> But, is this the H-REAP mode that doesn't support RADIUS VLAN assignment?
Correct H-REAP does not support dynamic vlan assignment. What I was thinking was if we could somehow expose the MAC of the AP to the WLC module then we could store the AP MACs with their associated VLANs in a hash or file that works very similar to switches.conf. Then when a user selects the WLC module they would have access to a new config option where they could enter the info for their APs or, even better, since PF has the capability to interact with the controller directly, if we could figure out the correct commands it would be rather trivial to use a perl script to parse out the necessary info. Then, simply pull the info out of the hash or file and respond with the correct vlan. Its only an idea at this point but it has promise. Currently I am storing the AP MACs in a table in the Pf database, the plan is to query the table and respond with the info and add it to the RAD_REQUEST variable that gets sent to PF. This will work but it is non-standard and will mean that upgrades are a little more involved. Having something built into PF that handles this would be much better in the long run. IMHO. > What about flexconnect? I've heard that it's the new H-REAP but is it just a > rename or does it carries the same limitations? That I do not know, my WLC does not have the option for flex. Perhaps someone else has that info. Jake Sallee Godfather of Bandwidth Network Engineer University of Mary Hardin-Baylor 900 College St. Belton, Texas 76513 Fone: 254-295-4658 Phax: 254-295-4221 ________________________________________ From: Olivier Bilodeau [[email protected]] Sent: Friday, February 17, 2012 2:28 PM To: [email protected] Subject: Re: [Packetfence-users] New Cisco WLC module? Hi, On 17/02/12 2:45 PM, Sallee, Stephen (Jake) wrote: > This may be of interest to anyone who is using Cisco Wireless Lan Controllers. > > Currently the WLC does not support dynamic vlan assignment in a way that PF > will work with if you are using multiple normal vlans on the same ssid. > Seeing as Cisco is a huge player in enterprise wifi and PF is truly the best > NAC software I have ever used I would like to commission Inverse to rewrite > the module for Cisco WLCs to make it more robust and require less > customization to make it work correctly. > So, if the WLC could support some kind of bridge mode where the IP of the AP would be exposed to PacketFence instead of the controller IP I think this would do the trick functionality wise without much change in PacketFence. But, is this the H-REAP mode that doesn't support RADIUS VLAN assignment? If so, then we are out of luck. What about flexconnect? I've heard that it's the new H-REAP but is it just a rename or does it carries the same limitations? Cheers! -- Olivier Bilodeau [email protected] :: +1.514.447.4918 *115 :: www.inverse.ca Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence (www.packetfence.org) ------------------------------------------------------------------------------ Virtualization & Cloud Management Using Capacity Planning Cloud computing makes use of virtualization - but cloud computing also focuses on allowing computing to be delivered as a service. http://www.accelacomm.com/jaw/sfnl/114/51521223/ _______________________________________________ Packetfence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users ------------------------------------------------------------------------------ Virtualization & Cloud Management Using Capacity Planning Cloud computing makes use of virtualization - but cloud computing also focuses on allowing computing to be delivered as a service. http://www.accelacomm.com/jaw/sfnl/114/51521223/ _______________________________________________ Packetfence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
