Something else I have noticed while troubleshooting this tonight.
When I bring a new device up on the 3560E switch I get this. Notice that it
says it is coming from port 50021.
Oct 06 20:12:43 pf::WebAPI(4788) INFO: handling radius autz request: from
switch_ip => 192.168.**.*, connection_type => Ethernet-NoEAP mac =>
00:23:18:dc:**:**, port => 50021, username => 002318dc****
(pf::radius::authorize)
When I switch the node in PF and it tries to push it I see this. The ifIndex
says it is on 10021. This is a Gig switch and it really should be 10121.
Oct 06 20:11:39 pfcmd(7093) INFO: 00:23:18:dc:**:** is currentlog connected at
192.168.**.* ifIndex 10021 in VLAN 600
(pf::enforcement::_should_we_reassign_vlan)
Oct 06 20:11:39 pfcmd(7093) INFO: MAC: 00:23:18:dc:**:** is of status unreg;
belongs into registration VLAN (pf::vlan::getRegistrationVlan)
In the Switch.conf
[192.168.**.*]
type=Cisco::Catalyst_3560
vlans=1,72,89,90,91,600
normalVlan=1
registrationVlan=600
uplink=10125,10126
radiusSecret=Secret
Thanks
Dan Nelson
Nutraceutical Corporation
Network Administrator
801-334-3702
------------------------------------------------------------------------------
Don't let slow site performance ruin your business. Deploy New Relic APM
Deploy New Relic app performance management and know exactly
what is happening inside your Ruby, Python, PHP, Java, and .NET app
Try New Relic at no cost today and get our sweet Data Nerd shirt too!
http://p.sf.net/sfu/newrelic-dev2dev
_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
