Cisco wireless support relies on RADIUS AAA (w/ AAA Override) for authentication and RFC3576 (RADIUS dynauth / PoD) for deauthentication. Both are required. On cisco the latter is enabled by default.
Forget about SNMP traps. In fact, disable them to avoid load on the system. For your open SSID use MAC-Authentication (can't recall Cisco's exact terminology right now) and for secure SSID you are interested in 802.1X (WPA-Enterprise). On 05/23/2012 03:22 AM, [email protected] wrote: > hello, > > I'm trying out to make my WLC 5500 and packetfence working. > > PacketFence already working with a 3560 Cisco switche. > > I setting up the WLC 5500 with default settings, I have 1 AP, 2 SSID : > PacketFence-public --> open authentication > PacketFence-private --> mac authentication > > in SNMP, I activate SNMP v2c with : > 802.11 Association > 802.11 Disassociation > 802.11 Deauthentication > 802.11 Failed Authentication > 802.11 Failed Association > Exclusion > Authentication > Link (port) Up/Down > > Client access to the captive portal. > > I captured SNMP traps from my WLC to my PF with Wireshark, but PF > doesn't respond... > > Here is the conf of PF for the WLC in switches.conf : > > [10.35.128.3] > type=Cisco::WLC_5500 > mode=production > vlans=4,8 > normalVlan=8 > registrationVlan=4 > isolationVlan=20 > macDetectionVlan=30 > guestVlan=40 > controllerIp= > SNMPVersionTrap=2c > SNMPCommunityTrap=public > SNMPUserNameTrap= > SNMPVersion=2c > SNMPCommunityRead=public > SNMPCommunityWrite=private > > > > > ------------------------------------------------------------------------------ > Live Security Virtual Conference > Exclusive live event will cover all the ways today's security and > threat landscape has changed and how IT managers can respond. Discussions > will include endpoint security, mobile security and the latest in malware > threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ > _______________________________________________ > PacketFence-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/packetfence-users -- Olivier Bilodeau [email protected] :: +1.514.447.4918 *115 :: www.inverse.ca Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence (www.packetfence.org) ------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ _______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
