.org/bugs/view.php?id=1262 Bottomline is: we don't currently support what you are looking for. It is not something hard or far. We could be sponsored to do the work (it will prioritize it), one of the above patches could do the work for you or you can wait until we implement it (which shouldn't be too far away). Regards, -- Olivier Bilodeau [email protected] :: +1.514.447.4918 *115 :: www.inverse.ca Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence (www.packetfence.org) ------------------------------------------------------------------------------ Virtualization & Cloud Management Using Capacity Planning Cloud computing makes use of virtualization - but cloud computing also focuses on allowing computing to be delivered as a service. http://www.accelacomm.com/jaw/sfnl/114/51521223/ _______________________________________________ Packetfence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
