forbmsyn wrote: > Hi, > > In our network, we also have so many VM servers connected to another > switches (Let's call them server switches), and inside these switches > there are different vlans. Should I also have these (server) switches > managed by PacketFence? To me it does not make sense to do so because > unlike the (desktop) switches, once the vlans inside the (server) > switches have been created, and the switch port(s) have been assigned to > the specific vlan, there is no need to change it anymore. I mean, at > least for a long time. And these switch ports don't connect to the > cubicle area. So I guess there should not be any security concern on > these (server) switches, unless someone break into our server room and > plug a device into these (server) switches. > > Also some (server) switch ports are connected to VM Host NIC, which > could have tens of VM servers behind one NIC. How do I configured the > switch to handle these mac addresses when they pass through one switch port?
Your server room should be tightly controlled and access should be limited. The ports on the switch should probably not be dynamically configured either. Just like you really wouldn't want to use DHCP to assign IPs to a server, you wouldn't want to use a NAC solution to put the ports in the proper VLAN. Imagine what would happen if Packetfence were to fail for some reason and all of the server ports were suddenly switched to a blocking state. > Is there any other problem I need to consider and have the (server) > switches managed by PacketFence? I would like to hear the opinion from > you experts. Much appreciate if you could share me with some information > in your real scenario. I would recommend managing server switches separate from Packetfence. PF is really more of an end-user management system. > Thanks again. > > Regards, > Jacky -- --------------------------- Jason 'XenoPhage' Frisvold [email protected] --------------------------- "Any sufficiently advanced magic is indistinguishable from technology.\" - Niven's Inverse of Clarke's Third Law ------------------------------------------------------------------------------ Managing the Performance of Cloud-Based Applications Take advantage of what the Cloud has to offer - Avoid Common Pitfalls. Read the Whitepaper. http://pubads.g.doubleclick.net/gampad/clk?id=121054471&iu=/4140/ostg.clktrk _______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
