Having your PF box have an interface in every vlan is not necessary for vlan enforcement so long as you can do all of the following:
1) PF should receive a copy of all DHCP requests from any vlan you wish to use PF on. In Cisco land this is accomplished by adding the IP of your PF server as an ip-helper. 2) The PF box can communicate with the management interface of the equipment you wish to use with PF. As an aside; while it is technically possible to run PF through a NAT'ed connection I would not suggest doing it. It introduces a lot of complexity Jake Sallee Godfather of Bandwidth System Engineer University of Mary Hardin-Baylor WWW.UMHB.EDU 900 College St. Belton, Texas 76513 Fone: 254-295-4658 Phax: 254-295-4221 ________________________________________ From: chiel [[email protected]] Sent: Friday, October 10, 2014 9:18 AM To: [email protected] Subject: [PacketFence-users] Packetfence running in other part of the location Hello, Question. We are usually deploying Packetfence with ports in all the vlans (normal, registration, isolations). Is that a necessity? Or can I also have it a other location of our network (separate L2/L3 domains) . regards Chiel ------------------------------------------------------------------------------ Meet PCI DSS 3.0 Compliance Requirements with EventLog Analyzer Achieve PCI DSS 3.0 Compliant Status with Out-of-the-box PCI DSS Reports Are you Audit-Ready for PCI DSS 3.0 Compliance? Download White paper Comply to PCI DSS 3.0 Requirement 10 and 11.5 with EventLog Analyzer http://pubads.g.doubleclick.net/gampad/clk?id=154622311&iu=/4140/ostg.clktrk _______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users ------------------------------------------------------------------------------ Meet PCI DSS 3.0 Compliance Requirements with EventLog Analyzer Achieve PCI DSS 3.0 Compliant Status with Out-of-the-box PCI DSS Reports Are you Audit-Ready for PCI DSS 3.0 Compliance? Download White paper Comply to PCI DSS 3.0 Requirement 10 and 11.5 with EventLog Analyzer http://pubads.g.doubleclick.net/gampad/clk?id=154622311&iu=/4140/ostg.clktrk _______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
