Hi, When using VLAN mode, you do not need PF to sit on all the VLANs. PF is totally out of band. In fact, only the DHCP traffic needs to be send to PF. Usually, people will use DHCP relays (or ip helper-address) and send a copy to the management interface.
However, you have a registration/isolation VLAN concept to respect. And you also need that the equipment is fully manageable. I heard from my teammates that routed inline is in fact possible: http://www.packetfence.org/support/faqs/article/how-can-we-route-instead-of-nat-through-packetfence-in-inline-enforcement.html?no_cache=1&cHash=0739887ba98b66cf34c141c7e9773cb3 The RIP/OSPF won't be working tho, you'll need to static route. On 2012-09-04 11:46 AM, Vinícius Ferrão wrote: > Hello Francois, > > Thanks for your answer. I asked for RIP or OSPF because we have 32 subnets of > public IPs due our netmask /26. So we need some routing protocol instead of > NAT. > > But now I've another question: PacketFence even in VLAN mode can handle this > scenario or I will need a PacketFence Server in every subnet that I have? > > Thanks in advance, > > PS: I'm not considering Inline anymore due limitations... > > Sent from my iPad > > On 04/09/2012, at 11:23, "Francois Gaudreault" <[email protected]> wrote: > >> Hi, >> >> I am not sure to see your use case. Inline is made to work using NAT, >> not routing. And even then, using RIP/OSPF on the Inline VLAN is to >> mee... overkill. I would use static routing instead, it's only 1 subnet. >> >> On 2012-09-03 5:01 PM, Vinícius Ferrão wrote: >>> Hello PacketFence Community. >>> >>> I've question that I was unable find an answer reading the documentation or >>> googlin'. >>> >>> I'm aware that PacketFence can act as router using the inline setup, but I >>> can't see if it can work with RIP or OSPF protocols instead of NAT. Is this >>> possible? If yes there are some tips to get this configuration working? >>> >>> Thanks in advance, >>> >>> >>> >>> ------------------------------------------------------------------------------ >>> Live Security Virtual Conference >>> Exclusive live event will cover all the ways today's security and >>> threat landscape has changed and how IT managers can respond. Discussions >>> will include endpoint security, mobile security and the latest in malware >>> threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ >>> >>> >>> >>> _______________________________________________ >>> PacketFence-users mailing list >>> [email protected] >>> https://lists.sourceforge.net/lists/listinfo/packetfence-users >>> >> >> >> -- >> Francois Gaudreault, ing. jr >> [email protected] :: +1.514.447.4918 (x130) :: www.inverse.ca >> Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence >> (www.packetfence.org) >> >> ------------------------------------------------------------------------------ >> Live Security Virtual Conference >> Exclusive live event will cover all the ways today's security and >> threat landscape has changed and how IT managers can respond. Discussions >> will include endpoint security, mobile security and the latest in malware >> threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ >> _______________________________________________ >> PacketFence-users mailing list >> [email protected] >> https://lists.sourceforge.net/lists/listinfo/packetfence-users > > ------------------------------------------------------------------------------ > Live Security Virtual Conference > Exclusive live event will cover all the ways today's security and > threat landscape has changed and how IT managers can respond. Discussions > will include endpoint security, mobile security and the latest in malware > threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ > _______________________________________________ > PacketFence-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/packetfence-users > > -- Francois Gaudreault, ing. jr [email protected] :: +1.514.447.4918 (x130) :: www.inverse.ca Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence (www.packetfence.org) ------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ _______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
