Hello,
my network topology isn´t very easy and i have a question how to
configurate the dns service from packetfence.
Here a shot view an the network topology:
My packetfence server ist connectet with eth0 to an unmanaged switch
(Switch-Auth). The switch-auth is connected so the switch-VLAN. On the VLAN
switch i configurated the vlans for isolation (96), registration (97) and
normal network traffic (10).
DHCP for VLAN 10,96,97 runs on an router who connectes the vlan with each
other.
Now my configuration:
*networks.conf*
##Iso
[192.168.11.0]
netmask=255.255.255.0
gateway=192.168.11.1
next_hop=192.168.30.1
domain-name=iso.packetfence.lisa.lan
dns=192.168.30.12
dhcp_start=192.168.11.100
dhcp_end=192.168.11.200
dhcp_default_lease_time=30
dhcp_max_lease_time=60
type=vlan-isolation
named=enabled
dhcpd=disabled
##Registration
[192.168.12.0]
netmask=255.255.255.0
gateway=192.168.12.10
next_hop=192.168.30.1
domain-name=reg.packetfence.lisa.lan
#dns=192.168.12.10
dns=192.168.30.12
dhcp_start=192.168.12.100
dhcp_end=192.168.12.200
dhcp_default_lease_time=30
dhcp_max_lease_time=60
type=vlan-registration
named=enabled
dhcpd=disabled
*switches.conf*
[default]
vlans=10,96,97,98
normalVlan=10
registrationVlan=97
isolationVlan=96
macDetectionVlan=98
VoIPEnabled=no
mode=testing
macSearchesMaxNb=30
macSearchesSleepInterval=2
uplink=dynamic
# Command Line Interface
# cliTransport could be: Telnet, SSH or Serial
cliTransport=Telnet
# PacketFence -> Switch
SNMPVersion=1
SNMPCommunityRead=public
SNMPCommunityWrite=private
# Switch -> PacketFence
SNMPVersionTrap=1
SNMPCommunityTrap=public
# Web Services Interface
# wsTransport could be: http or https
wsTransport=http
[127.0.0.1]
type=PacketFence
mode=production
uplink=dynamic
[192.168.10.3]
ip=192.168.10.3
type=Cisco::Catalyst_2960
mode=production
uplink=8
cliTransport=SSH
radiusSecret=123456
*pf.conf*
[general]
# general.domain
# Domain name of PacketFence system.
domain=lisa.lan
dhcpservers=192.168.10.1,127.0.0.1
[trapping]
# trapping.range
# Comma-delimited list of address ranges/CIDR blocks that PacketFence will
monitor/detect/trap on. Gateway, network, and
# broadcast addresses are ignored.
range=
# trapping.registration
# If enabled, nodes will be required to register on first network access.
Further registration options are configured in the
# registration section.
registration=enabled
# trapping.detection
# Enables snort-based worm detection. If you don't have a span interface
available, don't bother enabling it. If you do,
# you'll most definately want this on.
detection=enabled
[vlan]
bounce_duration=30s
[registration]
auth=local,radius
[alerting]
# alerting.emailaddr
# Email address to which notifications of rogue DHCP servers, violations
with an action of "email", or any other
# PacketFence-related message goes to.
emailaddr=root@localhost
[database]
# database.pass
# Password for the mysql database used by PacketFence.
pass=123456
#Management
[interface eth0]
ip=192.168.30.11
mask=255.255.255.0
gateway=192.168.30.1
type=management
#Snort
[interface eth1]
type=monitor
[captive_portal]
network_detection_ip=192.168.30.0/24, 192.168.30.11/24, 192.168.30.12/24
[guests_self_registration]
modes=email
access_duration=2d
Now my problem: On a test client i don´t get an dns answer in the
registration vlan (DNS = 192.168.30.11). Do i need to reconfigurate
sometime and if so, what?
------------------------------------------------------------------------------
Virtualization & Cloud Management Using Capacity Planning
Cloud computing makes use of virtualization - but cloud computing
also focuses on allowing computing to be delivered as a service.
http://www.accelacomm.com/jaw/sfnl/114/51521223/
_______________________________________________
Packetfence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
