Hi Tal, Le 2015-04-19 14:29, Tal Bar-Or a écrit : > > Hello All, > > I am in the process of validating PacketFence and few other product > like MS NPS,OpenNac > > Whats i am interested at most is three scenarios that can do isolation > to designated VLAN but i am not yet ready to turn all our users > switch port to dot1x authentication right away , since i have mass of > equipment and each switch have some users on each 4 users Vlan we got > as Unttaged , at the first step as follows below , mostly interested > with virus detection and isolation for existing static ports > configured as untagged. > > First scenario : We have Symantec endpoint protection AV and we would > like to have isolation in case of > > * client infection > * AV not installed > Let's configure packetfence with Symantec endoint : http://inverse.ca/downloads/PacketFence/doc/PacketFence_SEPM_Quick_Install_Guide-5.0.0.pdf
> Second scenario: Our organization firewalls(Pfsesnce) have ids Snort > based capable of sending syslog alert ,unified, SQL log alert, we > would like to have ability to inform some how Packetfence server > with violating IP and have it VLAN isolated , again first step most > users still have static port Untagged . > We have a pfdetect remote that send the snort/suricata event to packetfence. > > Third Scenario: unknown device attached to socket wall conf room or > somewhere else, for those ports only we would like to use dot1x > authentication will be isolated . > if the username and password is wrong then they will never be able to connect. > Another point is that Most of network equipment are based on HP > Procurve 2910al ,2920 ,1900 > perfect > > My question to you PacketFence experts is possible with given above > scenarios? > > Please advice > > Thanks > > > > -- > Tal Bar-or > > > ------------------------------------------------------------------------------ > BPM Camp - Free Virtual Workshop May 6th at 10am PDT/1PM EDT > Develop your own process in accordance with the BPMN 2 standard > Learn Process modeling best practices with Bonita BPM through live exercises > http://www.bonitasoft.com/be-part-of-it/events/bpm-camp-virtual- event?utm_ > source=Sourceforge_BPM_Camp_5_6_15&utm_medium=email&utm_campaign=VA_SF > > > _______________________________________________ > PacketFence-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/packetfence-users Regards Fabrice -- Fabrice Durand [email protected] :: +1.514.447.4918 (x135) :: www.inverse.ca Inverse inc. :: Leaders behind SOGo (http://www.sogo.nu) and PacketFence (http://packetfence.org)
0xF78F957E.asc
Description: application/pgp-keys
------------------------------------------------------------------------------ BPM Camp - Free Virtual Workshop May 6th at 10am PDT/1PM EDT Develop your own process in accordance with the BPMN 2 standard Learn Process modeling best practices with Bonita BPM through live exercises http://www.bonitasoft.com/be-part-of-it/events/bpm-camp-virtual- event?utm_ source=Sourceforge_BPM_Camp_5_6_15&utm_medium=email&utm_campaign=VA_SF
_______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
