Hi, Can you see what DNS you are getting in the inline VLAN? It needs to be a valid production DNS.
You should be able to at least resolve google.com to its real IP. On 12-03-12 8:52 AM, ryan wrote: > Hi, > > Yes. Internet is working (DNS as well) and ip_forward is enabled > > [root@linuxmain pf]# ping google.com > PING google.com (173.194.67.138) 56(84) bytes of data. > 64 bytes from wi-in-f138.1e100.net (173.194.67.138): icmp_seq=1 ttl=45 > time=258 ms > 64 bytes from wi-in-f138.1e100.net (173.194.67.138): icmp_seq=2 ttl=45 > time=229 ms > 64 bytes from wi-in-f138.1e100.net (173.194.67.138): icmp_seq=3 ttl=45 > time=223 ms > ^C > --- google.com ping statistics --- > 3 packets transmitted, 3 received, 0% packet loss, time 2324ms > > > > rtt min/avg/max/mdev = 223.250/237.183/258.832/15.517 ms > [root@linuxmain pf]# cat /proc/sys/net/ipv4/ip_forward > 1 > > is there anything else I can try? > > > > On 03/12/2012 02:42 PM, Francois Gaudreault wrote: >> Hi, >> >> Is the management interface able to go to the internet? Inline will NAT >> on this interface. Did you enable ip_forward? >> >> Start with those. >> >> Thanks >> >> On 12-03-12 7:09 AM, ryan wrote: >>> Hi. >>> >>> I'm trying to get packetfence to work using inline more and then VLAN. >>> >>> I have a server thats got 4 vlans configured. >>> >>> default - access to my LAN and the internet >>> vlan1000 - Used for inline >>> vlan2000 - will use these for VLANs later. >>> vlan3000 - '' >>> >>> >>> When I connect I get and IP from packetfence, it is my default gateway >>> but whenever i go to a website it takes me to >>> https://packetfence.yourdomain.org/captive-portal?destination_url=http://www.google.com/search >>> but it says "server not found" >>> >>> >>> Does anyone know what I could try to get this to work? >>> >>> Below is pf.config and network.conf >>> >>> [root@linuxmain conf]# cat pf.conf >>> [general] >>> domain=yourdomain.org >>> dnsservers=4.2.2.2,4.2.2.1 >>> dhcpservers=192.168.20.202,192.168.30.202,192.168.10.202 >>> >>> [trapping] >>> registration=enabled >>> detection=enabled >>> range=192.168.20.0/24,192.168.30.0/24,192.168.10.0/24 >>> >>> [registration] >>> auth=local >>> >>> [interface eth0] >>> mask=255.255.252.0 >>> type=management >>> gateway=192.168.4.1 >>> ip=192.168.4.202 >>> >>> [interface eth0.2000] >>> mask=255.255.255.0 >>> type=internal >>> gateway=192.168.20.202 >>> ip=192.168.20.202 >>> enforcement=inline >>> >>> [interface eth0.3000] >>> mask=255.255.255.0 >>> type=monitor >>> enforcement=vlan >>> gateway=192.168.30.202 >>> ip=192.168.30.202 >>> >>> [interface eth0.1000] >>> mask=255.255.255.0 >>> type=internal >>> enforcement=inline >>> gateway=192.168.10.1 >>> ip=192.168.10.202 >>> >>> [database] >>> # >>> # database.pass >>> # >>> # Password for the mysql database used by PacketFence. >>> pass=l440gxxx >>> >>> [captive_portal] >>> network_detection_ip=192.168.10.202 >>> >>> >>> [root@linuxmain conf]# cat networks.conf >>> [192.168.4.0] >>> netmask=255.255.252.0 >>> gateway=192.168.4.1 >>> dns=192.168.4.1 >>> type=vlan-registration >>> named=disabled >>> dhcpd=disabled >>> next_hop= >>> domain-name= >>> dhcp_start= >>> dhcp_end= >>> dhcp_default_lease_time= >>> dhcp_max_lease_time= >>> >>> [192.168.20.0] >>> netmask=255.255.255.0 >>> gateway=192.168.20.202 >>> domain-name=registration.example.com >>> dns=192.168.20.1 >>> dhcp_start=192.168.20.10 >>> dhcp_end=192.168.20.200 >>> dhcp_default_lease_time=300 >>> dhcp_max_lease_time=600 >>> type=vlan-registration >>> named=enabled >>> dhcpd=enabled >>> >>> [192.168.30.0] >>> netmask=255.255.255.0 >>> gateway=192.168.30.202 >>> domain-name=isolation.example.com >>> dns=192.168.30.1 >>> dhcp_start=192.168.30.10 >>> dhcp_end=192.168.30.200 >>> dhcp_default_lease_time=300 >>> dhcp_max_lease_time=600 >>> type=vlan-isolation >>> named=enabled >>> dhcpd=enabled >>> >>> [192.168.10.0] >>> netmask=255.255.255.0 >>> gateway=192.168.10.202 >>> domain-name=inline.example.com >>> dns=4.2.2.2,4.2.2.1 >>> dhcp_start=192.168.10.10 >>> dhcp_end=192.168.10.254 >>> dhcp_default_lease_time=300 >>> dhcp_max_lease_time=600 >>> type=inline >>> named=disabled >>> dhcpd=enabled >>> next_hop= >>> >>> >>> ------------------------------------------------------------------------------ >>> Try before you buy = See our experts in action! >>> The most comprehensive online learning library for Microsoft developers >>> is just $99.99! Visual Studio, SharePoint, SQL - plus HTML5, CSS3, MVC3, >>> Metro Style Apps, more. Free future releases when you subscribe now! >>> http://p.sf.net/sfu/learndevnow-dev2 >>> _______________________________________________ >>> Packetfence-users mailing list >>> [email protected] >>> https://lists.sourceforge.net/lists/listinfo/packetfence-users >>> >> > > > ------------------------------------------------------------------------------ > Try before you buy = See our experts in action! > The most comprehensive online learning library for Microsoft developers > is just $99.99! Visual Studio, SharePoint, SQL - plus HTML5, CSS3, MVC3, > Metro Style Apps, more. Free future releases when you subscribe now! > http://p.sf.net/sfu/learndevnow-dev2 > _______________________________________________ > Packetfence-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/packetfence-users > -- Francois Gaudreault, ing. jr [email protected] :: +1.514.447.4918 (x130) :: www.inverse.ca Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence (www.packetfence.org) ------------------------------------------------------------------------------ Try before you buy = See our experts in action! The most comprehensive online learning library for Microsoft developers is just $99.99! Visual Studio, SharePoint, SQL - plus HTML5, CSS3, MVC3, Metro Style Apps, more. Free future releases when you subscribe now! http://p.sf.net/sfu/learndevnow-dev2 _______________________________________________ Packetfence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
