> Hi there, > > I am trying to get a Cisco 5500 Controller working with our PacketFence > server but it is not disassociating the client properly. I have tried using > the > Cisco 4400 Controller profile but that does not seem to be working ether. I > have noticed that on this new controller there is a new "Service Port" in > addition to the "Management Port" and that RADIUS requests look like they > are coming from the management port ip but for some reason the only ip > that responds to http/telnet/ssh is the service port ip? So I don't think the > dissociate commands are being properly received. Any suggestions? Thanks!
Hi Jordan, I'm not sure what mechanism PF is using, but you're generally going to want to do that with snmpv3. You'll send a disassociate trap/snmp message to the controller and it will kick the client. You should be able to derive the snmp mib via the mac address and send that to the controller(s). I found it for the 4400 controllers, I assume it's the same for the 5500/WiSM2's as well. I'd have to track it down again. If you're dealing with multiple controllers, it might be worthwhile to send the disassociation to all of the controllers in case the client was roaming. I think there's a new option to do a CoA (change of authorization) on the newer code >= 7.0.220.0 code, but I haven't had a chance to test that yet. If we can get access to that feature, then it should enable some really cool features on the controllers. The service-port is there as a fall-back/oob management port. You generally never use it. Think of it as a "everything is broken and I need to configure it" port. Have you tried unplugging the service port? Also, what version of code are you running? Is it running 7.2 or 7.0 code? -Kevin ------------------------------------------------------------------------------ This SF email is sponsosred by: Try Windows Azure free for 90 days Click Here http://p.sf.net/sfu/sfd2d-msazure _______________________________________________ Packetfence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
