hi, folx, we got PF 4 up and running, installed from the Debian-Repository on Debian Wheezy.
We are running a testing szenario so far: - PF (dedicated Hardware) - Netgear GS110tp - client-PC for testing - client in the "WAN", connected to the PF for management Everything works well with Inline-Mode: eth0 is on 10.10.244.0/24, new nodes are registered and can be managed. But with VLAN-enforcement we had no luck so far :( We put the eth0 on the PF roughly like this: - eth0 - IP 10.10.244.80 - management the cable goes from eth0 to the Netgear at port 8. The client is at port 2. Port 1 is used as uplink to "WAN" where the admin-PC is located. VLAN 1 is "default" on the Netgear. At the Netgear-GUI we can see that none of the 8 ports is tagged with VLAN 1. We can reach the PF from the admin-PC and vice versa. So, we sat port 2 and port 8 on the Netgear to tagged w/VLAN 20 (= the registration VLAN). At the PF-Admin-GUI, we created eth0.20 roughly like this: - eth0.20 - IP 10.10.245.1 - registration So a client connected to port 2 at the Netgear shoul send DHCP-Requests via VLAn 20 to port 8 / VLAN 20. But nothing happens … no network-activity from the client! Client says "cable not connected", and we cant discover pckets with tcpdump at Interface eth0 on the PF. When we change the registration-VLAN from eth0.20 to the eth0 (i.e. to the "physically" interface"), but leave the Netgear unchanged, the connection comes up immediately and the client gets an address from 10.10.245.0/24. But as the "WAN" is on 10.10.244.0/24, the cliet can´t reach something outside the PF. So to me it looks like a problem with the combination "virtual interface and VLAN-tagging" - but that can´t be the case. Our setup is a bit similar to those mentioned in the PF-Admin-Manual. We tried it with a (supported) HP-2500er-switch with the same result: inline-mode is no problem at all, to connect client and PF via ethX directly as well, but as soon as we setup first eth0 with no VLAN as management and eth0.X with VLAN X for registration, the connection between client and PF fails. We must have misunderstood the "big picture", or what has happened here? Many thanx in advance for help and hints! Regards toag ------------------------------------------------------------------------------ Android apps run on BlackBerry 10 Introducing the new BlackBerry 10.2.1 Runtime for Android apps. Now with support for Jelly Bean, Bluetooth, Mapview and more. Get your Android app in front of a whole new audience. Start now. http://pubads.g.doubleclick.net/gampad/clk?id=124407151&iu=/4140/ostg.clktrk _______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
