Francois, Thank you! PF 3.1 is happily switching Cisco 3750 VLAN's, quite snappy actually. I didn't realize the Type= parameter was different between the Registratioin and Isolation networks.conf definitions, seems obvious in hindsight and the PF 3.1 Administration Guide networks.conf examples, pg. 41 & 42, clearly show it so, if I would have only taken the time to read all of it.
As for CentOS Network Manger starting the Registration and Isolation VLANs, I mislead you by not also showing those ifcfg-eth_ files, they were written exactly as the Admin. Guide shows on pg. 37, now I've added to them the "NM_CONTROLLED=no" as well. I'm disabling Network Manager on eth0 and the Normal VLAN, eth0.10 also, which results with a good default route at boot but an empty /etc/resolv.conf file which is rectified by running "/etc/init.d/network start" (... someday I'll figure out how to have both resolv.conf definitions and a good default route at boot :-). Now, let's see if I can keep from breaking it. Steve CSM ________________________________________ From: Francois Gaudreault [[email protected]] Sent: Monday, February 20, 2012 10:11 AM To: [email protected] Subject: Re: [Packetfence-users] PF 3.1.0 doesn't change Cisco 3750 12.2(52)SE from Registration to Normal VLAN Hi Steve, > The Cisco 3750 connected laptop gets Registration VLAN IP 192.169.52.2 but > something is wrong with DNS so the captive portal doesn't come up. Oddly, > the DNS resolved backhole IP is 192.168.53.1, the PF Isolation VLAN IP, not > 192.168.52.1 as I think it should be. My .conf files (below) look okay. > Maybe related is a system default IP route and resolv.conf problem: If I > don't let Centos 6 NetworkManager start the interfaces, I get the correct > default route out eth0.10 but resolv.conf is empty. If I do let > NetworkManager start the interfaces I don't get the correct default IP route, > it's wrongly set to eth0 when it should be eth0.10, as defined in the > ifcfg-eth_ files (see them below), but resolv.conf is correctly populated. > Running /etc/init.d/network start will fix both cases, i.e. add the correct > default route (the bad one needs to be deleted too) or populate the > /etc/resolv.conf with DNS servers and search domain. I've also put far below > a few packetfence.log entries th > at look concerning. Never use network manager on the reg or isolation sub-interfaces. It just breaks everything. Make sure you have NM_CONTROLLED=no in their sysconfig scripts. Meanwhile, /etc/resolv.conf will only impact the PF machine, not the clients. > > LAPTOP NSLOOKUP: > C:\nslookup yahoo > Server: Unknown > Address: 192.168.52.1 > > Name: yahoo.registration.mines.edu > Address: 192.168.53.1 > ============================= Look here: [192.168.53.0] netmask=255.255.255.0 gateway=192.168.53.1 domain-name=isolation.mines.edu dns=192.168.53.1 dhcp_start=192.168.53.2 dhcp_end=192.168.53.250 dhcp_default_lease_time=300 dhcp_max_lease_time=600 --> type=vlan-registration <-- named=enabled dhcpd=enabled You type is not right for the isolation network, we should read vlan-isolation. -- Francois Gaudreault, ing. jr [email protected] :: +1.514.447.4918 (x130) :: www.inverse.ca Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence (www.packetfence.org) ------------------------------------------------------------------------------ Try before you buy = See our experts in action! The most comprehensive online learning library for Microsoft developers is just $99.99! Visual Studio, SharePoint, SQL - plus HTML5, CSS3, MVC3, Metro Style Apps, more. Free future releases when you subscribe now! http://p.sf.net/sfu/learndevnow-dev2 _______________________________________________ Packetfence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users ------------------------------------------------------------------------------ Try before you buy = See our experts in action! The most comprehensive online learning library for Microsoft developers is just $99.99! Visual Studio, SharePoint, SQL - plus HTML5, CSS3, MVC3, Metro Style Apps, more. Free future releases when you subscribe now! http://p.sf.net/sfu/learndevnow-dev2 _______________________________________________ Packetfence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
