Hi Tiago, try first inline l2 and try to make it work. Inline L3 is very specific in pf 4.3.0, i prefer to say wait for 4.4, we have changed the way to make it work (more logic).
Regards Fabrice Le 2014-08-22 09:40, Tiago Giovanaz da SIlva a écrit : > Hello, > > I'm new to pf and I'm working to use PF for Self registration and > Inline (L3) mode. > All works fine: captive portal, e-mail message, dhcp,... but the > device only works if I restart the pf services. > I see that only after I run > service packetfence restart > the ipset add the ip address of the device in the Members list. > I'm using pf 4.3.0 with Ubuntu 12.04. > My sudoers looks like: > pf ALL=NOPASSWD: /sbin/iptables, /usr/sbin/ipset, /sbin/ip, > /sbin/vconfig, /sbin/route, /usr/sbin/service, /usr/bin/tee, > /usr/local/pf/sbin/pfdhcplistener, /bin/kill, /usr/sbin/dhcpd, > /usr/sbin/freeradius, /usr/sbin/snort, /usr/bin/suricata, > /usr/sbin/conntrack > Defaults:pf !requiretty > > Thanks a lot. > > ------------------------------------------------------------------------------ > Slashdot TV. > Video for Nerds. Stuff that matters. > http://tv.slashdot.org/ > _______________________________________________ > PacketFence-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/packetfence-users -- Fabrice Durand [email protected] :: +1.514.447.4918 (x135) :: www.inverse.ca Inverse inc. :: Leaders behind SOGo (http://www.sogo.nu) and PacketFence (http://packetfence.org) ------------------------------------------------------------------------------ Slashdot TV. Video for Nerds. Stuff that matters. http://tv.slashdot.org/ _______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
