Hi, On 08/23/2012 02:46 PM, Sittipon Petchrat wrote: > * > When Client's PC plugs in to a switch *port 3 (VLAN 4 mac detection > vlan) and place port 3 in vlan2 (**registration vlan** > *),Then client * > ** can’t access HTTP pages except the PacketFence Logon page.** The user > logs on using the PacketFence logon page.** Packetfence authenticates > the username and password as valid* > * It then sends a message to Switch: Place port 3 in VLAN 1(normal vlan) > now client can access to internet and without to use isolation vlan* > * > *The question is.* > *What is advantage of isolation vlan?*
Isolation is similar to registration in that the user can only access the captive portal. The captive portal then shows remediation information (how the user can fix is config or get rid of his virus, etc.). It's separate from registration to avoid isolated devices infecting new devices. > * > *When I use it ?* When a node has an open violation with action trap, it's sent in isolation instead of normal. Cheers! -- Olivier Bilodeau [email protected] :: +1.514.447.4918 *115 :: www.inverse.ca Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence (www.packetfence.org) ------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ _______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
