Hello PacketFence users, I am wondering if "Port-Security" and "802.1X/MAB" are supposed to be used together or if they are mutually exclusive ?
I use 802.1X/MAB and PortSecurity on my Cisco 3560 switch, When a new client appears on the configured port, 802.1X fails as expected and the new client authenticates through MAB and gets assigned an IP address(from Registration VLAN) by PacketFence. However, it can not reach to the Captive Portal even though the httpd.portal is running and listening. I am guessing Port-Security on the switch is blocking my client to reach to the server. Here is the configuration of my port that a client plugs into; ! interface FastEthernet0/33 switchport access vlan 4 switchport mode access switchport port-security maximum 1 vlan access switchport port-security switchport port-security violation restrict switchport port-security mac-address 0200.0001.0033 vlan access authentication order dot1x mab authentication priority dot1x mab authentication port-control auto authentication periodic authentication timer restart 10800 authentication timer reauthenticate 7200 mab no snmp trap link-status dot1x pae authenticator dot1x timeout quiet-period 2 dot1x timeout tx-period 3 ! Thank you so much beforehand for your help and suggestions... --ali ------------------------------------------------------------------------------ HPCC Systems Open Source Big Data Platform from LexisNexis Risk Solutions Find What Matters Most in Your Big Data with HPCC Systems Open Source. Fast. Scalable. Simple. Ideal for Dirty Data. Leverages Graph Analysis for Fast Processing & Easy Data Exploration http://p.sf.net/sfu/hpccsystems _______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
