On Wed, May 2, 2012 at 12:52 PM, Olivier Bilodeau <[email protected]>wrote:
> Hi Carl,
>
> [...]
>
> > Currently when I join the inline network whatever site I hit first, (ie,
> > if I goto google.com <http://google.com> first) will not work after I
> > have been "authenticated" through the captive portal. All other
> > connections seem to work fine...
> >
> > Ive noticed that after I authenticated (either manually approving the
> > node via webui or login local auth) I still cannot contact this site.
> > This seems to be because of some kind of caching issue with how DNS is
> > working on the lnline network.
> >
> > For example
> > Launch browser to yahoo.com <http://yahoo.com>
> > Authenticate to Captive portal with uname/pass
> > redirection will fail.
> > Everything works besides yahoo.com <http://yahoo.com>
> > ping yahoo.com <http://yahoo.com> returns the packetfence IP for the
> > inline network (in my case 192.168.10.1)
> >
> > This persists until I restart packetfence which resolves the issue until
> > I de-auth re-auth.
>
> We noticed a similar behavior with old implementations of DNS clients.
> An analysis of OSX, Windows, modern and old Linuxes have been documented
> there:
> http://packetfence.org/bugs/view.php?id=1423
>
> Bottomline: new implementations (including mobile) were fine and old
> were not. Fixing the issue for every DNS client library will probably be
> tricky.
>
> What is your client OS and browser? We will try to track down the problem.
>
> Regards,
> --
> Olivier Bilodeau
> [email protected] :: +1.514.447.4918 *115 :: www.inverse.ca
> Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
> (www.packetfence.org)
>
Thanks for your reply.
I was testing with OSX 10.7.3 and Google Chrome.
I also noticed that after an unknown period of time this problem seems
to remedy itself. I have been trying to troubleshoot but have seen
different results. I described the issue with dns above, during another
test DNS was resolving properly but I could not contact "the first host"
via the web browser. This time I was able to telnet to the host on Port 80
and perform a GET / and got the contents of the page ( in this case it was
yahoo.com for what its worth)
Thanks for your time
Regards,
Thogue
------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and
threat landscape has changed and how IT managers can respond. Discussions
will include endpoint security, mobile security and the latest in malware
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
