Hi I am needing some assistance please. I do not have a lot of network experience in the realm of VLans. My background is mainly software engineering and due to the nature of our work I have had to become somewhat familiar with wireless networks. Our company runs a Wildfire Camera detection system over a large region in South Africa. Our wireless links out to the sites are created using Mikrotik Routers. The network is fairly robust and is created using OSPF. There are 3 operations centers which run around 10 computers each. These centers are quite remote (100km to 200km apart) and we are only able to get internet access out of one of the centers. There may be some other smaller centers being setup in the future who would require internet access as well. These smaller centers would need to by-pass the packet-fence system. I can filter them based on IP address if required. Due to how the camera network runs, the only place running NAT is the main Border Router at Center B, NAT causes a problem with the live streams from the camera system. NAT is only used when leaving the network onto the internet.
Operations Center A (192.168.0.X / 24) and Center C (192.168.100.X / 24) travel through the routed network to end up at the Default Gateway and DNS server at Center B (192.168.150.X / 24) when they are needing to get onto the internet. These centers also have Ubuiquiti - Unify hotspots which allow Fire Managers to connect their laptops to the network to get internet access. We do have a webserver sitting at Center B which is accessable from the internet and from the internal network - I mention it as it would need to be white-listed in the packet fence setup. I am needing a system which can hopefully do the following: 1 - force all internet users to logon to the internet 2 - restrict site access based on their login 3 - allow guests access to the internet preferably via a paypal type system (air crews on station during the fire season want internet access). 4 - limit data usage and bandwidth on the internet Some of the above I can already setup using the Mikrotik User Manager system, however it does not allow me to limit access based on login. It can restrict rate/traffic throughput only along with paypal access. In fact the Ubuiquiti Unifies also have a paypal system. I'd really prefer to bring this all into one device which is responsible for managing the random users within the network. The border router at Center B connects to the internet via an ADSL router (it is all that is available to us in the city for internet access). The Border Mikrotik Router is using NAT to get everyone onto the internet. I can of course forward all its requests through to a Packet Fence computer. Without having to go change a lot of the programming of these routers can you tell me if Packet fence would work in the above scenario. Will it be really complicated to setup or can I use the in-line configuration? I understand the inline limitation will only function on a Layer 2 network which is why I have posted this question. Any advice or assistance is greately appreciated. Kind regards Paul ------------------------------------------------------------------------------ Get 100% visibility into Java/.NET code with AppDynamics Lite! It's a free troubleshooting tool designed for production. Get down to code-level detail for bottlenecks, with <2% overhead. Download for free and get started troubleshooting in minutes. http://pubads.g.doubleclick.net/gampad/clk?id=48897031&iu=/4140/ostg.clktrk _______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
