Re: [PacketFence-users] Place PacketFence system

Tue, 18 Feb 2014 11:54:33 -0800 

Hi experts,

Thank you for all reply.
I have plan building the PF on VMWare ESX4.0 based on CentOS.
My network already have VLANs, for example :
1) Vlan 122: Server
2) Vlan 123: Computers(office users)
3) Vlan 124: Voice(IP phone)
4) Vlan 125: Firewall
5) Vlan 126: Access Door
6) Vlan 127: Production --> Computers using wireless via Access Points, and
have ACLs for this Vlan on Core switches
...
All Vlans already trunk configured on switches.
Now, i just want to apply PF for the Vlan 123 first.

On PF Server:
- Which mode i have to installation?
- How many NIC card do i need?
- Which services need to start on PF

On Switches:
- How to configuration when i have PF?

I am still very vague in implement PF server. I very thankful if some one
help me to get knowledge.

Thanks in advance.


Best regards,





On 17 February 2014 23:17, Sallee, Jake <[email protected]> wrote:

> I Agree with XenoPhage.  Your network is very similar to mine and that is
> almost exactly the same way I have mine deployed.
>
> In my environment I am running al the network services (DNS, DHCP, etc.)
> on my production Win2k8 servers, with the exception of the DNS for the
> registration vlan since Microsoft has decided not to support wildcard DNS
> entries (you CAN do it but it requires a registry hack).
>
> Also, the admin guide can be a bit confusing when it talks about vlan
> enforcement.  You do not need to trunk all your vlans to the PF server so
> long as you configure your switches and vlans properly.
>
> In Cisco speak this means adding the PF server as a DHCP helper to all the
> vlans you want PF to be on and make sure that the subnet your server is on
> can send RADIUS/SNMP to the management IP of your switches.
>
> Do that and you are good to go!
>
> Good luck.
>
>
> Jake Sallee
> Godfather of Bandwidth
> System Engineer
> University of Mary Hardin-Baylor
>
> 900 College St.
> Belton, Texas
> 76513
>
> Fone: 254-295-4658
> Phax: 254-295-4221
>
> ________________________________________
> From: Jason Frisvold [[email protected]]
> Sent: Monday, February 17, 2014 8:51 AM
> To: [email protected]
> Subject: Re: [PacketFence-users] Place PacketFence system
>
> Minh Trung wrote:
> > Hello experts,
> >
> > I am newbie in Packetfence.
> > My infrastructure including Microsoft OS and some Linux platform.
> > I already have DNS, DHCP, it's based on Microsoft 2k8 platform.
> > Now, may i using Packetfence on my network?
> > My currently network:
> >
> > Intetrnet --+> Firewalls --+> Core switches --+> Switches(Cisco 2960)
> > --+> LAN
> >                                               |
> >                                               |--+> Servers farm.
> >
> > Where i can place Packetfence??
> > Can i using Packetfence on VMware machine or not?
> > Any help would be appreciated,
>
> It depends on what your standards are.  I would probably put the
> packetfence server where your server farm is, but you'll need to trunk
> in a vlan on the switches for authentication.
>
> Using your existing DNS and DHCP is fine for everything except the
> authentication VLAN.  For that you'll want to use the packetfence server.
>
> Yes, you can run this on VMWare.  We run it on RHEV and it works fine.
>
> > Best regards,
>
>
> --
> ---------------------------
> Jason 'XenoPhage' Frisvold
> [email protected]
> ---------------------------
>
> "Any sufficiently advanced magic is indistinguishable from technology.\"
> - Niven's Inverse of Clarke's Third Law
>
>
> ------------------------------------------------------------------------------
> Android apps run on BlackBerry 10
> Introducing the new BlackBerry 10.2.1 Runtime for Android apps.
> Now with support for Jelly Bean, Bluetooth, Mapview and more.
> Get your Android app in front of a whole new audience.  Start now.
>
> http://pubads.g.doubleclick.net/gampad/clk?id=124407151&iu=/4140/ostg.clktrk
> _______________________________________________
> PacketFence-users mailing list
> [email protected]
> https://lists.sourceforge.net/lists/listinfo/packetfence-users
>
>
> ------------------------------------------------------------------------------
> Managing the Performance of Cloud-Based Applications
> Take advantage of what the Cloud has to offer - Avoid Common Pitfalls.
> Read the Whitepaper.
>
> http://pubads.g.doubleclick.net/gampad/clk?id=121054471&iu=/4140/ostg.clktrk
> _______________________________________________
> PacketFence-users mailing list
> [email protected]
> https://lists.sourceforge.net/lists/listinfo/packetfence-users
>

------------------------------------------------------------------------------
Managing the Performance of Cloud-Based Applications
Take advantage of what the Cloud has to offer - Avoid Common Pitfalls.
Read the Whitepaper.
http://pubads.g.doubleclick.net/gampad/clk?id=121054471&iu=/4140/ostg.clktrk
_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users

Reply via email to